Decreased Operational Costs
International Business Recognition
Increased in overall Revenue
Improved Customer Acquisition
Government Tender Eligibility
Improved Resource Management
Help Protect your Business Brand
Reduced Business Risks
No doubt the price is the main criteria and you should ask a couple of certification bodies for their proposals and think over it what to do what not to do. However, the price is not the only thing that we should look for but we should consider other things also:
A wise decision must be taken in selecting the right organization to carry out your ISO certification. Always choose an accreditation body that is a signatory to the IAF Multilateral Recognition Arrangement (MLA) that would be proved the best practice. It will be competent to deliver a consistently reliable and impartial service which meets the appropriate, internationally-recognized standard. To find an accredited certification body in our country, contact the National Board of Accreditation (NBA), India.Benefits of choosing an accredited ISO certification bodies
Following are the benefits of choosing an accredited ISO certification body:
The very first step is to choose the kind of certification the organization wants.
Once the entrepreneur selects the ISO standard; it shall make an application in a respective form based on the ISO registrar. The application shall include the power and responsibilities of the entrepreneur and certification body and includes liability issues, confidentiality, and access rights.
Application shall be filed along with the requisite documents and the same shall be reviewed by the ISO certification body. ISO Certification body will review all the quality manuals and documents related to various policies being followed in the organization.
The ISO certification body will review all the quality manuals and documents related to various policies and procedures being followed in the organization. Review of existing works will help the ISO registrar to identify the possible gaps against the requirements stipulated in the ISO standards.
The Pre-assessment is an initial review of the Quality Management System in an organization to identify any significant weakness or omissions in the system and registrar will provide the organization with an opportunity to correct the deficiencies before the regular registration assessment is conducted..
To identify any significant weakness in the Organization, the Pre-assessment (Initial review) of the Quality Management System in an organization is reviewed by the registrar and will also provide an opportunity to correct the deficiencies before the regular registration assessment is conducted.
Once the initial review of the Quality management system is reviewed, the ISO registrar notifies the existing gaps in the organization, and to eliminate these gaps the applicant has to prepare an action plan. The action plan should contain the list of the requisite work to be performed to meet the Quality Management System.
Note: The entrepreneur may need giving training to employees to work efficiently to achieve quality management system. Make all the employees in the organization to aware of the ISO standards concerning work efficiency and quality standards.
The registrar will conduct a non-premises inspection to audit the changes made in the organization. However, if the registrar finds that the requisite changes do not meet the requirements of the ISO standards, the registrar will categorize the organization into two categories depending on severity.
Note-The ISO registration cannot precede until all significant non-compliances are closed by the Registrar while doing a re-audit.
The registration cannot proceed until all significant nonconformities are closed and verified by the Registrar. This usually involves a re-audit of the affected areas and, of course, the associated costs.
Note: Minor nonconformities require a corrective action plan and that will be closed at the first surveillance.
The registrar will issue the ISO certification when all the non conformities are resolved and are updated in the ISO audit report.
Surveillance audit will be conducted primarily to ensure that the organization is maintaining ISO quality standards. It will be performed from time to time.
|Develop your management system||
|Implement your system||
|Verify that your system is effective||
|Register your system||
|Industry||ISO 9001||ISO 27001||ISO 14001||ISO 45001||ISO 22000|
|Manufacturing / Fabrication||Yes||Yes||Yes|
|Construction / Architecture||Yes||Yes||Yes|
|Banks / Financial Institutes||Yes||Yes||Yes|
|Import & Export Businesses||Yes|
|Mining, Petroleum, Oil & Gas||Yes||Yes||Yes||Yes|
|Staffing / HR Solutions||Yes||Yes|
|Travelling, Cargo, Shipment & Supply Chain||Yes|
|Automotive (Service & Manufacturing)||Yes||Yes||Yes|
|Power & Energy||Yes||Yes||Yes|
|Restaurants / Caterers / Hotels||Yes||Yes||Yes|
|Security Guard Agencies||Yes|
|Interior Design Companies||Yes|
|Hazardous Waste Handling||Yes||Yes||Yes|
|Schools or Educational Institutes||Yes|
|Colleges or Educational Institutes||Yes|
|Training Institutes (Non-Formal)||Yes|
|Spas & Salons||Yes|
|Gyms & Sports Center||Yes|
|Skin, Dental & Eye Clinics||Yes|
|Fitness & Slimming Clinics||Yes|
|Textile & Apparel||Yes||Yes|
|News & Media||Yes|
|Gems & Jewelry||Yes|
|Renewable Energy (Solar & Other)||Yes||Yes|
|Science & technology||Yes||Yes|
The Document Review and Pre-assessment typically require 2-4 weeks each. However, the number of registrars and the number of days for each stage of the registration audit depends on the size and complexity of your organization. To help the ISO Registration Process go smoother, set target dates accordingly to allow both you and the registrar time to fully prepare. It is to be noted that, registration and the entire audit process should provide you with valuable feedback to improve your system.
The entire process of documentation is divided into four different levels:
The overall ISO Implementation Process may take a minimum of 45 days to 150 days based on the nature and size of the Organization. The Timeline shown below is just for indication to give you a pictorial imagination of the ISO Implementation Process. Actual Actions may vary based on the Business Factors and Requirements.
Our ISO Implementation approach is based on the System and processes of your organization. Decisions are made based on facts and not by opinions of any kind, this brings consistency and confidence in the operation of your business. A systemized approach to solving problems enables to prevent the occurrences of problems in the future.
|1||ISO 9001:2015 (Quality Management Systems)|| ISO 9001:2015 sets the criteria for Quality Management Systems (QMS), although this is not necessary. Any company can get registered under this, despite its size (large or small) or field of activity.
This certificate is issued to any organization that can demonstrate its ability to control food safety hazards to ensure that food is safe. Any organization can get this certificate regardless of its size or position in the food chain.
|2||ISO 14001-2015 (Environmental management systems)||This certificate is allotted to any organization irrespective of the size, type, and nature and applies to the environmental aspects of the activities, products, or services that an organization determines it can either control or influence considering the life cycle perspective||AIAO-BAR|
|3||ISO 45001:2018 (Occupational Health and Safety Management System)||This certificate specifies the requirements of any occupational health and safety management system, which gives guidance for its use. This enables organizations to provide safe and healthy workplaces and prevent work-related injuries and ill-health.||AIAO-BAR|
|4||ISO 22000:2005 (Food Safety Management)||Certificate demonstrates its ability to control food safety hazards to ensure that food is safe. It can be used by any organization regardless of its size or position in the food chain||AIAO-BAR|
|5||ISO 29990:2010 (Learning services for non-formal education and training)||This ISO standard provides a generic model for quality professional practice & performance. It also provides a common reference for Learning Service Providers (LSPs) and the clients in the development, design, and delivery of non-formal education, training, and development.||AIAO-BAR|
|6||ISO 15001:2010 (Anesthetic and respiratory equipment)||This certificate specifies the requirements for the oxygen compatibility of materials, components, and devices for anesthetic and respiratory applications, which can come into contact with oxygen in normal conditions or single fault conditions at gas pressure greater than 50kPa.||AIAO-BAR|
|7||ISO 50001:2011/15 (Energy Management System)||This type of ISO certificate specifies requirements for establishing, implementing, maintaining and improving an energy management system. The purpose of this is to follow a systematic approach in achieving continual improvement of energy performance, including energy efficiency, energy use, and consumption.||AIAO-BAR|
|8||ISO 16732-1:2012 (Fire Safety Engineering)||It provides the conceptual basis for fire risk assessment by stating the principles underlying the interpretation and quantification of fire-related risk. As these fire risk principles apply to all fire-related phenomena and all end-use configurations, so this would mean that these principles can be applied to all types of fire scenarios||AIAO-BAR|
|9||HACCP (Hazard Analysis Critical Control Point)||Hazard Analysis and Critical Control Point or HACCP is a food industry standard. It is a systematic food safety program that was developed by the food industry that examines every step in a food processing operation. Like identifying a specific hazard, implementing effective control measures, and monitoring procedures.||AIAO-BAR|
|10||ISO 27001:2013 (Information security management systems)||This ISO standard specifies the necessary requirements for establishing, implementing, maintaining, and continually improving an information security management system. In addition to this, it also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization.||AIAO-BAR|
|11||ISO 20000-1:2016 (Information technology)||The ISO/IEC 20000-1:2016 certification is one such standard certification that helps in the implementation of an efficient Standard Quality Management System (SQMS) in the IT companies. Thi is certification is internationally acclaimed and most of the IT companies used this to enhance the quality of services that they deliver to the clients. The ISO/IEC 20000-1:2016 certificate is mandatory for the companies that are involved in the IT sector and provide different services to the clients. Attaining this certificate helps them in easy monitoring and improvement of service quality.||AIAO-BAR|
|12||ISO 13485:2016 (Medical devices QMS)||This is a type of certificate that specifies requirements for QMS where an organization needs to demonstrate its ability to provide medical devices and related services that consistently meet customer and applicable regulatory requirements.||AIAO-BAR|
|13||ISO 16949:2009 (QMS for automotive production and relevant service part)||This ISO certificate defines the quality management system requirements for design and development, production, and relevant installation and services of automotive-related products.||AIAO-BAR|
|14||ISO 20121:2012 (Event Sustainability Management System)||This certificate specifies requirements for an event sustainability management system for any event type or related activity. And thus it guides on conforming to those requirements.||AIAO-BAR|
|15||ISO 19011:2011 (Guidelines for Auditing Management System)||This type of standard applies to every organization that needs to conduct internal or external audits of management systems or manage an audit program.||AIAO-BAR|
|16||ISO 4217:2015 (Codes for representation of currencies)||This type of standard specifies the structure for a 3-letter alphabetic code and an equivalent 3-digit numeric code for the representation of currencies. For any of the minor currencies, it shows the decimal relationship between such units and the currency itself.||AIAO-BAR|
|17||ISO 10012:2003 (Measurement Management System)||This type of standard specifies certain quality management requirements of a measurement management system that can be used by an organization performing measurements as a part of the overall management system. This is also to ensure all metrological requirements are met.||AIAO-BAR|
|18||ISO 31000:2018 (Risk Management)||This standard provides certain guidelines on managing risk by organizations. These guidelines can be customized to any organization and its context. In addition to this, these can also be used throughout the life of the organization and in any activity as well (including decision-making at all levels)||AIAO-BAR|
|19||CE Mark (Certification Mark)||In case one finds a CE mark on any product/packaging of the product, then this would mean that the product has met all the requirements of the harmonized European standard. This mark indicates that the product has met with the essential health and safety requirements of all directives that apply to the product. The European Commission, handling the administration of the program, describes that the CE mark is used to freely trade a product in the internal European market. If any product is to be sold in the European community, this mark is necessary.||AIAO-BAR|
|20||GMP 22716 (Goods Manufacturing Practices)||Guidelines are given for the production, control, storage, and shipment of cosmetic products. The guidelines provided cover the quality aspects of the product. But they do not cover safety aspects for the personnel engaged in the plant nor do they cover aspects of protection of the environment||AIAO-BAR|
|21||HALAL||Halal is a Quranic term that means ‘permitted’ or ‘lawful’. When this term is used to any food or consumables, then it would mean any item which is permissible for consumption and is used by Muslims based on Islamic law. According to this law, it is a responsibility of a Muslim to make sure that the food consumed or any business performed is not detrimental to their health or well-being. Halal mark is the new benchmark for quality. Halal trade specifies the trade of certified quality products that meets the rigorous internationally accepted standard in production and hygiene.||AIAO-BAR|
|22||ISO 3834-2:2005||This standard specifies comprehensive quality requirements of fusion welding of metallic elements either in shops or at field installation sites.||AIAO-BAR|
An organization undergoes many changes during and after certification to fill all the identified gaps in its journey of quality management. Once an organization has made a commitment to get ISO certified, it requires a huge investment in terms of time, effort, cost and change. Dedicated personnel must be identified, trained and deployed to manage this certification process. A baseline status is established and analyzed for gaps against the specifications of ISO 9001 QMS. Addressing these identified gaps may require adding new personnel, processes, documents and new quality controls. Organizations often employ Plan Do Check Act (PDCA) cycle to address gaps and improve the current state to reach the desired goal.Internal audit
Organizations then perform an internal audit. It is intended to mimic an external audit and review the developed system to check if it meets ISO 9001 requirements. Established processes are checked to ensure that they comply with the quality manual the organization has put in place. For any gaps found during the internal audit, defined processes as per the quality manual must be followed to close the gaps. This approach puts the Quality Management System QMS into practice even before certification. It should be noted that implementing a QMS must enable an organization to continuously improve than merely satisfying certification requirements.
Once an organization is awarded an ISO certification, it is valid for 3-years. A QMS established for certification must be maintained on a regular basis to stay compliant and achieve intended objectives. QMS must be maintained for both continuous improvement and for recertification. Also, the certifying authority or registrar must conduct periodic checks within 3 years of time to ensure that the system is being maintained and is rooted in the processes and procedures of the organization. Quality management is a continuous journey and not an end state. For certified companies, continuously improving and maintaining compliance and getting recertified is a more difficult journey than the first-time certification. But, this can be simplified by managing changes to documents and processes efficiently using an Enterprise QMS. ISO 9001 certification renewal has to be done once a year and for the renewal, the authorities conduct a surveillance audit to ensure adherence to all the standardsReasons for losing certified status
For an organization that is fully committed to follow its QMS and continuous improvement, recertification will become a natural process step. However, many companies fail in maintaining ISO 9001 certification requirements and eventually lose the certified status during their next certification cycle. Typical reasons for such failure can be broadly categorized into: commitment, competence, complexity and change management, statuses of all of which can get altered from the state before.
When a senior management of a company embarks on an ISO journey for reputation alone, quality management and continuous improvement are hard to accomplish. Processes don’t get followed effectively and quality management remains on paper. Personnel who are managing ISO requirements, who fail to maintain a quality management system, will fail in enforcing continuous improvement. Assigning responsibility of quality management system to external contractors alone and not having efficient internal oversight will also result in a failure of the system. Competence in the personnel responsible for maintaining a QMS is an absolute requirement and needs to be planned and implemented through regular training programs. Some organizations make QMS too complex to adopt. This typically happens when several different systems are put in place and understanding the system relationships is hard for the employees who use them. This can be easily avoided by engaging Enterprise QMS software that integrates all quality management activities into a single platform. Lastly, but undeniably, most critically, one of the reasons for a QMS failure is inability to handle change management issues. After a quality management system is certified, an organization may encounter several changes in its documents, processes, tools used and procedures to be followed. These changes often arise due to changes in the business’s functions, management team, systems and markets. Any of these changes, if not handled in a planned manner, may disrupt the original quality management system that the organization has put in place. This will lead to quality management activities that are not per the defined quality manual. In fact, handling a change in a planned manner is an explicitly stated requirement in the ISO 9001 specifications.
|S.No.||Standard and/or Project Under The Direct Responsibility of ISO/CASCO Secretariat||Description|
|1||ISO/IEC GUIDE 23:1982||Methods of indicating conformity with standards for third-party certification systems|
|2||ISO GUIDE 27:1983||Guidelines for corrective action to be taken by a certification body in the event of misuse of its mark of conformity|
|3||ISO/IEC GUIDE 60:2004||Conformity assessment — Code of good practice|
|4||ISO/IEC GUIDE 68:2002||Arrangements for the recognition and acceptance of conformity assessment results|
|5||ISO/IEC 17000:2020||Conformity assessment — Vocabulary and general principles|
|6||ISO/IEC 17007:2009||Conformity assessment — Guidance for drafting normative documents suitable for use for conformity assessment|
|7||ISO/IEC 17011:2017||Conformity assessment — Requirements for accreditation bodies accrediting conformity assessment bodies|
|8||ISO/IEC 17020:2012||Conformity assessment — Requirements for the operation of various types of bodies performing inspection|
|9||ISO/IEC 17021-1:2015||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 1: Requirements|
|10||ISO/IEC 17021-2:2016||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 2: Competence requirements for auditing and certification of environmental management systems|
|11||ISO/IEC 17021-3:2017||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 3: Competence requirements for auditing and certification of quality management systems|
|12||ISO/IEC TS 17021-4:2013||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 4: Competence requirements for auditing and certification of event sustainability management systems|
|13||ISO/IEC TS 17021-5:2014||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 5: Competence requirements for auditing and certification of asset management systems|
|14||ISO/IEC TS 17021-6:2014||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 6: Competence requirements for auditing and certification of business continuity management systems|
|15||ISO/IEC TS 17021-7:2014||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 7: Competence requirements for auditing and certification of road traffic safety management systems|
|16||ISO/IEC TS 17021-8:2019||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 8: Competence requirements for auditing and certification of management systems for sustainable development in communities|
|17||ISO/IEC TS 17021-9:2016||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 9: Competence requirements for auditing and certification of anti-bribery management systems|
|18||ISO/IEC TS 17021-10:2018||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 10: Competence requirements for auditing and certification of occupational health and safety management systems|
|19||ISO/IEC TS 17021-11:2018||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 11: Competence requirements for auditing and certification of facility management (FM) management systems|
|20||ISO/IEC TS 17021-12:2020||Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 12: Competence requirements for auditing and certification of collaborative business relationship management systems|
|21||ISO/IEC TS 17023:2013||Conformity assessment — Guidelines for determining the duration of management system certification audits|
|22||ISO/IEC 17024:2012||Conformity assessment — General requirements for bodies operating certification of persons|
|23||ISO/IEC 17025:2017||General requirements for the competence of testing and calibration laboratories|
|24||ISO/IEC TR 17026:2015||Conformity assessment — Example of a certification scheme for tangible products|
|25||ISO/IEC TS 17027:2014||Conformity assessment — Vocabulary related to competence of persons used for certification of persons|
|26||ISO/IEC TR 17028:2017||Conformity assessment — Guidelines and examples of a certification scheme for services|
|27||ISO/IEC 17029:2019||Conformity assessment — General principles and requirements for validation and verification bodies|
|28||ISO/IEC 17030:2003||Conformity assessment — General requirements for third-party marks of conformity|
|29||ISO/IEC TR 17032:2019||Conformity assessment — Guidelines and examples of a scheme for the certification of processes|
|30||ISO/TS 17033:2019||Ethical claims and supporting information — Principles and requirements|
|31||ISO 17034:2016||General requirements for the competence of reference material producers|
|32||ISO/IEC 17040:2005||Conformity assessment — General requirements for peer assessment of conformity assessment bodies and accreditation bodies|
|33||ISO/IEC 17043:2010||Conformity assessment — General requirements for proficiency testing|
|34||ISO/IEC 17050-1:2004||Conformity assessment — Supplier's declaration of conformity — Part 1: General requirements|
|35||ISO/IEC 17050-2:2004||Conformity assessment — Supplier's declaration of conformity — Part 2: Supporting documentation|
|36||ISO/IEC 17065:2012||Conformity assessment — Requirements for bodies certifying products, processes and services|
|37||ISO/IEC 17067:2013||Conformity assessment — Fundamentals of product certification and guidelines for product certification schemes|
The National Accreditation Board for Certification Bodies (NABCB) provides accreditation to Certification, Inspection, and Validation & Verification Bodies based on assessment of their competence as per the Board's accreditation criteria and in accordance with International Standards and Requirements. NABCB is a full member of International Accreditation Forum (IAF), International Laboratory Accreditation Cooperation (ILAC) and Asia Pacific Accreditation Cooperation (APAC), as well as signatory to its MLAs / MRAs. NABCB is also MRA signatory of Asia Pacific Accreditation Cooperation (APAC) for Occupational Health Safety Management Systems.
The Objectives of NABCB are:
Thus BIS (Bureau of Indian Standards) represents India in ISO. NABCB (National Accreditation Board for Certification Bodies) is one of the accredited certification bodies in India which uses CASCO standard.
ISO or The International Organization for Standardization is a non-governmental International federation of national standards with about One hundred and sixty-two Countries as its member. They provide International standards so as to generate products and services for high quality, safety, and efficiency. International standards are basically documents which provide certain specifications, guidelines or characteristics which help check the consistency of your product or services. There are more than One thousand nine hundred International Standards (which are updated as per the requirements) published by ISO. Few of the popular Standards are ISO 9000 (Quality management), ISO 22000 (Food Safety management), ISO 1400 (Environmental Management), ISO 26000 (Social responsibility), ISO 4217 (Currency codes), ISO 27001 (Information security) and so on. As an Entrepreneur, ISO 9000 (eligible for every sector) which includes ISO 9001:2015 is of our prime concern.
There isn’t any difference between accreditation bodies; all of them provide ISO standards certifications. The only difference you can mark is of market recognition, branding, and their prices
ISO 9001 is not mandatory to have, but it may be a client-imposed mandatory requirement. For example, you may need to have ISO 9001 certification to be eligible for tenders and work