ISO 9001 – Auditors for years in the same Company
In Switzerland, companies conducting audits use the same auditors for years in the same companies/organisations. This practice is tolerated by The Swiss State Secretariat for Economic Affairs, SECO – The Government accreditation body.
In Switzerland, companies conducting audits use the same auditors for years in the same companies. It is a win-win situation for the certification company (for example same routine over years = less expenses) and for the Company itself (same auditors = high fulfilment rate).
The Swiss State Secretariat for Economic Affairs, SECO – The Government accreditation body – confirms, that only in EN 9104:2013 / EN 9100, EN 9110 and EN 9120, certification companies are obliged under chapter 8.3.8 to change auditors after 2 consecutively certification cycles.
For ISO 9001, there is no obligation to change an auditor after he or she has conducted the audit in the same company or organisation after 2 consecutively certification cycles.
The negative impact in terms of quality is obvious.
According to John F. Mascaro, ASQ Audit Division and Vice-Chair of Technology, the ISO makes standards and does not get involved in the certification business.
However, according to his assessments, there should be a rotation of auditors because when the same auditor continually performs audits on the same auditee, the auditor will become overly familiar to the Management System that he/she audits and most likely, will not be able to add much value to the organization audited, or worse, act more like a “Consultant”. Too much familiarity between the auditor and auditee and their Management System may cause a less effective audit result.
Vladimir Simic – Quality Manager with over 40 years of experience hints, that the ISO 17021-1:2015 and ISO TS 17021-2 up to 10 provide enough basis for regulating these issues. If the assessment situation is correct, if the auditors and the certification bodies, through their training, ensure the achievement of the audit goals, and the goal changes in each audit of the annual surveillance and recertifications, then the issue is not essential to evaluate the validity and usefulness of certificates in the market.
It is the responsibility of the certification body to take care of these ethical and coral elements of auditing and composition of the audit teams. What the mentioned standards require and why they are not in practice, should be addressed to the accreditation bodies and the policies of the certification bodies themselves. In the end, the market knows who is who. If a certified organisation only wants a certificate on the wall, not the real improvements to their management systems with standard implementations which are they basically used for, then they do not care who audits them and are more likely to rejoice in the witness by the known auditor.