Professional Documents
Culture Documents
Learner Guide
SGS United Kingdom Limited has been independently assessed and approved by the CQI
and IRCA. This means they have the processes and systems in place to deliver certified
courses to the highest standard.
The CQI is the only chartered professional body dedicated entirely to quality.
CONTENTS PAGE
Social Systems Auditor Conversion Course Based on the SMETA Best Practice Guidance . 1
Course Administration ........................................................................................................... 4
Session One ....................................................................................................................... 16
Background to Social Accountability ................................................................................... 16
Session Two ....................................................................................................................... 37
Introduction to SMETA Best Practice Guidance .................................................................. 37
Session Three ..................................................................................................................... 51
Interpretation of SMETA, Clauses 0 – 4 .............................................................................. 51
Session Four ....................................................................................................................... 67
Interpretation of SMETA, Clauses 5 – 9 .............................................................................. 67
Session Five ....................................................................................................................... 79
Interpretation of SMETA, Clauses 10 – 11 .......................................................................... 79
Session Six ......................................................................................................................... 87
Registration, Certification and Auditor Competence ............................................................ 87
Session Seven .................................................................................................................... 99
Audit Definition, Principles and Types ................................................................................. 99
Session Eight .................................................................................................................... 109
The Audit Process............................................................................................................. 109
Session Nine ..................................................................................................................... 123
Stage 1 Audit .................................................................................................................... 123
Session Ten ...................................................................................................................... 141
Stage 2 Audit: Conducting the On-Site Audit..................................................................... 141
Session Eleven ................................................................................................................. 157
Stage 2 Audit: Report and Conclusions; Addressing Corrective Actions............................ 157
Appendices ....................................................................................................................... 175
Page |3
Course Administration
Page |4
FOREWORD
This Course is certificated by the International Register of Certificated Auditors (IRCA;
Course Certification Number, 17281.
Learners who successfully complete this programme may be eligible to apply for
certification by the IRCA as a Social System (SS) Auditor within five years of course
completion.
Other requirements for certification are outlined in this Manual and detailed on the CQI /
IRCA website www.quality.org
The Course is owned by and certificated as SGS United Kingdom Ltd. The SGS policy
and objectives with respect to the course are given below.
Page |5
The objective of each Course is to equip Learners with the knowledge and skills required
to perform audits on social systems and to contribute to the continual improvement of the
system.
Explain the purpose, content and interrelationship of the SMETA Best Practice
Guidance, SMETA Measurement Criteria etc. local industry practice and the relevant
legislative framework.
Describe the responsibilities of an auditor and describe the role of audit in the
maintenance and improvement of social systems in accordance with ISO 19011 and
ISO 17021, as appropriate.
Learners will need to demonstrate acceptable performance in all of these areas in order
to complete the course successfully.
This course is based on SMETA Best Practice Guidance, Measurement Criteria etc.
Version 6.0 April 2017 (Replaces V. 5.0 Dec 2014).
PRIOR KNOWLEDGE
Before starting this course, Learners are expected to have the following prior knowledge:
Knowledge of SA 8000.
Page |6
COURSE BRIEF
1. LEARNER INTRODUCTIONS
At the start of the course, Learners will be asked to introduce themselves. This
introduction should include information on the individual’s job function, organisation,
the organisation’s product or service, the organisation’s certification details, the
individual’s knowledge and understanding of the Social Systems Standards and their
expectations upon completing the course.
2. PARTICIPATIVE LEARNING
This course is presented using techniques that have been designed to make training
an enjoyable as well as a beneficial experience. The approach is based on scientific
evidence as to how the brain works and people learn. A better understanding of the
Standard, and the knowledge and skills of an auditor is guaranteed.
3. SUCCESS CRITERIA
4. CONTINUOUS ASSESSMENT
Throughout the duration of the Course, the performance of Learners will be evaluated
during the course sessions, role-plays and exercises. Learners must demonstrate
acceptable performance in the learning objectives to successfully complete the
Course.
In the event that a Learner is either not understanding the subject or not participating
adequately, he or she shall be made aware of the shortfall in performance and, if
appropriate, be provided with additional coaching outside the formal Course hours.
Page |7
Timekeeping during the Course is taken into account during the continuous
assessment of Learners. Poor timekeeping may result in failure to meet course
requirements. No exception will be given to extending break times for external
business activities.
In addition, Learners are required to be in attendance for the full duration of the
Course. Failure to do so will be reflected in the Learner’s continuous assessment and
final grade. Learners may be graded ‘Excellent’, ‘Good’, ‘Satisfactory’ or ‘Fail’
according to the tutor’s perception of their overall readiness and ability to carry out
third-party audits.
Learners who fail the continuous assessment, and who intend to apply for
certification as a Social Systems Auditor, will be required by the IRCA to retake the
entire Course.
5. LEARNING OBJECTIVES
Learning objectives describe in outline what Learners will know and be able to do by
the end of the course. On completion, successful Learners will have the knowledge
and skills to:
5.1 Knowledge
5.2 Skills
Page |8
6. EXAMINATION
The examination comprises a one and a half hour paper. Learners are allowed
access to, ETI standard, SMETA Best Practice, SA 8000 or national equivalent
during the examination.
Electronic devices such as laptops and mobile phones are not permitted in the
examination room.
To pass the examination, Learners must achieve 70% of the total marks available; in
addition, a minimum of 40% must be achieved in each Section.
Learners who fail the examination shall be allowed one re-sit with a different
examination paper to that which they sat originally. The re-sit must take place within
12 months of sitting the original examination. Re-sits are only permitted provided that
the Learner has passed the continuous assessment. Learners who fail the re-sit must
re-take the entire Course if they wish to gain a certificate of successful completion for
the Course.
7. COURSE CERTIFICATION
Learners who pass both the examination and continuous assessment will be issued
with a “Certificate of Achievement”. The “Certificate of Achievement” is valid for a
period of five years from the date of the last day of the Course for the purpose of
certifying as an auditor with the CQI / IRCA.
Learners who do not pass the continuous assessment and have been in attendance
for the full duration of the course will be issued with a “Certificate of Attendance”.
Learners who fail the written examination and pass the continuous assessment will
receive a “Certificate of Attendance” and will be allowed to re-sit the examination
within 12 months of the end date of the original course.
Learners will receive their certificates within eight weeks of course completion.
Page |9
8. REMINDER
The use of mobile phones, iPads, iPhones, tablets, pagers etc. during the Course are
not permitted.
9. CONTINUOUS IMPROVEMENT
Learners are given a Course Evaluation Form at the start of the course for
completion and submission at the end of the course. This provides SGS CBE with
important customer feedback for the continuous improvement of the course.
Learners may appeal or make a complaint about any aspect of the Course or the
continuous assessment. Appeals and complaints should be addressed, in writing, to
the Global Training Manager, SGS United Kingdom Limited.
P a g e | 10
COURSE TIMETABLE
DAY 1
Workshop 1 Feedback
13.00-14.00 Lunch
P a g e | 11
DAY 1, CONTINUED
Workshop 2 Feedback
Note: Sessions 6, 7 and 8 are located within the Manual to use for referral purposes
only.
P a g e | 12
DAY 2
09.00 Recapitulation
Workshop 3 Audit Planning
Workshop 3 Feedback
Workshop 4 Audit Plan Day 2
Workshop 4 Feedback
Session 10 Conducting the On-Site Audit
Social system audit performance
The opening meeting
Overcoming bias
Social system audit tools and techniques
Focus groups
Questionnaires
Interviews and interviewing skills
Observation
Documents and records
Factors affecting sampling
Reliability and availability of evidence
13.00-14.00 Lunch
Workshop 5 Audit Preparation
Workshop 5 Feedback
Workshop 6 Focus Group Role Play
Workshop 6 Feedback
Session 11 Stage 2 Audit: Report and Conclusions
DAY 3
09.00 Recapitulation
Workshop 8 Feedback
Workshop 8 Feedback
12.30-13.30 Lunch
P a g e | 14
P a g e | 15
Session One
Background to Social
Accountability
P a g e | 16
When you have completed this topic, you will be able to:
Describe the range of drivers and pressures faced by companies in relation to social
and ethical issues that need to be managed, and the business and social benefits of a
social management system.
Understand the conventions, standards, specifications and codes of conduct and the
legal context under which companies are operating.
KEY POINTS
Human rights.
Consumer expectations.
Corporate responsibility.
Stakeholders.
P a g e | 17
The field of social accountability has grown exponentially in the last decade. More
companies than ever before are engaged in serious efforts to define and integrate
social accountability into all aspects of their business, with their experiences being
bolstered by a growing body of evidence that social accountability has a positive
impact on business economic performance.
1.1 Concepts
International mechanisms for defining the law in this area have been around for
a long time. The International Labour Organisation (ILO) was established in
1919 and has been producing Conventions and Recommendations on labour
standards regularly since that time. These have found their way into national
legislation controlling the way that businesses behave ever since.
The concept of Human Rights is not new; the United Nations Universal
Declaration on Human Rights was published in 1948 and has shaped law and
policy around the world since that time.
Globalisation of business has been a major driver behind the move to become
more socially accountable. Businesses are operating on a global basis and
company purchasing power is being viewed as a unique resource that
contributes economic development investment capital, as well as facilitating
basic trade of products and services.
Along with globalisation, businesses have generally been moving from “Multi-
national” corporations to “Trans-national” corporations, the difference being that
previously businesses owned and operated facilities around the world, whereas
now many more organisations rely on suppliers and subcontractors from
around the world where there is less transparency and control over day-to-day
activities.
P a g e | 18
1.3 Information
The rapid growth of information technology has also served to sharpen the
focus on the link between business and corporate social responsibility. Just as
email, mobile phones and the internet speed the pace of change and facilitate
the growth of business, they also speed the flow of information about a
company's CSR record.
P a g e | 19
The last few years have seen the launch of several high-profile socially and/or
environmentally screened market instruments (e.g., indexes like the Dow Jones
Sustainability Indexes, FTSE4Good, and the KLD / Russell/Mellon products, as
well as screened investment offerings from Morgan Stanley, Citigroup, Credit
Lyonnais and Vanguard). This activity is a testament to the fact that
mainstream investors increasingly view CSR as a strategic business issue.
Many socially responsible investors (SRI) are using the shareholder resolution
process to pressure companies to change policies and increase disclosure on a
wide range of CSR issues, including environmental responsibility, workplace
policies, community involvement, human rights practices, ethical decision-
making and corporate governance. Activist groups are also buying shares in
targeted companies to give them access to annual meetings and the
shareholder resolution process.
Over the past several years, the social accountability agenda has been
characterised in large part by the expansion of boundaries of corporate
accountability. Stakeholders increasingly hold companies accountable for the
practices of their business partners throughout the entire supply chain with
special focus on supplier environmental, labour, and human rights practices.
The more remote and unclear the supply chain, the more risky for organisations
operating in this way. Unauthorised subcontracting has exposed many well
known brand names. Additionally some prisons in the Far East, using prison
labour, are known to be trading under a limited company name.
P a g e | 20
Consumers are becoming more knowledgeable about social issues and are
starting to make more discriminating decisions about their purchasing
practices, based on more than just price and quality.
Given all of the above, the majority of businesses have to ensure that they
manage and protect their reputation. With increasing information available it is
becoming much more risky for reputations of organisations to simply outsource
activities to the developing world where labour is cheaper and controls have
tended to be less stringent, and have no controls in place.
2. HUMAN RIGHTS
Although the United Nations Universal Declaration on Human Rights has been in
existence for almost 60 years, there still does not appear to be universal
implementation of the concepts embedded in the Declaration.
In his 2001 publication “Human Rights: Universality in Practice”, Peter Baehr wrote:
Even recent press reports have shown, for example, the prolific use in some regions
of child and forced labour. Such practices do not meet internationally agreed
standards of practice and fundamentally breach the human rights of the individuals
affected, yet in some industries and some locations it continues.
P a g e | 21
3. CONSUMER EXPECTATIONS
This has led to a general feeling of distrust of business and industry practices, even
though there is an expectation that businesses will uphold similar values to the
individual. Especially with companies putting increasingly detailed information about
their social and environmental performance into the public arena.
Consumer attitudes and practices change very slowly, but still there are trends
towards ever increasingly discriminating purchasing decisions, often based on a
variety of factors. For example, a consumer may boycott products from a particular
company due to media coverage about a single issue. Alternatively consumers may
make positive purchasing decisions, such as purchase of “Fair Trade” or “Organic”
labelled products. Quite often, a bad news story can change a consumer’s perception
of a company for a very long time. It is therefore in every company’s interests to
ensure that they are not highlighted in a negative fashion to the public.
4. CORPORATE RESPONSIBILITY
Businesses are responsible for their activities, and must ensure that they take
responsibility both for those impacts that they directly control, for example in their
own operations, as well as those that they may only be able to influence, such as
those in their supply chain. A big factor in this is the relative power that the company
and supplier have. If the company is a major customer for a particular supplier, they
are more likely to be able to influence their behaviour. However, if the company is not
a major customer it may be much more difficult to influence supplier behaviour.
The aim for every company is to create a win-win situation for all stakeholders,
including investors, customers, employees, subcontractors, communities etc. By
recognising their impacts and managing them appropriately this is potentially
achievable.
Many businesses are currently using a reactive approach rather than a proactive
approach, whereby they tackle issues when they become problematic. However, this
is a dangerous approach that leaves organisations open to criticism and potential
loss of reputation.
P a g e | 22
5. STAKEHOLDERS
Stakeholders are any groups or individuals who are affected by, or who can affect an
organisation. They include a range of groups and individuals, either directly and
indirectly affected by, or affecting the organisation.
Shareholders
Supply-chain
NGOs Government
Homeworkers
MLOs
Manufacturer
Buyer
Company Consumers
Management
Sub-supplier
Workers Local
Trade unions Government
Dependent families
This is one method of helping to manage the risks associated with business activities
and ensuring that the organisation is behaving in a socially responsible manner, and
being accountable for its activities and practices.
P a g e | 23
One of the areas of a business that can pose the highest degree of risk to brand
image and reputation is the supply chain. However, businesses have to recognise
their responsibility for practices that may be occurring in the supply chain.
It is quite often issues such as last minute changes to orders, or sudden increased
demand for a particular product, that can lead to suppliers increasing working hours
or overtime to ensure they meet the order. Big business is notorious for late payment
of invoices, which has a profound effect on the smaller supplier’s cash flow including,
for example, their ability to pay wages regularly and on time.
Probably the area that has the biggest impact is the ever-increasing demands for
lower prices. This can have a number of impacts, such as an inability to increase
wages in line with inflation to the relocation of manufacturing facilities where
overhead costs and regulatory oversight are much lower.
Similarly they should have established and transparent processes for communication,
including complaint resolution, so that they can ensure that their practices are not
having a negative impact in the supply chain.
They are, after all, most interested in improving working conditions in the supply
chain to minimise risk to their own brand, so it is in their interests to enable this
process to happen by working constructively with their suppliers.
P a g e | 24
Corporate Responsibility has a much wider definition than just the social aspects
associated with working conditions, and includes managing impacts and interactions
with wider stakeholders.
Leadership companies are also investigating various types of audit and verification as
a further means of increasing the credibility of their transparency and reporting
efforts. Increasingly, demands for greater transparency also encompass public policy;
stakeholders want to know that the way companies use their ability to influence public
policy is consistent with stated social and environmental goals.
As part of this move toward greater disclosure, many companies are putting
increasingly detailed information about their social and environmental performance -
even when it may be negative - onto their publicly accessible websites, or in annually
published reports.
7.1 Community
7.2 Society
Businesses are responsible for their impacts on society in general, which may
include their customers and consumers, and the general public.
The impact on society can include increasing wealth and knowledge, as well as
increased dependence on products and materialism.
P a g e | 25
7.3 Environment
The following case studies are fairly well known and illustrate some of the
above mentioned impacts:
http://www.bhopal.net
http://www.bhopal.com
Shell have been exploring for and extracting oil from the Niger Delta
region of Nigeria for many years. There has always been friction between
the company and the local Ogoni people, native to the region.
P a g e | 26
This mainly arises from the perceived lack of financial input from the
company back into the community, predominantly due to the actions of
the government. This has led to many problems, including hostage-
taking, attacks on Shell employees and sabotage of pipelines.
The local people also have issues with excessive local environmental
impacts, such as from gas flaring activities. There has resulted a lot of
local and international protest from a range of groups, culminating in
petrol station blockades in 1995 after the execution of Ken Saro Wiwa, an
outspoken writer and activist in Nigeria, by the then incumbent
government, who were felt generally to be supported by the company.
Also in 1995 the proposed disposal of the Brent Spar oil installation in the
North Sea created public outcry, stimulated by occupation of the
installation by environmental activists, due to the potential for
contamination of the ocean with toxic residues and the setting of a
precedent for such action.
http://www.corporatewatch.org.uk/publications/shell.html
http://www.foei.org/publications/corporates/shellshine.html
http://www.shell.com
In 1989 the Exxon Valdez, an oil transporter, ran aground off the coast of
Alaska in North America. The ensuing spill had a long-term devastating
impact on that pristine area of Alaskan coast and the wildlife in the area.
P a g e | 27
http://www.evostc.state.ak.us/facts/
http://www.exxonmobil.com
Legal requirements in this field have been in existence for many years, through
international conventions and national law, yet it is only recently that standards and
codes of conduct started to proliferate.
No slavery or servitude
Freedom of association
P a g e | 28
Right to rest and leisure, limitation on working hours and holidays with
pay
employment policy;
labour administration;
working conditions;
management development;
co-operatives;
social security;
P a g e | 29
Some examples of ILO Conventions are provided below, further details and full
text of conventions and recommendations can be obtained via the ILO website
(www.ilo.org).
National governments have also been active; requirements for social and
environmental reporting have been established in France and the UK, and
Denmark has made efforts to promote cross-sectoral collaboration. European
companies have also increased their commitment to CSR, and have
participated prominently in the World Summit on Sustainable Development and
the UN Global Compact, as well as individual company initiatives. Other
initiatives are underway at least at a policy development level in South Africa,
Brazil, and Argentina.
The requirements for human rights and working conditions laid down in the UN
Universal Declaration of Human Rights and the ILO Conventions and
Recommendations are implemented at a national level by individual countries
that have ratified the conventions.
P a g e | 30
Legislation will be discussed in more detail during the timetabled session during
the Course.
International standards are also important to the overall political, social and
economic environment in which international companies operate. They
contribute significantly to the constitution of a stable and productive framework
for business. Although most international standards concern the obligations of
governments and companies they are not signatories of them, the meaning and
intent of these standards can serve as equally relevant benchmarks for
companies and can be reflected in their codes od practice.
There has been a proliferation of supply chain standards and codes of conduct
over the past few years. Some of them are described below, however it should
be noted that they are generally based on the same principles and incorporate
the ILO Conventions as a baseline.
P a g e | 31
However, many members of the ETI are concerned about the audit
fatigue being caused by multiple audits and have been looking at ways of
sharing information so as to reduce the need for such repeat visits.
One of the methods being used to share audit results is Sedex, the
“Social and Ethical Data Exchange”.
8.5.3 SA 8000
The SA 8000 standard was initially published in 1997, and has undergone
several revisions. The current standard is the 2014 revision. Published by
Social Accountability International (SAI), it is globally recognised as a
certification standard. Further details can be obtained from the SAI
website (www.sa-intl.org).
P a g e | 32
P a g e | 33
P a g e | 34
To enable Learners the opportunity to become familiar with the SMETA code and to
apply the knowledge to case study examples.
Task
You will be divided into teams and provided with a handout containing seven case
studies.
- What evidence would you want to see to confirm that the situation is operating
satisfactorily?
Output
Time Allowed
Workshop: 40 minutes.
Feedback: 30 minutes.
P a g e | 35
P a g e | 36
Session Two
P a g e | 37
When you have completed this topic, you will be able to:
Understand the purpose, basis and principles of the SMETA Best Practice Guidance.
KEY POINTS
Sedex vision.
History.
Governance.
Membership.
Contents.
Usage.
Review.
Structure.
P a g e | 38
Sedex, the Supplier Ethical Data Exchange, is a not-for-profit organisation, open for
membership to any company anywhere in the world that is committed to continuous
improvement of the ethical performance of their supply chains. Organisations join
Sedex in order to:
Sedex will be recognised throughout global supply chains as the first choice for the
collection, management, analysis and reporting of ethical data.
It is a tool to:
3. HISTORY OF SEDEX
Sedex was started in 2001 by a group of UK retailers and their first tier suppliers.
These organisations recognised a need to collaborate and drive convergence in
social audit standards and ethical self-assessment questionnaires. The founding of
Sedex was seen to ease the burden on suppliers who were being audited multiple
times and drive improvements in labour standards at production sites globally.
2001 Impact convened a group of UK retailers and first tier suppliers, who
conceived the Sedex idea and were instrumental in co-ordinating and
developing Sedex from concept to launch.
P a g e | 39
4. GOVERNANCE
At Sedex, the mission is to make it simpler to do business that’s good for everyone.
Corporate governance is how Sedex is directed and controlled to help fulfil that
mission.
4.1 Management
The board of directors is responsible for the governance of Sedex. The board
is responsible for setting Sedex’s strategic aims, providing the leadership to put
them into effect, supervising the management of the business and reporting to
Sedex’s members on the Board’s stewardship.
In line with the Sedex Articles of Association the Sedex Board of Directors
comprises up to fourteen Directors, Nine are selected Member Directors, four
are independent Non-Executive Directors and one in an Executive Director (the
CEO).
P a g e | 40
4.3 Membership
P a g e | 41
B&Q Plc
Burberry
Co-operative Retail
Nestle
PepsiCo
RHM
Tesco
In addition there are over 280,000 SMETA’s that have been conducted to date
with 93,000 of those on the Sedex Advance System.
P a g e | 42
SGS
Amcor
Bureau Veritas
DNV
Givaudan
Kellogg
M&S
Pepsico
SAB Miller/ABInbev
Walmart
SMETA stands for Sedex Members Ethical Trade Audit, and it incorporates four
elements:
P a g e | 43
Ethical trade/social audits are commissioned all over the world to various
standards. The Best Practice Guidance is not an attempt to re-invent ethical
trade auditing, and it should not be viewed as a new methodology for ethical
trade auditing. Rather, it is an attempt to compile the best of current practices.
4.2 Contents
The document details the training and experience requirements that third-party
auditors should meet in order to conduct best practice ethical trade audits. It
further describes the key steps from pre-audit communication and audit
planning through to the conduct of the audit itself and reporting.
These steps are taken based on best practice in the field of ethical trade audits
conducted by third-party auditors and rely heavily on the controls that already
exist within third-party audit firms that are accredited to a quality management
system such as ISO9001 or ISO 17021 (the accreditation standard for audit
bodies).
4.3 Usage
The Best Practice Guidance document is designed with the following uses in
mind:
To provide Sedex ‘A’ and ‘AB’ Members who are being presented with
SMETA audit reports with an overview of the recommended methods
employed in the conduct of ethical trade audits.
against this best practice guidance follow a common set of criteria, thus
making it easier for audit reports to be shared by multiple retailers/brands.
4.4 Review
The Best Practice Guidance has been piloted by members of the Sedex
Stakeholder Forum (SFF), and input was sought from Sedex B members who
had had SMETA audits, NGOs and other stakeholders through a stakeholder
engagement process.
It is intended that the Guidance will be reviewed every six months, and a similar
engagement process will be employed. All feedback will be reviewed and
considered by the SSF and the Sedex Board of Directors. Revised versions will
be launched periodically.
Further information on Sedex and the latest version of SMETA may be found at
www.sedex.org.uk.
SMETA comprises five chapters, nine sections which are divided into clauses and
sub-sections:
1 Background
1.2 SMETA and the Ethical Trading Initiative (ETI) Base Code
3 Supporting Documents
4 Risk Assessment
5 Types of Audit
7 Audit Execution
9 Audit Follow-up
The measurement criteria for conducting SMETA audits has been developed by the
current members of the Sedex Stakeholder Forum (SFF). The measurement criteria
cover the mandatory 2 pillars of Labour Standards and Health and Safety as well as
the additional options of Environmental and Business Ethics. The content includes
as follows:
Background
Introduction
Useful Documents
2. Freedom of Association
4. Child Labour
6. Working Hours
7. Discrimination
8. Regular Employment
P a g e | 47
Measuring Impact
P a g e | 48
P a g e | 49
P a g e | 50
Session Three
Interpretation of SMETA,
Clauses 0 – 4
P a g e | 51
When you have completed this topic you will be able to:
Understand and interpret the SMETA Best Practice Guidance requirements for:
- Freedom of association.
KEY POINTS
P a g e | 52
For ease of reference, the paragraph numbers follow the clause numbers of SMETA
Measurement Criteria and direct quotations from the Measurement Criteria are presented
in italics.
This is a global standard for preventing and addressing risk of adverse impacts on
human rights linked to business activity, and there is an expectation that businesses
will identify how the activities impact on the human rights of people and communities,
within their sphere of operation. As a result, SMETA 6.0 includes an investigation
into how Universal rights are protected within global supply chain.
Code
The aim of the Universal Rights covering UNGP section is to focus on assessing the
extent to which businesses and their respective sites understand and manage their
human rights impacts. Information will be gathered as observations rather than non-
compliances, as specific non-compliances are captured in the other relevant sections
of this report. Should the site be unaware of or unfamiliar with these details it is
recommended that they address these issues with their head office for clarification.
Additional information can also be found in the Best Practice
Guidance.
0.A.1 Businesses should have a policy, endorsed at the highest level, covering
human rights impacts and issues and ensure it is communicated to all appropriate
parties, including its own suppliers.
0.A.3 Businesses shall identify their stakeholders, their impact and salient
issues.
0.A.4 Businesses shall measure their direct, indirect and potential impacts on
stakeholders’ (rights holders) Human Rights.
0.A.5 Where businesses have an adverse impact on Human Rights within any of
their stakeholders, they shall address these issues and enable effective
remediation.
P a g e | 53
0.A.2 Has the policy or statement been communicated to the employers’ relevant
stakeholders? e.g. workers, communities, customers, suppliers, the public etc.
0.A.3 The name and position of any designated person with responsibility for
management of Human rights impacts. The auditor should comment on the
designated person’s understanding of legislation and client applicable standards
and their procedure for keeping up to date.
0.A.5 What training (if any) is given and how is it recorded. Especially relevant to
those employees working in stakeholder facing roles. The auditor should check for
any specific training for relevant management and workers.
0.A.6 Has the site has completed the SAQ and made it available to the auditor for
prereview?
0.A.8 Has any policy or statement been communicated to the relevant stakeholders.
e.g. workers, communities, customers, suppliers, the public etc.
0.A.9 Are Human Rights impacts communicated across relevant internal functions
and if so how.
0.A.10 Are there processes in place to ensure these Human Rights impacts are
managed and eliminated/minimised.
0.A.11 Does the business have a system in place to address any Human Rights
impacts and where possible remediate them.
0.A.12 Isis there a clear communication / training on how to deal with any salient
human rights issues including how concerns should be communicated and dealt
with?
0.A.13 Does the site go beyond to make direct & indirect impacts a training theme
in for all employees.
0.A.14 Does the business enable access to remedy tools where human rights
impacts have been identified.
P a g e | 54
0.A.15 Does the business continuously monitor its impact and report on its
progress.
0.A.16 Is there any documentary evidence of these practices and if so what are
they. The auditor should record the details in this section.
0.A.18 How are procedures for ‘worker respect and privacy’ implemented.
0.A.19 Are business partners / suppliers requested to conduct Human Rights due
diligence and/or have grievance mechanisms in place.
0.A.20 Interviews appropriate personnel to establish if they are aware of any site
policies concerning Human Rights and whether appropriate personnel know how to
report their concerns about any issues.
0.A.22 Checks whether employees know of what to do if they encounter any Human
Rights abuses and who they report to if they have any other concerns about Human
Rights
0.A.23 Checks whether if workers are aware of the grievance mechanisms and
procedures if they are found to be involved in unethical human rights practices.
0.A.24 Has there been an exercise of mapping out stakeholders impacted by the
business and how have the Human Rights impacts been measured.
0.A.27 How does the site remediate / enable access to remedy tools
It is expected that suppliers will implement and maintain systems to ensure that the
SMETA code is complied with. As a first step, suppliers are to appoint a senior member
of management who shall be responsible for compliance with the Code and communicate
the Code to all employees and their suppliers.
Where reasonably practical, suppliers should extend the principles of this Ethical Code
through their supply chain.
The aim of the audits is to provide confidence that compliance with the Code can be
ensured over the long term which requires:
P a g e | 55
O.B.1 Code
0.B.1 Suppliers are expected to be operating legally in premises with the correct
business licenses and permissions and to have systems to ensure that all relevant
land rights have been complied with Suppliers are expected to implement and
maintain systems for delivering compliance to this Code.
0.B.4 Suppliers should communicate this code to their own suppliers and, where
reasonably practicable, extend the principles of this Ethical Code through their
supply chain.
P a g e | 56
- checks that the ETI Base code or client-specific codes have been
communicated to all workers and reports on how this has been done, e.g.
poster on wall, worker briefings, etc. and how effective this has been.
- Establishes what actions the facility is taking to communicate and roll out the
code to its own supply chain.
The Code notes that the auditor should check that the management system is
appropriate for the size and nature of the business – formal documented systems
are not necessarily expected for smaller organizations.
O.B.2 Interpretation
Critical areas include monitoring and verification, and transparency and disclosure, to
determine and communicate whether standards embodied in SMETA are being achieved.
Sedex members accept the general principles set out in the SMETA upon which to develop
or refine their search for best practice.
The purpose of these requirements is to ensure that the SMETA Best Practice Guidance
and the requirements of the code are established and understood by all employees, and to
check that the system is working effectively.
1.3 Representatives
There are three representatives identified in the SMETA in total, the representative
responsible for implementation (clause 0.B.2), the worker representatives (clause 2.3)
and the representative responsible for H&S (clause 3.5). Two of these are Management
Representatives appointed by the organisation, and could indeed be the same individual
performing the two roles. The third is a representative chosen by the workers to
communicate between them and management. This could be a trade union
representative, or could be a committee of individuals.
The auditor should ensure that the members of management have been appointed – and
should have an appropriate level of responsibility and authority to ensure they can
undertake the role. They will be heavily involved in the audit process.
Code
SMETA requirements:
1. Forced Labour
1.2 Workers are not required to lodge "deposits" or their identity papers with their
employer and are free to leave their employer after reasonable notice.
Where an individual owes a large debt and has to work for someone to
pay off that debt, this is seen as forced labour. It is quite common where
an individual has paid an organisation to assist them to migrate to
another country and start working.
P a g e | 58
There are several different types of evidence that can be identified and
evaluated by auditors to determine whether or not there is forced labour in an
organisation.
A review of personnel files may reveal copies of passports and other ID which
is used by the organisation to check ages and legality to work. So long as they
just have copies and not originals then there should be no problem.
The auditor should investigate the freedom of employees to move in and out of
the facility, especially if there are dormitories on site. If there are security
guards, their contracts should be checked and both guards and workers
interviewed as to their role.
Code
SMETA requirements:
2 Freedom of Association
2.1 Workers, without distinction, have the right to join or form trade unions of
their own choosing and to bargain collectively.
2.2 The employer adopts an open attitude towards the activities of trade
unions and their organisational activities.
2.3 Workers representatives are not discriminated against and have access
to carry out their representative functions in the workplace.
P a g e | 59
that union officials/facility representatives are fairly selected and perform their
duties to the benefit of the workers.
The purpose of the requirements in SMETA for freedom of association and the
right to collective bargaining is to protect workers’ rights to join a union of their
choice and to bargain collectively for wages and other conditions of
employment. Additionally the rights of representatives to communicate with
workers needs to be upheld. These requirements reflect the ILO Conventions
(C87, C98 and C135).
In some countries the right to join a trade union is restricted by law and union
membership can be very controversial with links to unfair discipline of union
representatives and discrimination.
The fundamental requirement is that the organisation must allow workers to join
trade unions of their choice. In some countries, such as China, this is not
possible as there is only one trade union allowed by law so the workers have
no choice over the union they join.
Code
SMETA requirements:
3.2 Workers shall receive regular and recorded health and safety training,
and such training shall be repeated for new or reassigned workers.
3.3 Access to clean toilet facilities and to potable water, and, if appropriate,
sanitary facilities for food storage shall be provided.
3.4 Accommodation, where provided, shall be clean, safe, and meet the
basic needs of the workers.
3.5 The company observing the code shall assign responsibility for health
and safety to a senior management representative.
that there are adequate systems in place to ensure that proper procedures will
be followed and that H&S will not be compromised in the future.
Clause 3.1 outlines the requirement for some sort of risk assessment and
management process, to enable the organisation to identify hazards in the workplace
and the risk they pose to the employees and to manage them effectively to provide
the safe and healthy working environment.
Clauses 3.3 and 3.4 provide for the detailed requirements for the provision of toilet
facilities, potable water, food storage and accommodation.
Those hazards that potentially have the worst consequences and those that
occur most frequently are key for an organisation to manage, and for an auditor
to recognise.
3.2.1 Prioritising
Hazards that are associated with an acute danger of death tend to be the
highest priority. Acute danger means that if the hazard occurs it can
cause immediate death. Examples include fire; explosion; electrocution;
P a g e | 61
Many hazards cause lost time in the workplace, and include slips, trips
and falls; minor cuts and abrasions.
Code
SMETA requirements:
4.3 Children and young persons under 18 shall not be employed at night or in
hazardous conditions.
4.4 These policies and procedures shall conform to the provisions of the
relevant ILO standards.
P a g e | 62
- that there are systems in place to check the age of all workers particularly
at the point of recruitment;
- that the facility management knows the local laws in relation to this topic;
- that there is a clear policy concerning young workers and that policies relating to
children and young workers are displayed and communicated;
- that young workers, defined as children under the age of eighteen, are not being
put at risk because of the nature of the duties they are being expected to perform,
such as working in hazardous functions, with hazardous machines, or at night.
Some limited child labour is permitted under exemptions to the ILO Conventions, for
example light, part-time work for a family member. Under such exemptions, the
standard stipulates the specific requirements for total hours of work, travel and school
to be no more than 10 hours, and that any such work is not hazardous.
Hazards that could adversely affect children include night time working; chemicals;
heavy lifting; working with machinery or equipment and so on. Children are generally
more vulnerable to hazardous conditions due to a lack of awareness of risks and also
due to their state of physical development.
The purpose of this clause of the standard is to protect the rights of children to
an education and to develop safely. The requirements have been derived from
the ILO Conventions (C138, R146 and C182).
The United States Department of Labor published a report, “By the Sweat
and Toil of Children”, which came to three main conclusions as to why
children work. An understanding of these factors can assist both auditors
and companies in dealing with the issue of child labour.
P a g e | 63
In many countries there is inequality between rich and poor and often
poor parents are unable to support their children. This leads to children
working in order to bring in some additional income to support the family.
Children are cheap labour and can easily be exploited due to their lack of
experience and understanding of their human rights. Children are
generally quite pliable and will bow to authority. They are a large pool of
cheap labour and are often considered to have particular skills due to
dexterity and size.
There are still many millions of children working all around the world, in many
different industries, including textiles, agriculture and domestic service. So
although the ILO Conventions have been in existence for many years, this
requirement of the SMETA remains pertinent.
For example, children were found working in Pakistan and India stitching
footballs; recent news reports revealed slave children in West Africa working on
cocoa plantations; 17.5 million children are working in Central America in
mining, farming and fishing; many children working in garment factories in
China; 1.2 million children working in the sex industry and domestic slavery in
Africa, SE Asia and the Balkans; in some US states 12 year old children are
legally allowed to work full time on farms; and in the UK companies have
recently been prosecuted for children working too many hours.
It must be recognised that the issue of child labour is unlikely to be solved over
night, but the SMETA does provide for means of working children out of the
system.
P a g e | 64
P a g e | 65
P a g e | 66
Session Four
Interpretation of SMETA,
Clauses 5 – 9
P a g e | 67
When you have completed this topic, you will be able to:
- Working hours.
- Discrimination.
- Regular employment.
KEY POINTS
Background to discrimination.
P a g e | 68
For ease of reference, the paragraph numbers follow the clause numbers of SMETA
Measurement Criteria and direct quotations from the Measurement Criteria are presented
in italics.
SMETA requirements:
5.1 Wages and benefits paid for a standard working week meet, at a
minimum, national legal standards or industry benchmark standards,
whichever is higher. In any event wages should always be enough to
meet basic needs and to provide some discretionary income.
5.2 All workers shall be provided with written and understandable Information
about their employment conditions in respect to wages before they enter
employment and about the particulars of their wages for the pay period
concerned each time that they are paid.
for ETI compliance that employees are paid a living wage. In the absence of a
defined process for establishing the living wage, this will be taken as National
Minimum Wage;
that all hourly and piece rate employees are paid at least the legal minimum
wage rate;
that wages are properly calculated and meet the minimum wage for the period;
that all applicable withholdings are properly calculated, withheld and promptly
paid over to the appropriate government agency within the specified timelines;
that there are no payroll deductions for employment broker fees, housing
allowances, food allowances etc. (unless allowed by local labour law);
that overtime wage rates are paid at the legally mandated rate;
P a g e | 69
that all legally mandated allowances and benefits are provided to the
employees;
that all employees are provided with a written and understandable statement of
their pay for each pay period;
6. Working Hours
6.1 Working hours must comply with national laws, collective agreements,
and the provision of 6.2 – 6.6 below, whichever affords the greater
protection for workers. Sub clauses 6.2 – 6.6 are based on International
Labour standards.
6.2 Working hours, excluding overtime, shall be defined by contract and shall
not exceed 48 hours per week*.
6.3 All overtime shall be voluntary. Overtime shall be used responsibly, taking
into account all the following: the extent, frequency and hours worked by
individual workers and the workforce as a whole. It shall not be used to
replace regular employment. Overtime shall always be compensated at a
premium rate, which is recommended to be not less than 125% of regular
rate of pay.
6.4 The total hours worked in any 7 day period shall not exceed 60 hours,
except where covered by clause 6.5. below.
6.5 Working hours may exceed 60 hours in any 7 day period only in
exceptional circumstances where all of the following are met:
P a g e | 70
6.6 Workers shall be provided with at least one day off in every 7 day period
or, where allowed by national law, 2 days off in every 14 day period.
measure standard and overtime hours against the local laws and the ETI Base
Code;
ensure that the facility management knows the local labour laws in relation to
this topic;
verify whether appropriate waivers are in place and agreed (if applicable) or
ensure that working hours are accurately recorded and that double books are
not being kept.
2.1 Interpretation
In summary, the standard working week for employees should be no more than
48 hours per week, unless the law states that the standard working week is
less than 48 hours, in which case the law is more stringent and therefore
prevails.
Any work over 48 hours (or the level the law or contract states) is classed as
overtime and should not be performed regularly to replace normal working
hours. In this case, “regular” is not defined and the auditor’s judgement must
prevail on a case by case basis. However, the amount of overtime and regular
working time must not exceed a total of 60 hours. So the maximum number of
hours that a worker can work in total is 60 hours in a week, unless in
exceptional circumstances.
Exceptional circumstances are where the business cannot predict the client’s
needs. An example is given where a peek in business due to harvest time is
not exceptional as this is a regular occurrence but a client doubling an order,
for example, without prior notice can be considered exceptional.
The ETI Base Code states that the prevailing standard to be used is the one
which affords greater protection for workers and the ETI Base Code
recommends an overtime premium minimum of 125%. However there may be
circumstances where less than 125% does not disadvantage the worker and it
is key that the auditor completes the audit report fully in order that those
judgments may be made.
P a g e | 71
The recommendation of the SSF (The organisation that issues the SMETA
Guidance) is that less than 125% overtime pay, (which does meet the law)
should be raised as an NC against the ETI Base Code to keep visibility on the
system.
This clause also has a requirement for rest days, which is that there must be
one day off in every seven day period also and two rest days in fourteen could
be acceptable if allowed by law. As with so many other clauses of SMETA, an
auditor will need to assess each situation on its merits.
7. Discrimination
3. 1 Background to discrimination
There must also not be any harassment of workers in relation to their race,
caste, national origin, religion, disability, gender, sexual orientation, union
membership, political affiliation or age.
P a g e | 72
3.2 Interpretation
8. Regular Employment
4.1 Interpretation
The requirements ensure that organisations do not exploit workers, for example
by employing them on recurring short-term fixed contracts so that the worker
does not gain the rights of a permanent employee.
P a g e | 73
Code
8A.1 There should be no sub-contracting unless previously agreed with the main
client.
Sub-contracting and external processing can be carried out through complex chains
of agents. The auditors should note whether the facility has a good knowledge of
where their products are being made and summarise their findings by mapping this
chain and gathering evidence of systems to manage and monitor.
If Sub-contracting and external processing is taking place, then the extent should be
recorded and the systems that are in place shall ensure that all workers are working
in good conditions.
The aim of this audit is not to carry out a full audit of the sub-contracting and external
processing supply chain, but to highlight where it is
happening with some basic information and provide visibility. The supplier/retailer
can then decide if further work is needed. If this is the case, the supplier/brand/
retailer may wish to do this themselves or pass on to an auditing body.
The auditor:
clearly states the law on the country in respect of homeworking and if the
country has ratified the ILO convention on home working.
P a g e | 74
ascertains, where Sch&EP is in place what systems and policies are in place to
manage their ethical position and has the site carried out any audits there to
assess conditions;
states the location and number of Sch&EP suppliers are sourcing from and
provide the name of whom through if via a contractor, subcontractor, sub-
subcontractor
identifies in which part of the production process Sch&EP are used and which
period of the year.
checks the systems in place for setting piece rate pay, gathers evidence of the
time and motion studies to establish rate of pay.
checks if the supplier has implemented systems to carry our random checks on
homeworking/shed units to ensure that basic working conditions are
acceptable.
The purpose of this clause is to ensure that the requirements of the SMETA are not
only upheld by the organisation, but that there are also mechanisms in place to ensure
that nonconformities are not simply hidden in the supply chain.
Code
9. Discipline
9.1 Physical abuse or discipline, the threat of physical abuse, sexual or other
harassment and verbal abuse or other forms of intimidation shall be
prohibited.
P a g e | 75
The purpose of this requirement of the Base Code is to protect the rights of an
individual to be free from the threat of unfair punishment and treatment.
This does not mean that organisations cannot have disciplinary procedures but
unfair disciplinary practices are unacceptable at any level within the
organisation. These could include physical punishment, verbal abuse, mental
abuse, and also financial penalty.
P a g e | 76
P a g e | 77
P a g e | 78
Session Five
Interpretation of SMETA,
Clauses 10 – 11
P a g e | 79
When you have completed this topic, you will be able to:
- Environment.
- Business ethics.
- Community benefits.
KEY POINTS
P a g e | 80
For ease of reference, the paragraph numbers follow the clause numbers of SMETA Best
Practice Guidance and direct quotations from the Standard are presented in italics.
Code
SMETA requirements:
10A.1 Only workers with a legal right to work shall be employed or used by the supplier.
10A.2 All workers including employment agency staff, must be validated by the supplier
for their legal right to work by reviewing original documentation.
The auditor checks and reports on the processes used to manage labour standards
at the site in this area of ‘Entitlement to Work’. Auditor examines policies and written
procedures in conjunction with relevant managers to understand and record what
controls and processes are currently in place to manage entitlement to work, migrant
and agency labour. In this section, the auditor also checks whether the site knows
and is up to date with, relevant local, national, and international law as well as the
standards required e.g.
Are there laws governing this area of the code and is the site up to date?
Does the site have robust processes in place to verify all workers’ right to
work?
Does the site have all legally required documentation to show compliance?
Code
SMETA requirements:
10B2 Environment
10B2.1 Suppliers must comply with the requirements of local, national and
international laws related to environmental standards.
10B2.2 The supplier should be aware of and comply with their end clients’
environmental requirements.
P a g e | 81
the facility is complying with international, national and local environmental laws
and regulations;
the facility is aware of any client-specific requirements and has systems in place
to be able to ensure that they meet these.
SMETA makes the point that this is not a full environmental audit but a check on basic
systems and management approach.
The auditor checks and reports on the processes used to manage standards at the site
in this area of ‘Environment 2-Pillar (Shortened Version)’.
In this section, the auditor also checks whether the site knows and is up to date with,
relevant local, national and international law as well as the
Are there laws governing environment, is the site aware of them and up to date?
Do they have internal systems for checking they meet the law?
Are these systems documented.
Are there any government checks and if so, are they documented?
Are they involved in a process of improvement of their environmental
performance?
Is there any documentary evidence of these practices and if so what are they?
The auditor should record the details in this section.
Use this section for an environmental assessment 4-Pillar SMETA, which includes a
recommended 0.25 audit days.
CODE
SMETA requirements;
P a g e | 82
10B4.10 Suppliers should have completed the appropriate section of the SAQ and
made it available to the auditor.
10B4.11 Has the site recently been subject to (or pending) any fines/prosecutions for
noncompliance to environmental regulations.
Code
SMETA Requirements;
Note: The aim of the Business Ethics Assessment is to give a better understanding of
these issues in global supply chains and by gathering information as observations and
not non-compliances, it is hoped that over time, appropriate standards can be agreed
upon. In addition, this is not designed as a forensic audit, rather a review of processes
and procedures to manage compliance
P a g e | 83
SMETA requirements:
Community Benefits
In keeping with the Sedex Vision Statement, SMETA seeks to encourage organisations
to implement positive aids to the community. These may include aspects such as
hospitals, schools, community centre, sports/health programmes, transport to local
facilities such as doctors and markets/shops, AIDS programme, and so on.
4.4 Environment
D2 The supplier shall be aware of and comply with their end clients’
environmental requirements.
P a g e | 84
Task
Read the case studies in the handout and decide what action you would take to
satisfy yourself that the situation is compliant with SMETA.
Provide details of the possible audit evidence that could be available in order to verify
that the clauses are being met effectively.
Output
Feedback from this workshop will be in the form of a group discussion lead by the Tutor and will
consider the:
- requirement.
- audit trail.
- possible evidence.
Time Allowed
Workshop: 20 minutes.
Feedback: 20 minutes.
P a g e | 85
P a g e | 86
Session Six
P a g e | 87
When you have completed this topic you will be able to:
KEY POINTS
Competence of auditors.
P a g e | 88
There are strict rules and regulations laid down for the conduct of third-party audits
that are monitored by Accreditation Bodies through the International Accreditation
Forum (IAF).
In the United Kingdom, the national accrediting body is the United Kingdom
Accreditation Service (UKAS) which reports directly to the Government Department
of Trade and Industry. In the USA, the Exemplar Global fulfils a similar role, as does
the JAB in Japan.
The accreditation body will also agree the scope of accreditation with the certification
body. That is the certification body will only be able to award certificates within
specifically defined industrial sectors.
The Standard contains principles and requirements for the competence, consistency
and impartiality of audits and certification of all types of management systems.
requires that this recertification audit and the decision on issuing the new
certificate must be performed prior to the expiry of the existing certificate;
P a g e | 89
surveillance audits in first and second years (the date of the first
surveillance audit following initial certification must take place no more
than 12 months from the last day of the stage 2 audit);
These and the other requirements relating to the audit and certification process
are addressed in this Manual and on the Course.
The accreditation body (UKAS) will carry out regular monitoring of the activities
of the certification body against ISO 17021 and will raise nonconformity reports
as appropriate.
P a g e | 90
3. CERTIFICATION PROCESS
3.1 Introduction
is effectively implemented.
P a g e | 91
The audit team are expected to analyse all of the information and audit
evidence gathered during the Stage 1 and Stage 2 audits to review the audit
findings and agree on the audit conclusions.
The duration of the audit is shorter than an initial audit and tends to be
focussed on a particular part of the overall system. A certification body is able,
therefore, to look at specific processes or areas in more depth.
treatment of complaints;
Surveillance audits are conducted at least once a year. The date of the first
surveillance audit following initial certification is no more than 12 months from
the last day of the Stage 2 audit.
P a g e | 92
4. CERTIFICATION OF AUDITORS
An auditor certification scheme is one of the means for providing consistency and
accuracy in the interpretation of the Standard by auditors.
Brief explanations of the categories of CQI / IRCA auditor are included in the
definitions in Appendix 1.
P a g e | 93
The details of other schemes are published by the relevant auditor certification
bodies.
P a g e | 94
5. COMPETENCE OF AUDITORS
Both ISO/IEC 17021-1 and ISO 19011 set out the desired personal behaviours and
competencies needed by an auditor.
ethical
open minded
diplomatic
collaborative
observant
perceptive
versatile
tenacious
decisive
self-reliant
professional
morally courageous
open to improvement
collaborative.
P a g e | 95
Details on the initial and continual evaluation of auditors and audit team leaders
are provided in ISO 19011.
P a g e | 96
P a g e | 97
P a g e | 98
Session Seven
P a g e | 99
When you have completed this topic, you will be able to:
Describe the difference in purpose and conduct between first, second and third party
audits.
KEY POINTS
Definition of audits.
Principles of auditing.
Audit activities.
P a g e | 100
Systematic, independent and documented process for obtaining audit evidence and
evaluating it objectively to determine the extent to which audit criteria are fulfilled.
In other words, a check that the Social System is operating effectively in accordance
with the system criteria.
audit activities;
audit principles;
structural requirements;
resource requirements;
information requirements;
process requirements;
This Course is based on the requirements set in ISO/IEC 17021 and the guidelines
contained within ISO 19011.
P a g e | 101
2. PRINCIPLES OF AUDITING
To ensure that auditing is an effective and reliable management tool, ISO 19011
contains a number of fundamental principles. Understanding and following these
principles will ensure that audit conclusions are relevant and sufficient, and that
auditors working separately from one another will reach similar conclusions in similar
circumstances.
Ethical conduct
Fair presentation
Independence
Evidence
P a g e | 102
impartiality;
competence;
responsibility;
openness;
confidentiality and
responsiveness to complaints.
3. TYPES OF AUDITS
First party.
Second party.
Third party.
Definition:
Objective:
Requirement:
P a g e | 103
Certification bodies have always issued certificates with the understanding that
they signify organisations’ competence to effectively manage their own affairs,
(rather than the certification body overseeing every last detail of a system).
In other words, an auditor can, (and indeed, should) as a direct result of the
findings and opportunities for improvement concerning the effectiveness of an
organisation's internal audit system, amend the planning for an audit to suit
these findings.
The auditor may obtain information during a pre-audit or document review. For
example, if the pre-audit had revealed that the organisation’s audit staff had not
adequately audited certain key operations within the organisation during
previous audits, the external auditor would "plan-in" these operations during his
or her audit in order to ensure that these were "controlled".
Of course, the converse could apply; sampling could be reduced if the internal
audit system demonstrated complete and thorough auditing of certain
operations.
The external auditor also needs knowledge of the policy and objectives and
targets as a further “point of reference” during the review of internal audit
performance.
P a g e | 104
3.2 Use of the internal Social System audit by external auditors, continued
P a g e | 105
3.2 Use of the Internal Social System audit by external auditors, continued
All of these principles require that the internal audits by an organisation must
focus on the Social System and the activities controlling service levels.
By implication, this also means that an organisation must ensure that the
personnel used for internal audits are trained in social and ethical issues in the
areas/activities they will be responsible for auditing.
Otherwise, it is unlikely that the internal auditor will be able to adequately judge
effectiveness.
Definition:
Objective:
Definition:
Objective:
4. AUDIT PROGRAMMES
P a g e | 106
P a g e | 107
P a g e | 108
Session Eight
P a g e | 109
When you have completed this topic, you will be able to:
Establish the purpose and objectives of the audit and define the audit scope.
Identify the documents to be reviewed and information to be obtained from the audit.
KEY POINTS
Document review.
Audit checklist.
P a g e | 110
There are a number of distinct activities that take place during a certification audit.
These form an audit programme and include:
a re-certification audit in the third year before the expiration of the certificate.
Generally, internal audits are not so formally structured and the requirements
for these audits are set out in the clause of the Standard concerning Internal
Audits.
Audit planning;
Stage 1 audit
Stage 2 audit;
P a g e | 111
2.1 General
For an initial certification audit, the planning process will begin with the receipt
of an application from an audit client.
An internal audit programme will be planned taking into consideration the status
and importance of the processes and areas to be audited as well as the results
of previous audits.
Within the overall audit programme, each individual audit should be based on
documented objectives, scope and criteria.
confirming that the management system complies with all the elements of
the ‘Standard’;
confirming that the organisation complies with its own policies and
procedures;
P a g e | 112
The audit scope describes the extent and boundaries of the audit in terms of
factors such as:
physical locations;
organisational units;
policies;
procedures;
regulations;
legislation;
contract requirements;
P a g e | 113
Where the audit is not feasible, an alternative should be proposed to the audit
client by the audit programme manager, in consultation with the auditee.
The feasibility of the audit should be reviewed after Stage 1 audit has been
completed, taking into account anything that had been identified during Stage
1.
The audit duration will need to be determined and will affected by:
the size and complexity of the audit client and their processes;
whether there are any outsourcing of any activities included in the scope
of the management system;
P a g e | 114
For a large client with several or many sites it may be appropriate to sample
sites covering the same activity in various locations. The rationale for the
sampling plan shall be documented for each client.
As soon as the audit has been declared feasible, the composition of the audit
team should be established:
The audit programme manager should appoint an audit team leader with the
appropriate skills and competence needed to achieve the objectives of the
audit.
The audit team will comprise an audit team leader and may comprise auditors,
auditors-in-training and technical experts, working under the direction of the
audit team leader.
However, if there is only one auditor, that auditor should perform all of the
duties of the audit team leader.
Consideration should be given to the following issues when deciding the size
and composition of the audit team:
the language of the audit and understanding of the auditee’s social and
cultural environment;
the need to assure the independence of the audit team from the activities
to be audited and to avoid any conflicts of interest;
the ability of the audit team members to interact effectively with the
auditee and to work together.
P a g e | 115
The audit client and the individual auditee have the right to request the
replacement of particular team members on reasonable grounds that should be
made to the audit programme management. Examples of reasonable grounds
may be those of conflicting interests (such as an audit team member was
former employee of the auditee or provided consultancy services) or previous
unethical behaviour.
During the audit, the responsibilities of the Team Leader are to:
P a g e | 116
The audit team leader should assign to each team member responsibility
for auditing specific management system processes, functions, sites,
areas and activities.
Such assignments should take into account the need to maintain auditor
independence, competence and efficient use of resources.
P a g e | 117
collate the evidence from the audit both for and against conformity;
During the audit, the audit team must assess audit progress and
exchange information. The Team Leader may need to reassign work as
needed between the audit team members and periodically communicate
the progress of the audit and any concerns to the auditee.
Should the team uncover evidence that indicates that the audit objectives
cannot be met or suggests the presence of an immediate and significant
risk (e.g. safety), the Team Leader must report this to the auditee client.
Appropriate action must be taken which may include reconfirmation or
modification of the audit plan, changes to the audit objectives or audit
scope, or termination of the audit.
The Team Leader must review with the client any need for changes to the
audit scope which becomes apparent as on-site auditing activities
progress.
3.2.5.1 Observers
P a g e | 118
3.2.5.2 Guides
In advance of any on-site auditing it is important for the audit team to have a good
understanding of relevant background information which may have an implication on
their audit plan and ultimately on their findings.
legislation;
media reports;
NGO reports;
P a g e | 119
One useful technique in identifying the information required and the best
sources of that information is that of Stakeholder mapping. This process
essentially comprises the identification of as many relevant stakeholders of the
organisation as possible, along with their inter-relationships.
A pictorial representation of the stakeholder map can provide for the audit team
to identify, not only those stakeholder who would be useful in supplying
background information in advance of the audit, but also those who ought to be
involved during the audit itself.
Those stakeholders with many links to other stakeholders may prove very
useful to the auditor. The process may also discover other stakeholders which
may otherwise have been missed.
The majority of the background research must be done in advance of the audit
to ensure that the audit itself will be effective. Therefore most indirect and some
direct stakeholders will generally be used in advance of the onsite audit to
assist with the planning of the audit.
The stakeholder mapping process will also help in planning which stakeholders
need to be involved in the onsite audit alongside facility representatives and
workers. For example, trade union representatives, local community groups,
local religious groups, local education or health facilities or local NGOs. The
onsite audit therefore, may also incorporate some local activities away from the
facility.
P a g e | 120
P a g e | 121
P a g e | 122
Session Nine
Stage 1 Audit
P a g e | 123
STAGE 1 AUDIT
OBJECTIVES
When you have completed this topic, you will be able to:
KEY POINTS
Pre-audit visit.
Document review.
Work documents.
P a g e | 124
STAGE 1 AUDIT
1. INITIAL CERTIFICATION AUDIT
e) review the allocation of resources for stage 2 audit and agree with the client
on the details of the stage 2 audit;
For most management systems, ISO 17021 recommends that at least part of
the Stage 1 Audit be carried out at the auditee's premises in order to achieve
the objectives stated above.
Stage 1 audit findings are documented and sent to the auditee. These should
include the notification of any areas of concern that could be classified as
nonconformity during the Stage 2 audit. Stage 1 audit findings are documented
and sent to the client. These should include the notification of any areas of
concern that could be classified as nonconformity during the Stage 2 audit.
P a g e | 125
2. APPLICATION
An initial certification audit will commence with the receipt of an application from the
organisation wishing to be certified. The application will contain information
concerning:
Before proceeding with the audit, the certification body will review the application and
supplementary information for certification to ensure that the information about the
applicant organization and its management system is sufficient for the conduct of the
audit.
Assuming that the certification body goes ahead with the audit, the certification body
shall determine the competences it needs to include in its audit team and for the
certification decision.
Depending on the situation, the audit programme manager or audit team leader
should contact the auditee to finalise arrangements for the audit. In an internal audit
this may be informal, but for some third-party audits, this may take the form of a
formal pre-audit visit (see below).
P a g e | 126
The need for accompanying persons such as observers, interpreters or guides for the
audit team should be mutually agreed.
4. PRE-AUDIT VISIT
plan and allocate resources for further document review where required
and for the certification audit;
P a g e | 127
P a g e | 128
The pre-audit process will then follow the audit stages covered in the
following Sessions.
identify any special needs for the audit team such as skills,
knowledge, facilities, protective clothing and so on;
P a g e | 129
5. DOCUMENT REVIEW
The next stage in the preparation process is for the auditor (the audit team leader or
by an auditor nominated by the audit team leader) to study the documents relevant to
the audit criteria, objectives and scope of the audit. This is called the document
review or “desk study” or documentation audit.
The purpose of the review is to provide information to the auditor for the on-site audit
activities. The auditor will need to satisfy him- or herself that the management
system as described in the documented processes meets the requirements of the
audit criteria. For an initial certification, the audit criteria will be requirements of the
relevant the Standard.
In undertaking the review, the auditor will consider whether the system and the
processes referenced within the system are appropriate to the needs of the business.
Once satisfied that the system and processes are adequate and meet the
requirements of the relevant Standard, the auditor should use this information to:
devise an audit plan to notify the auditee of the format for the audit;
Depending on the type of audit, and the objectives and scope of the audit, the auditor
will wish to review:
- operational procedures,
records.
The documentation should be reviewed to determine the conformity of with the audit
criteria. The outcome of the pre-audit visit and the document review on an initial
certification audit will be contained in a Stage 1 Audit Report.
P a g e | 130
6. CONCERNS AT STAGE 1
Stage 1 audit findings are documented and sent to the client. These should include
the notification of any areas of concern that could be classified as nonconformity
during the Stage 2 audit.
The audit should not continue until the deficiencies are resolved to the satisfaction of
the audit programme management in consultation with the audit client, the audit team
leader and, if appropriate, the auditee.
7. WORK DOCUMENTS
Work documents are those used by the audit team for the purpose of reference
and/or recording the audit. They can include:
records of meetings;
The use of these documents, such as audit plans, checklists and forms, should not
restrict the extent of audit activities.
Work documents should be retained, at least until audit completion. Audit team
members should suitably safeguard those involving confidential or
The audit team leader should prepare a plan for the on-site audit activities. The plan
should provide the necessary information to the audit team, auditee and audit client.
It should enable the scheduling and co-ordination of the audit activities.
The level of detail should be adapted to suit the scope and complexity of the audit.
The details may differ between initial and surveillance audits and between internal
and external audits.
P a g e | 131
dates and places where the on-site audit activities are to be conducted;
expected time and duration for audit on-site activities, including meetings with
the auditee’s management and audit team meetings.
the identification of the sites, activities and management system processes that
are essential to meeting audit objectives in order to allocate appropriate
resources to critical areas of the audit;
the working and reporting language(s) of the audit where this is different from
the language of the auditor(s) and/or the auditee;
the identification of roles and responsibilities of the audit team members and
any accompanying persons;
In planning on-site audits, auditors need to be aware of, and take into consideration,
any local customs or cultural issues that may have a bearing on the conduct of the
audit. These may relate to language, dress and personal conduct of the auditor.
Auditors must be sensitive to the needs and expectations of auditees.
The plan should be reviewed and accepted by the audit client and presented to the
auditee before the audit.
Any objections by the auditee should be resolved between the audit team leader, the
auditee and the audit client before continuing the audit.
P a g e | 132
The audit plan should be sufficiently flexible to permit changes, such as any changes
in emphasis that may become necessary as the on-site audit activities progress. Any
revised audit itinerary should be agreed between the parties concerned before
continuing the audit.
9. WORK DOCUMENTS
Work documents used by the audit team for the purpose of reference and/or
recording the audit can include:
The use of work documents, such as audit plans, checklists and forms, should not
restrict the extent of audit activities.
Work documents should be retained, at least until audit completion. Audit team
members should suitably safeguard those involving confidential or proprietary
information.
The checklist is a valuable aid to auditing and is used as a working document, and a
record.
The purpose of a checklist is to ensure that the objectives and scope of the audit are
met, and that every part of the audit is completed.
The checklist acts as a guide for the auditor. It is the auditor's main tool in carrying
out the audit successfully.
P a g e | 133
the number of questions and size of samples can be used to estimate the time
required to conduct an audit or parts of an audit;
an aid to the auditor to ensure that all of the planned arrangements for the audit
are covered;
- the use of standardised checklists may stifle initiative and analysis of the
processes or procedures
relevant procedures;
The complexity or detail on a checklist will depend on the experience of the auditor.
The approach should be to develop a well structured and reasoned trail through
linked avenues of investigation concerning objectives/targets, previous audit results,
likelihood of accident & emergency situations, concerns of interested parties (as
appropriate).
P a g e | 134
The auditor should consider the likely requirements for evidence of control and
should consider to the effective use of “vehicles” for the audit trail in areas
fundamental to the SS rather than a generalised / abstract approach based solely
around the requirements of SMETA.
Nonetheless, all clauses and sub-clauses of the SMETA Best Practice Guidance
relevant to the activity being audited should have been considered in the audit
planning and consideration given to their interpretation in the different
areas/situations defined in the audit plan.
For example:
This style of checklist format/creation is far more valuable to an SS audit than simple
analysis of each procedure, statement by statement. It focuses the auditors on the
need for review of effectiveness as well as implementation.
P a g e | 135
To enable Learners to practice the steps necessary to prepare for an on-site audit
against SMETA.
Task
Review the background information and pre-audit questionnaire provided by the GBR
factory and determine the number of days needed to conduct the audit and prepare
an audit plan.
Any other factors that you will need to conduct the audit effectively.
Output
Time Allowed
Workshop: 30 minutes.
Feedback: 20 minutes.
P a g e | 136
P a g e | 137
To enable Learners to exercise the knowledge gained regarding the requirements for
gathering sufficient information, the interpretation of that information, and for audit
planning.
Task
Review the details of the first day of the audit at the GBR factory. You are asked to
plan Day 2 of the audit.
In your team:
- Re-plan Day 2 of the audit in line with your conclusions, to address the issues
that your team feels need to be examined and/or re-examined.
Output
One or more teams will be chosen to make a presentation of their plan in the form of
an opening meeting to the management team at GBR.
Time Allowed
Workshop: 75 minutes.
Feedback: 30 minutes.
P a g e | 138
P a g e | 139
P a g e | 140
Session Ten
P a g e | 141
When you have completed this topic, you will be able to:
Understand the need for auditors to be sensitive to local customs and the need for
protection of vulnerable employees.
Explain the process of, and different methods for collecting audit evidence.
KEY POINTS
Overcoming bias.
Focus groups.
Questionnaires.
Observation.
P a g e | 142
The outcome of this process is the audit findings, which will be discussed in a later
session.
P a g e | 143
Sometimes it may only be possible to gather one type of evidence and in these
cases it is important to ensure that sufficient evidence is gathered from different
sources, for example by interviewing different individuals, to reach the right
conclusion.
3. OPENING MEETING
An opening meeting should be held with the management of the organisation being
audited or, where appropriate, those responsible for the functions or processes to be
audited. Records of attendance at the opening meeting should be kept.
establish communication.
The meeting should be chaired by the audit team leader and the following items
considered, as appropriate:
confirmation of the audit plan and other relevant arrangements with the auditee,
such as the date and time of the closing meeting, any interim meetings
between the audit team and the auditee's management, and any late changes;
methods and procedures to be used to conduct the audit, advising the auditee
that the audit will only be a sample of the information available and of the
element of uncertainty inherent in all audits;
P a g e | 144
confirmation of formal communication links between the audit team and the
auditee;
confirmation that during the audit, the auditee will be kept informed of audit
progress;
confirmation that any resources and facilities needed by the audit team are
available;
At the end of the opening meeting opportunity should be given to the auditee to ask
any questions.
In many audit situations, for example, surveillance audits or internal audits, the
opening meeting may consist of simply that an audit is taking place, so the above list
is neither prescriptive nor exhaustive.
keep control.
Following the opening meeting, auditors may request a short tour of the premises to
familiarise themselves with the layout of the organisation.
Opening meetings for internal audits may be less formal. Escorts, representatives,
formal opening and closing meetings may not be necessary for Internal Audits.
P a g e | 145
There are many types of audit evidence available when performing a social
accountability audit and this evidence can be gathered using a number of useful tools
and techniques. These methods of gathering evidence should be incorporated into
the audit plan so that they can be used effectively to help with the collection of
corroborating evidence.
Focus groups are used to gather evidence directly from workers through a
group interview. The reasons for using this technique are that it creates a less
threatening atmosphere than one to one interviews can do and it optimises the
use of time whilst increasing the sample size of individuals interviewed.
Focus groups are generally held with a maximum of eight to ten individuals who
must be selected by the audit team. This is usually done through review of the
payroll, or through selection whilst touring the facilities. Participants should be a
peer group, so that all feel free to speak during the focus group interview. The
process needs to be made as anonymous as possible, and several focus
groups are better than just one.
The timing of focus groups is important. They should last about 30-40 minutes
and be scheduled either just after a break or start time, and not at the end of
the working day. Workers interviewed must not be penalised financially or
otherwise due to participation in the focus group.
Focus group interviews generally focus on a few topics only, and it is often
useful to run duplicate focus groups on the same topics. The auditor should
start off by introducing themselves and the purpose of the focus group and
should explain the anonymity to ensure workers are happy to participate.
The auditor should use open questions and try to ensure everyone gets a
chance to speak. One useful technique is to ask each worker what their job role
is and how long they have been at the facility.
The auditor should take notes openly and explain their purpose during the
focus group, however they should be cautious about ascribing interviewees
names.
P a g e | 146
At the end of the focus group interview the auditor should ensure
understanding of any key issues that have arisen before thanking the
participants for their time and contribution.
4.2 Questionnaires
Questionnaires have several uses during a social accountability audit. They are
a means of obtaining information from a much larger sample size than would
be feasible to interview.
They also provide an opportunity to interview staff from another shift, for
example the night shift, who may not otherwise be able to contribute
information to the audit process.
The questionnaire should be tailored to the facility in question and should not
be too long, for example it should take no longer than 5-10 minutes to
complete.
The questions should be simple and easy to answer and the process should
again be anonymous. Some example questions are provided below:
Last week was less Last week was typical Last week was more
than usual than usual
If you had any concerns about working conditions, who would you raise them
with?
P a g e | 147
NAME or POSITION
YES NO
The analysis of answers from questionnaires should not be too complex, and it
must be arranged that questionnaires are distributed and collected early in the
audit process to provide sufficient time to complete the analysis and to follow
up any issues identified.
Questionnaire results tend to be fairly general in nature and will usually require
some follow up to verify information provided.
P a g e | 148
4.3.1 Language
4.3.2 Gender
4.3.3 Anonymity
The auditor should put the interviewee at their ease and start off with
open questions to get them talking. They should progress to more
detailed questions and only use closed questions to confirm
understanding.
P a g e | 149
Notes taken during interviews should be concise and should reflect the
key issues that have been raised. Care should be taken in documenting
individual’s names to minimise the likelihood that comments are attributed
to them. However, it is often useful to have name details, to enable cross
checking with relevant records such as pay, hours and training records.
4.3.7 Verification
4.4 Observation
Detailed notes should be made of any key issues observed, and on some types
of audit, for example first or second party audits, photographs may be taken to
demonstrate the observed evidence. Examples of observations include the
interaction of management and workers; noise, odour and other potential
hazards; custom and practice in the work place.
There are numerous documents and records that an auditor may wish to review
as part of the audit. In fact, clause 9.14 of the standard states that:
The audit team will therefore have to take a sample of records of each relevant
type for review.
P a g e | 150
payroll – indicating the number of staff, their age, their department and
level in the company;
time cards – indicating the hours of work for each employee; training
records – specifically required for health and safety training;
Material Safety Data Sheets (MSDS) – indicating that the company are
aware of the hazards of chemicals on site and are managing those
hazards appropriately;
Throughout the audit the team has to take samples of evidence to determine the
extent to which the organisation conforms to the requirements. The key to successful
sampling is to determine an appropriate sample size which provides sufficient
evidence that the auditor can confidently evaluate to determine conformity with
requirements.
Small Large
Sample size
P a g e | 151
For example, if there is a high level of local concern about a particular issue, such as
the use of illegal workers, then the auditors should take a relatively large sample of
evidence to determine whether or not it is happening at this facility.
Similarly, if the workforce is highly heterogeneous, for example many different types
of individuals, the audit team will need to take a larger sample for interview than if the
workforce was all very similar.
If the company are performing high quality internal monitoring of their systems and
activities, the audit team can take a relatively small sample in those areas and have
confidence in the results they find.
In those areas where evidence is mainly verbal testimony and information from other
interested parties, the reliability and availability tend to be lower than those areas
where evidence can be gained from records, documents and auditor observation.
High
Hours of work Wages
Discipline
Health and safety
Reliability
of Freedom of
evidence Association
Child labour
Discrimination
Forced labour
Low
The implications of this is that where evidence is less reliable and/or less available,
larger samples will be needed to give the auditors confidence in their findings. In
practice, audit findings tend to be skewed towards those areas where evidence is
more reliable and available, such as working hours, pay and health & safety.
P a g e | 152
Task
Output
You will be asked to present your report, checklist and findings for discussion by the
whole class.
Time Allowed
Workshop: 30 minutes.
Feedback: 30 minutes.
P a g e | 153
P a g e | 154
To enable Learners to participate in a role play exercise and to consider the technical
and emotional issues relevant to the process and allow evaluation of the tool in
Social System audits.
Task
You will be provided with individual roles with which they should become familiar.
Output
Time Allowed
Workshop: 40 minutes.
Feedback: 20 minutes.
P a g e | 155
P a g e | 156
Session Eleven
P a g e | 157
- describe the purpose, structure, content and attendees typically at audit review
meetings;
- understand the processes of identifying and drafting finding statements;
- explain the methods for identifying nonconformities;
- describe the purpose and typical content of Corrective Action Plan Report (CAPR)
- describe the preparation, approval and distribution of audit reports;
- explain the roles and responsibilities for taking and verifying corrective action;
- explain the steps necessary to address corrective actions;
- identify the audit evidence that may be required to demonstrate effective
implementation of corrective and preventive action;
- understand the role of the management review;
- appreciate the steps necessary to follow-up and close out corrective actions.
KEY POINTS
Audit findings.
Finding statements.
Audit completion.
Corrective action.
Management review.
P a g e | 158
When the audit is complete, the auditor team leader must conduct a private review of
the findings. Interim or end of day reviews may also be necessary. The review will
involve all the members of the audit team.
a review of checklists;
2. AUDIT FINDINGS
nonconformity;
non-conformance;
non-compliance;
P a g e | 159
go over the facts verbally and agree the nature of the non-compliance
with the auditee, detailing the audit evidence;
draft finding statements during a working lunch or at the end of the day,
then finalise at the private review.
When working as a member of an audit team, the auditor will need to review
the evidence with the team before deciding the wording of a finding statement
and its classification.
P a g e | 160
3. FINDING STATEMENT
overview of finding;
Example 1:
Employees are contracted to work standard hours in excess of 48 hours per week.
For example, engineers’ shift rota comprises an average standard week of 56 hours.
The maximum standard working week is defined in ETI Base Code as being 48
hours.
Example 2:
Employees are not wearing PPE. For example, production personnel were observed
not wearing hearing protection in the production hall, which is designated as a
mandatory area for hearing protection and has signage to that effect. The ETI Base
Code 3.1 requires that the company provide a safe and healthy working environment
and take adequate steps to prevent accidents and injury to health.
The Corrective Action Plan Report summarizes the on-site audit findings and a
corrective and preventative action plan that both the auditor and the organisation
believe is reasonable to ensure conformity with the ETI Base Code, local laws and
any additional audited requirements.
The CAPR is raised after careful consideration at the audit review prior to the closing
meeting with the organisation.
P a g e | 161
After the initial audit, the CAPR is used to rerecord actions taken and to categorise
the status of the non-compliances. The recommended completion date should be
discussed between the factory management and the auditor at the closing meeting to
agree on realistic timeframes. This date is only a guidance and it is the responsibility
of the factory to discuss exact dates or changes with their local client contact if
appropriate.
The auditor should make every effort to reach agreement with the facility and obtain
signature of the representative.
The representative should be invited to complete the second part of the signature
box.
The audit team leader is responsible for the preparation, accuracy and
completeness of the SMETA audit report. The audit report should provide an
accurate record of the audit and should contain audit conclusions on issues
such the extent of conformance to the audit criteria and details of the issues
raised. The audit report should include, or make reference to:
the audit criteria, including a list of reference documents, against which the
audit was conducted;
the place(s), date(s) and times that the audit was conducted;
The audit report should be issued within the agreed time period. If this is not
possible, the reasons for the delay should be communicated to the audit client
and a revised issue date should be agreed.
The audit report should be dated and signed by the audit team leader and
reviewed and approved as defined in appropriate documented procedures.
The audit report should then be distributed to recipients designated by the audit
client.
The audit report is the property of the audit client and confidentiality should be
respected and appropriately safeguarded by the audit team members and all
report recipients.
6. CLASSIFICATION OF CAPRS
The non-conformances as not classified as such but the more serious the non-
conformances the more immediate must be action taken by the organisation to
correct the deficiency.
In many ways, these are the added-value part of the audit. They are the points on
which the auditor may wish to comment but for one reason or another, are not
reported as NCs.
areas of concern which are not yet serious enough to warrant CAPRs;
situations which if not addressed may give rise to CAPRs at a later date;
deficiencies for which the auditor is prepared to give the organisation the
“benefit of the doubt”;
Potential issues provide a flexible method of reporting for the auditor in that although
they have no formal status, observations can make the difference between a positive
and negative audit.
P a g e | 163
Because potential issues (opportunities for improvement) can add value to an audit,
many organisations regard them in much the same way as CAPRs; that is, actions
taken in response to these are reviewed and evaluated during future audits.
When the review is complete the auditor/team will present the findings to
management at a “closing meeting”.
A closing meeting, chaired by the audit team leader, should be held with the
auditee's management and those responsible for the functions audited.
Records of attendance at the closing meeting should be kept. The aim of the
closing meeting is to inform and agree with the facility management the findings
of the audit and to verify their confirmation of the findings through signing off
the CAPR and agree timescales. It is intended that all issues be closed out by
the end of the meeting.
refuse the 'quick fix' as a sole solution to the finding. The management
must investigate and attempt to correct the root cause of the problem to
prevent any recurrence.
P a g e | 164
The SMETA audit report and CAPR is issued to the payee and any authorised
third parties in PDF within the agreed timescales.
The auditor advises the auditee of the requirement and process of the Sedex
uploading and management process and associated fees for these services.
On receipt of the uploading prompt the audit body uploads the report and
monitors non-compliances and verifies the issues.
The audit is completed when all activities in the audit itinerary have been concluded,
including the distribution of the approved audit report.
P a g e | 165
In processing CAPRs, the auditor and auditee have specific responsibilities. The
auditee's management must, in conjunction with the management representative:
introduce changes;
To resolve the non-compliance. The management of the area that has been audited
should:
initiate a similar investigation into other areas where the problem may exist;
P a g e | 166
The results on internal and external audits should be reported to the Management
Review. Here the results will be analysed and the status of corrective actions
reported. Further actions to prevent recurrence impacting on the wider business
policy, customer satisfaction, continuous improvement programmes and measures
should be identified and implemented if necessary.
Information and data from the effective implementation of the social management
system, and internal and external audits should be analysed and reported to the
Management Review. Management should support processes, activities and actions
to eliminate the causes of potential nonconformities within the social management
system. Such actions will need to be appropriate to the effects of the potential
problems.
The audit client or auditee is responsible for determining any corrective action
needed to deal with a non-compliance. Corrective action and subsequent
follow up actions, which may include additional audits, should be completed
within an agreed time period. The auditee should keep the auditor informed of
the status of corrective action activities.
The process of determining whether the corrective action requested has been
implemented is called "follow-up". This can be done by reviewing
documentation submitted by the client or by visiting the client's premises.
The action relating to the verification and acceptance of corrective action by the
auditor is called "close-out".
P a g e | 167
The auditor will verify the effectiveness of corrective actions by visiting the
organisation by:
P a g e | 168
Task
You will be divided into teams and provided with a set of wage records, a calendar,
local law requirements and a check list.
- Complete the checklist based on the case study material and the relevant
requirements for use during an audit of these areas.
Output
You will be asked to present back your checklist and findings for discussion by the
whole class.
Time Allowed
Workshop: 30 minutes.
Feedback: 30 minutes.
P a g e | 169
P a g e | 170
Task
You will conduct a simulated audit interview and review of evidence against the
scope and requirements of the documentation and relevant requirements of the
social system. Tutor(s) will act as interviewee’s and will use the exercise to highlight
some important issues.
- Conduct a simulated audit exercise with the tutors acting as auditees including:
Output
No formal presentations, however, the tutor will debrief the teams on their
performance in the simulated interview.
Time Allowed
Feedback: Ongoing.
P a g e | 171
P a g e | 172
To enable Learners to practice the audit review process and the documentation of
audit findings.
Task
Lead Auditor. The team is to review the case studies and prepare appropriate CAR
reports.
- Hold an audit review meeting and discuss each case study to determine the audit
findings, including:
- whether any requirements of the standard have not been fulfilled; and if so.
Output
You will be asked to each submit a CAR form to the tutor for evaluation. Individual
feedback will be provided.
Time Allowed
Workshop: 60 minutes.
Feedback: 30 minutes.
P a g e | 173
P a g e | 174
Appendices
P a g e | 175
CONTENTS
Appendix 1: Glossary of Terms and Definitions ................................................................. 169
Appendix 12: The Chartered Quality Institute Professional Code of Conduct .................... 192
P a g e | 176
SS LAC Learner Guide
16-01-2018
APPENDICES
AUDIT
AUDIT CONCLUSION
AUDIT CRITERIA
AUDIT EVIDENCE
AUDIT FINDINGS
AUDIT PLAN
AUDIT PROGRAMME
Set of one or more audits planned for a specific time frame and
ISO 19011:2011
directed towards a specific purpose
AUDIT SCOPE
AUDIT TEAM
AUDITEE
P a g e | 177
SS LAC Learner Guide
16-01-2018
APPENDICES
AUDITOR
CHILD
Any person less than 15 years of age, unless the minimum age
for work or mandatory schooling is stipulated as being higher by
SA 8000:2014
local law, in which case the stipulated higher age applies in that
locality
CHILD LABOUR
ORGANISATION
COMPETENCE
CONFORMITY
CONTINUAL IMPROVEMENT
P a g e | 178
SS LAC Learner Guide
16-01-2018
APPENDICES
CORRECTION
CORRECTIVE ACTION
PREVENTIVE ACTION
CUSTOMER
DOCUMENT
EFFECTIVENESS
EFFICIENCY
P a g e | 179
SS LAC Learner Guide
16-01-2018
APPENDICES
HOMEWORKER
HUMAN TRAFFICKING
INFRASTRUCTURE
INFORMATION
INSPECTION
INTERESTED PARTY
INTERESTED PARTY
P a g e | 180
SS LAC Learner Guide
16-01-2018
APPENDICES
MANAGEMENT
MANAGEMENT SYSTEM
NONCONFORMITY
OBJECTIVE EVIDENCE
ORGANISATION
PERSONNEL
PREVENTIVE ACTION
PROCEDURE
PROCESS
P a g e | 181
SS LAC Learner Guide
16-01-2018
APPENDICES
PRODUCT
RECORD
REQUIREMENT
REVIEW
REWORK
SPECIFICATION
P a g e | 182
SS LAC Learner Guide
16-01-2018
APPENDICES
SUPPLIER/SUBCONTRACTOR
P a g e | 183
SS LAC Learner Guide
16-01-2018
APPENDICES
SUB-SUPPLIER
SYSTEM
TEST
TOP MANAGEMENT
TRACEABILITY
VALIDATION
VERIFICATION
WORK ENVIRONMENT
P a g e | 184
SS LAC Learner Guide
16-01-2018
APPENDICES
WORKER ORGANISATION
YOUNG WORKER
P a g e | 185
SS LAC Learner Guide
16-01-2018
APPENDICES
ILO standards are set in Conventions, having the force of international law and binding for
states that have ratified them and in Recommendations which provide additional
guidance to governments. ILO member states must provide regular reports on the
application of ratified Conventions to the ILO. The findings of ILO supervisory bodies form
ILO jurisprudence.
With the adoption in June 1998 of the ILO Declaration on Fundamental Principles and
Rights at Work, all 174 ILO member states have an obligation, regardless of ratification,
to respect, promote and realise the principles contained in the core ILO Conventions.
ILO Conventions 29 and 105 & Recommendation 35 (Forced and Bonded Labor)
ILO Conventions 100 and 111 & Recommendations 90 and 111 (Equal
Remuneration for male and female workers for work of equal value; Discrimination in
employment and occupation)
ILO Convention 182 & Recommendation 190 (Worst forms of Child Labor)
P a g e | 186
SS LAC Learner Guide
16-01-2018
APPENDICES
Although not core ILO conventions, other ILO standards especially relevant to the work of
ETI include:
ILO Convention 155 & Recommendation 164 (Occupational Safety & Health)
P a g e | 187
SS LAC Learner Guide
16-01-2018
APPENDICES
P a g e | 188
SS LAC Learner Guide
16-01-2018
APPENDICES
Below is an “auditor day” table setting out the number of auditor days, individual and
group interviews and sample size. Group worker interviews, as well as sample size for
review of files and time/ wage records. The table excludes audit preparation, travel,
Sedex “report uploading time” and report writing, but includes production of a CAP
(Corrective Action Plan) on site.
For best practice ethical trade audits, worker interviews must include a representative
sample of people and departments within the production site including agency, contract
and migrant workers. These suggested auditor days are only guidelines. Auditors use
their discretion and consider industry, location and individual facility knowledge when
defining the number of employees to interview.
A5.1.1 Table for Auditor Days and Sample Size Audit Days for Full initial and Full Re-
Audit.
Worker Effective
No. of
Total Files/ Time
Audit Workers Individual Group
Employees Time & Spent
days (excl. Interviews Interviews
Interviewed Wage on
Managers)
Records Interviews
6 or total
1 group
1 1-100 workers 10 10 2.5 hrs
of 4
if<5
4 groups
2 101-500 6 26 26 6 hrs
of 5
6 groups
3 501-1000 12 42 42 8.5 hrs
of 5
1001- 8 groups
4 20 52 52 12.5 hrs
2000 of 5
8 groups
4 2000+ 22 62 62 14hrs
of 5
If a site has more than 2000 workers, the number of interviews is determined on a
case by case basis depending on the circumstances of the facility. The suggested 62
is a minimum and this should increase as worker numbers increase. This is at the
discretion of the auditor and in agreement with the audit requestor.
P a g e | 189
SS LAC Learner Guide
16-01-2018
APPENDICES
Higher numbers of auditor days may require the use of more than one auditor, 2 or
more auditors in an audit team will allow for a balance of skills, or improve the gender
balance. However, when deciding the size of team, consideration must be given to
the size of supplier site and the potential disruption caused by a large audit team.
For a 4-Pillar SMETA Audit the guide is an additional 0.5 auditor days for the
additional procedures of extended environmental and business practices
assessment.
NOTES: Since it may be impractical to arrange a 0.5 auditor days, a solution may be to
‘top-up’ during a follow-up audit.
P a g e | 190
SS LAC Learner Guide
16-01-2018
APPENDICES
Organization:
Address: Date(s) on
site:
Lead Auditor:
Team
Member(s):
Standard(s):
Audit
Language:
Audit Scope &
Observations:
Criteria and
Reference
docs:
Area / Department / Process /
Date Time Auditor Key Contact
Function
Notes:
Times are approximate and will be confirmed at the opening meeting prior to
commencement of the audit.
Auditors reserve the right to change or add to the elements listed before or during the
audit depending on the results of on-site investigation.
A private place for preparation, review and conferencing is requested for the auditor’s
use.
Please provide a light working lunch on-site each audit day.
P a g e | 191
SS LAC Learner Guide
16-01-2018
APPENDICES
P a g e | 192
SS LAC Learner Guide
16-01-2018
APPENDICES
Activity
Item Compliance
No. Requirement Comments/Remarks
(Yes/No/Not
Applicable)
P a g e | 193
SS LAC Learner Guide
16-01-2018
APPENDICES
P a g e | 194
SS LAC Learner Guide
16-01-2018
APPENDICES
Activity
Item Compliance
No. Requirement Comments/Remarks
(Yes/No/Not
Applicable)
Management Review
P a g e | 195
SS LAC Learner Guide
16-01-2018
APPENDICES
P a g e | 196
SS LAC Learner Guide
16-01-2018
APPENDICES
This list provides examples; it is not intended to be fully comprehensive or fully inclusive.
Other documents may be necessary or available depending on the organisation, “plant”
or facility.
Labour contracts
Evacuation plan
Production records
P a g e | 197
SS LAC Learner Guide
16-01-2018
APPENDICES
Facility polices:
Child labour
Disciplinary
Environment
Training
P a g e | 198
SS LAC Learner Guide
16-01-2018
APPENDICES
Item
Item
No.
Confirm that during the audit, the auditee will be kept informed of
7
audit progress
Confirm that any resources and facilities needed by the audit team
8
are available
9 Confidentiality issues
14 Any questions?
P a g e | 199
SS LAC Learner Guide
16-01-2018
APPENDICES
Item
Item
No.
Remind them that they may challenge findings at this meeting, but
2.
any issues they have agreed to cannot be queried later
Mention good working practices that have been observed during the
5.
day
Explain where instances have been observed that the facility is not in
compliance with ETI Base Code (clarify issue/date status ) with local
6.
law (if applicable ) and with the other requirements of the Sedex
members best practice guidance
If they do not agree with any finding, state that if they produce
10. evidence that shows the finding is incorrect, the audit team will
review it
P a g e | 200
SS LAC Learner Guide
16-01-2018
APPENDICES
Item
Item
No.
Explain that the full report will be sent to the client who will be in
15.
contact with the facility
P a g e | 201
SS LAC Learner Guide
16-01-2018
APPENDICES
For the purposes of this code “members” refers to all individuals whose competence is
recognised formally by The Chartered Quality Institute [The CQI]. This includes but is
not restricted to CQI members, IRCA registered auditors and individuals on other CQI
registers, as well as all members of the Board of Trustees, Advisory Council and other
governance bodies.
It is the ethical and professional responsibility of all members to demonstrate the required
professional competence and behaviours in discharging the responsibilities of their role.
Members must uphold the highest ethical standards and integrity in exercising their
professional duties or other activities which might impact on the reputation of the
profession and of the CQI.
In support of these aims all members are expected to understand and comply with this
code of conduct.
Furthermore, the CQI reserves the right to suspend or withdraw membership and all
associated benefits from members who fail to comply with this code of conduct, in
accordance with the Enforcement Processes detailed below.
In recognising the values and requirements of this code of conduct members shall:
1.2. Act with due skill, care and diligence and with proper regard for professional
standards.
1.4. Ensure that clients, employers and others who may be affected by their activities
are not misled or ill-informed with regard to their level of competence and capability
to successfully discharge their responsibilities.
1.5. Seek appropriate support whenever they are aware that their level of competency
(knowledge, skills, behaviours and experience) might be lacking with respect to the
responsibilities they are assigned.
P a g e | 202
SS LAC Learner Guide
16-01-2018
APPENDICES
1.6. Accept responsibility and accountability for their own professional actions and
decisions.
1.7. Always act in a way which supports and upholds the reputation of the Quality
profession.
1.8. Work to ensure that the credibility and reputation of the CQI and all of its
stakeholders is protected.
1.10. When managing a team, ensure that those working for them have the appropriate
level of competence, supervision and support.
1.11. Co-operate fully with the Institute in assuring the effective implementation of this
Code of Conduct (including investigation and resolution of any alleged or actual
breaches).
In recognising the values and requirements of this code of conduct members shall:
2.3 Demonstrate sensitivity for the customs, working practices, culture and personal
beliefs of others.
2.6 Advise the CQI Executive in writing whenever there is a suspicion that this code of
conduct has been breached.
2.8 Ensure potential or known conflicts of interest are declared at the earliest
opportunity to ensure professional judgement is not compromised or perceived to
be compromised.
P a g e | 203
SS LAC Learner Guide
16-01-2018
APPENDICES
All members, by virtue of their association with the Institute, have agreed to abide by the
following enforcement processes.
P a g e | 204
SS LAC Learner Guide
16-01-2018
APPENDICES
You will be contacted by the CQI and IRCA for feedback on the course and your Approved
Training Partner.
Completing this short survey will help to ensure the continuing high standards of these
courses.
The CQI and IRCA offer a range of services to support you throughout your career. For more
information, please visit www.quality.org.
P a g e | 205
SS LAC Learner Guide
16-01-2018