The ISO 9000 Document Control Software is developed & designed to control the ISO 9000 Quality Manual, Operating Procedure, Forms & Documents digitally. System will track the all ISO 9000 Documents by ISO Document No. through out the system.
The ISO 9000 Document Control Software Provides:-
• Tracking of Documents
• Efficiency Document Control
• Revision Control
• Multiple File Location
• Centralize Of Document Control
• Security
ISO 14001 Standard & Environmental Issues
ISO 14001 is a systematic tool that enables an organization in any market sector to focus on their situation, identify the relevant environmental issues and to lessen their impact to their benefit and the environment. It is part of a global response to the recognition that we are damaging the environment in which we all live. The cause and effect of the foremost world environmental issues, which are all due to mankind, are generally too vast and too intangible for us to grasp and so the slightly cliché expression ‘think global, act local’ is very relevant. Once the EMS is implemented and to become registered to ISO 14001, the external auditor will assess your EMS in two separate stages, on site. The first stage to understand your business activities and determine formal readiness for assessment and the second to check practical compliance with ISO 14001. After registration he will return at regular intervals every year to verify continual improvement and regulatory compliance, against your set objectives and your EMS. The external auditor should be seen as a wise friend, not a policeman. He should certainly explain his findings and assist the company to find ISO 14001 registration is not a cure for all environmental problems but I hope I’ve demonstrated that it is a worthwhile, if not essential business initiative that could enable your management to better manage your business, gain commercial advantage and minimize its environmental impact.
ISO 14001 Environmental management programmes
Introduce a series of projects as an environmental management programme to achieve the set targets. Apply normal project management disciplines (eg. assign a project leader, consider their training needs, outline the key stages of the project and dates that will lead to the target achievement).
Gradually apply environmental management programme thinking to such things as the introduction of new products, new or improved processes and other key activities of the business. In particular, ensure existing projects become environmental management projects where there is a significant environmental impact involved, so that the EMS becomes company wide. This is a frequent oversight found during ISO 14001 assessments. The EMS must cover the whole business – like a net thrown over the whole business and for example including such things as engineering and maintenance
Environmental Aspects In ISO 14001 Standards EMS
First make lists of the environmental aspects (issues) that are relevant
to the business. The environmental review mentioned earlier should
provide most of this information and the Annex to ISO 14001 provides
guidance on the format for doing this.
Consider the inputs, outputs and processes/activities of the business in
relation to;
a) emissions to air
b) releases to water
c) waste management
d) contamination of land
e) use of raw materials and natural resources
f) other local environmental and community issues
Consider both site (direct) and offsite (ie. indirect) aspects that you
control or have influence over (such as suppliers) and in relation to
normal operations, shut-down and start-up conditions and reasonably
foreseeable and emergencies situations
A simple written procedure is then required to determine which of the
aspects identified are really or probably significant (important) and should
therefore be managed by the EMS. This process which is
similar to health and safety risk assessment ranks the aspects by order
of importance and the significant aspects identified are then the core
of the environmental management system.
There are various methods of determining significance but most are
based on the principle of attributing a relative value for the
environmental hazard or potential to cause harm (eg. on a scale of 1-
5) and the risk or likelihood of occurrence (eg. on a scale of 1-5). The
relative significance is then determined by multiplying the hazard by
the risk. (eg. max score of 25). An arbitrary but cautious threshold
value is then set above which environmental aspects are considered to
be significant. This threshold can be determined by a common sense
consideration of the aspects identified.
Environmental Policy In ISO 14001 Standard
The company or organisation must write an environmental policy
statement which is relevant to the business activities and approved by
top management. Their full commitment is essential if environmental
management is to work. The ISO 14001 Standard clearly sets out
what to cover in the policy. Often a one page document is sufficient.
Produce a first issue and expect to amend it several times before
assessment and registration as knowledge grows in the company.
Process Based Auditing Of Quality Management System
Any effective quality management system (including the subsystems) works as a control process, which has the ability to detect deviations and nonconforming products and assures that the corrective and preventive action measures are effective. The regulatory auditor should check that all subsystems and processes of the quality management system are structured as self-regulating control processes. For example Deming’s PDCA cycle demonstrates such a process with the following components:
i) Plan – Has the manufacturer established the objectives and processes to enable the quality system to deliver the results in accordance with the regulatory requirements?
ii) Do – Has the manufacturer implemented the quality system and the processes?
iii) Check – Has the manufacturer checked process monitoring and measurement results against the objectives and the regulatory requirements? Does the manufacturer evaluate the effectiveness of the quality system periodically through internal audits and management reviews?
iv) Act – Has the manufacturer implemented effective corrective and preventive actions? Confirm that the company is committed to providing high quality safe and effective medical devices, and that the company is conforming with applicable laws and regulations. These are generic questions that can be asked throughout the audit.
Sampling
In general there are two ways of sampling records for review which are useful in regulatory audits risk based and statistical. Where possible, auditors should select samples based on factors which are most likely to affect the safety of the patient. In this situation sampling tables are not necessary. The auditor may however decide to select a statistically valid sample. A sample can also be drawn using a combination of risk based and statistical sampling.
Audit Planning
i) Further to the requirements given in the chapter 11 of GHTF Guidelines for Regulatory Auditing of Quality Systems of Medical Device Manufacturers – Part 1:
General Requirements (SG4/N28R2), some more consideration should be given to the following points: Information from the Manufacturer Estimation of audit duration, frequency and targeted on-site auditing time Further points to consider are given in chapter 6. Information required from the manufacturer
ii) In the planning phase, the following information should be requested from the manufacturer to estimate the audit duration and to prepare the audit plan for Regulatory Auditing of Quality Systems of Medical Device: manufacturer’s name, address contact name, telephone, fax numbers and e-mail addresses ? total number of employees (all shifts) covered by the scope of the audit ? range and class of medical devices being manufactured types of devices? sold and/or planned to be sold in the countries and/or regions for which the regulatory requirements will be assessed, including a complete list of authorizations (e.g. licenses) issued for those devices (where applicable) location and function of each site to be included in the audit a list of activities on each site the involvement of any? special manufacturing processes, e.g. software, sterilization, etc. a list of the activities performed by subcontractors and their locations, including the type of control that is exercised over those outsourced operations any existing audit results from other auditing organizations e.g. from USA, Australia, Europe, Canada, Japan. do they install or service the medical devices produced changes since the last audit, if applicable.
ii) Audit frequency The audit frequency is dependent on the factors mentioned in Appendix 3, the regulatory requirements and history of the Manufacturer.
iv) Audit duration The audit duration has a significant effect on both regulatory agencies and industry. It is dependent on factors such as the audit scope and specific regulatory requirements to be assessed, as well on the range, class and complexity of devices, and the size and complexity of the manufacturer. If not specifically mentioned, the considerations in this section are applicable to initial, and surveillance audits.
v) Relation between audit frequency and audit duration Audit duration depends on the audit frequency. In the following an annual audit frequency is the baseline as reference in IAF Guidance on the Application of ISO/IEC Guide 62. For more or less frequent audits, audit duration should be adapted accordingly. vi) Method of estimating audit duration When auditing organizations are planning regulatory audits, sufficient time should be allowed for the audit team to establish the conformity status of a medical device manufacturer’s quality system with respect to the relevant regulatory requirements. Any additional time required to assess national or regional regulatory requirements must be justified.
Both individuals and businesses especially have a social and environmental responsibility to fulfil. With the rapid development in today’s industrialised world, the issue of preserving and managing our environment has become crucial. The increasing awareness of the importance of good environmental management systems is evidenced by the amendments made to the Environmental Quality Act 1974 and other environmental regulations which serve to ensure stricter compliance of environmental standards. Malaysia also adopted the National Environment Policy in 2002 as a means of addressing environmental issues in an integrated manner while more and more companies are striving to attain the MS14001 EMS certification.
WHAT SMEs CAN DO TO SAVE THE ENVIRONMENT
As responsible corporate citizens, SMEs have a major role to play in preserving the environment. For starters, they can help the Government to achieve its recycling goals, by creating mechanisms to facilitate the segregation of recyclable wastes and to ensure that these wastes are sent to the relevant parties instead of being dumped in landfills and illegal dumpsites. Furthermore, SMEs must also ensure that proper waste management systems are in place in conducting their day-to-day businesses.
Below are a few steps that SMEs can take to do their part for the environment:
• Dispose off company wastes properly and responsibly.
• Encourage employees to reuse items where possible, for example, printing on both sides of the paper, etc.
• Practise recycling in the office, by introducing a recycling programme. Among the items that can be recycled are papers, cardboards, glass, aluminium cans and scrap metals.
• Implementing an Environmental Management System (EMS).
WHAT IS AN ENVIRONMENTAL MANAGEMENT SYSTEM (EMS)?
An EMS provides a framework for managing environmental practices that integrates with overall business goals in a systematic way. Various models can be applied to develop, implement and maintain an EMS. One of the more common models used by industries is the model described by the ISO 14001 standard which was developed by the International Organisation for Standardisation (ISO). The ISO 14001 standard EMS model focuses on continuous improvement through an on-going cycle of actions called the continual improvement cycle which incorporates the elements of planning, doing, checking and acting.
An EMS typically begins with a strong environmental policy which describes the organisation’s approach in managing its environmental affairs and reflects its commitment to protect the environment and human well-being. The environmental policy establishes the framework for environmental leadership and serves as a contract between an organisation’s employees and its stakeholders. As such, commitment and strong support from top management is essential in making an EMS a success. Developing the environmental policy also helps to lay the groundwork for the planning phase of the EMS cycle. It is in this stage that active management support is sought, a multi-disciplinary EMS implementation team is formed and an introduction meeting is held to brief employees on the implementation of EMS. On top of that, the scope and budget for the implementation of EMS is also pre-defined. In other words, it is important that management provides all the resources necessary for the successful implementation of EMS.
CURRENT ENVIRONMENTAL PRACTICES
It is evident that some SME has put in place various initiatives to preserve the environment while utilizing resources efficiently. These initiatives include the following:
1. Discouraging open burning in fields and plantation sites while encouraging the composting of felled trees and crops in an environmentally-friendly way which in turn prepares land for replanting by using natural fertilizer;
2. Discouraging the use of chlorofluorocarbons (CFCs) in various industrial, commercial and household appliances; and
3. Encouraging the recycling of resources for example, in the plastic manufacturing industry, materials are being regenerated through the forming process in an effort to reuse biodegradable products in an environmentally-friendly way.
WHAT IS WASTE MANAGEMENT?
Waste management involves collecting, transporting, processing, recycling and disposing waste materials, in an effort to reduce their adverse effects on human health and the environment. Waste materials include solid, liquid or gaseous substances. The implementation of waste management requires careful planning and also adequate financial resources and is the responsibility of all parties involved such as individuals, businesses and corporations, including SMEs.
INCENTIVES FOR ENVIRONMENTAL PROTECTION AND WASTE MANAGEMENT
In an effort to support an enhanced level of environmental pro activity, the government provides a range of fiscal activities which includes the Pioneer Status tax exemption and the Investment Tax Allowance for the manufacture of environmentally-friendly products, the provision and supply of environmentally-friendly services and specific activities which contribute towards the presentation of the environment. The said incentives are available for the following activities:
Accelerated Capital Allowance with a special initial rate of 40% and an annual rate of 20% for total write-off within three years is given to organisations that are waste generators, for their capital expenditure on machinery and equipment incurred, to set up facilities to store, treat and dispose their waste. This incentive is also available to companies undertaking waste recycling activities.
Quality assurance, according to the Standard, is a way of managing that prevents non-conformance and thus “assures quality”. This is what makes ISO 9001 different from other standards: it is a management standard, not a product standard. It goes beyond product standardisation: it is standardising not what is made but how it is made. To use standards to dictate and control how organisations work was to extend the role of standards to new territory. To take such a step we might have firstly established that any such requirements worked — that they resulted in ways of working which improved performance.
Yet the plausibility of this Standard, and the fact that those who had an interest in maintaining it were (and still are) leading opinion, prevented such enquiries. In simple terms the Standard asks managers to say what they do, do what they say and prove it to a third party.
ISO 9000 (1994) paragraph 1: “The requirements specified are aimed primarily at achieving customer satisfaction by preventing non-conformity at all stages from design through servicing.”
To put it another way, the Standard asserts that preventing non-conformance achieves customer satisfaction. But does it? Of course it matters to customers that a product works. But there is no guarantee that the Standard will ensure even that. Furthermore, customers take a total view of an organisation — how easy it is to do business with — in respect of all things of importance to each and every customer.
ISO 9001 requires managers to “establish and maintain a documented quality system as a means of ensuring that product conforms to specified requirements”. Loosely translated this is “say what you do”. Management is supposed to “define and document its policy for quality . . . including its commitment to quality”.
What management would not declare its commitment to quality? But would they know what it means? Would they argue (as they should) that quality management is a different and better way to do business, or would they believe that ISO 9000 will take care of quality? The Standard encourages managers to think of “quality” and “business as usual” as separate and distinct. It helps managers avoid the revelation that quality means a wholly different view of management. Instead, the organisation “shall appoint a management representative who, irrespective of other responsibilities, shall have defined authority and responsibility” [for ISO 9000]. At a practical level this means only one executive might decide he or she had better learn a thing or two about quality. However, would being responsible for ISO 9001 lead to learning about quality or simply enforcing the ISO 9000 regime in an organisation?
Key to the regime is auditing. The Standard requires organisations to conduct internal quality audits to “verify whether quality activities comply with planned arrangements”. This can be loosely translated as “do you do as you say?” and the purpose of the audit is to see that you do. It was not until the 1994 review that the words were changed to “quality activities and related results”. It was a Standard which was rooted in the philosophy of inspection: fifteen years after its initial promulgation the promoters sought to extend the focus to results. But results or improvements assessed by what means? Inspection. By the time the Standard was adopted world-wide, quality thinking had moved a long way from the philosophy of inspection. It is now understood, at least by a few, that quality is achieved through managing the organisation as a system and using measures which enable managers to improve flow and reduce variation (which we explore in chapters 5 and 7). The defenders argue that there is nothing stopping a company having ISO 9000 and implementing methods for managing flow and reducing variation, but where are such companies? Few of the companies we researched, formally and informally, knew anything about this thinking. The Standard does not talk about it; moreover, the Standard effectively discourages managers from learning about it by representing quality in a different way.
According to ISO 8402 (quality vocabulary), quality is:
“The totality of features and characteristics of a product or service that bear on its ability to satisfy stated or implied needs.”
Everything we have learned about ISO 9000 suggests that the people who created this definition were thinking about the things which need to be controlled, those things which “bear on its ability . . .”. The builders of the Standard assumed that customer needs would be listed in contractual agreements between the supplier and customer. ISO 9000 has a “make” logic — procedures for “how you do what you do” — and a “control” logic — check to see that it is done. It is a relic of the era when contractual agreements were perceived to be an important device for regulating the behaviour of suppliers. In these ways, ISO 9000 encouraged “planning for quality”.
Planning for quality sounds plausible, but it assumes many things: that the plan is the right plan, that it is feasible, that people will “do it”, that performance will improve. It is an approach which, paradoxically, leads to poor decisions. Planners of quality systems, guided by ISO 9000, start with a view of how the world should be as framed by the Standard. Understanding how an organisation is working, rather than how someone thinks it should, is a far better place from which to start change of any kind
The new edition of ISO 9001 is an amendment and not a revision; in other words, the changes are very small. They are broadly as follows:
- the user-feedback survey on ISO 9001:2000 revealed that there were some ambiguities and some points needing clarification. These have been tidied up, along with clarification inareas that were previously too open to interpretation.
- the new edition has improved compatibility with ISO 14001 for those wishing to integrate their ISO 14001 certification with their ISO 9001 certification.
ISO 9001:2008 – What it means to certified organizations
For certified organizations, the transition period runs from 14 November 2008 to 31 December 2009. All organizations need to be compliant with ISO 9001:2008 by the end of 2009 to retain their certification. BSI’s clients will be audited against the new edition of the standard at their next continuing assessment or re-certification visit.
Antony Barrett, product marketing manager responsible for ISO 9001 at BSI Management Systems UK, comments: “We don’t see anyone having any problems in achieving the 2008 edition of the standard.” Client managers will work with clients to manage the process.
There are many issues that must be addressed in moving the QMS from the initial state to the desired state. For example, all organizations implementing ISO 9001 will need to consider the unique culture within the organization, its size, and the resources available. Beyond those widely discussed points, three issues that merit particular attention are (1) consideration of the QMS as a parallel function, (2) training, and (3) auditing. Key points associated with these issues are discussed below.
In the case of all of the transitions depicted, real benefits from the QMS are more
likely to be experienced if the QMS is implemented directly into the core structure of the organization. SMEs must be cautious against establishing a QMS that is run separately in parallel to its other systems. In SMEs, the parallel subsystem most commonly exhibits itself as a separate Quality Assurance, or in some cases, ISO 9001 department. Possible reasons for this may include the existence of rigid departmental boundaries in some SMEs or overemphasis on core activities. As Yauch and Steudel [10] note, SMEs tend to focus their attention on “…necessary routine activities (such as sales, production, shipping, etc.) rather than activities aimed at improving processes or systems.” If a SME insists on establishing a separate quality department, its level of effectiveness can be increased by embedding the QMS in widely-used organizational systems where practical. The integration is largely a function of how well the QMS manages to share information with other subsystems and its ability to align with the policies, norms, goals, and values in place throughout the organization.
In SMEs, training and staff development is more likely to be ad hoc and small scale because of modest human and financial resources and the absence of a specific training budget. To prevent the problems arising from lack of education and training, two things must be done:
1. Education of Top Management: The centralization of decision-making processes within many SMEs means that the management can either be the main stumbling block to change or the main catalyst for change. Therefore, any approach to ISO 9001 implementation must involve considerable education for the top management of the organization to create awareness and understanding of the implementation process as a change initiative. Implementing a fully functional and documented QMS requires motivation by top management to appreciate, achieve, and implement the necessary measures to meet the standards’ criteria.
2. Education and Training of Employees: SMEs are often under pressure to quickly gain ISO 9001 registration. Meeting the requirements of the standard in a short period of time can prove a formidable obstacle for a small company. Since most SMEs do not possess the needed expertise internally, they may be inclined to hire external experts to provide the necessary technical expertise and manpower. However, having a functioning and documented QMS requires more than that. It requires ensuring that all employees in the organization clearly know what is expected of them and how they can contribute to the attainment of their organizations’ goals. This will likely require the preparation and implementation of a training plan tailored specifically to the unique characteristics and maturity level of the SME.
As emphasized throughout the paper, a QMS is not going to produce the expected results unless it is fully functional. While auditing must therefore verify the existence of the necessary documentation, it must also focus on the functionality of the QMS. The measurement of the functionality and the qualitative and financial impacts of a QMS have been the subject of several studies, including Kaynak. Among the categories used to measure functionality and performance improvement, two are particularly noteworthy for our purposes: management commitment and employee involvement. A QMS cannot be functional in the absence of those two characteristics. Therefore, as a minimum, internal and external auditors should continually verify top management’s commitment to increased company-wide quality awareness and improvement in addition to employee involvement in the design, implementation, operation, and improvement of quality related processes and procedures.