Start a new topic and get direct answers from the Expert Advice Community.
CREATE NEW TOPIC +Search results for "iso17025 vs gmp"
1219 results
Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Questions regarding GDPR
... ontroller vs. processor – What are the differences? https://advisera.com/eugdpracademy/knowledgebase/eu-gdpr-controller-vs-processor-what-are-the-differences/
How can I best present a privacy notice? Do clients need to sign the notice
Signature is a clear sign of knowledge yet it is not mandatory. GDPR only requires you to inform your customers on your data processing activity and collect their consent when required.
Consent can be acquired through signature but also orally or by a clear affirmative action (i.e. clicking on a flag boxes)
Therefore, you can present a privacy notice as a link in your email signature in order to make easy for them to be informed, you can attach a privacy notice to your contracts, you can also inform them via telephone and register their consent (if needed), most depends on your activity.
Here you can find some useful material to make a GDPR Privacy Notice:
- Everything you need to know about the GDPR Privacy Notice: https://advisera.com/articles/gdpr-privacy-notice-6-key-elements-to-include/
- Article 13 GDPR https://advisera.com/eugdpracademy/gdpr/information-to-be-provided-where-personal-data-are-collected-from-the-data-subject/ -
Information Security Policy vs. IT Security Policy
I just have a question. The document IT Security Policy is included in the Premium Toolkit, but now requires an Information Security Policy from me What is the difference between the following 2 documents, or is there no difference between them and are these the same documents?- Information Security Policy
- IT Security Policy
-
ISO 14001 / Paper Recycling in ISO 14001 - Is it a requirement?
Is paper recycling a requirement in iso 14001?Is it a SHALL vs Should, May or Can as described in section 0.5 of the International Standards EMS - Requirements with guidance for use?
If it IS a requirement, where would it be found? I am trying to explain to my boss that we NEED to recycle as part of ISO 14001. He says if it is NOT a SHALL statement, then we don't have to recycle paper.
-
Accessing business CRM and customer data
A data processor and any authorized person is allowed to access to personal data stored in CRM only limited to the purpose of the processing established in the privacy notice.
For more information about data processor and data controller, please read the article:EU GDPR controller vs. processor – What are the differences? https://advisera.com/eugdpracademy/knowledgebase/eu-gdpr-controller-vs-processor-what-are-the-differences/.
The principle of purpose limitation is one of the key principles of GDPR to keep in mind.Therefore, you cannot access for purposes outside the ones illustrated in the privacy notice. As a consequence, if the reason for accessing customer data stored in CRM is in line with the purpose of collection and storage (i.e. verifying payments) the access will be compliant with GDPR provision. If the purpose of accessing personal data is not covered by your privacy policy you may consider to amend it in order to inform your customers that you will access their data for that purpose.
Depending on the purpose you may also need to verify the legal ground of such processing and verify if you need customer consent or you can process under another legal ground.
For more information, please read the following articles: Understanding 6 key GDPR principles https://advisera.com/eugdpracademy/knowledgebase/understanding-6-key-gdpr-principles/
Article 7 – Conditions for consent https://advisera.com/eugdpracademy/gdpr/conditions-for-consent/ Article 6 – Lawfulness of processing https://advisera.com/eugdpracademy/gdpr/lawfulness-of-processing/
-
Additional benefits of ISO 9001 for Testing & Calibration labs
... ISO 17025 vs. ISO 9001 – Main differences and similarities - https://advisera.com/17025academy/blog/2019/07/11/iso-17025-vs-iso-9001-main-differences-and-similarities//
- Six key benefits of ISO 17025 implementation - https://advisera.com/17025academy/blog/2019/10/18/six-key-benefits-of-iso-17025-implementation/
- Diagram of ISO 17025 Implementation Process - https://info.advisera.com/17025academy/free-download/diagram-of-iso-17025-implementation-process
- What is ISO 17025? - https://advisera.com/17025academy/what-is-iso-17025/
- Please check our ISO/IEC 17025 Blog - https://advisera.com/17025academy/blog/
- Download free ISO/IEC 17025 materials - https://advisera.com/17025academy/free-downloads/
-
Transition from ISO 9001:2008 to ISO 9001:2015
... 9001:2015 vs. 2008 revision – What has changed? - https://advisera.com/9001academy/knowledgebase/infographic-iso-90012015-vs-2008-revision-what-has-changed/
- How to make the transition from ISO 9001:2008 revision to the 2015 revision - https://advisera.com/9001academy/blog/2015/10/06/how-to-make-the-transition-from-iso-90012008-revision-to-the-2015-revision/
- Free webinar – ISO 9001:2015 - How to make the transition from ISO 9001:2008 - https://advisera.com/9001academy/webinar/iso-90012015-how-to-make-the-transition-from-iso-90012008-free-webinar-on-demand/
- Book – (where I use the process approach this way) - Discover ISO 9001:2015 Through Practical Examples - https://advisera.com/books/discover-iso-9001-2015-through-practical-examples/ -
COBIT, ITIL and ISO27001 comparison
Here are a couple of materials that can help you:
- How to integrate ISO 27001, COBIT, and NIST https://info.advisera.com/27001academy/free-download/how-to-integrate-iso-27001-cobit-and-nist
- ISO 27001 vs. COBIT: A comparison https://advisera.com/27001academy/blog/2019/05/06/cobit-vs-iso-27001-how-much-do-they-differ/
- COBIT, ITIL and ISO 20000 – The main differences https://advisera.com/20000academy/blog/2019/09/25/cobit-vs-itil-vs-iso-20000-a-comparison/
-
ISO VS ISM certification
What are the difference between the iso and ism certification relevant to a ship? -
Certification of Lead Auditor for external ISO 27001 audit
... editation vs. certification vs. registration in the ISO world https://advisera.com/blog/2016/02/29/accreditation-vs-certification-vs-registration-in-the-iso-world/
- Who should be your project manager for ISO 27001/ISO 22301? https://advisera.com/27001academy/blog/2014/12/01/who-should-be-your-project-manager-for-iso-27001-iso-22301/
- ISO 27001 project – How to make it work https://advisera.com/27001academy/blog/2013/04/22/iso-27001-project-how-to-make-it-work/
-
Internal Audit - Action Classification
... e - Major vs. minor nonconformities in the certification audit (here you can find a good description of the difference between the two types) - https://advisera.com/27001academy/blog/2014/06/02/major-vs-minor-nonconformities-in-the-certification-audit/
- Article – How to write a good ISO 9001 audit nonconformity? - https://advisera.com/9001academy/blog/2018/04/24/how-to-write-a-good-iso-9001-audit-nonconformity/
- Free webinar on demand - How to perform an ISO 14001:2015 internal audit - https://advisera.com/14001academy/webinar/how-to-perform-an-iso-14001-2015-internal-audit-free-webinar-on-demand/
- Enroll for free in this course – ISO 14001:2015 Foundations Course - https://advisera.com/training/iso-14001-internal-auditor-course/
- Book – The ISO 14001:2015 Companion - https://advisera.com/books/the-iso-14001-2015-companion/