Audits and accreditation

The process in which an organization acquires a certification is called accreditation. When acquiring a certification, an organization shows that it operates according to a set standard. There are different sorts of audits, namely third-, second- and first party.

Accredited audit (third party)

When your organization certifies other organizations then you have become accredited by a ''accredited certification body''. The International Organization for Standardization (ISO) has developed several processes for organizations to follow. These are also specified in the ISO/IEC 17011. Many sectors have their own certification bodies who handle certifications for a specific sector. Fulfilling the requirements of these bodies is of importance for organizations that want to acquire accreditation.

A third party audit means that a accreditation bodies' approach is analysed on factors concerning the certifications of third parties. This body has to fulfill several requirements such as ethical conduct and reach certain standards of quality.

An official accreditation body can not give advice to organizations that want to acquire certifications. This body needs to meet a certain level of confidentiality and independency.

Non-accredited audit (second party)

The organizations who are not accredited by an official body and certify other organizations give out non-accredited certifications.

These so-called ''second parties'' are different from ''third parties'' as they can assist organizations in acquiring certifications. However, this should be permitted in the policy of the second party.

The ''second party accreditation body'' can assist, but it is important that the auditor handles this kind of power correctly. This auditor is able to give out certificates and therefore has power over the auditee. Handling information of accredited parties correctly is of great importance.

Internal audit (first party)

Internal audits are often seen as an instrument to improve processes and procedures within an organization. An internal auditor often has a broad range of knowledge and experience in creating the most efficient processes in the organization. The internal auditor also has a certain responsibility to analyse and evaluate suppliers of the organization in which the internal auditor is working. The internal auditor should analyze the organization and advise the board on important factors.

A common task is assisting when external auditors visit for accreditations. The internal auditor is active on several levels in the organization. Firstly, the auditor is active by assisting the management and secondly in evaluating suppliers and external auditors.

Different audit roles

Internal and external auditors have common aspects, but also differ in certain areas. First party auditors are mostly very common with the organization and usually have a more informal role than external auditors. The common aspects are mostly regarding communicating with external parties, as this is one of the most common tasks for any auditor. Internal auditors often experience short audit processes, while external auditors need to analyze for a longer time in order to fully grasp the organization that wants to acquire a certification.