Export Certification Standard - Organisation Requirements

This document is available as a PDF: Export Certification Standard - Organisation Requirements (255 KB)

Information on viewing PDF files

Requirements to be met by an Organisation to gain approval to undertake export certification activities

REVIEW	This Biosecurity New Zealand standard is subject to periodic review.
ENDORSEMENT	This Biosecurity New Zealand standard is hereby endorsed.
Director PreClearance Biosecurity New Zealand
Date	1 June 2006

Biosecurity New Zealand
MAF
P O Box 2526
Wellington
New Zealand

TABLE OF CONTENTS

• 1.0 INTRODUCTION
• 1.1 Background
• 1.2 Purpose
• 1.3 References
• 1.4 Definitions
• 2.0 REQUIREMENTS TO BE MET BY ORGANISATIONS TO GAIN APPROVAL
• 2.1 Export certification activity options
• 2.2 Organisation approval process
• 2.3 Process for amendments to existing systems
• 2.4 Suspension of an Organisation’s approval
• 2.5 Reinstatement of an Organisation following suspension
• 2.6 Process for termination of approval
• 2.7 Process for appeals
• 2.8 Organisation transfer to another IVA
  • 2.8.1 Eligibility for transfer
• 2.9 Biosecurity New Zealand cost recovery fees
• 3.0 ORGANISATION SYSTEM REQUIREMENTS
• 3.1 System overview
• 3.2 Management review
• 3.3 Document control
• 3.4 Maintenance of records
  • 3.4.1 Reports
• 3.5 Staff competency
  • 3.5.1 Identification of competencies and resource requirements
  • 3.5.2 Competency assessment
• 3.6 Supplier audit
  • 3.6.1 Operating procedures for supplier of phytosanitary activities
  • 3.6.2 Audit procedures
  • 3.6.3 Auditor competency
  • 3.6.4 Audit frequency
  • 3.6.5 Audit records
• 3.7 Technical requirements of certification activity options
  • 3.7.1 Phytosanitary treatments
• 3.8 Operating procedures and process control
  • 3.8.1 Technical requirements of certification service options
  • 3.8.2 Importing country’s phytosanitary requirements
  • 3.8.3 Development of Critical Control Point (CCP) procedures
• 4.0 AUDIT FREQUENCY AND SCOPE
• 4.1 IVA audit of Organisations
  • 4.1.1 Risk categorisation of product types:
• 4.2 Audit scope
  • 4.2.1 Systems audit
  • 4.2.2 Surveillance audit
• 4.3 Classification of non-compliance
  • 4.3.1 Critical non-compliance
  • 4.3.2 Other non-compliance
  • 4.3.3 Corrective actions for other non-compliances

APPENDIX 1

Application to Become an Approved Organisation for Activities for MAF Biosecurity New Zealand Export Phytosanitary Certification 21. This appendix is available in the PDF version only, available above.

APPENDIX 2

Approval for the Operation of Activities for and on Behalf of MAF Biosecurity New Zealand for Plant Export Phytosanitary Certification Purposes 24. This appendix is available in the PDF version only, available above.

1.0 INTRODUCTION

1.1 Background

This standard is one of a set of standards that comprise the Biosecurity New Zealand export phytosanitary certification system.

This export certification system operates through the delegation of authority by Biosecurity New Zealand to authorised Independent Verification Agencies (IVAs) and approved Organisations to carry out certification services and activities on behalf of Biosecurity New Zealand.

The standard “System Overview and Requirements” provides an overview of the policies and general requirements for Biosecurity New Zealand’s Plant (including Forestry) Export Certification system.

Biosecurity New Zealand has developed standards and technical requirements for the delegation of authority for the provision of phytosanitary export certification services and activities.

The series of export certification standards can be found on the Biosecurity New Zealand websites:

• http://www.biosecurity.govt.nz/commercial-exports/forestry-exports/export-certification-standards
• http://www.biosecurity.govt.nz/commercial-exports/plant-exports/export-certification-standards

1.2 Purpose

This Standard specifies the system and technical requirements that must be met by Organisations undertaking plant (including forestry) export certification activities to achieve and maintain approval by Biosecurity New Zealand.

1.3 References

Refer to Appendix 1, Biosecurity New Zealand Export Certification Standard “System Overview and Requirements”

1.4 Definitions

Refer to Appendix 2, Biosecurity New Zealand Export Certification Standard “System Overview and Requirements”

2.0 REQUIREMENTS TO BE MET BY ORGANISATIONS TO GAIN APPROVAL

Organisation seeking approval to complete phytosanitary activities on behalf of Biosecurity New Zealand shall have documented procedures which are evaluated by an Independent Verification Agency (IVA) and approved by Biosecurity New Zealand,

2.1 Export certification activity options

An Organisation may be approved by Biosecurity New Zealand to undertake one or more of the following phytosanitary activity options:

• Option 1 Phytosanitary inspection
• Option 2 Phytosanitary treatments
• Option 3 Phytosanitary documentation (Phyto Ecert)
• Option 4 Pest survey
• Option 5 Registered certification mark (ISPM15)

2.2 Organisation approval process

An Organisation seeking approval to undertake phytosanitary activities on behalf of Biosecurity New Zealand shall have engaged the services of an IVA at all times.

The process for an Organisation to be approved is shown in Table 1.

Table 1. Organisation approval pathway

Step	Organisation action	IVA action	Biosecurity NZ action
1	Select an IVA.
2	Mutually agree with your IVA an acceptable time frame for your documentation of procedures to applicable Biosecurity New Zealand standards and specifications, and subsequent audit of the procedures by the IVA.
3	Document your system to comply with this standard and the technical requirements of the service options.
4	Submit the system from step 3 to the selected IVA and attach your completed Contract of Approval (Appendix 1),
5.		Assess the Organisation’s documented system against Biosecurity New Zealand standards.
6.		Request any additional information.
7.	Provide any additional information.
8.		Undertake a system audit to validate that the ‘actual operations’ correspond to the documented procedures at each of the Organisation’s locations where export activities will be undertaken.
9.		Notify non-compliance (s) and request corrective action(s). Advance to step 12 if no non-compliance findings.
10.	Identify, implement and have verified the agreed corrective action(s).
11.		Verify the agreed corrective action(s).
12.		Make a written recommendation to Biosecurity New Zealand, attaching a copy of the Organisation’s system.
13.			Biosecurity New Zealand considers the IVA recommendation and where appropriate signs the Contract of Approval for forwarding to the IVA.
14		Notify Organisation of their approval and forward a copy signed by Biosecurity New Zealand.
15.	Organisation commences implementation of their approved system.

2.3 Process for amendments to existing systems

The process for the approval of amendments to an existing Organisation system shall be undertaken as described in Table 2.

Table 2. Process for amendments

Step	Organisation action	IVA action	Biosecurity NZ action
1	Submit to IVA the amendment(s) to your system and gain agreement on an acceptable time frame for assessment of amendment (s)
2		Assess the amendment(s) against the appropriate Biosecurity New Zealand standard(s).
3		Request any additional information.
4	Provide any additional information.
5		Validate Organisation’s implementation of the amendment where appropriate.
6		Make a written recommendation to Biosecurity New Zealand, attaching a copy of the amendment.
7			Biosecurity New Zealand considers the IVA recommendation and where appropriate approves the amendment.
8		Notify Organisation of the approval of the amendment.
10	Organisation implements the approved amendment.

2.4 Suspension of an Organisation’s approval

Approval of an Organisation to perform phytosanitary certification activities may be suspended by Biosecurity New Zealand in full or for a specified period, where one or more of the following occurs:

• i. Where an Organisation’s system has not been active for more than 12 months, or
• ii. An Organisation has not engaged the services of an IVA; or
• iii. An Organisation fails to make full payment of fees to Biosecurity New Zealand unless in dispute; or
• iv. Requested by the Organisation.

Biosecurity New Zealand shall formally advise the Organisation of their suspension.

During the period of the suspension, the Organisation shall not offer or perform any phytosanitary certification activities on behalf of Biosecurity New Zealand.

All product inspected, produced or packaged by the Organisation from the date of initial suspension is ineligible for export phytosanitary certification by Biosecurity New Zealand unless subjected to end point consignment inspection.

Certification of product that was produced since the last successful audit and the date of suspension is at the sole discretion of Biosecurity New Zealand.

2.5 Reinstatement of an Organisation following suspension

Reinstatement of an Organisation’s approval by Biosecurity New Zealand to perform export certification activities shall occur only when all conditions prescribed by Biosecurity New Zealand and or its representatives have been met.

Biosecurity New Zealand shall formally advise the Organisation the date from which their approval will be reinstated.

2.6 Process for termination of approval

Termination of an Organisation’s approval shall occur:

• i. Where falsification of any record or abuse of a MAF mark impacting on a phytosanitary certification request is found;
• ii. Where more than two critical non-compliances are identified within any 12 month period,
• iii. If the conditions for reinstatement in the suspension notice are not met within the specified time;
• iv. At the request of the Organisation.

Biosecurity New Zealand shall formally advise the Organisation of the reasons for the termination of the approval, and the effective date of the termination.

The Biosecurity New Zealand contract of approval, shall be returned to Biosecurity New Zealand (or through the IVA) within five working days of the approval being terminated. In addition any equipment for the application of certification marks or material advertising MAF approval status shall be disposed of and verified to Biosecurity New Zealand.

2.7 Process for appeals

An Organisation may appeal an IVA decision in the following manner:

• i. Organisation is to formally notify the IVA of their request to appeal;
• ii. The Organisation and IVA shall cooperatively attempt to resolve the appeal in accordance with the IVA appeals process;
• iii. If a mutually satisfactory resolution of the appeal cannot be achieved, the Organisation and the IVA shall jointly meet with Biosecurity New Zealand to resolve the appeal.

Biosecurity New Zealand costs associated with mediation of appeals shall be borne equally by the Organisation and the IVA.

If a mutually satisfactory resolution is not possible, follow the disputes resolution procedure in clause 11 of the contract of approval (Appendix 2).

2.8 Organisation transfer to another IVA

An Organisation may elect to transfer to another IVA, subject to the following conditions being met:

• i. Must notify the existing IVA of their decision to transfer to a new IVA;
• ii. Must continue with the existing IVA until the new IVA has formalised the transfer;
• iii. Shall recognise that the newly selected IVA will be undertaking a systems audit within one month of accepting the transfer and this system audit to be regarded as the annual system audit.

2.8.1 Eligibility for transfer

Organisations shall not be eligible for transfer until all non- compliance findings have been closed out to the existing IVA.

Transfer of Organisations with non-compliance findings not closed out is at the sole discretion of Biosecurity New Zealand and on a case-by-case basis.

2.9 Biosecurity New Zealand cost recovery fees

The schedule of fees is available from:

http://www.biosecurity.govt.nz/commercial-exports/plant-exports/fees

3.0 ORGANISATION SYSTEM REQUIREMENTS

Organisations seeking approval to undertake phytosanitary activities on behalf of Biosecurity New Zealand shall document procedures (risk management programme) that address the following minimum requirements.

3.1 System overview

• i. Name and contact details of the Organisation;
• ii. Physical address and contact details of sites/locations where phytosanitary activities are undertaken;
• iii. The name and contact details of person(s) responsible for:
  • a) Management of the Organisation’s documented system;
  • b) IVA liaison including commencement and completion of operating periods;
  • c) Audit arrangements;
  • d) Implementation of contingencies.
• iv. The Organisational structure showing line control;
• v. The scope of activities, including specific plant products, with reference to the relevant technical requirements for which the Organisation is approved (refer to Section 2.1).

3.2 Management review

The Organisation shall review their system at least annually to ensure its ongoing suitability and effectiveness to comply with Biosecurity New Zealand standards. A record that the review has been undertaken shall be kept.

3.3 Document control

The Organisation shall document within their system the procedures to:

• i. Provide document control of all Biosecurity New Zealand approved procedures;
• ii. Ensure the documented system of operating procedures are available to relevant staff;
• iii. Ensure all amendments to their documented system are approved prior to implementation.

3.4 Maintenance of records

All records pertaining to phytosanitary activities shall be complete, accurate, legible, and readily accessible. The Organisation shall maintain the following minimum records:

• i. Complete copy of their current documented system approved by Biosecurity New Zealand which shall include:
  • a) Register of competent staff as assessed by the Organisation’s system,
  • b) The scope of phytosanitary activity undertaken by the specific person;
• ii. Records of competency assessments of staff undertaking phytosanitary activities;
• iii. All records specified in the applicable technical requirements;
• iv. All interceptions of their produce by importing countries;
• v. New importing country requirements, from sources other than Biosecurity New Zealand, including phytosanitary import permits.

3.4.1 Reports

The Organisation shall provide to their IVA the following reports, which shall contain information as stated within Table 3.

Table 3. Reporting requirements

Topics	Time frame
Changes to their register of competent staff.	Within 5 working days of change
Critical non-compliance detections and corrective actions to be applied.	Within 5 working days after detection
Interceptions of Biosecurity New Zealand phytosanitary certified produce by importing countries.	Within 5 working days of interception
Issues raised by importers or other off shore organisations identifying risks relating to Biosecurity New Zealand export phytosanitary certification.	Within 5 working days of receipt of issue
Importing countries requirements obtained from sources other than Biosecurity New Zealand.	Prior to requesting certification

3.5 Staff competency

3.5.1 Identification of competencies and resource requirements

The Organisation shall:

• i. Identify the competencies required for each phytosanitary activity according to the scope of their system
• ii. Have a sufficient number of staff with the necessary competence to undertake the scope of phytosanitary activity options for which they are approved;
• iii. Implement safeguards for staff engaged in making phytosanitary decisions from commercial interest in their decisions.

3.5.2 Competency assessment

The Organisation shall document the following:

• i. The person(s) with overall responsibility for the management of the Organisation’s system, the competency required and their job description; and minimum competencies for the position:
  • a) Demonstrable knowledge of Biosecurity New Zealand phytosanitary standards and quality management systems;
  • b) Demonstrable ability to apply Biosecurity New Zealand standards within the Organisation’s system.
• ii. Method used to assess staff competency to undertake specified phytosanitary activities within the Organisation’s system.
• iii. How competencies of staff undertaking phytosanitary activities are maintained on an ongoing basis.

3.6 Supplier audit

Organisations that elect to undertake audits of their suppliers of phytosanitary activities shall meet the following requirements:

3.6.1 Operating procedures for supplier of phytosanitary activities

The approved Organisation must ensure their suppliers of phytosanitary activities are in receipt of and are implementing the approved Organisation’s operating procedures for the phytosanitary activities.

3.6.2 Audit procedures

The approved Organisation shall document, and implement audit procedures meeting the requirements of the relevant parts of Section 4 of this standard, and all other relevant requirements contained within Biosecurity New Zealand standards.

Audit records shall include the following minimum information:

• i. Date of audit;
• ii. Product type(s);
• iii. Audit location;
• iv. Organisation staff assessed;
• v. Audit scope;
• vi. Non-compliance identified and their classification;
• vii. Agreed corrective actions and their implementation date;
• viii. Future audit status and frequency;
• ix. Auditor name and validation.

Audit records must be retained for two years.

3.6.3 Auditor competency

Organisations auditing their suppliers provision of phytosanitary activities shall select audit staff who have:

• i. At least attained a secondary school qualification or diploma or equivalent;
• ii. Work experience in the quality management, risk assessment and/or HACCP processes or equivalent;
• iii. Demonstrable knowledge of Biosecurity New Zealand phytosanitary standards and quality management systems;
• iv. Undertaken three audits under the direct supervision of a competent auditor and assessed as competent; and
• v. Successfully participated in an internationally recognised, or equivalent, registered auditor training course of at least 20 hours duration within two years of being assessed as a competent surveillance auditor.

3.6.4 Audit frequency

The Organisation shall complete audits of their individual suppliers of phytosanitary activities as per Table 5, Section 4.

3.6.5 Audit records

The Organisation shall ensure their audit records are available to their nominated IVA.

In the event of a critical non-compliance being detected, the Organisation shall submit to their IVA within 24 hours a written report containing the following minimum information:

• i. Name of supplier;
• ii. Description of the critical non-compliance and implication for export certification;
• iii. Organisation action(s) taken.

3.7 Technical requirements of certification activity options

The Organisation shall implement documented procedures relevant to the scope of the certification activity options for which it is seeking approval.

The technical requirements are specified in the following Biosecurity standards (Table 4).

Table 4. Technical requirements for service options

Option	Reference Biosecurity New Zealand standard	Applicable sections
1	Technical Requirements: Phytosanitary Inspection	All
2	Technical Requirements: Phytosanitary Treatments	See Section 3.7.1 below
3	Technical Requirements: Phytosanitary Documentation (Phyto Ecert)	All
4	Technical Requirements: Pest Survey	All
5	Technical Requirements: Regulated Certification Mark (ISPM15)	All

3.7.1 Phytosanitary treatments

3.7.1.1 Official treatments

When an importing country officially prescribes a treatment as part of their import requirements, Organisations shall develop documented procedures for the treatment that meets the requirements of Sections 2.6, 2.7, 4.1.1, 4.1.3, 4.2, 4.3, 4.6, 4.7, 4.8, and Appendix 3 1.0 of the Biosecurity New Zealand standard “Requirements for the supplier of official treatments”.

Note:

• i. “Treatment Supplier” is synonymous with “Organisation”;
• ii. “Treatment Technician” is synonymous with “Treatment staff member”.

The Organisation’s documented procedures for treatments, shall become part of the Organisation’s system, and shall be subjected to the audit regime of the approved Organisations system.

3.7.1.2 Use of Biosecurity New Zealand approved treatment suppliers

Treatment suppliers may be subcontracted in by an Organisation to undertake official treatments for export certification. In this circumstance the treatment supplier must comply with the requirements of the Biosecurity New Zealand Standard “Requirements for the supplier of official treatments”.

3.7.1.3 Other treatments

Organisations which carry out treatments as part of their documented systems, but the treatment being applied is not specifically required by an importing country, may opt to develop procedures which are equivalent to the technical requirements of Section’s 2.6, 2.7 and 4.6 and Appendix 3 1.0 of the Biosecurity New Zealand Standard “Requirements for the supplier of official treatments”.

Where the Organisation is seeking Biosecurity New Zealand recognition of the treatment process to be equivalent to phytosanitary inspection, procedures and technical justification for equivalency shall be documented within their approved Organisation system.

3.8 Operating procedures and process control

3.8.1 Technical requirements of certification service options

The Organisation shall reference the relevant technical requirements applying to the options covered by their system scope (see section 2.1 and 3.7).

3.8.2 Importing country’s phytosanitary requirements

The Organisation shall reference and undertake phytosanitary activities in accordance with requirements contained within:

• i. Importing Country’s Phytosanitary Requirements (ICPRs);
• ii. Phytosanitary import permits;
• iii. Work plans for pre-clearance programmes;
• iv. Special phytosanitary compliance programmes.

3.8.3 Development of Critical Control Point (CCP) procedures

The Organisation shall:

• i. Identify their product pathway(s);
• ii. Identify hazards and risks within this pathway, and the CCP’s where hazards and risks are managed;
• iii. Develop procedures for activities within each CCP to control, prevent, remove or reduce the identified hazards and risks.

3.8.3.1 Product pathway

The Organisation shall define and document the product pathway applicable to the scope of the Organisations operation which may include, but not be limited to the following stages:

• i. Production site (e.g. forest, farm or orchard);
• ii. Places of handling initially harvested plant products (e.g. packhouses, seed cleaning plants, log yards, saw mills);
• iii. Storage;
• iv. Treatment;
• v. Application of registered certification marks;
• vi. Processing;
• vii. Dispatch and inventory control;
• viii. Transport;
• ix. Export documentation to obtain phytosanitary certification.

3.8.3.2 Hazards and risks

Within each stage of the product pathway the Organisation shall identify and document each CCP where hazards and risks affecting the phytosanitary status of the product are managed.

In particular the Organisation shall maintain the integrity of the certification status product has gained through consideration of the following:

• i. The method used for the traceability of plant products from treatment and/or inspection to the point of export from New Zealand (defined as the date on which the consignment was loaded onto a vessel or aircraft).
• ii. The method used for ensuring post treatment and/or post inspection product security:
  • a) Where your Organisation’s responsibility starts and finishes;
  • b) How product contamination by pests after inspection is prevented;
  • c) How mixing/substitution of treated product with non treated product is avoided;
  • d) How mixing/substitution of certified product with non certified product is avoided;
  • e) How the certification status resulting is maintained when products are transferred between Organisations;
  • f) How time periods specified by the importing country, between inspection and time of export, are maintained.
• iii. Contingencies for any breakdown in their product security procedures.
• iv. Corrective actions to bring any non-complying plant product or operational process back into compliance with specifications.

3.8.3.3 Procedures for activities

The procedures developed under 3.8.3 iii must be documented and state:

• i. What activity(s) is to be done;
• ii. How the activity is to be undertaken;
• iii. Where the activity(s) is undertaken;
• iv. When the activity(s) is to be undertaken;
• v. Who is responsible for completing the activity(s).

4.0 AUDIT FREQUENCY AND SCOPE

4.1 IVA audit of Organisations

The Organisation’s nominated IVA shall audit the Organisation’s documented and approved system for ongoing compliance. The audit frequency and scope applied shall be determined by the level of:

i. Risk posed by the particular system and/or product type being exported;

ii. Confidence attained through prior audits.

4.1.1 Risk categorisation of product types:

Level 1 Manufactured or processed product where the approved process is recognised as rendering the product and/or pests non-viable.

Where there are no critical non-compliance findings within the system and the subsequent three surveillance audits per year, the approved Organisation shall be eligible for Risk Category 1 as identified within Table 5.

Level 2 All other products and export documentation (Phyto Ecert)

Where there are no critical non-compliance findings within the systems audit and the subsequent six surveillance audits per year, the approved Organisation is eligible for the reduced level (3) of ongoing surveillance audits (Table 5).

Specific product types and/or phytosanitary activities associated with Level 2 risk category may be considered for a lower frequency of surveillance audits below three per year, if it can be demonstrated that a new process (other than those specified as necessary for Level 1) has significantly lowered the risk of either containing and transferring quarantine pests or having incorrect information on certificate requests. Such reduction is at the sole discretion of Biosecurity New Zealand and on a case-by-case basis.

Table 5. Initial and reduced audit frequencies

Risk category	System audit	Entry level surveillance audit frequency	Qualifying criteria for reduction	Reduced surveillance audit frequency
1	1 per yr (ongoing)	3 per year	One year without a critical non-compliance.	1 per year
2	1 per yr (ongoing)	6 per year	One year without a critical non-compliance.	3 per year

Note: Where an Organisation undertakes phytosanitary activities for a period of two months or less within one calendar year, the audit frequency shall be reduced to the following minimum levels during the period of operation:

i. one system audit;

ii. two surveillance audits.

4.2 Audit scope

4.2.1 Systems audit

A systems audit shall ensure that the Organisation’s entire system is compliant with ICPRs, and Biosecurity New Zealand standards and implemented in accordance with its documented system.

4.2.2 Surveillance audit

A surveillance audit shall ensure that the output of the Organisation’s system is compliant with their documented procedures, through at least an inspection of this output. Surveillance audits shall be unannounced.

4.3 Classification of non-compliance

Non-compliance incidents shall be classified as critical non-compliance or other non-compliance depending on its effect on the IVA confidence in an Organisation’s system.

4.3.1 Critical non-compliance

A critical non-compliance is an incident(s) that results in no confidence that an Organisation’s system is in place to deliver the output(s) in accordance with the approved Organisation’s system.

Examples of Critical non-compliances are:

• i. No official treatment undertaken or incorrect treatment applied when required;
• ii. No inspection or insufficient inspection undertaken;
• iii. Phytosanitary status not identified correctly;
• iv. Certification requested for ineligible product already exported or intended for export;
• v. Incorrect information on certificates affecting phytosanitary status;
• vi. Maximum pest limits exceeded during inspection/audit and not actioned correctly;
• vii. Required inspection facilities and/or equipment not used;
• viii. Equipment calibration not carried out;
• ix. Amendments to approved procedures not notified to the IVA prior to implementation;
• x. ICPRs not available or applied by appropriate staff;
• xi. Approved procedures for managing the hazards and risks associated with critical control points not available or applied by appropriate staff;
• xii. Absence of product traceability;
• xiii. Non-competent staff operating without supervision where the results of their activities lead to certification of products;
• xiv. Registered competent staff not meeting the competency criteria;
• xv. Failure to rectify an other non-compliance identified in a previous audit within the agreed timeframe;
• xvi. Any re-occurrence of an other non-compliance detected in the two previous consecutive audits;
• xvii. Failure to implement agreed corrective actions for a previously identified critical non-compliance within agreed timeframes;

Critical non-compliances not on this list may be identified. Such critical non-compliances shall be agreed with Biosecurity New Zealand prior to being confirmed.

4.3.1.1 Where a critical non-compliance is identified during any audit, the audit frequency shall immediately increase to either:

• i. Daily audits for a maximum of three days, during which time the Organisation must identify, implement and have verified agreed corrective action(s); or
• ii. Production throughput subjected to endpoint consignment inspection for the three days during which time the Organisation must identify, implement and have verified agreed corrective action(s).

4.3.1.2 The Organisations failure to manage the critical non-compliance in accordance with the IVA audit report shall incur a second critical non-compliance and result in the Organisation’s system shall immediately reverting to or remaining on End Point Consignment Inspection until:

• i. An agreed corrective action strategy has been verified by the auditor; and
• ii. A targeted systems audit is successfully completed.

Following satisfactory completion of the above corrective action process the Organisation’s system shall resume at the entry level audit frequency.

4.3.1.3 The Organisation’s continued failure to put in place:

• i. An agreed corrective action strategy that has been verified by the auditor; and
• ii. A successfully completed targeted systems audit;

shall incur a third critical non-compliance and result in the termination of the Organisation’s system.

4.3.2 Other non-compliance

An other non-compliance is an incident(s) that creates doubt and a decrease in confidence that an Organisation’s system is in place to deliver an output(s) in accordance with the approved Organisation’s system.

Other non-compliance findings include but are not limited to the following examples:

• i. Significant difference between auditor and Organisation findings;
• ii. Failure to follow approved procedures other than those for CCPs;
• iii. Failure to notify commencement and finish of operating period, where applicable;
• iv. Staff competency records incorrectly documented;
• v. Failure to meet recording and/or reporting requirements;
• vi. Incomplete inspection records where it can be validated the product complies with the stated certification status.

4.3.3 Corrective actions for other non-compliances

A corrective action and a time frame for its implementation are to be agreed between the auditor and Organisation for each non-compliance finding. The auditor shall verify that the corrective action has been implemented and is effectively addressing risk within the agreed time frame.

Page last updated: 30 April 2008