This standard is drafted in accordance with the rules given in GB/T 1.1-2009.
This standard replaces GB/T 28001-2011 Occupational Health and Safety Management Systems — Requirements and GB/T 28002-2011 Occupational Health and Safety Management Systems — Guidelines for the Implementation.
In addition to a number of editorial changes, the following technical deviations have been made with respect to the GB/T 28001-2011 and GB/T 28002-2011:
— the common top management structure for ISO management system standards given in Annex SL of the Consolidated ISO Supplement to the ISO/IEC Directives — Part 1 is used;
— terms and definitions are modified;
— risk-based thinking is used;
— further emphasis on the organization’s context and the needs and expectations of workers and other interested parties;
— the role of leadership is strengthened;
— emphasis on consultation and participation of workers;
— the requirements for hazard identification and assessment of risks are refined;
— more flexible requirements for documented information;
— the requirements for operational control are refined;
— the requirements for procurement control, contractor control and outsourcing control are refined;
— the requirements for management of change are strengthened;
— further emphasis on safety performance, performance monitoring and measurement of occupational health.
This standard is identical with International Standard ISO 45001:2018 Occupational Health and Safety Management Systems — Requirements with Guidance for Use.
For the purposes of this standard, the following editorial changes have also been made:
— the background of laws and regulations related to occupational health and safety in China is added in Introduction, 0.1;
— Note 2 is added to the term 3.19 to explain that "hazard", "hazard factor" and "hazard source" are three Chinese terms that are synonymous with and closely related to the English "hazard" in the field of occupational health and safety in China;
— In Note 2 of Term 3.35, the original English terms "near-miss", "near-hit" or "close call" are listed, and the corresponding idioms in Chinese such as "attempted incident", "attempted accident" or "potential accident" are added;
— according to the requirements of the relevant rules of the standard revision, the correspondence between this standard and GB/T 28001-2011 is added in Annex NA (informative);
— In order to facilitate users' reading and use of this standard, an alphabetical index of terms and a alphabetical in Pinyin index of terms are added.
This standard was proposed by and is under the jurisdiction of China National Institute of Standardization.
The previous editions of this standard are as follows:
— GB/T 28001-2001, GB/T 28001-2011;
— GB/T 28002-2002, GB/T 28002-2011.
Introduction
0.1 Background
An organization is responsible for the occupational health and safety of workers and others who can be affected by its activities. This responsibility includes promoting and protecting their physical and mental health.
The adoption of an OH&S management system is intended to enable an organization to provide safe and healthy workplaces, prevent work-related injury and ill health, and continually improve its OH&S performance.
In the field of occupational health and safety, China has specially established a series of laws and regulations related to occupational health and safety (such as the Labor Law, the Work Safety Law, the Law on the Prevention and Control of Occupational Diseases, the Fire Protection Law, the Road Traffic Safety Law, and the Mine Safety Law of the People’s Republic of China). The occupational health and safety systems and requirements specified by these laws and regulations are the system, policy and technical background that must be considered when an organization establishes and maintains an occupational health and safety management system.
0.2 Aim of an OH&S management system
The purpose of an OH&S management system is to provide a framework for managing OH&S risks and opportunities. The aim and intended outcomes of the OH&S management system are to prevent work-related injury and ill health to workers and to provide safe and healthy workplaces; consequently, it is critically important for the organization to eliminate hazards and minimize OH&S risks by taking effective preventive and protective measures.
When these measures are applied by the organization through its OH&S management system, they improve its OH&S performance. An OH&S management system can be more effective and efficient when taking early action to address opportunities for improvement of OH&S performance.
Implementing an OH&S management system conforming to this document enables an organization to manage its OH&S risks and improve its OH&S performance. An OH&S management system can assist an organization to fulfil its legal requirements and other requirements.
0.3 Success factors
The implementation of an OH&S management system is a strategic and operational decision for an organization. The success of the OH&S management system depends on leadership, commitment and participation from all levels and functions of the organization.
The implementation and maintenance of an OH&S management system, its effectiveness and its ability to achieve its intended outcomes are dependent on a number of key factors, which can include:
a) top management leadership, commitment, responsibilities and accountability;
b) top management developing, leading and promoting a culture in the organization that supports the intended outcomes of the OH&S management system;
c) communication;
d) consultation and participation of workers, and, where they exist, workers’ representatives;
e) allocation of the necessary resources to maintain it;
f) OH&S policies, which are compatible with the overall strategic objectives and direction of the organization;
g) effective processes for identifying hazards, controlling OH&S risks and taking advantage of OH&S opportunities;
h) continual performance evaluation and monitoring of the OH&S management system to improve OH&S performance;
i) integration of the OH&S management system into the organization’s business processes;
j) OH&S objectives that align with the OH&S policy and take into account the organization’s hazards, OH&S risks and OH&S opportunities;
k) compliance with its legal requirements and other requirements.
Demonstration of successful implementation of this document can be used by an organization to give assurance to workers and other interested parties that an effective OH&S management system is in place. Adoption of this document, however, will not in itself guarantee prevention of work-related injury and ill health to workers, provision of safe and healthy workplaces and improved OH&S performance.
The level of detail, the complexity, the extent of documented information and the resources needed to ensure the success of an organization’s OH&S management system will depend on a number of factors, such as:
— the organization’s context (e.g. number of workers, size, geography, culture, legal requirements and other requirements);
— the scope of the organization’s OH&S management system;
— the nature of the organization’s activities and the related OH&S risks.
0.4 Plan-Do-Check-Act cycle
The OH&S management system approach applied in this document is founded on the concept of Plan- Do-Check-Act (PDCA).
The PDCA concept is an iterative process used by organizations to achieve continual improvement. It can be applied to a management system and to each of its individual elements, as follows:
a) Plan: determine and assess OH&S risks, OH&S opportunities and other risks and other opportunities, establish OH&S objectives and processes necessary to deliver results in accordance with the organization’s OH&S policy;
b) Do: implement the processes as planned;
c) Check: monitor and measure activities and processes with regard to the OH&S policy and OH&S objectives, and report the results;
d) Act: take actions to continually improve the OH&S performance to achieve the intended outcomes. This document incorporates the PDCA concept into a new framework, as shown in Figure 1.
Note: The numbers given in brackets refer to the clause numbers in this document.
Figure 1 Relationship between PDCA and the framework in this document
0.5 Contents of this document
This document conforms to ISO’s requirements for management system standards. These requirements include a high level structure, identical core text and common terms with core definitions, designed to benefit users implementing multiple ISO management system standards.
This document does not include requirements specific to other subjects, such as those for quality, social responsibility, environmental, security or financial management, though its elements can be aligned or integrated with those of other management systems.
This document contains requirements that can be used by an organization to implement an OH&S management system and to assess conformity. An organization that wishes to demonstrate conformity to this document can do so by:
— making a self-determination and self-declaration, or
— seeking confirmation of its conformity by parties having an interest in the organization, such as customers, or
— seeking confirmation of its self-declaration by a party external to the organization, or
— seeking certification/registration of its OH&S management system by an external organization.
Clauses 1 to 3 in this document set out the scope, normative references and terms and definitions which apply to the use of this document, while Clauses 4 to 10 contain the requirements to be used to assess conformity to this document. Annex A provides informative explanations to these requirements. Annex NA gives the correspondence between this standard and GB/T 28001-2011. The terms and definitions in Clause 3 are arranged in conceptual order, with an alphabetical index and an alphabetical in Pinyin index provided at the end of this document.
In this document, the following verbal forms are used:
— “shall” indicates a requirement;
— “should” indicates a recommendation;
— “may” indicates a permission;
— “can” indicates a possibility or a capability.
Information marked as “Note” is for guidance in understanding or clarifying the associated requirement. “Notes” used in Clause 3 provide additional information that supplements the terminological data and can contain provisions relating to the use of a term.
Occupational Health and Safety Management Systems — Requirements with Guidance for Use
1 Scope
This document specifies requirements for an occupational health and safety (OH&S) management system, and gives guidance for its use, to enable organizations to provide safe and healthy workplaces by preventing work-related injury and ill health, as well as by proactively improving its OH&S performance.
This document is applicable to any organization that wishes to establish, implement and maintain an OH&S management system to improve occupational health and safety, eliminate hazards and minimize OH&S risks (including system deficiencies), take advantage of OH&S opportunities, and address OH&S management system nonconformities associated with its activities.
This document helps an organization to achieve the intended outcomes of its OH&S management system. Consistent with the organization’s OH&S policy, the intended outcomes of an OH&S management system include:
a) continual improvement of OH&S performance;
b) fulfilment of legal requirements and other requirements;
c) achievement of OH&S objectives.
This document is applicable to any organization regardless of its size, type and activities. It is applicable to the OH&S risks under the organization’s control, taking into account factors such as the context in which the organization operates and the needs and expectations of its workers and other interested parties.
This document does not state specific criteria for OH&S performance, nor is it prescriptive about the design of an OH&S management system.
This document enables an organization, through its OH&S management system, to integrate other aspects of health and safety, such as worker wellness/wellbeing.
This document does not address issues such as product safety, property damage or environmental impacts, beyond the risks to workers and other relevant interested parties.
This document can be used in whole or in part to systematically improve occupational health and safety management. However, claims of conformity to this document are not acceptable unless all its requirements are incorporated into an organization’s OH&S management system and fulfilled without exclusion.
2 Normative References
There are no normative references in this document.
3 Terms and Definitions
For the purposes of this document, the following terms and definitions apply.
3.1
organization
person or group of people that has its own functions with responsibilities, authorities and relationships to achieve its objectives (3.16)
Note 1: The concept of organization includes, but is not limited to sole-trader, company, corporation, firm, enterprise, authority, partnership, charity or institution, or part or combination thereof, whether incorporated or not, public or private.
Note 2: This constitutes one of the common terms and core definitions for ISO management system standards given in Annex SL of the Consolidated ISO Supplement to the ISO/IEC Directives, Part 1.
3.2
interested party (preferred term)
stakeholder (admitted term)
person or organization (3.1) that can affect, be affected by, or perceive itself to be affected by a decision or activity
Note: This constitutes one of the common terms and core definitions for ISO management system standards given in Annex SL of the Consolidated ISO Supplement to the ISO/IEC Directives, Part 1.
3.3
worker
person performing work or work-related activities that are under the control of the organization (3.1)
Note 1: Persons perform work or work-related activities under various arrangements, paid or unpaid, such as regularly or temporarily, intermittently or seasonally, casually or on a part-time basis.
Note 2: Workers include top management (3.12), managerial and non-managerial persons.
Note 3: The work or work-related activities performed under the control of the organization may be performed by workers employed by the organization, workers of external providers, contractors, individuals, agency workers, and by other persons to the extent the organization shares control over their work or work- related activities, according to the context of the organization.
3.4
participation
involvement in decision-making
Note: Participation includes engaging health and safety committees and workers’ representatives, where they exist.
3.5
consultation
seeking views before making a decision
Note: Consultation includes engaging health and safety committees and workers’ representatives, where they exist.
3.6
workplace
place under the control of the organization (3.1) where a person needs to be or to go for work purposes
Note: The organization’s responsibilities under the OH&S management system (3.11) for the workplace depend on the degree of control over the workplace.
3.7
contractor
external organization providing services to the organization (3.1) in accordance with agreed specifications, terms and conditions
Note: Services may include construction activities, among others.
3.8
requirement
need or expectation that is stated, generally implied or obligatory
Note 1: “Generally implied” means that it is custom or common practice for the organization (3.1) and interested parties (3.2) that the need or expectation under consideration is implied.
Note 2: A specified requirement is one that is stated, for example in documented information (3.24).
Note 3: This constitutes one of the common terms and core definitions for ISO management system standards given in Annex SL of the Consolidated ISO Supplement to the ISO/IEC Directives, Part 1.
3.9
legal requirements and other requirements
legal requirements that an organization (3.1) has to comply with and other requirements (3.8) that an organization has to or chooses to comply with
Note 1: For the purposes of this document, legal requirements and other requirements are those relevant to the OH&S management system (3.11).
Note 2: “Legal requirements and other requirements” include the provisions in collective agreements. Note 3: Legal requirements and other requirements include those that determine the persons who are workers’ (3.3) representatives in accordance with laws, regulations, collective agreements and practices.
3.10
management system
set of interrelated or interacting elements of an organization (3.1) to establish policies (3.14) and objectives (3.16) and processes (3.25) to achieve those objectives
Note 1: A management system can address a single discipline or several disciplines.
Note 2: The system elements include the organization’s structure, roles and responsibilities, planning, operation, performance evaluation and improvement.
Note 3: The scope of a management system may include the whole of the organization, specific and identified functions of the organization, specific and identified sections of the organization, or one or more functions across a group of organizations.
Note 4: This constitutes one of the common terms and core definitions for ISO management system standards given in Annex SL of the Consolidated ISO Supplement to the ISO/IEC Directives, Part 1. Note 2 has been modified to clarify some of the wider elements of a management system.
3.11
occupational health and safety management system OH&S management system
management system (3.10) or part of a management system used to achieve the OH&S policy (3.15)
Note 1: The intended outcomes of the OH&S management system are to prevent injury and ill health (3.18) to workers (3.3) and to provide safe and healthy workplaces (3.6).
Note 2: The terms “occupational health and safety” (OH&S) and “occupational safety and health” (OSH) have the same meaning.
3.12
top management
person or group of people who directs and controls an organization (3.1) at the highest level
Note 1: Top management has the power to delegate authority and provide resources within the organization, provided ultimate responsibility for the OH&S management system (3.11) is retained.
Note 2: If the scope of the management system (3.10) covers only part of an organization, then top management refers to those who direct and control that part of the organization.
Note 3: This constitutes one of the common terms and core definitions for ISO management system standards given in Annex SL of the Consolidated ISO Supplement to the ISO/IEC Directives, Part 1. Note 1 has been modified to clarify the responsibility of top management in relation to an OH&S management system.
3.13
effectiveness
extent to which planned activities are realized and planned results achieved
Note: This constitutes one of the common terms and core definitions for ISO management system standards given in Annex SL of the Consolidated ISO Supplement to the ISO/IEC Directives, Part 1.
3.14
policy
intentions and direction of an organization (3.1), as formally expressed by its top management (3.12)
Note: This constitutes one of the common terms and core definitions for ISO management system standards given in Annex SL of the Consolidated ISO Supplement to the ISO/IEC Directives, Part 1.
Foreword III
Introduction V
1 Scope
2 Normative References
3 Terms and Definitions
4 Context of the Organization
4.1 Understanding the organization and its context
4.2 Understanding the needs and expectations of workers and other interested parties
4.3 Determining the scope of the OH&S management system
4.4 OH&S management system
5 Leadership and Worker Participation
5.1 Leadership and commitment
5.3 Organizational roles, responsibilities and authorities
5.4 Consultation and participation of workers
6 Planning
6.1 Actions to address risks and opportunities
6.2 OH&S objectives and planning to achieve them
7 Support
7.1 Resources
7.2 Competence
7.3 Awareness
7.4 Communication
7.5 Documented information
8 Operation
8.1 Operational planning and control
8.2 Emergency preparedness and response
9 Performance Evaluation
9.1 Monitoring, measurement, analysis and performance evaluation
9.2 Internal audit
9.3 Management review
10 Improvement
10.1 General
10.2 Incident, nonconformity and corrective action
10.3 Continual improvement
Annex A (Informative) Guidance on the Use of This Document
Annex NA (Informative) Correspondence between This Standard and GB/T 28001-
Bibliography
Alphabetical index of terms
Alphabetical in Pinyin index of terms
Figure 1 Relationship between PDCA and the framework in this document VIII
Table NA.1 Correspondence between this standard and GB/T 28001-
Table NA.2 Correspondence between GB/T 28001-2011 and this standard