An organization has decided to implement a QMS based on ISO 9001. What should they consider when determining internal issues?
Scenario 4:
TD Advertising is a print management company based in Chicago. The company offers design services, digital printing, storage, and distribution. As TD expanded, its management recognized that success depended on adopting new technologies and improving quality.
To ensure customer satisfaction and quality improvement, the company decided to pursue ISO 9001 certification.
After implementing the QMS, TD hired a well-known certification body for an audit. Anne Key was appointed as the audit team leader. She received a document listing the audit team members, audit scope, criteria, duration, and audit engagement limits.
Anne reviewed the document and approved the audit mandate. The certification body and TD’s top management signed the certification agreement.
Before contacting TD, Anne reviewed the audit scope and noticed that TD made changes to it due to the adoption of new printing equipment. However, Anne disagreed with the changes, stating they would affect the audit timeline. She considered withdrawing from the audit.
The audit team members were selected based on their knowledge of the legal and other regulations that TD is subject to. Is this acceptable?
You are carrying out an audit to ISO 9001 at an organisation which offers regulatory consultancy services to manufacturers of cosmetics.
You are interviewing the Technical Director (TD), who manages a team of regulatory experts responsible for providing regulatory services to customers.
You: "How do you ensure your regulatory team's competence concerning regulatory requirements is maintained?"
TD: "The two Regulatory Experts we employ full-time have years of experience of working in the cosmetics industry."
You: "How is their regulatory competence maintained?"
TD: "They are dedicated individuals with lots of contacts in the sector."
You: "How does the business enable them to maintain their understanding of current regulatory requirements?"
TD: "We leave that up to them."
Scenario 5: Mechanical-Electro (ME) Audit Stages
Mechanical-Electro, better known as ME, is an American company that provides mechanical and electrical services in China. Their services range from air-conditioning systems, ventilation systems, plumbing, to installation of electrical equipment in automobile plants, electronic manufacturing facilities, and food processing plants.
Due to the fierce competition from local Chinese companies and failing to meet customer requirements, ME's revenue dropped significantly. In addition, customers' trust and confidence in the company decreased, and the reputation of the company was damaged.
In light of these developments, the top management of ME decided to implement a quality management system (QMS) based on ISO 9001. After having an effective QMS in place for over a year, they applied for a certification audit.
A team of four auditors was appointed for the audit, including Li Na as the audit team leader. Initially, the audit team conducted a general review of ME's documents, including the quality policy, operational procedures, inventory lists, QMS scope, process documentation, training records, and previous audit reports.
Li Na stated that this would allow the team to maintain a systematic and structured approach to gathering documents for all audit stages. While reviewing the documented information, the team observed some minor issues but did not identify any major nonconformities. Therefore, Li Na claimed that it was not necessary to prepare a report or conduct a meeting with ME's representatives at that stage of the audit. She stated that all areas of concern would be discussed in the next phase of the audit.
Following the on-site activities and the opening meeting with ME's top management, the audit team structured an audit test plan to verify whether ME’s QMS conformed to Clause 8.2.1 (Customer Communication) of ISO 9001.
To do so, they gathered information through group interviews and sampling. Li Na conducted interviews with departmental managers in the first group and then with top management. In addition, she chose a sampling method that sufficiently represented customer complaints from both areas of ME's operations.
The team members were responsible for the sampling procedure. They selected a sample size of 4 out of 45 customer complaints received weekly for electrical services and 2 out of 10 complaints for mechanical services.
Afterward, the audit team evaluated the evidence against the audit criteria and generated the audit findings.
Which stages of the audit were performed?
In the context of a management system audit, identify the sequence of a typical process for collecting and verifying information. The first one has been done for you.
To complete the sequence click on the blank section you want to complete so it is highlighted in red and then click on the applicable text from the options below. Alternatively, drag and drop the options to the appropriate blank section.
Whistlekleen is a national dry cleaning and laundry company with 50 shops. You are conducting a surveillance audit of the Head Office and are sampling customer
complaints. You find that 80% of complaints originate from five shops in the same region. Most of these complaints relate to damage to customer laundry. The Quality
Manager tells you that these are the oldest shops in the company. The cleaning equipment needs replacing but the company cannot afford it at the moment. You learn
that the shop managers were told to dismiss most of the claims on the basis of the poor quality of the laundered materials.
On raising the matter with senior management, you are told that there are plans to replace the equipment in these shops over the next five years.
Noitol is an organisation specialising in the design and production of e-learning training materials for the insurance market. During an ISO 9001 audit of the development department, the auditor asks the Head of Development about the process used for validation of the final course design. She states that they usually ask customers to validate the product with volunteers. She says that the feedback received often leads to key improvements.
The auditor samples the design records for a recently completed course for the 247 Insurance organisation. Design verification was carried out but there was no validation report. The Head of Development advises that this customer required the product on an urgent basis, so the validation stage was omitted. When asked, the Head estimates that this occurs about 50% of the time. She confirms that they always ask for feedback and often make changes. There is no record of feedback in the design file for the course.
The auditor decides to review the training course design process in more depth.
Select three options that provide a meaningful audit trail for this process.
Put the following steps of a third-party audit into the correct sequence in which they happen.
Scenario 3:
Fin-Pro is a financial institution in Austria offering commercial banking, wealth management, and investment services. The company faced a significant loss of customers due to failing to improve service quality as they expanded.
To regain customer confidence, top management implemented a QMS based on ISO 9001. After a year, they contacted ACB, a local certification body, to pursue ISO 9001 certification.
The audit team was led by Emilia, an experienced lead auditor, and included three auditors. After an agreement was reached, ACB sent the audit objectives to the audit team.
The audit team began by gathering information about Fin-Pro’s understanding of ISO 9001 requirements. While reviewing documented information, they noticed missing records of training and awareness sessions. They conducted employee interviews to verify attendance.
The team also reviewed the organizational chart and job descriptions to confirm employee competence. They observed the company’s working environment (social, psychological, and physical conditions).
The audit team analyzed the evidence and prepared an audit report with findings and conclusions.
In scenario 3, the audit team required access to see the organizational chart and job descriptions to verify the employees’ competence. Based on audit best practices, is this acceptable?
TESTED 24 Feb 2026
