Documented information documents and records in ISO standards

What is ISO documented information?

Numerous enterprises that adopt ISO standards encounter challenges when grasping the concept of "documented information." This bewilderment emerges as the term substitutes the formerly employed words "documents" and "records." This write-up will delve into the distinctions among these expressions and elucidate the rationale behind incorporating "documented information" into ISO standards. Moreover, we will examine the significance of documented information within ISO standards and its function in executing various activities.

Fri Aug 25, 2023

Documented information vs. documents and records in ISO standards

Documents” and “records” are terms used in various ISO management standards, including ISO 27001 and ISO 9001. These terms refer to different types of information managed by an organization. Documents are used to communicate the internal rules of a company and can include:

policies
procedures
manuals
working instructions

Records are used to provide evidence of activities and results, for example:
audit reports
training records
incident reports
corrective actions

What is documented information?

In ISO standards, “documented information” refers to information controlled and managed by an organization, including policies, procedures, and records. It replaces the terms “documents” and “records” to better reflect the evolving nature of information and its management.

Dev
Information Security and Cybersecurity Thought Leader

Documented information documents and records in ISO standards

Documented information vs. documents and records in ISO standards

What is documented information?

You may also be interested in