Advantage Partners follows a transparent and regimented approach to making decisions regarding certification. This approach is reviewed on an at least an annual basis by leadership to ensure it conforms to applicable standards. Additionally, this procedure is communicated to members of the team to ensure all relevant internal stakeholders understand this process. Individuals and groups performing certification body activities have implemented the necessary controls outlined in ISO/IEC 17021:2015 as well as ISO/IEC 27006:2015. 

The approach of how Advantage Partners makes decisions regarding certification includes: 

Upon completion of the initial certification, recertification or transfer process, our ISO Certification & Accreditation board or a duly authorized representative conducts a review of the audit work papers, rapport & archive including any nonconformities and related remediations and evidence to ensure compliance with applicable standards. The decision to certify is only granted when all criteria are met. Organizations will be informed of the certification bodies decision when it has been made.

If open issues or non-conformities are identified during the review process, certification may be withheld until all criteria for certification have been met. If the organization seeking certification exceeds the maximum allowable remediation period, a new audit of the organization will be required. This decision will be communicated to organizations, if applicable. 

Advantage Partners requires regular surveillance audits and a recertification audit to maintain certification. The first surveillance audit must be conducted within twelve (12) months from the initial certification decision and subsequent surveillance and recertification audit must occur within twelve (12) months from the end of the most recent surveillance or recertification, as applicable. If an organization fails to comply with audit requirements, it may result in suspension or withdrawal of certification.

Advantage Partners will recertify or renew clients on the continued conformity and effectiveness of the management system and the scope of certification. A recertification audit shall be planned and conducted to evaluate the continued fulfillment of all of the requirements of the management system standard. This audit shall be planned and conducted in advance of the certification expiry date.  

Advantage Partners will review all relevant information from the results of the recertification audit, as well as results of the system over the period of certifications. Any complaints received from users of certification shall also be considered, if applicable. If all the necessary requirements have been met, Advantage Partners shall make a decision as it relates to recertification.

We will initiate a suspension if a company fails to meet conformance with its management system requirements within the specified timeline, or failing to comply with surveillance or audit requirements. The certification is invalid while the suspension is active. Additionally, the organization will need to take action to update publicly facing references to reflect the suspension of a certification.

Certification may be restored once all issues have been resolved by the organization and verified by Advantage Partners.

Certification may be withdrawn due to non-performance of audits, misrepresentation, failure to close outstanding corrective actions, or at request of the client. 

Expansion of certification scope is possible through a formal request and an application process subject to review of supporting documentation by the ISO Certification and Accreditation Board, or a duly authorized representative. An audit will be performed to determine the conformance to the client’s expanded scope with the applicable standard(s).  

Reduction of the certification scope may be necessary if it is determined that the initial scope of certification is no longer accurate. The ISO Certification and Accreditation Board, or a duly authorized representative, will receive an updated application for the client and approve the scope reduction if it is supported by the audit and associated results. The ISO Certification and Accreditation Board will reject scope reductions aimed at avoiding non-conformities with the applicable standards.  

Advantage Partners employs the following process for any complaints and appeals The following sections below outline our approach to each area.

Complaints made against Advantage Partners (or the organizations we’ve certified) are managed through a documented process to ensure full transparency and fairness. If a complaint is made, we investigate to understand the nature of the allegation and parties involved. As these are triaged, we provide updates, documentation and other artifacts that would aid in a timely resolution.  

Complaints can be filed by emailing isocompliance@advantage-partners.com which is monitored by company leadership. We will review the complaint and follow up as necessary.

Appeals against Advantage Partners’ decisions are handled in accordance with established ISO standards. Organizations may appeal decisions by emailing isocompliance@advantage-partners.com which is monitored by company leadership. Relevant individuals will review the appeal & communicate with the parties, as relevant. 

Inquiries about Advantage Partners, including operational areas, certificate status & information about certified organizations, can be requested by emailing isocompliance@advantage-partners.com. All requests will be reviewed and actioned accordingly.

At Advantage Partners, we are dedicated to maintaining impartiality, integrity, and independence across all our operations to ensure that our audit and certification services remain fair, unbiased, and conflict-free. We define threats to impartiality as any factors or relationships that may compromise our objectivity, such as those related to ownership, governance, management, personnel connections, shared resources, financial interests, or contractual agreements.

To identify and mitigate these risks, we conduct ongoing and annual assessments that review our interactions with clients, prospects, personnel, and associated divisions. This process includes management reviews, internal audits, monitoring tools, and risk assessments to identify, evaluate, resolve, and continuously monitor any potential conflicts or threats to impartiality. Our leadership team enforces adherence to independence standards set by organizations such as the American Institute of Certified Public Accountants, ISO/IEC 17021-1:2015, ISO/IEC 17020:2012, ISO/IEC 17025:2017, FedRAMP, and HITRUST.

To safeguard impartiality, Advantage Partners follows these principles:

All certification decisions are made by authorized, independent management members who have not been involved in the audit process, ensuring each decision is based solely on objective criteria without bias.

Our auditors and certification personnel operate free from any pressures or external influences that could impact their conclusions.

We refrain from establishing relationships with organizations providing consultancy or services that might impact the objectivity of our certification activities.

By implementing these safeguards, Advantage Partners reaffirms our commitment to impartiality, securing our clients’ trust and delivering consistently objective and reliable audit and certification services.

This policy provides information to organizations that have obtained ISO/IEC 27001 certification of their Information Security Management System (“Registrants”) regarding the authorized marketing and public announcement of the certification and use of the Advantage Partners ISO/IEC 27001 name (“Certification Body”) and certification mark (the “Mark”). These requirements are and were previously agreed to as part of the Advantage Partner’s acceptance of the engagement which is a legally enforceable document; please refer to accepted engagement letter, if applicable. Advantage Partners may take legal action against a customer for a breach in any of the terms herein. If you have any questions or concerns, please contact us at isocompliance@advantage-partners.com.

Advantage Partners shall exercise proper control of ownership and shall take action to deal with incorrect references to certification status or misleading use of certification documents, marks, or audit reports. Such actions include, but are not limited to: correction and corrective action, suspension, withdrawal of certification, publication of transgression and, if necessary, legal action. We do not permit the mark to be applied by certified clients to laboratory test, calibration or inspection reports or certificates.

The Registrant shall conform to the reasonable and mutually agreed upon requirements of Advantage Partners when making references to its certification status, including validity of the certificate. This includes communications media such as the Company website, the Internet, brochures, advertising or other documents. This reference must include identification of the certified client; the type of management system, and the applicable standard; the certification body (Advantage Partners) issuing the certificate. These rules apply to product packaging; please see below for additional information.

The Registrant shall not make, or permit, any misleading statements regarding its certification. Additionally, the Registrant shall not use the certification document, or any part thereof, in a misleading or deceptive manner.

Upon a suspension or withdrawal of a certificate, the Registrant shall discontinue its use of all advertising matter that contains a reference to the certification mark.

The Registrant shall amend all relevant advertising material when a scope has been reduced, if applicable.

The Registrant shall not reference its Information Security Management System (ISMS) certification in such a way as to imply that Advantage Partners certifies a product (including service) or process.

The Registrant shall not imply that the certification applies to activities and sites that are outside the scope of registration.

The Registrant shall not use its certification in such a manner that would bring Advantage Partners and/or certification system into disrepute and cause a loss of public trust.

The Registrant shall only use the Mark only in reference to the Information Security Management System (ISMS) certified by Advantage Partners.

The Registrant acknowledges that Advantage Partners has the right to suspend or withdraw certification if it becomes aware that the Registrant has purposefully made incorrect references to the certification status or misleading use of certification documents, marks or audit reports.

The Mark is a service mark of Advantage Partners. The Mark shall only be used during periods where the Registrant has an active certification. The Mark may not be used in connection with any product or service that was not within the scope of the certification review, or in any manner that is likely to cause confusion among customers, or in any manner that disparages or discredits Advantage Partners. The Registrant shall not modify the Mark in anyway, including the form, font or color of the Mark provided by Advantage Partners.

Registrants shall adhere to the rules set by Advantage Partners governing the use of any statement on product packaging or in accompanying information that the certified client has a certified management system. Product packaging is considered as that which can be removed without the product disintegrating or being damaged. Accompanying information is considered as separately available or easily detachable. Type labels or identification plates are considered as part of the product. The statement shall in no way imply that the product, process or service is certified by this means. The statement shall include reference to:

• Identification (e.g. brand or name) of the certified client;
• The type of management system (e.g. quality, environment) and the applicable standard;
• The certification body issuing the certificate.