Ask the Compliance Expert: Unannounced Audits

By Sangita Viswanathan
No Comments

Do you know when your next unannounced audit will be? And can a site refuse entry to an auditor? In this Q&A, Jane Pappin of Cert-ID provides some answers.

Food companies are now handling and preparing for increased number of inspections and audits. Food safety rules under the Food Safety Modernization Act have proposed unannounced audits of food facilities as a way to include another level of security to ensure that these facilities are compliant with the various standards. Such audits, regulators hope, will give a more realistic picture of compliance, rather than facilities appearing to comply just the day of the inspection.

Food companies that have been abiding by all the requirements of the specific food safety standard don’t have to do anything differently than what they have been doing all along, says Jane Pappin, Certification Director at Cert-ID: “If they have a strong food safety and quality management program in place, have been conducting regular internal audits, and gap analysis etc., they shouldn’t have anything to worry about. The auditor is not going ask anything that they would be unprepared for,” she adds.

We present below excerpts from a Q&A with Pappin.

Q: How will my site know if our next audit is unannounced or not?

A: SQF has indicated that the Certification Body (CB) is responsible for telling the site when their unannounced audit will be. As the CB is charged with reminding the site of their upcoming renewal audit approximately three to five months in advance of the re-audit due date, the site could be informed then.

Once the site is told when their unannounced audit will be, there is opportunity to negotiate black-out dates – these are only for days when the site will not be in production. The unannounced audit will always take place within the site’s renewal audit window, which is from 30 days before the site’s re-audit due date (which is listed on your certificate) to 30 days after the re-audit due date. 

A site must have one unannounced audit per three-year cycle. For those sites already certified, their first unannounced audit will take place either in 2014 (from July 3 to Dec 31), 2015 or 2016 and they will be informed by their CB which year it will be in. Their second unannounced audit will take place in either 2017, 2018 or 2019, and so on. Once your unannounced audit year is determined, this will be recorded in SQF’s Reliance Database. Even if you change CBs, this information will go with your facility’s profile and your unannounced audit year will not change.

Q: What happens if the auditor arrives for the unannounced audit and the site refuses entry?

A: The ramifications of disallowing the auditor entry to your facility are far reaching: First, you will still be charged for the visit, including auditor expenses. Second, your facility will immediately be put into suspension. Third, an announced audit must now take place no later than 30 days from the date you denied entry to the auditor. If this doesn’t happen, your certification will be withdrawn. Fourth, because you were put into suspension, you will also be required to have a surveillance audit six months after the 30 day audit. Fifth and last, your next audit will then be your unannounced audit.

What’s Changing with Nutritional Labeling and Serving Sizes?

By Michael Biros
No Comments

Bailey Pudenz, Nutritional Coordinator at Eurofins Nutrition Analysis Center, explains what the proposed changes are, and how the labeling would need to change under the new requirements.

FDA has proposed changes to the current nutritional labeling. Currently both the proposed nutritional labeling and serving size rules are in comment period which will close June 2, 2014. Once the final rule is published, it will become law 60 days after the publication date. Industry will then have two years to achieve compliance.

Calories

Calories, calories from saturated fat, the 2000 calorie reference, and percent daily value for calories will remain the same. However, calories from fat will be removed completely. FDA wants consumers to be more aware of the amount and type of fat they eat rather than the calories the fat contributes.

Fat

Total fat, saturated fat, trans fat, poly and monounsaturated fat, and cholesterol will remain the same. FDA considered changing the cutoff value for declaration of zero trans fat, but they have chosen not to change this either. Currently this value is 0.5g per serving. Anything less than this can be declared as zero. FDA is not allowing mandatory or voluntary declaration of the omega-3 fatty acids, EPA and DHA.

Carbohydrates

There are no proposed changes to mandatory declaration or daily reference value for total carbohydrates. However, FDA has proposed changing the name to total carbs. Other carbohydrates, such as starches, are no longer allowed to be voluntarily declared on the label.

FDA is also proposing to change the calories from carbohydrates calculation. The calories from carbohydrates would then be used to calculate the total calorie content in the product. This proposal would exclude soluble and insoluble non-digestible carbohydrates from the calculation. Calories from carbohydrates would then be calculated using 4kcal/g less the amount of non-digestible carbohydrates. Soluble carbohydrates will then be added at a value of 2 kcal/g.

Sugars

There are no proposed changes to mandatory declaration or daily reference value for sugars. However, the name will be changed to total sugars and and a new category of added sugars will be mandatory to declare. FDA has developed an extensive list of what is considered an added sugar: brown sugar, corn sweetener, corn syrup, dextrose, fructose, fruit juice concentrate, glucose, high fructose corn syrup, honey, lactose, maltose, malt sugar, molasses, raw sugar, turbinado, sugar, and sucrose. FDA acknowledges that there is no analytical method available to determine added sugars and will rely on ingredient records to determine the amount and type of added sugars. There are no proposed changes to sugar alcohols.

Dietary fiber

Dietary fiber will still be mandatory to declare, however FDA is proposing to increase the daily reference value to 28g per day. They will adopt the Institute of Medicine’s definition of total fiber which focuses on fiber that is beneficial to human health. There are no proposed changes to soluble or insoluble dietary fiber. 

Protein and Sodium

There are no proposed changes to protein. Sodium is still mandatory to list and FDA is considering lowering the daily reference value from 2400mg to 2300mg.

Essential Vitamins

Vitamins A and C will no longer be mandatory to declare on the label, but can still be voluntarily listed. Vitamin D will be mandatory to declare. FDA has proposed changing the units for vitamin A from IU to µg RAE (Retinol Activity Equivalents) and for vitamin D from IU to µg.

Vitamin K, vitamin B6, vitamin B12, thiamin, riboflavin, biotin, and pantothenic acid will still be voluntary to declare. FDA is proposing the voluntary labeling of choline. The units for vitamin E will be changed from IU to mg. Folate/folic acid will still be voluntary, but they will no longer be interchangeable and the units will be changed from µg to µg DFE (Dietary Folate Equivalents). Niacin is still voluntary to declare, but the units will be changed from mg to mg NE (Niacin Equivalents).

Vitamins
Current RDIs
Proposed RDIs
Biotin
300 µg
30 µg
Choline
550 µg
550 µg
Folate 
400 µg
400 µg DFE
Niacin 
20 mg  
16 mg NE
Pantothenic Acid 
10 mg  
5 mg 
Riboflavin 
1.7 mg 
1.3 mg 
Thiamin 
1.5 mg 
1.2 mg
Vitamin A 
5000 IU 
900 µg RAE
Vitamin B6 
2.0 mg 
1.7 mg
Vitamin B12 
6 µg 
2.4 µg
Vitamin C 
60 mg 
90 mg
Vitamin D 
400 IU 
20 µg
Vitamin E 
30 IU 
15 mg
Vitamin K 
80 µg 
120 µg

Essential minerals

Calcium and iron will both remain mandatory to declare. It will be required to declare potassium. 

Phosphorus, iodine, magnesium, zinc, selenium, copper, manganese, chromium, molybdenum, and chloride will still be voluntary to declare. Fluoride will be voluntary to declare and FDA is not defining a daily reference value. 

Minerals
Current RDIs
Proposed RDIs
Calcium
1000 mg
1300 mg
Chloride
3400 mg
2300 mg
Chromium
120 µg
35 µg
Copper
2.0 mg
0.9 mg
Iodine
150 µg
150 µg
Iron
18 mg
18 mg
Magnesium
400 mg
420 mg
Manganese
2.0 mg
2.3 mg
Molybendum
75 µg
45 µg
Phosphorus
1000 mg
1250 mg
Potassium
3500 mg
4700 mg
Selenium
70 µg
55 µg
Zinc
15 mg
11 mg

Serving sizes

Changes to RACCs (Reference Amount Customarily Consumed) were proposed if consumption data increased or decreased by 25 percent or more. Based on this, about 17 percent of the RACCs will change. FDA will also be adding 25 new RACC categories. Changes in the RACC can potentially change claims such as “low fat” or “a good source of calcium.”

FDA has proposed specifications for how to determine servings per container. Products containing 200 percent or less than the RACC are considered a single serving. Products containing 200-400 percent of the RACC can be labeled with dual columns (single serving and per container). Products with more than 400 percent of the RACC are multi-serving.

  

Nutrition Labels – Old and New
Nutrition-Label-Old-May-2014 Nutrition-Label-New-May-2014

Formatting

Calories and servings per container will be increased in size. The location of servings per container and serving size will be switched. Serving size will be right justified. The phrasing of amount per serving will be changed to include the serving size. Calories from fat will be removed. Percent daily value will be located on the left side of the label. Added sugars will be included below sugars. Mandatory vitamins and minerals will have quantitative amounts in addition to percent daily value. FDA is requesting comments on how the footnotes should be adjusted.

Bob Savage, President and Founder of the HACCP Consulting Group

FSQA: Creating HACCP Excellence

By Michael Biros
No Comments
Bob Savage, President and Founder of the HACCP Consulting Group

For a successful Food Safety and Quality Assurance program, there must be management commitment and measurable expectations set. Senior management has to be committed to the program. They are the foundation for everything in food safety. They have to provide resources to develop and implement the plans across different departments as well as provide for training and encourage communication, advises Robert A. Savage, President and Founder of The HACCP Consulting Group.

Sharing some lessons learned from decades of HACCP implementation experience, Savage spoke at a recent webinar on FSQA: Creating HACCP Excellence, presented by SafetyChain Software. We present excerpts below. 

A few years ago, there was a very serious Salmonella outbreak in peanut butter. It appears that company shopped around for negative salmonella results and then shipped the product. It’s a worst case scenario, but in this case, short term profitability at the expense of food safety resulted in the over 600 illnesses and a few deaths as well as the bankruptcy of the company, described Savage.

Role of GMPs in Creating and Minimizing CCPs

Without good GMPs, facilities tend to have more CCPs than necessary. There has to be a good balance between GMPs and CCPs. When companies understand the the relationship between HACCP, GMPs, and CCPs, typically the HACCP plan would not have more than 3 or 4 CCPs and everything else is covered by GMPs. 

Best practices for HACCP management must be committed from the beginning and throughout the process. GMPs should be in place prior to even beginning to revamp the HACCP plan. Multidisciplinary HACCP teams, including QC, QA, Lab, Sanitation, Product Development and Sales, experts, should contribute to the process in developing the plan. Having a multidisciplinary team helps with achieving buy-in or company-wide commitment to the plan. 

Companies have been pretty good with monitoring, but there’s still some confusion between verification and validation. Verification is a check of the checkers. When CCPs are identified and monitored, verification is making sure that the company says what it’s doing and is doing what it says. Validation asks if the company has the right CCPs and how can they prove it. 

Best Practices for Audit Prep

USDA regulated plants have routine inspections to verify what the companies do on an everyday basis. Separate from these routine inspections, USDA also performs food safety assessments which can take days or weeks to complete. Companies under USDA jurisdiction should do their own food safety inspection to prepare for these FSIS audits. FDA regulated plants may go months or years between inspections. These facilities should have third party audits such as SQF or other audits. 

GFSI schemes have taken hold in the US and around the world. The popular one in the U.S. is SQF. Companies that meet SQF standards should have no problem meeting new FDA FSMA regulations.

Is Your Document Control System Effective?

By Food Safety Tech Staff
No Comments

This article describes eight traits to look for in a good Document Control System, and the overlying benefits that can be reaped from using Document Control to drive compliance in your processes.

Document Control is one of the most common applications in compliance today. It allows an organization to manage the creation, approval, distribution and archiving of all controlled documents and processes. It is an integral part of Quality, Environmental Health and Safety (EHS), or Compliance Management systems. This is because in order to effectively maintain consistency in processes, job descriptions, work instructions, and more, an organization needs to ensure that records are controlled. It also keeps tasks on track and ensures that they are accomplished on time. This article describes eight traits to look for in a good Document Control System, and the overlying benefits that can be reaped from using Document Control to drive compliance in your processes. 

Eight characteristics of an effective Document Control System

1. Workflows for All Document Types: No two document types are alike. There are differences within each that should be taken into consideration. For example, a job description cannot be treated the same as a work instruction or procedure. Each of these types of documents may have separate approvers, managers, and workflows and should be handled in a unique manner. A good Document Control System can automate and manage documents efficiently. A great Document Control System can facilitate dedicated workflows for all document types, each complete with their own routing options.

2. Ability to Configure Metadata: When in the Document Control form, one of the critical aspects is the ability to segment that data and describe the type of document. This is accomplished through metadata, which is essentially a high level description of each document. It assigns a department that the document is associated with, describes priority level, ISO elements, and records specific information. Metadata also helps to categorize and report on data. It helps to search and filter so it can be found in the system and categorized. The key for an organization is to find a system that will allow it to configure metadata based on document type, in a flexible manner. This will allow them to change fields, add categories, keywords, and more. This configurability within Document Control forms is critical to adapt the Document Control System to meet unique business needs.

3. Integration with MS Office Documents: The majority of organizations use Microsoft Office to manage most of their documents and files such as Word, Excel, and PowerPoint are still the standard for creating documents within businesses today. Therefore, the ability for a Document Control System to work well with MS Office is an important distinction. This way, an organization can preserve the metadata and sync both components. If a change is made in the Document Control form, it is reflected in the Word file, and vice versa. This integration links the two components together, so that one is never inconsistent with the other. 

4. Intelligent Business Rules for Review and Approval: The power of an automated Document Control System lies in its ability to route documents along the workflow. Documents can’t just be checked in or out, there needs to be a process of approval and review as well as document sign off —it has to go through different phases of workflow. This makes flexible routing options a necessity in a Document Control System. A good Document Control System enables organizations to route documents to the next phase in the workflow, but also has intelligent business rules associated. 

5. Integration with Employee Training: A critical component to any Document Control System is that if a new document is created or an existing document is changed, people need to be trained. This is a vital reason for having Document Control process. During revision or creation of a document, the user should be able to specify the type of training associated with it. A bonus is the ability to automatically integrate training. Some companies include a “waiting release” phase. This means that before the document is released, it is out in a holding pattern—this is when training happens. The benefit is that employees can train on the document before it is released to world, so that when the document is released employees are already trained and knowledgeable on it. Some systems automatically have a Training System built into Document Control, which allows them to integrate Training with Document Control and to test their knowledge on that document. Ultimately, when there are changes made to any document, employees need to be apprised of new procedures and specifications and trained on any new revisions that are released. This process should be automated—manual tracking and training processes leave room for error. A Document Control System integrated with the Training application helps to easily define who needs training on each document. It also automatically updates training records for each employee, allows for self training, and automatically updates each employee status upon training completion. 

6. Change Request and Revision Control: Document Control is a continual process. Once documents are created and approved, there will most likely be changes made in the future. Change control and revision control in itself should be a workflow to ensure controlled access of all documents and changes to documents. A good Document Control System will have its own change request workflow that includes revision review and approval. It will also hold the original document until the new document is changed—once the new document is approved, it will take the old document’s place. Sometimes an organization will have changes that affect multiple documents. In this case, the system should be able to make a global change. This allows an organization to make multiple document changes within the same workflow and will show all documents to be changed, all affected areas, and where it will be changed. This is important because when making changes to a document, other documents may be involved or affected. A good Document Control System includes a multi-document change request that will save time and resources for the company. 

7. Reporting: When an organization has a lot of documents and data going into the system, it needs visibility to look at that data in a meaningful way. Using metadata can help by filtering documents by phase, keyword, and more. Having a system to filter data this data is key. Good Document Control has reporting engines built into, or tied to it. This allows the system to quickly and effectively look at data on aggregate level, and run ad hoc reports, scheduled reports, and template reports on the health of the Document Control System. People want to be apprised of where overdue documents so they can take steps to fix them. Reporting provides this visibility.

8. Intuitive Filtering and Data Security: Within any system, the ability to ensure secure data and documents is critical. An organization wants to make sure that appropriate levels can access, approve, review and make necessary revisions to the document. A good Document Control System will have the security in place that will allow the organization to filter each document to appropriate security levels. In multisite, centralized systems, filtering and securing data often becomes a concern. An effective Document Control System lets an organization limit data visibility to only what is necessary to the user. Depending on the access level of the user, the visibility of documents will change. This ensures that an organization can operate in their Document Control System safely and securely.

Summary

The Document Control System is major information hub for the Quality system and sets the foundation for doing business in a compliance context. It sets the policies, the practices and the enforceable regulations that drive the company’s Quality and EHS initiatives. A good Document Control System will intelligently automate the review and approval process. It will link documents and records so that information is easily transferred, and will foster a platform for intelligent business rules and change management. It allows the integration of Document Control with the Change Management System to simplify change requests and allow single revisions; with Employee Training to efficiently train employees on new documents; and with Deviations to ensure that employees are aware of any planned deviations and these are tracked to completion. The eight traits of an effective Document Control System, combined with the overreaching benefits of the quality system, provide a holistic system for managing documents and extending to the other crucial areas of the enterprise. The QMS is the guide to making sure this is done as easily and effectively as possible.

The above article has been adapted from a white paper by EtQ, Inc. 

FSMA: What’s the Latest, and What Do You Need to Know

By Michael Biros
No Comments

Is your company ready for ‘TACCP?’ Do you know how long you will be required to retain your records? Is your carrier up-to-date on the sanitary transportation section of FSMA? Dr. Bob Strong, Senior Food Safety Consultant at SAI Global, gives an overview of the newest updates on FSMA.

Questions were raised recently by brewers and distillers about spent grains being sold as animal feed. FDA recognizes that hazards will be minimal, but charges facilities with protecting spent grains during storage awaiting collection and during transportation as required under FSMA Section 103. This will require protection against physical and chemical contamination and references the inadvertent addition of industrial waste oil to used fryer oil that exposed 100,000 chickens to PCBs. The comment period for this is closed and the final rule is expected to be published this summer. The final rule is scheduled to take effect by August 30, 2015.

Record retention and availability applies to anybody who processes, packs, transports, distributes, receives, holds, and imports human or animal food. However, farms, restaurants, USDA plants, personal consumption, non-food packaging, and food contact packaging manufacturers (but not users of this packaging material) are exempt from this requirement.

The length of record retention depends on the perishability of the food product. If the shelf life is less than 60 days, both the handler and transporter must retain records for 6 months. If the shelf life is between 60 days and 6 months or if the food is animal/pet food, both the handler and transporter must retain records for 12 months. If the shelf life is greater than 6 months, the handler must retain records for 2 years, but the transporter must retain records for only 12 months. Records must be available within 24 hours of a request by FDA and civil action may be taken if records are not kept or made available. This final rule was published on April 4, 2014.

FSMA section updates

These updates are confined to Section 106 — Intentional Adulteration of Foods; Section 111 — Sanitary Transportation of Human and Animal Food; and Section 204 — Designation of High Risk Foods Relative to Record-keeping for Traceability.

To recap, FSMA does not apply to facilities regulated by USDA (meat, poultry, and eggs). Also exempted are juice manufacturers, seafood processors, alcohol-related facilities, low-acid canning (except to expand their hazard analysis), and small businesses.

FDA is considering modified requirements for warehouses and having Preventative Controls only if they are storing refrigerated products.

Section 106 — Intentional Adulteration of Foods

The intent of the proposed rule is for companies to begin using a “qualified individual” to develop a written food defense plan. This plan will protect against intentional adulteration of food for the purpose of causing harm to consumers. The plan should focus on actionable process steps, mitigation strategies, monitoring, corrective actions, and verification.

The regulation exempts very small businesses, companies with a majority of sales to very small businesses, storage facilities (except for bulk liquid storage), alcoholic beverage manufacturers, and animal feed manufacturers and distributors.

Actionable areas and mitigation strategies:

Key actionable areas identified by FDA include: bulk liquid receiving and loading, bulk liquid storage and handling, secondary ingredient handling, and mixing and similar activities. Deliberate acts of contamination may come from acts of terrorism; disgruntled employees, consumers, or competitors; or economically motivated adulteration such as the melamine tainted milk incident.

Companies must identify and implement mitigation strategies, establish procedures to monitor these strategies, implement corrective actions, verify that monitoring is being conducted, train supervisors assigned to actionable process steps, and maintain records.

Examples of mitigation strategies include restricting access to potential adulteration points such as loading and receiving areas, bulk liquids, secondary ingredient handling rooms, and open processing points. Facilities must require tankers to be sealed after loading and the seals must be checked at receiving.

TACCP

FDA is asking for comments on using HACCP principles to develop food defense plans. They are considering calling a control point a TACCP (Threat Assessment Critical Control Point). They are also trying to identify the risk of adulteration to specific processes. Some examples of low risk foods that are hard to adulterate are: shell eggs, whole produce, game meats (not ground), peanuts/tree nuts, and sugar cane/beets. FDA has extended the comment period through June 30, 2014. 

Section 111 — Sanitary Transportation of Human and Animal Food 

This section builds upon the previously issued Sanitary Food Transportation Act of 2005. It has five major sections: vehicle and transportation equipment, transportation operations, information exchange, training, and records.

The regulation exempts shippers, receivers, and carriers that have less than $500k in total annual sales; the transportation of raw agricultural commodities by farm vehicles; food being shipped through the US to another country; food imported to be exported, but not consumed in the US; shelf stable foods that are completely enclosed in a container; the transportation of compressed gases; and the transportation of live animals.

Vehicles and transportation equipment

The proposed rule will establish requirements for the design and maintenance of vehicles and equipment to ensure that they do not cause contamination of the food being transported. This includes bulk and non-bulk containers, bins, totes, pallets, pumps, fittings, hoses, gaskets, and loading/unloading systems.

The regulation identifies the potential for cross-contamination from: incorrect use of packing materials (reusing wood containers for produce that once held raw meat); using the same hoses or pumps with different allergens or raw and ready-to-eat products; and pallets in poor condition (splintering or projecting nails).

The proposed rule will establish requirements for cleaning, inspection, maintenance, loading/unloading, and operation of transportation equipment to ensure no contamination or temperature abuse of the products during transport. This includes the growth of spoilage bacteria as well as pathogenic bacteria. This will be achieved by ensuring adequate temperature controls, separation of foods with different temperature requirements, and the cleanliness and physical condition of trailers, tankers, pallets, etc.

Communication

Carriers, shippers, and receivers will be required to exchange information regarding prior cargos, the cleaning of bulk transportation equipment, and temperature controls. A log of prior loads must be kept. FDA will not restrict what can be hauled. Rather, they will regulate the cleaning between loads. Wash tickets must be kept and shared with customers. Washing may include sanitizing where necessary.

The carrier must communicate with the shipper and receiver that temperature sensitive foods were transported under the required temperature conditions. This requirement can be waived for short hauls or if the shipper loads a temperature recording device with the shipped products. The shipper and receiver are required to specify in writing the temperature requirements to the carrier. The receiver must confirm compliance.

Training, records and waivers

Carrier personnel must complete training in sanitary transportation practices and must have documentation of this training. This will include personal hygiene for drivers and loading/ unloading workers, training in security, accessibility to hand washing, and avoiding cross contamination in handling mixed loads. Procedures, training, cleaning, prior cargos, and temperature control must be recorded and properly maintained.

Shippers, carriers, and receivers who hold valid permits and are inspected under the National Conference on Interstate Milk Shipments (NCIMS) Grade “A” Milk Safety Program may be waived from these requirements only when they are involved in shipping Grade A milk and milk products. Transportation of food relinquished to consumers may also be waived (such as the pizza delivery guy).

Section 204 — Designating High Risk Foods for the purpose of record keeping related to Traceability

This proposed rule designates high-risk foods based on known food safety risks. The criteria for modeling and scoring risk are:

  1. Frequency of Outbreaks and Occurrence of Illnesses: This must include chemical and microbiological food safety hazards. Chemical hazards include allergens, mycotoxins, pesticides, and heavy metals.
  2. Severity of Illness: This will take into account illness duration, hospitalization, and mortality.
  3. Likelihood of Contamination: This is based on number of recalls and contamination that has been known to occur.
  4. Pathogenic Growth Potential/Shelf Life: Strong growth potential is likely at temperature at which the food is intended to be held and stored, including refrigeration and room temperature. This will be coupled with shelf life where longer shelf life can increase risk.
  5. Manufacturing Process Contamination Probability/Intervention: High probability has recurring or frequent detection of contamination. Low probability has infrequent detection of contamination or where contamination is introduced post manufacturing. This will be coupled with the availability and implementation of control measures.
  6. Consumption: This is the percent of the population that consumes the food.
  7. Economic impact: Lower is defined as $100-500k impact per year and higher is greater than $10m per year.
Dr. Bob Strong

SQF Certification for Food Packaging Plants

By Dr. Bob Strong
No Comments
Dr. Bob Strong

The Global Food Safety Initiative is a set of standards created to assure confidence that food products meet international standards. GFSI sets the minimum requirements for Food Safety Management Systems, GMPs, GAPs, GDPs, and HACCP. All standards to get GFSI approval must meet the minimum requirements outlined in the GFSI guidance document. There are currently nine approved GFSI schemes, however only four apply to packaging.

Safe Quality Food or SQF, as it is more commonly referred to, originated as an Australian standard in 1994. It was purchased by The Food Marketing Institute in 2004 and is now operated by the Safe Quality Food Institute in the US. It was one of the first four GFSI approved schemes. It’s currently in edition 7.1 and is available from sqfi.com. Edition 7.2 will become effective July 3, 2014.

SQF offers three levels of certification: Level 1 is basically the fundamentals of food safety;  Level 2 requires at a minimum HACCP analysis and possibly a HACCP plan; and Level 3 requires a quality plan. GFSI approval only requires Level 2 SQF certification. 

SQF initial certification audits

The initial certification process requires two separate audits. The readiness audit reviews documents, programs, policies, and procedures to make sure that they match the SQF requirements. The auditor may look back through up to two years of records. SQF code also requires practicing continuous improvement and that the facility meets the regulatory requirements of the country in which the facilities operates as well as those of each country where product is sold. 

The second audit is a facility audit. This audit assesses how the facility is in compliance with the documented programs, policies, and procedures. The auditor will look at your equipment, building, processes, and records and will perform a graded evaluation. All deficiencies in this audit will need to be corrected before the Certifying Body can issue a SQF Certificate. For packaging plants, this audit usually takes two days but can take longer. Recertification only requires one annual audit that is a combination of the readiness audit and facility audit.

SQF practitioner

SQF certification requires that facilities employ a full-time SQF practitioner that is in a position to manage the program. This person must have completed an accredited HACCP course and be competent to implement and manage HACCP plans. They must also have SQF code knowledge and be competent to implement and manage SQF programs. While not required for certification, taking an SQF implementation course is highly recommended.

SQF for food packaging manufacturers

SQF has products and services divided into 35 food safety categories of which Category 27 is “Manufacture of Food Sector Packaging Materials.” The two modules of SQF code that require compliance from packing manufacturers are Module 2, SQF System Elements and Module 13, Pre-requisite Programs for the Manufacturing of Food Sector Packaging. The other modules do not relate to packaging and will not be part of the audit of a packaging facility.

The following are SQF mandatory sub-elements that are required to be documented and implemented by everybody. They cannot be excluded, exempted, or marked as non-applicable by the auditor. There are only mandatory elements in Module 2; there are no mandatory elements in Module 13.

  • 2.1.1 – Management Policy
  • 2.1.2 – Management Responsibility
  • 2.1.3 – Food Safety and Quality Management System
  • 2.1.4 – Management Review
  • 2.2.1 – Document Control
  • 2.2.2 – Records
  • 2.4.1 – Food Legislation
  • 2.4.2 – Food Safety Fundamentals
  • 2.4.3 – Food Safety Plan (levels 2, 3)
  • 2.4.4 – Food Quality Plan (level 3 only)
  • 2.4.8 – Product Release
  • 2.5.2 – Validation and Effectiveness
  • 2.5.4 – Verification and Monitoring
  • 2.5.5 – Corrective and Preventative Action
  • 2.5.7 – Internal Audit
  • 2.6.1 – Product Identification
  • 2.6.2 – Product Trace
  • 2.6.3 – Product Withdrawal and Recall
  • 2.7.1 – Food Defense
  • 2.9.2 – Training Program 

Nonconformities

A minor nonconformity must be corrected within 30 days of the facility audit. Extensions may be granted by the certification body where there is no immediate threat to product safety and quality, and alternative, temporary methods of control are initiated. 

A major nonconformity must be corrected and appropriate corrective action verified and closed out within 14 days of the facility audit. 

A critical nonconformity raised at a certification audit results in an automatic failure of the audit and the supplier must reapply for certification. 

Nonconformities can occur during the document audit or during the facility audit, but only the facility audit is scored. Out of a possible 100 points, a critical nonconformity will deduct 50 points, a major nonconformity will deduct 10 points, and a minor nonconformity will deduct 1 point each. All nonconformities should be corrected before an SQF Certificate will be issued, however if all minor nonconformities have not been corrected, a certificate can still be issued within 45 days of last day of facility audit. A score of 96 to 100 is ‘excellent’ (E), 86 to 95 is ‘good’ (G), 70 to 85 is ‘complies’ (C), and 0 to 69 is ‘fail’ (F). A certificate will be issued for grades of excellent, good, and complies. Excellent and good grades require a 12-month recertification audit and a grade of complies requires a six-month recertification audit.

The above article has been adapted from an archived webinar, hosted by SAI Global and presented by Dr. Bob Strong. For more details, please click here

Sangita Viswanathan, Former Editor-in-Chief, FoodSafetyTech

The Value of Effective LIMS

By Sangita Viswanathan
No Comments
Sangita Viswanathan, Former Editor-in-Chief, FoodSafetyTech

With the announcement of proposed rules under the Food Safety Modernization Act (or FSMA), the burden of food safety testing and record keeping placed on smaller and medium size food companies and use of contract testing labs is growing tremendously. So how do these labs manage growing requests for testing, and increasing volumes of data and demand for records? 

Here is where Laboratory Information Management Systems or LIMS play an important role, in helping labs manage the testing requests, handle all the data and records, be better prepared for audits, and comply with changing regulations, says Anthony Uzzo, President & Co-Founder of Core Informatics.

Uzzo has extensive experience in software engineering, informatics, laboratory automation, project management and science. He co-founded Core Informatics in 2006, along with Jim Gregory (Executive VP of Customer Solutions). A biomedical engineer, Uzzo started his career as a pharmaceutical lab scientist, and in that role, realized that most LIMS solutions were rigid in their scope. 

“This exposed me to different labs having different data management requirements, and gave me a profound appreciation of the impact of data management and having effective LIMS in labs. When starting Core Informatics, my goal was to provide labs with the opportunity to tailor their data management system to their needs without having to change their workflow, systems, personnel etc.,” he describes. 

We present below some excerpts from an interview with Food Safety Tech (FST).

FST: Why are LIMS so important for food and beverage companies in the current environment?

Uzzo:The food and beverage industry faces increasing regulatory scrutiny, pressures to control costs, and the challenge of maintaining quality throughout a global supply chain. A LIMS solution needs to be a solution to aid companies in the delivery and discovery of products, while complying with industry and government regulations.

The LIMS need to identify hazards, determine and monitor critical control points, and establish corrective actions and verification procedures to ensure that standards are met and the system is functioning properly. Our HACCP compliant system helps companies in the F&B industry to monitor products and make sure they do not become contaminated with chemicals or food pathogens. 

FST: How can food companies and labs choose the ideal LIMS solution?

Uzzo: According to me, the top criteria for choosing a LIMS solution would be flexibility; being web-based (able to use the LIMS with smart devices for data entry and access and no antiquated client server technology); and total cost of ownership.

There are now all sorts of novel testing methodologies being applied for food safety, and as a result, the data management requirements are constantly changing. Solutions would need to facilitate administrators to use the LIMS without writing a new code, and easily and quickly enable multi-site collaboration. For instance, there are new rapid detection technologies, such as PCR technologies for Salmonella detection, now in the market. An ideal LIMS should be able to rapidly process these results and use that data analysis, come up with efficient reports and enable lab scientists to do their job in a cost-effective manner. 

Cloud-based solutions offer great advantages in providing the ability to auto-scale, handle any amount of data, send out samples to other labs, support multi-site collaboration etc. Core Informatics, for instance, is fully embracing the power of the cloud. 

An ideal LIMS solution should address chain of custody from registration to report. The final report needs to be mentioned and be able to track who had handled that sample and every derivative of it, how it has been handled, under which condition it has been stored and for how long, and if appropriate procedures have been followed for storage and handling. Downstream, if there’s any problem, we need to be able to go back upstream and identify the correct source material.

LIMS solutions need to be prepared as new laws come into play in the next few years. Industry trends are accelerating the use of contract food testing labs. How effectively companies are able to process their data management requirements such as automatically receiving and recording test requests, preparing for their audits and complying with their food safety management programs, will all become critical.

What Constitutes a Successful FDA Audit?

By Sangita Viswanathan
No Comments

From the proposed third party accreditation rule, to GFSI audits, and needing more trained and experienced auditors, the process of auditing food facilities is undergoing a sea-change. What is the impact going to be on food companies, auditors, and the auditing process?

In a recent FSMA Fridays webinar, sponsored by SafetyChain Software, an expert team from The Acheson Group, comprised of Melanie Neumann, J.D., M.S., VP and Chief Financial Officer; Jennifer McEntire, Ph.D., VP and Chief Scientific Officer; Anne Sherod, M.S., Director of Food Safety and Valerie Scheidt, MBA, CP-FS, Director of Food Safety, answered key questions on conducting successful FDA audits. We present some excerpts below.  

How does the FSMA third party audit accreditation rule impact the audit process?

 

The purpose of the third party accreditation and certification audit is to issue a certificate for high risk foods or the voluntary qualified importer program. The main foundation of the standards that FDA is setting will come from the human preventative controls rule, the animal preventative controls rule, and the produce safety rule. Some standards may also come from the sanitary transportation rule and food defense rule. FDA will be appointing an accreditation body and this accreditation body will approve and monitor certifying bodies (CB). These CBs can be private companies or private individuals who will be authorized by the accreditation body to perform the audits and issue those certifications. 

 
Foreign governments can also be approved by FDA to act as a CB. Right now only New Zealand is approved and FDA is looking at approving Canada. We don’t anticipate any other country to be approved in the near future.;

Certifying bodies will have strict conflict of interest and reporting requirements to FDA. CBs must report to FDA within 45 days even if they’re just performing a consultative audit. They must also report to FDA if they see an issue that could lead to a Class I or Class II recall and they have to report to FDA before they report to the company that they are auditing.

 

Will a GFSI audit satisfy FSMA audit requirements?

GFSI audit requirements do not match the FSMA audit requirements, but they are not too different. Several of the schemes are very similar, and each scheme owner is making a concerted effort to become FSMA compliant. If an auditor is doing a GFSI audit, they do not need report to FDA before the company. The FSMA requirements of avoiding conflicts of interest, record keeping, and training may deter GFSI auditors from becoming Certifying bodies under FSMA. Unless FDA offers an incentive, there will be a shortage of FSMA CB auditors. 

 

What are the elements of a successful audit?

The number one goal of an audit is to identify risk. The audit needs to accurately describe the non-conformances against the audit standard to give your quality and operations team reliable and actionable data so they can mitigate that risk. The relationship between the auditor and the facility should be a partnership, add value, and build trust. The facility should learn from the auditor and the auditor should understand what the facility is doing to mitigate risk and promote food safety. Continuous improvement takes the feedback from the non-conformances and evaluates them against the organization’s goal around risk. Whether the results are from an announced, unannounced, internal, second, or third-party audit, continuous improvement is critical, and this requires commitment from management and will help the facility become audit ready. 

 

How can I ensure my auditor is up to the task?

Most audits use checklists. This goes for both the auditor and the audited. The checklist provides a standardized list of what’s expected and adds an element of order and control to the audit. It also allows for an effective way to quantify metrics. 

However, using a checklist alone can lead to minimum risk finding. The auditor needs to find a balance between being strategic and prescriptive. In order to be effective, audit protocols need to be periodically reviewed and updated. This is especially relevant with FSMA and holds true for internal and third-party audits. Check to see if the auditor’s checklist is pre-FSMA or post-FSMA. Ask the auditor when was the last time that they reviewed and updated their audit protocols. 

 

Will we have enough good auditors to meet the need?

No, we already don’t have enough good auditors. The implications of this are that we may get substandard audits from substandard auditors. The current model isn’t working and we need a new approach. Currently, most auditors have extensive prior experience working in industry and often become auditors after they retire.

We are creating auditors not through structured training. This model is not sustainable and has limited growth potential. It will not provide the level of training required for GFSI or FDA third party certification requirement. We need a training program for auditors who come right out of school. We need people to go to school for food safety and be able to become an auditor after graduation. Food safety needs to be incentivized at the university level. There should be a bachelors degree in food safety auditing. We need structured training and developmental opportunities for folks earlier in their career rather creating auditors at the end of their career.

Training in the Food Safety Industry

By Sangita Viswanathan
No Comments

Dr. John Surak food safety trainer and Warren Hojnaki of SGS talk about trends they see in food safety training, areas of focus, how to keep training relevant and useful, and what they are expecting to see in the future.

FDA, FSMA, FSMS, HACCP, GFSI, BRC, SQF, IFS, FSSC… The food safety sector is a cornucopia of new regulations, abbreviations and standards. Helping navigate this maze are food safety training courses and the instructors. However, the success of training programs depends on how applicable these courses and the curriculum are to the industry and the specific client, and how experienced and knowledgeable the instructor is in understanding current regulations, specifications of standards, hazard profiles and compliance requirements of that client. 

In an interview with FoodSafetyTech.com, Dr. John Surak, food safety trainer, and Warren Hojnaki of SGS, talk about trends they see in food safety training, areas of focus, how to keep training relevant and useful, and what they are expecting to see in the future.

John Surak, Ph.D., is principal of Surak and Associates, a full service food safety and quality consulting service. He works with the food processing industry in developing food safety and quality management systems, designing and implementing process control systems, and implementing Six Sigma and business analytics systems. Warren Hojnacki is Training Manager, for SGS North America. His department delivers training services for North American clients. 

FoodSafetyTech.com: What are some broad trends in food safety training that you are noticing?
Hojnacki: What we are seeing is a lot of clients needing foundational training. For instance, our most popular training programs are still HACCP, implementation for FSSC 22000, SQF etc. On the other side, clients are still very confused about what they should do regarding new and proposed food safety regulations. While they are following the directives that they receive from their customers, currently there still is a wait-and-see mentality. 

Dr. Surak: I notice the focus on food safety moving up the food chain. About 5 to 7 years ago, our primary clients for food safety training programs were food processing companies. Now our clients are suppliers to these companies as food companies are pushing the requirement for training on them. These supplier companies then need to make decisions on what schemes they want to be certified under. Most of the time, the customer accepts any GFSI-recognized scheme, but sometimes the customer names a specific scheme. Different GFSI schemes have different sweet spots and advantages. They all assume different knowledge about food safety and some are more prescriptive than the others. Clients have to figure out which scheme would be the best fit for them. 

FST: What kind of training courses are most popular, most asked for?
Hojnacki: When clients and companies decide on getting audited or certified against a particular food safety standard, training for that standard is a common requirement. Auditors specifically want to be trained to build their skill level, whether it’s getting trained for HACCP or FSSC 22000. A number of our clients also come to us saying that when they have a 3rd party audit, the most common non-conformances pertain to a less than robust internal audit system, so auditor training is a critical area that our clients ask for. 

Dr Surak: One of the biggest aspects of training that I try to focus on is lead auditor training. This course is designed to help an individual get certified in a particular audit scheme. We cover the same information for internal auditor training. However, the difference in this case is that for the internal auditor, the goal is to get his company certified. If a company has a strong internal auditor, they can reap substantial benefits. We also focus on, as part of our training, doing mock audits. This is more than going into a course or workshop and giving a lecture. For mock audits, you are put into a spot where you have to make real decisions on the floor. When we conduct such practice audits with our clients, in addition to our regular food safety training courses, we find a high level of involvement and interaction from the attendees and appreciation from the client. 

FST: What are some of the gaps in the training that you notice?
Hojnacki: What we see in general is people not covering the topic in-depth enough. Many training courses (outside those offered by SGS) seem to cover the topic in a very superficial manner and this doesn’t help. 

Dr. Surak: Many of the attendees who come to an audit training class have never taken the time to familiarize themselves with the standard. So what you are doing in that time is teaching them the standard and then teaching them how to audit. If the participants already know the standard, then you focus on just reviewing the standard and cover how to go about doing the audit. 

FST: What are some common questions attendees ask at ‘implementation/auditor’ training?
Hojnacki: Attendees very much want to know application to their respective situation. As an auditor, you need to know the right open-ended questions to ask when you are conducting an internal audit, and in our training, we provide examples for that. 

Dr. Surak: Our training focuses on enabling auditors to get the participant in a conversation and be able to answer questions during an audit. We are not in the business of writing traffic tickets, we are out to assess if the food safety system meets the standard, and also to identify the areas where it needs to be strengthened. Things that participants typically want to know are, going into a 3rd party audit, what is the auditor going to do? How is he going to react? And how can they present themselves in the best possible way to have a good audit? Also the instructor or auditor needs to understand the differences in the standards and the different hazards. There are unique challenges for different suppliers – or where along the supply chain they are, for instance are they a retailer, a supplier or a processor. It’s not a one size fits all situation. If you are looking at ingredient suppliers, the hazards are very different than what a retailer would be looking at, for instance. 

FST: How do you identify the best training company or program for you?
Hojnacki: We go through this everyday with every client call and we understand that we are not the only resource, our clients have several options. We first evaluate the trainer to understand what’s their educational and work experience background? Does it correlate to the industry you are in? Are they practitioners or just theorists? Food industry is a very big growth area right now, and we are seeing a proliferation of tutors coming into this field. Some of them have varied backgrounds, such as in automobile or aerospace industry. Often times, clients will make a decision based on prices quoted, and then realize that it didn’t work out the way they had anticipated. We (SGS) have often had to go to that client and redo things. Today, more than ever, the decision to choose a trainer/ training vendor, needs to be based on their competence, experience, and skills. 

Dr. Surak: I was recently at a client where they had completed certification training. When I asked to see the materials and bios of the instructor, I noticed that he had no prior experience in the food industry. I wondered how you could teach internal auditing in a food processing industry if you did not know about food processing! It’s imperative that clients look at the trainer’s background and experience. 

FST: Food safety training in 2015 – what will change?
Hojnacki: Food safety training curriculum will have to increasingly show greater applicability to clients to meet their needs. It has to be a round peg and in a round hole type of situation. Especially with FSMA rules getting finalized, clients are going to expect more out of their training. They are going to expect their instructors to be a resource, and to be up to date on the respective regulations and be able to tell clients how these rules will apply to them, and what they need to do differently. 

Dr. Surak: Processors are going to ask questions such as ‘I am certified to a GFSI scheme, so now do I have to do anything additional to meet new requirements’ or ‘are there areas where we have done some basic groundwork, and we have to raise the bar higher because of new regulations,’ and trainers need to be able to answer these.

Social Media and Food Safety: What Clicks and What Crashes

By Food Safety Tech Staff
No Comments

Food safety concerns are everywhere. Social Media is everywhere. When the two get together, it can mean both good news and bad news for industry players. Some tools for success: Learn to manage risks in this environment; accept that transparency is not an option; translate PhD to ADD; and communicate creatively.

Social media can be a great tool to connect with consumers, and influencers, and promote your brands and systems and procedures used to further food safety and quality. But on the other hand, it can also create an avalanche of food safety concerns and negative publicity that can very quickly spin out of control. How can food companies effectively manage social media channels, and use it to their advantage, and how can they respond to crisis in this world? Four industry players shared their perspectives during a session at the recent Food Safety Summit, held in Baltimore. 

Managing risks in current environment

Daniel Webber, Senior Vice President and Group Head at Edelman, digital corporate and crisis group, painted a scenario by wondering what would have been different if the Jack-in-the-Box incident would have happened today: “An employee could have suggested that the meat had not been cooked long enough, or to a high enough temperature. There would have been comments flying back and forth in FaceBook and Twitter, and soon there could have been mass hysteria about the burgers,” he suggested. 

Food companies have to deal with three types of risk in the current environment, explained Webber: Unanticipated or unpredictable risk, which leads to the company being blindsided; episodic risks which are like waves in the food business – incidents than come and go; and endemic or systemic risk – which is those ‘we should have seen coming,’ caused by a lingering product issue, what he described as a ‘Lance Armstrong’ curve. 

To be better prepared, Webber listed the following steps:

  1. Monitor all media to building intelligence (“monitoring is free research”); 
  2. Develop a plan; 
  3. Do scenario planning (if one of your companies is going through such an issue, what would you do); 
  4. Train (to build muscle memory); 
  5. Make friends now (make them speak for you when needed); 
  6. Tell your story; and 
  7. Get others to tell your story. 

But, he warned, “if it’s truly a crisis, you will need lawyers, publicists, and experts who can help you address that, so know when you need a bigger boat.”

Transparency is not an option, but a necessity

Tara Clark, Consumer Affairs Manager – Social Media, at ConAgra Foods, Inc. manages social media perceptions of the company’s brands, several of which have 100,000 + followers. 

Clark listed some of her observations on what triggers social outrage. Personal experiences: if a friend of family member gets affected or sick that is a huge factor, she said. And how the responds to the situation matters. 

“Consumers take the opportunity to challenge you, and ask you to prove it to them that you deserve their loyalty.” She referred to Google University (and Snopes, Wikipedia etc.) that become trusted sources of information, and active bloggers and consumers who become influencers for the market. 

Clark described the situation of Orville Redenbancher popcorn recall: “We thought it would be a big issue on social media and were worried about posting information about it, but instead of getting negative comments and people ganging up against us, people were supporting us, appreciating our honesty and transparency.” 

Her advice to food companies?

  1. Consumers are your brands’ friends & family, so treat them so; 
  2. Have a personal conversation with them; 
  3. Engage, but don’t force education; 
  4. Know who’s influencing your communities; 
  5. Trust your gut and instincts; 
  6. It’s okay to be human in social media; and 
  7. Remember that transparency is not an option; it’s a necessity. 

Translate PhD to ADD

Charlie Arnot, CEO of the Center for Food Integrity, talked about what drives consumer trust. The larger you are as a company, the more you have to prove that you are trustworthy, he described. 

Arnot talked about a study conducted by the Center which looked at two different scenarios and how consumers reacted to companies’ responses to a fictional food outbreak. The leading factor that garnered a good response was a company’s willingness to accept responsibility in a timely manner. “How and when you engage makes all the difference in recovering from social outrage,” he added. 

Summing up, Arnot listed the following takeaways:

  1. Social decision-making process is complex and multidimensional; decisions are not made on facts and rational thought alone; 
  2. Mistrust of institutions has become the social norm and people are questioning the data and motives of experts; 
  3. Tribal communications, relationships, and experiences influence what you believe; 
  4. Communicating shared values makes science more relevant and gives the public permission to believe your information. 
  5. And finally, the public wants information from academics, but not academic information. So you need to translate PhD to ADD. 

When CDC trended above Christmas

Dana Pitts, Associate Director for Communications in CDC’s Division of Foodborne, Waterborne, and Environmental Diseases, started by saying “Information is CDC’s main product. Getting that data to you is enabled by the interaction between scientists and communicators at CDC and social media plays a big role in these communications.” 

“My job is to tame the science that comes out of the various centers within CDC. And communicate it via our 57 twitter profiles, 18 FaceBook profiles, 14 blogs, two LinkedIn profiles, YouTube, Google +; Flickr; Instagram; several mobile and tablet apps, web and text messaging…” she explained. 

Pitts talked about the Centers recently communicating 40 years of Salmonella data in a manner that people can easily find it and understand it. 

She described a successful social media campaign that CDC ran through the holiday break of 2013, in which experts from the CDC, U.S. Department of Agriculture, U.S. Food and Drug Administration, and the International Food Information Council Foundation answered Twitter users’ questions on food safety during the holidays. 

“The conversation, “Don’t toss your cookies’ was a great success. In one hour, there were 731 participants. We had 40 partners, 718 tweets during chat, with a potential reach of 58 million. At one point, we were trending on Twitter, just above Christmas,” Pitts proudly described.