Phase 1:Pre-Audit Preparation

  Blog    |     March 04, 2026

Auditing a factory's Design Change Process (DCP) is critical for ensuring product quality, regulatory compliance, safety, and operational efficiency. Here’s a structured approach to conduct a comprehensive audit:

  1. Define Scope & Objectives

    • Identify which products, processes, and departments are covered.
    • Set goals: e.g., verify compliance with standards (ISO 9001, IATF 16949), identify risks, or assess process efficiency.
    • Align with regulatory requirements (e.g., FDA, EU MDR).

  2. Review Documentation

    • Examine:
      • DCP procedure (written process).
      • Templates (change requests, impact assessments, verification reports).
      • Historical change records (past 6–12 months).
      • Training records for personnel involved.
      • Customer/supplier change notifications.

  3. Plan the Audit

    • Create a checklist based on key process stages.
    • Schedule interviews with cross-functional teams (Engineering, Quality, Production, Purchasing).
    • Allocate time for document review, site tours, and process observation.

Phase 2: On-Site Audit Execution

Key Audit Areas & Questions

(Follow the DCP lifecycle)

Process Stage Audit Focus Key Questions
Initiation Change request completeness, justification, and traceability. - Is the request detailed (problem, solution, impact)?
- Is there a unique ID and date?
Impact Assessment Rigor of analysis (technical, quality, cost, safety, supply chain). - Was FMEA updated?
- Were production lines, tooling, and suppliers assessed?
- Were risks documented?
Review & Approval Multi-disciplinary review, decision-making, and authorization levels. - Did all relevant departments (QA, Production, Safety) review?
- Is approval matrix followed?
Implementation Controlled rollout, communication, and documentation. - Was implementation planned (phased vs. full)?
- Were operators trained?
- Was the change logged in ERP/MES?
Verification & Validation Testing, inspection, and sign-off. - Was prototype/production sample tested?
- Did QA verify compliance?
- Were customer requirements met?
Closure & Monitoring Effectiveness checks, documentation closure, and feedback loops. - Was post-implementation review conducted?
- Were issues tracked (e.g., CAPA)?
- Is the change recorded in BOM/prints?

Audit Methods

  • Document Review: Trace changes from request to closure. Check for completeness, approvals, and consistency.
  • Interviews: Ask open-ended questions (e.g., "Walk me through a recent change – what went well? What challenges arose?").
  • Observation: Watch how changes are implemented on the shop floor.
  • Data Analysis: Track metrics:
    • Average change lead time.
    • Rework/scrap rates post-change.
    • Number of changes requiring rework.

Phase 3: Post-Audit Reporting & Improvement

  1. Identify Findings

    • Classify issues:
      • Critical: Non-compliance, safety risks, regulatory violations.
      • Major: Process gaps causing inefficiency/quality issues.
      • Minor: Documentation lapses or minor deviations.

  2. Root Cause Analysis

    • Use tools like 5 Whys or Fishbone Diagram to address underlying causes (e.g., inadequate training, unclear roles).

  3. Report & Recommendations

    • Deliver a clear report with:
      • Audit scope, criteria, and dates.
      • Findings with evidence.
      • Corrective action plan (responsibilities, timelines).
      • Best practices for improvement.

  4. Follow-Up

    • Verify implementation of corrective actions.
    • Schedule periodic audits to ensure sustained compliance.

Critical Success Factors

  • Independence: Auditor should be impartial (e.g., internal QA or external consultant).
  • Cross-Functional Input: Involve Engineering, Production, and QA to avoid siloed perspectives.
  • Risk-Based Approach: Prioritize high-impact changes (e.g., safety-critical components).
  • Technology Leverage: Use digital tools (e.g., PLM systems) for traceability and real-time tracking.

Common Pitfalls to Avoid

  • Superficial Reviews: Failing to assess actual implementation vs. paperwork.
  • Ignoring "Soft" Factors: Not evaluating communication gaps or training adequacy.
  • Neglecting Post-Change Monitoring: Skipping effectiveness reviews.
  • Overlooking Supplier Changes: Not auditing how supplier-driven changes are handled.

Audit Checklist Summary

[ ] Change requests are standardized and complete.
[ ] Impact assessments cover all functional areas.
[ ] Approval matrix is strictly followed.
[ ] Changes are verified before full rollout.
[ ] Post-implementation reviews are conducted.
[ ] All changes are traceable in BOM/drawings.
[ ] Personnel are competent and trained.

By following this structured approach, you’ll ensure the DCP is robust, compliant, and continuously improving, reducing risks and enhancing product quality.

Previous: Core Principles of Verification
Next: 1.Business Pressure Deadlines

Request an On-site Audit / Inquiry

SSL Secured Inquiry