Management system guidance

8.0 Operation

ISO Navigator Pro™ is a free tool that provides practical, expert guidance for businesses wishing to interpret and better implement the requirements of ISO 9001:2015, ISO 14001:2015 and ISO 45001:2018.

Our range of templates cover the requirements of ISO 9001:2015, ISO 14001:2015 and ISO 45001:2018, and offer an easy way to implement your next management system.

8.1.4 Outsourcing

8.1.4.1 General

OHS controls are now relevant to the purchase of goods and materials. Establish controls, within your existing procurement process, to ensure that the procurement of goods (for example products, hazardous materials or substances, raw materials, equipment) and services conform to your OHS management system requirements. Prior to procuring goods & services, the organization should identify procurement controls that:

1. Identify and evaluate potential OHS risks associated with products, materials, equipment, service;
2. Requirements for products, materials, equipment, services to conform to OHS objectives;
3. Need for information, participation and communications
4. Before using verify equipment, installations and materials are adequate before being released for use by workers;
5. Items are delivered to specification and tested to ensure they function as intended;

Usage requirements, precautions or other protective measures must be communicated and made available.

8.1.4.2 Contractors

Controls and communication requirements with regard to contractor’s worker activities, the host company’s worker activities, and anyone who may be affected by the activity in the workplace. The establishment of controls and communication requirements with regard to contractor’s worker activities, the host company’s worker activities, and anyone who may be affected by the activity in the workplace.

Some of these contractors may not have (or require) an OHSMS, but you should make sure that they are not going to compromise safety for your organization. Even if the third party operates a health and safety management system, you should be prepared to check that it is effective. In either case, you might carry out an inspection or audit. If there is no OHSMS, there may be less to audit and it exposes your organization to more unknowns.

It is useful to work out a scheme for sharing safety data with your third-party contractors: their hazard and occurrence reports may alert you to a potential problem, and vice versa. This could be done through meetings with your key contracting organizations.

8.1.4.3 Outsourcing

The OHS implications must be controlled as part of the purchasing process. Your organization must ensure that outsourced processes affecting OHS management system are controlled. An outsourced process is one that:

1. Is within scope of your OHS management system;
2. Is integral to your organization’s functioning;
3. Is needed for your OHS management system to achieve its intended outcome;
4. Liability for conforming to requirements is retained by the organization.

Organizations and external providers have a relationship where the process is perceived by interested parties as being carried out by your organization.

More information on PDCA

Planning

Context

ISO 9001:2015	ISO 14001:2015	ISO 45001:2018
4.1 Organizational Context	4.1 Organizational Context	4.1 Organizational Context
4.2 Relevant Interested Parties	4.2 Relevant Interested Parties	4.2 Relevant Interested Parties
4.3 Management System Scope	4.3 Management System Scope	4.3 Management System Scope
4.4 QMS Processes	4.4 EMS Processes	4.4 OH&S Management System

Planning

ISO 9001:2015	ISO 14001:2015	ISO 45001:2018
5.1 Leadership & Commitment	5.1 Leadership & Commitment	5.1 Leadership & Commitment
5.2 Quality Policy	5.2 Environmental Policy	5.2 OH&S Policy
5.3 Roles, Responsibilities & Authorities	5.3 Roles, Responsibilities & Authorities	5.3 Roles, Responsibilities & Authorities
		5.4 Consultation & Participation

Support

ISO 9001:2015	ISO 14001:2015	ISO 45001:2018
6.1 Address Risks & Opportunities	6.1.1 Address Risks & Opportunities	6.1.1 Address Risks & Opportunities
6.2.1 Quality Objectives	6.1.2 Environmental Aspects	6.1.2 Hazard Identifcation
6.2.2 Planning to Achieve Objectives	6.1.3 Compliance Obligations	6.1.3 Legal & Other Requirements
6.3 Planning for Change	6.1.4 Planning Action	6.1.4 Planning Action
	6.2.1 Environmental Objectives	6.2.1 OH&S Objectives
	6.2.2 Planning to Achieve Objectives	6.2.2 Planning to Achieve Objectives

Doing

Support

ISO 9001:2015	ISO 14001:2015	ISO 45001:2018
7.1 Resources	7.1 Resources	7.1 Resources
7.2 Competence	7.2 Competence	7.2 Competence
7.3 Awareness	7.3 Awareness	7.3 Awareness
7.4 Communcation	7.4.1 Communcation - General	7.4.1 Communcation - General
7.5 Documented Information	7.4.2 Internal Communcation	7.4.2 Internal Communcation
	7.4.3 External Communcation	7.4.3 External Communcation
	7.5 Documented Information	7.5 Documented Information

Operations

ISO 9001:2015	ISO 14001:2015	ISO 45001:2018
8.1 Operational Planning & Control	8.1 Operational Planning & Control	8.1.1 General
8.2 Customer Requirements	8.2 Emergency Preparedness	8.1.2 Eliminating Hazards
8.3 Design & Development		8.1.3 Management of Change
8.4 Purchasing		8.1.4 Outsourcing
8.5 Product & Service Provision		8.2 Emergency Preparedness
8.6 Release of Products & Services
8.7 Nonconforming Outputs

Checking

Monitoring, measurement, analysis and evaluation

ISO 9001:2015	ISO 14001:2015	ISO 45001:2018
9.1 Monitoring & Measurement	9.1.1 Performance Evaluation	9.1.1 Performance Evaluation
9.2 Internal Audit	9.1.2 Evaluation of Compliance	9.1.2 Evaluation of Compliance
9.3 Management Review	9.2 Internal Audit	9.2 Internal Audit
	9.3 Management Review	9.3 Management Review

Acting

Improvement

ISO 9001:2015	ISO 14001:2015	ISO 45001:2018
10.1 Improvement - General	10.1 Improvement - General	10.1 Improvement - General
10.2 Nonconformity & Corrective Action	10.2 Nonconformity & Corrective Action	10.2 Incident, Nonconformity & Corrective Action
10.3 Continual Improvement	10.3 Continual Improvement	10.3 Continual Improvement

Want to know more?

• Read our customer's feedback
• Client list - who's using our templates?
  
• How the templates are formatted and download examples
  
• Why we use turtle diagrams and process maps
• What's the difference between a process and a procedure?
  
• About documented information

SSL certification

A certificate guarantees the information your internet browser is receiving now originates from the expected domain - https://www.iso9001help.co.uk. It guarantees that when you make a purchase, sensitive data is encrypted and sent to the right place, and not to a malicious third-party.

Free PDCA guidance

ISO Navigator™ is our FREE online training tool that shows you how to apply the principles of PDCA to your operations. We also offer many helpful templates that get you on the road to documenting your management system, please visit the download page.