ISO 9001 – Auditors for years in the same
In Switzerland, companies conducting audits use the same auditors for years in the same companies/organisations. This practice is tolerated by The Swiss State Secretariat for Economic Affairs, SECO – The Government accreditation body.
In Switzerland, companies conducting audits use the same
auditors for years in the same companies. It is a win-win situation for the
certification company (for example same routine over years = less expenses) and
for the Company itself (same auditors = high fulfilment rate).
The Swiss State Secretariat for Economic Affairs, SECO – The
Government accreditation body – confirms, that only in EN 9104:2013 / EN 9100,
EN 9110 and EN 9120, certification companies are obliged under chapter 8.3.8 to
change auditors after 2 consecutively certification cycles.
For ISO 9001, there is no obligation to change an auditor
after he or she has conducted the audit in the same company or organisation
after 2 consecutively certification cycles.
The negative impact in terms of quality is obvious.
According to John F. Mascaro, ASQ Audit Division and Vice-Chair Technology, the ISO makes standards and does not get involved in the certification business.
However, according to his assessments, there should be a rotation of auditors because when the same auditor continually performs audits on the same auditee, the auditor will become overly familiar to the Management System that he/she audits and most likely, will not be able to add much value to the organization audited, or worse, act more like a “Consultant”. Too much familiarity between the auditor and auditee and their Management System may cause a less effective audit result.
Vladimir Simic – Quality Manager with over 40 years of
experience hints, that the ISO 17021-1:2015 and ISO TS 17021-2 up to 10 provide
enough basis for regulating these issues. If the assessment situation is
correct, if the auditors and the certification bodies, through their training,
ensure the achievement of the audit goals, and the goal changes in each audit
of the annual surveillance and recertifications, then the issue is not
essential to evaluate the validity and usefulness of certificates in the
It is the responsibility of the certification body to take
care of these ethical and coral elements of auditing and composition of the
audit teams. What the mentioned standards require and why they are not in
practice, should be addressed to the accreditation bodies and the policies of
the certification bodies themselves. In the end, the market knows who is who. If
a certified organisation only wants a certificate on the wall, not the real
improvements to their management systems with standard implementations which
are they basically used for, then they do not care who audits them and are more
likely to rejoice in the witness by the known auditor.