PAS 99

Integrated Management Framework

Introduction
What is PAS 99
Examples of Integrated Management Systems
Auditing IMS
Benefits & Barriers
What the Certification Bodies dont mention
What is PAS 99
Specification issued by BSI
Recognised by Certification Bodies
Framework by which you can manage all elements of your
business
ISO 9001
ISO 14001
OHSAS 18001
Sector Standards: ISO/TS 16949, ISO 13485 etc
Specialist Standards: Organic Food, Fair Trade, Lexel, Sarbanes
Oxley
Principles of PAS 99
Based on ISO 14001 structure
PDCA Cycle to support systematic management
Risk Based Standard
Helps is you really know your processes!
Process identification with inputs & outputs are essential
Structure of PAS 99
6 common requirements:

Policy
Planning
Implementation & Operation
Performance Assessment
Improvement
Management Review
The Specification
Implementing PAS99
Practical Examples of Key Areas
Risk Based Approach
4.3.1 Evaluation of Aspects & Impacts : evaluate the significant
business issues & the associated risk

Quality: Preventive Action?

Automotive: FMEA
Food: HACCP
Medical Devices: Product Risk Assessment
Environmental: Aspects & Impacts
OH&S: Risk Assessment, HAZOP
Corporate Governance: Corporate Risk

Goal: Establish a common frame work to identify, evaluate

and control business risks of any type.
Legal & Other Requirements
4.3.2 Identification of legal & other requirements

Environmental: licences, waste, water, WEE etc

OH&S: HASAW, Manual Handling, PUWER, Consultation
Human Resource: Working time directive, equality, disability etc
Data Protection: Do you hold customer information?
Products: CE Marking, design requirements
Import/Export: Legal requirements, product specifics
Software: Are you licensed correctly?
Corporate Governance: New companies act & director liability

Goal: Legal compliance (and keep the Managing Director out

of court).
Achieving Compliance

Plan: Do:
Identify requirements Implement & communicate
Review arrangements Set responsibilities
Identify gaps Write procedures
Set objectives Establish controls
Training

Act: Check:
Corrective action Monitor compliance
Preventive action Audit & Inspection
Management Review Sample & measure
Report non conformities
System Linkages

Risk
Assessment

Legislation

Business Controls
Documenting Working Procedures
4.4.1 Operational Control - for example machine
maintenance:

OH&S: Wear your PPE, Use the permit to work, isolate the machine
Product: Ensure machine is cleaned, set up for quality critical to quality
parameters
Environmental: Dont throw the oil down the drain etc.

Goal: One stop shop document for each process and task.
Core Systems
4.4.3: Documentation requirements, 4.5.4: Handling non
conformities, 4.6.2: Corrective & preventive action

Control of documents & data

Control of records
Control of non conformities
CAPA

Goal: Common procedures for these systems and clear priority on CAPA
for the business as a whole
Management Responsibilities
4.2: Policy, 4.3.4: Objectives, 4.7 Management Review

One policy
Common (non conflicting) objectives
One Management Review of the business

Goal: Common vision, goals and priorities for the business as a whole
IMS Audit
4.5.2: Internal Audit

Saves time
Must focus on processes (not system elements)
Use auditors & specialists to achieve competency
Carefully define the scope of the audit & criteria

Goal: Common vision, goals and priorities for the business as a whole
A Turtle Process Map

With What? With Whom?

Training
Equipment Knowledge
Infrastructure Skill

Inputs Outputs
What should Process What should
we receive? we deliver?

How Many? How?

Instructions
Performance Procedures
Indicators Methods
Some Barriers to Integration
Perception:
Can a good Environmental/Quality/H&S Manager cut it running an IMS?

Fear:
Is this a cleaver way to right size the organisation?
Too Hard:
Sound fantastic Mike but

Lack of Control:
Nice try Mike but Ive just spent the last 5 years trying to get
everyone to follow the Q/E/H&S procedures we need to maintain
the focus not dilute it!
Implementing an IMS
Write a policy for the IMS
Define the system write a well structured manual to act as
your instruction book
Make sure you have well developed process understanding
Install common system elements
Benefits of an IMS
Encourages risk management across the business
Gives a competitive edge more holistic approach to
business management
Stakeholder satisfaction systemic approach to risk,
governance across the business
Common goals across the business

You should not integrate to save a few on

Certifications costs!
What the Certification Bodies didnt tell
you!
Still need to be certified 3 times
(i.e. ISO 9001, ISO 14001 & OHSAS 18001)

Probably will not make any kind of cost saving

Not all auditors are multi skilled (you may get 2-3 auditors)
Are all auditors competent to audit your business?
 So in conclusion

PAS 99 Simple framework to use

Genuinely drives a risk based approach to management
Simplifies systems
Can lead to internal savings

But

Translate your system

Ensure common processes
Ensure correct competencies are sustained