Beruflich Dokumente
Kultur Dokumente
Introduction:
SA8000: 2014 requires certified organisations to build, maintain and continually improve a functional
management system to ensure full and sustained compliance with the Standard. As this management
systems matures, it must be regularly assessed to identify improvement opportunities, set priorities, and
establish action plans to achieve sustained, successful implementation of SA8000. The methodology of
this assessment under SA8000: 2014 is called Social Fingerprint. Social Fingerprint is a set of tools that
helps organisations measure and improve their management systems for social performance. Social
Fingerprint includes a self-assessment taken by the organisation and an independent evaluation
conducted by the auditor. By incorporating Social Fingerprint into SA8000: 2014, SAI aims to increase the
integrity, credibility and effectiveness of SA8000 certification and build the capacity of SA8000 certified
organisations to develop mature management systems.
Social Fingerprint provides organisations and auditors with a clear, consistent methodology for assessing
management system maturity and compliance with the SA8000 management system requirements. This
enables organisations to identify weak areas within their own management systems so that they can make
specific, targeted improvements. It also enables auditors to consistently evaluate the organisations
management system to determine their readiness for certification and assess their implementation of
improvements. By using one, consistent methodology, all organisations and auditors will now have the
same understanding of SA8000 management system requirements, which will improve the
standardization and implementation of SA8000 compliance across sectors and countries.
1|P a g e
v1: 6/30/15
3|P a g e
v1: 6/30/15
CB auditors conduct the SA8000 audit and then the Lead Auditor completes the independent
evaluation online.
The CB identifies areas of improvement and the organisation makes the necessary process
changes to improve its compliance.
Please see pg. 7 for more information about how Social Fingerprint fits into the SA8000:2014 certification
process.
THE SOCIAL FINGERPRINT SELF-ASSESSMENT:
Many Management System standards, such as ISO9001, include a self-assessment that allows
organisations to measure the maturity of their management systems. The self-assessment provides an
overall understanding of how the organisation views its own performance and enables an organisation to
identify its strengths and weaknesses to promote continual improvement over time. Due to the centrality
of the management system to SA8000: 2014, SAI has incorporated the Social Fingerprint self-assessment
into the audit process.
Thus, organisations interested in pursuing SA8000: 2014 certification must take a Social Fingerprint selfassessment as part of the application process.
Currently certified organisations must take the Social Fingerprint self-assessment in advance of their
transition audit from SA8000: 2008 to SA8000: 2014 or recertification audit to SA8000: 2014. Please see
Advisory 4Afor more information.
Practical Information about the Self-Assessment:
The self-assessment primarily serves as a capacity-building tool for the organisation; it teaches the
organisation about the components of the management system through the questions and answers, and
highlights the aspects of the system and the documentation that the organisation should have in place
and available for the audit.
Once the organisation has completed the self-assessment, its answers become available to the CB auditor
in the Question and Answer Report (Q&A Report) in the SAI Training Center. (Please see the Technical
Instructions for information on how to access the Q&A Report online).
4|P a g e
v1: 6/30/15
The SA8000 Lead Auditor completes the Social Fingerprint Independent Evaluation online (or using the
offline tool in the case of poor internet access at the audit site) after conducting the audit and collecting
evidence about the maturity of the organisations management system. The Independent Evaluation
should be completed at the same time as the writing of the audit report it can be conducted onsite, but
does not have to be. (Please see the Technical Instructions for information on how complete the
independent evaluation online.) This independent evaluation produces an externally validated Social
Fingerprint score for the organisation.
Social Fingerprint judges the maturity of an organisations SA8000 management system from both the
organisation and the CBs perspective; it is not a checklist to evaluate an organisations compliance.
Auditors must still conduct a comprehensive audit of the company and its management systems, and
input information into the independent evaluation as data points. The Social Fingerprint score provides
another perspective of an organisations management system maturity and feeds into the overall audit
findings and into the certification decision-making process. The scores do not replace the submission of
findings or non-conformances and auditors cannot write non-conformances against a Social Fingerprint
score. Auditors should still identify and write non-conformances as required by Procedure: 2015.
Practical Information about the Independent Evaluation:
The Social Fingerprint self-assessment and independent evaluation use the same set of questions. There
are 3 to 7 questions for each of the 10 management system categories. Each question has 5 answers, each
representing one of the 5 levels of maturity. (Please see the Technical instructions for information on how
to view the Independent Evaluation results).
The questions and answers generally assess an organisations compliance with the criteria of the SA8000;
however, they do not necessarily match the language of the Standard or the order of the requirements in
the Standard. Some criteria within each category may be addressed by more than one question, and some
questions may address more than one criteria within each category. Furthermore, there is some overlap
between questions in different categories. (For example, there are questions about senior management
commitment in both Category 1: Policies, Procedures and Records, and Category 2: Social Performance
Team).
The independent evaluation utilizes the same questions and answers as the self-assessment for the
organisation. Therefore, all of the questions are written using personal plural pronouns: we or our.
5|P a g e
v1: 6/30/15
1.
2.
3.
4.
5.
We dont have such procedures because the people at our organisation know that they are
expected to follow the rules.
We have some written procedures that tell people how to follow our rules regarding labour
practices.
We have specific written procedures that tell people how to follow our labour policies.
We have written procedures that tell people how to follow our policies in order to implement
SA8000. We have updated them in response to specific issues.
We have written procedures that tell people how to implement SA8000. We regularly check
to make sure that our procedures are working and revise them accordingly.
The auditor should read the question and answers above as follows:
Question: The following best describes the organisations operating procedures for its labour policies.
Answer Options:
1.
2.
3.
4.
5.
The organisation doesnt have such procedures because the people at the organisation know
that they are expected to follow the rules.
The organisation has some written procedures that tell people how to follow its rules
regarding labour practices.
The organisation has specific written procedures that tell people how to follow its labour
policies.
The organisation has written procedures that tell people how to follow its policies in order
to implement SA8000. They have updated the procedures in response to specific issues.
The organisation has written procedures that tell people how to implement
SA8000. They regularly check to make sure that the procedures are working and revise them
accordingly.
6|P a g e
v1: 6/30/15
1. Organisation completes the Self- Assessment through the SAI online training center before the
Stage 1 Audit.
2. During the initial certification cycle, auditors conduct a Social Fingerprint Independent
Evaluation at the following audits:
a. Stage 1
b. Stage 2 (Certification to SA8000:2014)
c. Surveillance 1
d. Surveillance 3
e. Recertification
3. After the initial certification cycle, the Social Fingerprint process (self-assessment and
independent evaluation) occurs at the recertification audit (every 3 years).
SA8000:2008 CERTIFIED ORGANISATIONS UP FOR RECERTIFICATION FROM SEPTEMBER 1, 2015 TO DECEMBER 31,
2016:
1. Organisation completes the Self-Assessment through the SAI online training center before the
Recertification Audit.
2. Auditors conduct a Social Fingerprint Independent Evaluation at the following audits:
a. Recertification Audit to SA8000:2014
b. Surveillance 1
c. Surveillance 3
d. Recertification
3. After a full recertification cycle that includes Social Fingerprint, the Social Fingerprint process
(self-assessment and independent evaluation) occurs during the recertification audit (every 3
years).
SA8000:2008 CERTIFIED ORGANISATIONS THAT TRANSITION TO SA8000:2014 FROM SEPTEMBER 1, 2015 TO
DECEMBER 31, 2016:
1. Organisation completes the Self-Assessment through the SAI online training center before the
Transition Audit.
2. Auditors conduct a Social Fingerprint Independent Evaluation at the following audits:
a. Transition Audit to SA8000:2014.
b. After the Transition Audit, auditors follow the schedule below:
i. If transition audit occurs during a Surveillance 1 or 2 Audit: Auditors conduct a
Social Fingerprint Independent Evaluation at the Surveillance 3 and
Recertification Audit.
ii. If transition audit occurs during a Surveillance 3, 4 or 5 Audit: Auditors conduct a
Social Fingerprint Independent Evaluation at the Recertification Audit.
3. After completing the certification cycle with the transition, the Social Fingerprint process (selfassessment and independent evaluation) occurs during the recertification audit every 3 years.
7|P a g e
v1: 6/30/15
Organisations interested in Social Fingerprint and SA8000 have two avenues for entering the system:
1. The organisation can take the Social Fingerprint self-assessment directly from the SAI website and,
depending on the results, decide to pursue certification or not. If the organisation decides to pursue
certification, it will then contract with a CB.
2. The organisation can sign a certification contract with a certification body as an applicant for SA8000:
2014. The CB will then direct the organisation to the SAI website to complete the Social Fingerprint
self-assessment.
After the organisation completes the self-assessment, it can decide to continue to pursue certification or
not. At this point, some organisations may realize that their management system is not ready for SA8000
and decide to pursue further capacity building to improve their systems before advancing further. SAI
encourages organisations to fully consider the maturity of their management system before moving
forward in the process.
If the self-assessment score is less than 3: As part of its due diligence, the CB should take this information
into account when planning the Stage 1 Audit. The CB may caution the organisation about proceeding to
the Stage 1 Audit because its management system may not be mature enough to achieve SA8000
certification based on this score. The organisation should seek to improve its system in areas identified as
weak by the self-assessment. If the organisation decides to proceed anyway, the CB should inform it that
it needs to create a plan to improve upon the weak areas. During the Stage 1 audit, the auditor will
evaluate the management system and investigate the organisations implementation of this plan.
STAGE 1 AUDIT:
The CB Lead Auditor creates a Stage 1 Audit Plan that includes enough time to perform an onsite
management system documentation review and the Social Fingerprint independent evaluation. The Lead
Auditor sends the audit plan to the applicant organisation prior to the Stage 1 audit.
Note: All document reviews must now be performed onsite.
The auditor will conduct the Stage 1 audit, in accordance with SAAS Procedure 200, and then complete
the Social Fingerprint independent evaluation.
If the independent evaluation score is less than 3: The CB should caution the applicant organisation about
proceeding to the Stage 2 audit because its management system does not appear to be mature enough
to achieve SA8000 certification based on this score. If the CB allows the organisation to proceed to the
Stage 2 audit, the CB must record this in the Stage 1 Audit Report.
STAGE 2 AUDIT:
The CB Lead Auditor creates a Stage 2 Audit Plan that includes enough time to perform an onsite
management system documentation review and the Social Fingerprint independent evaluation. The Lead
Auditor sends the audit plan to the applicant organisation prior to the Stage 2 audit.
If the independent evaluation score is 1: Organisations with a score of 1 likely have significant major nonconformances and are not ready for certification.
8|P a g e
v1: 6/30/15
Surveillance audits only assess specific sections of the organisations management system. SAAS
Procedure 200 Section 15 outlines the mandatory items to be reviewed during surveillance audits.
Practically, the review of those items will enable the auditor to evaluate the organisations performance
for 7 of the 10 management system criteria and answer the independent evaluation questions for those
items. If the other three criteria (Social Performance Team, External Verification and Stakeholder
Engagement and Management of Suppliers and Contractors) are not covered during the specific
surveillance audit (i.e. if they are not related to a non-conformance), then the auditor should use the
evidence from a prior audit to complete the independent evaluation for those criteria.
SOCIAL FINGERPRINT DURING TRANSFER AUDITS:
Transfer audits should be considered the same as Stage 2 Audits for the use of Social Fingerprint. The
transferee client must complete a self-assessment before the transfer audit.
9|P a g e
v1: 6/30/15
10 | P a g e
v1: 6/30/15