Over the years helping certification bodies prepare for accreditation, I’ve noticed a familiar pattern: everyone feels confident until the accreditation body starts asking for evidence they can’t locate. That’s when panic sets in.
Accreditation audits aren’t just about ticking boxes. They test how well your certification body actually follows ISO/IEC 17021-1 in practice — not just on paper. The assessors want to see proof that your impartiality, auditor competence, and certification decision processes work exactly as described.
In this guide, I’ll walk you through practical ways to prepare — from organizing your documentation to getting your team audit-ready. You’ll also see what assessors typically look for, what mistakes to avoid, and how to make a strong impression.
Understanding the ISO/IEC 17021-1 Accreditation Audit Process
Let’s start with what really happens during an accreditation audit. An accreditation body — like ANAB or UKAS — evaluates your certification body against the requirements of ISO/IEC 17021-1. They review your system, interview your people, and sample real certification activities.
It’s typically done in two stages:
Document review: assessors evaluate your policies, procedures, and past audit records.
On-site or remote assessment: they observe how your certification process actually works, from audit planning to decision-making.
Pro Tip: Before the assessors arrive, revisit your last internal or surveillance audit results. They almost always start by asking, “What did you find in your last audit, and how did you address it?”
Common Mistake: Treating the assessment like a checklist exercise. Accreditation bodies aren’t impressed by documents alone — they look for evidence of implementation.
When one of my clients started walking assessors through real audit trails instead of flipping through binders, the conversation instantly shifted from “compliance checking” to “system maturity.” That’s what you want.
Pre-Audit Preparation: Documentation and Records You Must Have Ready
Here’s where most CBs either shine or stumble. Documentation and records tell your story — they prove that your system is not only designed but also functioning.
At minimum, make sure these are complete and current:
Clause 6: organizational chart, impartiality committee minutes, and conflict-of-interest declarations.
Clause 7: competence matrices, auditor CVs, and training logs.
Clause 8: confidentiality procedures, complaints and appeals registers.
Clause 10: internal audit results, corrective actions, and management-review minutes.
Pro Tip: Add clause references to each file name — for example, “Clause 9.5 – Certification Decision Record.” It saves precious time when assessors start asking questions.
Common Pitfall: Keeping multiple uncontrolled copies of the same record in different folders. I’ve seen audits derailed because two versions of an impartiality-risk assessment didn’t match.
Example: A certification body I worked with avoided this by creating a single, cloud-based folder with read-only access for staff. Their audit went smoothly — no version-control issues, no document confusion.
Staff Readiness: Preparing Auditors and Certification Decision-Makers
Accreditation assessors don’t just review paperwork — they interview your people. They want to confirm that your auditors, reviewers, and certification decision-makers know their roles and understand ISO/IEC 17021-1.
Here’s how to get your team ready:
Brief everyone on the audit agenda and potential interview topics.
Review your last few certification cases as real examples.
Reinforce impartiality and confidentiality policies.
Do a mock interview a week before the audit.
Pro Tip: Encourage staff to give concise, real examples — not rehearsed answers. Assessors prefer authenticity over memorization.
Common Mistake: Letting technical experts dominate the conversation while forgetting that process competence matters just as much.
Example: One CB reduced assessor follow-ups by 70% after short practice sessions where each team member explained their process role in plain language. Assessors appreciate confident, honest answers.
Internal Audit and Management Review: Your Strongest Evidence
Internal audits and management reviews are the backbone of your compliance story. Accreditation bodies look at them closely because they show how you measure and improve performance.
Use your ISO/IEC 17021-1 Internal-Audit Checklist to confirm that all processes have been audited and findings tracked. Then ensure your management review includes the following:
Results of previous audits and corrective actions.
Impartiality performance and risk updates.
Customer complaints and appeals.
Opportunities for improvement.
Pro Tip: Turn your management-review results into a visual summary — trend graphs, bar charts, and simple metrics. Assessors love clarity and data-driven presentations.
Common Pitfall: Conducting your internal audit too close to the accreditation audit. If you find nonconformities, you’ll have no time to fix them. Schedule your internal audits at least two months in advance.
During the Accreditation Audit: How to Handle Assessors Confidently
Audit day can feel tense, but preparation makes all the difference.
Keep your records accessible, your staff relaxed, and your explanations simple. When assessors ask for evidence, show them the document first — then explain how it works in practice.
Pro Tip: Assign a point person for each clause or area (impartiality, competence, process control, etc.). It prevents confusion and keeps responses consistent.
Common Mistake: Over-explaining. When assessors ask a direct question, give a direct answer. If they want more detail, they’ll ask.
Example: One certification-body manager once turned a potential nonconformity into a positive observation by calmly showing how an issue was already identified in their last internal audit and corrected. Assessors value transparency more than perfection.
Post-Audit Actions: Closing Nonconformities and Maintaining Compliance
Even well-prepared CBs receive findings — and that’s okay. What matters is how you respond.
Here’s how to handle them effectively:
Acknowledge the issue without defensiveness.
Analyze the root cause — not just the symptom.
Implement corrections and corrective actions promptly.
Submit evidence within the given deadline.
Pro Tip: Use a standardized CAPA (Corrective and Preventive Action) form with clause references and responsible persons. It makes follow-up easy.
Common Pitfall: Writing vague root-cause statements like “human error.” Assessors expect a clear link between cause, action, and prevention.
Example: One CB improved its closure rate dramatically after using a digital CAPA tracker that flagged overdue actions automatically. The assessor even highlighted it as a best practice.
Q1. How long does an ISO/IEC 17021-1 accreditation audit take? It depends on your scope, but most initial audits take between 2 and 5 days. Surveillance audits are usually shorter.
Q2. What’s the most common cause of nonconformities? Missing competence evidence for auditors or weak impartiality-risk management. Both show up in nearly every first-time accreditation.
Q3. When should I schedule my internal audit before accreditation? Ideally 2–3 months ahead. That gives enough time to correct issues and show assessors you’ve implemented improvements.
Build Confidence Before Your ISO/IEC 17021-1 Accreditation Audit
Accreditation success comes down to one thing — preparation you can prove. When your documentation is organized, your team understands their roles, and your audits are well-planned, accreditation becomes predictable instead of stressful.
In my experience, the certification bodies that treat accreditation as a learning process — not a test — always perform best.
Take time now to review your internal audits, train your team, and ensure every record tells the same story: your system works.
Ready to get started? Download the ISO/IEC 17021-1 Audit Preparation Checklist and approach your next accreditation audit with complete confidence.
Melissa Lavaro is a seasoned ISO consultant and an enthusiastic advocate for quality management standards. With a rich experience in conducting audits and providing consultancy services, Melissa specializes in helping organizations implement and adapt to ISO standards. Her passion for quality management is evident in her hands-on approach and deep understanding of the regulatory frameworks. Melissa’s expertise and energetic commitment make her a sought-after consultant, dedicated to elevating organizational compliance and performance through practical, insightful guidance.
