Hazard Analysis and Critical Control Point principles

Hazard Analysis and Critical Control Point principles

In order to protect consumers against any contamination of their food, the Hazard Analysis and Critical Control Point (HACCP) principles were developed. HACCP is an internationally recognised system for food safety management.

It is the responsibility of all food business operators to ensure that the food they produce is safe to eat. If you are an operator, then you must ensure you put in place food safety management procedures and working practices, and be able to prove that this has been done.

To produce safe food for consumers, all the important safety hazards that are associated with the production of food need to be identified and then prevented, eliminated or reduced to an acceptable level. These food safety hazards may be biological, physical or chemical.

The seven HACCP principles provide a systematic way of identifying food safety hazards, making sure that they are being managed responsibly and showing that this is being done day-in, day-out.

This involves the following steps:

·         plan - decide what needs to be done to ensure food safety and write it down

·         do - carry out your plan of action

·         check - monitor your HACCP activity and record what has been checked and when

·         act - take action when food safety is at risk and write it down

The seven HACCP principles are:

·         identify any hazards that must be prevented eliminated or reduced to acceptable levels

·         identify the critical control points (CCPs) at the step or steps at which control is essential to prevent or eliminate a hazard or to reduce it to acceptable levels

·         establish critical limits at CCPs

·         establish procedures to monitor the CCPs

·         establish corrective actions to be taken if a CCP is not under control

·         establish procedures to verify whether the above procedures are working effectively

·         establish documents and records to demonstrate the effective application of the above measures

For any query regarding HACCP certification please contact us on 9999974494

What is CE Marking

CE Marking is thesymbol as shown on the top of this page. The letters"CE" are the abbreviation of French phrase "ConformitéEuropéene" which literally means "European Conformity".The term initially used was "EC Mark" and it was officially replacedby "CE Marking" in the Directive 93/68/EEC in 1993."CE Marking" is now used in all EU official documents. "CEMark" is also in use, but it is NOT the official term.

1. CE Marking on a product is a manufacturer's declaration that the product complies with the essential requirements of the relevant European health, safety and environmental protection legislation, in practice by many of the so-called Product Directives.*

*Product Directives contains the "essential requirements" and/or "performance levels" and "Harmonized Standards" to which the products must conform. Harmonized Standards are the technical specifications (European Standards or Harmonization Documents) which are established by several European standards agencies (CEN, CENELEC, etc).

CEN stands for European Committee for Standardization.
CENELEC stands for European Committee for Electro technical Standardization.

2. CE Marking on a product indicates to governmental officials that the product may be legally placed on the market in their country.
3. CE Marking on a product ensures the free movement of the product within the EFTA & European Union (EU) single market (total 28 countries), and
4. CE Marking on a product permits the withdrawal of the non-conforming products by customs and enforcement/vigilance authorities.

Along with more directives' becoming effective, more and more products are required to bear the CE Marking for gaining access to the EFTA & European Union market. However, many non-EU exporters are still unaware of or unsure about this fact and its impact on their business.




The CE Marking applies only to products placed in the market or put into service in the European Economic Area, and only for a certain number of product groups or product aspects. So to answer the question whether the CE Marking applies, one has to determine first if the countries in which the products are going to be placed in the market or used are countries that require CE Marking. Secondly, it must be checked if the product, or some of its aspects, are within the field of application of the CE Marking regulations.


CE Marking is only applicable in the following countries:

A) The twenty-seven Member States of the European Union (EU):

Austria (became member in 1995)
Belgium (Founder Member in 1957)
Bulgaria (2007)
Czech Republic (2004)
Cyprus (2004)
Denmark (1973)
Estonia (2004)
Finland (1995)
France (FM 1957)
Germany (FM 1957)
Greece (1981)
Hungary (2004)
Ireland (1973)
Italy, (FM 1957)
Latvia (2004)
Lithuania (2004)
Luxembourg (FM 1957)
Malta (2004)
The Netherlands (FM 1957)
Poland (2004)
Portugal (1986)
Romania (2007)
Slovakia (2004)
Slovenia (2004)
Spain (1986)
Sweden (1995)
United Kingdom (Great Britain) (1973)


The CE Marking is required only for the following types of products:

-Toys
-Machinery
-Electrical equipment
-Electronic equipment
-Personal protective equipment
-Pressure equipment
-Medical devices
-Active implantable medical devices
-In vitro diagnostica
-Radio and Telecommunications terminal equipment
-Simple pressure vessels
-Gas appliances
-Lifts
-Recreational craft
-Equipment and protective systems for use in explosive atmospheres
-Non-automatic weighing instruments
-Cableways
-Construction products
-Explosives for civil use
-New hot water boilers
-Measuring Equipment

CE Marking is NOT required for the following products:

-Chemicals
-Pharmaceuticals
-Cosmetics
-Foodstuffs

Other than mentioned product groups do not require CE Marking.


CE Directives

CE Marking product requirements and certification procedures are laid down in European technical regulations that are called 'directives'. There are currently almost 25 CE Marking directives for different product groups (e.g. machinery, toys, medical devices) or product aspects (e.g. electromagnetic compatibility). Please note also that more than one directive can apply to a single product. For example, a machine with an electrical system and control panel is regulated by the Machinery Directive, the Low Voltage Directive and the EMC Directive.

Unfortunately, there is no list that tells you which products are covered by which directives. So, you must check every directive in order to determine if it applies. We have put a simple checklist on our website that helps you to check the applicable directives yourself.
For the checklist please go to: www.cdgcertification.com 


Call on:- 9654656507 or 9999974494 for CE Marking of your product

OHSAS 18001: Occupational Health & Safety Management System

In the changed industrial scenario, an emphatic worldwide endeavour is visible in improving quality in all functions of an organization1. Recognizing that the workplace safety and health is a decisive factor in an organizational effectiveness, several management frameworks have been proposed to implement cost effective occupational health and safety (OHS) in preventing workplace ailments and promoting health and welfare of workers revolving around the International Standards Organization families of management standards (eg. ISO 9000 and ISO 14000)2-3. Broadly, an ideal OHS management system (OHSMS) should provide a structured process to minimize potentials of work-related injuries and illnesses, increase productivity by reducing the direct and indirect costs associated with accidents, and increase the quality of manufactured products and/ or rendered services. It must provide a direction to OHS activities, in accordance with the organizational policies,

regulatory requirements, industry practices and standards, including negotiated labour agreements.

Therefore, conforming to an OHSMS may be of significant value to an organization. This approach has drawn significant attention among the standards organizations, the accreditation and certification bodies and the national agencies in formalizing, implementing and evaluating OHSMS. This write-up gives an account and analysis of the OHSMS development, including its scope in the context of our diverse employment sectors.

What is OHSAS 18001?

An Occupational Health & Safety Management System is a framework that allows an organization to consistently identify and control its health and safety risks, reduce the potential for accidents, aid legislative compliance and improve overall performance.
OHSAS 18001 is the assessment specification for Occupational Health & Safety Management Systems. It was developed in response to the need for companies to meet their health and safety obligations in an efficient manner.
The following key areas are addressed by OHSAS 18001:

• Planning for hazard identification, risk assessment and risk control
• OHSAS management programme
• Structure and responsibility
• Training, awareness and competence
• Consultation and communication
• Operational control
• Emergency preparedness and response
• Performance measuring, monitoring and improvement

Who is it relevant to?

OHSAS 18001 can be adopted by any organization wishing to implement a formal procedure, which will reduce the risks associated with health and safety in the working environment for employees, customers and the general public.
In a competitive market place, customers are looking for more than just keen pricing from their suppliers. Companies need to demonstrate that their businesses are managed efficiently and responsibly and that they can provide a reliable service without excessive downtime caused by work related accidents and incidents.
Whatever the nature or size of your business, implementing an occupational health and safety management system is common sense as well as a legal requirement in many countries worldwide.
Whilst the British and International Management System Standards are autonomous, they are more compatible than ever before. Integrating your systems give limitless potential while adding value and efficiency to any organization. BSI has developed the practical solution for those organizations seeking an integrated management system

What are the benefits?

Assessment to OHSAS 18001 will ensure that you take the effective measures and implement the necessary rigorous controls to ensure that you have identified and are managing the safety and risks associated with your work activities.
Registration to OHSAS 18001 will not only help you enhance your business performance, but also has the following benefits:

·         Reduce risk
Improved safety levels by controlling hazards and risks
Better management of health and safety risks, now and in the future

·         Gain competitive advantage
Demonstrate your commitment to health and safety to stakeholders

·         Improve overall performance
Underline your commitment to an innovative and forward thinking approach
Improved operational efficiency through accident management reduction and reduction in downtime

·         Reduced costs for insurance premiums, compensation or penalties for breach of legislation.

Safety Management System (SMS) Audit

The sample audit and safety inspection checklists contained herein are designed to help you evaluate the quality of your company’s safety management system design and performance. It should be revised as need to best meet your organization's needs. SMS audits should be reviewed at least annually to look at each of the critical components of the SMS to determine what is working well and what changes, if any, are needed. When you identify needs that should be addressed, you have the basis for a new safety and health objective for program improvement. This audit does not replace any provision, standard, or rule contained in the OSHAct of 1970.

 Does the company have a comprehensive written safety and health program that addresses the following key elements:

1. Management commitment;

2. Employee involvement;

3. Management and labor accountability;

4. Incident and accident investigation policy and procedures;

5. Safety training;

6. Hazard identification and control; and

7. Periodic program review.

____ Has responsibility for developing and monitoring the safety and health program been delegated to a person or office?

____ Has responsibility for carrying out the safety and health program been assigned to all levels of the line organization (managers and supervisors) and employees?

____ Are managers and supervisors carrying out their safety and health supervision, training, and enforcement responsibilities?

____ Are employees carrying out their safety and health compliance and reporting responsibilities?

____ Is there an accountability system for ensuring managers and supervisors carry out their safety and health supervision, training and enforcement responsibilities?

____ Is there an accountability system for ensuring employees comply with safety and health rules and hazard/injury reporting responsibilities?

____ Is there a system that provides communication with affected employees on occupational safety and health matters (meetings, training programs, posting, written communications, a system of hazard reporting, etc.)?

____ Does the communication system include provisions designed to encourage employees to inform the employer of hazards at the work site without fear of reprisal?

Is there a system for identifying and evaluating workplace hazards whenever new substances, processes, procedures or equipment are introduced into the workplace, and whenever the employer receives notification of a new or previously unrecognized hazard?

____ Are periodic inspections for safety and health scheduled and carried out by managers and supervisors, and the safety committee?

____ Are inspection records kept which identify unsafe conditions and practices?

____ Is there an incident and accident investigation program?

____ Are unsafe and unhealthful conditions and work practices corrected immediately, with the most hazardous exposures corrected first?

____ Do employees know the safety and health hazards specific to their job assignments?

____ Is training provided to all employees when they are first hired and when they receive new job assignments?

____ Are training needs of employees evaluated whenever new substances, processes, procedures, or equipment are introduced into the workplace, and whenever the employer received notification of a new or previously unrecognized hazard?

____ Are records kept documenting safety and health training for each employee by name or other identifier, training dates, types of training, and training provider?

____ Does the employer have a labor-management safety and health committee?

Safety Inspection Checklists

Since OSHA regulations are quite extensive, these audits are by no means all inclusive. You should add to them or delete items which don’t apply to your operations. More information regarding rules which may apply to your workplace is available from Federal or State OSHA.

Abrasive Wheel Equipment Grinders

Additional VDT Workstation Criteria

Chemical Exposures

Compressed Gas and Cylinders

Compressors and Compressed Gas

Confined Spaces

Cranes and Hoists

Electrical Safety

Elevated Surfaces

Emergency Action Plan

Environmental Controls

Ergonomics

Exit or Egress

Exit Doors

Eye Protection

Fire Protection

Flammable and Combustible Materials

Floor and Wall Openings

General Work Environment

Hand Tools and Equipment

Hazard Communication

Hearing Conservation

Identification of Piping Systems

Industrial Trucks - Forklifts

Infection Control

Injury and Illness Prevention Program

Lockout/Tagout Procedures

Machine Guarding

Materials Handling

Medical Services and First Aid

Noise

Personal Protective Equipment and Clothing

Posting

Portable Ladders

Portable (Power-operated) Tools and Equipment

Recommended VDT Workstation Criteria

Recordkeeping

Safety Committees

Spray Finishing Operations

Stairs and Stairways

Tire Inflation

Transporting Employees and Materials

Ventilation for Indoor Air Quality

Video Display Terminals

Walkways

Welding, Cutting and Brazing

 

ISO 27001:2005 Certification

ISO 27001:2005

ISO/IEC 27001:2005 covers all types of organizations (e.g. commercial enterprises, government agencies, not-for profit organizations). ISO/IEC 27001:2005 specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented Information Security Management System within the context of the organization's overall business risks. It specifies requirements for the implementation of security controls customized to the needs of individual organizations or parts thereof.

ISO/IEC 27001:2005 is designed to ensure the selection of adequate and proportionate security controls that protect information assets and give confidence to interested parties.

ISO/IEC 27001:2005 is intended to be suitable for several different types of use, including the following:

§  use within organizations to formulate security requirements and objectives;

§  use within organizations as a way to ensure that security risks are cost effectively managed;

§  use within organizations to ensure compliance with laws and regulations;

§  use within an organization as a process framework for the implementation and management of controls to ensure that the specific security objectives of an organization are met;

§  definition of new information security management processes;

§  identification and clarification of existing information security management processes;

§  use by the management of organizations to determine the status of information security management activities;

§  use by the internal and external auditors of organizations to determine the degree of compliance with the policies, directives and standards adopted by an organization;

§  use by organizations to provide relevant information about information security policies, directives, standards and procedures to trading partners and other organizations with whom they interact for operational or commercial reasons;

§  implementation of business-enabling information security;

§  Use by organizations to provide relevant information about information security to customers.

CHECK POINTS FOR ISO 27001:2005

(a)     the legal or regulatory and contractual security obligations?

(b)   strategic risk management established and maintained of ISMS ?

(c)    the risk assessment approach defined in the organization?

(d)   the risk analysis and evaluate and its treatment? Give one example?

(e)    control objective and control risk treatment defined?

(f)    risk treatment plan is established?

(g)    the improvement matrix defined in the organization for ISMS?

(h)   risk assessment methodology Procedure

(i)     Routine & non-routine activities,

(j)     Control of document

(k)   Control of records

(l)     Management commitment procedure

(m) Management legal entity defined in ISMS manual?

(n)   Technological options.

(o)   Financial, operations & business requirements.

(p)   Views of interested parties.

(q)   Can competence to perform tasks that may impact on ISMS in the workplace be demonstrated?

(r)     Operating Procedures Do the Procedures take into account differing levels of responsibility, ability, literacy and risk ?

(s)    Performance measurement and monitoring Procedure

Is there evidence to show that the system complies with planned arrangements and ISO 27001?

Does the Audit Procedure cover the scope, frequency, methodologies, competencies, responsibilities and requirements for conducting audits and reporting results?

Are personnel conducting audits independent of those having direct responsibility for the Organisation?

Management Review

Is the ISMS Management System reviewed at determined intervals?

Does the review cover the System’s continuing suitability, adequacy effectiveness?

Are reviews documented?

Does the review process ensure that the necessary information is collected to allow Management to carry out the evaluation?

Does the review address the possible need for changes to Policy, objectives and other elements of the ISMS Management System ?

Continual Improvement:-

-does the continual improvement system is established in the orianization?

-does the continual improvement procedure established?

Corrective Acotion & Preventive Action:-

-Does company ha established the procedures for Corrective and preventive actions?

-          Does all the records found for corrective and preventive action?

-          Does analysis has performed for corrective and preventive actions?

Overview of an ISMS

Information security is the protection of information to ensure:

• Confidentiality: ensuring that the information is accessible only to those authorized to access it.

• Integrity: ensuring that the information is accurate and complete and that the information is not

modified without authorization.

• Availability: ensuring that the information is accessible to authorized users when required.

Information security is achieved by applying a suitable set of controls (policies, processes, procedures,

organizational structures, and software and hardware functions).

An Information Security Management System (ISMS) is way to protect and manage information based on

a systematic business risk approach, to establish, implement, operate, monitor, review, maintain, and

improve information security. It is an organizational approach to information security.

ISO/IEC publishes two standards that focus on an organization’s ISMS:

• The code of practice standard: ISO/IEC 27002 (ISO/IEC 17799). This standard can be used as a

starting point for developing an ISMS. It provides guidance for planning and implementing a program

to protect information assets. It also provides a list of controls (safeguards) that you can consider

implementing as part of your ISMS.

• The management system standard: ISO/IEC 27001. This standard is the specification for an ISMS.

It explains how to apply ISO/IEC 27002 (ISO/IEC 17799). It provides the standard against which

certification is performed, including a list of required documents. An organization that seeks

certification of its ISMS is examined against this standard.

These standards are copyright protected text and must be purchased. (For purchasing information, refer to

section 1, “Purchase ISO standards.”)

The standards set forth the following practices:

• All activities must follow a method. The method is arbitrary but must be well defined and

documented.                      

• A company or organization must document its own security goals. An auditor will verify whether these

requirements are fulfilled.

• All security measures used in the ISMS shall be implemented as the result of a risk analysis in order

to eliminate or reduce risks to an acceptable level.

• The standard offers a set of security controls. It is up to the organization to choose which controls to

implement based on the specific needs of their business.

• A process must ensure the continuous verification of all elements of the security system through

audits and reviews.

• A process must ensure the continuous improvement of all elements of the information and security

management system. (The ISO/IEC 27001 standard adopts the Plan-Do-Check-Act [PDCA] model as

its basis and expects the model will be followed in an ISMS implementation.)

These practices form the framework within which you will establish an ISMS. The sections that follow

describe the steps involved in establishing an ISMS.

Note: It is important to remember that although this guide provides examples, the implementation of an ISMS

is process-based and specific to your organization. Consider using the guide and examples as a starting

point of discussion within your organization, rather than as a set of templates.