Legislative changes – 1st quarter 2023

In the area of legislative and regulatory changes, some of the general information and changes are listed here, in the categories below.

OSH

– amendment to the decree on occupational medical services

• Amendment to Decree No. 79/2013 Coll., On Implementation of Certain Provisions of Act No. 373/2011 Coll., On Specific Health Services - dated 1/1/2023

Changes - only some changes are listed, especially with regard to smaller companies in category 1 and 2 non-risky work
a) In the event that the company has a work category in classification 1 non-risky work, a contract with an occupational physician is no longer required. In such a case, employees in category 1 non-risky work will undergo medical examinations at their "district doctor".
b) Medical supervision at the workplace by an occupational physician is not required in the category of work in classification No. 1 and 2 of non-risky work.
c) Regular periodic inspections are not required for some professions that are included in category 1 and 2 non-risk work (e.g. administrative employees, driver clerks, ..).

QMS

• ČSN P ISO/TS 10020 - Quality management systems –
Organizational Change Management - Processes, Issue 4/2023

• VDA 6.3 - Process Audit, released 1/2023

Changes - some of the changes are listed
a) Chapter 8 Audit of the service process, which is in the processing stage before publication as VDA standard 6.6 – Audit of the process – other services, has been removed.
b) Greater emphasis is placed on auditing the used software
c) Some potential analysis questions and its evaluation parameters were modified/added.

Product quality and safety

• ---

EMS

• ČSN P ISO/TS 14074 - Environmental management - Life cycle assessment - Principles, requirements and guidelines for normalization, weighting and interpretation, edition 4/2023

ISMS

• ISO/IEC 27002:2023 - Information security, cyber security and privacy protection - Information security measures, edition 4/2023

Changes - some changes are listed
a) table B1, the new standard, shows the correlations (the standard indicates the so-called correspondence) between the replaced standard ISO/IEC 27002:2013 and the new standard ISO/IEC 27002:2023.
b) structure of measures topics:
5 – Organizational; 6 – HR measures; 7 – Physical security measures; 8 – Technological measures
c) use of attributes - listed in Table A1 = Measure Type / IB Features / Cyber Security Concepts / Operational Capabilities / Security Domains

• ISO/IEC 27001:2023

a) Czech version is being prepared
b) International standard ISO/IEC 27001:2022 - Information security management system was published in 10/2022
c) A 3-year certification transition period is established for this standard.