The new ISO 45001 standard, released on March 12, 2018 after 5 years of work, was in the spotlight at a breakfast organized by Novallia in Paris on April 10. The fruitful exchanges of this morning are transcribed for you here, in the minutes of this meeting.
Introduction: The context and challenges of the new ISO 45001 standard
1. Growing demand for safer working conditions and better protection at work
2. The opening up of the international market and its implications :
- increasingly complex supply chains
- thanks to an effective OHS Management System, the company has visibility over an essential aspect of its management structure, and can avoid legal and financial risks that could damage its image
- need to go beyond immediate health and safety issues
- obligation to take account of external contractors and suppliers, whose work is likely to affect people living near their sites
- the need to transcend economic and national boundaries in terms of health and safety at work
3. The new standard puts people at the heart of the system.
It takes a top-down, participative approach: the involvement of employees and management in OHS is essential if we are to cope with the internal and external factors impacting companies today.
4. Calendar
OHSAS 18001-certified organizations will have 3 years in which to bring their management systems into compliance (until the end of March 2021).
I. Fundamental differences between OHSAS 18001 and ISO 45001
1. Analysis and structure
ISO 45001 becomes a certifiable Standard: ISO 45001 adopts an HLS (High Level Structure) framework such as ISO 9001 and ISO 14001 of 2015. This has the effect of aligning the health and safety management system with the organization’s other management systems; and improving procedures and system efficiency, saving time and money. On the other hand, ISO 45001 focuses on the interaction between an organization and its business environment, whereas OHSAS 18001 focused on the management of OHS hazards and other internal issues. The scope of application now depends on :
- Organizational context, relevant internal and external issues
- The needs and expectations of workers and other relevant stakeholders
It includes activities, products and services that are under the organization’s control. It is not possible to exclude any activity that generates a significant risk and would absolve the activity of its responsibility.
2. Risks and opportunities: ISO 45001 takes both risks and opportunities into account, whereas OHSAS 18001 deals only with operational risks.
Risk analysis is strengthened:
- A priori risk analysis
- Continuous, proactive analysis
- Consider hazards for downstream workers (assembly, testing, etc.)
- Opening up to QWL: a “culture conducive to expected results” is a success factor
Extending the term “risks” to opportunities ISO 45001 recommends taking measures as far upstream as possible in order to seize opportunities to improve OHS performance.
Actions to be taken :
- Integrating OHS at the earliest stage of process and facility design….
- Use of new technologies
- Participation in forums
- Comparative analyses between organizations
Use of certain tools :
- Audits
- Analysis of adverse events
- Ergonomic studies
3. Strengthening the process approach
In the process approach, ISO 45001 recommends to
Process mapping: integration of outsourced processes + description of interactions between processes (influences on each other – degree of influence).
Draw up a process sheet integrating the SMSST: Objectives + Performance and steering indicators + Risks/Opportunities
4. Strengthening leadership: ISO 45001 gives management a more important role
The ISO 45001 policy includes two new commitments: firstly, to provide safe and healthy working conditions for the prevention of work-related injuries and illnesses, and secondly, to consult and involve workers and, where they exist, workers’ representatives. Management must demonstrate leadership and involvement in occupational health and safety management:
- By integrating health and safety protection more firmly into processes in the workplace, rather than simply delegating it.
- Demonstrating responsiveness and support
- By developing an OHS-friendly culture
- By encouraging employees to report undesirable events and protecting them.
It is responsible for the effectiveness of the SMSST, but can delegate implementation while retaining responsibility (ensure that…) It ensures that SMSST-related requirements are integrated into the organization’s business processes.
5. ISO 45001 puts people at the heart of the system
The new standard requires the active participation of workers and their representatives in risk prevention. It integrates the notion of proactivity in OHS risk management, at all levels, and reinforces the participation and consultation of non-managerial workers. With this in mind, the employer must :
- provide documented information, time, training and resources for participation/cooperation
- provide access to clear, comprehensible and relevant information on the OHS management system without delay
- identify and remove obstacles or barriers to participation/cooperation, and minimize those that cannot be removed
6. Internal and external communication processes
The simple reception of relevant communications from external interested parties is replaced by a communication process:
- Definition of relevant information to be exchanged with workers, stakeholders, external parties and visitors
- Drawing up a communication plan: what to communicate about / when to communicate / with whom to communicate / how to communicate
7. Documented information
The adoption of the notion of documented information to replace procedures, operating modes, forms and records
- Documented information can be presented in any format and on any medium
- Quality, necessity and readability take precedence over quantity
- The organization must define the terms and conditions :
- Access
- Information storage and protection
- Storage and disposal
- Review and approval
8. New concept of Effectiveness/Efficiency
ISO 45001 introduces control of the effectiveness/efficiency of actions, skills required, etc. Effectiveness is the level of realization of planned actions Effectiveness is the achievement of expected results.