VDA_6.3_EN_Yellow_Volume_22-05-16.pdf - 第23页

21 4 Notes on conducting rem ote audits Process audit s according to the present VDA 6.3 audit standard are generall y conducted on site. Taking risks fa ctors/influencing factors for auditors, auditees as well a s prod-…

• Process auditors must not accept assignments that would cause

them a conflict of interests.

• Process auditors must not accept assignments that they cannot carry

out properly because of a lack of expertise.

• Process auditors are bound to secrecy regarding confidential infor-

mation that they have acquired through their professional activities.

4 Notes on conducting remote audits

Process audits according to the present VDA 6.3 audit standard are generally

conducted on site.

Taking risks factors/influencing factors for auditors, auditees as well as prod-

ucts and processes into account, remote audits can in individual cases be

carried out.

The organization conducting the audit bears overall responsibility for planning

the scope/the elements of the audit and selecting the audit method, provided

that the customer has not stipulated otherwise. It is recommendable to define

a company-specific procedure for internal and external audits.

4.1 Definition of a remote audit

“Remote audits” are defined in the ISO 19011 and can be carried out inter-

nally as well as externally.

4.2 Definition of a hybrid audit

Hybrid audits are a combination of a remote audit and an on-site audit. In this

regard, chapter 4.6 “Suitability of individual process elements/questions for

conducting remote audits (process elements P2-P7)” must be taken into ac-

count.

4.3 Instructions for use

Generally, remote audits cannot constitute a full process audit (P2-P7) in ac-

cordance with VDA 6.3. This is due to a lack of transparency during the audit

process and due to technical, legal as well as data protection issues. The

same applies to potential analyses (P1), which can only be carried out to a

limited extent without a visit to the supplier’s premises. However, provided

that risk factors / influencing factors are taken into account, hybrid audits can

be considered full audits.

The “

rule” (see chapter 6.1) regarding the number of evaluation questions

is still applied.

The privacy and confidentiality requirements remain the same, no matter

whether a remote audit or an on-site audit is planned and conducted. In par-

ticular, taking pictures or making videos/audio recordings is not allowed un-

less both parties have given their express consent.

4.4 Classification of the audit methods based on existing

risk factors / influencing factors

An audit may not lead to danger of life and limb (health) of the auditors/audi-

tees because of conditions on site, which are known in advance.

When selecting a suitable audit method (on-site audit, remote audit, hybrid

audit), the criticality of the product as well as the development / production

process, the previous performance and aspects related to the location are

particularly important. The following table provides an overview of the audit

methods, including a classification of the risk factors/influencing factors.