Professional Documents
Culture Documents
The latest revision of IATF 16949 came out in November of 2016, and as the deadline for transitioning
gets closer, people are starting to become concerned about what steps they need to take to make sure
they are compliant with this latest version.
It’s true that IATF 16949:2016 has brought some substantial changes with regard to concepts and
methods, but it’s nothing too difficult. As long as companies take the time to properly plan for the
transition, and approach the process systematically, there’s no reason why it can’t be completed before
the deadline. The transition process is confusing for many organizations, from questions on what the
changes are to where to start and how to be sure the updated system is fully compliant with IATF 16949.
This white paper is intended for organizations that have already implemented ISO/TS 16949 and are
planning the transition to IATF 16949. It explains the transition timing and what steps are to be taken in
order to perform a successful transition.
Purpose
This white paper is intended for companies that have already implemented ISO/TS 16949, and are
planning to transition to IATF 16949; this transition needs to take place before the deadline in September
2018 for the company to remain compliant and maintain IATF 16949 certification. This paper describes
the suggested steps in the transition process.
As of October 1, 2017, all new certification audits must be conducted according to the new IATF
16949:2016 and the IATF Rules 5th edition. Organizations already certified against ISO/TS 16949:2009
can make the transition for their next recertification audit. When the grace period ends on September
14, 2018, the old ISO/TS 16949:2009 certificates will no longer be valid.
Those organizations that need to transition from ISO/TS 16949:2009 to IATF 16949:2016 will need to
pass a transition audit, including VETO approval for certification, on or before the September 14
deadline. Those companies undergoing their transition audit between July and September of 2018 will
have 120 days, at a maximum, to receive a positive VETO decision after their transition audit is complete.
The easiest way to make the upgrade to the IATF 16949:2016 revision is by following these steps:
Consider this new requirement carefully, as it serves as the foundation of your new Quality Management
System (QMS). There are no extra requirements beyond those of ISO 9001:2015, but due to the nature
of the industry, IATF 16949 is known for raising the bar, so you should anticipate this clause to be looked
at closely when it comes time for the certification audit.
For more information, see: How to define the context of the organization in IATF 16949:2016.
Customers, owners, providers, bankers, unions, regulators, partners in society groups, competitors, and
even pressure groups should all be considered as potential “interested parties” who may be affected by
decisions made by your company, or the scope of your QMS. For example, if you made a business
decision to ramp up your organization’s activities by having a 24-hour shift pattern, then local residents
who may be affected by increased traffic or activity to and from your site would become an “interested
party.” You must be able to demonstrate that you have taken all these factors into consideration to
satisfy this clause.
Read more here: Determining interested parties and their requirements according to IATF 16949:2016.
For more information, see: How to define scope of the QMS according to IATF 16949:2016.
4) Demonstrate leadership
There is a marked change in the “leadership” requirements in the new version, which appear in clause
5. The 2016 revision calls for leaders to be “active” and responsible, rather than the more passive role
that could be interpreted from the 2009 revision. The standard assigns responsibility to the
organizational leader for strategic quality objectives, QMS scope and results, policies and processes,
communication, culture, fostering a commitment to quality, providing resources and training
opportunities, and even “inspiring, encouraging and recognizing the contribution of people.” Therefore,
it is clear that “top management” involvement and inclusion in all aspects of your QMS will become a
requirement. For instance, making decisions on issues like risk assessment topics will now be almost
impossible without strategic leadership advice, except in the instance of responding to an “incident.”
Leadership requirements in the new revision of the standard are nearly identical to those for
management commitment in the last version. However, IATF 16949:2016 places even greater
importance on organizational leadership, with additional requirements listed for corporate
responsibility. Top management can show leadership by creating a Quality Policy and quality objectives,
holding themselves accountable for the Quality Management System, and providing adequate resources
to keep it running smoothly.
This is a new and key requirement of the new version of the standard, and appears in clause 6 of the
standard. Risks and opportunities now need to be considered for all aspects of the QMS, including all
compliance requirements and even the context of the organization. After this, there should be a
documented plan for how the business should address that risk. Therefore, the assessment of risk and
opportunity is intended to become an integral part of all major QMS components and decision-making
processes. Add to this the increased reliance on leadership mentioned above, and it is easy to see how
real business benefits will be attained for most organizations. One way to comply is a “Risk Log” for your
top team, which they can populate when assessing, taking actions, and mitigating risk.
The new version of the standard requires the organization to ensure that the quality objectives are
compatible with the strategic direction of the company. The revision also requires that plans for
achieving these objectives must be created.
For more information, see: How to Write IATF 16949 Quality Objectives.
For example, as “documented information” and a “process approach” are now critical, why not consider
replacing some of your more wordy or cumbersome process instructions with one single process
diagram? While improving your documentation is an excellent opportunity to demonstrate continual
improvement, you are advised to ensure that your existing documentation still meets the needs of the
standard.
For more information, see: A new approach to document and record control in IATF 16949.
Improved operational control versus the stated criteria is one of the goals of the new version. The stated
criteria are that your organization must define the criteria and processes for services and products to be
effectively delivered, and ensure that the documentation and resources to deliver them are in place.
Therefore, it is important that your process documentation reflects this improved accuracy and
operational control to comply with the new standard. For example, are your stated criteria and defined
processes aligned to produce the targeted results and outcomes? Can you show that resources have
been planned and delivered and that the product conforms to the stated requirements?
There is a marked change in the level of control the standard requires in terms of design and
development relative to the 2008 version. Responsibilities, inputs and outputs, controls, change control,
The organization is required to evaluate its QMS with regards to its performance, effectiveness, and
efficiency. You may already be familiar with KPIs (key performance indicators) – you just need to figure
out what needs to be monitored, how it should be monitored, and how often.
For more information, see: Five Main Steps in an IATF 16949:2016 Internal Audit and How to implement
management review according to IATF 16949.
You can download an IATF 16949 Documentation Toolkit. This will allow you to see a sample of policies
and procedures required by the standard.