2. Quality Control & Assurance¶
B2 questions covered: 1.2.1 – 1.2.5
Scope: Quality policy, QMS, document control, internal audits, non-conformance management, IT security.
AMWS evidence mapping¶
| Q ref | Evidence item | IMS document / note | Status |
|---|---|---|---|
| 1.2.1 | Quality policy statement | POL_HSQE_20 — Quality Policy Statement | Ready |
| 1.2.1 | Quality responsibilities document | MAN_01a — Roles & Responsibilities | Ready |
| 1.2.1 | Quality Management System | MAN_01 — IMS Manual (scope includes QMS under ISO 9001) | Ready |
| 1.2.2 | Document control procedure | SOP 4.6 — Document Control + SOP 4.7 — Control of Records | Ready |
| 1.2.2 | Quality plan (if used) | Not used as a standalone QP — quality requirements are embedded in MS / SOPs / contract-specific RAMS | N/A |
| 1.2.2 | Inspection & Test Plan (if used) | Not used formally — inspections are per MS / van checks | N/A |
| 1.2.2 | Snagging inspection record | QA_FM_07.0 Hygiene Audit + QA_FM_07.1 Van / Site Water-Quality Audit + client handover records | Ready |
| 1.2.3 | ISO 27001 certificate (if held) | Not held — AMWS is small; IT security managed via policy + external IT support | N/A |
| 1.2.3 | IT Security Policy | POL_HSQE_30 — IT Security Policy — practical SME policy: access, MFA, cloud/backup, email, devices/BYOD, incident response (UK GDPR 72-hr breach pathway). Deliberately not an ISO 27001 ISMS. | Ready |
| 1.2.4 | Internal audit schedule | APP_20 — Internal Audits Programme | Ready |
| 1.2.4 | Examples of internal / site audits | 16 × IA202501–16 audit reports | Ready |
| 1.2.5 | Non-conformance reports + NC log | APP_21 — NC Register + 23 × CAR-2025 | Ready |
| 1.2.5 | Evidence of assessment of audit NCs | Management Review minutes + KPIs (APP_11) + Improvement register (IAF-2025-001 etc.) | Ready |
| --- |