Category Archives: Quality

What Every Company Needs to Know About Valuable Safety Management

It doesn’t matter what industry you work in: prioritizing safety management is a crucial responsibility of any high-level manager. If protocols are not established, your business risks having staff injured on the job. As one workers compensation attorney in Philadelphia states: “Most victims are unable to continue working in the same capacity as before the injury.”

Injuries on the job due to improper management can be harmful to your bottom line. They can also deter clients and employees from seeking you out. But, successful safety management protects employees and ensures the organization is compliant with all relevant laws.

A strong safety management system can help companies achieve this crucial goal. However, before selecting one, it’s important to understand certain key points.

Identifying Risk Factors

An effective safety management system will gather important information about the potential risks your employees may be exposed to on the job. This system can track various types of information, like employee medical history and the kinds of safety hazards common to workers in your industry.

The gathered information makes it easier for you to identify what types of danger your workers are most likely to find themselves in. Thus, you’re better prepared to put preventative measures in place.

Handling Important Processes

A safety management system shouldn’t just help you identify hazards. It should also help you evaluate the performance of any steps you take to mitigate risks. You can, and should, use your system to regularly assess the impact of your safety efforts and programs.

No One Person is Responsible for Implementing the System

Don’t make the mistake of assuming that only dedicated safety specialists play a role in implementing and maintaining this system. Everyone in the company’s chain-of-command is involved.

A senior manager is likely to be the one who establishes protocols and allocates the necessary funds and resources for a safety management system. But, management is responsible for ensuring these protocols are maintained within their individual departments.

Safety Systems Boost Efficiency

According to a recent study, safety management systems are effective at reducing the frequency of accidents in the workplace. As OSHA points out, this results in a major boost in both productivity and efficiency.

Companies incur additional expenses when employees get hurt or sick on the job. The cost of investigating the accident, compensating the employee, and possibly having to hire and train a replacement can have a major impact on a company’s yield.

Safety management systems prevent these consequences. They’ve also been shown to improve employee morale, which further improves productivity.

Constant Improvement

Safety management systems evolve. By monitoring their effectiveness, managers can identify areas of the business that need improvement. Making sure lower-level employees can contribute feedback is a smart way to improve the system, as they are often more likely to be exposed to hazards. Additionally, employee feedback is one way to devote attention to continuous performance management and boost your organization’s morale and efficiency.

Improved Products

A safety management system is geared towards identifying and addressing hazards. That said, when used properly, it can also indirectly enhance the quality of a company’s products or services.

That’s because responding to workplace injuries depletes an organization’s resources. When employees are safer, a company can direct more attention and energy to optimizing its products. The company’s staff will also be more productive on the job. As a result, the entire business performs at a higher, more consistent level.

Published by:

Why data is important in Quality Management.

At the center of all quality management systems is the concept of continuous improvement. This implies that you have the ability to prove that there has been some kind of improvement. It may sound straightforward, but it isn’t always that easy to do. Many times there is limited data or even no data to even come up any results. In order to prove progress, it is important to have the consistent data to back it up.

Collecting Data

Data is a main ingredient to show how the company improves on certain KPI’s. However, collecting the data is more often that not a very labor intensive task, mainly done by the quality department. In order to make it easy for the organization to share the required data, it should be fairly easy for employees to do this. A mobile app helps in this process. Having all the important forms at your fingertips makes it so much easier to share this information, which allows the quality department to focus on analyzing the data instead of pushing people to provide it. Also having an open IT infrastructure which allows for sharing data between systems is key in order to pull the data from different sources.

Analysing Data

When the data is gathered it should be analyzed properly. This is not just drawing graphs but also interpreting the changes of the data over time. Different time frames could show interesting effects. Furthermore, mapping out different root causes will give more insight on how to improve the company. It is important to play around with the data and not only focus on the predefined KPI’s. Playing around and plotting different variables against each other can give completely new insights. A great technique to check out where this goes wrong is by using the “Pareto” plot of the data.

 Showing Results

Maybe the most important aspect of using data to improve quality management is communicating the results. Not only to top management, but to the employees within the company. Every employee helps by providing the data. When you involve them in the results of the analysis, they see the impact they had on the company instantly. Which then makes them more willing to share again in the future.

 Pitfalls

The biggest pitfall with analysis data is the inconsistency in the data. It is very important the data is clean and usable. This can be easily checked simply by plotting the data and looking for weird spikes. Also during the setup, it is required to predefine certain choices. When you give employees the option such as “I don’t know” or “general”, they will most likely choose that. This will lead to a lot of data with that option, which completely ruins the possibility to analyze it, so try to prevent these options.

 

Qooling makes collecting information and analyzing it a lot easier by a simple to use mobile app and the straightforward interface of its platform.

Published by:

How to apply the PDCA-cycle to improve your business!

The PDCA (plan-do-check-act) cycle is a four-step approach which is used in business for the control and continual improvement of processes and products. By consistently testing out possible solutions, comparing the results and implementing those that are successful, there is the potential for steady improvement in all areas. Therefore, the PDCA cycle fits exactly to the elements and requirements of the quality management system.

Planning

The PDCA cycle starts with planning, in which your problems or opportunities are identified and understood. Collect as much relevant data as possible and find the cause of the problem. The data can be collected from your recalls, quality issues, safety problems or any other register in which data is accumulated. After the data is gathered, it is important to make a plan according to the mission, vision and values of the company. This allows the company to stay close to what is important for it. Set goals and determine the best way to meet them.

Execution

In the ‘do’ phase, all planned activities of the process take place. Use the approved plan from the previous phase as a starting point. Set a clear goal that you want to achieve and measure the results along the way. Involve the employees while executing the plan – this helps with gaining trust and allows them to contribute to improving the company. It is crucial that data is collected to see what happens over a period of time.

Check

Once the data of the execution phase is collected, it is essential to make it understandable. When the data is known, it is important to benchmark this data against the data that was identified in the planning phase. The initial data was collected to spot certain areas to improve. Now check the new data against your initial goals while at the same time benchmarking it against the old data. According to the results, you can then go to the next step – act.

Act

On the basis of the analysis and results from the previous phases, decisions can be made on whether previous measures and plans need to be adjusted. If necessary, adjust the plan and start again with planning phase. When the results show no consequences, it is important to make the decision to stop the project. This will prevent the company from spending resources on projects which have a low likelihood of adding value.

How PDCA Is Covered in Qooling

Qooling allows for easy gathering of information throughout the company. This data can be used to identify improvement projects and plan ahead for them. During the execution phase you can assign tasks to employees and again allow them to share information fairly easily. The information can then be used to check the results and benchmark against the situation which occurred months ago. This way the results can be found by the a few simple clicks.

Conclusion

The PDCA-cycle is a great way to improve the operations, but similar to most management practices it is important to gather the data to check the progress. Gathering this information isn’t always easy or straightforward, so it is important to use the proper solutions to get accurate results.

Published by:

How management buy-in can help ISO implementation

One of the most difficult tasks that a person may need to undertake before approaching the ISO topic is to win the buy-in from top management. QHSE is considered a cost center where resources are spent to implement and manage the system, but the benefits may not be immediately apparent.

Of course, a key concern for top management is a healthy bottom-line. This is communicated to all department heads in the form of KPI’s with accountability. This means that everyone knows what is important for top management and what is expected of them. But this rarely happens when it comes to ISO.

Sending the right message to your people about the importance of cooperation with the implementation project means a smoother transition. Things get done in a more timely manner. With the right level of support, within six months you must be able to build a completely integrated management system across multiple locations and different business units.

Depending on the size and complexity of an organization, an ISO system contains multiple components. How quickly these are prepared and ready for use depends on the involvement of top management.

So what happens if the management doesn’t send the right message?

Not much attention is paid to ISO and the initial never gets off the ground, usually because the QA Manager leaves it to the departments. In this case, departments are so busy that they never manage to do their part. As a result, the term of 2 weeks changes in 1 month, then 2 months, etc.

Internal auditors are trained for a period of 2 days, but when audits are required, most trainees are not available. And if they are, they rush through the audits, missing crucial non-compliances.

There are challenges for your authority as an auditor. Non-conformities do not get addressed in a timely manner. Corrective and Preventive Actions don’t get adequately implemented or they are addressed in a rush to get you out of the way.

Requested data such as those for KPIs, HSE and customer feedback are never sent or you have to ask for it again and again.

There is a poor turnout at management assessments or safety committees.

These are the worst case scenarios, but not uncommon.

So how do you bring management on board?

  • Work out the Cost of Quality and that is not the cost involved in implementing and managing it.
  • Calculate the direct costs of not implementing health and safety, but also highlights the indirect costs of the more difficult to quantify, but are costs nonetheless.
  • Explain what QHSE would mean for their customers and future customers.
  • Explain how a QHSE system would improve their supplier relationships and business results

Because money is an important subject, it is important to emphasize that QHSE is not only a cost center, but also a profit center, provided that they become involved.

This article has been written by Birjees Hussain

Published by:

Process approach to GDPR

In our previous post on GDPR we touched upon the impact it has on your quality management system. We also gave some examples of important topics you should take into consideration. Last week we had a great consulting session with our trusted partner on GDPR and which areas are best to focus on. In this post we will give you some of the useful tips and tricks that came out of that meeting.

Process Approach

The process approach is a good way to find out when and where your company touches personal data. This can easily be done by walking through the processes that are followed within the company. For example, start with sales and go all the way through to the point where the invoice is sent to the customer. When the primary processes have been checked, the secondary processes such as HR and IT can then be checked. This exercise will show you exactly where personal data is touched. Make a list of all the points where this data is handled by your suppliers.

When you are aware of which data is in the company, think about who is handling the data and different ways that it can be handled. You can classify the data as described in our previous post. Make sure you clearly describe who is the processor of the data. When the data is classified and you describe why you need it, you put an expiration date on it and you are good to go.

Sub Processors

An important part to think about is sub processors. Sometimes you are not the one that has the power to change the data, but you give that right to someone else, your sub processor. A good example where you see this often is salary slips. A lot of the time it is accounting firms that are the ones managing the salary slips. However, the majority of companies don’t do this themselves, but they also outsource this to a dedicated supplier. When this is the case make sure you have an agreement in place between you and your accounting firm, because they have the ability to alter the data. In this setup the accounting firm needs to have a data processing agreement with the company that processes the data. And remember, don’t forget to ask your supplier for a data processing agreement.

We provided dozens of companies with the easy to use tools to manage their GDPR and compliance in a broader sense of the word. Want to know how we accomplished this? Feel free to contact us.

Published by:

GDPR in Quality Management

The date that the General Data Protection Regulation (GDPR) is coming into effect is approaching soon. This new law affects almost all companies, but it can have a bigger effect on certified companies. Regardless of the certificate the company holds, all ISO certificates have the fundamental rule:

“The organization needs to demonstrate that they meet the legal requirements.”

This small but fundamental rule means that the certificates are only valid when an organization operates according to the law. Now we know that laws can be fluid and also contradicting depending on regions and countries, but we won’t go into this now. It is fair to say that all companies need to operate according to the GDPR. In this blogpost we provide some easy tips on how this can impact your management system. In the end a lot of companies treat compliance to laws in the same region as compliance to international standards.

The Data

There is a lot of data going through the company. In order to understand which data is stored where, classifying the data helps a lot. A good point to start with is classifying the data owners in line with the stakeholders identified in the stakeholder analysis. Most data can be classified into three categories: customers, employees and suppliers. When the type of stakeholder is known, it is important to classify the kind of data, such as: personal data, company data, payment data, etc. These classifications are highly dependent on the type of service or product you deliver. It is important to know where the data is stored. In order to have this overview you should map out all the products/services you have that hold any kind of data. Some topics we use for such a register are:

  • Company name
  • Contact person
  • Purpose of data
  • Type of Stakeholder
    • Customer
    • Employee
    • Supplier
  • Type of Data
    • Contact details
    • Payment details
    • Personal details
  • Duration of saving
  • Agreement (PDF of contract)

Management System

On top of the register there are some processes that need to be added. People now have more rights, and in order to observe that it is important to document how you support these rights. Two important points here are:

  • How is the organization going to make sure that people have the right to be forgotten? In essence, how are you going to delete all their data across all databases?
  • How will the organization support a request from a customer to get an overview of all the information the organization holds of that person?

These are just two important questions, but it shows that clearly defined processes should be in place and therefore must be added in some way to the management system.

Organizational Impact

The organization can be quite significant. You need to assess whether a data protection officer is required. The three main assessment points are:

  • Public authorities or bodies, except for courts acting in their judicial capacity.
  • Companies who process data requiring ‘regular and systematic monitoring of data subjects on a large scale’.
  • Companies who process, on a large scale, any special category of personal data. This includes data which reveals racial or ethnic origin; political opinions; religious or philosophical beliefs and other such information.
  • Companies who process, on a large scale, personal data relating to criminal convictions and offences.

In case you are required to appoint a data protection officer it is good to include this in the management system, just like your prevention officer is part of the management system.

Policies

The last important part of the GDPR is that the organization has a clear policy on how to handle data and how to protect it. This policy should be readily available and easy accessible for stakeholders.

Impact on Management System

With the requirement to work according to the law and regulations, the GDPR has a clear impact on most management systems around the world. Due to the overlap in a lot of best practices within international standards, we recommend to make the GDPR an inclusive part of your management system, and not to treat it as a separate part.

If you want to know how you can structure a lot of the GDPR related activities within an integrated management system, just contact us.

Published by:

How to keep your quality management system simple

That may sound like a contradiction in terms, particularly if you’ve ever read a management system standard document! They’re not the simplest of things to comprehend but that doesn’t mean your management system has to be just as hard work.

Keep it simple!

A quality management system is mainly focused on customer satisfaction, in which a healthy amount of risk management is introduced for a good dose.

The vast majority of business owners want happy customers and lower risks right? So think about the steps that you naturally take to ensure these are achieved and hey presto! you have the basis for implementing your system.

You don’t have to reinvent the wheel. It is not necessary to make a shoehorn in extra forms, registers, checks or balances to meet a theoretical need. Start with what you have and keep it simple.

Mandatory requirements

Among the mandatory requirements of a formally certified quality management system are a quality policy and quality objectives. Even if you have no need for a formally certified system, your business can still benefit from having these in place.

Your customers will be happy that you’re demonstrating your commitment to quality. Your business will have additional direction and purpose created by your quality objectives.

Be authentic

The remaining requirements of a quality management system include sufficient process documentation that you can be sure things are working to plan. You will define the measures of success and when and how these are to be monitored and evaluated.

Don’t be tempted to download a template package. Yes, I know it’s free and it promises to be super easy. The reality is it will never be anything more than a burden. Be authentic. Write your own.

Simply the best

The best systems are the simplest ones. Simplicity doesn’t mean that something isn’t fit for purpose. Conversely, just because something is complicated doesn’t mean it’s better.

The best person to write your policies and processes is you. You can employ the services of a consultant to coach and guide you. They may even do some writing for you but ultimately you know your business best.

If you’re a slightly bigger business with segregated duties and responsibilities, get the process owners to do the writing. Process owners are the people who operate and/or manage an activity on a daily basis. The experts.

 

This article has been written by Lucy Payne of valeqms.co.uk

Published by:

Risk management in relation to quality

The concept of risk-based thinking has been adopted explicitly by ISO 9001:2015 and replaces the previously stated requirement in ISO 9001:2008 for ‘preventive action’.

In ISO 9001 , risk is defined as ”the effect of uncertainty”. Therefore, risk management in relation to quality, involves the identification, assessment and prioritisation of risks to product or service conformity.  The purpose of this activity is to minimize the potential negative effects of opportunities and risks.

Risk in relation to quality

Both internally as externally quality risks can arise to the company. Internal risks include:

  • shareholders
  • employees
  • equipment
  • technology/software
  • storage of raw materials
  • storage of finished products
  • after-sales support

External risks, which could extend throughout the supply chain, include:

  • landlord
  • legal/regulatory compliance
  • suppliers/delivery partners
  • clients/customers
  • political/social/economic factors
  • special interest groups/action groups
  • general public

Identifying and assessing risks

Tools and techniques to assist in the identification of such risks to quality include brainstorming, fault tree analysis, process mapping and failure modes and effects analysis (FMEA). Effective application of these tools can help to identify risks.

Options to address risks

Options for addressing risks include:

  • avoidance of the source of the risk
  • taking action to reduce the likelihood of the risk
  • taking action to reduce the severity of the risk
  • transferring the risk to a third party
  • retaining the risk under informed decision (perhaps in order to pursue an opportunity)

Benefits of addressing risks

The benefits of addressing risks include:

  • reduced likelihood of occurrence
  • reduced insurance premiums
  • added assurance for investors/shareholders
  • improved customer satisfaction
  • improved employee engagement

Following a thorough risk assessment of your business operations, you can formulate a comprehensive, robust and practical Business Continuity Plan and/or Disaster Recovery Plan.  As a result, you are able to be proactive in identifying risks and addressing potential pitfalls.  This is surely preferable to simply leaving your business success to chance.

This article has been written by Lucy Payne of valeqms.co.uk

Published by:

KPI management

Key Performance Indicators (KPIs) are a very important part of a (integrated) management system. They can show how good or bad the management system is functioning. However, we see a lot of KPIs defined and monitored by quality that are mainly focussing on compliance to standards, such as number of audits performed, number of inspections performed, number of sick days, etc. We do believe that when KPIs are more aligned with company goals, the impact of the management system will be a lot bigger. In line with that reasoning you as a quality management should own these KPIs. Make them your responsibility even though you might not have a direct effect on them. Simply own them and make the line managers or operational managers also part of that process in order for the alignment to work.

It Is Not About Absolute Figures

We are a strong believer of ratios when it comes to KPIs, simply because a lot of one dimensional figures don’t work when the company gets bigger. When you have more orders there is a good chance more things can go wrong and more people are getting ill, so use ratios.

Some great examples include recall per X units manufactured or issues per Y units purchased from supplier B. Ratios allows for scaling whilst still giving a great insight.

Align with Business

In order for the business to get some real value out of the management system make sure the KPIs are aligned with its goals. For example, track quality issues per model or per project and put a financial figure to it. Even though the figure might not be very accurate, it is so much better than working with nothing at all.

With this setup you as a quality manager can directly show the impact on the business. Costs of quality have a direct negative effect on the company’s bottom line. Make sure this is well understood by everybody in the organization.

Own Them

In order to show management that you are serious make sure you own the KPI’s and do whatever it takes to improve them. Set goals for the company based on the performance of last year or quarter. Showing ownership proves you take it serious. Go and talk with operational managers and discuss how the company can reach these goals, and what kind of processes need to be improved. Involve the line manager in the process of setting these goals, then celebrate reaching these goals with them and give them credits for it.

So in order for top management to not take the management for granted, make sure it adds value and show how it helps the company to increase the bottom line.

We have helped a lot of companies to get the insights in their cost of quality in order to go to an improvement approach. Top management can directly see what the (integrated) management brings them and how it adds value to the company, on top of staying compliant. Do you want to know how Qooling can help your organization with this? Just contact us.

Published by: