Root Cause Corrective Action: Nadcap Style
Root Cause Corrective Action: Nadcap Style
Root Cause Corrective Action: Nadcap Style
Nadcap Style
This guide has been created to support companies pursuing industry-managed
accreditation. It details how to respond to non-conformances in the acceptable
way.
Overview
Root Cause Corrective Action for non-conformances has long been a requirement for those
working in industries with critical processes. It is a process of determining the causes that led to a
nonconformance or event, and implementing corrective actions to prevent a recurrence of the
event.
Submitting full and complete responses will aid in acceptance of your responses, shorten the
cycle time for accreditation/approval, and provide you with a powerful continual improvement tool.
While this supplement is called Root Cause Corrective Action – Nadcap Style, there is nothing
unique about these expectations for corrective action. The Performance Review Institute will
strictly enforce the requirements for corrective action. Quality system requirements, such as
AS9100 and AC7004, expect:
The response submitted must demonstrate compliance with each of these requirements.
Following the process described herein and documenting these steps will allow you to
demonstrate this compliance. All of these requirements are met within a corrective action process
that addresses:
Containment
Problem definition
Analysis
Solution
Assessment
There are numerous successful approaches to root cause corrective action and any of them can
be used. The requirements for response submittal, according to Nadcap, are:
The process described here is “a” process for identifying the information required by industry-
managed accreditation programs as well as meeting corrective action requirements. The steps
described here encompass essential elements of any corrective action system, but may be
accomplished with different tools or called by different names. For our purposes we will use the
term “event” to mean any of the following: audit finding, product failure, customer complaint,
customer return, scrap, rework, SPC special cause, accident, etc. Whatever process you use,
whatever terms you use, make certain you understand how and where your responses fit into the
submittal requirements.
Containment Action
Containment action is the first step in this process. These are the actions taken immediately after
you become aware of the event to stop the event from occurring and preventing or minimizing any
impact from the event. You contain the problem and the effects prior to beginning corrective
action. While these actions may be called specific corrective action, please note that there are no
actions here to correct the problem, they are just damage control:
Put out the fire: This step is where you stop the event from occurring.
Assess the damage: Once you have stopped the event from occurring, determine what
and how much damage has been done.
Contain all effects: Upon determination of the amount and extent of damage, prevent
everything that was effected from escaping, and determine if anything has escaped.
Notify as appropriate: If it is determined that product may have escaped, notify any
impacted customers.
These steps are the actions taken to bring the noncompliance into compliance. This is the
immediate corrective action constituting the information to be supplied in the Immediate
Corrective Action. Each of these steps should be described in detail. Advise exactly what steps
you took to stop the event from occurring, what was the impact and how you determined this.
Describe in detail the steps you took to contain any effects (while we are critically concerned with
hardware, effects may go beyond product). If product has, or may have, been shipped to a
customer, advise who and how you notified customers.
Problem Definition
Corrective action begins with clearly defining the actual problem. While this may seem simple,
many repetitive non-conformances result because the wrong problem was solved, only the
outcome was fixed, or only one problem was corrected when there were really two or more
problems. The steps involved in problem definition are:
A team of stakeholders in the problem should be assembled. Who owns the problem? Who has a
stake in the outcome and the solution to the problem? Who are the vested owners of both the
problem and the solution? These are the people who know the process, have the data and
experience, and they are the ones will have to implement the corrective actions. Without the full
support of the stakeholders, long-term solutions are not likely.
Once the stakeholders are identified, consider if additional expertise is needed. If so, the team
may need to include qualified team members or ad-hoc members who, while not stakeholders,
can contribute information, technical expertise, management support, or offer advice.
Please note that the stakeholders and qualified members may change as the team gains more
information and data. Clarifying the problem or additional problems may surface involving
additional stakeholders or require additional expertise. As the process evolves, continue to assure
that your team includes stakeholders and necessary experts and resources.
Addressing these types of questions will assist you in clarifying and defining the problem(s).
When the problem is known, the event question to be answered can be formed. This event
question begins the “5-Why” process.
Initial data gathering starts at the scene. Data has a shelf life, the longer you wait the more
difficult it becomes to obtain good information. When possible, go to the scene and take note of
who was present, what is in place, when the event occurred and where the event happened. If the
event is in the form of an audit finding, try to recover as much of the scene as possible.
Location -the site, building, department, or field location where the event took place
Names of Personnel -operations personnel, visitors, contractors
Date and Time
Specifications -what are the requirements?
Operational Conditions -start up, shutdown, normal operations
Environmental Conditions -noise levels, visual distractions, lighting, temperature, etc.
Communications -verbal or written, what orders were being followed?
Sequence of Events -in what order did things take place?
Equipment -what was being operated?
Physical Evidence -damaged equipment or parts, medical reports
Recent Changes -in personnel, equipment or procedures
Training -classroom, on-the-job, none
Other Events -have there been similar occurrences?
Once gathered, verify the accuracy of the data. Cause analysis is performed based on fact.
Remember, if you don’t look, you will not find the problem. Make sure that gathered data is
correct and complete. Then go where the data takes you. Do not take the data where you want it
to go.
Analysis
When the problem is identified, and preliminary data has been gathered and verified, the analysis
can begin. We will describe a “5-Why” process, but analysis may take other forms. This process
uses the Why – Why – etc. method to build a cause chain because it is a natural, logical
progression for thinking through a problem. The 5-Why process is called that because, generally
speaking, it takes 5 “whys” to get to the logical end of the cause chain. Not all cause chains will
be complete in 5 whys, some will take 7 and others will reach their end in 3.
Dome light was on all night (Simple Answer) Battery was old (Answer to this chain)
The answers to the “Why” questions form a chain of causes leading to the root cause. The
answer to the first Why is the direct cause. The logical end of each chain is a root cause (each
chain will have its own root) and the causes in between the direct cause and the root cause are
contributing causes. There may be no contributing causes, but there is always a root cause – the
best and logical place to stop as identified by the team. This place is where continuing to ask Why
adds no value to prevention of recurrence, variability reduction, or cost savings.
A procedure does not exist or needs revision -- Why doesn’t it exist (and stating that someone did
not know is not acceptable) – What was the systemic reason for the lack of knowledge
Operator (or technician) not trained and/or qualified – Why was the operator not trained (stating
that training was not conducted only restates the finding) and Why is an unqualified operator
performing work
There may be multiple branches and multiple root causes (each branch having its own root
cause). Each branch should be analyzed and worked down to its’ logical end. Many of these
identified causes, may not directly relate to the problem, but point to issues that still need to be
addressed to prevent future problems. Some formal method of prioritizing causes will need to be
developed to aid in determining when an identified cause should be worked, as a large number of
causes will be generated and not all are worthy of much investment to fix. The figure below
demonstrates a complete 5-why analysis with grayed out boxes being either causes not
supported by data or causes not to be fixed by some formal prioritization method.
Using the 5-Why approach provides a structured approach to corrective action and can form the
basis for a broad-based continual improvement and preventive action plan. This formal process
should capture and prioritize causes and address them as the basis for continual improvement
efforts. The issues identified through this process are obstacles within the organization that are
costing time, money, and frustration. This cause identification process, coupled with a structured
prioritization process will also satisfy the requirements for:
The root cause of the chain with the highest priority should be identified as the Root Cause in the
format required. The contributing causes between the root cause and the direct cause may be
included to clarify your analysis process.
Impact
You should now re-examine your impact statement. While the impact and effects of the event
were addressed as part of your immediate corrective (or containment action), you have now
identified numerous causes that may also have impacted your products or processes. Consider
the effects that the entire cause chain has had and be certain that they get addressed. If
necessary, readdress the Impact statement.
Scope of non-conformance – limited to 1 part or 1 lot, or was it systemic and what specific
parts were affected
Description of what was done to review similar product to confirm or reject the possibility
of a systemic problem
Evidence of customer notification and response
Disposition of any nonconforming parts
Solution
It is now time to begin problem solving, and if you have built a good cause chain, you know what
needs to be fixed. Some of the problems have been fixed as part of containment, but now it is
time for root cause preventive action.
Preventive Corrective Action can also be thought of as Sustaining, as you cannot prevent the
event at this juncture, it has already happened. Actions taken now are to prevent recurrence of
the event. They focus on breaking the cause chain completely by fixing the contributing causes
and the root cause. A contributing cause, if not addressed, could be a future root cause.
Preventive Action is a series of actions that positively change or modify system performance. It
focuses on the systemic change and the places in the process where the potential for failure
exists. Preventive Action does not focus on individual mistakes or personnel shortcomings.
Feasibility: The solutions need to be within the company’s resources and schedule.
Effectiveness: The solutions need to have a reasonable probability of solving the
problem.
Budget: Solution costs must be within the budget of the company and appropriate for the
extent of the problem.
Employee Involvement: The departments and personnel affected by the problem need to
be involved in creating the solution.
Focus on Systems: The solutions should be focused on systemic issues. Operators do
make mistakes, but that is not usually the root cause of the problem.
Contingency Planning: All solutions are developed with a certain expectation of success.
Critical elements of the solution should have contingency plans available to prevent failure
of the entire solution.
There is no absolute correct solution. Other solutions should be ranked based on the
degree of effectiveness and suitability for the company.
Do not rush to a solution, and be willing to think about alternatives over a reasonable
period of time.
Always be willing to challenge the root cause as a symptom of a larger problem.
Never accept an assumption as fact without significant data.
When devising a corrective action, ask whether they lower the risk of the event recurrence to an
acceptable level, and if there are any adverse effects that might be caused to make the action
undesirable.
Assessment
The assessment portion of the corrective action process includes both:
Follow-Up: A review done by a team member to ensure all corrective actions are
implemented as stated.
Follow-Up
Corrective actions must be accomplished as stated and someone is responsible to assure that
the actions were implemented. When verifying implementation, it is important to take things
literally. Was everything accomplished as you stated in the report? Were the tasks accomplished
according to the established timeline?
Do not commit to actions that the team cannot deliver. Be careful in use of terms, such as
everyone or all. Remember, you have to show you have done what you said you would do and be
able to show objective evidence.
Assessment
Once the action has been implemented, you are required to determine that the actions taken
were effective. In order to determine effectiveness, you must define the criteria by which you
measure effectiveness and what is acceptable. Assessing effectiveness of actions taken will be a
significant step in reducing non-sustaining corrective actions.
Please note: The effectiveness of your corrective actions will be verified during subsequent
audits. Ineffective or non-sustaining corrective action is cause for removal from the Supplier Merit
Program, where applicable. Non-sustaining corrective actions are one of the biggest sources of
findings across all Task Groups.
Conclusion
Following the process described here and documenting your steps will assure that you comply
with requirements, and speed the closure of your audit. An effective and robust Corrective Action
program promises significant opportunity for continual improvement and overall organizational
success.