Management of auditor's access rights

2017.07.26

The management of the auditor’s access rights on the ViaSyst Database has been improved to give to the CBs the possibility to manage auditor’s access to the data entered easily.

Starting point & Rationale

The Database offers the possibility to CBs Administrators to share the various information available with auditors and give them the possibility to work on Audit reports/Certificates following the access level rights assigned to them. 

The rights available on the Database are: 

  • Validation: Validate audit reports (CB validation) for assigned organizations and Add/Edit certificates – includes Edit/Write & read rights
  • Edit/write: Adding, editing & managing audits (for assigned organizations – includes read rights
  • Read: Read all audits, organizations & auditors data (for assigned organizations)

Assigning rights to auditors is 2 options: assigning overall roles or assigning roles organization per organization. The difference between these 2 options was sometimes confusing.

 

Implemented evolution or improvement

In order to simplify the management of auditor’s access rights and make the different level of roles assigned to each auditor more clear and visible, some parts of the Database have been reviewed and optimized.

Implications & Recommendations

These accesses can be managed through both the auditor’s access rights profile and the organization’s profile. 

From now, the access rights assigned to each auditor are clearly identified and visible through these 2 pages.

Detailed instructions on how to manage auditor’s access rights are provided in the following items of the ViaSyst Instructions for use knowledge base:

Note: For security reasons, we recommend you, for each access created or updated, to send the logins and passwords to users using different communication (for example, login by email, and password by skype). 

 

ViaSyst Team.

 

BENEFICIATE OF ASSOCIATED SERVICES, KNOW-HOWS AND MODULES

VIASYST ASSOCIATED SERVICES TO SCHEME OWNERS

ViaSyst is not a common IT company. ViaSyst has been founded and is managed by its 2 unique shareholders which have following background: :
management system (mostly ISO) audit & certification (own CB from 1998 to 2015), scheme management (GFSI benchmarked), standardisation (ISO 9001 & 22000 families), and training. Thus, ViaSyst, with an efficient team, is in an ideal situation to assist scheme owners to analyse data and target investigations – and/or to develop training modules.

E-LEARNING & PEDAGOGICAL ENGINEERING

ViaSyst has a wide validated experience and leadership in e-learning pedagogy, developed since 2000. According to the pedagogical objectives and approaches, ViaSyst develops adapted e-learning platforms.

Thus, ViaSyst can assist you as a scheme owner to design, develop and deploy training modules for your scheme users, e.g. CBs, auditors, CB super-users, major stakeholders.

AUDITOR COMPETENCE CERTIFICATION KNOW-HOW & PLATFORM

Auditor competence is a burning issue. The furthermore at scheme owner’s level, with multiple CBs involved, in multiple countries.

ViaSyst has both experience and a remote competence assessment platform to put auditor’s competence under control, at a global scheme level.

This is a typical example of what kind of partnership ViaSyst is aiming to develop with scheme owners over the time.