Professional Documents
Culture Documents
Copyright Notice
Copyright 2015 by Arthur J. Lewis - All rights reserved
Disclaimer
The information provided within this eBook is based on my personal knowledge,
thoughts and interpretation of ISO 9001:2015 requirements and from 45 years of
experience in business. This book has not been created to be specific to any
organizations situation or needs. It is not intended to be the definitive word on
ISO 9001 interpretation and implementation. You may discover there are other
equally acceptable methods and information to accomplish the same end result.
While I have made every effort to ensure that the information in this eBook was
correct at the time of publication, I make no representations or warranties,
express or implied, about the completeness, accuracy, reliability, suitability or
availability with respect to the information or related graphics contained in this
eBook for any purpose.
I do not assume and hereby disclaim any liability to any party for any loss,
damage, or disruption caused by errors or omissions, whether such errors or
omissions result from accident, negligence, or any other cause.
2
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
About The Author
A. J. (Art) Lewis
Business Management Consultant
SUMMARY
Art applies over 45 years of strong business and operations management experience to
provide results-oriented ISO 9001, AS 9100 (aerospace) and TS 16949 (automotive)
consulting, using a risk management approach. His services include interpretation,
documentation, system development, training, project management and system audits
leading to successful certification to these quality management standards. He has earned
a reputation for getting his clients certified, on their first attempt, on time, and within
budget. He also provides business planning, process streamlining and other value-added
services.
EXPERIENCE / ACCOMPLISHMENTS
Consultancy: He has helped over 200 clients in a wide variety of industries achieve
ISO 9001, AS9100 and TS 16949 certification. Industries include automotive metal
stamping and screw machine, fabrication, machining, assembly, electrostatic and
chrome plating, heat-treating, coatings, glass, plastic and rubber product and services,
electrical and electronic equipment, assemblies & components, UPS and batteries,
computer hardware and software, printing, placement and temporary help,
warehousing and distribution, repair facilities, consumer credit counseling agencies,
banks, call centers, etc.
Training: He has delivered public and on-site quality management training to over
4,000 students. Courses include ISO/TS RAB approved Lead Auditor, Internal
Auditing, Implementation, Documentation, as well as customized ISO/AS/TS courses,
PPAP, FMEA, APQP and Control Plans. He has written the accredited Lead Auditor
Course for BSI in the US as well as Understanding ISO 9001:2008 and 2015 and other
related publications.
Auditing: He has conducted over 300 third party registration and surveillance audits
and dozens of gap, internal and pre-assessment audits to ISO/AS/TS Standards, in the
manufacturing and service sectors. He has worked as a freelance Lead Auditor with
major Registrars such as BSI, BV and SAI Global.
Other services: He has provided business planning, restructuring, asset
management, systems and lean manufacturing services to a variety of manufacturing
and service clients such as printing, plastics, automotive, transportation and custom
brokerage, warehousing and distribution, electrical and electronics, trading, equipment
leasing, etc.
Education & professional certification: Art has held IRCA certified Lead Auditor for
ISO 9000 as well as QS 9000 Lead Assessor certification. He holds a Bachelor of
Commerce degree and has a Canadian CPA and CMA designation. Prior to becoming a
business consultant more than 25 years ago, he has held senior financial (Vice
President - Finance & Administration and Controllership) positions in major Canadian
and US organizations.
For more on Arts work, please visit askartsolutions.com
3
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
Contents - ISO 9001:2015
Page
Copyright and Disclaimer 2
Authors biography 3
List of Contents 4
Foreword 6
Overview 7
Correlation matrices - ISO 9001:2008 to ISO 9001:2015 and vice versa 9
Key themes 14
Introduction 15
Quality management principles 23
Process approach 30
Risk based thinking 51
1 Scope 56
2 Normative references 59
3 Terms and definitions 59
4 Context of the organization 60
4.1 Understanding the organization and its context 60
4.2 Understanding the needs and expectations of interested parties 69
4.3 Determining the scope of the quality management system 81
4.4 Quality management system and its processes 86
5 Leadership 103
5.1 Leadership and commitment 104
5.1.1 General 104
5.1.2 Customer focus 114
5.2 Policy 118
5.2.1 Developing the quality policy 118
5.2.2 Communication the quality policy 121
5.3 Organizational roles, responsibilities and authorities 124
6 Planning 128
6.1 Actions to address risks and opportunities 129
6.2 Quality objectives and planning to achieve them 144
6.3 Planning of changes 157
7 Support
7.1 Resources 163
7.1.1 General 163
7.1.2 People 171
7.1.3 Infrastructure 175
7.1.4 Environment for the operation of processes 179
7.1.5 Monitoring and measuring resources 183
7.1.6 Organizational knowledge 193
7.2 Competence 198
7.3 Awareness 203
7.4 Communication 205
7.5 Documented information 208
7.5.1 General 209
7.5.2 Creating and updating 216
7.5.3 Control of documented information 218
4
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
9 Performance evaluation
9.1 Monitoring, measurement, analysis and evaluation 296
9.1.1 General 296
9.1.2 Customer satisfaction 300
9.1.3 Analysis and evaluation 305
9.2 Internal audit 308
9.3 Management review 314
9.3.1 General 314
9.3.2 Management review inputs 315
9.3.3 Management review outputs 318
10 Improvement 320
10.1 General 320
10.2 Nonconformity and corrective action 326
10.3 Continual improvement 329
5
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
Foreword
The purpose of this eBook is to provide:
A clear and in-depth understanding of the intent and implication of each
clause and sub-clause of the ISO 9001:2015 standard.
The requirements of the ISO 9001:2015 standard are shown in the light
beige box by clause and sub-clause.
2. Answer all test questions before moving on to the next section. Review the
section if your answer is not correct or incomplete.
3. As you go through each section, pick a business process or activity within
your organization and practice applying the information to it.
4. Take your time. Dont try and rush through the material. There are a lot of
golden nuggets of information you may overlook.
6
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
By diligently following this approach you will learn a lot faster; connect the dots
on the various requirements; and be able to effectively apply this knowledge to
implement or audit a QMS or provide value-added consulting services.
Overview
0. Introduction
1. Scope
2. Normative Reference
3. Terms and Definitions
4. Context of the organization
5. Leadership
6. Planning
7. Support
8. Operations
9. Performance Evaluation
10. Improvement
Overview
The ISO 9001 standard is organized under the major headings listed above (0 -
10). The first four headings (clauses 0-3) do not provide any requirements for a
QMS. They provide background information on key concepts and elements
that form the foundation or backbone of the standard.
The remaining seven headings (clauses 4 through 10) provide the mandatory
requirements for your QMS. Each major clause heading has several sub-clauses.
Collectively, these seven clauses set out the requirements for developing
and implementing your QMS.
Clause 0 Introduction
0.1 General
This subsection introduces a range of topics such as - the benefits of
implementing a QMS; concepts such as the process approach, PDCA (plan-do-
check-act), risk-based thinking, the need to adopt improvement, clarification of
terminology, and provision of flexibility in applying the requirements of the
standard to an organizations QMS, and that QMS requirements supplement
product and service requirements
0.2 Quality Management Principles
This subsection introduces the seven quality management principles that underlie
and form the basis for this standard.
0.3 Process approach
This subsection explains the process approach and the related PDCA (plan-do-
check-act) cycle, as well as the concept of risk-based thinking.
7
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
0.4 Relationship with other management systems
This subsection explains how this standard is related to ISO 9000 and ISO 9004.
Clause 1 Scope
This clause explains the scope of this standard
Clause 2 Normative references
This clause references the ISO 9000:2015 standard QMS fundamentals and
vocabulary, as being indispensable for applying ISO 9001:2015
Clause 3 Terms and definitions
This clause references ISO 9000:2015 for all terms and definitions used in ISO
9001:2015
8
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
Clause 10 - Improvement - sets requirements to pursue opportunities to
improve product and services; manage risk and take corrective actions to
improve QMS performance, meet customer requirements and enhance customer
satisfaction.
9
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
10
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
11
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
12
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
13
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
Key themes:
To help you get the most out this eBook, you might find it useful to follow key
themes that the ISO 9001 standard has emphasized. These include:
Your must use two tools - the process approach and the PDCA (plan-do-
check-act to improve) cycle as a consistent framework to manage QMS
processes and activities in an organized and disciplined way.
The themes outlined above are all part of the seven management principles
(described in detail later) which form the backbone of the ISO 9001 standard
As you go about developing and implementing your QMS, ask yourself Have I
addressed these key themes in each of my QMS processes?
14
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
0.1 Introduction
0.1 General:
The adoption of a QMS is a strategic decision for an organization
that can help improve its overall performance and provide a sound
basis for sustained development initiatives.
The potential benefits to an organization of implementing a quality
management system based on this International standard are:
15
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
Riskbased thinking enables an organization to determine the factors
that could cause its processes and is quality management system to
deviate from the planned results, to put in place preventive controls
to minimize negative effects and to make maximum use of
opportunities as they arise (see Appendix A4).
0.1 Introduction
The purpose of an organization is to identify and meet the needs and
expectations of its customers and other stakeholders and gain competitive
advantage. One of the strategies it might use to achieve this goal is to employ
universally recognized business tools to improve the effectiveness and efficiency
of its capabilities.
ISO 9001:2015 is a powerful business tool that organizations may use to
achieve this. Organizations use ISO 9001 to achieve goals and objectives related
to meeting customer and regulatory requirements and enhancing customer
satisfaction.
While the focus is on quality management, the ISO 9001 business model may be
applied just as well to manage the entire organization. The standard
embodies business concepts and principles universally recognized and applied for
sound business management. As such, ISO 9001 is a strategic management tool
that can be used as a starting point towards achieving sustained business
success.
As a strategic tool, it can be used as the framework to integrate other
strategic activities related to sales and marketing; technology; and product,
service and process design and development; corporate environment, structure,
culture and governance; product and service realization, delivery and support;
16
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
facility and asset management, etc. it can also be integrated with other
business management systems such as environmental management system
(EMS) and occupational health and safety (OHS).
The various parts of an organizations management system, including its QMS,
can be integrated as a single management system. The objectives,
processes and resources related to quality, growth, funding, profitability,
environment, occupational health and safety, energy, security and other aspects
of the organization can be more effectively and efficiently achieved and used
when the QMS is integrated with other management systems.
Sustained business success can be achieved by developing growth and
improvement programs and initiatives that add value by addressing the present
and longer term needs of its interested parties that include customers, end-
users, investors/ shareholders (owners), people employed by the organization,
external providers, regulatory bodies, lending institutions, unions, partners,
interest groups and communities.
What this means is that the organization must take a long-term outlook to
attaining business success as well as addressing a broader scope of
stakeholder requirements, needs and expectations, not just its immediate
customers. In pursuing ISO 9001 certification and undertaking longer term
improvement initiatives, it must seek to achieve a balance between its economic-
financial interests and those of the social and ecological environment that it
operates in. The goals and objectives that it seeks to achieve must also strike a
balance between incremental improvement and breakthrough accomplishments.
The QMS that you develop for your organization (based on meeting the
applicable requirements of this ISO 9001 standard) must comprise of
interacting processes and activities which to some extent can be
predetermined, but at the same time must be flexible and adaptable to the
complexities of your environmental context. The ability to change may
sometimes require innovation to achieve breakthrough improvements.
Your organization must understand its internal and external context and
identify the needs and expectations of relevant interested parties. This
information must be used to develop your QMS to achieve organizational
sustainability. Although often appearing to be comprised of similar processes,
each organization and its QMS are unique.
The processes of your QMS can be defined, measured and improved. These
processes interact to deliver results consistent with your organizations objectives
and cross functional boundaries. Some processes can be critical while others are
not.
People collaborate within a process to carry out their daily activities. Some
activities are prescribed and depend on an understanding of the objectives of the
organization, while others are not and react to external stimuli to determine their
nature and execution.
17
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
Every organization has quality management activities, whether they have been
formally planned or not. ISO 9001 provides requirements on how to develop a
formal system to manage these activities. It is necessary to determine activities
which already exist in the organization and their suitability regarding the context
of the organization. ISO 9001 along with guidance from ISO 9000 and ISO 9004
can be used to assist the organization to develop a cohesive QMS. I will make
many references to information from these standards to give you a solid
understanding of ISO 9001.
A formal QMS provides a framework for planning, executing, monitoring and
improving the performance of quality management activities. The QMS does not
need to be complicated; rather it needs to accurately reflect the needs of the
organization.
A QMS is a dynamic system that evolves over time through periods of
improvement. QMS planning is not a static activity, but an ongoing process. Plans
evolve as the organization learns and adapts to its changing environment. Your
QMS planning must take into account all quality activities of your organization
and ensure that all applicable requirements of ISO 9001 are addressed. The plan
is implemented upon approval.
It is important for your organization to regularly monitor and evaluate both
the implementation of QMS planning and the performance of the QMS. Carefully
considered indicators facilitate these monitoring and evaluation activities.
Auditing is a means of evaluating the effectiveness of the QMS, in order to
identify risks and to determine the fulfillment of requirements. In order for audits
to be effective, tangible and intangible evidence needs to be collected. Actions
are taken for correction and improvement based upon analysis of the evidence
gathered. The knowledge gained could lead to innovation, taking QMS
performance to higher levels.
Your QMS must be able to identify risks and pursue opportunities to improve its
processes, products and services in order to achieve and enhance customer
satisfaction. ISO guidance documents suggest that many issues such as
innovation, ethics, trust and reputation could be regarded as parameters within
the QMS.
It is important to state here that ISO 9001 certification must not be the ultimate
goal of QMS implementation. Your primary long-term focus must be to
improve the effectiveness and efficiency of the organization for the benefit of all
its stakeholders. Obtaining certification must be considered as just a stepping
stone in this journey. Organizations that understand and follow this approach will
get the most benefit from QMS development and implementation.
The potential benefits from implementing a QMS based on ISO 9001 include:
a. The ability to consistently provide product and services that meet customer
and applicable statutory and regulatory requirements;
18
2015 Copyright Art Lewis askartsolutions.com
Understanding ISO 9001:2015
Quality Management System Requirements
c. Addressing risks and opportunities associated with its context and objectives;
I will provide more coverage on PDCA and risk-based thinking in later clauses.
This section also makes the point that in order to achieve sustained success in
an increasingly dynamic and complex business, social and political environment,
the organization must do more than just make incremental improvements
and correction as advocated in previous versions of the ISO 9001 standard. It
must undertake more significant actions such as breakthrough change,
innovation and reorganizatiion.
The standard clarifies the use of various terms used throughout the standard:
Shall - indicates a requirement that is contractually binding where the
requirement is included in the QMS scope; its implementation is mandatory
and must be verifiable for certification purposes. In my explanation of the
standard, I will use the word must instead of shall as it lends more
emphasis and urgency to implementing a requirement.
There are around 275 shalls requirements in the ISO 9001 standard.
22
2015 Copyright Art Lewis askartsolutions.com