ISO & Management System Glossary

Example: A company enforces role-based access control to limit employees' access to confidential files.

Example: A laboratory is accredited by a national body to perform chemical analysis, ensuring the reliability and accuracy of its test results.

Example: After an internal audit reveals areas for improvement, the management team develops an action plan to implement corrective actions and prevent recurrence.

Example: A company implements encryption and multi-factor authentication as part of Annex A controls.

Example: An external audit is performed on a company’s QMS to ensure that it adheres to ISO 9001 standards.

Example: The audit criteria for evaluating a medical device company’s QMS include conformance with ISO 13485 and relevant FDA regulations.

Example: During an audit, the audit team examines training records and quality control data as evidence that processes meet the required standards.

Example: The audit findings show that the company’s internal processes comply with ISO 9001 but need improvement in supplier evaluation procedures.

Example: The audit plan for the ISO 9001 audit includes the areas to be reviewed, the timeline, and the audit team responsibilities.

Example: A company compares its customer service response times with those of leading competitors to identify areas for improvement.

Example: A company adopts a best practice approach to reduce machine downtime by implementing predictive maintenance techniques.

Example: A thermometer used in a lab is calibrated against a known standard to ensure accurate temperature readings.

Example: A laboratory maintains calibration certificates for all measurement devices used in testing.

Example: After a customer complaint, a corrective action is taken to fix the production process, while a preventive action is implemented to avoid future issues.

Example: A manufacturing process is considered capable if it consistently produces components within the specified tolerances.

Example: A factory assesses the carrying capacity of its waste management system to handle increasing production volumes.

Example: A company receives ISO 9001 certification after successfully completing an external audit confirming that its QMS meets all requirements.

Example: The engineering team follows a change control process when making modifications to the design of a product to ensure that all changes are documented and evaluated.

Example: A medical device manufacturer uses a clean room to assemble sterile products, preventing contamination during the production process.

Example: After product delivery, the company sends out surveys to gauge customer satisfaction with product quality and delivery time.

Example: Employees are assessed for competence based on their ability to perform tasks according to company standards and regulations.

Example: A competent authority, such as the FDA, may audit a medical device manufacturer to ensure compliance with regulatory requirements.

Example: A company ensures compliance with ISO 14001 by implementing practices that minimize its environmental impact.

Example: A company evaluates its regulatory environment and market trends as part of its strategic planning under ISO 9001.

Example: A supplier requires certificates of authenticity for all aerospace components to prevent counterfeit parts from entering production.

Example: A medical device manufacturer maintains a DHF that includes design inputs, verification testing, and risk analysis reports.

Example: The DHR contains batch records showing that each product passed final inspection before distribution.

Example: The DMR for a surgical instrument includes sterilization protocols and component material specifications.

Example: A company has a document control system that tracks revisions to its standard operating procedures and ensures employees have access to the most up-to-date documents.

Example: Before acquiring another company, a firm conducts due diligence to assess the company’s financial health, market position, and compliance with regulations.

Example: A hospital establishes an emergency preparedness plan for handling chemical spills.

Example: A factory's emissions are an environmental aspect that could impact air quality.

Example: A company switching to renewable energy reduces its environmental impact.

Example: A manufacturing plant establishes an EMS to monitor waste disposal and reduce energy consumption.

Example: A factory tracks its carbon emissions and water usage to measure its environmental performance.

Example: A company uses customer feedback and performance metrics to make decisions about product improvements.

Example: An external auditor visits a company to verify that it meets ISO 9001 requirements.

Example: A supplier conducts a First Article Inspection to verify that their first batch of a new component meets all design and specification requirements.

Example: A failure mode in a manufacturing process could be a machine malfunction that causes a product to be produced with incorrect dimensions.

Example: After an audit, feedback is provided to management on areas where the company’s processes are non-compliant with ISO 9001 standards.

Example: A company conducts a gap analysis to identify discrepancies between their current practices and the requirements of ISO 13485 before pursuing certification.

Example: A pharmaceutical manufacturer adheres to GMP guidelines to ensure that all products are produced consistently and meet regulatory requirements.

Example: A construction company conducts hazard identification to pinpoint risks associated with heavy machinery on-site.

Example: A company implements an HSMS to ensure that employees are trained on safety procedures and that hazards are properly controlled in the workplace.

Example: Human error occurs when a technician forgets to calibrate a machine, leading to product defects.

Example: An IT department conducts a risk assessment to identify vulnerabilities in the company's network security.

Example: A quality control team performs an inspection on finished products to ensure they meet the required specifications before shipment.

Example: Customers, suppliers, and regulatory agencies are considered interested parties when defining the scope of a quality management system.

Example: A construction team conducts a JSA before beginning work on a new site to ensure that all potential hazards, such as falling objects and machinery malfunctions, are addressed.

Example: A manufacturing company uses KPIs to track production efficiency, such as the number of units produced per hour, aiming to optimize operations.

Example: A company creates a knowledge base that stores best practices and lessons learned, ensuring that all employees have access to useful resources.

Example: The CEO’s leadership ensures that the organization’s vision and strategic objectives are clearly communicated and aligned with operational activities.

Example: A company adopts lean manufacturing principles by reducing the time spent on machine setup and increasing throughput without adding additional resources.

Example: A packaging company assesses the recyclability of its materials as part of its life cycle perspective.

Example: A manufacturer adopts lifecycle management to ensure that products are designed for longevity and recyclability.

Example: At a quarterly management review, senior leadership reviews audit results, customer feedback, and process performance to ensure the QMS remains effective.

Example: In the audit of a financial system, materiality helps auditors determine whether certain discrepancies are significant enough to impact financial statements.

Example: A medical device company participates in MDSAP, allowing it to streamline its certification process for markets in the U.S., Canada, Japan, Brazil, and Australia.

Example: A laboratory calculates measurement uncertainty to ensure confidence in its test results.

Example: The MDF for a diagnostic device includes biocompatibility test reports and clinical trial data.

Example: A laboratory must ensure that external noise, such as electrical interference, does not distort the results of sensitive measurements.

Example: A nonconformity is identified during an audit when a batch of products fails to meet the agreed-upon dimensions and is deemed unfit for delivery.

Example: A nuclear plant uses NQA-1 guidelines to implement stringent controls over its design and maintenance processes to ensure safety and reliability.

Example: During an audit, an observation is made that employees are not fully trained on the latest software, suggesting a need for additional training programs.

Example: A construction firm implements an OH&S system to reduce workplace injuries.

Example: An organization improves operational efficiency by automating key processes, reducing production costs while maintaining product quality.

Example: A company outsources its IT support to an external firm to ensure better service management and cost-efficiency.

Example: A company collects and analyzes customer complaints as part of its PMS activities.

Example: A manufacturer adopts a process approach by linking production, quality control, and customer feedback into a single workflow.

Example: A medical device company validates its sterilization process to ensure conformance with ISO 13485.

Example: An aerospace company implements rigorous testing and failure analysis to ensure product safety in aircraft components.

Example: A lab participates in a round-robin test to verify its accuracy in chemical analysis.

Example: QA processes in a food manufacturing plant ensure that all products are consistently tested and meet health and safety standards.

Example: A manufacturing company uses QC checks at various stages of production to ensure that all components meet the specified quality standards before final assembly.

Example: A company implements a QMS to ensure its processes meet customer specifications and comply with industry standards like ISO 9001.

Example: A pharmaceutical company ensures regulatory compliance by following FDA guidelines and conducting regular audits to verify adherence to GMP.

Example: A company conducts a risk assessment to identify potential cybersecurity threats to its data management system and implements measures to mitigate those risks.

Example: The RMF for an implantable device includes failure mode analysis and mitigation strategies.

Example: A manufacturer conducts a root cause analysis after discovering a recurring defect in a product, leading to the identification of a flaw in the production machinery.

Example: A defense contractor establishes additional inspection steps to meet the special requirements of military contracts.

Example: Employees, customers, and shareholders are all stakeholders in a company, each with specific interests in the company’s performance.

Example: A hospital develops SOPs for all medical procedures to ensure that staff follow consistent, safe, and effective practices.

Example: A company adopts sustainability practices by reducing energy consumption in its manufacturing process and increasing the use of recycled materials.

Example: A medical device company might conduct a targeted risk assessment to evaluate the risks associated with a new product’s manufacturing process.

Example: The technical file for an orthopedic implant includes clinical evaluation reports and product labeling requirements.

Example: A manufacturing company implements TQM principles to improve both product quality and worker satisfaction, leading to reduced defects.

Example: A company uses traceability to ensure that each component in their supply chain is linked to specific quality checks and batch records.

Example: A pharmaceutical company identifies an urgent nonconformity when a batch of drugs is found to be contaminated, triggering an immediate recall.

Example: A software company conducts a user requirements analysis to understand the needs of customers who will use their new application, ensuring it meets functionality expectations.

Example: A company conducts a validation of their production process to ensure that the final product meets all quality standards before being released to customers.

Example: Before launching a new medical device, a manufacturer verifies that it meets all regulatory requirements and design specifications.

Example: An electronics manufacturer establishes a waste management program to reduce hazardous waste and improve recycling rates, ensuring compliance with environmental standards.

Example: In a factory setting, a workplace hazard could include unguarded machinery that poses a risk of employee injury.

Example: A company uses an X-bar chart to monitor the consistency of a manufacturing process, such as measuring the diameter of a component in a machining operation.

Example: A factory calculates the yield of a production run by dividing the number of defect-free products by the total number of units produced, aiming to maximize yield and reduce waste.

Example: A company adopts the Zero Defects philosophy, striving to ensure that each item produced passes quality checks with no defects, leading to a significant reduction in rework and customer complaints.