A risk assessment is a thorough preventative procedure for identifying and quantifying potential
hazards impacting food safety.
This method defines risks and provides preventative actions for
mitigating or eliminating the risks (depending on severity) within a scope of assessment. Within each
SQF Food Safety Code, a risk assessment is required or implied to adequately and fully comply with
many sections and elements within the Code.
- Construct a plan to identify and manage food safety risks
Applicable Code Elements
A danger or risk to product safety.
An action to eliminate the cause of a detected non-conformity or other undesirable situation
An action to determine and eliminate the causes of a potential non-conformity
- Define the scope of assessment.
- List all activities within scope of assessment.
- Describe activities/processes/machinery used/employees involved within the scope of
- Brief description of what is done at each step in activities. Include the machinery
used and who is responsible for various actions and checks.
- Define areas of importance.
- Assess areas of particular importance. These areas could be an area with a high
likelihood for the risk to occur. Additionally, it could be an area where the risk, if it
were to occur, would be severe.
- Describe and characterize the identified risks at each point in the defined scope.
- List all potential risks throughout each activity within the scope. For each risk,
describe the potential impact the risk could pose to the safety of the activity being
carried out. Characterize the severity of the risk should it occur. Useful information
for assessing a risk could be through, but not limited to: consumer feedback,
scientific research, audit results, etc.
- Define preventative methods/procedures for addressing such risks.
- Assess and list current controls in place for the risk. Define preventative methods
based on the characterization of risk severity and likelihood to occur.
- Define a plan should the hazard occur despite proper preventative actions in place.
- Define a plan for a disaster response to the risks occurring.
- Monitor and review documentation.
- Create a schedule for monitoring the controls in place to prevent the risk. Review
documentation on an as needed or regular basis.