VDA_6.3_EN_Yellow_Volume_.pdf.pdf - 第42页

40 Figure 6-1: Audit pyramid Process elemen ts P3 and P4 ca n be audited either toge ther or separa tely when evaluating the product pla nning/imple mentation and process plan- ning/process i mplementation. This depends …

6.5 Using the questionnaire (process elements P2 to P7)

The questionnaire forms the basis of the auditor’s work. The auditor selects

the relevant process elements for the audit depending on the phase of the

product life cycle (see section 2.2). Additional specific requirements can be

added to the questions depending on the product/process risks identified.

The questions can be used for processes for material products and products

with integrated (embedded) software as well as for auxiliary and process ma-

terials.

Structure of the questionnaire

The questions for the process elements are structured as follows:

• Questions

• Minimum requirements relevant for assessment

• Examples for implementation

The “examples for implementation” provide a selection of potential applica-

tions. They should be selected on a product/process-specific basis and ex-

panded, analyzed and evaluated when necessary.

The evaluation is carried out based on the questions in the “Minimum require-

ments relevant for assessment” list.

For the auditor, the audit consists of two mutually independent activities (see

figure 6.1):

1. The auditor asks the auditee open questions to assess compliance

with the requirements. The risks identified in the preparations for and

during the audit are taken into account.

2. Based on the audit findings, the auditor uses closed questions to as-

sess compliance with the requirements.

Figure 6-1: Audit pyramid

Process elements P3 and P4 can be audited either together or separately

when evaluating the product planning/implementation and process plan-

ning/process implementation. This depends on the audited organization.

If process element P6 (“series production”) requires a breakdown into pro-

cess steps, each step must be specified and evaluated separately.

In addition to the VDA 6.3 questions listed in this volume, it is recommended

that a knowledge database be created to store information about the risks as-

sociated with individual products and processes. The experience stored in the

knowledge databases can be used in addition to the requirements relevant for

the evaluation.

Based on the risk analysis described in section 2.4, identified risks must be

checked against the questionnaire and integrated into the applicable ques-

tions.

6.6 Rules on conducting an audit

An audit can be stopped at the auditor’s discretion, for example in the follow-

ing cases:

• Refusal to disclose necessary information during the audit

• Obvious violations of the law

• Actively interfering with the auditor’s work or putting the auditor in

danger

• Refusal to grant access to areas that are relevant for the audit, de-

spite prior agreement

• Insufficient preparation of the audit on the part of the organization

• Providing evidently false statements

The reason for stopping the audit must be stated. Audit findings obtained up

to the point the audit was interrupted must be documented.

The organization conducting the audit decides whether a new audit should be

carried out.

6.7 Repeat audit

It must be specified in which cases a repeat audit is necessary. Reasons for

conducting a repeat audit can include, for example:

• A specified level of compliance is not reached

• Critical process that is associated with risks

• The requirements according to one or more *-questions are not met

(0 points)

• Potential analysis results in “red light”

The repeat audit must be carried out within a specified time frame. Within this

period of time, the audited organization must initiate measures to effectively

rectify the shortcomings.

The scope of the repeat audit must be the same as for the previous audit. Re-

ducing the scope of the audit to a mere test of the effectiveness of the imple-

mented measures is not permissible.