QUALITY MANAGEMENT SYSTEM CERTIFICATION

A detailed description of the activities of the PROCEDO certification body is described in the Informative Guide.
This guide describes the process of initial certification, surveillance, recertification, suspension/renewal, reduction or extending of the scope and Restoration of a certificate, extraordinary audit, handling complaints and transferring a certificate.
PROCEDO provides audit and certification services as per

• ISO 13485: 2016 Medical devices — Quality management systems — Requirements for regulatory purposes

ISO 13485:2016 specifies requirements for a quality management system where an organisation needs to demonstrate its ability to provide medical devices and related services that consistently meet customer and applicable regulatory requirements. Such organisations can be involved in one or more stages of the life-cycle, including design and development, production, storage and distribution, installation, or servicing of a medical device and design and development or provision of associated activities (e.g. technical support). ISO 13485:2016 can also be used by suppliers or external parties that provide the product, including quality management system-related services to such organisations.

Requirements of ISO 13485:2016 apply to organisations regardless of their size and regardless of their type except where explicitly stated. Wherever requirements are specified as applying to medical devices, the requirements apply equally to associated services as supplied by the organisation.

In case you are interested, please fill in this form:

• ISO 9001: 2015 Quality Management Systems

This International Standard, ISO 9001, specifies requirements for a quality management system when an organisation:

  • needs to demonstrate its ability to consistently provide products and services that meet customer and applicable statutory and regulatory requirements, and
  • aims to enhance customer satisfaction through the effective application of the system, including processes for improvement of the system and the assurance of conformity to customer and applicable statutory and regulatory requirements

All the requirements of this International Standard are generic and are intended to be applied to any organisation, regardless of its type or size, or the products and services it provides.

In case you are interested, please fill in this form:

• ISO 14001: 2015 Environmental Management Systems

ISO 14001:2015 sets out the criteria for an environmental management system and can be certified to.

Using ISO 14001:2015 can assure company management and employees as well as external stakeholders that environmental impact is being measured and improved.

An effective ISO 14001 EMS implementation into the quality system helps:

  • reduced business costs through reducing resource consumption and waste production
  • improve environmental performance
  • reduce environmental impact and control the environmental risk
  • achieve environmental commitments and environmental policy requirements
  • meeting their environmental legal requirements
  • promote a positive image with stakeholders, customers and employees

In case you are interested, please fill in this form:

• ISO 45001: 2018 Occupational health and safety management systems — Requirements with guidance for use

ISO 45001:2018 specifies requirements for an occupational health and safety (OH&S) management system, and gives guidance for its use, to enable organizations to provide safe and healthy workplaces by preventing work-related injury and ill health, as well as by proactively improving its OH&S performance.

ISO 45001:2018 is applicable to any organization that wishes to establish, implement and maintain an OH&S management system to improve occupational health and safety, eliminate hazards and minimize OH&S risks (including system deficiencies), take advantage of OH&S opportunities, and address OH&S management system nonconformities associated with its activities.

ISO 45001:2018 helps an organization to achieve the intended outcomes of its OH&S management system. Consistent with the organization's OH&S policy, the intended outcomes of an OH&S management system include:

  • continual improvement of OH&S performance
  • fulfilment of legal requirements and other requirements
  • achievement of OH&S objectives

In case you are interested, please fill in this form:

• ISO/IEC 27001: 2013 Information technology -- Security techniques -- Information security management systems – Requirements
• ISO/IEC 27001: 2022 Information technology -- Security techniques -- Information security management systems – Requirements

ISO/IEC 27001 is the world's best-known standard for information security management systems (ISMS). It defines requirements an ISMS must meet.

The ISO/IEC 27001 standard provides companies of any size and from all sectors of activity with guidance for establishing, implementing, maintaining and continually improving an information security management system.

Conformity with ISO/IEC 27001 means that an organization or business has put in place a system to manage risks related to the security of data owned or handled by the company, and that this system respects all the best practices and principles enshrined in this International Standard.

Why is ISO/IEC 27001 important?

With cyber-crime on the rise and new threats constantly emerging, it can seem difficult or even impossible to manage cyber-risks. ISO/IEC 27001 helps organizations become risk-aware and proactively identify and address weaknesses.

ISO/IEC 27001 promotes a holistic approach to information security: vetting people, policies and technology. An information security management system implemented according to this standard is a tool for risk management, cyber-resilience and operational excellence.

In case you are interested, please fill in this form:

• ISO 22000: 2018 Food safety management systems — Requirements for any organization in the food chain

ISO 22000:2018, Food safety management systems – Requirements for any organisation in the food chain, sets out the requirements for a food safety management system. It defines what an organisation must do to demonstrate its ability to control food safety hazards and ensure that food is safe for consumption.

ISO 22000 enables organisations to put in place a food safety management system that helps them improve their overall performance when it comes to food safety.

Potential benefits of using the standard include:

  • the ability to consistently provide food-related products and services that are safe and meet regulatory requirements
  • improved management of risks in food safety processes
  • demonstrating strong links to the United Nations’ Codex Alimentarius, which develops food safety guidelines for governments

In case you are interested, please fill in this form:

• ISO 21001: 2018 Educational organizations — Management systems for educational organizations — Requirements with guidance for use

ISO 21001:2018 specifies requirements for a management system for educational organizations (EOMS) when such an organization:

  • needs to demonstrate its ability to support the acquisition and development of competence through teaching, learning or research
  • aims to enhance satisfaction of learners, other beneficiaries and staff through the effective application of its EOMS, including processes for improvement of the system and assurance of conformity to the requirements of learners and other beneficiaries

All requirements of ISO 21001:2018 are generic and intended to be applicable to any organization that uses a curriculum to support the development of competence through teaching, learning or research, regardless of the type, size or method of delivery.

ISO 21001:2018 can be applied to educational organizations within larger organizations whose core business is not education, such as professional training departments.

ISO 21001:2018 does not apply to organizations that only produce or manufacture educational products.

In case you are interested, please fill in this form:

• ISO 50001: 2018 Energy management systems — Requirements with guidance

ISO 50001 specifies requirements for establishing, implementing, maintaining and improving an energy management system (EnMS). The intended outcome is to enable an organisation to follow a systematic approach in achieving continual improvement of energy performance and the EnMS.

ISO 50001:

  • is applicable to any organisation regardless of its type, size, complexity, geographical location, organisational culture or the products and services it provides
  • is applicable to activities affecting energy performance that are managed and controlled by the organisation
  • is applicable irrespective of the quantity, use, or types of energy consumed
  • requires demonstration of continual energy performance improvement, but does not define levels of energy performance improvement to be achieved
  • can be used independently, or be aligned or integrated with other management systems

Annex A of the standard ISO 50001 – guides how to use this document.

Annex B of the standard ISO 50001 provides a comparison between this edition (ISO 50001:2018) and the previous edition (ISO 50001:2011).

In case you are interested, please fill in this form:

• ISO 37001: 2016 Anti-Bribery Management Systems – Requirements with guidance for use.

ISO 37001:2016 specifies requirements and provides guidance for establishing, implementing, maintaining, reviewing and improving an anti-bribery management system. The system can be stand-alone or can be integrated into an overall management system. ISO 37001:2016 addresses the following in relation to the organization's activities:

  • bribery in the public, private and not-for-profit sectors
  • bribery by the organization
  • bribery by the organization's personnel acting on the organization's behalf or for its benefit
  • bribery by the organization's business associates acting on the organization's behalf or for its benefit
  • bribery of the organization
  • bribery of the organization's personnel in relation to the organization's activities
  • bribery of the organization's business associates in relation to the organization's activities
  • direct and indirect bribery (e.g. a bribe offered or accepted through or by a third party)

ISO 37001:2016 is applicable only to bribery. It sets out requirements and provides guidance for a management system designed to help an organization to prevent, detect and respond to bribery and comply with anti-bribery laws and voluntary commitments applicable to its activities.

ISO 37001:2016 does not specifically address fraud, cartels and other anti-trust/competition offences, money-laundering or other activities related to corrupt practices, although an organization can choose to extend the scope of the management system to include such activities.

In case you are interested, please fill in this form:

• ISO 22301:2019 Security and resilience — Business continuity management systems — Requirements

This document specifies requirements to implement, maintain and improve a management system to protect against, reduce the likelihood of the occurrence of, prepare for, respond to and recover from disruptions when they arise.

The requirements specified in this document are generic and intended to be applicable to all organizations, or parts thereof, regardless of type, size and nature of the organization. The extent of application of these requirements depends on the organization's operating environment and complexity.

This document is applicable to all types and sizes of organizations that:
a) implement, maintain and improve a BCMS;
b) seek to ensure conformity with stated business continuity policy;
c) need to be able to continue to deliver products and services at an acceptable predefined capacity during a disruption;
d) seek to enhance their resilience through the effective application of the BCMS.

This document can be used to assess an organization's ability to meet its own business continuity needs and obligations.

In case you are interested, please fill in this form:

• ISO 41001:2018 Facility management — Management systems — Requirements with guidance for use

ISO 41001:2018 specifies the requirements for a facility management (FM) system when an organization:
a) needs to demonstrate effective and efficient delivery of FM that supports the objectives of the demand organization;
b) aims to consistently meet the needs of interested parties and applicable requirements;
c) aims to be sustainable in a globally-competitive environment.

The requirements specified in ISO 41001:2018 are non-sector specific and intended to be applicable to all organizations, or parts thereof, whether public or private sector, and regardless of the type, size and nature of the organization or geographical location.

Annex A provides additional guidance on the use of this document.

In case you are interested, please fill in this form: