It forms a Technical Reference Manual which has been developed by the Scottish Quality Management Centre to support learners before, during and after the ISO 14001:2026 Internal Auditor course.
It is not a replacement for the ISO 14001 standard, itself. It is SQMC’s practical interpretation: what the requirements are trying to achieve, how organisations commonly apply them, and what internal auditors should look for when gathering evidence.
An Environmental Management System, often shortened to EMS, is the organised way an organisation manages its environmental responsibilities.
It helps the organisation understand how its activities, products and services interact with the environment, decide what matters most, put controls in place, monitor performance, meet obligations, and improve over time.
A useful EMS is not just a folder of procedures. It should help people make better environmental decisions in real work.
ISO 14001 is the international standard for Environmental Management Systems. It sets out requirements an organisation can use to build, operate, check and improve its EMS.
Organisations use ISO 14001 to help them:
The Scottish Quality Management Centre teaches ISO 14001 as a practical management tool, not as paperwork for the sake of paperwork. A good EMS should help the organisation protect the environment, reduce risk, improve performance and make better decisions.
ISO 14001 follows the familiar Plan–Do–Check–Act model:
Internal auditing sits mainly in the Check stage, but good audit findings also feed Act and future Plan.
An ISO 14001 auditor checks whether an organisation’s environmental management system is:
The auditor does this by gathering objective evidence and evaluating it against audit criteria. Evidence may come from interviews, observation, documents, records, systems, data, physical conditions, or a combination of these.
First-party audits, internal assurance, process improvement, checking the organisation’s own EMS.
Planning and leading audits, managing audit teams, conducting formal audits, drawing audit conclusions, communicating with auditees, managing opening/closing meetings.
Evidence-based thinking, objectivity, audit criteria, sampling, professional behaviour, clear reporting.
The role is to provide useful assurance. A good audit helps the organisation see what is working, what is not working, where risk exists, and where improvement is needed.
A first-party audit is an audit carried out by or on behalf of the organisation itself. This is the type of audit covered in the SQMC ISO 14001:2026 Internal Auditor course.
Its purpose is usually to check conformity, effectiveness, readiness, risk control and opportunities for improvement.
A second-party audit is usually carried out by a customer, client or organisation with a direct interest in another organisation’s performance. For example, a company may audit a waste contractor, chemical supplier, cleaning contractor or logistics provider.
In EMS terms, second-party audits can be useful where the organisation relies on external providers but still needs confidence that environmental requirements are being controlled or influenced.
A third-party audit is carried out by an independent certification body. Its purpose is to assess whether the organisation’s EMS conforms to ISO 14001 for certification or continued certification.
Internal auditors do not need to behave like certification auditors, but they should understand how strong internal audits help the organisation remain ready for external scrutiny.
Each auditable clause guide follows a similar pattern:
Use it as a practical reference, not as a script. The actual standard remains the formal audit criteria; this manual helps explain how those criteria work in practice.
Clause 1 explains what ISO 14001 is for and where it can be applied.
In simple terms, ISO 14001 can be used by any organisation that wants to manage its environmental responsibilities in a systematic way. It applies to the environmental aspects of activities, products and services the organisation can control or influence, considering a lifecycle perspective.
The scope clause reminds users that ISO 14001 is flexible. It does not set one environmental performance level for everyone. A small office, a manufacturing plant, a construction contractor and a public-sector body can all use the standard, but their EMS arrangements will look different.
“ISO 14001 applies to our site.”
This may be too vague if the organisation has several activities, external providers, contractors or product/service impacts that extend beyond the physical site.
“The EMS applies to the organisation’s manufacturing, warehousing and office activities at the Dundee site, including relevant contractor activities and externally provided services that can affect environmental performance.”
Clause 2 identifies whether any other documents are formally required in order to apply ISO 14001.
For ISO 14001, there are no normative references. In plain English, this means there is no separate external standard that must be used as a formal requirement in order to implement ISO 14001.
Although there are no normative references, organisations may still use other helpful guidance, such as ISO 14004 for EMS implementation guidance or ISO 19011 for audit guidance.
Internal auditors do not normally audit Clause 2 directly. However, they should understand the difference between:
SQMC tip: ISO 19011 is not a requirement of ISO 14001, but it is widely used as good-practice guidance for auditing management systems.
Clause 3 defines key terms used in ISO 14001. Auditors need to understand these terms because many audit findings depend on using them correctly.
If an auditor does not understand terms such as environmental aspect, environmental impact, compliance obligation, documented information, conformity and nonconformity, they will struggle to gather evidence or write clear findings.
ISO standards use words carefully. In particular:
Calling “waste disposal” an impact without explaining the environmental change it causes.
Aspect: generation of general waste. Impact: depletion of resources and potential pollution associated with waste treatment or disposal.
Clause 4 asks the organisation to understand the bigger picture before designing or maintaining its EMS.
The EMS should be shaped by the organisation’s purpose, internal and external issues, interested parties, compliance obligations, scope and processes.
Environmental management is not carried out in a bubble. Organisations are affected by environmental conditions and can also affect those conditions through their activities, products and services.
Relevant issues may include climate, pollution levels, availability of natural resources, biodiversity, ecosystem health, legal expectations, customer pressure, technology, finances, organisational culture and operational capability.
The organisation should determine:
“Interested parties are customers, employees and regulators.”
This lists people but does not explain what they need or expect, or which expectations matter to the EMS.
“Regulators expect compliance with permits and waste obligations; customers expect evidence of environmental control and carbon reduction; neighbours expect noise, odour and traffic impacts to be controlled.”
An engineering company identifies high energy use, solvent emissions, customer carbon-reporting expectations and supply-chain disruption as EMS context issues. These influence its objectives, operational controls, supplier communication and monitoring arrangements.
Clause 5 ensures the EMS is led, supported and integrated into the organisation rather than delegated to one environmental coordinator with no real influence.
Top management must demonstrate leadership, establish an environmental policy, assign responsibilities and ensure the EMS supports strategic direction.
An EMS cannot be effective if environmental management is disconnected from business decisions. Leadership affects resources, priorities, culture, accountability and whether environmental objectives are taken seriously.
The environmental policy is signed by the managing director, but no senior manager can explain the organisation’s significant environmental aspects or current objectives.
Top management can explain the EMS priorities, why the environmental objectives matter, how resources are allocated, and how environmental performance is reviewed.
Clause 6 is where the organisation turns context and policy into practical planning.
It covers environmental aspects, compliance obligations, risks and opportunities, planning actions, environmental objectives and planning changes.
Poor environmental performance often begins with poor planning. If an organisation does not understand its aspects, impacts, obligations and risks, it cannot control them effectively.
An aspect is the interaction point between the organisation and the environment. An impact is the environmental change that results or could result.
Activity: vehicle delivery. Aspect: fuel use and exhaust emissions. Impact: greenhouse gas emissions and air pollution.
An aspect register includes “electricity”, “waste” and “water” but does not identify associated impacts, significance criteria, controls or monitoring arrangements.
The organisation identifies activities, related aspects, actual or potential impacts, significance criteria, controls, compliance obligations, objectives and monitoring indicators.
Clause 7 ensures the EMS has the support needed to work properly. That includes resources, competence, awareness, communication and documented information.
Even a well-planned EMS will fail if people lack time, tools, competence, awareness or reliable information. Support clauses are often where the practical strength of the EMS becomes visible.
ISO 14001 expects organisations to communicate environmental information in a planned, reliable and meaningful way. This includes internal communication, external communication, contractor communication, environmental reporting, escalation of issues and communication during change or emergency situations.
The goal is not simply “sending emails”. Relevant environmental information should reach the right people, at the right time, in the right format, with sufficient accuracy and reliability.
“Staff receive environmental training during induction.”
This does not show whether the training covers significant aspects, role-specific controls, emergency arrangements or competence needs.
Relevant employees and contractors receive role-specific environmental instruction, including significant aspects, controls, emergency actions and reporting routes. Competence and awareness are reviewed through observation, questioning and performance results.
Clause 8 turns planning into controlled action. It covers operational planning and control, externally provided processes, lifecycle controls, and emergency preparedness and response.
This is where the EMS meets real work. Controls should prevent, reduce or manage environmental impacts in day-to-day activities.
The organisation does not necessarily control every environmental impact across the lifecycle. However, it should understand where it has control and where it can influence others.
The organisation has a procedure for spill response, but spill kits are incomplete, contractors have not been briefed, and no one can explain the reporting process.
Spill kits are available and checked, relevant people are trained, contractors receive induction, spill drills are reviewed, and lessons learned are fed into operational controls.
Clause 9 checks whether the EMS is working. It covers monitoring, measurement, analysis, evaluation, compliance evaluation, internal audit and management review.
An organisation cannot improve what it does not evaluate. Clause 9 should provide evidence about environmental performance, effectiveness of controls, compliance status and whether the EMS remains suitable.
Internal audit provides information on whether the EMS conforms to ISO 14001 and the organisation’s own requirements, and whether it is effectively implemented and maintained.
Each audit should have a clear objective, scope and criteria. This prevents audits becoming vague walkthroughs with no clear purpose.
Management review is where top management steps back and assesses whether the EMS remains suitable, adequate and effective. It should use evidence from performance results, audits, compliance evaluation, objectives, communication, resources, risks, opportunities and changes.
Clause 10 ensures the EMS improves over time and that nonconformities are handled properly.
The organisation should continually improve the suitability, adequacy and effectiveness of the EMS to enhance environmental performance.
Environmental management is not a one-off exercise. Organisations change, legal expectations change, technology changes, stakeholder expectations change and environmental conditions change. The EMS should learn and adapt.
When a nonconformity occurs, the organisation should react to it, deal with consequences, determine the cause, implement action, review effectiveness and change the EMS if needed.
A key distinction:
A spill occurs. The organisation cleans it up and closes the issue without asking why the spill happened or whether similar spills could occur elsewhere.
The organisation cleans up the spill, investigates the cause, improves storage arrangements, updates training, checks similar areas, and later verifies whether the actions have reduced recurrence risk.
The Scottish Quality Management Centre encourages auditors to be practical, fair and evidence-based. A strong EMS audit is not about catching people out. It is about helping the organisation understand whether its environmental controls are working and where improvement is needed.
Use this manual alongside SQMC course activities, the Auditor Toolkit and your organisation’s own EMS arrangements. The best auditors keep learning, keep asking better questions, and keep linking audit evidence back to environmental performance.
ISO 14001:2026 is the international standard for Environmental Management Systems. It sets out requirements organisations can use to manage environmental responsibilities, enhance environmental performance, meet compliance obligations and achieve environmental objectives.
This guide is written for internal auditors, lead auditors, managers, QHSE professionals and EMS practitioners who need to understand ISO 14001:2026 from an audit and evidence perspective.
An ISO 14001 auditor looks for objective evidence that the organisation's Environmental Management System conforms to requirements, is effectively implemented, supports environmental performance and helps the organisation meet compliance obligations and environmental objectives.
An environmental aspect is something about an organisation's activities, products or services that can interact with the environment. An environmental impact is the change to the environment that results, or could result, from that aspect.
No. This SQMC guide is a plain-English interpretation and training support resource. It does not replace the ISO 14001 standard itself, which remains the formal audit criteria.