The Data and Documents module serves as your quality system's reference library and database. It's where you maintain the strategic documentation that defines your quality direction (policies, objectives, context analysis), the systemic registers that support daily operations (suppliers, equipment, competencies, risks, processes), and all documented information your management system requires (procedures, work instructions, specifications, records).
ComQual doesn't impose a predetermined structure - you organize information to match your context. Whether you're implementing ISO 9001, ISO 14001, or multiple integrated standards, and regardless of your industry or organizational structure, you have complete freedom to arrange your information repository in the way that works best for you. Below you can find typical patterns, but they can be redesigned or organized as needed.
Strategic Level Information
Strategic documentation such as:
-
Quality Policy
Your organization's commitment to quality and compliance, approved by top management
-
Quality Objectives
Measurable targets aligned with your policy and strategic direction
-
Context Analysis
Understanding of internal and external factors that affect your management system
-
Stakeholder Requirements
Identified interested parties and their relevant requirements
Systemic Level Registers
Track operational information in configurable registers such as:
-
Risk and Opportunity Register
Identified risks that could prevent achieving objectives and opportunities that could enhance performance, along with how you're addressing them
-
Supplier Register
Information about external providers, their qualifications, performance ratings, and evaluation results
-
Equipment and Infrastructure List
Resources required for your processes, including calibration status, maintenance schedules, and availability
-
Competency Matrix
Personnel qualifications, training records, skills assessments, and development plans
-
Process Inventory
Your organization's interrelated processes, their interactions, owners, and performance criteria
-
Legal and Regulatory Requirements
Applicable standards, regulations, and compliance obligations
Each register can be customized with the fields and structure that make sense for your organization. Update these registers as things change - add new suppliers, record training, document new risks, update equipment status.
How This Supports Operations
When you're performing a control activity, you might reference the process inventory to understand what you're checking. When evaluating a nonconformity, you might update the risk register if you've discovered a new risk. When planning corrective action, you might check the competency matrix to assign someone with appropriate skills.
The data and documents module ensures that information is available where and when it's needed, properly organized, version-controlled, and accessible to those who need it (while protected from those who don't).