ISO 28594:2017 – Combined Accept-Zero Sampling Systems and Process Control Procedures for Product Acceptance

Integrating Sampling and Process Control for Superior Quality Assurance

ISO 28594:2017 represents a significant advancement in quality management by integrating accept-zero sampling systems with statistical process control (SPC) procedures. This combined approach leverages the strengths of both methodologies: the lot-disposition capability of acceptance sampling and the process-monitoring capability of SPC. The standard is designed for manufacturing environments where both supplier quality history and process stability data are available to inform acceptance decisions.

The key innovation of ISO 28594 is the concept of “process credit” — combining supplier credit (per ISO 28593) with process capability indices (Cpk, Ppk) to determine the appropriate sampling intensity. A supplier with both high credit and demonstrated process capability may qualify for reduced inspection or even skip-lot sampling.

Combined Decision Framework

The standard defines four acceptance states based on the intersection of credit level and process capability: full inspection, normal sampling, reduced sampling, and skip-lot. For a supplier to achieve skip-lot status, they must simultaneously maintain a credit score above 15 and demonstrate Cpk ≥ 1.33 for the last 25 subgroups. The process control component requires monitoring of at least 20 subgroups of size 5 before the process capability can be considered statistically valid.

Credit Score	Cpk < 1.0	1.0 ≤ Cpk < 1.33	Cpk ≥ 1.33
15 – 20	Normal sampling	Reduced sampling	Skip-lot (1 in 5)
6 – 14	Tightened sampling	Normal sampling	Reduced sampling
1 – 5	100% inspection	Tightened sampling	Normal sampling
≤ 0	Disqualification	100% inspection	Tightened sampling

The combined approach dramatically reduces the risk of accepting nonconforming lots. For a process operating at 1.33 Cpk (approximately 64 ppm nonconforming), the combined system provides higher consumer protection than either sampling alone or process control alone because it detects both process shifts and isolated nonconformities.

Process Control Requirements and Control Chart Integration

ISO 28594 specifies the use of X-bar and R charts (or X-bar and S charts for subgroup sizes > 10) with control limits set at ±3 sigma. The standard requires that process capability be recalculated every 100 subgroups or monthly, whichever is more frequent. When the process control chart shows an out-of-control signal (point beyond control limits, seven points on one side of centerline, or a run of six steadily increasing/decreasing points), the acceptance state immediately reverts to tightened sampling regardless of credit score.

One common implementation mistake is using pre-control (modified tolerance limits) instead of formal SPC. ISO 28594 requires Shewhart-type control charts meeting the requirements of ISO 7870-2. Pre-control methods do not provide the statistical rigor needed for the combined credit-process capability decision matrix.

Engineering Implementation for Production Lines

Implementing ISO 28594 requires integrated software that pulls data from both the inspection database (lot disposition results) and the process monitoring system (SPC charts). The standard recommends a minimum of two full production cycles (from raw material to finished goods) to establish initial credit and capability baselines. For multi-station processes (e.g., injection molding with 8 cavities), capability must be assessed per station, and the lowest Cpk across all stations is used for the decision matrix.

Never apply skip-lot sampling to critical-to-safety (CTS) characteristics. The standard explicitly exempts safety-related parameters from reduced or skip-lot inspection, requiring either normal sampling or 100% inspection regardless of demonstrated capability.

Statistical Process Control Integration Methodology

The SPC integration in ISO 28594 requires that process control data be collected and analyzed in real-time, with control charts updated at least hourly during production. The standard specifies that X-bar and R charts (for subgroup sizes 2-10) or X-bar and S charts (for subgroups >10) be used with control limits set at ±3 sigma from the process mean. Subgroup frequency must be sufficient to detect process shifts of 1.5 sigma within 2 hours of occurrence, which typically requires subgroups of size 5 taken every 30 minutes for high-volume production. When the process control chart exhibits any out-of-control signal (a point beyond the control limits, seven consecutive points on one side of the centerline, or a run of six steadily increasing or decreasing points), the acceptance state immediately reverts to tightened sampling regardless of the current credit score. This requirement recognizes that process instability invalidates the statistical basis for reduced sampling, as the probability of producing nonconforming items increases significantly during out-of-control conditions. The process capability index (Cpk or Ppk) must be recalculated after each out-of-control episode once the assignable cause has been identified and corrected and 25 new subgroups of data have been collected under the corrected process conditions. This ensures that process capability estimates reflect the current, stable state of the process rather than being inflated by historical data that includes the out-of-control period.

Organizations that have implemented ISO 28594 combined sampling report an average 25% reduction in total quality costs (inspection + failure costs) compared to traditional sampling alone. The combination of process control and acceptance sampling provides a more complete quality picture: process control detects subtle shifts before they produce nonconforming product, while acceptance sampling verifies the final output, catching any nonconformities that evade process control detection. The combined approach typically reduces the rate of nonconforming lots escaping to customers by 60-80% compared to either method used alone.

Documentation, Audit, and Continuous Improvement Requirements

ISO 28594 requires comprehensive documentation of the combined sampling system including: the rationale for selection of AQL values, the process capability acceptance criteria, the sampling intensity matrix with defined transition rules, and the procedures for handling out-of-control conditions. The standard mandates internal audits of the combined system at six-month intervals to verify: correct application of switching rules, accuracy of credit score calculations, validity of process capability estimates, and effectiveness of corrective actions taken in response to tightened inspection triggers. External (customer or third-party) audits are recommended annually. Records of all acceptance decisions, control chart data, and corrective actions must be maintained for a minimum of 3 years or as required by applicable regulatory standards. The standard also requires a continuous improvement process that analyzes trends in credit scores and process capability indices across all suppliers and product families, identifying systematic quality issues that may require cross-functional corrective action. This closed-loop quality management approach ensures that the combined sampling system evolves with the organization’s quality performance, driving continuous improvement rather than merely maintaining the status quo.

A critical implementation requirement is the treatment of safety-related characteristics. The standard explicitly exempts characteristics classified as critical-to-safety (CTS) from reduced or skip-lot sampling, requiring that these characteristics be subject to either normal sampling or 100% inspection at all times. The classification of characteristics as CTS must be documented with a formal risk assessment per ISO 14971 or equivalent industry-specific risk management standards, reviewed at least annually, and updated whenever design or process changes affect the safety significance of any characteristic.

FAQ

Q: Can ISO 28594 be applied to non-manufacturing processes?
A: Yes, the standard’s framework is adaptable to administrative and service processes where attribute sampling is applicable, provided process control metrics can be quantified.

Q: How frequently should the combined system be audited?
A: The standard recommends internal audits at 6-month intervals and external (customer) audits annually to verify correct application of the switching rules.

Q: What happens when process capability improves but credit is low?
A: The combined matrix handles this automatically: high capability with low credit results in tightened sampling, incentivizing the supplier to improve both quality and process control simultaneously.