Auditing Services
Understanding Audits
An audit is a comprehensive evaluation of a person, organization, system, process, enterprise, project, or product. With the increasing need for operational transparency and compliance with regulations, integrated auditing approaches have become essential.
Prime Link employs a risk-based audit methodology to identify Safety, Health, Environmental, and Quality (SHEQ) and business risks within organizations. This method aligns with ISO 19011 standards and focuses on prioritizing high-risk areas, enabling management to make informed decisions about SHEQ and business risks. Our Auditors are qualified internationally on the respective areas that need to audit and they all have experience of 20 years or more in various industries.
Our audit reports are detailed, incorporating:
- Digital photos
- Evidence records
- Graphical representations of non-conformances
By following our Gap Audit Report guidance, your organization can ensure success during certification audits, including Stage 1 assessments.
Types of Audits
Gap Audit, Internal Audit, and Pre-Assessment
| Audit Type | Purpose | Focus Areas |
|---|---|---|
| Gap Audit | Establishes how well a company complies with specific standards (e.g., ISO). | Baseline compliance, primarily focusing on evidence of compliance to a relevant standard’s requirements. |
| Internal Audit | Evaluates the implementation internal controls in the organisations. | Both documentation and process inputs and outputs are audited to assess organisational effectiveness. |
| Pre-Assessment | The Pre-assessment is conducted to ensure the organisation pass the 1st Stage Certification audit the 1st time. | To ensure there is a System evident that comply with the relevant standards requirements. (When Prime Link does the development of your system, we guarentee that the 1st stage Certification will be passed.) |
| 1st Stage Certification Audits | The 1st Stage audit is conducted by a certification body to confirm readiness for certification after successful internal audits were conducted. | To ensure there is a System evident that comply with the relevant standards requirements. |
| 2nd Stage Certifiation Audit | The 2nd Stage audit is conducted by a certification body to confirm the system audited during the 1st Stage Audit, is effectively implemented and can be certified. | Focusing on the successful implementation of the set requirements in all sampled areas of the organisation. |
| Surveillance Audits | The surveillance audit is conducted by a certification body to verify compliance with the original certified system | To ensure consistency, sustainability and continous improvement of the relevant system. |
Prime Link’s Specialized GAP Audits
We provide SHEQ-integrated audits tailored to the following ISO standards:
- ISO 9001:2015 – Quality Management
- ISO 14001:2015 – Environmental Management
- ISO 45001:2018 – Occupational Health and Safety
- ISO 50001:2018 – Energy Management
- ISO 22000:2018 – Food Safety Management
- ISO 27001:2015 – Information Security Management
- ISO 27701:2019 – Privacy Information Management
- ISO 17025:2015 – Laboratory Testing
- ISO 31000:2018 – Risk Management (non-certifiable)
Additionally, our legal compliance audits are conducted by qualified attorneys or legal consultants, focusing on:
- Occupational Health and Safety Act (OHS Act)
- Environmental Legislation
Supporting Internal Auditors
Prime Link equips internal auditors with the skills to:
- Conduct operational and integrated audits aligned with ISO 19011.
- Identify risks related to production processes.
- Prepare internal auditors to become Lead auditors.
Our internal audit training ensures auditors can confidently manage their responsibilities, including preparing for operational and legal audits.
Simplifying Internal and External Audits
Effective management of audits requires minimizing duplication, ensuring all processes are covered, and verifying corrective actions. Here’s how we simplify the auditing process:
Step 1: Identify Requirements Using our automated Software Audit Tool, clients can:
- Identify legal, client, stakeholder, supplier, and product-specific requirements.
- Incorporate predefined ISO standard requirements into customized audit tools.
Step 2: Create Audit Tools Develop effective audit tools by:
- Asking open-ended questions (automated platforms may require closed-ended options).
- Creating checklists tailored to internal procedures, supplier, or client requirements.
- Generating comparative reports to track improvements over time.
Step 3: Schedule Audits An effective audit schedule includes:
- Management review meetings.
- Internal (1st party) and external (2nd and 3rd party) audits.
- Aligning employee availability with audit activities to ensure smooth operations.
Step 4: Conduct Audits and Release Reports Streamline audit reporting to ensure findings are shared promptly during closing meetings. Our training provides strategies to reduce reporting burdens.
Step 5: Manage Findings and Corrective Actions Process owners are responsible for addressing findings, while auditors verify evidence of compliance. Internal auditors may consult auditees to help ensure compliance, whereas certification auditors cannot provide such guidance.
Risk and Opportunity Management
Audit results are integral to organizational risk planning. Risks can have both positive and negative impacts, while opportunities mitigate negative risks or enhance positive outcomes. ISO standards (e.g., 9001, 14001, 45001, 27001) require organizations to identify and control risks and opportunities as part of business continuity planning.
Prime Link offers Executive Risk Workshops covering:
- Industry-specific risks and opportunities.
- The three stages of risk management.
- Developing a risk treatment plan.
- Measuring risk profiles.
For more information on our audit and risk management services, contact us at marianne@primelinksheq.co.za.