← Back to ArticlesReference
ISO 9001 Glossary: Key Terms Explained in Plain English
ISO 9001 has a vocabulary of its own. This glossary defines the terms you’ll meet most often — in plain language, with links to deeper guides where helpful. Bookmark it for your next audit, onboarding, or document review.
- Audit
- A systematic, independent examination to determine whether quality activities and results conform to planned arrangements, and whether those arrangements are implemented effectively. Audits can be internal (first-party), supplier (second-party), or by a certification body (third-party).
- Certification Body (Registrar)
- An accredited third-party organization that audits your quality management system and issues your ISO 9001 certificate. The registrar is independent of the company being certified and conducts the initial certification audit plus ongoing surveillance audits.
- Competence
- The demonstrated ability to apply knowledge and skills to achieve intended results. ISO 9001 Clause 7.2 requires organizations to determine the competence needed for each role, ensure people are competent, and retain documented evidence of it. ISO 9001 Clause 7.2 Competence guide →
- Conformity
- The fulfillment of a specified requirement. A product, process, or system "conforms" when it meets the standard, customer, or regulatory requirement that applies to it.
- Context of the Organization
- The internal and external issues, and the needs of interested parties, that are relevant to an organization’s purpose and that affect its ability to achieve intended results. Clause 4 requires you to determine your context as the foundation of the QMS.
- Continual Improvement
- Recurring activity to enhance performance. ISO 9001 expects organizations to continually improve the suitability, adequacy, and effectiveness of their quality management system, often using the Plan-Do-Check-Act cycle.
- Controlled Document
- A document whose creation, review, approval, distribution, and revision are formally managed so that only the current, approved version is in use. Procedures, work instructions, and quality manuals are typically controlled documents. Document control in Training Tiger →
- Corrective Action (CAPA)
- Action taken to eliminate the root cause of a detected nonconformity so it does not recur. ISO 9001 Clause 10.2 requires correction of the immediate problem plus corrective action to prevent recurrence. (CAPA bundles corrective and preventive action.) Corrective Action / CAPA procedure template →
- Document Control
- The process of managing documented information through its lifecycle — approval, distribution, version control, retrieval, and obsolescence — so the right people always have the right version. Covered by Clause 7.5. ISO 9001 document control procedure →
- Documented Information
- The ISO 9001:2015 term that replaced "documents" and "records." It covers both the information an organization must maintain (procedures, policies) and the evidence it must retain (records).
- Effectiveness
- The extent to which planned activities are realized and planned results achieved. Auditors assess not just whether you have a process, but whether it actually works.
- Interested Parties
- Persons or organizations that can affect, be affected by, or perceive themselves to be affected by the organization — customers, employees, suppliers, regulators, and owners. Sometimes called stakeholders.
- Internal Audit
- A first-party audit conducted by or on behalf of the organization itself to verify the QMS conforms to ISO 9001 and is effectively implemented. Required at planned intervals by Clause 9.2. Internal audit checklist & questionnaire →
- ISO 9001
- The international standard that specifies requirements for a quality management system. Organizations use it to demonstrate the ability to consistently provide products and services that meet customer and regulatory requirements. The current version is ISO 9001:2015. What is ISO 9001? →
- Management Review
- A formal review of the QMS by top management at planned intervals to ensure its continuing suitability, adequacy, effectiveness, and alignment with strategy. Required inputs and outputs are defined in Clause 9.3. Management review (Clause 9.3) guide →
- Nonconformity
- The non-fulfillment of a requirement. In an audit, a nonconformity (NC) is raised when evidence shows a requirement of ISO 9001 or your own QMS is not being met. NCs are often classified as major or minor. Nonconformance report (NCR) template →
- Objective Evidence
- Data or records supporting that something exists or is true, based on observation, measurement, or testing. Auditors look for objective evidence rather than assertions — for example, a timestamped training record rather than "we trained everyone."
- PDCA (Plan-Do-Check-Act)
- A four-step iterative cycle for continual improvement. ISO 9001 is structured around PDCA: plan objectives and processes, do (implement them), check (monitor and measure), and act (take action to improve).
- Procedure
- A specified way to carry out an activity or a process. Procedures describe who does what, in what order, and under what controls. They are typically controlled documents.
- Process
- A set of interrelated activities that transforms inputs into outputs. ISO 9001 uses the "process approach" — managing activities as connected processes rather than isolated tasks.
- Quality
- The degree to which a set of inherent characteristics of a product, service, or process fulfills requirements. In ISO terms, quality is about meeting requirements consistently — not about being "premium."
- Quality Management System (QMS)
- The set of policies, processes, procedures, and records an organization uses to direct and control its activities related to quality. ISO 9001 specifies the requirements a QMS must meet.
- Quality Manual
- A document describing the scope and structure of an organization’s QMS. No longer mandatory under ISO 9001:2015, but still widely used to orient employees and auditors to how the system fits together. Quality manual template →
- Quality Objectives
- Measurable goals set by the organization to drive quality performance, consistent with the quality policy. Clause 6.2 requires objectives to be measurable, monitored, communicated, and updated. Quality objectives template →
- Quality Policy
- A statement of the organization’s overall intentions and direction related to quality, set by top management. It provides the framework for setting quality objectives. Defined in Clause 5.2. Quality policy (Clause 5.2) guide →
- Record
- Documented information providing evidence of results achieved or activities performed — for example, training records, audit reports, and inspection results. Records must be retained and protected per Clause 7.5.
- Retraining
- Re-delivering and re-verifying training when a controlled document changes, on a recurring schedule, or after a competence gap is identified. Keeping retraining records current is a common audit pain point. Automatic retraining in Training Tiger →
- Risk-Based Thinking
- The ISO 9001:2015 expectation that organizations identify, consider, and address risks and opportunities that could affect conformity and customer satisfaction. It replaced the standalone "preventive action" clause. Risk register template →
- Root Cause Analysis
- A structured method (such as 5 Whys or fishbone analysis) to identify the underlying cause of a nonconformity, so corrective action addresses the source rather than the symptom.
- Scope (of the QMS)
- A documented statement of the boundaries and applicability of the quality management system — which products, services, sites, and processes it covers, and any requirements determined to be not applicable. Required by Clause 4.3.
- Skills Matrix (Competence Matrix)
- A table mapping employees (or roles) against required competencies or documents, showing who is trained on what and where gaps exist. A practical tool for demonstrating Clause 7.2 competence at a glance. Skills matrix template →
- SOP (Standard Operating Procedure)
- A documented, step-by-step instruction describing how to perform a routine activity consistently. SOPs are a core type of controlled document in most quality management systems. SOP template →
- Surveillance Audit
- A periodic audit (usually annual) conducted by your certification body between full recertification audits to confirm your QMS remains effective and conformant. Maintaining records continuously — not just before the audit — is key to passing.
- Top Management
- The person or group who directs and controls an organization at the highest level. ISO 9001 Clause 5 assigns specific leadership responsibilities to top management, including accountability for QMS effectiveness.
- Traceability
- The ability to trace the history, application, or location of an item or activity through recorded identification — for example, linking a finished product back to its materials, processes, and inspections.
- Training Record
- Documented evidence that a specific person was trained on a specific document or topic — typically capturing who, what, when, the version trained on, who delivered or verified it, and how competence was confirmed. How to track employee training for ISO 9001 →
- Verification vs Validation
- Verification confirms that requirements have been met ("did we build it right?"). Validation confirms that the result meets the needs of its intended use ("did we build the right thing?"). ISO 9001 uses both terms with distinct meanings.
- Work Instruction
- A detailed document describing exactly how to perform a specific task, usually more granular than a procedure. Work instructions sit at the operational level of the document hierarchy. Work instruction template →
A
C
D
E
I
M
N
O
P
Q
R
S
T
V
W
From vocabulary to a working system.
Training Tiger turns these concepts into day-to-day practice — controlled documents, competence tracking, automatic retraining, and audit-ready records in one place.
Start your free 30-day trial