ISO Certification process involves an independent external trained Auditor from a Certification Organisation (like BSI or TUV) who conducts an audit of a Company’s operations compared to the requirements of the relevant ISO Management Standard. The Auditor collects information so he can assess the degree that the Organisation complies with the requirements of the Standard. He will prepare a Report of his Findings, including any problems or non-conformances, but also areas for possible improvements or observations. The Report will either recommend Certification or list the areas that need improvements. The Report will be reviewed at the Head office for completeness and whether the conclusion is correct. Only if this review is successful, which it normally is, will the Certificate be issued.
An Auditor will return at least yearly to check both continuing Compliance and Continual Improvement.