What Is ISO 9000 Registration?

What Is ISO 9000 Registration?

Registration is documented and objective evidence that an organization’s quality system meets the requirements of ISO 9000. Certification is a term often used interchangeably with registration. In the context of ISO 9000, they mean the same thing. Registration is the technically correct term for verification of compliance to standards of quality systems. Certification usually applies to verification of the quality of products (as opposed to quality systems).

Registration is carried out by independent companies called registrars. These companies are:

_ Wholly independent.

_ Accredited by a recognized international accreditation body.

_ Selected, and paid, by you.

Registration can cover:

_ The sole location of a single-location organization.

_ Multiple locations of a multilocation organization.

_ Only certain parts of a multilocation organization (under certain conditions).

_ Separate locations under separate certificates. (This is a more costly approach.)

The registration body audits your quality system against the requirements of ISO 9000. It reports its findings in writing. These findings may (and usually do) include noncompliances. Major noncompliances must be closed out prior to official registration.

When this has been done, the registration body:

Lists the organization’s name in its book of registered companies— in effect, registers the organization in its book.

Issues a certificate to the registered organization. This registration includes:

— Identity of the organization.

— Location(s) covered by the registration.

— A list of products/services supplied by the registered locations.

— Revision date of the Standard.

— Registration effective dates.

— Name and location of registrar.

Most registrars limit registrations to three years. After that, you must renew your registration by undergoing another complete systems audit. Some registrars do not use the renewal approach. They simply keep checking the system via surveillance audits. Whichever the scheme, the organization, to keep registration, must undergo a surveillance assessment every so often. Six months is the typical interval. Some registrars offer annual surveillance schemes (not recommended except for firms with exceptionally well-implemented quality management systems). Surveillance assessments are scheduled events (there is no such thing as a “surprise” surveillance audit). Only part of the quality system is checked at each surveillance. Usually, the registrar does not disclose what part will be assessed until the day of the assessment, although some registrars will tell you everything up front.

The entire quality system is usually checked via surveillance audits over the course of three years. There is no way to “fail” a surveillance assessment, just as there is no way to “fail” a registration audit except by refusing to implement corrective action required by the registrar. Normally, registrars allow adequate time, but corrective actions must be done in a timely and agreed upon manner to keep registration.

One final note: As mentioned, each registrar publishes a list of the firms it has registered to ISO 9000. A comprehensive list of ISO 9000 registered firms is available from Irwin Professional Publishing (703-591-9008).

Why do organizations implement ISO 9000 systems?

Why do organizations implement ISO 9000 systems?

More often than not, organizations get ISO 9000 because certain customers force them or encourage them to. In many market sectors—electronics, pulp and paper, telecommunications, automobile manufacturing, defense—major customers have mandated ISO 9000 registration to their key suppliers. Similarly, some overseas regulatory bodies mandate ISO 9000 for the makers of qualitysensitive products (such as medical devices).

Many of these major customers impose ISO 9000 systems in place of, or in addition to, specific quality programs, requirements, specifications, and so on that have been in place for many years. The ISO 9000Standard becomes a key part of the relationship between the customer and its suppliers.

ISO 9000 is not, however, meant to replace customer-specific requirements in any market segment. Rather, ISO 9000 is meant to be a floor: a basic set of generic requirements. They are generic enough to apply to virtually all supplier/customer relationships anywhere in the world. It matters not the size of the supplier, the location of the customer, or the nationalities involved.

In some industrial segments, formalized standards have been created, adding to the generic ISO 9000requirements additional clauses that are industry specific. Examples include:

_ Automotive (QS-9000).

_ Aerospace (AS-9000).

_ Telecommunications (TL-9000).

To the extent that ISO 9000 replaces customer-specific quality programs and supporting audit/oversight activities, it can relieve both customers and suppliers of a great deal of redundancy, duplication, and waste of resources. The fundamental requirements are understood, agreed to, and (usually) confirmed by objective third-party audit. This gives customers confidence in the integrity and effectiveness of their supplier’s basic quality practices. The customer and supplier can then invest their energies and resources in agreeing to and working on the specific requirements unique to their relationship.

To some, ISO 9000 sounds like a mandatory, gun-to-your-head, my-way-or-the-highway program. For many suppliers, it is exactly that (“get ISO 9000 or get lost”). For many others, it is perceived that way:

“They’re trying to tell us how to run our businesses.”

But the goal of ISO 9000 is not to strengthen customers’ control over how their suppliers run their businesses. The goal is to give customers confidence in the ability of suppliers to meet their needs, resulting in satisfied customers, and growing and prosperous suppliers.

Admittedly, implementing ISO 9000 does not guarantee this. Like most things, what you get out of it depends on what you put into it. You can implement a compliant ISO 9000 system that is all cost and no benefit and it’s even possible to pass registration audit this way. This happens, usually, when the supplier’s approach is to try to:

_ Squeak by.

_ Do just enough to get registered.

_ Get this thing done without changing how we work.

But suppliers who implement ISO 9000 fully—to the spirit, as well as the letter—can and do achieve real benefits.