Tag Archives: GFSI

Melody Ge
FST Soapbox

Changes in the Food Safety Industry: Face Them or Ignore Them?

By Melody Ge
2 Comments
Melody Ge

“A new era of smarter food safety is coming,” said Frank Yiannas, FDA’s deputy commissioner of food policy and response, at the GFSI Conference 2019 in Nice, France. He went on to explain, “a smarter food safety is people-led, FSMA-based and technology-enabled.” Afterwards, Yiannas announced the need for a greater budget for the FDA to invest in modern food safety for 2020 and beyond.

Now the question is, when this new era comes, are you ready?

The food industry is relatively behind on technology compared to other industries, or even within our daily lives. Take a look at the cell phone you have now compared to what you had 10 years ago; it has come a long way with all of its handy and useful features. Why can’t the food industry also benefit from technology? Of course, every coin has two sides, but no one would deny that technology played a significant role in bringing the world closer and making it more efficient nowadays.

The scary part of change is that it’s hard to predict what and when they will come to us, however, they also force us think outside of the box. Instead of debating whether incorporating advanced technology into our daily operations makes sense, why don’t we take a look at our current processes in place and see where technology can truly help us? We now have the opportunity to take advantage of technology to enhance our food safety and quality culture at our own facility. Here are some thoughts to share.

1. Identify what can be automated in your current process with technology

Certain things just can’t be replaced by technology, such as risk assessment or hazard identification (at least for now). However, inventory, temperature checking, testing results recording, or anything executing a command from you or implementing a part of your SOPs can potentially be automated. Execution is also the part where the most error could occur, and technology can help improve accuracy and consistency. Identify those steps systematically and understand what data needs to be captured to help your food safety management system.

2. Work with your technology developer to build technical requirements

Explain to the technology developer exactly how you want the program to operate daily. List the operating steps along with responsibilities step-by-step, and identify what requirements are needed for each step. Translating the paper SOP to a computer program plays an important role in this transition. Not only does it set the foundation for your future daily operation, but it also ensures that the control parameter is not lost during the transition.

3. Keep the integrity of the food safety management system through verification and validation

Once processing steps are done by technology, it doesn’t mean that we no longer have to do anything. We need to verify and validate the technology with certain frequency to ensure the steps are controlled as intended. Confirming that the software or system is capturing the right data at the right time becomes key to ensure the integrity of control risks is not compromised.

4. Utilize “preventative maintenance” on all technology used on site

Just like all equipment, food safety technology needs a preventive maintenance schedule. Check whether it is properly functioning on a certain frequency based on the safety impact in your process flow and take actions proactively.

5. Learn from your own records

The time saved from traditional ways allows us to have more time for looking at control points and records received to identify areas for continuous improvement. There are many ways of studying the data with modeling and trend analysis based on your own facility situation. Either way, those records are your own supporting documents of any changes or modifications to your food safety management system, as well as strong support to your risk assessment for justifications.

Just like Yiannas said, a smarter food safety system is still FSMA based. The goal has never changed; we want to produce sustainable, safe and high-quality products to our consumers, whether we use traditional or advanced approaches. After all, we are utilizing technology as a modern way to help us enhance and simplify our food safety management system; the outcome from the automated technology is still controlled by us.

So when the era comes, we all want to be ready for it.

Karen Everstine, Decernis
Food Fraud Quick Bites

How Food Fraud Happens

By Karen Everstine, Ph.D.
No Comments
Karen Everstine, Decernis

The food industry has been hard at work over the past few years implementing food fraud mitigation plans in response to Global Food Safety Initiative (GFSI) certification program requirements. GFSI defines food fraud as:

“A collective term encompassing the deliberate and intentional substitution, addition, tampering or misrepresentation of food, food ingredients or food packaging, labelling, product information or false or misleading statements made about a product for economic gain that could impact consumer health.” (GFSI Benchmarking Requirements, 2017)

GFSI then further defines the terminology of food fraud by citing seven categories (shown in the following diagram).

GFSI, Food Fraud
Used with permission from GFSI

In the Food Fraud Database, we categorize food fraud records using the following terminology (with examples):

  • Dilution/substitution
    • Substitution of an entire fish fillet or partial dilution of olive oil with another oil
  • Artificial enhancement
    • Addition of melamine to artificially increase the apparent protein content of milk or the addition of coloring agents to spices
  • Use of undeclared, unapproved, or banned biocides
    • The use of chloramphenicol in honeybee populations (where not permitted) or the addition of hydrogen peroxide to milk
  • Removal of authentic constituents
    • The sale of “spent” spice powder (used in the production of an oleoresin) as a whole spice powder
  • Misrepresentation of nutritional value
    • Infant formula that does not contain the required nutritional content
  • Fraudulent labeling claims
    • Misrepresentation of label attributes related to production method (organic, kosher, halal, etc.)
  • Formulation of an entirely fraudulent product (using multiple adulterants and methods)
    • The sale of “100% apple juice” that consists of sugar, water, malic acid, flavor, and color
  • Other
    • This includes counterfeits, theft, overruns, etc.

Harmonization of food fraud terminology is frequently discussed, so I thought it might be useful to provide information on how our definitions relate to the GFSI terminology:

GFSI category “Dilution”: This category maps directly to our category dilution/substitution. The reason we combine these into one category is that the intent is the same: To replace the weight or volume of a product. This can occur either through partial or full substitution of a liquid product, a granulated product, or swapping an entire intact product such as a fish filet. One of the GFSI examples for substitution is “sunflower oil partially substituted with mineral oil”, which could just as accurately be described as dilution.

GFSI category “Substitution”: As noted above, this category maps directly to our category dilution/substitution. However, we would not consider the use of hydrolyzed leather protein in milk (one of the cited examples) to be dilution/substitution because it is not used to replace weight or volume. We would view that as artificial enhancement of the protein content of milk.

GFSI category “Concealment”: We do not include a category focused on concealment because all food fraud involves concealing some aspect of the true contents of the food. One of the examples cited in this category is “poultry injected with hormones to conceal disease.” The use of antibiotics, anti-fungal agents or other substances to reduce bacterial load or mask deterioration would be classified, in our system, as the use of undeclared, unapproved or banned biocides. The use of coloring agents on fruit to improve appearance would also be classified as artificial enhancement.

GFSI category “Mislabeling”: Since all food fraud is, to some extent, mislabeling, we reserve the use of the term fraudulent labeling claims to those label attributes that describe production processes (organic, kosher, etc.). With the exception of falsification of expiration dates, the other examples cited would not be classified by us as mislabeling. The sale of Japanese star anise, which is potentially toxic, as Chinese star anise (a different species) is dilution/substitution and a health risk to consumers. The sale of cooking oil that has been recovered from waste streams and illegally produced is also a form of substitution that poses a potential health risk to consumers.

GFSI category “Unapproved enhancements”: This GFSI category aligns nicely with our category artificial enhancement, and both examples cited are nicely illustrative of the concept, which involves the fraudulent addition of a substance specifically for its function (not as a replacement for weight or volume).

GFSI Category “Gray market production/theft/diversion”: The production and sale of food products through unregulated channels would all be classified in our category called other. Because these forms of food fraud involve the sale of food outside of regulatory control, prevention measures will generally be substantially different from the prevention of fraud within legitimate supply chains.

GFSI Category Counterfeiting: This GFSI category is similar to the gray market production/theft/diversion category in that it involves intellectual property infringement and production outside of regulatory control. It would similarly be classified in our other category.

Maria Fontanazza, Douglas Marshall, Food Safety Consortium, Eurofins

Top Questions Food Companies Should Ask Prospective Suppliers

By Food Safety Tech Staff
No Comments
Maria Fontanazza, Douglas Marshall, Food Safety Consortium, Eurofins

Building a supply chain verification program can be a complicated task. In the following exclusive video with Doug Marshall, Ph.D., chief scientific officer at Eurofins, we learn the top questions that should be asking their suppliers during the process. Marshall also gives his perspective on the integration of data into the supply chain and how it can mitigate risk, along with where he’s sees the future of food safety testing headed.

Video shot at the 2018 Food Safety Consortium.

Leonard Steed, AIB International
FST Soapbox

Unannounced Audits: Are You Ready?

By Leonard Steed
No Comments
Leonard Steed, AIB International

Many industries are moving toward unannounced third-party certification audits and the food industry is no different. If regulatory audits are unannounced, why is the food industry reluctant to adopt unannounced third-party audits? There are a number of benefits to unannounced audits—most importantly is their positive impact on a company’s food safety culture and how they prepare facilities to face FDA inspections.

Unannounced audits for food are required for many third-party certification audits. Typically, regulatory audits are always unannounced. Unannounced audits help demonstrate compliance and provide confidence to all stakeholders that your manufacturing sites are operating on the same GMP level, day to day, shift to shift, for every day your organization is manufacturing and distributing food products. With announced audits, companies tend to prepare for them before they occur. However, if there is a significant amount of difference between your sanitary operations prior to and during an announced audit versus normal operating conditions, you are sending your employees the wrong message.

Although there are differences between certification schemes, the GFSI third-party unannounced audits usually have a 40- to 60-day window in which the audit must be completed to allow the certification body to complete technical reviews and review corrective actions so that the certificate does not lapse. If it is a surveillance audit, then the audit is more likely to be truly unannounced, but a company still has the option of using blackout dates and the auditor will verify that the request was necessary. The bottom line is most companies have a certain timeframe when they know unannounced audits will occur.

Leonard Steed will present “Unannounced Audits: Are You Ready?” on November 14 at the 2018 Food Safety ConsortiumThe biggest impact on third-party audits is when the audit score is directly related to financial incentives for employees. This situation motivates employees to pursue activities to achieve the maximum score, not directly related to food safety. Activities may include significant audit preparation to eliminate or reduce GMP deficiencies, reduce or control the auditor’s access to records or areas of known plant deficiencies, “auditor shopping”, and to appeal any audit finding that lowers the score. Switching auditors or appealing findings can be legitimate tools to correct a system when auditors make errors in judgement or behavior. The activities to achieve the highest score should be reasonably governed because they could take away from the primary goal to operate in a food safe mode.

The goal of an internal audit program is to be compliant with regulatory inspections and third-party certification requirements and should therefore be risk-based. Determine what factors present the most risk to an organization and then align internal audits with those risks. At this point in time, being able to perform well on a regulatory audit should be a primary concern. Since the FDA and state regulatory agencies usually perform unannounced inspections, it would seem necessary to have your food safety plan, prerequisite programs and operations in a constant state of readiness to mitigate the risk of potentially unsafe food in commerce resulting in a recall.

One way to evaluate your food safety culture is to anonymously survey employees at all levels of the organization to gather information on attitudes and opinions about food safety and institute changes to improve your position. Another way is to initiate change by instituting unannounced audits on all manufacturing shifts and require participation by all departments in the audit function to move away from “QA-centric” food safety verification systems. The significant change is that all departments would be involved as an auditor and responsible for maintaining regulatory compliance. For some companies, the inclusion of all plant departments in the audit function has moved the needle in the goal to improve their food safety culture. To further define food safety culture in other terms, it could mean adhering to GMPs all the time, the importance of accurately completing and verifying food safety records, and fostering consensus between departments on the severity of food safety nonconformances requiring prompt corrective action.

Maintaining GFSI certification is an excellent way to achieve food safety requirements for compliance with FDA inspections. Although not specifically required by GFSI, another application of your internal audit program is to review your regulatory policy by performing a mock FDA inspection to identify any gaps in hazard analysis, identify preventive controls including the supply chain controls, accurately complete food safety records, and provide examples of corrective actions when preventive controls were not completed properly, and environmental corrective actions. If you decide to perform a mock FDA inspection of your facility, do not forget to include the FDA Guidance document criteria, as it is important to understand what the FDA expects to see when they are evaluating your implementation. Your internal audit program is a proactive program to note nonconformances before they become full blown problems, so don’t be afraid to use it to its fullest extent.

Mike Robach

The Future of Food Safety: A Q&A with Cargill’s Mike Robach

By Mahni Ghorashi
No Comments
Mike Robach

Continuing on our journey to bring you the successes, best practices, challenges and accomplishments from the very best in this industry, this month I had the pleasure of interviewing Mike Robach, vice president, corporate food safety, quality & regulatory for Cargill. Mike joined Cargill in January 2004 to lead the company’s corporate food safety and regulatory affairs programs. In this role, he helps partners innovate and manage risk so they can feel empowered to nourish the world

Mike Robach
Mike Robach, vice president, corporate food safety, quality & regulatory for Cargill

Mike has also worked closely with the USDA and FDA regarding food safety policy, HACCP, and regulatory reform based on science. He serves as chairman of the board of directors of the Global Food Safety Initiative (GFSI) and is a member of the Institute of Food Technologists and the International Association of Food Protection, among many other organizations dedicated to ensuring safe food and bringing innovative technology into the agricultural industry. He has worked with the World Organization of Animal Health (OIE) and the Food and Agriculture Organization (FAO) on harmonized animal health and food safety standards.

Mahni Ghorashi: What are the biggest risks to our food safety infrastructure in 2018? What’s keeping you up at night?

Mike Robach: The biggest risks I see have to do with supply chain integrity and how companies implement their systems. Too often we do not have line-of-sight to the origin of the commodities and ingredients that make up our products. With global supply networks it’s important to understand where and from whom you are getting your inputs. There is also a need for food safety capacity building throughout the global food system. Many small and medium companies, along with some large companies, do not have the proper training for their employees to manage a food safety program. We also have an issue with constantly changing regulations that are not uniform from country to country, adding risk to our business.

Ghorashi: What are you most excited about? What’s changing in a good way in the food safety sector?

Robach: I am very excited about the application of new technology to our food safety programs. In-line, real-time testing gives an opportunity to manage our processes and make immediate adjustments to assure process control. This allows us to prevent product that is out of control from reaching the marketplace. Blockchain technology gives us the chance to drive greater transparency throughout the supply chain.

Ghorashi: Let’s talk about regulation. How is the implementation of FSMA going? Do you foresee any challenges with the next phase of implementation?

Check out last month’s Q&A with Frank Yiannas of WalmartRobach: I think FSMA implementation is going okay right now. There’s still a long way to go, and I am always concerned about making sure investigators are applying the rules and regulations in a consistent manner. I see the intentional adulteration rule as an upcoming challenge. It is one thing to conduct a vulnerability assessment and adjust your programs based on the results. It’s another to develop and implement a program that will prevent intentional adulteration as you would to reduce or prevent microbiological contamination.

Ghorashi: If you take a look at the homepage of Food Safety News, all you see is recall after recall. Are transparency and technological advancement bringing more risks to light and are things generally trending towards improvement?

Robach: I believe that food safety management programs are constantly improving and that our food is as safe as it has ever been. However, we still have a lot of work to do. At GFSI, we are continually improving our benchmarking requirements and increasing transparency in the process. We have better public health reporting and our ever-improving analytical technology allows us to detect contaminants at lower and lower levels. The industry is working collaboratively to share best practices and promote harmonized food safety management systems throughout the supply chain.

Ghorashi: What is the number one challenge of securing global supply chains for 2018?

Robach: Knowing and understanding the integrated supply chain. Having knowledge and control of the process from origination to consumption would be ideal. We need the implementation of risk-based, harmonized food safety management systems based on the principles of Codex. Assuring the application of these systems along with properly trained employees to implement these programs would be the first step towards a secure, safe global food system.

Ghorashi: How do international trade deals and the stance of the current administration affect the future of food safety policy?

Robach: International trade deals such as the Trans Pacific Partnership and NAFTA can do a lot for the assurance of safe food around the world and within regions. Making sure that food safety provisions are included in these trade deals can drive the implementation of food safety management systems that will ensure safe food for consumers everywhere. These types of deals should allow us to remove technical barriers to trade by basing the requirements on Codex principles and adhering to the WTO SPS agreement.

Ghorashi: What role is blockchain technology playing in food safety? What are the prospects for the future?

Robach: Blockchain has a role to play in driving more transparency across the integrated supply chain. It can allow companies to show consumers where their food comes from. It can also be used to quickly trace back product in the event of a food safety problem. Still, it’s an enabling technology, not a solution.

Ghorashi: What about CRISPR? How is the food industry starting to respond to this technology from both a policy and GMO screening?

Robach: Gene editing holds great promise and many companies are looking at its potential benefits. However, there is always the policy question on whether or not the use of this type of technology should be labeled. I think the food industry has not done enough to promote the use of technology and how food production has improved over the years. We should let consumers know how we apply science to making food safer, more nutritious and more sustainable. At Cargill we have the vision of being the leader in nourishing the world in a safe, responsible and sustainable way.

Ghorashi: What trends are you seeing in food safety processes within food companies? Are they becoming more decentralized? Less? How are they balancing innovation with decades-old food safety practices?

Robach: Through the Global Food Safety Initiative, we have promoted harmonized, risk-based food safety management systems. The GFSI-benchmarked certification programs provide an opportunity for companies to implement consistent food safety programs regardless of where they are in the world. Through the GFSI Global Market Program there’s a tool kit that less sophisticated companies can use as a pathway towards full certification. We are constantly updating the benchmarking requirements to assure they are keeping up with changing science and technology.

Lance Roberie, D.L. Newslow
FST Soapbox

Can You Defend Your Food Safety Plan?

By Lance Roberie
1 Comment
Lance Roberie, D.L. Newslow

As a food safety plan manager, do you ever get asked these questions regarding your food safety plan: What was your thought process for making this decision? Why do you do it this way? How do you answer this?

And, do you ever answer with one of the following statements:

  • I’m not sure? What do you mean?
  • That’s the way it has always been.
  • Our customer asked us to do it that way.
  • That’s what our last auditor recommended.
  • We make a low-risk product.

If this is one of your answers, defending your food safety plan may be a challenge. There is a major shift taking place in the world of food safety. With the implementation of FSMA Preventive Controls, the widespread adoption of GFSI audits, along with advanced technologies such as rapid pathogen and allergen detection, whole genome sequencing, and transparency efforts such as Blockchain, as well as with the increasing use of social media and access of information via the internet, food industry professionals are more educated and informed than ever before and ready to challenge your every move. As a food safety plan manager, you and your team must be ready! Being prepared to defend your food safety plan can be the difference between a recall and a routine audit. If you cannot fully explain the reasoning behind your decision-making, then how will you be able to prove that you are in complete control and are being proactive against food safety hazards? It will not be easy.

You must be ready to defend each and every part of your food safety plan. You must be able to defend questions and challenges with certainty and facts. Every decision made in your hazard analysis should be written down and backed with factual evidence whenever possible. Even the “none identified” areas should be backed by strong reasoning if no other factual evidence is available. You can use the data that you collect daily to help justify your decisions. Data collected from your prerequisite programs (ATP swab results, allergen cleaning validations, GMP audit findings, pest control trends, etc.) and food safety plan (CCP’s, validations, verifications) is all support for your decisions. Have this on file and ready to review when necessary.

If something looks out of the ordinary in your plan, make sure you can fully explain it and can back it with solid justification. If not, auditors, regulators, customers, etc. may start to become suspicious, which can lead to unwanted questions. You will then oftentimes start to get suggestions for change based on others’ individual expertise. Regulators may make “strong suggestions” for changes, for instance, and some people will just go along with it to avoid the pushback or because they simply don’t have a better solution. If this happens, soon your plan is no longer yours—it’s everyone’s. Some of these suggestions may be good, but is it really the right change for your plan? If not, it will often make the plan less rational and often difficult to defend.

The following are tips to help you avoid this situation.

  1. Meet with your food safety team regularly. Go through each part of your food safety plan and figure out how to answer the “why’s”. Why are things done this way? Why did we decide if this hazard was significant or not? Have annual reviews to make sure your plan is still functioning as originally intended and review new industry trends to be proactive regarding new potential hazards.
  2. Write a process narrative. Writing a process narrative documenting what happens at each step of your process and explaining your “thought process” for making decisions is a great support tool. It gives your team a chance to elaborate on the “justification” column in the hazard analysis, providing more decision-making details without crowding the hazard analysis form.
  3. Gather supporting documents. Scientific studies, guidance documents, expert opinions, etc. are vital pieces to have in your supporting documents library. Make sure it is appropriate for your individual products and the documents are from reputable sources, such as FDA, USDA, universities, process authorities, etc. Oh, and don’t forget about history! A reputable supplier with a long track record of safe product, a low history of recalls for the products you produce, etc. can help justify your decision-making.
  4. Conduct Internal Audits. Having an internal audit schedule and well-trained internal auditors help with finding inconsistencies within your program and allow you to make corrections before outside parties find these issues.
  5. Prepare. Have a “mock audit” and prepare for questions that are commonly asked during audits. Practice your answers and make sure you have supporting evidence when needed. Stay up-to-date with industry trends, especially common audit non-conformances.
  6. Be organized. It’s great to have all the supporting documents that you need, but if you cannot find them, then you just as well have nothing.
  7. Be confident. People, especially experienced auditors and inspectors, can quickly sense fear and lack of confidence. This often prompts more questions. Knowledge is power, and knowledge also builds confidence. Simply put, the more knowledgeable you are about your food safety plan, the more confident you will be when someone is trying to test you.
  8. Continuously Improve. It’s understandable that mistakes will be made. However, the next logical question you will be asked is: What did you do about it? Remember, for every nonconformance you find in your system, there should be a correction or corrective and preventive action to address it. It must not simply restate the problem, but legitimately correct the issue. This will give regulators, auditors, customers and anyone else looking at your system confidence that you are in control and can provide a consistently safe product.
Accreditation

Why Accredited Services Increase Business Opportunities And Contribute To The Harmonization Of Regulations

By Natalia Larrimer, Jacqueline Southee, Ph.D.
No Comments
Accreditation

Accreditation is an internationally accepted independent oversight process for maintaining operational standards and ensuring confidence. It is accepted by many governments and private industries, including at various levels of the global food supply.

Recognized within the food industry and endorsed by the Global Food Safety Initiative (GFSI), the process of accredited certification has become essential for business.

In the United States, the Food and Drug Administration (FDA) Food Safety Modernization Act (FSMA), in its rule on accredited third-party certification, incorporates the accreditation process for oversight over third-party certification bodies certifying foreign food facilities manufacturing for import into the United States.

With accredited services increasingly becoming an integral part of business operations, many wonder how the processes of accreditation and certification work.

Accreditation is the process of ensuring that an organization has the necessary technical competence to perform a specific task, and has met and continues to meet a specific set of operational requirements. An accreditation body (AB) uses internationally established techniques and procedures to assess conformity assessment bodies (CABs) against recognized standards to ensure their impartiality, competence, and ability to produce consistently reliable, technically sound and impartial results.

Accreditation provides formal recognition that an organization is competent to carry out specific tasks, and provides an independent assessment of conformity assessment bodies (CABs)1 against recognized standards to ensure their impartiality and competence. Accreditation provides assurance to a CAB’s customers and industry that the CAB continuously operates according to internationally accepted criteria applicable to CAB’s scope of accreditation.

Although there is flexibility for an AB to design its accreditation process within the constraints of ISO/IEC 17011, Conformity assessment – General requirements for accreditation bodies accrediting conformity assessment bodies, the standard to which all internationally recognized ABs must conform, some aspects are mandatory.

As part of the application process, the applicant for accreditation submits information about the desired scope of accreditation and its documented quality management system. The AB conducts a document review to verify that the applicant has documented all management system requirements specified in the relevant criteria and any other applicable requirements. Additional requirements could include, for example, those mandated by a specific regulatory authority or industry. During the assessment, through witnessing of the CAB conducting a conformity assessment activity, interviews of personnel, and review of records and other objective evidence, the AB’s assessment team verifies the CAB’s technical competence and implementation of the quality management system.

The applicant is required to provide corrective action for all identified deficiencies. Only after all identified issues have been addressed can the accreditation decision process begin. To ensure that the accreditation decision is impartial, members of the assessment team do not take part in the decision. The designated decision maker, which may be a group or an individual, is responsible for reviewing the assessment team’s recommendation and ensuring that all accreditation requirements have been met by the applicant and are properly documented before granting accreditation.

A certificate and scope of accreditation are issued only after a favorable accreditation decision.

Once accredited, the CAB is regularly re-assessed to ensure continued conformance to the accreditation requirements, and to confirm that the required standard of operation is being maintained.

To ensure transparency, the AB is required to make publicly available information on the status and scope of accreditation for each accredited CAB. Any changes occurring after initial accreditation, such as suspension for all or part of the scope of accreditation, are published on the AB’s website.

It is important to note while ABs provide oversight over CABs, internationally recognized ABs are themselves subject to regular oversight from organizations orchestrating the harmonization and recognition of the accreditation process internationally.

The International Laboratory Accreditation Cooperation (ILAC) and the International Accreditation Forum (IAF) provide this international oversight. ABs that are signatories of the ILAC and/or IAF mutual recognition agreements (MLAs or MRAs) must conform with the requirements of ISO/IEC 17011 as applicable program-specific requirements, and are admitted to the agreements for a specific capability, for example, as an accreditor for testing labs or for management systems certification bodies. Technical competence of the AB and conformance to the requirements is verified through rigorous on site evaluation by other member of the IAF or ILAC community.

Without international oversight, there would be no evidence or confirmation that an AB operates in accordance with international requirements when providing oversight of accredited CABs. This oversight provides assurance that the AB understands the CAB’s process and can attest to the CAB’s competence.

The IAF, MLA and ILAC agreements are internationally recognized forms of approval; signatories have demonstrated their compliance with specified standards and requirements. Accreditation by a signatory of the ILAC MRA and/or IAF MLA provides assurance that decisions are based on reliable results, thus minimizing risk.

This is of particular importance in the constantly evolving global food-supply network. Many specifiers, such as regulatory authorities, have acknowledged the importance of credible accreditation programs.

A number of government agencies in the United States and around the world, including the U.S. Consumer Product Safety Commission (CPSC), U.S. Environmental Protection Agency (EPA) and the Canadian Food Inspection Agency (CFIA), have mandated accreditation by an internationally recognized accrediting body for their programs.

Accreditation within the MLA/MRA process helps regulators meet their legislative responsibilities by providing assurance that testing, inspection and evaluation results are issued by organizations whose technical competence and compliance with specified criteria has been verified by an independent third party. It provides assurance to stakeholders, such as the regulatory authorities, that the accredited CAB operates in accordance with recognized and accepted criteria.

Continue to page 2 below.

Patricia Wester, PA Wester Consulting

Q&A On FSMA Audits: A Conversation With AFSAP CEO Patricia Wester

By Food Safety Tech Staff
No Comments
Patricia Wester, PA Wester Consulting

As a trade association for auditors and the auditing industry, AFSAP has researched the various references to audits found in all of the FSMA rules, and monitored the steps taken across the auditing community to meet these requirements. In this Q&A, we sit down with Patricia Wester, chief executive officer of AFSAP, to talk FSMA audits, criteria for supplier audits, preventive controls and FDA guidance. She will be running the Pre-Conference AFSAP Food Safety Auditing Fundamentals Course at this year’s Food Safety Consortium.

Background on the AFSAP and FSC Alliance

In July 2016, GFSI announced they would re-open the Guidance document revision process so that FSMA’s requirements could be considered for inclusion. When the final GFSI Guidance document was released, it included most of FSMA’s requirements. At this point, the Schemes still had to accommodate these changes, which were then provided to the CB’s. Depending on the Scheme, a CB also had to consider including content to address any FSMA related gaps. In the end, these audits could take more than a year to reach the market, and depending on the individual site’s renewal period, it could be many more months before a supplier was actually audited.

Patricia Wester moderated the Plenary Panel “What’s Next for Audits”
and running the
Pre-Conference AFSAP Food Safety Auditing Fundamentals Course at the
2017 Food Safety Consortium November 29 – December 1, 2017 in Schaumburg, IL.

Recognizing the need to inform the market, the inaugural Plenary Panel on Auditing, moderated by AFSAP’s Patricia Wester was presented at the 2016 Food Safety Consortium meeting. Dr. Ostroff opened the discussion to share FDA’s perspective on the use of audits for FSMA. His remarks were followed by representatives from GFSI, Schemes and CB’s as each described their role and recent activities to meet the new regulatory requirements, and provide insight into the timelines involved.

Dr. Ostroff has agreed to join us again for the 2017 meeting, and will participate in the Plenary Panel “What’s Next for Audits” as Industry, Retailers and the auditing community prepares for the accredited certification audits necessary for VQIP.

FoodSafetyTech: How are audits used in FSMA?

Patricia Wester: In the Third Party Audit rule, FDA outlines an accredited certification program for imported food that applies in 2 specific situations. The first applies to any imports FDA designates as “a high risk food” and the second is the use of certification audits for importers in The Voluntary Qualified Importer Program, (VQIP). Under VQIP, participating importers are required to source their products from suppliers that are certified under the FDA program.

In addition to the certification audits for VQIP and high-risk foods, audits are one of the options for supplier verification activities under the human and animal food preventive controls rules. When the hazard analysis identifies a raw material has a serious hazard, (SAHCODHA hazard), that ONLY the supplier controls, a supply chain preventive control is required, and the supplier verification activity must be an onsite audit. FDA allows some flexibility here, the audit can be a second or third party audit as long as it meets the requirements listed in 117.435, and is performed by a qualified auditor as defined in 117.3. These requirements are applicable to audits used to verify foreign suppliers (FSVP) as well as domestic suppliers.

FST: Don’t GFSI Scheme audits meet the criteria for Supplier Audits?

Wester: FDA allows the use of any audit that meets FDA’s criteria for audit content. This includes second party audits executed by employees of the receiving facility and third party audits, including GFSI audits, as long as they meet the requirements for audit criteria and are performed by a qualified auditor.

FDA acknowledges that the GFSI Auditor Competence provisions are consistent with the Agency’s findings, but that recognition does not extend to the audit criteria/content of GFSI audits.

In fact, any audit program in use prior to the publication of FSMA’s rules would probably need to be updated for these new requirements. GFSI, the Schemes, the CB’s, and others involved in the delivery of audits have likely all updated their audits to eliminate the major gaps, however, there are still some key FDA requirements that remain unmet.

FST: So, even though audit programs have been updated for FSMA’s new requirements, they are still missing some of FDA’s requirements? Why didn’t they just add everything?

Wester: In most cases, it appears to be due to a misinterpretation of the audit criteria that underpins all FDA’s audits. FDA’s audits focus on assessing a suppliers compliance with “applicable food safety regulations, the HACCP and/or Food Safety Plan and the plan’s implementation”. The Preventive Controls for Human Food Rule states the audit requirements in Subpart G:

§117.435 states:

If the raw material or other ingredient at the supplier is subject to one or more FDA food safety regulations, an onsite audit must consider such regulations and include a review of the supplier’s written plan (e.g., Hazard Analysis and Critical Control Point (HACCP) plan or other food safety plan), if any, and its implementation, for the hazard being controlled.

We (FDA) have revised phrasing to state “and its implementation” to emphasize that implementation of the plan is distinct from the plan itself (e.g., § 117.126(c). (The PCHF Final rule preamble)

Similar phrasing such as “any applicable FDA regulations” is used elsewhere when FDA discusses audit criteria, such as FSVP and VQIP and the Third Party Certification Audit rules. Further, the PCHF rule, §117.190 provides a comprehensive list of “Implementation Records” that can be used as a guide to understanding what meets this element of the FDA’s requirement.

The auditing community and Industry have assumed the regulatory reference was limited to the FSMA regulations, such as Preventive Controls for Human or Animal Food or the Produce Safety final rules), and has focused on those regulations to update their audit programs. Other FSMA regulations, such as Intentional Adulteration and Sanitary Transport, could easily be considered part of the requirement, so there are a few audit options that include those rules.

FST: What about products that are exempt from the Preventive Controls Rules?

Wester: Audits for products that are exempt from the PCHF (human Food) rule, such as Juice and Seafood HACCP, are probably available under a general HACCP format, but they may not include the level of detail required under FSMA, and would have to specifically requested when arranging a supplier audit.

Audits for other PCHF exempt products, such as bottled water or low acid canned foods, would be audited using a general food safety audit, with the specific product treated as a product category under that audit. Once again, these audits lack the product specific regulatory content and implementation details required by FSMA.

The question becomes, which FDA regulations (beyond FSMA) apply to an audit used for regulatory compliance and how much detail in the audit is necessary?

In other words, what is the full scope of regulations needed for the audit, and what are the audit criteria? Is it just FSMA or does it go further?

FST: Where does one look for this information? Does FDA offer any guidance about the scope of the audit?

Wester: The CFR, or Code of Federal Regulations is the starting place for regulations. Finding the regulatory information would not be difficult, Title 21, CH 1 Parts 1-1499 include FDA’s food regulations. In addition each part can have multiple subparts etc.

Given the sheer quantity of regulations, and that some are product specific while some are not, developing different audits for all of the possible regulatory combinations would be a daunting task and enormously costly. Remember, every auditing company will have to go through this process.

There are FDA references to scope and criteria in several responses to comments:

Audit Criteria means the set of policies, procedures or requirements used as a reference against which audit evidence is compared. During regulatory and consultative audits, accredited third-party certification bodies will examine compliance with applicable food safety requirements of the FD&C Act and FDA regulations within the scope of the audit. In consultative audits, the third-party certification bodies also may be conducting an examination to determine conformance with applicable industry standards and practices.

The applicable requirements that accredited third-party certification bodies and their audit agents will use relate to the food safety standards under the FD&C Act, such as the adulterated food provisions in section 402 of the FD&C Act and the provisions on the misbranding of food allergens in section 403(w) of the FD&C Act. The applicable requirements of the FD&C Act and FDA regulations would depend on the type of eligible entity being audited. Other examples include labeling requirements and the CFR citations listed under scopes.

Certainly, more detail than this is needed, and AFSAP is working to engage all parties, including FDA, in collaborative discussions to resolve these questions and concerns. The auditing community will need to address these issues in the near future, and industry should be vigilant to understand the requirements and make sure any audits used for FSMA are compliant.

Melody Ge, Kestrel Management
FST Soapbox

Five Tips to Add Food Fraud Prevention To Your Food Defense Program

By Melody Ge
2 Comments
Melody Ge, Kestrel Management

Food defense is the protection of food products from intentional contamination or adulteration, as well as biological, chemical, physical or radiological agents. It addresses additional concerns including physical, personnel and operational security. A traditional food defense program is generally perceived as a program that includes site security, visitors control or even on-site personnel monitoring. However, with the new FSMA Preventive Controls Rules and GFSI Guidance for all the recognized schemes, additional to consumer demand on product transparency, we must now take food fraud into consideration within our food defense program.

What is food fraud? According to the study from Michigan State University, food fraud is a collective term used to encompass the deliberate and intentional substitution, addition, tampering or misrepresentation of food, food ingredients or food packaging, or false misleading statements made about a product, for economic gain. It becomes not just a potential for food safety issues, but also a severe issue that could potentially damage your brand reputation. It is hence critical to have appropriate protection and prevention, as the umbrella encompasses both food defense and food safety.

What does this mean to food manufacturers? The awareness of traceability and transparency certainly should rise. Most facilities should have a food defense program in place to comply with any GMP or GFSI requirements. To make it more competent for food fraud, what could we do? Here are some quick tips to strengthen your food defense program with food fraud prevention:

  • Tip 1: Review your entire supply chain one more time, considering fraud risks
  • Tip 2: Use the HACCP concept for food fraud risk analysis
  • Tip 3: Double-check incoming goods
  • Tip 4: Make the entire supply chain transparent
  • Tip 5: Document all records

Tip 1: Review your entire supply chain one more time, considering fraud risks

The unknown could potentially hurt you or your program. You would prefer to be aware of what might go wrong before it goes wrong, which is why a review should be one of the key steps in your food safety program. It might be a familiar terminology in the industry; however, we could not eliminate its importance to your entire food safety management system. To maintain product authenticity, understanding where your ingredients come from and who your business partners and suppliers are become the first step to success. It also gives you an excellent opportunity to analyze the risks and potential risk sources. A thorough review should include all the approved suppliers and vendor information. Knowing the source of your product provides you with a good foundation for your food defense program. How can we efficiently review our own supply chain?

  • List all approved suppliers and contract vendors
  • Make sure all ingredients are used accordingly and as intended
  • Keep the supplier registration list up to date

The more you understand your own supply chain, the more helpful it will be to your food defense program.

Tip 2: Use HACCP concept for food fraud risk analysis within supply chain

Hazard Analysis Critical Control Point (HACCP), as defined by FDA, is a management system in which food safety is ensured by addressing through the analysis and control of biological, chemical and physical hazards throughout the entire supply chain. This mentality of HACCP could be used and very helpful to analyze the potential fraud risks. Its seven principles and 12 steps could be implemented to identify your own fraud risks. And it is important for us to identify the hazards from potentially adulterated ingredients to determine the next step for what needs to be controlled. Utilizing the 12 steps, we can list all the key points and steps that could potentially impact your products’ authenticity. The risks can come from personnel, visitors or the ingredients themselves. There are many resources out there; for example, US Pharmacopeia (USP) has developed a global food fraud database that is a good resource for all ingredients that have been falsely used in food products.

TraceGains Organic eBook Sponsored Content

Ready or not – here comes organic demand! Consumers everywhere are demanding certified organic products in their homes and on their tables. TraceGains’ latest eBook, An Organic State of Mind, sheds light on the trends and demands that are shaping the organic industry today and how automation technology is changing the game for many organic food manufacturers and producers.

Tip 3: Double-check incoming goods

Many articles address the importance of vulnerability assessments to prevent food fraud plus any documentation your suppliers have provided. Yes, it is critical; however, as one of the important steps in the HACCP program, verification is also important to make sure what goes into your finished products is safe and guaranteed. This could be addressed and monitored by implementing genetic testing. Each product and ingredient has its own DNA, just like our fingerprints. Nowadays, there are many methodologies developed for this type of test. The DNA testing could be a helpful tool to help your facility verify the authenticity of your incoming raw materials. Genetic testing using techniques like polymerase chain reaction (PCR) technology to detect the DNA of the product upon receiving the incoming goods. Moreover, as fast as it can be, facilities can now receive the test results within one to two hours. The testing itself might seem like an extra step with more effort and labor. However, the return is a huge saving on damages caused by food fraud. You can now start to verify and control your supply chain from the beginning to avoid any potential adulteration.

Tip 4: Make the entire supply chain transparent

This transparency not only applies to internal employees but also outward to your customers and vendors. That way you can familiarize yourself with your own supply chain, while at the same time establish brand reputation and confidence to your customers.

Tip 5: Keep all records documented

The records you should keep, besides a registration list of all your ingredients and vendors, should include the inventory list, how ingredients are used, whether it is used outside of its intended use and authorized personnel signatures. The following are some tips for an efficient document control:

  • Make it clear and straightforward
  • Categorize it based on your own facility operations
  • Keep the records in the same order of your supply chain from ingredients to end consumers

After all, with the newly released requirements, as QA professionals, we need to start developing a mindset that considers food fraud as a type of hazard, and develop monitor and control strategies for mitigating it. Just like we are now so familiar with the physical, chemical and biological hazards within our production facilities compared to decades ago, food fraud will no longer be a scary term once it is proficiently understood and properly controlled.

FSMA

Company Resources Critical to FSMA Implementation

By Maria Fontanazza
No Comments
FSMA

In Part II of Food Safety Tech’s Q&A with Kathy Wybourn, Director Food & Beverage, USA & Canada at DNV-GL, we discuss FSMA preparedness and alignments of the regulation with GFSI.

Food Safety Tech: Now that we’re in the compliance phase, how prepared are food companies to meet FSMA requirements?

Read Part I: Embracing Big Data as an Asset to Your CompanyKathy Wybourn: It depends. Food companies must want to stay informed and make the necessary changes. What is critical in this change is the resources and organization, and not the size of a company. We still see large companies that are not ready for FSMA, same as with smaller companies. It comes down to what they have done proactively to keep up with the regulations, understanding the preventive pieces of that and the shift within their organization.

There are two pieces: It’s about being informed, plus the company’s culture for change. It comes down to management commitment. If you don’t have the management commitment to move an organization to being compliant with FSMA, you can be informed, but the culture isn’t there to support it.

FST: GFSI recently released Version 7.1 to incorporate more harmonization with FSMA. Any thoughts on this new version?

Wybourn: I was in the Technical Work Group for Version 7 guidance document. Adding in the food fraud and food defense components, and the new 7.1 Version brings the GFSI benchmark document closer to FSMA around suppliers and the use of non-approved suppliers.

It puts more requirements on the food manufacturer if they have supplier problems. For example, if there’s an interruption in the supply of a critical ingredient and you don’t have another supplier that’s going through the preventive hazard. It’s very important to know how to follow the requirements around non-approved suppliers. It all fits with the bigger picture of supply chain risks and transferring risks from a supplier (those things you don’t know about), understanding your suppliers and having a contingency plan. And if you don’t have that formal approval through your system, what are the requirements around using a non-approved supplier.

FST: How can the BRC FSMA Readiness Module help food companies with the Preventive Controls rule?

Wybourn: If you’re a BRC-certified site, it gives you guidance on what is needed to be FSMA ready. BRC benchmarked and identified what was missing in the standard and created a module that minimizes the gap. It gives you guidance and reference to the actual CFR and explains what’s needed.