Batalas Logo
0

Common Nonconformities

non conformity11
non conformity11

A question that we are often asked during our Lead Auditor Training Course is “what are the most common nonconformities found by third party certification auditors?

The definition of a nonconformity in ISO 17021 is defined as:  “non-fulfilment of a requirement”.

In real terms this is often explained as a failure to fulfil one or more requirements of the management system standard, or a situation that raises significant doubt about the ability of the client’s management system to achieve its intended outputs.”

A nonconformity can be identified as a “minor” or a “major”. Put simply, a minor nonconformity means the failure to comply with a requirement which is not likely to result in management system failure, e.g. a single lapse or an isolated incident. Whereas a major nonconformity means an absence or total breakdown of a system to meet a requirement, in some cases a number of minors related to the same clause or requirement.

After doing some research with several UK certification bodies, we were able to put together a list of top 5 minor nonconformities for ISO 9001, ISO 14001, ISO 27001 and AS9100. Can you guess what they are before looking?

The top 5 QMS ISO 9001 minor nonconformities:

7.6 Control of Monitoring and Measurement Equipment
4.2.4 Control of Records
5.6 Management Review
4.2.3 Control of Documents
6.3 Infrastructure

The top 5 EMS 14001 Environmental Management System (EMS) minor nonconformities:

4.3.2 Legal and Other Requirements
4.4.6 Operational Control
4.5.2 Evaluation of Compliance
4.5.3 Corrective and Preventive Action
4.5.5 Internal Audit

The top 5 ISMS 27001 Information Security Management System (ISMS) minor nonconformities found were:

6 ISMS Internal Audit
8.2 Corrective Action
4.2.1 Establish the ISMS
4.3.2 Control of Documents
4.3.3 Control of Records

The top 5 Aerospace and Defence AS91xx minor nonconformities:

7.5.1 Control of Production and Service Provision
4.2.3 Control of Documents
8.5.2 Corrective Action
8.2.2 Internal Audit
4.2.4 Control of Records

If you have been involved in auditing for some time a would guess that you knew the answers before you read them, but the age old ones never seem to go away – control of documents, control of records, corrective action and internal audit results.

If you need help with your management system or auditing skills, Batalas offer a wide variety of training course for auditors:

Originally posted 27 November 2012, updated 3 September 2013

Want to know more?

Our ISO experts are here to help answer your questions.

Get in touch

Related Courses

You may also be interested in

Back to Videos & Blogs

Stay up to date with industry news, courses and offers

By subscribing, you consent to receive marketing emails from Batalas. Your data will not be forwarded to any third parties, and you can unsubscribe anytime.

By clicking ‘Sign up’ you agree to the Terms and Conditions and Privacy Policy.

portrait happy young freelancer using laptop

More Resources to make your studies go further

With over 60 years experience, our expert team have a wealth of knowledge to share. From auditing tips to FAQ’s, we have a range of resources to support you.

All resources

Let’s level up your career together

Are you a new auditor looking for ISO training advice? Or do you want to build on existing auditing skills to boost your career?


Whatever your need, our experienced and knowledgeable Batalas team can guide you on the right training path to help you reach your professional goals.

Get in touch

Batalas Ltd is a limited company registered in England and Wales. Registered number: 3736166. Registered office: Unit C4 Lakesmere Road, Horndean, Waterlooville, PO8 9JU

© 2026 Batalas ltd, All Rights Reserved. 

Return

Training Courses

View all ISO 9001 Courses

ISO 9001:2015 Foundation QMS

CQI | IRCA

An entry-level course which teaches an understanding of ISO 9001 QMS.

ISO 9001:2015 Internal Auditor QMS

CQI | IRCA

Discover how to conduct, report and follow up on an internal audit.

ISO 9001:2015 Lead Auditor

CQI | IRCA

Gain the knowledge and skills to manage internal, third-party, and supplier audits.

View all AS 9100 Courses

AS9100:2016 Rev D Introduction

A short online course that provides a basic overview of AS9100:2016 Rev D.

AS9100:2016 Rev D Foundation

CQI | IRCA

Discover the requirements of AS9100 and a Management System.

AS9100:2016 Rev D Internal Auditor

CQI | IRCA

Understand auditor responsibilities and how to conduct an internal audit.

AS9100:2016 Rev D Lead Auditor

CQI | IRCA

For new or existing auditors who wish to conduct internal, external and supplier audits.
View all ISO 13485 Courses

MD-QMS ISO 13485:2016 Foundation

CQI | IRCA

Achieve an understanding of ISO 13485 and a Management System.

MD-QMS ISO 13485:2016 Internal Auditor

CQI | IRCA

Gain the knowledge and skills to conduct internal audits of a management system.

MD-QMS ISO 13485:2016 Lead Auditor

CQI | IRCA

Learn how to lead audits within an organisation or for third parties and suppliers.

View all ISO 27001 Courses

ISO/IEC 27001:2022 Foundation

CQI | IRCA

Perfect for new auditors wanting to learn about ISO 27001 ISMS.

ISO/IEC 27001:2022 Internal Auditor

CQI | IRCA

Conduct internal audits of an Information Security Management System.

ISO/IEC 27001:2022 Lead Auditor

CQI | IRCA

Learn how to manage internal audits, plus third parties and suppliers.

ISO/IEC 27001:2022 Auditor Conversion

CQI | IRCA

Designed for existing lead auditors who want to audit against ISO 27001 ISMS.

View all ISO 14001 Courses

ISO 14001:2015 Foundation

CQI | IRCA

Gain knowledge of an Environmental Management System.

ISO 14001:2015 Internal Auditor

CQI | IRCA

Learn how to carry out an internal audit against ISO 14001.

ISO 14001:2015 Auditor Conversion

CQI | IRCA

Perfect for existing lead auditors who want to learn ISO 14001 to expand their knowledge.

View all ISO 45001 Courses

ISO 45001:2018 Introduction

Gain a basic understanding of ISO 45001 with this short online course.

ISO 45001:2018 Foundation

CQI | IRCA

Beginners course that teaches the requirements of ISO 45001 OHSAS.

ISO 45001:2018 Auditor Conversion

CQI | IRCA

For current lead auditors who wish to increase their knowledge by learning ISO 45001.

View all IMS Training Courses

Integrated Management System (IMS) Internal Auditor

Learn how to conduct an internal audit of your integrated management system.
View all GDPR Training Courses

GDPR Introduction

An interactive 1hr online course that teaches an overview of the GDPR.

GDPR Team Overview

GDPR training for your team at your workplace.

View all Auditor Workshops

ISO 9001:2015 Management Overview

Understand the new responsibilities placed on managers in ISO 9001:2015.

Supplier Auditor Course

Learn how to conduct audits of new and existing suppliers effectively.

ISO 9001:2015 Risk-Based Thinking

Improve your knowledge and skills for effective risk-based thinking.

Audit Skills Workshop

Bring your team together with a fun and energetic team-building session.

View all Learning Styles

Classroom Training

Virtual Training

Online Training

Public Training

In-House Training

View all Courses

Return

Audit Support

We have a wealth of experience working with ISO management systems and can assist auditors who require support.

ISO Management System Assessment 
A review of an outdated or overcomplicated ISO management system
Audit Mentoring
Live audit observation and recommendations for any improvements
Gap Analysis
Identify potential gaps in the effectiveness of a management system
View all Audit Support

Return

View all Resources

Return

About Us

Show more results...

Generic filters

Alternatively, use our Course Selector to find the perfect course for you:

Find your course