ISO9001/2015 Document Control Audit
Date
Wednesday, April 22, 2020
Audit Number
2020-Q2-08
Name of Auditor
Lucy Bennett-Poole
Audit Subject
DOCUMENT CONTROL
Scope & Objective of Audit The requirements for document control are stated in section 7.5.3 of the ISO9001:2015 standard. The objective of this audit is to ensure that :1. It is available for use where and when required 2. It is adequately protected DEFINITION OF DOCUMENTED INFORMATION documented information refers to information that must be controlled and maintained. Therefore, it expects that you also maintain and control the medium as well as the information. For the purposes of This Audit Process, PWS has defined the following information as Documented Information:-
1: Customer details - All details concerning our customers incl contacts, addresses 2. Account Information - All accounts data incl Sales Orders, Invoices and Credit Notes, Purchase orders to suppliers. 3. Supplier details - All details concerning our suppliers incl contacts, addresses. 4. Staff Files - All HR Documentation is considered confidential and must therefore be treated as Documented Information.
GDPR - How does PWS gain permission from the client to retain their company data? On quotation for contract renewal, when a customer accepts a quote, they are agreeing for us to keep any / all details relating to our services on file for the duration of that contract. Should the customer not renew their contract, all data is de-activated from our database and no-one is able to access it. The MD is the only person who can re-activate it and this would only be done if the customer came back to us.
1