ISO 31000: RISK MANAGEMENT IN THE FOOD SECTOR
The international standard ISO 31000 is responsible for assessing and reducing the risks that occur in the development of business activities.
Specifically in the food sector, the UNE-ISO 31000:2010 establishes the principles and guidelines necessary to implement an efficient Risk Managenemt System that minimizes exposure to suffer risks to health, safety and the environment throughout the chain production, processing and marketing of food products and services.
The design and implementation of the Risk Management System (usually in the context of ERM: Enterpise Risk Management) will depend on the diverse needs of each company and its specific objectives, considering its size, structure, type of operations, processes, projects, products, services, etc..
The structure of the SGR, conforms to the ISO 31000 standard focuses on three basic variables:
1. Principles of Risk Management. To which must be estimated the following factors:
- Creating value. Contribute to the achievement of objectives and improving aspects such as health and safety, legal and regulatory compliance, environmental protection, etc..
- It´s integrated in the processes of an organization. It should not be understood as an isolated activity but as part of the principal activities and processes of an organization.
- Part of the decision making. Risk management helps decision making information to evaluate the alternatives.
- Try explicitly uncertainty. Risk management concerns aspects of decision making that are uncertain, the nature of that uncertainty and it may be treated.
- It is systematic, structured and appropriate it. Contributes to the efficiency, and consequently to obtain reliable results.
- It is based on the best information available. The inputs of the process of risk management are based on information sources such as experience, observation, forecasts and expert opinion.
- It is made to measure. Risk management is aligned with the external and internal context of the organization and its risk profile.
- Takes into account human and cultural factors. Recognizes the ability, perception and intentions of people, both external and internal, which can facilitate or hinder the achievement of the objectives of the organization.
- It is transparent and inclusive. Appropriate and timely involvement of stakeholders (stakeholders), and in particular those responsible at all levels, ensuring that risk management remains relevant and current.
- This is dynamic, iterative and responsive to change. The organization shall ensure that risk management detects and responds to changes in the company.
- Facilitates continuous improvement of the organization. Organizations should develop and implement strategies to continually improve both risk management and any other aspect of the organization.
2. Structure for risk management. Should be established for which a transverse commitment of the entire organization, starting from the direction to all departments and employees, facilitating the design of said structure adapted.
3. Finally the Process of SGR, ensure proper implementation of the SGR, efficient mechanisms for monitoring and evaluation, monitoring and periodic review and treatment to be provided, along with the continued improvement of the system.
The design and implementation of the SGR legislation will enable the organization:
- Encourage proactive management (rather than reactive).
- Identifying and treating risk at all levels of the organization.
- Detect identifying opportunities and threats.
- Comply with legal requirements and international standards.
- Improve financial information.
- Improve corporate governance.
- Increase the confidence of stakeholders in the company.
- Establish a reliable basis for decision-making and planning.
- Improve controls.
- Deal effectively and use resources for risk management.
- Improve the effectiveness and operational efficiency.
- Increase safety and health at work.
- Improving prevention and incident management.
- Minimize losses.
- Improving organizational learning.
- Improving organizational resistance.
Note that the UNE/ISO 3100:2010, as it is a general rule, establishes guidelines for the treatment of specific risks but provides guidance for the implementation of a standards-compliant SGR individual risk management in any industry . Our final recommendation is to collect any additional information on safety and risks, in order to properly manage the design and implementation of concrete SGR sector specific activity of our companies.
+info:
- Course on AENOR UNE-ISO 31000: http://www.aenor.es/aenor/formacion/cursos/fichacurso.asp?curso=TR-01&anyo=2014&modal_origen=PR#.U6FpvpR_uSo
- Technology Platform and ISO 31000 certification ISOTools: http://www.isotools.org/2013/10/23/iso-31000-sector-alimentario/
- Spanish Association for Quality (AEC) and ISO 31000: http://www.aec.es/web/guest/centro-conocimiento/iso-31000