Client that have obtained system certification from the KFQ(Korean Foundation of Quality) shall comply with the following items during the valid period of certification.
This information may be changed according to domestic laws in Korea, international standards, and procedures of the KFQ during the certification validity period, and the changed matters must be complied. Depending on the changes, it will be announced in document, publications issued by the KFQ, etc., and the latest information can be found on the website of the KFQ (http://www.kfq.or.kr).

• 1. System shall be maintained according to applied standard.
• 2. Regulations related to certification system shall be complied at all times.
• 3. Related to managing certification system, the client cannot refuse witness audit and/or special audit conducted by Accreditation Body (KAB, IAOB, FSSC, IAQG, etc) and also cannot refuse internal witness auditor in KFQ witness audit of organization for the assessment of auditor in KFQ. Additionally, the organization shall comply with below in case of IATF 16949;
  • 1) the client cannot refuse an IATF witness audit of the certification body;
  • 2) the client cannot refuse the presence of a certification body internal witness auditor;
  • 3) the client cannot refuse the presence of an IATF representative or their delegates;
  • 4) the client cannot refuse the request of the certification body to provide the final report to the IATF;
• 4. In case audit report and information related to certification and audit are required, the client is able to supply relevant Accreditation Body (including IATF).
• 5. Management review and internal audit shall be conducted at least once a year.
• 6. The client shall inform KFQ without delay of any significant changes about certification system like below. Certification can be withdrawn when notification has not been informed.
  • 1) Change of representative;
  • 2) Change in status of legal, commercial (e.g., joint venture, sub-contracting with other organizations), or ownership;
  • 3) Change of organization and management (e.g., key managerial, decision-making or technical staff);
  • 4) Change of site location of certified client;
  • 5) Bankruptcy, transfer, mergers and acquisitions;
  • 6) Change of operation cope of certified management system (e.g., extension or reduction of organization size, suspension of production or shut down);
  • 7) Significant change of management system and process (e.g., production processes, facilities, change of construction method);
  • 8) In case administrative disposition was imposed due to violation of the law related certified management system (including related legal suits)

    ▪ In case of ISO 9001 certified client : when there is serious negative feedback from the market(customer and the public) due to problem about product or service provided or when legal issue is existed (e.g. product recall or compensation etc.)
    ▪ In case of ISO 14001 certified client : when serious environmental accident or violation of a regulation is occurred
    ▪ In case of ISO 45001 certified client: when serious safety accident or violation of a regulation is occurred
    ▪ In case of ISO 22000/FSSC 22000 certified client: when critical nonconformity is issued or serious food sanitation or safety accident or violation of a regulation is occurred
    ▪ In case of ISO 27001 certified client: when serious information security accident or violation of a regulation is occurred
    ▪ In case of ISO 20000-1 certified client: when IT service was stopped to be provided for long period
    ▪ In case of ISO 50001 certified client: when violation of a regulation according to the law related to energy is occurred

  • 9) In case of product recalls (for ISO 9001, IATF 16949, TL 9000 and FSSC 22000 (ISO 22000))

    ▪ In case of IATF 16949 certified client : When there is official customer claim (Especially, in case of claim from BMW Group, Ford Motor Company, Geely Group, General Motors, IVECO Group, Jaguar Land Rover (JLR) Limited, Mercedes-Benz Group AG, Renault Group, Stellantis (ex FCA), Stellantis (ex PSA), and Volkswagen AG) or include case of significant claim received from customer.

  • 10) In case that co-certification with KOSHA-MS for ISO 45001 is suspended or withdrawn (for the client who has been certified for both ISO 45001 of KFQ and KOSHA-MS / ISO 45001 of KOSHA by co-certification audit)
  • 11) Transfer to new IATF recognition Certification Body (in case of IATF 16949)
  • 12) Key changes certification system
  • 13) Reissue request of the certificate, arising from damage and loss of the certificate and changes to the certificate
• 7. Regular surveillance audit shall be conducted.
  • 1) Surveillance Audit Cycle

    (1) Surveillance audit shall be conducted at least once a year. However, IATF 16949 certification audit shall be conducted within surveillance audit period as per determined audit cycle (determined surveillance interval shall be maintained for the three year audit cycle.)
    (2) The date of the first surveillance audit following initial certification shall not be more than 12 months from the certification decision date of initial audit.
    (3) Although a surveillance audit before the first recertification audit after the initial audit shall be conducted every six months in principle, the audit team leader may adjust the cycle in consultation with the audit organization in consideration of system establishment status and the content and number of nonconformities. But, the adjustment shall be made within a year.

  • 2) Key items for surveillance audit

    (1) Requirements of applied certification scheme
    (2) Confirmation of the corrective action's effectiveness on nonconformities at previous audit
    (3) Usage state of certification mark
    (4) The audit items specially designated as the audit items in the next audit by the previous audit team

• 8. In addition to regular surveillance audit, KFQ can conduct special audit if there is a reason for a special audit, and the certified client shall comply with it. It may become necessary to conduct audits of certified clients as below:
  • 1) When site verification is needed, due to significant changes in the system as follows

    (1) Core factors or overall changes to maintain and control the certified system including revision and abolishment of the manual and relevant procedures.
    (2) Changes in the organization and management including merger & abolition and site closure of the relevant core departments along with merger & acquisition, joint venture, owner, board of directors and certified system.
    (3) Major changes in articles of association, policies, processes and facilities

  • 2) As a result of analyzing complaints and information including social troubles and claims from customers, when site check is necessary.
  • 3) When site check is necessary, because of changes in KFQ's certification requirements and certification system
  • 4) When confirmation for relevant procedures is necessary, because of administrative measures deriving from violation of laws related to the appropriate management system.
  • 5) When re-audit is decided to be necessary as a whole, due to suspicion of the entire system's confidence, deriving from the fact that reviewed content is unreliable and untrustworthy, although the corrective action report, which was received from the client, was reviewed.
  • 6) When measurement data are not delivered that should be submitted regularly to QuEST Forum has not been done in case of TL 9000 certification.
  • 7) When matters to check the site of the certified client take place.
• 9. In case that planned audit failed to be completed due to serious problem of system management operation status of client in surveillance audit, the audit can be suspended under consultation. In this case, the certification qualification is suspended. If client is willing to maintain certification, after the condition (e.g. audit time limit) for re-audit is met and the consultation is completed, overall re-audit can be implemented. Unless the re-audit for surveillance audit is not implemented in case that condition is not met, certification can be withdrawn.
• 10. The client shall cooperate to conduct independent audit normally.
• 11. The client shall comply to 'Guideline for usage and promotion of certificate • certification mark (GA8100-02)'.
• 12. The client shall pay fee related to certification like the fee for surveillance audit within time limit.
• 13. All document related to certification in the process of certification application and qualification maintenance between KFQ and client shall be stored and maintained.
• 14. The client can raise complaints in the process of certification application and qualification maintenance and appeals about audit result and certification decision to KFQ. Process implementation and schedule related to corrective action required by KFQ and certification decision may not be effected according to rule of Accreditation Body while appeals and complaints-handling process.
• 15. Certified client shall record complaints and corrective action related to system acquired certification received from the interested parties, customer and personnel and submit the relevant record to KFQ when requested.
• 16. In case of TL 9000 certification, measurement performance index shall be delivered to QuEST Forum UTD every quarter and shall be received data confirmation. And organization shall submit the copy of data confirmation to KFQ.
• 17. In case of FSSC 22000 certification, after organization is announced that transition audit of version is to be implemented by KFQ organization that has made a contract with KFQ can maintain the certification without having an additional contract.
• 18. Certification suspension decision is possible in the following cases in the audit and certification maintaining process.
  • 1) Certification Suspension Decision
    

    (1) When the certified client voluntarily request suspension through a formal document and/or other methods;
    (2) Without conferment, the surveillance audit is not conducted within the allowable intervals and timing;
    (3) When serious or multiple major nonconformities take place in the audits for certification maintaining, such as a surveillance audit (Audit termination, due to breakdown of system, etc.);
    (4) When nonconformity cannot be closed within ninety (90) calendar days from the issue date of the nonconformity;
    (5) When there are no resources and no organization to meet requirements as a result of an audit for certification maintaining or when most certification system does not operate;
    (6) When there is no confidence on the certification system, due to claims from interested parties including the organization or social trouble (In case of IATF 16949, suspension of certification can be decided by the type of claim received from the customer according to their specific requirements);
    (7) When the information or documents requested during application, audit plan and audits are not provided or proved false;
    (8) When critical issues such as reorganization or system changes are not disclosed;
    (9) When violated the contract or agreements with KFQ;
    (10) When certification fee is not paid;
    (11) When suspended before registration procedure is completed, due to certified organization’s dissolution, no contact, etc.;
    (12) When certification registration organization did not take any action towards a change in the certification system and a request to change requirements by KFQ;
    (13) When PR method of certification obtainment including certification mark is deviated from the requirement;
    (14) When mentioned or used certification beyond the certificate’s application scope;
    (15) When measurement data are not submitted that should be submitted to QuEST Forum has not been done in case of TL 9000 certification;
    (16) When improvement plan and evidence about improvement implementation including part identified as improvement point as a result of previous audit was not provided in case of KFQ 9004 certification;
    (17) When a critical problem occurs in the system (Breakdown of system: audit termination);

  • 2) Certification Withdrawn
    

    (1) When the certified client expresses an intention to give up the certificate through a formal document and/or other objective methods;
    (2) When products within the scope are no longer produced;
    (3) When certification effect was suspended at least three occasions within the effective certification period;
    (4) When reinstatement may not be taken, due to reasons for suspension have not been removed during the suspension period;
    (5) After certification was suspended, since the client had not received a surveillance audit, two months has passed without carrying out the surveillance audit;
    (6) Although the client was notified of proving conformity from KFQ, because of change of certification system or standard requirements, when the client did not prove it;
    (7) When the client did not comply with a request to submit the certificate of KFQ, after one month from the receipt of such a request;
    (8) When the certified organization disappears or is not confirmed, due to dissolution, no contact, etc.;
    (9) Although, a problem becomes the reason to suspend certification, when a withdrawal of certification is decided to be necessary, in consideration of the seriousness of the problem;
    (10) When certification suspension was not resolved within 2 months, that was suspended because measurement data are not delivered that should be submitted regularly to QuEST Forum has not been done in case of TL 9000 certification.
    (11) When a critical problem occurs in the system;

• 19. Consultants to the client cannot be physically present at the organization’s site during the audit or participate in the audit in any way.