ISO 9001:2015 – Newsletter – Issue 77


 

 

Issue 77 – Element 8: Operation – Why should Management want to control a process?

 

ISO 9001:2015…

Element 8: Operation – Why should Management want to control a process?

 

I appreciate receiving emails with questions and/or comments from readers of this Newsletter… please continue to do so since it provides me with direction on where to aim the content of these publications.  In my last Newsletter (ISO 9001:2015 Newsletter Issue 76) we discussed the topic of  “Element 7: Support – Why should Management provide it?”, and now in this Newsletter we will discuss “Element 8: Operation – Why should Management want to control a process?“.

 

The ISO 9001 Element numbering…

Element 4 – Context of the organization
Element 5 – Leadership
Element 6 – Planning
Element 7 – Support
Element 8 – Operation
Element 9 – Performance evaluation
Element 10 – Improvement

 

Element 8 – Operation consists of seven (7) Clauses as listed below:

8.1  Operational planning and control

8.2  Requirements for products and services

8.3  Design and development of products and services

8.4  Control of externally provided processes, products and services

8.5  Production and service provision

8.6  Release of products and services

8.7  Control of nonconforming outputs

 

Let’s talk about Element 8… Why should a Manager want to “control” their operations (think multiple inter-connected processes)?  The answer should be obvious but “controlling” any process is hard to do because of all the business variables that are thrown at it, day after day.  There are ways to achieve “control” of a process and you get a hint as to how by reading the titles of the sub-clauses listed above, which provide you with a framework to follow.


Clause 8.1  Operational planning and control:  If you are serious about “controlling” your processes then this first Clause is the best way to start.  Clause 8.1 asks you to address all of the basics, from knowing what output is required from your process; to deciding what is considered good vs bad output; to installing controls to catch poor output; to making sure the process has enough resources to run properly; and to maintaining records to prove the process did what it was supposed to do.  You also want to manage the risks associated with “changes” you make to any process, which means having action plans ready to mitigate any adverse effects from those changes.  Finally, if you decide that it makes better business sense to outsource (or contract out) the whole process, then make sure you have a way of keeping your outside Vendor/Supplier accountable for all of the things you expect from them.

 

Clause 8.2  Requirements for products and services:  This Clause contains four (4) sub-clauses, Sub-Clause 8.2.1 (Customer communication), Sub-Clause 8.2.2 (Determining the requirements related to products and services), Sub-Clause 8.2.3 (Review of requirements related to products and services), and Sub-Clause 8.2.4 (Changes to requirements for products and services).  This Clause builds on the previous one and drills deeper into completing understanding exactly what is required of the product or service (the output from your process) that you are providing either to an internal customer or to an external Customer.  Including how you plan to communicate with your Customer; how you will review the requirements to make sure your process can meet them; and how you will handle any changes that arise.  “Changes” is one of the biggest challenges affecting whether you can maintain control over a process… but if you can figure it out, then you can satisfy your Customers all day long!

 

Clause 8.3  Design and development of products and services:  This Clause contains six (6) sub-clauses, Sub-Clause 8.3.1 (General), Sub-Clause 8.3.2 (Design and development planning), Sub-Clause 8.3.3 (Design and development inputs), Sub-Clause 8.3.4 (Design and development controls), Sub-Clause 8.3.5 (Design and development outputs) and Sub-Clause 8.3.6 (Design and development changes).  Every product or service (output from your process) at one time or another needed to be designed so that it could satisfy what your Customer needed.  In some companies, this “design” activity was only required once, and not for every Customer Order, so it would be a N/A requirement (Not Applicable).  However in other organizations, every Customer Order that comes through needs to be “designed” before it can be produced (or supplied, in the case of a service), and that’s where Clause 8.3 becomes useful in laying out all of the steps you’ll need to follow if you want to control this “design” process.

 

Clause 8.4  Control of externally provided processes, products and services:  This Clause contains three (3) sub-clauses, Sub-Clause 8.4.1 (General), Sub-Clause 8.4.2 (Type and extent of control) and Sub-Clause 8.4.3 (Information for external providers).  Even though the word “purchasing” is no longer found within the ISO 9001:2015 Standard, the main focus of this Clause is really about “purchasing”, so think first about “suppliers and vendors” when you see the term “external provider”.  Ever heard of the acronym GIGO?  What it stands for is “garbage in, garbage out” which if you are trying to control a process means wrestling with poor quality coming in which puts added pressure on your process to transform that poor input into a good quality output.  This Clause wants you to look upstream of your process and install the right controls to prevent poor quality from ever reaching your process.  Once you control the goods and services that you “purchase” from Vendors/Suppliers, then you need to look at a broader scope since this Clause encompasses many more activities, with many more players, regardless of whether money actually changes hands (i.e. Corporate Headquarters; Sister Plants/Facilities; Shared Services; Other Depts; Joint Ventures; Associations; etc).  The reason why you’ll want to look at all of these other players is because GIGO is still a big factor when trying to control a process, whether you paid for it or not!

 

Clause 8.5  Production and service provision:  This Clause contains six (6) sub-clauses, Sub-Clause 8.5.1 (Control of production and service provision), Sub-Clause 8.5.2 (Identification and traceability), Sub-Clause 8.5.3 (Property belonging to customers or external providers), Sub-Clause 8.5.4 (Preservation), Sub-Clause 8.5.5 (Post-delivery activities) and Sub-Clause 8.5.6 (Control of changes).  During my training sessions I usually refer to Clause 8.5 as the “heartbeat” of the Standard because it’s where the action happens… when you finally get to produce your product or provide your service.  The theme throughout this Clause is how to “control” your process and it says so in the very first opening sentence: “The organization shall implement production and service provision under controlled conditions“, which it then proceeds to tell you how to do that.  Like all of the previous Clauses, there are far too many “requirements” to discuss them all here in detail.  As a Manager, all you really have to know is that all of the ingredients needed to “control” these critical processes are clearly spelled out in Clause 8.5, so if “controlling processes” is important to you then dive deeper into the words inside this Clause and see what you need to do.

 

Clause 8.6  Release of products and services:  This Clause is asking you to implement checkpoints at appropriate points along the process to ensure that the product or the service (output of your process) meets your acceptance criteria BEFORE releasing that product or that service to the Customer.   The main intent behind this Clause is that the Customer expects you to thoroughly check your own work (your products and your services) before supplying it to them, which just makes good business sense.

 

Clause 8.7  Control of nonconforming outputs:  Note the use of the word “output” in the title of this Clause.  They could have said “Control of nonconforming products and services” but they chose to say “outputs” instead.  I sometimes use the term “surprises” in place of “nonconforming” (and I don’t mean good surprises!).  The message here is that you have to look at controlling ALL nonconformities, not just final product/service issues but incoming (remember GIGO?) and in-process as well.  Secondly, you will need to address the “and services” that has been added after the word “product” throughout the Standard.  This means that late delivery will need to be addressed as a “nonconforming output” in many companies, and so it should, since most Customers view on-time delivery of your product or service as critical to their business.

 

Be sure to watch for our next Newsletter issue where I will be answering some of the questions that I get from Readers of my Newsletters about how to implement the requirements of ISO 9001:2015 in a specific and practical way, that will also help improve business performance…

 

To view all of our past Newsletters or to sign up to receive them… click here

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Need Help?

ISO 9001:2015 Internal Audit Outsourcing (we can do it for you OR with you!)

For cost effectiveness, the Internal Audit function can be outsourced to an external experienced auditor on a periodic basis. This will provide an independent and objective assessment to management, of where process issues may exist, along with identifying opportunities for improvement.  It will also provide the evidence needed to satisfy the Internal Audit requirements in the ISO Standards.  We have used two different approaches with this service: a) We conduct the entire audit ourselves, or b) We act as the lead auditor, and along with your Team of internal auditors, we complete the entire audit together.  This latter approach allows your people to receive guidance and direction from an experienced lead auditor while at the same time maintaining significant involvement in the internal audit process.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Internal Process Auditor Training for ISO 9001:2015

The two (2) day Internal Process Auditing for ISO 9001:2015 Training Session is focused on a process approach to auditing with the objective being not only to assess conformance of the quality management system, but also to uncover process improvements during an audit. This goes hand in hand with the process auditing requirements found within ISO 19011 and the process approach covered in ISO 9001:2015, which promotes continual process improvement throughout this Standard. An enhanced checklist is developed, and there will be workshops throughout, to reinforce learning, as well as a live, practice audit. If you are looking to meet the ISO 9001:2015 internal audit requirements and to “raise the bar” for your internal audit program then this is the course you should consider.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Until next time…

Tim Renaud

www.isosupport.com

Helping Business Professionals Reduce Risk and Remove Waste!