What Is ISO 9000 Registration?
Registration is documented and objective evidence that an organization’s quality system meets the requirements of ISO 9000. Certification is a term often used interchangeably with registration. In the context of ISO 9000, they mean the same thing. Registration is the technically correct term for verification of compliance to standards of quality systems. Certification usually applies to verification of the quality of products (as opposed to quality systems).
Registration is carried out by independent companies called registrars. These companies are:
_ Wholly independent.
_ Accredited by a recognized international accreditation body.
_ Selected, and paid, by you.
Registration can cover:
_ The sole location of a single-location organization.
_ Multiple locations of a multilocation organization.
_ Only certain parts of a multilocation organization (under certain conditions).
_ Separate locations under separate certificates. (This is a more costly approach.)
The registration body audits your quality system against the requirements of ISO 9000. It reports its findings in writing. These findings may (and usually do) include noncompliances. Major noncompliances must be closed out prior to official registration.
When this has been done, the registration body:
Lists the organization’s name in its book of registered companies— in effect, registers the organization in its book.
Issues a certificate to the registered organization. This registration includes:
— Identity of the organization.
— Location(s) covered by the registration.
— A list of products/services supplied by the registered locations.
— Revision date of the Standard.
— Registration effective dates.
— Name and location of registrar.
Most registrars limit registrations to three years. After that, you must renew your registration by undergoing another complete systems audit. Some registrars do not use the renewal approach. They simply keep checking the system via surveillance audits. Whichever the scheme, the organization, to keep registration, must undergo a surveillance assessment every so often. Six months is the typical interval. Some registrars offer annual surveillance schemes (not recommended except for firms with exceptionally well-implemented quality management systems). Surveillance assessments are scheduled events (there is no such thing as a “surprise” surveillance audit). Only part of the quality system is checked at each surveillance. Usually, the registrar does not disclose what part will be assessed until the day of the assessment, although some registrars will tell you everything up front.
The entire quality system is usually checked via surveillance audits over the course of three years. There is no way to “fail” a surveillance assessment, just as there is no way to “fail” a registration audit except by refusing to implement corrective action required by the registrar. Normally, registrars allow adequate time, but corrective actions must be done in a timely and agreed upon manner to keep registration.
One final note: As mentioned, each registrar publishes a list of the firms it has registered to ISO 9000. A comprehensive list of ISO 9000 registered firms is available from Irwin Professional Publishing (703-591-9008).