The IATF 16949:2016 Rules, 6th Edition (effective January 2025), define how organizations can achieve and maintain certification. Along with the official rules, the Sanctioned Interpretations (SIs) bring important updates that organizations must follow IATF-Rules-6th-Edition_Sanction….
If you are preparing for audits, training your team, or writing internal guidelines, here are the 50 most important questions and answers, categorized in simple language.
IATF Rule 6th Edition Q&A
1. Certification Process
Q1: What is the validity of an IATF certificate?
A1: Certificates are valid for 3 years, provided all audits are completed on time.
Q2: What is the audit cycle?
A2: Stage 1 + Stage 2 → Surveillance 1 → Surveillance 2 → Recertification.
Q3: Can Stage 1 and Stage 2 audits be combined?
A3: No. Stage 1 must be completed before Stage 2.
Q4: Who issues the certificate?
A4: Only IATF-recognized Certification Bodies (CBs).
Q5: What is the maximum gap between Stage 1 and Stage 2 audits?
A5: Maximum 90 days.
Q6: When does the certification cycle begin?
A6: From the last day of the Stage 2 audit.
Q7: Can a client change its Certification Body?
A7: Yes, but only through the official transfer process.
2. Audit Requirements
Q8: How often should surveillance audits be done?
A8: Once every 12 months.
Q9: What is the minimum duration of a surveillance audit?
A9: Based on IATF audit day tables; cannot go below the defined minimum.
Q10: How is audit time calculated?
A10: Based on employee count, shift patterns, complexity, exclusions, and support sites.
Q11: Can audit days be reduced by the CB?
A11: No, not below IATF minimum tables.
Q12: What must be checked during every audit?
A12: Customer-specific requirements (CSRs), performance, NC follow-up, and system effectiveness.
Q13: Are virtual audits allowed?
A13: Yes, in special cases, but rules must be followed.
Q14: What is a transfer audit?
A14: An audit when an organization changes from one CB to another.
Q15: Is an internal audit required before every external audit?
A15: Yes, organizations must perform full internal audits annually.
3. Nonconformities
Q16: How many types of NCs exist?
A16: Two – Major NC and Minor NC.
Q17: What is the timeline for containment?
A17: Within 24 hours of the NC issue.
Q18: When should the correction and the corrective action plan be submitted?
A18: Within 90 days.
Q19: What happens if NCs are not closed on time?
A19: The certificate may be suspended.
Q20: Who verifies NC closure?
A20: The Certification Body auditor.
Q21: Can NC closure be verified remotely?
A21: Yes, if agreed by CB and the evidence is sufficient.
Q22: What is a major NC?
A22: A complete failure or absence of a required process/system.
4. Suspension & Withdrawal
Q23: When can a certificate be suspended?
A23: If audits are missed, NCs remain open, or the system fails.
Q24: Maximum suspension period?
A24: 110 days.
Q25: What happens after 110 days?
A25: Certificate is withdrawn.
Q26: Can an organization use its suspended certificate?
A26: No, suspended certificates are invalid.
Q27: Who informs IATF about suspensions?
A27: Certification Body.
Q28: Can suspension be lifted?
A28: Yes, if problems are corrected and verified.
5. Scope & Eligibility
Q29: Who can get IATF certification?
A29: Manufacturing sites making automotive parts for customers.
Q30: Can a trading company get certified?
A30: No.
Q31: Can service parts suppliers get certified?
A31: Yes, if for automotive customers.
Q32: Can software-only companies be certified?
A32: No, unless linked to automotive manufacturing.
Q33: Can headquarters be certified alone?
A33: No, only manufacturing sites.
Q34: Can test labs be certified?
A34: Only if part of a certified site.
6. Remote Supporting Functions
Q35: What is a remote supporting function?
A35: Functions supporting the plant but located elsewhere (design, purchasing).
Q36: Do they get separate certificates?
A36: No.
Q37: Are they audited?
A37: Yes, during the main site’s audit.
Q38: Should they be listed on the certificate?
A38: Yes, with their addresses.
Q39: Can remote functions belong to another company?
A39: Yes, if they support the certified site.
7. Special & Transfer Audits
Q40: When is a special audit required?
A40: Customer complaint, relocation, major changes.
Q41: Who decides about a special audit?
A41: The Certification Body.
Q42: What is checked in a transfer audit?
A42: Previous audit history, NC status, and performance.
Q43: Can a client choose any CB during transfer?
A43: Yes, but must follow IATF transfer rules.
Q44: What happens if the transfer audit fails?
A44: Certification process must restart.
8. Decertification & Appeals
Q45: What happens if a certificate is withdrawn?
A45: The Company must restart with Stage 1 & 2 audits.
Q46: Can a client appeal CB decisions?
A46: Yes, through the CB’s appeal process.
Q47: Can an organization reapply immediately after withdrawal?
A47: Yes, but only as a new client.
Q48: Who can see decertification details?
A48: Automotive customers via the IATF database.
9. Roles & Responsibilities
Q49: What is the role of the Certification Body?
A49: Conduct audits, issue certificates, and maintain compliance.
Q50: What is the role of the organization?
A50: Maintain QMS, inform CB of changes, resolve NCs, and follow IATF rules.
✨ Conclusion
The IATF Rules 6th Edition is not just about certification—it’s about sustaining quality systems. Understanding the rules, NC timelines, audit planning, and new sanctioned interpretations will help your organization stay compliant and avoid surprises during audits.
👉 If you are preparing for IATF 16949 certification, bookmark these 50 Q&As as a quick reference for your team.
For more details about the IATF Rule 6th Edition
Read more about the IATF 16949 Requirements:
Frequently Asked Questions (FAQs) on IATF Rules 6th Edition
Q1. What are the IATF Rules 6th Edition?
The IATF Rules 6th Edition are the official guidelines for achieving and maintaining IATF 16949 certification. It covers audit requirements, certification cycles, nonconformities, and the responsibilities of the certification body.
Q2. When is the IATF Rules 6th Edition effective?
It was published in April 2024 and became effective on 1 January 2025
Q3. What is the validity of an IATF certificate?
An IATF 16949 certificate is valid for 3 years, provided all surveillance and recertification audits are completed on time.
Q4. What are the types of nonconformities in IATF audits?
There are two types:
- Major NC – complete system failure or missing process.
- Minor NC – partial gap or weak implementation.
Q5. What happens if nonconformities are not closed on time?
If NCs are not closed within 90 days, the certificate may be suspended. If issues are not resolved within 110 days, the certificate is withdrawn.
Q6. Can trading or software-only companies get IATF certification?
No. Only manufacturing sites producing automotive parts, service parts, or accessories for automotive customers are eligible.
Q7. What is a special audit in IATF certification?
A special audit is conducted when there are customer complaints, major process changes, relocation, or repeated system failures.
Q8. What are the key changes in the 2024 Sanctioned Interpretations?
- Audit dates must be confirmed 90 days before.
- Major NCs must be verified via an on-site special audit within 90 days.
- The certificate decision must be made within 120 days of a special audit.
- Transfer audits require CBs to upload client data within 7 days.