Free ISO 45001 Gap Analysis Tool

You need to determine the external and internal issues that are relevant to your organization.

Click here to see an example of Procedure for Determining the Context of the Organization and Interested Parties.

You need to determine the interested parties for your OH&S management system, their relevant needs requirements, and which of these become compliance obligations.

Click here to see an example of List of Interested Parties, Legal and Other Requirements.

You need to determine and document the boundaries and applicability of your OH&S management system by considering external and internal issues, compliance obligations, physical boundaries, what you control and influence and your activities, products and services.

Click here to see an example of Scope of the OH&S Management System.

An OH&S policy must be established that is appropriate for the organization, provides a framework for OH&S objectives, and shows commitment to protecting the OH&S, meeting compliance obligations and continual improvement.

Click here to see an example of OH&S Policy.

The organization needs to establish a process for consultation and participation of employees that defines mechanisms, training, time, and resources necessary its effectiveness.

Click here to see an example of Procedure for Communication, Participation and Consultation.

You need to establish, implement and maintain a process for hazard identification taking into account past relevant incidents, how work is organized, social factors, leadership and culture in the organization, emergency situations and actual or proposal changes, and maintain documented information about these.

Click here to see an example of Procedure for Addressing Risks and Opportunities and OH&S Hazards.

You need to establish OH&S objectives for the OH&S management system that are measurable. You should monitor, communicate, update, and document, and plan actions to achieve them.

Click here to see an example of OH&S Objectives.

You need to determine the necessary competence required of persons who will perform functions within the OH&S management system processes and provide training where needed. You should retain documented information as an evidence of competence and of training provided.

Click here to see an example of Competence, Training and Awareness Procedure.

You need to take actions to ensure persons doing work within the OH&S management system know the OH&S policy, objectives, compliance obligations, hazards & risks relevant to them and their part in the OH&S performance, including results of relevant incident investigations.

Click here to see an example of Record of Attendance.

You need to determine the what, when, with whom, how, and who of the OH&S management system communication, for both internal and external communications relevant to the OH&S management system, taking into account its legal and other requirements, and retain documented information as evidence of OH&S management system communication.

Click here to see an example of Procedure for Communication, Participation and Consultation.

You need to set up a process to control documented information of the OH&S management system. The procedure should specify approval, review and update, change identification, relevant version availability, document legibility, control of external documents and prevention of obsolete document use.

Click here to see an example of Procedure for Document and Record Control.

You need to plan, implement, control and maintain the processes needed to meet requirements of the OH&S management system and implement the required actions to address risks and opportunities according to criteria for the processes and maintain and retain this documented information.

Click here to see an example of Procedure for Operational Control.

You need to establish a process for the implementation and control of planned temporary and permanent changes that impact OH&S performance.

Click here to see an example of Procedure for Change Management.

You need to establish, implement and maintain processes to respond to any potential emergency situations to prevent OH&S impacts.

Click here to see an example of Procedure for Emergency Preparedness and Response.

You need to test planned responses where practicable and review and revise as necessary.

Click here to see an example of Emergency Response Drill Record.

You need to determine the monitoring and measurement needs, how it will be done, and when it shall be performed for the processes of the OH&S management system. You need to analyze and evaluate the data and information arising from monitoring and measurement.

Click here to see an example of Matrix of OH&S Performance.

You need to establish, implement and maintain a process to evaluate how you fulfill your compliance obligations.

Click here to see an example of Compliance Evaluation Record.

You need to have audit procedures to evaluate the OH&S management system against the planned arrangements (including effectiveness and maintenance) at planned intervals and results must be reported to management.

Click here to see an example of Procedure for Internal Audit.

Top management must review the data from the OH&S management system at planned intervals to assess the need for change in the OH&S management system, resource adequacy, and the effectiveness of the OH&S management system. Records must be kept of the review.

Click here to see an example of Procedure for Management Review.

You need to establish, implement and maintain the process that includes reporting, investigating and taking actions, to determine and manage incidents and nonconformities and retain documented information about it. You need to take records of corrective actions taken to overcome nonconformities.

Click here to see the examples of Procedure for the Management of Nonconformities and Corrective Actions and Procedure for Incident Investigation.

After action is taken you need to asses the effects and update the OH&S management system if necessary. These actions need to be appropriate to the magnitude of the problem.

Click here to see an example of Registry and Status for Corrective Actions and Nonconformities.

You need to continually improve the suitability, adequacy, and effectiveness of the OH&S management system.

Click here to see an example of Procedure for Continual Improvement.