229
All Enquiries
please call +44 (0)121 241 2299
ACS Registrars is one of the initial 20 Certification Bodies (CBs) in the UK to successfully complete their migration from OHSAS 18001 and be granted UKAS Accreditation.

ACS Registrars are pleased to announce that we can now provide UKAS Accredited ISO 45001 Certification to any organisation wishing to migrate from OHSAS 18001:2007 or to gain ISO 45001 Certification.

UKAS Accreditation
UKAS is the only UK National Accreditation Body recognised by the UK Government and the International Accreditation Forum (IAF).

Our UKAS Accreditation demonstrates that we have been assessed against internationally recognised standards, ensuring our competence, impartiality and integrity. You can therefore be confident in the knowledge that we are regularly audited ourselves, to ensure our compliance. http://www.acsregistrars.com/2017/11/08/is-your-iso-certification-ukas-accredited

As an International Accreditation Forum (IAF) member, UKAS Accreditation is recognised internationally. Obtaining ISO 45001 through a UKAS Accredited CB will make sure your hard-earned Certification is recognised internationally by all your customers.

Health-and-safety-proceduresISO 45001:2018
Your current Certification to OHSAS 18001:2007 remains valid during the migration period up to 12th March 2021 when this Certification will be withdrawn.

When your next Audit is due, you can choose to either maintain your existing OHSAS 18001:2007 Certification (if you think you need more time to make the necessary adjustments to your management systems), or you can migrate to ISO 45001.

Clients wishing to migrate to ISO 45001 as soon as their next Audit is due can start getting their organisation ready for the new standard by:
  • Obtaining a copy of the new standard and researching the significant changes.
  • Developing a plan for training and awareness to all relevant management levels.
  • Improving your risk management planning.
  • Considering a gap analysis to identify changes required.
  • Involving top management to take accountability for the management system.
  • Thinking about integrating other management system standards in line with ANNEX SL.
One of the significant changes to the standard is the ability to integrate with other ISO standards such as ISO 9001 and ISO 14001. ANNEX SL provides a common structure for smoother and quicker integration.

Risk management is another area enhanced under the new structure to improve the health and safety of your workforce by establishing a culture of risk-based thinking throughout the organisation.

For more information visit our website http://www.acsregistrars.com/ohsas-18001 or call 0121 241 2299
 
Following the government's ban on microbeads in cosmetics at the end of 2017 and the increase in awareness about the damage done by plastic found in our oceans, businesses and consumers will have to take up the challenge of reducing the pollution in our seas.

Plastic-wasteGlobal plastic production is expected to double over the next few decades.

There are already an estimated 11.1 billion plastic items entangled on reefs throughout the Asia-Pacific region*


With statistics like these, it is no wonder that governments and large corporations are now starting to act.

A variety of suggestions are being discussed including compostable plastic, eliminating single-use plastic and deposit return schemes.

China is now rejecting plastic waste from developed countries (since January 2018) due to most of the plastic being poor quality and ending up dumped or burned.

Therefore, solutions will have to be found quickly to reduce plastic pollution in our oceans.

ISO 14001 environmental management system
Organisations can contribute to reducing plastic pollution by implementing an effective system to manage the environmental impact of their operating processes.

ISO 14001 provides much more than a waste management system. It covers a broad scope to help you meet national and global environmental regulations and anti-pollution laws. Achieving certification to ISO 14001 will help you identify harmful effects on the environment caused by disposal of waste and set targets to minimise the impact. Additional benefits include:
  • Cost savings from reduced waste and consumption.
  • Providing an edge over your competitors when tendering.
  • Demonstrating your environmental credentials to your employees and customers.
The general public are more aware than ever about environmental issues and large multi-nationals are already seeing the benefits of being environmentally aware.

ISO 14001 proves your commitment to a cleaner world for all of us.

Integrating ISO 14001:2015 and ISO 9001:2015
Revisions of two of the most popular standards are in place and all audits are now being done to the revised standard.

One of the changes in the revision was the ability to easily integrate different standards. If you already have ISO 9001 and would benefit from certification to ISO 14001, the common structure is going to be the same under the revised standards. This will make it much easier to meet the requirements under one integrated management system.

Now would be a good time to consider improving your environmental credentials by adding ISO 14001 to your certifications.

*Research by Cornell University
 
There is a lot of confusion over the new GDPR (General Data Protection Regulation) and there appear to be different interpretations being put forward as to how businesses should comply.

GDPRThe new regulation reinforces best practices within the DPA (Data Protection Act) and PECR (Privacy and Electronic Communications Regulations) already in force in the UK.

A major factor that has made organisations take more notice of GDPR than the existing regulations are the significant fines that can be handed out for non-compliance:

Up to €10 million or 2% of annual global turnover of the previous year, whichever is higher. Or, up to €20 million or 4% of annual turnover of the previous year, whichever is higher. *

ISO 27001
Organisations that are already certified to ISO 27001 have a head start to help them comply with GDPR.

Certification will require a robust and auditable Information Security Management System (ISMS). This provides a solid base to meet GDPR.

The route to certification will include the implementation of a range of security and data management processes that are also relevant to GDPR compliance, including:
  • Regulatory and contractual compliance.
  • Risk assessment.
  • Security of systems and data.
  • Reporting of a breach to regulators and individuals affected.
  • Management process and control.
  • Data access control.
  • Encryption of data.
  • Continuous evaluation and improvement.
  • Improved communications to employees and customers.
Benefits of ISO 27001
Compliance with ISO 27001 goes beyond the requirements of GDPR and includes business continuity planning in the event of an incident, improving management processes and increasing profits by:
  • Carrying out risk assessments that will identify where data is held and areas that need to be improved to minimise threats to data security.
  • Giving customers greater confidence, through audits, that their data is being used correctly and is in safe hands.
  • Improving resilience to threats within the organisation and from external sources.
  • Providing effective procedures that will help the organisation to recover following an incident.
  • Improving tendering prospects for new business, particularly Public Sector, when compliance with certain standards are mandatory.
Certification provides proof that you have been externally audited to meet the standard and can give you an advantage over your competitors.

Call one of our team on 0121 241 2299 to discuss how ISO 27001 can help you meet your GDPR obligations.

*https://www.eugdpr.org/key-changes.htm
 
The government is aiming to make the UK “the safest place in the world for young people to go online” (https://www.gov.uk/government/news/government-launches-major-new-drive-on-internet-safety).

This is the latest of a long list of government initiatives put in place recently to combat cybercrime against the general public and businesses.

A recent report from the British Chambers of Commerce found that even though one in five businesses had been attacked in the last year, only 24% had security measures in place.

Cyber-InsuranceISO 27001
ISO 27001 information security management system provides businesses with a framework to identify, cope with and recover from a cyber-attack.

By implementing a companywide management process and recovery strategy, ISO 27001 goes further than other solutions such as Cyber Essentials to help your organisation combat cybercrime.

Cyber Essentials is a government initiative set up to help businesses protect themselves against cyber criminals. Achieving the badge will help to identify risks to your business and protect your organisation from common cyber threats.

However, Cyber Essentials is not a replacement for ISO 27001 but can be used to compliment your security management system. For example, if you are bidding for government contracts, this is a mandatory requirement for some ICT products and services.

Achieving ISO 27001 certification gives you a solid foundation and makes getting a Cyber Essentials badge more straightforward.

ISO 27001 rerelease 2017
Though the actual content of the standard has not changed, there has been a recent update to reflect the new EN status.

BS EN ISO 27001:2017 has now been ratified by each of the 34 CEN-CENELEC member countries.

If you already have ISO 27001 certification, this will not change any of your current management systems for the time being. Updates will be published in the future and we will keep you advised if anything changes.
There are only 6 months to go before the transition deadline of the most globally recognised standards ISO 9001 and ISO 14001. New versions of ISO 9001:2015 quality management and ISO 14001:2015 environmental management come into effect in September 2018. Companies certified to the old standards ISO 9001:2008 and ISO 14001:2004 will be assessed to the revised standards from March 2018.

If your organisation relies on these standards to do business, this may affect your ability to supply your products or services to all your markets.  Your old certification will be invalid after September 2018.
Any audits you have booked between March and September 2018 will be to the revised standards.
Most businesses that rely on these standards should have moved to the new standards as their re-certification became due over the last 3 year’s transition period leading up to September 2018.

If your re-certification falls between now and September 2018 (or after September 2018) and you have not yet started your transition planning to the new standards, you need to talk to us straight away to start the process immediately.

Ideally, you need to have started planning for the transition already to allow enough time to take any corrective actions required.

It may not be too late, but time is running out.

What to do next
Talk to your assessor straight away and obtain a copy of the new standards.
One of the main areas of change is Annex SL.
Annex SL is a Guidance Document, explaining the new high-level structure/format that all new ISO Management Standards must now follow.
It dictates that the structure of all revised and future standards will change, by creating standards that have:
  • Identical clause and sub-clause titles and numbers
  • Identical text and common terminologies
  • Common core definitions
This common approach to ISO Management Standards will make it easier for an organisation to create a single Management System, known as an Integrated Management System (IMS).

Annex SL format
1. Scope
2. Normative references
3. Terms and definitions
4. Context of the organisation
5. Leadership
6. Planning
7. Support
8. Operation
9. Performance evaluation
10. Improvement

Call ACS Registrars on 0121 241 2299 to talk to one of our team

ISO_9001_2015_and_ISO_14001_15_transition