ISO 9001:2015 (DIS)
Products and services
Environment for the operation of processes
provided products and services
There is no longer a specified requirement for a management representative to be nominated. Instead, there will be an increased
demand on top management to demonstrate organisational leadership.
Exclusions: There will no longer be a requirement to specify
and justify Exclusions. Currently a statement has to be prepared stating and justifying the clauses that do not apply to the
QMS e.g. businesses who do not perform design activities exclude ISO 9001 clause 7.3 Design and Development.
Only 7 Quality Management
Principles: The existing eight quality management
principles are being reduced to seven and are set out in Annex B of the Standard. The principle of "A systems approach
to management" has been dropped (probably because it was considered answered by having the QMS in the first place). The
last principle "Relationship Management" replaces the previously titled "Mutually beneficial supplier relationships"
and broadens its scope to encompass relationships with all interested parties, not just suppliers.
Documentation requirements: There is no
specified requirement for a "Quality Manual". This reflects the fact that nowadays many businesses manage their
documentation (policies, procedures, instructions, forms, records etc) electronically e.g. shared drives, public folders,
There is no longer a set of specified mandatory procedures.
The requirement to have "documents" (in whatever medium is appropriate) is specified throughout the standard. Where
there is a requirement, it will be stated along the lines of "retain documented information"
or in the case where evidence (records) are required "maintain documented information".
ISO 9001:2015 clause 4.4 Quality management system and its processes currently states "organizations shall maintain
documented information to the extent necessary to support the operation of processes and retain documented
information to the extent necessary to have confidence that the processes are being carried out as planned". The
nature of those documents will be in context to the type of business, its approach to its QMS and the need to demonstrate
compliance with the Standard, statutory, regulatory and contractual requirements.
Process approach: The requirements for applying the process
approach have become a key emphasis in ISO 9001:2015. A whole sub-section within the Introduction section is dedicated to
explaining the Process Approach and it has its own clause, 4.4. It requires businesses to systematically define and
manage not just their processes, but also the interaction between them. Companies who currently have simply written
procedures for each clause of the Standard will have some work to do.
Planning: This now has its own section (6) and requires risks
and opportunities to be taken into account when planning the QMS. Other requirements for planning i.e. planning to achieve
quality objectives and changing the QMS in a planned manner have been carried forward from ISO 9001:2008.
Preventive action: This requirement
has been removed. It is considered to be suitably covered by taking the risk based approach to quality management which will
be one of the primary objectives of the QMS. Annex A of the Standard currently states that "one of the key purposes
of the QMS is to act as a preventive tool".
Purchasing: This now refers to the "external provider" as opposed to the
"supplier" to help clarify that activities (products and services) which are outsourced e.g. subcontract treatments,
services and hire are included and must be controlled as appropriate. Previously the emphasis was on controlling purchased
There is a general requirement throughout the Standard for businesses to know and understand what statutory and regulatory
requirements (and any requirements from interested parties e.g. customer contractual requirements etc) it must comply with
and ensure supplied products and services comply accordingly.
For companies already ISO 9001:2008 certified, the current standard will be recognized
and can be audited against until the end of the three year transition period, likely to be September 2018. For companies
seeking new certification, ISO 9001:2008 certificates can be issued up to the Standard's expiry date but Certificates
must not exceed the expiry date of the Standard. After this date all new certifications will be to ISO 9001:2015.
Companies currently certified to ISO 9001:2008 do not need to panic or do anything yet (the Standard has not been finalised)
other than perhaps think about existing systems and how they may have to change. However, don't leave everything to the
last minute either and risk last minute fixes and re-visits resulting in additional Certification costs and poorly designed
Due to the quality management system model developed and currently being used by SHA it is not envisaged that the
transition will be a major upheaval or difficult task as a number of the changes are already adopted e.g. SHA's model
has never included a Preventive Action procedure per se. SHA's new model for ISO
9001:2015 and ISO 14001:2015 has been successfully implemented, assessed and passed by UKAS accredited Certification
Bodies at the first attempt for over 25 clients. The new model remains a simple, hassle free management system that supports
the business. SHA will be happy to discuss and support transition with any client either through site
visits or remotely. Please contact SHA for further information and/or to discuss your requirements.