+31 (0)73 - 220 2000 | info@brandcompliance.com
English
  • Dutch
  • English
  • Swedish
Brand Compliance
  • Our story
    • Accreditations, Conditions & Regulations
  • News
  • Contact form
  • What is ISO 27001?
  • ISO 27701 certification & audit
  • BC 5701 certification & audit
  • Directions
Application certification process
  • About us
    • Accreditations
    • Vacancies
    • Compliment, complaint or tip
    • Privacy Statement
  • Knowledge base
  • News
  • Quality
    • Application certification process
    • ISO 9001 certification & audit
    • ISO 22301 certification
    • Private Lease Quality Mark
    • Compliance Audits
    • Gap analysis
  • Information Security
    • Application certification process
    • ISO 19770-1 certification
    • ISO 27001 certification
    • ISO 27017 and ISO 27018 certification
    • Baseline Information Security Government (BIO)
    • NEN 7510 certification
    • ISAE 3402 certification
    • SOC 2 statement
    • Gap analysis
  • Privacy
    • Application certification process
    • White paper GDPR certification mechanism
    • Certification standard BC 5701:2022
    • BC 5701 (GDPR) certification
    • ISO 27701 certification
    • Gap analysis
  • Academy
    • Free online training course ISO 27001:2022
    • ISO 27001 Lead Implementer training course (version ISO 27001:2022)
    • ISO/IEC 19770-1 Practitioner course
    • Inhouse Training ISO 27001 Lead Implementer
    • Operational Cyber Security using IEC 62443 (OT security)
    • Implementation training BC 5701 (GDPR)
    • Request training
  • Contact
    • Contact Form
    • Application certification process
    • Introductory meeting
    • Directions

Certification process

  • Do you have your first audit soon?
  • How long does ISO certification take?
  • What is a certification cycle?
  • Applying for a certification process
  • Initial audit Stage 1
  • Initial audit Stage 2
  • Nonconformities management system
  • Certificate suspended or revoked? This is how you solve it!
  • Transfer of certification

General

  • The Brand Compliance glossary
  • What is a management system?
  • Internal or external audit?
  • Tips to describe a proper scope
  • Accreditation versus certification
  • The differences between ISO 27001 and NEN 7510
  • The use of certification logos

ISO 27001:2022

  • ISO 27001:2022 – FAQ transition
  • ISO 27001:2022 – Transition process

Best practices

  • Quality Management: best practices for success

White papers

  • White paper management system audits
  • White paper GDPR-certification mechanism

Initial audit Stage 1

Content
  • What are the main points of attention for an audit?
  • The certification process and the audit cycle
  • Focal points in preparation for a stage 1 audit
  • Completion Stage 1
  • Conclusion

What are the main points of attention for an audit? #

You are about to start the certification process of a management system audit. In this article, we would like to share our practical experience with these audits, to provide you with optimal information about the certification process.

Initial audit

The certification process and the audit cycle #

Brand Compliance is an independent audit office that checks whether your organization meets the set standards. For example ISO 27001, ISO 27701, ISO 9001 and NEN 7510. We assess whether you have correctly applied the standard’s requirements and implemented it into your organization and whether you operate in accordance with your policy documents, processes, and procedures. If the result is positive, we will issue a certificate.

Management system certifications such as ISO 27001, ISO 27701, ISO 9001 and NEN 7510 consist of a cycle comprising three years. Each year we will conduct an audit at your organization. The cycle starts as soon as your organization has obtained a certificate for the first time.

In order to obtain a certificate for the first time, we conduct a so-called ‘initial audit’. The audit consists of two stages.

  • Stage 1 audit: during stage 1, we assess whether your organization is ready for stage 2, on the basis of the documented information in your management system and your knowledge and understanding of the requirements of the standard.
  • Stage 2 audit: during Stage 2, we assess the implementation and effectiveness of the management systems. Are all processes executed as described? Is the policy adhered to? Are employees aware of their contribution to the management system?

initial audit

Focal points in preparation for a stage 1 audit #

We are happy to share the following focal points with you. These points are essential in your preparations for the certification process.

  1. Before planning the audit, determine that your organization has a functioning management system with the related processes and working methods.
  2. Ensure that you have integrated the management system processes into your organization’s processes so that they fit in with your business operations.
  3. In addition to the mandatory documented information ensure that you maintain sufficient documentation to demonstrate that you are carrying out the management system processes effectively.
  4. Document where you deviated from your – planned – processes due to circumstances.
  5. Be familiar with the standard’s requirements and make sure that your staff knows how they contribute to fulfilling these requirements. You and your employees are able to identify this in the interview with the auditor.
  6. You are familiar with the key performances of the management system and significant aspects, processes and objectives.
  7. You can explain the specific circumstances that apply to the site or the entire organization.
  8. You and your staff can clarify the scope of the management system, aimed at:
    1. The activities, products and services;
    2. The sites where these activities, products and services are performed;
    3. The processes that enable the execution of these activities, products and services;
    4. The assets required to carry out these processes.
  9. Ensure that the internal audit and management review have been fully completed prior to stage 1 of the initial audit.

Completion Stage 1 #

During stage 1, it was assessed whether your organization is ready for stage 2. During the closing meeting of the Stage 1 audit, the auditor will clarify any areas of concern in your management system that could lead to a nonconformity during stage 2. You can get started with this in time to start stage 2 well prepared. For this reason, it is essential to schedule sufficient time between the stage 1 and stage 2 audit.

Conclusion #

This blog was intended to inform you about the preparation of your certification process. If you have any questions about the process, the audit cycle, or further audit preparation, don’t hesitate to get in touch with one of Brand Compliance’s Customer and Project Coordinators.

 

Updated on 17 May 2023
Applying for a certification processInitial audit Stage 2
Content
  • What are the main points of attention for an audit?
  • The certification process and the audit cycle
  • Focal points in preparation for a stage 1 audit
  • Completion Stage 1
  • Conclusion

Accreditation

RvA C548 Brand Compliance B.V. has accreditation (C548) to certify ISO 27001, NEN 7510 Cluster B and ISO 9001 scope 33 information technology and 35 other services.

Brand Compliance B.V.

Hambakenwetering 8D2
5231 DC ‘s-Hertogenbosch

+31 (0)73 220 2000
info@brandcompliance.com

Chamber of Commerce nr.: 32101659
VAT nr.: NL8130.78.854.B01

Brand Compliance Belgie B.V.

Uitbreidingstraat 66
2600 Berchem (Antwerpen)

+32 (0)14 48 0730
be-info@brandcompliance.com

VAT nr.: BE0735.675.516

Brand Compliance Nordics AB

Vasagatan 16
SE-111 20 Stockholm

+46 73 157 7805
info@brandcompliance.com

Org.nr: 559238-1387

© Copyright 2023 Brand Compliance
Thank you for your rating!
Thank you for your rating and comment!
This page was translated from: Dutch
Please rate this translation:
Your rating:
Change
Please give some examples of errors and how would you improve them: