Management Systems
CONSULTING
The new ISO 9001:2015
The New ISO 14001:2015
The new ISO 45001:2018
Management Systems
TRAINING


Management Systems
CONSULTING

How to achieve strategic goals



mtm consulting s.r.l. is able to support your company and support it until it obtains the Certification of the chosen Management System. We will follow you in all the steps and on the basis of your needs:

 

  • definition of the Policy;
  • risk assessment;
  • writing documentation;
  • realization of the internal audit;
  • Management review;
  • definition of system objectives and goals;
  • employee training;
  • support during the certification examination;
  • maintenance of the system over the next several years.

 

We can also support you both for both Integrated Management Systems or Stand Alone Management Systems. The main schemes we follow are:

 

  • UNI EN ISO 9001 - Quality Management System for Quality
  • UNI EN ISO 14001 - Environmental Management Systems
  • OHSAS 18001 - ISO 45001 - Safety Management System
  • UNI CEI EN ISO 50001 - Energy Management Systems

 

mtm consulting S.r.l. believes that the certification process should be designed "to measure" and adapted to the specific needs of each company.

 

The certification of management systems is:

 

  • the recognition of the entrepreneurial skills of a company that has been able to optimize its organization of an efficient and effective management of appropriate structures and the appropriate expertise;
  • the evidence of a working culture based on professionalism and intelligent management;
  • the confirmation of a reliable structure that guarantees the reproducibility of its performance and, therefore, the maintenance and improvement of the quality standard;
  • a guarantee of reliability for customers and suppliers, but also for employees and contractors.

 




Management Systems
CONSULTING

THE NEW ISO 9001:2015

It is been published on September 22nd, 2015 - with the publication date September 15th, 2015 - The new edition of ISO 9001 "Quality Management Systems" - which replaces ISO 9001: 2008.

For entry into force, IAF - International Accreditation Forum - has set a transitional period of three years after publication, as decided by the General Assembly during the Seoul meetings of October 2013 (IAF Resolution 2013-15).

 

Certifications transition

 

New certifications and renewals

Up to 3 years after the publication of the new 2015 edition of ISO 9001, the new certificates will be valid and renewals issued against both editions of ISO 9001, both 2008 and 2015.

 

The expiration date of the ISO 9001: 2008 issued during the transitional period of three years will, however, correspond to the end of that period.

 

Revocation of certifications

 At 3 years from the publication of the new 2015 edition of ISO 9001 - will cease to apply - and will be simultaneously revoked - the certificates issued to ISO 9001: 2008.

 

What changes

 

The main changes from the previous version can be summarized in the following streams points:

 

  • The review follows a "high-level structure," developed to be used as a common basis for all other standards, improving compatibility and integration with other certification schemes.
  • Risk analysis: rather than using the standard requirements for all, for every company is going to analyze the risks in order to plan an appropriate management system to the needs of each reality. The new approach includes identifying risks in business processes and appropriate measures to be taken to manage them, in addition to the identification of opportunities, that is, the possible solutions and countermeasures to address them.
  • Greater involvement of top management.
  • Simplification "bureaucratic" in the system documentation. And 'it provided greater flexibility for companies, which are free to choose the depth and detail they wish to use for their written documentation, a choice that can be made based on various factors such as the complexity of the processes, the competence of the staff etc.
  • A more immediate applicability to the tertiary sector.
  • Process management focused to the development, implementation and improvement of the QMS. Each process must be designed and contain clear specifications for the measurement of performance parameters and the definition of roles and responsibilities.
  • In particular, the standard provides a more precise and detailed attention to the control of processes, products and services provided by outside. This was in response to today's reality in which companies operate in an increasingly complex environment.
Management Systems
CONSULTING

THE NEW ISO 14001:2015

September 15, ISO - International Organization for Standardization - has published the new 2015 edition of the standard ISO 14001 "Environmental management systems - Requirements with guidance for use" which replaces ISO 14001: 2004.

For entry into force, IAF - International Accreditation Forum - has set a transitional period of three years after publication, as decided by the General Assembly during the Vancouver meetings of October 2014 (IAF Resolution 2014 -11).

 

Certifications transition

 

New accreditations

As of the date of publication of the new ISO 14001 standard, we are no longer accepted new accreditation applications that refer to the previous edition of ISO 14001: 2004.

accreditation extensions

As of the date of publication of the new ISO 14001 standard, continue to be accepted extension applications that refer to the previous edition of ISO 14001: 2004.

 

What changes

 

Structure

The text of the standard follows the new index of HLS, divided into 10 chapters and common to all future system requirements. substantially new chapters have been introduced, such as the 4 on the "context" and 5 on "Leadership". Others have been "restored", as chapter 9 performance evaluation that includes requirements on monitoring, audit and management review, 10 on the "Improvement" in which disappears the instrument of "preventive action" and 7 on the supporting processes.

In contrast, other chapters resume at the level of the previous HLS structure of ISO 14001: 2004, by imposing it for all management systems, as is the case in Chapter 6 devoted to planning.

 

Environmental performance

The introduction and, above all, the point 4.4 on the "Management System" clearly explains how, among the results or outcomes of the Management System to be included the growth of the environmental performance of the organization itself, abandoning the partial ambiguity of the previous revision of the rule which made reference to the performance of the company management.

 

Considerations on the definitions

In the new standard are inserted new definitions and changes to existing definitions. In other cases, the definitions are confirmed. It is worth dwelling on some significant points.

And 'deeply it modified the definition of "interested party" which, in the new sense, can affect, be affected or thinking to be influenced by decisions or activities of the organization (and not only by the environmental performance).

They are substantially unchanged and the environment definitions, environmental and environmental impact aspect; Note that the Italian use of the word "environment" in the definition of "environment" has nothing to do with the "context of the organization", being the translation of English surroundings, having to be referred to an eminently physical sense and geographical.

The definition of "objective" has incorporated that of "milestone" and was divided into "targets" and "environmental objectives."

The "risk" is defined first in a neutral manner, as an effect, positive or negative, of an uncertainty. Subsequently, it is characterized as a "threat" as opposed to "opportunities." E 'in each case a new key element to be used for the setting of an effective EMS.

And 'it introduced the new definition of "sight" cycle that refers to ISO 14044: 2006, which supports the new requirements for the "life-cycle perspective."

It confirms the definition of "corrective action", but disappears that of "preventive action", replaced all the general effects of the rule approach, basing SGA on the analysis of risks and opportunities, see the system as a whole great all-encompassing preventive action.

The "continuous improvement", a fundamental requirement of the rule, is characterized as improving both the management system and environmental performance, and should be consistent with the organization's environmental policy.

 

The "organizational framework"

It is an absolute, fundamental novelty, introduced in chapter 4 of the HLS for all Management Systems.

The organization is called upon to analyze the "factors" - in English issues - that affect its ability to obtain these settings. The factors certainly include environmental conditions and changes in them, but they must also be considered the technological, financial, political, social, etc. For example, the Federal Reserve on the cost of the money or the EU political decision, Chinese and / or US on curbing greenhouse gas emissions, are "factors" to be considered differently depending on the activity, the size field , the reference markets, etc.. of an organization. It is part of the characterization of the context also the identification of the "stakeholders" and their expectations.

E 'should be noted that in the introduction is repeated the traditional graphic scheme Model Plan Do Check Act, but it is placed inside a larger pattern in which it highlighted the influence of the "context of the organization", represented by "internal and external factors" and "the stakeholder needs and expectations," of which we are called to take into account in the development of the Management System (§4.4).

 

Emphasis on "leadership"

Having rightly given up searching difficult translations in Italian very effective English terms and established use, chapter 5 "Leadership" has been inserted with its original title in the Italian version. The leading role of the High Directorate of the organization (in English top management) is strongly affirmed, and is divided into a number of points which, while recalling concepts already shared in the past, rely directly to active management roles. It should be emphasized in this regard that disappears the figure of / i "representative / s" Management.

New interesting proposal in this regard is constituted by the obligation for senior management to support managerial roles involved in various ways in the operation of the EMS in asserting themselves, their "leadership" (§5.1, point i). This requirement touches a deficiency that occurs very often, particularly when "environmental managers" are not perceived as sufficiently authoritative in rapp0orti with other business functions, typically, but not exclusively, the production, maintenance, purchasing, design, if not even the same direction.

 

Risks and opportunities

Also in this case it is an important novelty and common to all Management Systems.

The organization will have to determine the threats and opportunities (§6.1.1) that must be addressed and controlled (in English addressed) to obtain the expected results, without side effects and achieving continuous improvement. It is not required the application of ISO 31000, but can be useful to refer to the principles and criteria which it proposed. A typical opportunity may be the development of "green" products. A common threat to many organizations may be the difficulty of supporting technological progress required by the evolution of Community legislation (eg. Directive "Eco Design"). Often, threats and opportunities are two sides of the same coin. The structure of the text seems to indicate that the determination of the risks is the consequence of the context and the expectations of stakeholders.

The organization may consider such factors, risks and opportunities in the assessment of the significance of its environmental aspects, so as to ensure that its EMS is properly established, implemented and maintained. Risks and opportunities should instead be considered in the choice of environmental objectives.

 

The prospect of "life cycle"

The organization should identify and assess the environmental aspects of its products / services considering a "perspective of life cycle", ie considering the possible environmental impacts of products and / or services from the phases of the sourcing of raw materials through to disposal / ultimate recovery. Yet does not require the execution of a "life cycle analysis" in conformity with the ISO reference standards 14040 and following, the new ISO 14001 requires a specific analysis of these aspects and their translation into one oriented design consistent with the policies and business objectives, in operational requirements relating to the supply of goods and services and the identification of any information to be provided to customers on the use and disposal of products and services (§8.1).

 

Communication

The organization is called to define a communication process, both for the inside and towards the outside. In relation to external communication, it emphasizes a new requirement that provides for an obligation to ensure that the information that come out are reliable and correct. This requirement touches a sensitive issue related to marketing and advertising operations that sometimes have conveyed previously incomplete or misleading messages.

Management Systems
CONSULTING

 THE NEW ISO 45001:2018

 

Every year in the world two million people die from an accident at work or an occupational disease, including 12.000 children.

In 250 million injuries 335.000 are fatal.

 

Source: International Labor Organization

 

Why the new ISO 45001?

 

In the event of an accident at work, the employer must prove that he has done everything possible to protect the worker.

This is the reason for the new ISO 45001 which will replace the current health and safety at work regulation OHSAS 18001 (Occupational Health and Safety Assessment Series).

 

The standard will help organizations to ensure a safer and healthier work environment, with the goal of reducing the risk of injury to their workers.

 

What will be the objectives of this new standard?

 

  • The use of a simpler language;
  • Facilitate the integration of the health and safety management system at work in organizational processes;
  • The decadence of the flexible and adaptable requirements with different modalities to small and large companies;
  • Facilitate the management of the system without this leading to an increase in documentation;
  • Support organizations in reducing the risk of accidents and occupational diseases of their workers;
  • Offer a framework aimed at the constant improvement of company performance for health and safety at work.

 

 What happens if your organization is OHSAS 18001 certified?

 

  • With the publication of ISO 45001 there will be the withdrawal of the OHSAS 18001 standard;
  • Companies already certified OHSAS 18001 will have a period of 3 years from the publication of the new standard for migration.

 

Mtm Consulting s.r.l. is able to support your company and support it until obtaining the Certification of the Management System, specifically:

 

  • For those already certified OHSAS 18001 we offer support through advice to ensure a transition from the old to the new standard.
  • For those who have not yet implemented the management system, we will support the company and support it until obtaining the Certification of the Management System.

 

 

 

 

Sectors
MANAGEMENT SYSTEMS

Engineering
Building
Nautic
Vending
Calibration laboratories
Banks and Credit Institutions
For further information


NAME
SURNAME
COMPANY
E-MAIL
MESSAGE


I declare that I have read Privacy Policy and consent to the processing of my personal data.

SEND

Questions or special requests?

Take an appointment with our experts
You will be able to talk to them in person or on-line

If you want to take an appointment with our experts please click on the button below, you will be redirected to our digital agenda where you will bi able to choose when to meet them and how (online or face-toface). We wait for you!



GO TO THE AGENDA
PRIVACY POLICY DATA COLLECTED VIA THE WEBSITE
according to Art. 13 - Regulation (EU) 2016/679 (GDPR) and Art. 13 – Legislative Decree n. 196/2003

mtm consulting s.r.l. s.u. (hereafter, “Controller”), with registered office based in Via L. Ariosto 10, 20900 Monza (MB), VAT Number 02994950968, Tel. (+39)0392848437, e-mail: info@emtem.com, as Controller, informs you according to the art. 13, EU Regulation n. 2016/679 (hereinafter, "GDPR") and to the art. 13, Legislative Decree n. 196/2003 (hereinafter, “Privacy Code”) that your data will be processed in the manner and for the following purposes:

1. Origin, purpose e methods of data processing.
The personal data processed are those provided by you voluntarily:
a) to subscribe to the newsletter by entering your e-mail in the appropriate form on the website,
b) to request more information by filling in the appropriate form on the website,
c) when sending the curriculum through the dedicated page on the website,
and will be processed exclusively for, respectively,
a) to send, periodically, the informative newsletter containing also informative material, also with commercial / promotional content, of the products, initiatives and events of our Company;
b) answer the question entered on the specific page of the website,
c) follow the purposes related to the evaluation and selection of candidates.

Your personal data are processed exclusively following the consent given by applying the specific check on the website in accordance with Art. 6 (1) of the GDPR.

2. Mode of data processing
The processing of your personal data will be based on principles of fairness, lawfulness and transparency, protecting your confidentiality and your rights and will take place through appropriate tools and procedures to ensure the security and confidentiality. 
The mode of data processing attributable to you will contemplate the use of manual, IT and telematic tools, with logic strictly related to the purposes indicated above.
The processing of your personal data is carried out according to the operations indicated in art. 4 point 2) of the GDPR and precisely: collection, recording, organisation, structuring, storage, adaptation, alteration, retrieval, consultation, use, erasure and destruction of data. 

3. Exclusively for what is referred to in point c) - Special categories of personal data processed 
Among the collected data may be personal data included in the special categories, as in Art. 9, (1) of the GDPR, which are personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership as well as genetic data, data concerning health and sex life or sexual orientation of the person.

For this reason, the processing of the above special categories of personal data is carried out in accordance with the provisions of Art. 9, (2), letter a) of the GDPR that requires the explicit consent of the data subject (as indicated in point 1), to the processing of personal data indicated above for purposes related to the evaluation and selection of candidates.

4. Duration of the processing
The Controller preserves and processes personal data for the time strictly necessary to fulfil the aforementioned purposes.
Exclusively for what is referred to in point c), personal data will be stored for a period not exceeding 24 months from their receipt or from their last update.

5. Mandatory or optional nature of providing data
The provision of personal data is optional, however your refusal to provide them or to give consent to the processing will determine, only for the Controller, the impossibility to process your data and consequently, to pursue the purposes indicated in point 1.

6. Categories of subjects to whom personal data can be communicated or who can learn about them as processors
Your personal data will be processed exclusively by employees and / or collaborators of the Controller appointed as Processor or persons authorized to process, in compliance with the provisions of the GDPR, including with regard to security measures to protect and safeguard your personal data.
The Controller may communicate your personal data to those persons entitled to access it by virtue of laws, rules, regulations.
Your data will not be disseminated in any way.

7. Data transfer
The Controller does not transfer personal data to third countries or to international organizations.
However, it reserves the right to use cloud services; in which case, the service providers will be selected among those who provide adequate guarantees, as required by art. 46 of the GDPR.

8. Rights of data subject
With reference to the articles 15 (right of access), 16 (right to rectification), 17 (right to erasure), 18 (right to restriction of processing), 20 (right to data portability), 21 (right to object), 22 (right to object to automated individual decision-making) of the GDPR, and to the art. 13 of the Privacy Code, the data subject may exercise his rights by writing to the Controller at the address above, or by email, specifying the subject of his request, the right he intends to exercise and attaching a photocopy of an identity document that certifies the legitimacy of the request.
For your convenience, the contents of the Art. 15 of the GDPR is shown below.
Art. 15 Right of access by the data subject
1. The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data and the following information:
a) the purposes of the processing;
b) the categories of personal data concerned;
c) the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations;
d) where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
e) the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing;
f) the right to lodge a complaint with a supervisory authority;
g) where the personal data are not collected from the data subject, any available information as to their source;
h) the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
2. Where personal data are transferred to a third country or to an international organisation, the data subject shall have the right to be informed of the appropriate safeguards pursuant to Article 46 relating to the transfer.
3. The controller shall provide a copy of the personal data undergoing processing. For any further copies requested by the data subject, the controller may charge a reasonable fee based on administrative costs. Where the data subject makes the request by electronic means, and unless otherwise requested by the data subject, the information shall be provided in a commonly used electronic form.
4. The right to obtain a copy referred to in paragraph 3 shall not adversely affect the rights and freedoms of others.

9. Withdrawal of consent
With reference to article 6 of the GDPR, the data subject can withdraw at any time the consent given without prejudice to the lawfulness of the processing based on the consent given before the withdrawal.

10. Automated individual decision-making
The Controller does not make processing consisting of automated decision-making processes on the data processed.

11. Identifying details of the Controller
The Controller of the aforementioned processing is 
mtm consulting s.r.l. s.u.
Via L. Ariosto 10, 20900 Monza (MB), 
VAT Number 02994950968 
Tel. (+39)0392848437
e-mail: info@emtem.com  .

The updated list of processors and persons authorized to process data is kept at the Controller's headquarters.

SUBSCRIBE

SEND
PRIVACY POLICY DATA COLLECTED VIA THE WEBSITE
according to Art. 13 - Regulation (EU) 2016/679 (GDPR) and Art. 13 – Legislative Decree n. 196/2003

mtm consulting s.r.l. s.u. (hereafter, “Controller”), with registered office based in Via L. Ariosto 10, 20900 Monza (MB), VAT Number 02994950968, Tel. (+39)0392848437, e-mail: info@emtem.com, as Controller, informs you according to the art. 13, EU Regulation n. 2016/679 (hereinafter, "GDPR") and to the art. 13, Legislative Decree n. 196/2003 (hereinafter, “Privacy Code”) that your data will be processed in the manner and for the following purposes:

1. Origin, purpose e methods of data processing.
The personal data processed are those provided by you voluntarily:
a) to subscribe to the newsletter by entering your e-mail in the appropriate form on the website,
b) to request more information by filling in the appropriate form on the website,
c) when sending the curriculum through the dedicated page on the website,
and will be processed exclusively for, respectively,
a) to send, periodically, the informative newsletter containing also informative material, also with commercial / promotional content, of the products, initiatives and events of our Company;
b) answer the question entered on the specific page of the website,
c) follow the purposes related to the evaluation and selection of candidates.

Your personal data are processed exclusively following the consent given by applying the specific check on the website in accordance with Art. 6 (1) of the GDPR.

2. Mode of data processing
The processing of your personal data will be based on principles of fairness, lawfulness and transparency, protecting your confidentiality and your rights and will take place through appropriate tools and procedures to ensure the security and confidentiality. 
The mode of data processing attributable to you will contemplate the use of manual, IT and telematic tools, with logic strictly related to the purposes indicated above.
The processing of your personal data is carried out according to the operations indicated in art. 4 point 2) of the GDPR and precisely: collection, recording, organisation, structuring, storage, adaptation, alteration, retrieval, consultation, use, erasure and destruction of data. 

3. Exclusively for what is referred to in point c) - Special categories of personal data processed 
Among the collected data may be personal data included in the special categories, as in Art. 9, (1) of the GDPR, which are personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership as well as genetic data, data concerning health and sex life or sexual orientation of the person.

For this reason, the processing of the above special categories of personal data is carried out in accordance with the provisions of Art. 9, (2), letter a) of the GDPR that requires the explicit consent of the data subject (as indicated in point 1), to the processing of personal data indicated above for purposes related to the evaluation and selection of candidates.

4. Duration of the processing
The Controller preserves and processes personal data for the time strictly necessary to fulfil the aforementioned purposes.
Exclusively for what is referred to in point c), personal data will be stored for a period not exceeding 24 months from their receipt or from their last update.

5. Mandatory or optional nature of providing data
The provision of personal data is optional, however your refusal to provide them or to give consent to the processing will determine, only for the Controller, the impossibility to process your data and consequently, to pursue the purposes indicated in point 1.

6. Categories of subjects to whom personal data can be communicated or who can learn about them as processors
Your personal data will be processed exclusively by employees and / or collaborators of the Controller appointed as Processor or persons authorized to process, in compliance with the provisions of the GDPR, including with regard to security measures to protect and safeguard your personal data.
The Controller may communicate your personal data to those persons entitled to access it by virtue of laws, rules, regulations.
Your data will not be disseminated in any way.

7. Data transfer
The Controller does not transfer personal data to third countries or to international organizations.
However, it reserves the right to use cloud services; in which case, the service providers will be selected among those who provide adequate guarantees, as required by art. 46 of the GDPR.

8. Rights of data subject
With reference to the articles 15 (right of access), 16 (right to rectification), 17 (right to erasure), 18 (right to restriction of processing), 20 (right to data portability), 21 (right to object), 22 (right to object to automated individual decision-making) of the GDPR, and to the art. 13 of the Privacy Code, the data subject may exercise his rights by writing to the Controller at the address above, or by email, specifying the subject of his request, the right he intends to exercise and attaching a photocopy of an identity document that certifies the legitimacy of the request.
For your convenience, the contents of the Art. 15 of the GDPR is shown below.
Art. 15 Right of access by the data subject
1. The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data and the following information:
a) the purposes of the processing;
b) the categories of personal data concerned;
c) the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations;
d) where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
e) the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing;
f) the right to lodge a complaint with a supervisory authority;
g) where the personal data are not collected from the data subject, any available information as to their source;
h) the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
2. Where personal data are transferred to a third country or to an international organisation, the data subject shall have the right to be informed of the appropriate safeguards pursuant to Article 46 relating to the transfer.
3. The controller shall provide a copy of the personal data undergoing processing. For any further copies requested by the data subject, the controller may charge a reasonable fee based on administrative costs. Where the data subject makes the request by electronic means, and unless otherwise requested by the data subject, the information shall be provided in a commonly used electronic form.
4. The right to obtain a copy referred to in paragraph 3 shall not adversely affect the rights and freedoms of others.

9. Withdrawal of consent
With reference to article 6 of the GDPR, the data subject can withdraw at any time the consent given without prejudice to the lawfulness of the processing based on the consent given before the withdrawal.

10. Automated individual decision-making
The Controller does not make processing consisting of automated decision-making processes on the data processed.

11. Identifying details of the Controller
The Controller of the aforementioned processing is 
mtm consulting s.r.l. s.u.
Via L. Ariosto 10, 20900 Monza (MB), 
VAT Number 02994950968 
Tel. (+39)0392848437
e-mail: info@emtem.com  .

The updated list of processors and persons authorized to process data is kept at the Controller's headquarters.




TOP