What is the most common reason small labs struggle in audits?

Fragmented evidence and inconsistent records are common issues. A structured evidence pack with clear ownership significantly reduces this risk.

Should we run an internal audit before the external audit?

Yes. A targeted internal audit 2-3 weeks before the external assessment is one of the best ways to find and close high-risk gaps early.

What should be in an ISO 17025 evidence pack?

At minimum: controlled procedures, method files, calibration and traceability records, competency files, internal audit and corrective action records, management review outputs, and sample reports.

ISO 17025 Audit Preparation Checklist (Step-by-Step)

Q: How early should we start ISO 17025 audit preparation?

A practical baseline is 30 days before the audit for scope confirmation, ownership, and evidence indexing, followed by focused closure at 15 and 7 days.

If your team is preparing for an ISO/IEC 17025 audit, the biggest risk is usually not technical capability. It is fragmented evidence: missing records, inconsistent methods, and last-minute document hunting.

Quick summary: start 30 days out, assign clear owners, and build one evidence index so every audit question maps to a record path and responsible person.

Need a printable version for audit prep meetings?

Download the checklist as a PDF and use it offline during pre-audit reviews.

Download printable PDF checklist

What This Checklist Is For

Preparing for initial accreditation or surveillance.
Reducing last-minute audit stress.
Standardizing audit preparation across a small team.
Improving consistency of objective evidence.

Use the free audit readiness checklist tool first

In about 5 minutes, you get a quick readiness score and a prioritized gap list. Use it first, then follow this guide for the full step-by-step preparation process.

Use free audit readiness checklist tool

30/15/7-Day Audit Prep Plan

Day -30: Build control and visibility

Confirm audit scope (activities, methods, locations).
Freeze document versions for the audit window.
Assign clause owners and backups.
Build an evidence index (what, where, owner, status).
Run initial internal gap check.

Day -15: Close gaps and rehearse

Run targeted internal audit on weak areas.
Verify calibration and traceability records.
Confirm competency records and authorizations.
Prepare sample job files for walkthrough.
Rehearse interview responses by role.

Day -7: Final readiness pass

Lock final evidence pack structure.
Validate retrieval speed for key records.
Run management brief on open risks.
Confirm logistics and audit contacts.
Prepare daily debrief template.

Clause-Aligned Preparation Checklist

Organization and impartiality

[ ] Roles and responsibilities current and approved.
[ ] Impartiality controls documented and reviewed.
[ ] Confidentiality commitments accessible.

Resources and competence

[ ] Competency matrix current by role and method.
[ ] Training and authorization evidence complete.
[ ] Equipment list with status and location up to date.
[ ] Environmental controls recorded where required.

Process controls

[ ] Methods approved and current.
[ ] Uncertainty approach documented.
[ ] Decision rules defined where conformity is stated.
[ ] Nonconforming work handling traceable.
[ ] Reporting templates are current versions only.

Management system controls

[ ] Internal audit program up to date.
[ ] Corrective actions include root cause and effectiveness checks.
[ ] Management review outputs available.
[ ] Risks and opportunities tracked with follow-up actions.

Evidence Pack Structure (Recommended)

Quality manual and core procedures
Method files and validation/verification evidence
Equipment and calibration records
Competency and authorization records
Internal audit and corrective action records
Management review outputs
Sample reports and supporting records

For each section, store owner, current version date, exact storage path, and backup location.

Common Findings in Small Labs (and Prevention)

Common finding	Why it happens	Prevention action
Document control drift	Multiple copies and informal edits	Single source of truth + pre-audit version lock
Incomplete records	Inconsistent closure process	Checklist-driven closure + weekly spot checks
Weak CAPA closure	Action logged without verification	Require root cause + effectiveness evidence
Inconsistent decision rules	Different interpretation by staff	One documented rule set + template enforcement

Need full workflow control? Check LabCalibrate pricing

If your team is juggling records in files and spreadsheets, see plans for centralized evidence tracking and audit-ready instrument history.

View pricing

FAQ

How early should we start ISO 17025 audit preparation?

Start at least 30 days before the audit to set scope, ownership, and evidence indexing. Use 15 and 7 day checkpoints to close gaps and validate readiness.

What is the biggest audit risk for small labs?

Fragmented records and unclear ownership. Most audit pain comes from retrieval and consistency, not from one missing policy statement.

Should we run an internal audit right before the external one?

Yes. A focused internal audit 2 to 3 weeks before the external visit helps identify and close high-impact gaps early.

What belongs in an evidence pack?

Controlled procedures, method files, calibration and traceability records, competency files, CAPA/internal audit evidence, management review outputs, and sample reports.