《对预防措施进行审核》由会员分享,可在线阅读,更多相关《对预防措施进行审核(5页珍藏版)》请在金锄头文库上搜索。
1、- 1 - 日期:2005 年 2 月 10 日 ISO 9001 审核实践组指南 对预防措施进行审核 1. 引言 1. 引言 ISO 9000:2000 条款 3.6.4 对“预防措施”的定义是“为消除潜在不合格或其他潜在不期望情况的原因所采取的措施”。 我们可以将预防措施理解成为防止不符合发生而采取的措施。不过,如果没有不符合,而且预防措施有效,那么预防措施过程的预期输出将是“维持现状”,这种输出增加了预防措施过程的审核难度。 人们经常混淆纠正、纠正措施和预防措施(正式定义参见 ISO 9000:2000)三个术语之间的区别,以及组织与它们有关的活动。 对组织的纠正和纠正措施过程进行审核相
2、对比较简单,因为通常能够比较好地确定这些过程的结果和有效性(即如果组织识别出了不符合,那么审核员去评价组织已经采取或计划采取的纠正过程,以及该过程是否将有效避免不符合再次发生,就相对简单一些);但是,对预防措施过程的审核通常较为复杂。 2. 审核指南 2. 审核指南 2.1 ISO 9001:2000 要求组织制定形成文件的预防措施程序。 注:将纠正措施和预防措施的文件化程序合并在一份 QMS 文件中的做法是可以被接受的,但我们并不推荐这种做法。如果两者合在一起,审核员应当验证组织是否清晰地理解纠正措施和预防措施的不同用意,这一点很重要。 2.2 标准要求形成文件的预防措施程序包括: a) 组
3、织怎样确定潜在的不符合及其原因组织怎样确定潜在的不符合及其原因 典型的例子包括: - 2 - 过程和产品特性的趋势分析(数据分析过程的输出)。如果趋势在恶化,就说明如果不采取措施,就会出现不合格; 在运行条件接近“失控状态”时发出预警; 通过正式或非正式的反馈系统监视顾客的感受; 使用统计技术进行过程能力趋势分析; 持续进行过程和产品的失效模式及后果分析(FEMA)(例如这是汽车行业 TS 16949 的要求); 对相似情况下发生在其他产品、过程、组织的其他部分或其他组织的不符合进行评估; 针对可预见的情况(例如因扩张、维护或人员变化而出现的情况,又见 ISO 9001 条款 5.4.2.b)
4、和不可预见的情况(例如飓风、地震、洪水等自然灾害)制定计划; ISO 9004:2000 条款 8.5.3“损失的预防”提供了其他示例(注:ISO 9004 的指南不是强制性要求)。 b) 评估对预防措施的需求评估对预防措施的需求 评估方法可以包括: 风险分析方法; 失效模式及后果分析,就上面(a)所述。 (注:这些特定的方式或方法不是 ISO 9001:2000 的要求。) c) 组织怎样确定需要采取措施以及怎样实施组织怎样确定需要采取措施以及怎样实施 审核员应当寻找下列证据: 组织已经分析了潜在不符合的原因(使用因果图和其他质量工具可能是适宜的); 及时在组织的所有相关部分布置了所需的措施
5、; 对识别、评价、实施和审查预防措施的职责做出了清晰的界定; - 3 - d) 所采取措施结果的记录所采取措施结果的记录 保存了什么记录? 记录是否适宜,是否真实反映了结果? 是否按照 ISO 9001:2000 条款 4.2.4 对记录进行了控制? e) 审查所采取的预防措施审查所采取的预防措施 措施是否有效(即是否防止了不符合的发生以及是否有进一步的益处)? 有无必要继续采取正在实施的预防措施? 是否应当改变预防措施,或是否有必要策划新的措施? 2.3 审核员和组织之间经常会对纠正措施和预防措施之间的界限进行“理论上的”讨论。例如,如果在过程“A”中发现了不符合,那么为防止以后在过程“B”
6、、“C”和“D”中发生此类不符合而采取的措施到底是预防措施还是对过程“A”采取的纠正措施?审核员应当避免被这些讨论误导,而应当关注这些措施是否有效。所采取措施的到底应该贴什么“标签”是次要的! - 4 - Date: 10 February 2005 ISO 9001 Auditing Practices Group Guidance on: Auditing Preventive Action 1) Introduction ISO 9000:2000 clause 3.6.4 defines preventive action as “action to eliminate the cau
7、se of a potential nonconformity or other undesirable potential situation”. This can be considered as an action taken to prevent a nonconformity from happening. However, if there is no nonconformity to start with, and if the preventive action is effective, the status quo will be maintained. This rais
8、es the difficulty of auditing a process for which the desired output is to maintain the status quo. There is often confusion about the differences between the terms i.e. correction, corrective action and preventive action (please refer to ISO 9000:2000 for their formal definitions), and also in rela
9、tion to an organizations activities in respect of each of them. Auditing an organizations correction and corrective action processes is relatively straightforward, because the results and effectiveness of these processes are usually well defined (i.e. if the organization has already identified a non
10、conformity, it is relatively simple for an auditor to evaluate the process the organization used, or is planning to use, to correct it, and whether or not this will be effective in avoiding re-occurrence of the nonconformity); however, auditing preventive action processes is usually more complex. 2)
11、 Auditing Guidance 2.1) ISO 9001:2000 requires the organization to have a documented procedure for preventive action. Note: The combination of corrective action and preventive action documented procedures into a single QMS document is acceptable, but is not recommended. If these are combined, then i
12、t is important for the auditor to verify that the organization understands clearly the difference between the intent of corrective and preventive actions. 2.2) The Standard requires this documented procedure to include: a) How the organization determines potential nonconformities and their causes. T
13、ypical examples include: Trend analysis for process and product characteristics (output from the data analysis process). A worsening trend might indicate that if no action is taken, a nonconformity could occur. Alarms to provide early warning of approaching “out-of-control“ operating conditions. Mon
14、itoring of customer perception, by both formal or informal feedback systems. Analysis of trends in process capability, using statistical techniques. - 5 - Ongoing failure mode and effect analysis for processes and products (this is a requirement of TS 16949, for the automotive industry, for example)
15、. Evaluation of nonconformities that have occurred in similar circumstances, but for other products, processes, or other parts of the organization, or even in other organizations. Through planning activities for both predictable situations (e.g. due to expansion, maintenance, or personnel changes se
16、e also ISO 9001, Clause 5.4.2b) and for unpredictable situations (e.g. naturally occurring problems such as hurricanes, earthquakes, floods etc.) ISO 9004:2000 clause 8.5.3 Loss prevention provides other examples (Note: this ISO 9004 guidance is not mandatory). b) An evaluation of the need for preventive action. Methods used in the evaluation could include: Risk analysis approaches Failu
