Management system guidance

8.3 Design and development of products and services

ISO Navigator Pro™ is a free tool that provides practical, expert guidance for businesses wishing to interpret and better implement the requirements of ISO 9001:2015, ISO 14001:2015 and ISO 45001:2018.

Our range of templates cover the requirements of ISO 9001:2015, ISO 14001:2015 and ISO 45001:2018, and offer an easy way to implement your next management system.

8.3.6 Design and development changes

This requirement is directly comparable to ISO 9001:2008 Clause 7.3.7 - Control of Design and Development Changes. It is important to control design changes throughout the design and development process and it should be clear how these changes are handled and what affects they have on the product. You should seek and record evidence that your organization has retained documented information concerning:

  1. Design and development changes;
  2. The results of reviews;
  3. The authorization of changes;
  4. Actions taken to prevent adverse impacts.

Your organization should begin identifiying, reviewing and controlling of design changes including the implementation of a process to notify the customer when changes affect the customer requirement e.g. customer communication, notifications of change, requests for deviation, and contract amendments.

It is as important to control design changes throughout the design and development process and it should be clear how these changes are handled and what effects they have on the product. Ensure control over design and development changes, design changes must be:

  1. Identified;
  2. Recorded;
  3. Reviewed;
  4. Verified;
  5. Validated;
  6. Approved.

Configuration control can be managed via alteration requests, notice of change, amendments, deviations, waivers, concessions, part revision changes, part number changes, change categories, service bulletins, modification bulletins, airworthiness directives, engineering communication notice, product change boards.

Design and development changes (after the original verification and validation) have to be 'verified and validated as appropriate' (as well as reviewed) and to 'include evaluation of the effect of changes on constituent parts and products already delivered'.

If the organization chooses not to perform re-verification and re-validation on every design change, then the auditor should expect to see some very well-defined criteria as to when the activity needs to occur.

Retain documented information that includes design change history, evaluation of change results, authorization of change and actions taken in relation to subsequent activities that are impacted by the change.

More information on PDCA


4.1 Understanding Context 4.2 Interested Parties 4.3 Determining Scope
4.4 Management System Processes  
5.1 Leadership and Commitment 5.2 Policies 5.3 Roles, Responsibility and Authority
6.1 Address Risk and Opportunity 6.2 System Objectives and Planning 6.3 Planning for Change


7.1 Resources 7.2 Competence 7.3 Awareness
7.4 Communication 7.5 Documented Information
8.1 Operational Planning and Control 8.2 Requirements for Products and Services 8.3 Design & Development
8.4 Externally Provided Products and Services 8.5 Product and Service Provision 8.6 Release of Products and Services
8.7 Non-conforming Outputs 8.8 Emergency Preparedness 8.9 Accident and Incident Investigation


9.1 Monitor, Measure, Analyse and Evaluate 9.2 Internal Audit 9.3 Management Review


10.1 Improvement - General 10.2 Non-Conformity and Corrective Action 10.3 Continual Improvement

Free internal audit checklists

Check out our free internal audit checklists. The audit checklist template is just one of the many tools which are available from the auditor’s toolbox that help ensure your audits address the necessary requirements.

Client list

Over 8,000 companies and globally recognized brands have relied on our templates to provide a path to improve, collaborate, and to enhance their operations to achieve certification, please see our client list for more information.