Quality Management System services in India, we provide all type of "QMS" consultation "QMS" services in India.

1. www.goldenlightsolutions.com
ISO 9001: 2015
The business world is continually changing and the quality management has been updated to better
fit today’s need.
A “risk-based thinking” approach has been introduced, to determine the requirements of the
business and its management systems. This new approach has enabled a considerable reduction in
the prescriptive requirements of the old ISO 9001:2008 Standard, which have been replaced by
performance-based requirements, providing greater flexibility for the management systems to suit
the needs of the individual organisation.
There’s more focus on continually identifying opportunities for improvement for future needs and
expectations in meeting customer requirements.
There’s a greater focus on management demonstrating leadership and commitment.
A common framework for all Management System Standards has been introduced to provide greater
consistency across all the ISO Management Standards.
The ISO 9001 Standard –
The ISO 9001:2015 Standard provides the framework for world-class business growth via a risk and
opportunity based process approach to managing your business.
It enables businesses to achieve, as well as benchmark, consistent performance and service, and not
only meet, but exceed, customer, statutory and regulatory requirements. The focus on continually
enhancing customer satisfaction means very happy customers, who then buy more, refer more and
cost less to retain.
ISO 14001 –
ISO 14001 is the international standard for environmental management systems (EMS) and the most
widely used EMS in the world, with over 360,000 ISO 14001 certificates issued globally. ISO 14001 is
the principal management system standard which specifies the requirements for the formulation
and maintenance of an EMS.
Specifies the requirements for an environmental management system that an organization can use
to enhance its environmental performance.
The Outcome of an environmental management system includes:
 Enrichment of environmental performance
 Fulfilment of compliance obligations.
 Achievement of environmental objective.
ISO 14001:2015 is applicable to any organization, regardless of size, type and nature, and applies to
the environmental aspects of its activities, products and services that the organization determines it

2. can either control or influence considering a life cycle perspective. ISO 14001:2015 does not state
specific environmental performance criteria.
ISO 50001 Energy Management System
The international iso 50001 is standard established the requirements and guidance and for
organization to successfully implement, develop, maintain and continues improvement energy
management system. SO 50001 revisions, the standard provides companies internationally
recognized guidelines to improve energy balance, reduce CO2 emissions, and lower energy costs by
using energy more efficiently.
Stages of 50001 certificate:
1) Performing an initial assessment and flushing out potential vulnerabilities in the
management system.
2) GAP analysis is to support you in successfully converting from ISO 50001:2011 to ISO
50001:2018.
3) Certification audit : Checking your documentation and practical application of your energy
management system
4) Surveillance audits: Annual surveillance of the ongoing optimization of your processes and
energy management system
5) Re-certification before the end of three years

3. ISO 45001 Health Safety
ISO 45001 :2018 specifies requirement of an occupational health and safety management systm, and
gives guideline for it’s use, to enable organizations to provide safe and healthy workplace by
preventing work-related injury and ill health.
ISO 45001:2018 is applicable to any organization that wishes to establish, implement and maintain
an OH&S management system to improve occupational health and safety, eliminate hazards and
minimize OH&S risks (including system deficiencies), take advantage of OH&S opportunities, and
address OH&S management system nonconformities associated with its activities.
ISO 45001:2018 helps an organization to achieve the intended outcomes of its OH&S management
system. Consistent with the organization's OH&S policy, the intended outcomes of an OH&S
management system include:
a) Continual improvement of OH&S performance;
b) Fulfilment of legal requirements and other requirements;
c) Achievement of OH&S objectives.
ISO 45001:2018 is applicable to any organization regardless of its size, type and activities. It is
applicable to the organization's control, taking into account factors such as the context in which the
organization operates and the needs and expectations of its workers and other interested parties.
ISO 45001:2018 does not state specific criteria for OH&S performance, nor is it prescriptive about
the design of an OH&S management system.
ISO 45001:2018 enables an organization, through its OH&S management system, to integrate other
aspects of health and safety, such as worker wellness/wellbeing.
ISO 45001:2018 does not address issues such as product safety, property damage or environmental
impacts, beyond the risks to workers and other relevant interested parties.
ISO 45001:2018 can be used in whole or in part to systematically improve occupational health and
safety management. However, claims of conformity to this document are not acceptable unless all
its requirements are incorporated into an organization's OH&S management system and fulfilled
without exclusion.

4. ISO 31000,
ISO 31000, Risk management – Guidelines, provides principles, a framework and a process for
managing risk. It can be used by any organization regardless of its size, activity or sector.
Using ISO 31000 can help organizations increase the likelihood of achieving objectives, improve the
identification of opportunities and threats and effectively allocate and use resources for risk
treatment.
The standard provides a uniform vocabulary and concepts for discussing risk management. It
provides guidelines and principles that can help to undertake a critical review of your organization’s
risk management process.
The standard does not provide detailed instructions or requirements on how to manage specific
risks, nor any advice related to a specific application domain; it remains at a generic level.
Relative to older standards on risk management, the 31000 standard innovates in several areas:
 it provides a new definition of risk as the effect of uncertainty on the possibility of achieving the
organization’s objectives, highlighting the importance of defining objectives before attempting to
control risks, and emphasizing the role of uncertainty
 it introduces the (sometimes controversial) notion of risk appetite, or the level of risk which the
organization accepts to take on in return for expected value
 it defines a risk management framework with different organizational procedures, roles and
responsibilities in the management of risks
 it outlines a management philosophy where risk management is seen as an integral part of strategic
decision-making and the management of change

5. ISO 27001 Information Security
Complex IT systems are now capable of processing a wealth of information. At the same time, it is
becoming more difficult to protect them. With an ISO 27001 certification we provide you with an
independent review of the degree of conformity of your information security management system
(ISMS) to the requirements of ISO 27001.
With ISO 27001 we use the globally recognized standard for assessing the security of information
and IT environments. It describes the requirements of implementation as well as the documentation
of ISMS. Security risks can be minimized and IT security procedures can be established that
contribute to the long-term optimization of the quality of your systems.
Like other ISO management system standards, certification to ISO/IEC 27001 is possible but not
obligatory. Some organizations choose to implement the standard in order to benefit from the best
practice it contains while others decide they also want to get certified to reassure customers and
clients that its recommendations have been followed. ISO does not perform certification.
Ref - www.iso.org
ISO 10002:2018
You can turn unhappy customers into positive business opportunities with effective complaints
management. Satisfied customers are your best ambassadors.
An unhappy customer will tell friends and colleagues about their experiences, damaging your
reputation and often you know nothing about it. Implementing a complaints handling process using
ISO 10002 will help you turn unhappy customers into satisfied ones and use their input to improve
the experience of future customers.
Your customer service processes need to make it simple for your customers to communicate
complaints and resolve any issues arising. Complaint management is not about reducing the number
of complaints, but taking the information they generate and turning it into an opportunity for
improvement.
Smart complaint management will help you to improve customer service standards and deliver an
effective complaint handling system to differentiate you from your competitors. Auditing by SGS
against ISO 10002 Quality Management: Customer Satisfaction demonstrates that your organization
cares about customer feedback and receives, manages and resolves customer complaints effectively.

6. Certification against ISO 10002 will provide your organization with a high quality and reliable
complaint management system, including the following characteristics:
 Visibility
 Accessibility
 Responsiveness
 Objectivity
 Confidentiality
 Customer-focused approach
 Accountability
 Continual improvement
We can either conduct a gap assessment of your management system against the requirements of
ISO 10002 or take you through the full certification process.
Our ISO 10002 Foundation Training is designed to provide any organization with the fundamentals of
the ISO 10002 requirements. Contact your local SGS representative for further details.
Partner with SGS to improve customer service standards and complaint management with the
implementation of ISO 10002.
ISO 26000 SOCIAL RESPONSIBILITIES
It provides guidance to those who recognize that respect for society and environment is a critical
success factor. As well as being the “right thing” to do, application of ISO 26000 is increasingly
viewed as a way of assessing an organization’s commitment to sustainability and its overall
performance.
instead, it hselps clarify what social responsibility is, helps businesses and organizations translate
principles into effective actions and shares best practices relating to social responsibility, globally. It
is aimed at all types of organizations regardless of their activity, size or location.
The standard was launched in 2010 following five years of negotiations between many different
stakeholders across the world. Representatives from government, NGOs, industry, consumer groups
and labour organizations around the world were involved in its development, which means it
represents an international consensus.
SUPPORT FOR IMPLEMENTING ISO 26000
ISO 26000 was developed by a working group of about 500 experts. At the publication of this
standard, the working group was disbanded.
Document(s) to support the implementation of ISO 26000:
 Communication Protocol – Describes appropriate wordings organizations can use to
communicate about their use of ISO 26000
 ISO 26000 basic training materials in the form of
a PowerPoint and training protocol guidance [PDF]
 Documents that link ISO 26000 with the OECD Guidelines for Multinational Enterprises and
the United Nations 2030 Agenda (Sustainable Development Goals)

7. ISO 28000:2007 Specification for security management systems for the supply chain
ISO 28000:2007 specifies the requirements for a security management system, including those
aspects critical to security assurance of the supply chain. Security management is linked to many
other aspects of business management. Aspects include all activities controlled or influenced by
organizations that impact on supply chain security. These other aspects should be considered
directly, where and when they have an impact on security management, including transporting
these goods along the supply chain.
ISO 28000:2007 is applicable to all sizes of organizations, from small to multinational, in
manufacturing, service, storage or transportation at any stage of the production or supply chain that
wishes to:
a) Establish, implement, maintain and improve a security management system;
b) Assure conformance with stated security management policy;
c) Demonstrate such conformance to others;
d) seek certification/registration of its security management system by an Accredited third party
Certification Body; or
e) make a self-determination and self-declaration of conformance with ISO 28000:2007.
There are legislative and regulatory codes that address some of the requirements in ISO 28000:2007.
It is not the intention of ISO 28000:2007 to require duplicative demonstration of conformance.
Organizations that choose third party certification can further demonstrate that they are
contributing significantly to supply chain security.
ISO 13485:2016 Medical devices — Quality management systems
ISO 13485:2016 specifies requirements for a quality management system where an organization
needs to demonstrate its ability to provide medical devices and related services that consistently
meet customer and applicable regulatory requirements. Such organizations can be involved in one
or more stages of the life-cycle, including design and development, production, storage and
distribution, installation, or servicing of a medical device and design and development or provision
of associated activities (e.g. technical support). ISO 13485:2016 can also be used by suppliers or
external parties that provide product, including quality management system-related services to such
organizations.
Requirements of ISO 13485:2016 are applicable to organizations regardless of their size and
regardless of their type except where explicitly stated. Wherever requirements are specified as
applying to medical devices, the requirements apply equally to associated services as supplied by the
organization.