You are here: Home / Archives for auditing

by

Acronym Decoder

BRC: British Retail Consortium.  A group of British companies that publish guidance and standards for food manufacturers, including a food safety standard that is also commonly referred to as BRC.

CoOL or COOL: Country of Origin Labelling.

EMA: Economically motivated adulteration or substitution. EMA is a subset of food fraud and is defined as the fraudulent, intentional substitution or addition of a substance, or dilution of a substance for the purposes of economic gain.  Non-EMA food fraud includes black market importation and trading of food and alcoholic beverages for the purposes of avoiding duty and taxes.

DEFRA: The Department for Environment, Food and Rural Affairs, a United Kingdom government department responsible for food production and standards as well as environmental and agricultural responsibilities.

FDA:  Food and Drugs Administration.  The FDA is the name of a regulatory body in a number of countries, including USA, Philippines and India.

FSA: Food Standards Agency, a United Kingdom government regulatory body.

FSMA: Sometimes pronounced ‘Fizzmah’.  Stands for Food Safety Modernisation Act (United States of America).

FSSC 22000: A food safety management system standard similar to ISO 22000 but with extra requirements incorporated to meet the requirements of a GFSI standard.

GFSI: Global Food Safety Initiative.  The GFSI is a group of food companies whose mission is to harmonize, strengthen, and improve food safety management systems around the globe.  The GFSI provides direction and approval to organizations that create food safety management systems, so a GFSI-approved food safety standard is one that represents international best practice.  Well known GFSI standards include BRCFSSC 22000 and SQF.

GMO: Genetically Modified Organism.

HACCP:  HACCP is a set of principles designed to control and prevent food safety risks during food production.  The principles of HACCP are codified (written down) by the Food and Agriculture Organization of the United Nations (FAO).  Download the 2020 revision of the HACCP Code here.

HARCP: Hazard Analysis Risk-based Preventive Control.  HARCP = food safety as legislated by the United States.  This acronymn being used by some in the USA when talking about the requirements of the recently enacted Food Safety Modernisation Act (FSMA) in that country.  HARCP is claimed to differ from HACCP by including requirements for preventive controls.  Read more about HARCP here.

IA: Intentional Adulteration.  Within the US Food Safety Modernisation Act (FSMA), Intentional Adulteration specifically refers to malicious adulteration that is intended to cause widescale harm.  Learn more about intentional adulteration here.

ISO 22000:  ISO is the International Organization for Standardization.  They have thousands of standards across many different businesses, products and systems.  ISO 22000 is the ISO standard for food safety management systems.  Like other major food safety management systems it is based on the principles of HACCP.

NSF:  a pseudo-government organization head-quartered in the United States that is active in the area of food safety and sanitation.

SQF:  Safe Quality Food Institute.  The Safe Quality Food Institute owns and publishes a group of food safety standards also known as SQF that is a GFSI – approved standard.

USP: United States Pharmacopeial Convention.  USP is a non-profit organization that creates identity and purity standards for food ingredients and food chemicals, as well as for medical drugs.

TACCP: Threat Assessment Critical Control Point.  TACCP = prevention of malicious threats to food.

VACCP: Vulnerability Assessment Critical Control Point.  VACCP = food fraud prevention.  Learn more about TACCP and VACCP here.

Learn about Vulnerability Assessments, what they are and how to do them, here.

by

HACCP, VACCP and TACCP

  1. HACCP (Hazard Analysis Critical Control Point)  Pronounced ‘hassup’.  HACCP = keeping food safe from accidental and natural risks to food safety.
  2. VACCP (Vulnerability Assessment Critical Control Point) Pronounced ‘vassup’.  VACCP = prevention of economically motivated food fraud.
  3. TACCP (Threat Assessment Critical Control Point) Pronounced ‘tassup’.  TACCP = prevention of malicious threats to food, such as sabotage, extortion or terrorism.  This type of malicious threat is also referred to as Intentional Adulteration within the US Food Safety Modernization Act.  Outside of the US, TACCP is more often called ‘food defense’.

HACCP

  • HACCP is a set of principles designed to control and prevent food safety risks during food production.
  • HACCP is not enforced or regulated by any single organization.
  • The ideas of HACCP form the basis of every food safety management system standard that is in use today, including GFSI food safety standards.
  • The principles of HACCP are codified (written down) by the Food and Agriculture Organization of the United Nations (FAO), in a set of documents called the Codex Alimentarius , a latin phrase which translates to “Book of Food”.
  • FAO’s General Principles of Food Hygiene CXC 1-1969 contains the HACCP principles (sometimes called HACCP Codex).  Download the 2020 revision of the HACCP Code here: http://www.fao.org/fao-who-codexalimentarius/codex-texts/codes-of-practice/ (click the green check/tick mark on the right side of the page to download).

VACCP and TACCP

  • VACCP and TACCP are terms that emerged during the 2010s as standards agencies, government regulators and industry groups started considering methods to prevent food fraud and malicious tampering.
  • VACCP is for food fraud.
  • TACCP is for food defense.
  • The acronymns VACCP and TACCP are designed to leverage the food industry’s familiarity with HACCP.  However, the critical control ‘points’ in a VACCP and TACCP plan are nothing like the ‘critical control points’ in a HACCP plan.
  • The control points in a HACCP plan are operational steps in a food manufacturing process.  The points are connected to processes over which the food manufacturer can exercise direct control.
  • For deliberate tampering (food fraud and food defense) the controls do not fit onto a linear set of processes, they do not fit the definition of ‘critical control points’ in HACCP.
  • The terms VACCP and TACCP are falling out of favor within the food safety industry.  They are not referenced specifically within any of the GFSI food safety standards, nor within the USA’s FSMA.
  • Instead of ‘”VACCP” and “TACCP”, it is much better to say “Vulnerabilities to food fraud” or “threats of malicious tampering (=food defense)”.

More acronyms demystified here.

Take a free short course on food fraud here.

food safety food fraud

by

Vulnerability assessment methods

There are two general approaches to performing a vulnerability assessment for food fraud.

But first…. for the purposes of this page, a vulnerability assessment is a risk-assessment-style evaluation of a food product or ingredient’s vulnerability to food fraud.  For information about food defense vulnerability assessments (intentional adulteration vulnerabilities), click here.

The two approaches are (1) a conventional risk assessment model or (2) based on the recommendations of the British Retail Consortium (BRC) in their guidance document Understanding Vulnerability Assessment (2015)

Food fraud vulnerability assessment Food fraud vulnerability assessment BRC

The conventional method is a combination of the likelihood of something occurring versus consequences if that thing occurs.  This method is recommended for all types of food businesses.  It allows businesses to identify their most vulnerable ingredients, products and brands and provides an excellent framework to prioritise mitigation strategies.

The second method is recommended for businesses wishing to meet the requirements of British Retail Consortium (BRC) Food Safety Standard Issue 7 and Issue 8 (clause 5.4.2).  The BRC method does not address the risks from all types of food fraud; it only addresses the risk from adulteration and substitution of raw materials and ingredients.  Therefore it is not recommended for businesses that need to meet the requirements of other GFSI food safety standards such as FSSC 22000 Version 4 (clause 2.1.4.6) or SQF Edition 8.  What are these acronymns?

For more information about how to conduct a vulnerability assessment, take a look at Vulnerability Assessments; What? Why? How?

by

Food Fraud Advisors says hi

Food Fraud Advisors provides online consultancy, templates and training for food fraud prevention.

Authentic food is something that we all value, both as consumers and as members of the food industry.

At the moment there is growing awareness of problems with the authenticity of many food and beverages.  At the consumer level we see this awareness in investigative pieces on current affairs television shows, campaigns by consumer advocacy groups and on-line discussions on social media.  At the food business level food authenticity is becoming big news.

Right now there are big impacts for food manufacturers that are certified to GFSI-endorsed standards, since all the standards have been recently updated to include new requirements for food fraud prevention activities.

In the regulatory world food authenticity-related crimes are proving to be attractive to organized crime syndicates.  The cross-border and cross-disciplinary regulatory issues are a real challenge.

We are Food Fraud Advisors and we are here to help.