Internal audits of the food-safety system
Plain-language summary
Run planned internal audits to check the FSMS meets the standard and your own requirements, and is working in practice.
What the clause is really asking
Internal audit is how you find problems before a certifier or a consumer does. This clause requires a planned audit programme based on the importance and past performance of areas, conducted by objective and impartial auditors, with results reported to management and nonconformities acted on. It is the system checking itself honestly.
What auditors look for
Auditors review your audit programme, schedule and reports - do they cover the whole FSMS over the cycle, are auditors competent and independent of the area they audit, are findings real and closed out. A programme that always finds nothing is itself a red flag.
Typical evidence
Internal audit programme and schedule; auditor competence and independence records; audit reports and findings; corrective actions and close-out
How to comply — recommendations
Schedule audits across the whole system over a defined cycle, weighted toward higher-risk and weaker-performing areas. Use trained auditors who do not audit their own work, and expect them to find genuine issues. Track findings to closure and feed the results into management review.
Common nonconformities
Auditors auditing their own area; programme not covering the full FSMS; findings not closed out; audits that never find anything
Related clauses
ISO 22000 9.3, 10.1; ISO 9001 9.2; ISO 19011
Qlause provides interpretive guidance only and is not a substitute for the standard. Refer to your licensed copy of the relevant standard for the authoritative text.