Frequently Asked Questions 

What is JAS-ANZ?

JAS-ANZ is an organisation responsible for accrediting and regulating the certification industry. It stands for Joint Accreditation Scheme of Australia and New Zealand. We are accredited by JAS-ANZ to ISO/IEC 17021, and can be found on the JAS-ANZ directory here.

What are the certification costs?

The certification industry is highly regulated. As part of our regulated requirements we need to get an understanding of your company size, locations and scope of operations before we can provide you with costs. Once we have some details we can provide you with initial cost estimates. Please contact us to find out more information.

How does my business get ISO certified?

The certification process consists of a number of steps:
1. Gap Analysis Phase (Optional): provides an assessment report outlining any areas that require development prior to certification. 2. Stage One Assessment - evaluates your management system documentation. 3. Stage Two Assessment - evaluates how your system documentation is implemented across the business. 4. Certification - a 'Statement of Certification' is issued, confirming compliance with the standard. Your management system needs to be developed and implemented prior to a certification assessment. Read more on the certification process here.

How long is ISO certification valid for?

ISO certification is valid for a 3-year period from the date of issue, subject to regular surveillance assessments.

What is ISO 9001?

ISO 9001 is an international Quality Management System certification (QMS). It is the most common certification for businesses as it demonstrates their ability to consistently provide products and services that meet customer and regulatory requirements. For more information on ISO 9001 click here.

What is ISO 14001?

ISO 14001 is the international standard for Environmental Management Systems (EMS). It provides a framework that organisations can follow to manage their environmental responsibilities. For more information on ISO 14001 click here.

What is OHSAS 18001?

OHSAS 18001 is an internationally applied British Standard for Occupational Health and Safety Management Systems. It exists to help all kinds of organisations demonstrate their occupational health and safety performance. For more information on OHSAS 18001 click here.

What is ISO 45001?

ISO 45001 is the future replacement to OHSAS 18001 and AS/NZS 4801, and will become the international ISO standard for Occupational Health and Safety Management Systems (OHSMS). For more information on ISO 45001 click here.

What is ISO 27001?

ISO 27001 is the international standard for Information Security Management Systems (ISMS). ISO 27017 is a Cloud Security standard that can compliment ISO 27001, as is ISO 27018 (Code of practice for protection of personally identifiable information). An ISMS is a framework of policies and procedures that includes all legal, physical and technical controls involved in an organisation's information risk management processes. For more information on ISO 27001 click here.

Why should I get ISO certified?

When you achieve certification you will be able to demonstrate to customers and stakeholders your commitment to quality products and services, be it for the benefit of the environment, the safety of all stakeholders or for business ethics and risk management.

How will certification help me and my organisation?

Certification is a great opportunity to improve efficiencies as an organisation and celebrate your achievements. It will allow you to better promote your business and show that you are a trusted supplier to all stakeholders which could consequently open up new business opportunities, including being able to tender for large contracts.

Does Best Practice offer Training courses to assist with business improvement, auditing, and certification?

The Best Practice Training Academy offers a large selection of online courses which have been developed with flexibility and ease, so that you can fit in your professional development with the reality of your busy schedule. Choose from our growing range of online training courses that enable you to learn at your own time and pace.

What is AS/NZS 4801?

AS/NZS 4801 is the Australian and New Zealand standard for Occupational Health and Safety Management Systems. It exists to help all kinds of organisations establish sound occupational health and safety practices and demonstrates compliance against regulatory frameworks. For more information on AS/NZS 4801 click here.

How long does it take to get ISO certified?

From our experience, it usually takes medium sized organisations between 6-12 months to become certified. However, it may take less time if your organisation is highly focused on becoming certified, or it may take longer if you are part of a large organisation, have complex systems, or are introducing your systems. Some of the factors that will influence the timeframe are:

• The commitment and leadership of your senior management
• your current status - where are you now?
• what kind of 'quality/safety/environment etc culture' currently exists
• The gaps: what gaps you have, where they are and what's needed to fill them
• how or if your system is documented
• the resources and skills you can apply.

What is ISO 20252?

ISO 20252 is the International standard for market, social and opinion research. This standard covers the complete process of research projects. For more information on ISO 20252 click here. We are also AMSRO/AMSRS approved certifiers to this standard.

What is an Integrated Management System (IMS)?

An integrated management system is the culmination of a number of standards, usually Quality (ISO 9001), Environment (ISO 14001) and Safety (AS/NZS 4801/OHSAS 18001/ISO 45001). An integrated management system allows you to create efficiencies in the common areas of the standards and allows you to run and manae one fluid system. For more information on IMS click here.

What is HACCP/ISO 22000 Food Safety?

HACCP and ISO 22000 are Food Safety certifications designed to assist companies in identifying and controlling hazards and risks associated with all stages of food managament, from supply to transport, storage and service. HACCP is an abbreviation for Hazard Analysis Critical Control Point. For more information click here.

What is GWO Certification?

Global Wind Organisation Certification allows businesses to provide training to the relevant GWO Training Modules. There are two types - safety and technical.

What is ISO certification?

ISO certification is designed to ensure the quality, safety, and efficiency of products, services, and systems across an organisation. ISO certification can be a rewarding and enriching opportunity for organisations to improve their existing systems as well as implement new ideas in their business. ISO certification exists to ensure quality, consistency and efficiency across organisations. There is a wide range of ISO standards available to every organisation in almost every industry. Some of the most common ISO certifications are ISO 9001 (Quality Management system), ISO 14001 (environmental management system), ISO 45001 (occupational health and safety) and ISO 27001( system management system). Best Practice Certification certifies each of these standards. Each standard has both unique criteria as well as common criteria between ISO standards (making the implementation of multiple systems easy) that must be met in order for organisations to be certified. The ISO standards are developed by ISO (International Organization for Standardization), an independent, non-governmental, international organization.

What does it mean to be ISO certified?

Being ISO certified means an organisation has met the requirements of the ISO standard that they are certified to. For example, if an organisation is certified to ISO 9001, it means that they have met all of the criteria that evaluate if a Quality Management System (QMS) is appropriate and effective and have also identified and implemented improvements to their organisation.

Why is ISO certification important?

ISO Certification is an essential part of modern business to show customers and stakeholders that your organisation is committed to continual improvement; not to mention, it’s often mandatory when bidding on large scale tenders and government jobs.

What is ISO 9001?

ISO 9001:2015 is an internationally recognised Quality Management System (QMS) standard. We are JAS-ANZ accredited to provide certification to this standard. ISO 9001 outlines the framework for your management system standard. ISO 9001:2015 International Quality Management standard, when implemented, is a strategic activity that assists business performance improvement and provides a sound basis for consistently delivering products and services that meet stakeholder’s requirements. It is the most recognised quality management system standard in the world. It is applicable to organisations of all sizes, industries or products and services it offers. Find out more on what ISO 9001 is with our Trade Secrets here.

How to create an ISO 9001 system?

Your system has to meet the minimum requirements before you can be certified. Here, we outline the steps to creating your quality management system for certification. 1. Understand the intent of ISO 9001. Read through the standard and familiarise yourself with the terminology. 2. Understand the requirements set out in ISO 9001. Develop your management system according to the standard. For more information on this, have a look at our Trade Secrets. 3. Perform a gap analysis to identify how ready you are to become certified. This will highlight any areas that need further development. Have a look at our ISO 9001 PDF Gap Analysis Checklist here. 4. Undergo the process of Certification. We will need to evaluate your organization to ensure you are compliant to ISO 9001:2015 with a Best Practice Assessment. Find more information on the process here.

What is the latest version of ISO 9001?

ISO 9001:2015 is the latest version of ISO 9001, replacing ISO 9001:2008. The standard was updated in 2015 to meet the requirements of today's business world. It provides a framework for businesses to continually improve customer satisfaction. If you are certified to ISO 9001:2008 you will need to transition your certification before 14th September 2018.

How much does it cost to get certified to ISO 9001?

The cost to assess your management system against ISO 9001:2015 requirements can vary. 1 - 5 employees, no additional services - less than $5,000* The certification industry is highly regulated. As part of our regulated requirements we need to get an understanding of your company size, locations and scope of operations before we can provide you with a quote. Our rates are all inclusive and transparent. We don't have any hidden reporting, travel or preparation fees. *Once we have some details we may be able to discount this price significantly. Please contact us to find out more information.

What does it mean to be ISO 9001 certified?

When you are certified to ISO 9001, you are able to show interested parties, stakeholders and customers that you have met the requirements set out in the ISO 9001:2015 standard. ISO 9001 shows you are able to meet customer expectations and continually improve your business and its operations.

What are the requirements of ISO 9001?

ISO 9001:2015 is the standard that outlines the requirements to become certified. These requirements are broken down into clauses that provide the framework for your management system. The clauses are Context of the Organization (clause 4), Leadership (clause 5), Planning (clause 6), Support (clause 7), Operation (clause 8), Performance Evaluation (clause 9) and Improvement (clause 10). ISO 9001:2015 follows the new structure of ISO standards, Annex SL. For more information on Annex SL click here.

How to get certified to ISO 9001?

The certification process has four steps. 1. Gap Analysis (optional): The process begins with an optional gap analysis to evaluate your management system against each clause of ISO 9001:2015. 2. Stage One: The mandatory first step is a desktop assessment to evaluate your management system documentation, including policies, processes, management review records, scope and context as well as system implementation. It sets the foundation for the stage two assessment. 3. Stage Two: The stage two assessment is the final step of the initial certification process. To achieve certification against your systems, we need to verify that the documented requirements of the standard are implemented across the business. We visit your offices and premises as well as partake in discussions with relevant individuals in your business. 4. Certification: Once your stage two assessment is verified and the process is complete, a 'Statement of Certification' is issued, confirming compliance with the relevant standard.​ This certification is valid for a three-year period from the date of issue. Surveillance assessments will need to be performed on a regular basis to maintain your certification. Contact Us with any questions you may have, or to find out more about the certification process.

Why is ISO 9001 required?

ISO 9001 is required to show customers, suppliers and stakeholders that you are able to meet customer expectations. To become certified to ISO 9001, companies need to undergo evaluation against the standard, and need to have ongoing surveillance audits to ensure ongoing compliance, as well as provide feedback on how they can better improve their operations and ensure they are meeting customer needs.

What is ISO 9001 training?

ISO 9001 training can be used to understand the fundamental intent of the standard, so you can develop a quality management system that can then be audited against ISO 9001:2015. For more information on ISO 9001:2015 training, visit our Training Academy here.

What are the benefits of being ISO 9001 certified?

ISO 9001:2015 allows organisations to provide evidence of meeting customer needs to interested stakeholders. ISO 9001 provides numerous benefits and opportunities, including:

• Tender for work - Declare conformance with the standard and tender for work, including government contracts​ and large corporate jobs.
• Provide evidence for stakeholders - Enhance your reputation by providing formal recognition of your management processes to customers and interested stakeholders.
• Legal compliance - Provide evidence your organisation meets regulatory requirements, as ISO 9001 mandates your organisation must meet legal obligations.
• Improve products and services - Create efficiencies and ensure continuous improvement of your product or services with the Plan, Do, Check, Act cycle, an integral element of ISO standards.​
• Create your marketing advantage - Create a competitive advantage and marketing opportunity as certification can be a key differentiator in today's challenging marketplace.

What is ISO 9001 Australia?

ISO 9001:2015 is the most internationally recognised Quality Management System (QMS). It is an international standard, and is the same standard as ISO AS/NZS 9001:2016. The difference is only the time at which the standard was released in Australia, compared to the rest of the world. ISO 9001 belongs to the ISO 9000 'family' of standards for quality. All quality management system standards provide the framework for creating and implementing a quality management system standard that help organisations to meet customer needs and continually improve.

How can I transfer my existing ISO 9001 certification?

You can transfer your ISO 9001 certification to Best Practice seamlessly. We will continue your current certification schedule, contact us for an obligation free quote. Why Best Practice?

• We work to understand your business
  We provide meaningful observations. It's more than just compliance or non-conformance for us.
• We provide you with support services
  We help grow and continually improve your business with training, webinars, YouTube videos and our industry magazine, Certified.
• We have no hidden fees
  Our rates are all inclusive and transparent. We don't have any hidden reporting, travel or preparation fees.

How long does ISO 9001 certification last for?

Once you are ISO 9001 certified, your certification expires three years after your certification has been approved. For ISO 9001 certification you will need regular audits to maintain your certification and keep it valid, known as surveillance audits. This is only applicable to IAF (International Accreditation Forum) certifications.

How long does it take to implement ISO 9001?

What are the steps to ISO 9001 certification?

There are four steps to getting ISO 9001:2015 certification: 1. Gap Analysis (optional): The process begins with an optional gap analysis to evaluate your management system against each clause of ISO 9001:2015. 2. Stage One: The mandatory first step is a desktop assessment to evaluate your management system documentation, including policies, processes, management review records, scope and context as well as system implementation. 3. Stage Two: The stage two assessment is the final step of the initial certification process. To achieve certification against your systems, we need to verify that the documented requirements of the standard are implemented across the business. We visit your offices and premises as well as partake in discussions with relevant individuals in your business. 4. Certification: Once your stage two assessment is verified and the process is complete, a 'Statement of Certification' is issued, confirming compliance with the relevant standard.​ This certification is valid for a three-year period from the date of issue.

What is AS/NZS 4801?

AS/NZS 4801:2001 is an Australian and New Zealand standard for Occupational Health & Safety systems. We are JAS-ANZ accredited to provide certification to this standard. AS/NZS 4801 outlines the requirements for your organization to develop efficient safety systems. It shows interested parties and stakeholders your organization is committed to the safety of workers and providing a safe work environment. It is an important sign of your business' capability to reduce costs through preventing workplace injury and illness. AS 4801 is the most widely recognized OH&S standard in Australia. It is applicable to organisations of all sizes, industries or products and services it offers. Find out more on what AS/NZS 4801 is with our Trade Secrets here.

How can I transfer my existing AS/NZS 4801 certification?

You can transfer your current AS/NZS 4801 certification to Best Practice seamlessly. We will continue your current certification schedule, contact us for an obligation free quote. Why Best Practice?

• We work to understand your business
  • We provide meaningful observations. It's more than just compliance or non-conformance for us.

What is the latest version of AS/NZS 4801?

ISO 45001 is the new Occupational Health & Safety standard. ISO 45001 is newly released and will replace AS/NZS 4801, as this standard will be withdrawn. ISO 45001 is an internationally recognized standard, compared to AS/NZS 4801, which is widely recognized in Australia and New Zealand Both standards outline the requirements of an OH&S management system to ensure worker safety and provide a safe work environment. They are influential indicators that an organization has measures in place to reduce workplace injury and illness.

Why is AS/NZS 4801 required?

AS/NZS 4801 is required to show customers, suppliers and stakeholders that you have idenitified, mitigated and controlled safety risks, and you are committed to providing a safe workplace. To become certified to AS/NZS 4801:2001, companies need to undergo evaluation against the standard, and need to have ongoing surveillance audits to ensure ongoing compliance.

What is ISO 27001?

ISO IEC 27001:2013 is an internationally recognized Information Security Management System (ISMS) standard. ISO 27001 is the framework for the requirements to manage your organization's information security risks. ISO IEC 27001:2013 Information Security Management standard, when implemented, is a strategic activity that preserves the confidentiality, integrity and availability of information by applying risk management processes to adequately manage threats. It is the most recognized information security standard in the world. It is applicable to organizations of all sizes and industries, regardless of the products and services it offers. We are JAS-ANZ accredited to provide certification to this standard. Find out more on what ISO 27001 is with our Trade Secrets here.

How to create an ISO 27001 system?

Your system has to meet the minimum requirements before you can be certified. Here, we outline the steps to creating your management system for certification. 1. Understand the intent of ISO 27001. Read through the standard and familiarise yourself with the terminology. 2. Understand the requirements set out in ISO 27001. Develop your management system according to the standard. For more information on this, have a look at our Trade Secrets. 3. Perform a gap analysis to identify how ready you are to become certified. This will highlight any areas that need further development. Have a look at our ISO 27001 PDF Gap Analysis Checklist here. 4. Undergo the process of Certification. We will need to evaluate your organization to ensure you are compliant to ISO 9001:2015 with a Best Practice Assessment. Find more information on the process here.

What is the latest version of ISO 27001?

ISO IEC 27001:2013 is the latest version of ISO 27001, replacing ISO/IEC 27001:2005. The standard was updated in 2013 to meet the requirements of today's rapidly growing information security risks. It provides a framework to preserve the confidentiality, integrity and availability of information by applying risk management processes. It is an emerging standard, as information risks and threats become more prevalent.

What does it mean to be ISO 27001 certified?

When you are certified to ISO 27001, you are able to show interested parties, stakeholders and customers that you have met the requirements set out in the ISO/IEC 27001:2013 standard. ISO 27001 gives confidence that your organization adequately manages risks, and that your information retains its integrity, and is confidential.

How to get certified to ISO 27001?

The certification process has four steps. 1. Gap Analysis (optional): The process begins with an optional gap analysis to evaluate your management system against each clause of ISO IEC 27001:2013. 2. Stage One: The mandatory first step is a desktop assessment to evaluate your management system documentation, including policies, processes, management review records, scope and context as well as system implementation. It sets the foundation for the stage two assessment. 3. Stage Two: The stage two assessment is the final step of the initial certification process. To achieve certification against your systems, we need to verify that the documented requirements of the standard are implemented across the business. We visit your offices and premises as well as partake in discussions with relevant people in your business. 4. Certification: Once your stage two assessment is verified and the process is complete, a 'Statement of Certification' is issued, confirming compliance with the relevant standard.​ This certification is valid for a three-year period from the date of issue. Surveillance assessments will need to be performed on a regular basis to maintain your certification. Contact Us with any questions you may have, or to find out more about the certification process.

Why is ISO 27001 required?

ISO 27001 is required to show customers, suppliers and stakeholders that you are able to keep information and data safe and secure. To become certified to ISO 27001, companies need to undergo evaluation against the standard, and need to have ongoing surveillance audits to ensure ongoing compliance. ISO 27001 evaluates how well a company can manage its information security risks.

What are the benefits of being ISO 27001 certified?

The main benefit of the ISO 27001 Information Security Management System is that your organisation is asked to look for areas of improvement in terms of its data protection. In the modern context, organisations are hosting vast amounts of data, and they have an obligation to keep it secure; ISO 27001 is one of the most effective ways of meeting this obligation.
Benefits include:

• Improved customer confidence
• Increased reliability and security of systems and information
• Alignment with customer requirements
• Improved processes and strategies

What is ISO 27001 Australia?

ISO/IEC 27001:2013 is the most internationally recognized Information Security Management System (ISMS). It is an international standard, and is the same standard as ISO/IEC AS/NZS 27001:2015. The difference is only the time at which the standard was released in Australia, compared to the rest of the world. ISO 27001 belongs to the ISO 27000 'family' of standards for quality, known as the 'ISMS Family of Standards'. Information Security Management Standards provide the frameworks to ensure the confidentiality, integrity and availability of the organization's information.

How can I transfer my existing ISO 27001 certification?

You can transfer your ISO 27001 certification to Best Practice seamlessly. We will continue your current certification schedule, contact us for an obligation free quote. Why Best Practice?

• We work to understand your business
  We provide meaningful observations. It's more than just compliance or non-conformance for us.
• We provide you with support services
  We help grow and continually improve your business with training, webinars, YouTube videos and our industry magazine, Certified.
• We have no hidden fees
  Our rates are all inclusive and transparent. We don't have any hidden reporting, travel or preparation fees.

How long does ISO 27001 certification last for?

Once you are ISO 27001 certified, your certification expires three years after your certification has been approved. For ISO 27001 certification you will need regular audits to maintain your certification and keep it valid, known as surveillance audits. This is only applicable to IAF (International Accreditation Forum) certifications.

What is ISO 14001?

ISO 14001:2015 is the internationally recognised Environmental Management Systems standard. It provides a framework that organisations can follow to manage their environmental responsibilities and risks. ISO 14001:2015 Environmental Management System standard, when implemented, is a strategic activity that helps manage environmental aspects, fulfil compliance obligations, and address risks and opportunities. As a part of the ISO family of standards, ISO 14001 can easily be integrated with other management system standards, most commonly ISO 9001. We are JAS-ANZ accredited to provide certification to this standard. Find out more on what ISO 14001 is with our Trade Secrets here.

How do I get ISO 14001 certified?

Best Practice is JAS-ANZ accredited to provide your organisation with ISO 14001 certification.

What is the latest version of ISO 14001?

ISO 14001: 2015 is the latest version of ISO 14001, which has an increased emphasis on risk-based thinking in the context of environmental management in your organisation.

What are the requirements of ISO 14001?

ISO 14001 requires your organisation to take into account environmental concerns to minimise its footprint. This can be inside the organisation or extend to suppliers as well as the end deliverable.

Why do I have to get ISO 14001 certified?

There’s no mandate for organisations to get ISO 14001 certification, however, more proactive organisations will see the value in getting certified to show their clients and suppliers they take environmental concerns seriously, as well as being able to bid on large tenders that often require organisations to be certified.

What is ISO 14001 training?

ISO 14001 training requires you to get an understanding of your organisation’s environmental impact, and aims to introduce your organisation to new ways to operate that ultimately minimise its footprint. You’ll learn new ways of monitoring and measuring environmental impacts, as well as management strategies to minimise your environmental impact.

How much does ISO 14001 cost?

We look at three key variables: the risk of the industry, the scope of your operations and how many people are involved/employed, and then tell you how much your ISO 14001 certification will cost, as the quote is dependent on these variables.

How long does ISO 14001 last for?

ISO 14001 certification lasts for three-years following your initial certification date.

What are the benefits of being ISO 14001 certified?

Being certified to ISO 14001 shows your stakeholders that you take environmental management seriously, which is topical in a modern business context, as well as enabling your organisation to bid on projects that it wasn’t previously able to such as large-scale, government or council tenders.

What are the steps to ISO 14001 certification?

1. Gap Analysis (optional): The process begins with an optional gap analysis to evaluate your management system against each clause of ISO IEC 27001:2013. 2. Stage One: The mandatory first step is a desktop assessment to evaluate your management system documentation, including policies, processes, management review records, scope and context as well as system implementation. 3. Stage Two: The stage two assessment is the final step of the initial certification process. To achieve certification against your systems, we need to verify that the documented requirements of the standard are implemented across the business. 4. Certification: Once your stage two assessment is verified and the process is complete, a 'Statement of Certification' is issued, confirming compliance with the relevant standard.​ This certification is valid for a three-year period from the date of issue.

How can I transfer my existing ISO 14001 certification?

You can transfer your current ISO 45001 certification to Best Practice seamlessly. We will continue your current certification schedule, contact us for an obligation free quote, and we’ll take the hassle out of transferring your ISO 14001 Certification.

What is AS/NZS 4801?

AS/NZS 4801:2001 is an Australian and New Zealand standard for Occupational Health & Safety systems. We are JAS-ANZ accredited to provide certification to this standard. AS/NZS 4801 outlines the requirements for your organization to develop efficient safety systems. It shows interested parties and stakeholders your organization is committed to the safety of workers and providing a safe work environment. It is an important sign of your business' capability to reduce costs through preventing workplace injury and illness. AS 4801 is the most widely recognized OH&S standard in Australia. It is applicable to organisations of all sizes, industries or products and services it offers. Find out more on what AS/NZS 4801 is with our Trade Secrets here.

How can I transfer my existing AS/NZS 4801 certification?

You can transfer your current AS/NZS 4801 certification to Best Practice seamlessly. We will continue your current certification schedule, contact us for an obligation free quote. Why Best Practice?

• We work to understand your business
  • We provide meaningful observations. It's more than just compliance or non-conformance for us.

What is the latest version of AS/NZS 4801?

ISO 45001 is the new Occupational Health & Safety standard. ISO 45001 is newly released and will replace AS/NZS 4801, as this standard will be withdrawn. ISO 45001 is an internationally recognized standard, compared to AS/NZS 4801, which is widely recognized in Australia and New Zealand Both standards outline the requirements of an OH&S management system to ensure worker safety and provide a safe work environment. They are influential indicators that an organization has measures in place to reduce workplace injury and illness.

Why is AS/NZS 4801 required?

AS/NZS 4801 is required to show customers, suppliers and stakeholders that you have idenitified, mitigated and controlled safety risks, and you are committed to providing a safe workplace. To become certified to AS/NZS 4801:2001, companies need to undergo evaluation against the standard, and need to have ongoing surveillance audits to ensure ongoing compliance.