Access your favorite ISO redline standards including ISO 9001, ISO 14001, and ISO/IEC 17025 to easily keep track of revisions in each edition.
ISO 9001:2015 specifies requirements for a quality management system when an organization:
a) needs to demonstrate its ability to consistently provide products and services that meet customer and applicable statutory and regulatory requirements, and
b) aims to enhance customer satisfaction through the effective application of the system, including processes for improvement of the system and the assurance of conformity to customer and applicable statutory and regulatory requirements.
All the requirements of ISO 9001:2015 are generic and are intended to be applicable to any organization, regardless of its type or size, or the products and services it provides.
ISO 9000:2015 describes the fundamental concepts and principles of quality management which are universally applicable to the following:
+ organizations seeking sustained success through the implementation of a quality management system;
+ customers seeking confidence in an organization's ability to consistently provide products and services conforming to their requirements;
+ organizations seeking confidence in their supply chain that their product and service requirements will be met;
+ organizations and interested parties seeking to improve communication through a common understanding of the vocabulary used in quality management;
+ organizations performing conformity assessments against the requirements of ISO 9001;
+ providers of training, assessment or advice in quality management;
+ developers of related standards.
ISO 9000:2015 specifies the terms and definitions that apply to all quality management and quality management system standards developed by ISO/TC 176.
ISO 19011:2011 provides guidance on auditing management systems, including the principles of auditing, managing an audit programme and conducting management system audits, as well as guidance on the evaluation of competence of individuals involved in the audit process, including the person managing the audit programme, auditors and audit teams.
ISO 19011:2011 is applicable to all organizations that need to conduct internal or external audits of management systems or manage an audit programme.
The application of ISO 19011:2011 to other types of audits is possible, provided that special consideration is given to the specific competence needed.
ISO 14001:2015 specifies the requirements for an environmental management system that an organization can use to enhance its environmental performance. ISO 14001:2015 is intended for use by an organization seeking to manage its environmental responsibilities in a systematic manner that contributes to the environmental pillar of sustainability.
ISO 14001:2015 helps an organization achieve the intended outcomes of its environmental management system, which provide value for the environment, the organization itself and interested parties. Consistent with the organization's environmental policy, the intended outcomes of an environmental management system include:
+ enhancement of environmental performance;
+ fulfillment of compliance obligations;
+ achievement of environmental objectives.
ISO 14001:2015 is applicable to any organization, regardless of size, type and nature, and applies to the environmental aspects of its activities, products and services that the organization determines it can either control or influence considering a life cycle perspective. ISO 14001:2015 does not state specific environmental performance criteria.
ISO 14001:2015 can be used in whole or in part to systematically improve environmental management. Claims of conformity to ISO 14001:2015, however, are not acceptable unless all its requirements are incorporated into an organization's environmental management system and fulfilled without exclusion.
ISO/IEC 27000:2018 provides the overview of information security management systems (ISMS). It also provides terms and definitions commonly used in the ISMS family of standards. This document is applicable to all types and sizes of organization (e.g. commercial enterprises, government agencies, not-for-profit organizations).
The terms and definitions provided in this document
- cover commonly used terms and definitions in the ISMS family of standards;
- do not cover all terms and definitions applied within the ISMS family of standards; and
- do not limit the ISMS family of standards in defining new terms for use.
ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/IEC 27001:2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.
ISO/IEC 27002:2013 gives guidelines for organizational information security standards and information security management practices including the selection, implementation and management of controls taking into consideration the organization's information security risk environment(s).
It is designed to be used by organizations that intend to:
1.select controls within the process of implementing an Information Security Management System based on ISO/IEC 27001;
2.implement commonly accepted information security controls;
3.develop their own information security management guidelines.
ISO/IEC 20000-1:2011 is a service management system (SMS) standard. It specifies requirements for the service provider to plan, establish, implement, operate, monitor, review, maintain and improve an SMS. The requirements include the design, transition, delivery and improvement of services to fulfil agreed service requirements.
ISO/IEC 20000-1:2011 can be used by:
ISO/TS 22003:2013 defines the rules applicable for the audit and certification of a food safety management system (FSMS) complying with the requirements given in ISO 22000 (or other sets of specified FSMS requirements). It also provides the necessary information and confidence to customers about the way certification of their suppliers has been granted.