Grading nonconformities

Answer:
ISO 9001:2015 does not mention audit findings categorization. ISO 19011:2018 in clause 6.4.8 states that nonconformities can be classified according to the context of the organization and its risks. This classification can be quantitative (e.g. 1 to 5) or qualitative (e.g. minor, major). Grading nonconformities (as separate categories) is generally used only in certification audits (not so often in internal audits).

About your concerns with subjectivity, remember that this grading is based on the auditor’s judgment and experience.

Minor nonconformity – a nonconformity that does not affect the capability of the management system to achieve the intended results.
Major nonconformity – a nonconformity that affects the capability of the management system to achieve the intended results. For example, if the company completely failed to fulfill a certain requirement; if a proce ss has completely fallen apart; or if you have several minor nonconformities that are related to the same process or to the same element of your management system.

The following material will provide you information about audits:
- Major vs. minor nonconformities in the certification audit - https://advisera.com/27001academy/blog/2014/06/02/major-vs-minor-nonconformities-in-the-certification-audit/
- Free online training ISO 9001:2015 Internal Auditor Course – https://advisera.com/training/iso-9001-internal-auditor-course/
- Book – ISO Internal Audit: A Plain English Guide – https://advisera.com/books/iso-internal-audit-plain-english-guide/