ISO 9001 Clause: 6.3 Planning of Changes

What is Planning of Changes According to ISO 9001?

In ISO 9001, the requirement for planning of changes is outlined in clause 6.3. This clause emphasizes the need for a structured approach when making changes to the Quality Management System (QMS) or processes that impact product or service quality. The goal is to ensure that changes are implemented in a way that maintains or improves the integrity of the QMS, avoids unintended consequences, and continues to meet customer and regulatory requirements.

Key Elements of Planning Changes

  1. Purpose of Change – You must clearly define why the change is being made. This helps in understanding the context of the change and ensuring it aligns with your quality objectives and overall business strategy.
  2. Impact of the Change – Consider the potential effects that the change could have on the processes, products, services, and quality performance. It’s essential to evaluate both the positive and negative impacts of the change before implementing it.
  3. Resource Requirements – Identify the resources (people, equipment, time, budget) needed to successfully implement the change. This ensures the organization is fully prepared to handle the change without compromising quality.
  4. Roles and Responsibilities – Ensure that roles and responsibilities for implementing and managing the change are clearly defined. Everyone involved should know their role in executing the change.
  5. Risk Management – Evaluate the risks associated with the change. This includes identifying potential issues that could arise during or after the change and planning mitigation actions to reduce the likelihood of negative impacts. This ties into the broader risk-based thinking approach encouraged by ISO 9001.
  6. Impact on the QMS – The change must be analyzed to ensure it does not negatively affect the integrity of the Quality Management System. Any change in processes must align with the QMS framework to maintain compliance with ISO 9001.
  7. Communication – Ensure the change is properly communicated to all relevant stakeholders, including employees, managers, suppliers, and possibly customers. This helps in keeping everyone informed and aligned with the change.
  8. Review and Approval – Changes should be reviewed and approved before implementation. This ensures that all aspects of the change have been considered and that the change is necessary and beneficial.
  9. Monitoring and Evaluation – After implementation, the change should be monitored to ensure it achieves the desired outcomes and doesn’t negatively impact quality or compliance. If needed, further actions can be taken to correct any issues that arise after the change.

Why It’s Important

Effective planning of changes ensures that organizations manage change in a controlled and strategic way. By carefully evaluating the risks, resources, and potential impacts of a change, organizations can avoid disruptions to their QMS, ensure continued compliance with ISO 9001 standards, and maintain or improve product/service quality.

In summary, clause 6.3 of ISO 9001:2015 ensures that changes to the QMS are well-thought-out, planned, and executed in a manner that minimizes risks and enhances overall performance.

Training Courses

Examples of ISO standards for change management

ISO standards for change management refer to a set of guidelines and requirements within the ISO framework that help organizations manage changes systematically and effectively, ensuring consistency, quality, and minimal disruption to operations. While there isn’t one specific ISO standard dedicated solely to change management, several ISO standards include requirements or guidance related to change management. 

1. ISO 9001 (Quality Management Systems)

ISO 9001:2015 addresses change management within a Quality Management System (QMS). It requires organizations to have processes in place to control changes that can impact the QMS. Key clauses include:

  • Clause 6.3 – Planning of Changes: Organizations must plan changes systematically and ensure they are implemented in a way that maintains the integrity of the QMS.
  • Clause 8.5.6 – Control of Changes: This clause requires organizations to review and control any changes that affect production or service provision. It ensures that all changes are documented and analyzed for risks and opportunities.

2. ISO 14001 (Environmental Management Systems)

ISO 14001:2015 focuses on environmental management and includes change management processes related to environmental impacts:

  • Clause 6.1.4 – Planning Action: This covers planning for changes in the environmental management system, ensuring risks are managed.
  • Clause 8.2 – Emergency Preparedness and Response: Organizations must prepare for and control changes that might affect their ability to respond to environmental risks.

3. ISO 45001 (Occupational Health and Safety)

ISO 45001:2018 focuses on health and safety risks in the workplace and outlines how changes should be managed to ensure worker safety:

  • Clause 8.1.3 – Management of Change: This clause requires organizations to identify and assess risks associated with changes in processes, equipment, or personnel that could affect occupational health and safety.

      4. ISO 27001 (Information Security Management Systems)

      ISO 27001 focuses on information security and risk management:

      • Clause 6.1.3 – Information Security Risk Treatment: This includes requirements for managing changes that could affect information security.
      • Clause 8.2 – Change Management for Information Security: This involves ensuring that changes to information systems are controlled to avoid risks to data integrity, confidentiality, or availability.

      5. ISO 13485(Medical Devices – QMS)

      ISO 13485 focuses on medical device quality management, where change management is critical:

      • Clause 4.1.4 – Change Control: It requires organizations to control changes to the QMS to ensure that changes don’t negatively affect the safety and performance of medical devices.

      6. ISO 20000 (IT Service Management)

      For IT services, change management is crucial:

      • Clause 8.3 – Control of Changes: This section deals with managing changes in IT services to ensure that the introduction of changes does not compromise service quality or availability.

      7. ISO 22301 (Business Continuity Management Systems)

      This standard focuses on ensuring organizations can continue to operate during disruptions:

      • Clause 8.2 – Establishing and Implementing Business Continuity Plans and Procedures: Organizations must manage changes to their continuity management systems to ensure effectiveness during crises.

      Change Management - keep it simple and smart

      Tools for Change Management

      Here’s a list of tools that can help streamline and improve the change management process:

      • Change Control Software (e.g., Jira, ServiceNow, Asana) – These tools help manage and track changes, ensuring that all steps of the process are documented, tracked, and approved. They allow for real-time collaboration and visibility into change requests, statuses, and timelines.

      • Risk Assessment Tools (e.g., FMEA, Risk Matrix) – Failure Modes and Effects Analysis (FMEA) and Risk Matrices are useful tools for identifying and evaluating potential risks associated with changes. These help prioritize changes based on their risk levels and provide strategies to mitigate them.

      • Flowcharts and Process Maps (e.g., Lucidchart, Microsoft Visio) – Visualizing the change process helps stakeholders understand the sequence of actions, the points where changes occur, and the impact on other processes. Process mapping provides a clear overview of how changes affect the current system.

      • Gantt Charts and Project Management Tools (e.g., Trello, Monday.com) – Gantt charts and project management platforms can be used to plan the timeline for changes, assign responsibilities, and monitor progress. These tools offer a structured approach to track milestones and ensure changes happen within the planned schedule.

      • SWOT Analysis – A SWOT analysis (Strengths, Weaknesses, Opportunities, Threats) helps assess the overall environment of the organization before implementing changes. It ensures that potential positive and negative outcomes are considered.

      • RACI Matrix (Responsible, Accountable, Consulted, Informed) – This tool clearly defines the roles and responsibilities of everyone involved in the change process. It ensures clarity on who is responsible for what, reducing the risk of confusion and bottlenecks.

      • Change Request Forms – Documented forms allow for a formal process for initiating, reviewing, and approving changes. This helps ensure all changes are tracked, assessed, and authorized in a structured way.

      • Stakeholder Analysis Tools – Tools like stakeholder maps or power/interest grids help identify key stakeholders and their influence on the change process. This ensures that relevant parties are involved at the right times and in the right capacities.

      • Version Control Tools (e.g., Git, SVN) – For software or document-based changes, version control systems help manage revisions and ensure that changes are tracked and implemented in a controlled manner.

      • KPI and Performance Monitoring Tools – Use Key Performance Indicator (KPI) tracking software like Tableau or Google Sheets to monitor the success and impact of changes. These tools provide data-driven insights into how well the change has been implemented.

        Methodologies for Change Management

        Here’s a list of methodologies that can help streamline and improve the change management process:

        • ADKAR Model (Awareness, Desire, Knowledge, Ability, Reinforcement) – This change management framework helps guide individuals through change. It ensures that everyone is prepared, has the necessary skills, and is motivated to adopt the changes.

        • Kotter’s 8-Step Change Model – This well-known change management methodology outlines a step-by-step approach to implementing change, from creating a sense of urgency to embedding the change into the company culture.

        • PDCA Cycle (Plan-Do-Check-Act) – The PDCA cycle is a simple yet effective methodology to ensure continuous improvement during and after the change process. It ensures that changes are well-planned, executed, monitored, and adjusted as necessary.

        • Lean and Six Sigma – Lean and Six Sigma principles focus on reducing waste and improving efficiency during the change process. These methodologies emphasize process optimization and quality control during implementation.

        • Agile Change Management – Agile methodologies involve iterative change processes where small changes are implemented, reviewed, and adjusted in short cycles. This approach is particularly useful in fast-paced environments where flexibility and adaptability are crucial.

        • Prosci Change Management Methodology – Prosci’s methodology focuses on the people side of change, ensuring that employees are fully engaged and supported through changes. It provides structured steps for managing and reinforcing change efforts.

          Good Practices for Change Management

          Here’s a list of Good Practices that can help with the change management process:

          • Engage Stakeholders Early – Get input from key stakeholders during the planning phase to ensure their concerns and needs are considered. Early engagement fosters buy-in and reduces resistance to changes.

          • Communicate Frequently and Clearly – Consistent communication is key to successful change management. Keep everyone in the loop, from top management to team members, and ensure they understand the purpose, benefits, and timeline of the changes.

          • Document Everything – Maintain detailed documentation throughout the change process. From change requests and approvals to risk assessments and implementation steps, having a paper trail ensures accountability and clarity.

          • Provide Training and Support – Offer training and resources to employees to help them adapt to changes. This ensures they have the skills and knowledge needed to succeed in the new environment.

          • Pilot Testing or Phased Implementation – Consider implementing changes in phases or through pilot tests. This helps identify potential issues on a smaller scale before rolling out changes organization-wide.

          • Monitor and Review the Change Process – Regularly monitor the progress of the change and review its outcomes. This helps identify areas for improvement and ensures that the change is effective and sustainable.
          • Flexibility and Adaptability – Be prepared to adjust your change management plan if necessary. Stay flexible and responsive to feedback and unexpected challenges.
          • Celebrate Wins – Recognize and celebrate small wins and milestones throughout the change process. This helps build momentum and keep team morale high.
          • Risk Mitigation – Always have a contingency plan in place. Identify risks early and develop strategies to mitigate them if they arise.
          • Continuous Improvement – After the change is implemented, don’t stop there. Evaluate the results, learn from the experience, and use the insights to improve future change processes.
              Previous - ISO 9001 Clause 6.2Next - ISO 9001 Clause 7.1

              Conclusion

              ISO 9001 Clause 6.3 emphasizes the importance of structured planning of changes within the Quality Management System (QMS). By following this clause, organizations ensure that changes are implemented in a controlled and organized manner, minimizing disruptions and risks to quality. Proper planning includes evaluating the purpose, impact, and resources needed for changes, while also ensuring communication and monitoring throughout the process.

              In essence, Clause 6.3 promotes risk-based thinking and a proactive approach to managing change, helping organizations maintain the integrity of their QMS, achieve their objectives, and continuously improve performance. Planning changes effectively not only supports compliance but also drives smoother operations and enhances overall quality.

              Wanna know more? Let's dive in!