5. Product safety plan
Risk assessment
In this article we look at the inputs and outputs of risk assessment and how to make it ‘robust’.
What is a risk assessment?
A risk assessment is a structured process used to evaluate the likelihood of an event occurring and the severity of its impact if it does. It helps determine whether controls are needed to manage the risk.
Every risk assessment must have:
- Inputs – information that goes into it.
- Outputs – information that is determined from the risk assessment.
Inputs
It is essential that risk assessments are driven by facts and data to ensure objective outcomes. However, many assessments are written with a predetermined result in mind, leading to selective use of information that supports the expected conclusion.
Using selective information negates the purpose of doing the risk assessment, because you’re not using facts and data to drive the result.
The type of facts and data that should be used in risk assessment could be:
- Complaints information.
- Previous incidents.
- History of non-conforming product.
- Information from industry recalls.
- Information from textbooks.
Subjective evidence such as personal opinions and gut feelings, which are not based in fact, must not be included.
Outputs
A risk assessment must always have an output, and the output must always have a purpose.
As an auditor, it’s very common to see assessments where the output doesn’t mean anything. Where a hazard has been risk assessed, to determine that the significance of the hazard is high. But the result of ‘high’ then doesn’t trigger the next step in the process.
The purpose of the risk assessment is to create an output. This output is the significance of the hazard and that result will then trigger the next step – which is to define the type of controls for that hazard.
What is the output used for?
The output of the risk assessment is used to either:
- Determine what controls are needed, to manage the risk identified.
- Justify why controls are not needed.
The controls may be prerequisite controls, operational prerequisites, preventive controls or critical control points.
How do you make a risk assessment ‘robust’?
Many standards require that a risk assessment be “robust,” but this term can often be unclear. So, what does it actually mean?
At its core, a robust risk assessment is one that stands up to scrutiny—there should be no ambiguity or debate about its conclusions. This means the assessment must be well-supported with sufficient data and a clearly documented rationale behind the decisions made.
A robust assessment doesn’t rely on subjective agreement. It’s not the auditor’s role to decide whether they personally agree with the outcome. Instead, the auditor should be able to review the assessment independently—without additional explanation—and fully understand how and why the conclusions were reached.
In short, robustness comes from transparency, evidence, and logical consistency.
When is a risk assessment needed?
A risk assessment must be completed when you need to determine controls or justify why controls aren’t needed. However, a risk assessment is also needed whenever the standard states any of the following:
- … risk assessment must/shall be completed/carried out/documented.
- …. based on risk.
- …must/shall be risk-based.
Examples
| BRCGS Food Safety Clause Reference | Extract Requiring Risk Assessment |
| 1.3.3 | A risk-based approach shall be applied to determine the scope and controls implemented within the food safety management system. |
| 1.4.1 | The process shall consider… the identification of hazards and the assessment of the risks associated with them. |
| 1.4.2 | The review shall be based on an assessment of the risks to food safety… |
| 2.1.1 | A documented food safety culture plan shall be established, implemented and maintained. The plan shall be based on risk… |
| 2.2.3 | The method used for internal audits shall be based on risk and shall consider the results of previous audits and the importance of the process concerned. |
| 3.2.1 | The cleaning and disinfection programme shall be risk-based… |
| 3.2.3 | The effectiveness of the cleaning and disinfection programme shall be verified based on risk… |
| 3.4.1 | The control of allergens shall be risk-based… |
| 3.5.1.2 | The approval and monitoring process shall be risk-based… |
| 3.5.4 | The acceptance procedure for purchased materials shall be risk-based… |
| 4.1.1 | The hazard analysis shall be conducted to identify… hazards and assess their associated risks. |
| 4.1.2 | The selection and implementation of control measures shall be based on risk assessment. |
| 4.12.1 | A risk assessment shall be carried out to determine the need for… testing of environmental samples. |
| 5.1.1 | The system shall be reviewed at a frequency based on risk… |
| 5.5.1 | The procedure for withdrawal and recall shall be tested… based on risk. |
| BRCGS Packaging Clause Reference | Extract Requiring Risk Assessment |
| 1.1.3 | A risk-based approach shall be applied when defining the scope and boundaries of the management system. |
| 1.2.1 | The process for determining which requirements apply to the organisation shall be based on risk… |
| 2.1.2 | …the method and frequency of internal audits shall be based on risk. |
| 3.1.1 | The process to control hazards shall be based on hazard analysis and risk assessment. |
| 3.1.2 | Selection of preventive controls shall be based on risk assessment. |
| 3.4.2 | The organisation shall carry out a risk assessment to determine… the frequency of environmental monitoring. |
| 3.7.1 | The frequency of testing shall be determined based on risk. |
| 4.2.1 | A documented food fraud vulnerability assessment shall be conducted based on risk… |
| 4.3.1 | The food defence plan shall be risk-based… |
| 5.1.1 | The procedure for managing incidents shall be tested at a frequency based on risk. |
Example risk assessment
First, we’ll look at a physical hazard in packaging and then at a microbial hazard – both specifically looking at whether hair nets are required in a packaging factory.
Hazard
Introduction hair contamination into food via food packaging, creating a physical hazard, due to staff not wearing hairnets, causing consumer upset.
Severity
The severity of hair contamination in food would not cause injury, but may cause consumer upset or disgust.
Severity = low.
Likelihood
The likelihood of hair adhering to the food contact packaging depends on the type of packaging material. Plastic materials are known to retain static charge, which increases the risk of hair clinging to the packaging. Other materials, such as paper or cardboard, are less likely to attract or retain hair.
If the hair adheres to the packaging, the likelihood of this contaminating the food is high for food contact packaging. The likelihood of the hair contaminating food if the packaging is not food contact, is low.
Static food contact packaging: high + high = high
Food contact packaging that doesn’t hold static: high + low = medium
Non-food contact packaging: low
Significance
| Scope | Severity | Likelihood | Significance | Hair covering required |
| Static food contact packaging | Low | High | Significant | Yes |
| Food contact packaging that doesn’t hold static | Low | Medium | Not significant | No |
| Non-food contact packaging | Low | Low | Not significant | No |
Hazard
Introduction of staphylococcus aureus contaminated hair into food via food packaging, creating a microbial hazard, due to staff not wearing hairnets, causing consumer food poisoning.
Severity
The severity of food poisoning due to staphylococcus aureus would be high, as it can become life threatening without medical attention.
Severity = high
Likelihood
The likelihood of hair adhering to the food contact packaging depends on the type of packaging material. Plastic materials are known to retain static charge, which increases the risk of hair clinging to the packaging. Other materials, such as paper or cardboard, are less likely to attract or retain hair.
If the hair adheres to the packaging, the likelihood of this contaminating the food is high for food contact packaging. The likelihood of the hair contaminating food if the packaging is not food contact, is low.
Static food contact packaging: high + high = high
Food contact packaging that doesn’t hold static: high + low = medium
Non-food contact packaging: low
Significance
| Scope | Severity | Likelihood | Significance | Hair covering required |
| Static food contact packaging | High | High | Significant | Yes |
| Food contact packaging that doesn’t hold static | High | Medium | Significant | Yes |
| Non-food contact packaging | High | Low | Not significant | No |
Likelihood – taking the type of food product into consideration
The type of food that is being packed into the packaging, and the process used by the customer who uses the packaging, is also significant:
A ready to eat food such as ice cream or a sandwiches, would allow Staphylococcus aureus to survive and but may not grow due to the chilled storage conditions. Therefore, the likelihood of Staphylococcus aureus contamination from hair on this food, causing food poisoning would be medium.
A ready to eat food, out of a retorted can (for example, a tin of peaches) wouldn’t allow Staphylococcus aureus to survive, as the retort process would kill the microbes. Therefore, the likelihood would be low.
A loaf of bread would allow Staphylococcus aureus to survive and grow. Therefore, the likelihood would be high.
| Scope | Severity | Likelihood | Significance | Hair covering required |
| Static food contact packaging and food will support survival. | High | Medium | Significant | Yes |
| Static food contact packaging and process will eliminate contamination (e.g. retort) | High | Low | Not significant | No |
| Static food contact packaging and food will support survival and growth. | High | High | Significant | Yes |
| Food contact packaging that doesn’t hold static and food will support survival. | High | Medium | Significant | Yes |
| Food contact packaging that doesn’t hold static and process will eliminate contamination (e.g. retort). | High | Low | Not significant | No |
| Food contact packaging that doesn’t hold static and food will support survival and growth. | High | High | Significant | Yes |
Further likelihood considerations
It’s also important to consider where the packaging is open to the environment and therefore, the risk of contamination. For example, if the film that makes the bread bags (from the example above) is only open for a short period of time – hair nets would only be required at that point in the process, if it can be segregated.
Finally, make sure that you put into your likelihood analysis the amount of hair complaints that you’ve had from your customers.
Thanks Kassy for another clear and great article.
Risk assessments are so misused and not driven by facts & data in the food industry that such article is very welcome.
Thanks for a really well explained and laid out set of examples that are easy to follow and show requirements clearly. A suggested addition to this would be to give an explanation of how the final significance rating is calculated/achieved, as this is somewhere where the process can fall down if not careful!
The likelihood of the hair actually being contaminated with Staphylococcus hasn’t been considered. What would be the worst case and some scientific data or research to back it up,
There are so many variables with this. It will vary from person to person, therefore in my opinion, you have to presume worst case – that it is contaminated.
Yes, I fully agreed with Melissa.