Quality Management Systems and ISO Standards — Study Notes
Quality Management Systems (QMS)
A Quality Management System is a collection of policies, procedures, plans, resources, processes, practices, and the specification of responsibilities and authority of an organization designed to achieve product and service quality levels, customer satisfaction and company objectives.
Purpose: to organize how an organization plans, directs, and controls its activities to meet quality requirements and drive continual improvement.
Key Components and Flow of a QMS
Core elements (from the transcript):
Customer Requirements
Quality Planning
Quality Assurance
Quality Control
Quality Improvement
Customer Satisfaction
Quality Management (as the overarching system)
Relationship outline:
Customer Requirements → Quality Planning → Quality Assurance → Quality Control → Quality Improvement → Customer Satisfaction
ISO 9001 and Quality Management Standards
Types of Quality Management Systems by sector:
All industries:
Automotive:
Medical devices:
Food:
Services:
IT:
Aerospace:
Note: There are sector-specific standards built around the generic ISO 9001 framework.
ISO 9001: Overview and Reach
is one of ISO’s most well-known standards.
It is implemented by more than a million organizations in about countries.
Purpose: helps organizations implement quality management.
Generic Standards and the 9001 Approach
Generic standards: ISO 9001 are intended to be applicable to any organization, regardless of size, product, service, sector, or ownership type (business, public administration, government).
Implication: ISO 9001 provides essential features for establishing a quality management system no matter the organization's scope of activity.
Quote-paraphrase from slides: ISO 9001 gives the essential features for establishing a quality management system irrespective of the organization’s scope.
Processes, Not Products
ISO 9001 focuses on how the organization goes about its work; it is a process standard, not a product standard or a service standard.
Applicability: Can be used by product manufacturers and service providers.
Important distinction: ISO 9001 requires management of processes that affect quality, not prescribing specific product specifications.
Certification, Accreditation, and Related Concepts
Certification (often called registration in some countries): an external body audits an organization’s management system and verifies conformity to the standard holder .
Important note: ISO does not carry out certification, issue certificates, accredit, approve, or control certification bodies.
Accreditation: a formal approval by a specialized body that a certification body is competent to carry out certification in specified business sectors. Certificates issued by accredited certification bodies may have increased market credibility.
ISO itself does not certify, accredit, approve, or control certification bodies.
Certification Is Not a Mandatory Requirement
Certification to is not required to obtain value from an ISO 9001 system.
An organization can implement the system for internal benefits without pursuing external certification.
Certification as a Business Decision
Certification decisions are driven by business considerations:
Contractual, regulatory, or market requirements
Alignment with customer preferences as part of risk management
Motivating staff by setting a clear goal
ISO 9000 Family and ISO 9001:2015
The ISO 9000 family: is the standard that gives the requirements for a quality management system.
It is the latest, improved version.
It is the only standard in the family that can be used for certification.
There are other standards in the family that help with specific aspects like performance improvement, auditing, training, etc.
Benefits of ISO 9001
International consensus on state-of-the-art practices for quality management.
Common language for dealing with customers and suppliers worldwide in B2B.
Increases efficiency and effectiveness.
Acts as a model for continual improvement.
More Benefits of ISO 9001 (Expanded)
Model for satisfying customers and other stakeholders.
Build quality into products and services from design onwards.
Address environmental concerns of customers and the public and comply with government regulations.
Integrates with the global economy.
Broader Benefits (Sustainability and Global Reach)
Sustainable business foundations.
Unifying base for industry sectors; qualify suppliers for global supply chains.
Technical support for regulations.
Global Reach and Development (ISO 9001)
Facilitates transfer of good practices to developing countries.
Tools for new economic players.
Supports regional integration and rise of services.
ISO 22000: Food Safety Management
Food safety management standard in the ISO 22000 family.
How ISO 22000 Helps the Food Industry
Contextual drivers include global demand for safety and compliance, consumer trust, and safety certification.
The slide mentions factors like increasing certification demand and the broader shift toward internationally recognized standards.
Drivers for International Food Standard Adoption (Why ISO 22000 matters)
Increased demand for voluntary international standards.
Globalization of trade in products and services.
Outsourcing and foreign investment.
Deregulation/privatization of public services.
Climate change and energy efficiency mandates.
Public demand for consumer safety, environmental protection, CSR.
Need for international solidarity to address global terrorism, pandemics, and natural disasters.
Pace of innovation and convergence of new technologies.
ISO 22000 Family: Structure and Related Standards
Four standards (as of the document):
– Food safety management system – Requirements
– Requirements for bodies providing audit and certification of food safety management systems
– Guidance on the application of ISO 22000
– Traceability in the feed and food chain
These form the core family for food safety management and related auditing/certification.
What Food Businesses Were Looking For (ISO 22000 Context)
Better planning, less post-process verification
More efficient and dynamic hazard control
Systematic management of prerequisite programs
Better documentation
Improved communication among trade partners
Resource optimization (internally and along food chains)
Potential of ISO 22000 for SMEs and Different Scales
ISO 22000 recognizes capacity differences across micro to very large businesses.
Two main options for SMEs:
Site-specific development
Externally-developed combination of control measures (HACCP-based programs)
Consistent with national or regional approaches (e.g., GAPs, industry programs).
Industry programs must demonstrate conformity with Section 7 of ISO 22000.
ISO 22000 in the Supply Chain (Example Diagram Concept)
Illustrates a supply chain from grain, farm, hatchery, feed mill, processing, distribution, to retailer and consumer.
Control measures can be organization-specific (red) or externally-developed ISO 22000 control measures (green).
ISO/TS 22003:2007 – Audit & Certification (Technical Specification)
Focus: food safety-specific requirements for certification bodies and audits.
Covers:
Accreditation requirements for Certification Bodies (based on ISO 17021:2006)
Qualifications & competencies of auditors, certification officers, technical experts, etc.
Certification process (commonly a two-stage audit)
Food business classifications
Minimum audit times
Multi-site audits
ISO 22005:2007 – Traceability
Sets out general principles and basic requirements for traceability system design and implementation.
Uses Codex definition of traceability.
Requires food/feed businesses to:
Set objectives for safety, quality, and other goals
Design a system that meets regulatory and customer requirements
Specify information to obtain from suppliers, collected within the organization, and provided to customers
Establish procedures and documentation
Implement the system (training, etc.)
Monitor the system
Review and update it regularly
Visual cue: New Era of Smarter Food Safety with tech-enabled traceability examples.
Updating the ISO 22000 Family
ISO standards are updated systematically.
Technical Committee (TC 34) has ongoing responsibility.
ISO 22000 Family Working Groups commit to review and update.
Additional mechanisms considered (e.g., interpretation guidance and audit-practice advice similar to ISO 9001 groups).
Key Points of the ISO 22000 Family
Strong management system requirements (aligned with ISO 9000 approach).
Innovates on Codex HACCP foundation.
Usable by the full supply chain (from input suppliers, farms, processors, transporters, to final marketers) and by all sizes (micro to global).
Integrates Food Safety and Traceability.
Emphasizes regulatory compliance and audit/certification.
Managed for the future.
Global Food Safety Initiative (GFSI)
GFSI originated in 2000 as a response to CEO-level focus on food safety.
Mission: drive continuous improvement in food safety to strengthen consumer confidence globally.
Managed by The Consumer Goods Forum.
Core idea: benchmark and harmonize food safety standards to reduce risk and foster trust.
GFSI objectives:
Reduce food safety risks
Manage costs
Develop competencies and capacity building
Knowledge exchange and networking
GFSI Benchmarking and Recognized Schemes
GFSI benchmarking leads to widely accepted schemes that are recognized globally.
The concept of certification that is widely accepted once certified: "Once certified, accepted everywhere" (as per the slide).
Recognized schemes include:
IFS
BRC Global Standards
SQF
GLOBALG.A.P.
GFSI-recognized schemes like Cargill, etc. (illustrative list in slides)
Other schemes often shown in the benchmarking landscape: HACCP-based systems, CANADA GAP, GMPs, IFS, GRMS, M&S System, Dutch HACCP, Irish HACCP, M&S, Aldi, Waitrose, Tesco, etc.
GFSI Guidance Document Objectives
Sets out requirements for food safety management schemes and key elements for production of food and feed.
Provides guidance to schemes seeking compliance with the GFSI Guidance Document and recognition by GFSI.
Defines requirements for effective management and control of conforming schemes.
Establishes transparent procedures for the GFSI benchmarking process.
Example and Reference Notes
The transcript includes an end slide labeled "Example" (no further content provided).
The material connects the ISO 9001 foundation to food safety management via ISO 22000 and the GFSI benchmarking framework, illustrating how quality and safety standards interlink across supply chains and regulatory contexts.
Summary Connections
ISO 9001 establishes generic, process-focused QMS applicable across industries, emphasizing continual improvement and customer satisfaction.
ISO 22000 extends a similar management-system approach to food safety, integrating HACCP-based principles, traceability (ISO 22005), supplier and regulator communication, and systematic planning/verification.
GFSI provides a benchmarked ecosystem where multiple schemes (IFS, BRC, SQF, GLOBALG.A.P., etc.) are recognized globally, enabling cross-recognition and streamlined supplier qualification across markets.
The combination of ISO 9001 (quality) and ISO 22000 (food safety) + GFSI benchmarking forms a comprehensive framework for managing quality and safety in modern, global supply chains.