AS9100 Clause 8.4.2 – Type and Extent of Control

AS9100 8.4.2 Type and Extent of Control requires organizations to implement a process to evaluate the data in external provider test reports to confirm that the product meets requirements. This requirement applies when external provider test reports are utilized to verify externally provided products.

The following are some steps that organizations can take to implement AS9100 8.4.2:

1. Identify the criticality of the product. The first step is to identify the criticality of the product. This will help to determine the extent of control that is required. For example, products that are critical to safety or performance will require a more rigorous control process than products that are not critical.
2. Assess the capabilities of the external provider. The next step is to assess the capabilities of the external provider. This includes evaluating the provider’s quality management system, testing procedures, and test equipment.
3. Establish a process for evaluating test reports. The organization should establish a process for evaluating test reports. This process should include the following steps:
   • Reviewing the test report for completeness and accuracy
   • Verifying that the test procedures were followed correctly
   • Confirming that the test results meet the product requirements
4. Maintain records of test reports. The organization should maintain records of all test reports. These records should be kept for a period of time that is consistent with the organization’s risk assessment.

By following these steps, organizations can implement AS9100 8.4.2 and ensure that the products they receive from external providers meet their requirements.

Here are some additional tips for implementing AS9100 8.4.2:

• Involve all relevant stakeholders. The process for evaluating test reports should involve all relevant stakeholders, such as quality assurance, engineering, and purchasing. This will help to ensure that the process is effective and efficient.
• Use a risk-based approach. The extent of control that is required should be based on the risk associated with the product. For example, products that are critical to safety or performance will require a more rigorous control process than products that are not critical.
• Document the process. The process for evaluating test reports should be documented. This will help to ensure that the process is consistent and repeatable.
• Monitor and improve the process. The process for evaluating test reports should be monitored and improved on an ongoing basis. This will help to ensure that the process is effective and meets the organization’s needs.