You are here: Home / Archives for Learn

by

Food Safety Standards Compared (2022)

 

Image credit: Robert Anasch

 

Different food safety standards have different food fraud requirements. For example:

  • Some standards require food businesses to include counterfeiting in their vulnerability assessments, while others don’t.
  • Some standards specify that vulnerability assessments must be performed on ingredients, while others state they should be done on finished products.

Confused? We are here to help.  Read on to find out which standards have what requirements, and get recommendations for creating a great food fraud prevention (VACCP) program.

Background

Food safety standards are standards that describe requirements for food and related businesses.  The requirements aim to ensure that food and food-related goods are safe for consumers and customers.  The correct term for such standards is food safety management systems standards (FSMS).

There are food safety standards for all types of operations within the food supply chain, including:

  • growing and packing fresh produce,
  • manufacture of food and food ingredients,
  • buying and selling food (“brokers”),
  • storage and transport of food,
  • manufacture or converting of packaging materials
  • manufacture of animal feed or pet food,
  • services such as cleaning, laundry, or pest control for food businesses.

While the over-arching aim of all food safety standards is to keep consumers safe, many standards also serve secondary purposes. Some of the most popular food safety standards were developed by food retailers, with the aim of protecting their brands as well as keeping consumers safe. Other standards were developed to help food businesses understand best practices and gain a way to demonstrate their excellence through independent certifications.  Some standards include quality parameters, while others only address food safety issues.

There are dozens of internationally accepted food safety management system standards, each with slightly different requirements.  This can make it difficult to know which standards are ‘better’ or more suitable for your food company.

To solve this problem, a standard for food safety standards was created by the GFSI (Global Food Safety Initiative).  The GFSI assesses and approves food safety standards using a process called benchmarking. The aim of GFSI benchmarking is to define best practice in food safety standards and provide a way to compare and align different food safety standards.

Among the dozens of food safety standards, some are benchmarked by the GFSI (Global Food Safety Initiative), while others are not.  Benchmarked standards usually have more requirements and more rigorous expectations than non-benchmarked standards.  The auditing and certification processes for benchmarked standards are typically more expensive than for non-benchmarked standards.

Food Fraud in Food Safety Standards

Food fraud prevention activities are an important part of all food safety management systems because food fraud can pose a risk to food safety.  Some food safety standards have separate, stand alone requirements for food fraud prevention activities, while others do not.  Standards that are GFSI-benchmarked all include explicit, separate food-fraud-related requirements. Other standards rely on the hazard analysis elements of the food safety system to identify and control hazards from food fraud.

The GFSI benchmarking requirements specify that all benchmarked standards include a vulnerability assessment for food fraud and a mitigation plan for food fraud prevention.  Most GFSI-benchmarked standards also include details about which materials should be assessed and which types of food fraud need to be managed.

Non-GFSI standards vary in how they require a food company to approach food fraud.  Some specify or recommend a VACCP program, which is based on food fraud vulnerability assessment activities. Others, like AIB, require that food fraud risks be considered in the supplier approvals processes.  The regulations of the USA Food Safety Modernization Act (FSMA) require that food businesses identify hazards from economically motivated adulteration type food fraud and implement preventive controls to minimise the risks.

Among the most well-known standards there are some notable differences. For example, the SQF Food Safety Code requires food businesses to assess and manage risks from counterfeit-type food fraud, while the BRC Food Safety Standard only requires businesses to assess the risks from adulteration or substitution activities. BRC also requires horizon scanning activities, while the SQF and IFS standards explicitly mention food fraud training.

Below you will find a table that compares the current food fraud requirements of each of the major food safety standards.

Table 1.  Food fraud requirements of major food safety standards, 2022.  Click here for a pdf version. 

  AIB* BRC* FSSC* GlobalGAP* IFS* SQF*
Food types to include in food fraud prevention activities Ingredients (implied)

 

 

 Raw materials

 

 

 Products and processes

 

 

 Unclear

 

 

 Raw materials,

ingredients,

packaging,

outsourced processes

 Raw materials,

Ingredients,

finished products

 
Food fraud types

 

 

 

 Economically motivated adulteration (only)

 

 

 Adulteration,

substitution

(only)

 

 

 Any type where consumer health is at risk (in definition, Appendix A)

 

 Unclear, however counterfeit or non-foodgrade packaging or propagation materials are included as examples

 

 Substitution, mislabelling, adulteration, counterfeiting

 

 

 Substitution, mislabelling, dilution, counterfeiting

 

 
Vulnerability assessments explicitly required? Risk assessment (implied, Appendix A) Yes Yes Risk assessment Yes Implied (Edition 9)
Mitigation plan required?

 

 

 Mitigation activities are to be included in the vulnerability assessment Yes Yes Yes Yes
Does packaging need to be included in the vulnerability assessment? Yes

(implied)

 

 Yes

(see 3.5.1.1)

 

 Yes

(as per food fraud definition, Appendix A)

 Yes

 

 

 Yes

 

 

 Implied

(primary packaging is a ‘raw material’)
Is a separate food fraud procedure explicitly required? Yes Implied

(“responsibilities shall be defined”)

 Implied

(“methods and responsibilities shall be documented”)
Is training in food fraud explicitly mentioned? Yes

(Clause 3.3.4)

 Yes
Is an annual review explicitly required? Yes Yes Yes
Other

 

 

 Horizon scanning for developing threats must be done (Clause 5.4.1) Criteria for vulnerability assessments must be defined

(4.20.2)

 Food safety risks from food fraud must be specified (2.7.2.2)

*  The full names of the standards are as follows:

AIB International Consolidated Standards for Inspection Prerequisite and Food Safety Programs, 2017

BRCGS Food Safety, Issue 8

FSSC 22000, Version 5.1

GlobalG.A.P. Integrated Farm Assurance (IFA), Version 5.4-1

IFS Food, Version 7

SQF Food Safety Code, Edition 9

To get this table in a downloadable format, click here.

Takeaways

Among the major food safety management system standards, there are small but significant variations between food fraud prevention requirements.  Key differences include whether finished products or ingredients are to be assessed, which types of food fraud must be included and the presence/absence of requirements related to horizon scanning and training.

If that all seems confusing, don’t despair!

Recommendations for a robust and compliant food fraud prevention program (VACCP)

At Food Fraud Advisors we have been working at the intersection of food fraud and food safety since the very beginning!  Creating a robust and compliant food fraud program can take time and effort but it isn’t complicated.  Follow the steps below to get started:

  1. Carefully read the food fraud clauses of the standard you are/will be certified to.  This download has a complete list of clauses for food fraud requirements of all major standards.
  2. Pay attention to the food types and the food fraud types that are mentioned in your standard.
  3. Create a robust vulnerability assessment (here’s how) and a mitigation plan for identified vulnerabilities.
  4. Whether or not it is explicitly required in your standard, we recommend you create a food fraud prevention procedure that defines the methods, responsibilities and criteria for food fraud prevention.
  5. You should also conduct training for all relevant staff and ensure that the food fraud system is reviewed at least annually.

Get a complete guide to the food fraud requirements of all the major food safety standards from us, the food fraud experts, here.  Our join the waiting list for our 2022 workshops here.

by

Investigating Susceptibility to Food Fraud

Some foods are more susceptible than others to economically motivated adulteration, substitution and dilution.  Understanding the susceptibility of an ingredient or raw material type is an important part of every vulnerability assessment process.

A TWO PART PROCESS

Susceptibility is investigated in two parts.

(1) General Susceptibility (is this type of food often affected by food fraud or not?)

You can estimate a foods general susceptibility using publicly available information.

(2) Specific Susceptibility (is the food we purchase likely to be affected by food fraud?)

The specific food fraud attributes depend on your supply chain, management of the supply chain and testing and auditing activities.

STEP 1. GENERAL SUSCEPTIBILITY

To investigate the general susceptibility of a food or ingredient to food fraud, use publicly available information about incidences of fraud that have occurred in the past and that might occur in the future.

There are a few different ways to access information about previous incidences and emerging issues with a raw material type, as shown below.

how to investigate info graphic

1. Online databases – access to historical data:

  • Decernis has an extremely comprehensive database of food fraud incidents which can be searched by food type and by adulterant type.  This database was developed and formerly operated by the US Pharmacopeial Convention (UPS). It also contains information about analytical methods.   https://decernis.com/solutions/food-fraud-database/.
  • Food Fraud Advisors’ Food Fraud Risk Information Database is a free and open-access online database of food fraud incidences and emerging threats, organised by food type.  No log-in required.
  • HorizonScan contains historical data about both commodities and suppliers.  Users can set up email alerts for issues relevant to them.
  • FoodSHIELD was created by The Food Protection and Defense Institute, which is part of the University of Minnesota and partially funded by the USA Department of Homeland Security.  FoodSHIELD resources, including a database of economically motivated adulteration incidences are available to members.  Unfortunately membership is limited to representatives from local, state, and federal governments, the military and laboratories that perform analyses.  Members must first pass a membership checking process to ensure they are eligible to access the information. https://www.foodshield.org and https://www.foodshield.org/index.cfm/discover-tools-links/what-is-foodshield/foodshield-brochure/
  • The Food Protection and Defense Institute also operates a Food Adulteration Incidents Registry.
  • EMAlert is software that helps USA businesses with commodity scanning and assessing vulnerabilities for USA regulatory compliance.  Subscriptions start at US$2,500 per year.
  • Safety HUD byMerieux NutriSciences provides access to regulatory and media reports on food fraud and food recalls.  It includes customizable alerts and dashboard http://resources.mxns.com/safetyHUD_SQF
  • The Rapid Alert System for Food and Feed (RASFF) is managed by a group of European national food safety authorities and alerts its member states to incidences of food and feed safety and integrity.  RASFF publishes a searchable database for investigating incidences of food fraud.  To learn more about RASFF click here.  For direct access to the database, open the RASFF Portal.
  • The US FDA has a searchable list of food recalls and food safety alerts, including those related to food fraud.  http://www.fda.gov/Safety/Recalls/

2. Email alerts via subscription service:

  • Food Forensics, a laboratory located in United Kingdom, offer a monthly horizon scanning risk newsletter to members.
  • FoodChainID Horizon Scan is a paid subscription service that provides alerts on adulteration and fraud, as well as food safety contamination events.
  • Some trade associations provide email services to members.
  • The Rotten Apple, by Karen Constable (of Food Fraud Advisors), is a weekly newsletter that includes trends and analysis as well as a summary of updates made to the Trello Food Fraud database each week.
  • Government-run food safety and food regulatory bodies in some jurisdictions send emails to interested parties.  Contact your local authority for more information.

3.  Direct intelligence:

  • Information can be obtained by asking law enforcement officials and government departments.
  • Suppliers can provide information about their material types.
  • Trade associations can be approached for information on food fraud and emerging issues.
  • Conferences and webinars about food fraud and food defence are held regularly and these can be a good source of information.

STEP 2. SPECIFIC SUSCEPTIBILITY

Next, consider all the characteristics of your specific material as it is purchased by your food business.

Characteristics that should be considered include those associated with the supply chain, purchasing policies and the format of the material.

Each characteristic should be considered with regards to how it could affect the degree to which a person may be motivated to fraudulently adulterate the material and how it could allow a person to:

a) gain access to the material,

b) commit fraud by adulterating, substituting or diluting the material or

c) avoid detection.

To ensure that all relevant characteristics are considered it is best to use a checklist.

Create your own checklist or use a checklist prepared by experts such as those found in a proprietary Vulnerability Assessment Tool.

There are a number of fraud assessment tools available on-line, with differing degrees of usefulness (some are really annoying to use!).  The most comprehensive checklist for food fraud vulnerability assessments can be found in Food Fraud Advisors’ Vulnerability Assessment Tools.

Need more help?  Get easy-to-use, comprehensive downloadable templates in our online training course.

Visit our training academy today

by

Vulnerability Assessments

What is a vulnerability assessment?

 

A vulnerability assessment is a risk-assessment-style evaluation of a food’s vulnerability to food fraud.

A food fraud vulnerability assessment is a documented assessment that identifies vulnerabilities to food fraud and explains how those vulnerabilities were identified.

Vulnerability assessments are also done to assess the threat of a malicious attack on food.  Malicious attacks include attacks conducted for extortion, ideological reasons or terrorism. We call these issues of food defense. To learn more about vulnerability assessments for food defense (intentional adulteration), click here.

Why ‘vulnerability’ and not ‘risk’? 

 

  • A risk is something that has occurred before and will occur again. A risk can be quantified using existing data.
  • A vulnerability is a weakness that can be exploited.  A vulnerability can lead to a risk.

Food fraud is difficult to estimate and quantify, so we use the word vulnerability rather than risk.

Why do a vulnerability assessment?

 

  1. To protect consumers: Food that is vulnerable to food fraud presents significant risks to consumers.  Food that is adulterated or diluted   [Read more…]

by

Acronym Decoder

BRC: British Retail Consortium.  A group of British companies that publish guidance and standards for food manufacturers, including a food safety standard that is also commonly referred to as BRC.

CoOL or COOL: Country of Origin Labelling.

EMA: Economically motivated adulteration or substitution. EMA is a subset of food fraud and is defined as the fraudulent, intentional substitution or addition of a substance, or dilution of a substance for the purposes of economic gain.  Non-EMA food fraud includes black market importation and trading of food and alcoholic beverages for the purposes of avoiding duty and taxes.

DEFRA: The Department for Environment, Food and Rural Affairs, a United Kingdom government department responsible for food production and standards as well as environmental and agricultural responsibilities.

FDA:  Food and Drugs Administration.  The FDA is the name of a regulatory body in a number of countries, including USA, Philippines and India.

FSA: Food Standards Agency, a United Kingdom government regulatory body.

FSMA: Sometimes pronounced ‘Fizzmah’.  Stands for Food Safety Modernisation Act (United States of America).

FSSC 22000: A food safety management system standard similar to ISO 22000 but with extra requirements incorporated to meet the requirements of a GFSI standard.

GFSI: Global Food Safety Initiative.  The GFSI is a group of food companies whose mission is to harmonize, strengthen, and improve food safety management systems around the globe.  The GFSI provides direction and approval to organizations that create food safety management systems, so a GFSI-approved food safety standard is one that represents international best practice.  Well known GFSI standards include BRCFSSC 22000 and SQF.

GMO: Genetically Modified Organism.

HACCP:  HACCP is a set of principles designed to control and prevent food safety risks during food production.  The principles of HACCP are codified (written down) by the Food and Agriculture Organization of the United Nations (FAO).  Download the 2020 revision of the HACCP Code here.

HARCP: Hazard Analysis Risk-based Preventive Control.  HARCP = food safety as legislated by the United States.  This acronymn being used by some in the USA when talking about the requirements of the recently enacted Food Safety Modernisation Act (FSMA) in that country.  HARCP is claimed to differ from HACCP by including requirements for preventive controls.  Read more about HARCP here.

IA: Intentional Adulteration.  Within the US Food Safety Modernisation Act (FSMA), Intentional Adulteration specifically refers to malicious adulteration that is intended to cause widescale harm.  Learn more about intentional adulteration here.

ISO 22000:  ISO is the International Organization for Standardization.  They have thousands of standards across many different businesses, products and systems.  ISO 22000 is the ISO standard for food safety management systems.  Like other major food safety management systems it is based on the principles of HACCP.

NSF:  a pseudo-government organization head-quartered in the United States that is active in the area of food safety and sanitation.

SQF:  Safe Quality Food Institute.  The Safe Quality Food Institute owns and publishes a group of food safety standards also known as SQF that is a GFSI – approved standard.

USP: United States Pharmacopeial Convention.  USP is a non-profit organization that creates identity and purity standards for food ingredients and food chemicals, as well as for medical drugs.

TACCP: Threat Assessment Critical Control Point.  TACCP = prevention of malicious threats to food.

VACCP: Vulnerability Assessment Critical Control Point.  VACCP = food fraud prevention.  Learn more about TACCP and VACCP here.

Learn about Vulnerability Assessments, what they are and how to do them, here.

by

HACCP, VACCP and TACCP

  1. HACCP (Hazard Analysis Critical Control Point)  Pronounced ‘hassup’.  HACCP = keeping food safe from accidental and natural risks to food safety.
  2. VACCP (Vulnerability Assessment Critical Control Point) Pronounced ‘vassup’.  VACCP = prevention of economically motivated food fraud.
  3. TACCP (Threat Assessment Critical Control Point) Pronounced ‘tassup’.  TACCP = prevention of malicious threats to food, such as sabotage, extortion or terrorism.  This type of malicious threat is also referred to as Intentional Adulteration within the US Food Safety Modernization Act.  Outside of the US, TACCP is more often called ‘food defense’.

HACCP

  • HACCP is a set of principles designed to control and prevent food safety risks during food production.
  • HACCP is not enforced or regulated by any single organization.
  • The ideas of HACCP form the basis of every food safety management system standard that is in use today, including GFSI food safety standards.
  • The principles of HACCP are codified (written down) by the Food and Agriculture Organization of the United Nations (FAO), in a set of documents called the Codex Alimentarius , a latin phrase which translates to “Book of Food”.
  • FAO’s General Principles of Food Hygiene CXC 1-1969 contains the HACCP principles (sometimes called HACCP Codex).  Download the 2020 revision of the HACCP Code here: http://www.fao.org/fao-who-codexalimentarius/codex-texts/codes-of-practice/ (click the green check/tick mark on the right side of the page to download).

VACCP and TACCP

  • VACCP and TACCP are terms that emerged during the 2010s as standards agencies, government regulators and industry groups started considering methods to prevent food fraud and malicious tampering.
  • VACCP is for food fraud.
  • TACCP is for food defense.
  • The acronymns VACCP and TACCP are designed to leverage the food industry’s familiarity with HACCP.  However, the critical control ‘points’ in a VACCP and TACCP plan are nothing like the ‘critical control points’ in a HACCP plan.
  • The control points in a HACCP plan are operational steps in a food manufacturing process.  The points are connected to processes over which the food manufacturer can exercise direct control.
  • For deliberate tampering (food fraud and food defense) the controls do not fit onto a linear set of processes, they do not fit the definition of ‘critical control points’ in HACCP.
  • The terms VACCP and TACCP are falling out of favor within the food safety industry.  They are not referenced specifically within any of the GFSI food safety standards, nor within the USA’s FSMA.
  • Instead of ‘”VACCP” and “TACCP”, it is much better to say “Vulnerabilities to food fraud” or “threats of malicious tampering (=food defense)”.

More acronyms demystified here.

Take a free short course on food fraud here.

food safety food fraud