{"id":1251,"date":"2026-03-18T18:05:38","date_gmt":"2026-03-18T15:05:38","guid":{"rendered":"https:\/\/isocerthub.com\/?p=1251"},"modified":"2026-03-18T18:10:58","modified_gmt":"2026-03-18T15:10:58","slug":"aqap-2110-chto-neobkhodimo-izmenit-v-kompanii-chtoby-sootvetstvovat-trebovaniyam-nato","status":"publish","type":"post","link":"https:\/\/isocerthub.com\/en\/aqap-2110-chto-neobkhodimo-izmenit-v-kompanii-chtoby-sootvetstvovat-trebovaniyam-nato\/","title":{"rendered":"AQAP 2110: what needs to be changed in a company to comply with NATO requirements"},"content":{"rendered":"<div data-elementor-type=\"wp-post\" data-elementor-id=\"1251\" class=\"elementor elementor-1251\" data-elementor-post-type=\"post\">\n\t\t\t\t<div class=\"elementor-element elementor-element-622936fc e-flex e-con-boxed e-con e-parent\" data-id=\"622936fc\" data-element_type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-2310e9b5 elementor-widget elementor-widget-text-editor\" data-id=\"2310e9b5\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<style>\/*! elementor - v3.21.0 - 15-04-2024 *\/\n.elementor-widget-text-editor.elementor-drop-cap-view-stacked .elementor-drop-cap{background-color:#69727d;color:#fff}.elementor-widget-text-editor.elementor-drop-cap-view-framed .elementor-drop-cap{color:#69727d;border:3px solid;background-color:transparent}.elementor-widget-text-editor:not(.elementor-drop-cap-view-default) .elementor-drop-cap{margin-top:8px}.elementor-widget-text-editor:not(.elementor-drop-cap-view-default) .elementor-drop-cap-letter{width:1em;height:1em}.elementor-widget-text-editor .elementor-drop-cap{float:left;text-align:center;line-height:1;font-size:50px}.elementor-widget-text-editor .elementor-drop-cap-letter{display:inline-block}<\/style>\t\t\t\t<p><span style=\"font-weight: 400;\">If you are entering defence supply chains, whether through subcontractors, integrators or public procurement, the AQAP 2110 standard will almost inevitably come into play. It is based on ISO 9001:2015, but adds NATO-style discipline: contract-oriented planning, controlled changes, stricter supplier oversight, and readiness for Government Quality Assurance (GQA).<\/span><\/p><p><span style=\"font-weight: 400;\">We offer practical changes that companies in Kazakhstan, Uzbekistan, Georgia and Kyrgyzstan most often need in order to implement AQAP 2110 without unnecessary bureaucracy and paperwork.<\/span><\/p><h2><span style=\"font-weight: 400;\">How AQAP 2110 differs from ISO 9001 (and why it matters)<\/span><\/h2><p><span style=\"font-weight: 400;\"><img fetchpriority=\"high\" decoding=\"async\" class=\"alignright wp-image-1258 size-medium\" src=\"http:\/\/isocerthub.com\/wp-content\/uploads\/2026\/03\/aqap-2110-vs-iso-9001-300x200.webp\" alt=\"\u0427\u0435\u043c AQAP 2110 \u043e\u0442\u043b\u0438\u0447\u0430\u0435\u0442\u0441\u044f \u043e\u0442 ISO 9001\" width=\"300\" height=\"200\" srcset=\"https:\/\/isocerthub.com\/wp-content\/uploads\/2026\/03\/aqap-2110-vs-iso-9001-300x200.webp 300w, https:\/\/isocerthub.com\/wp-content\/uploads\/2026\/03\/aqap-2110-vs-iso-9001-1024x683.webp 1024w, https:\/\/isocerthub.com\/wp-content\/uploads\/2026\/03\/aqap-2110-vs-iso-9001-768x512.webp 768w, https:\/\/isocerthub.com\/wp-content\/uploads\/2026\/03\/aqap-2110-vs-iso-9001-1536x1024.webp 1536w, https:\/\/isocerthub.com\/wp-content\/uploads\/2026\/03\/aqap-2110-vs-iso-9001-18x12.webp 18w, https:\/\/isocerthub.com\/wp-content\/uploads\/2026\/03\/aqap-2110-vs-iso-9001-930x620.webp 930w, https:\/\/isocerthub.com\/wp-content\/uploads\/2026\/03\/aqap-2110-vs-iso-9001.webp 2048w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/>ISO 9001 provides the backbone of a quality management system, while AQAP adds requirements that are critical for defence supply chains: stronger contract control and more evidence.<\/span><\/p><p><span style=\"font-weight: 400;\">In brief:<\/span><\/p><ul><li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">the customer\u2019s or GQAR representative\u2019s right to participate in controls and inspections;<\/span><\/li><li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">mandatory contract-specific plans (Quality Plan, risk plan, and sometimes a CM plan);<\/span><\/li><li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">stricter traceability and change management across the supply chain.<\/span><\/li><\/ul><h2><span style=\"font-weight: 400;\">1) The contract becomes the primary document (rather than the general quality policy)<\/span><\/h2><p><span style=\"font-weight: 400;\">Under AQAP, the logic is straightforward: you must not only <\/span><i><span style=\"font-weight: 400;\">deliver<\/span><\/i><span style=\"font-weight: 400;\"> quality, but also <\/span><i><span style=\"font-weight: 400;\">demonstrate<\/span><\/i><span style=\"font-weight: 400;\"> it against every contract requirement. For this reason, a Quality Plan is prepared for the project before work begins, including acceptance criteria, inspections\/tests, and a requirements compliance matrix; the customer\/GQAR may reject it.<\/span><\/p><p><span style=\"font-weight: 400;\">A useful practice is to create a \u201ccontract file\u201d (electronic), containing the requirements, correspondence, changes, test records, acceptance certificates, and all quality-related decisions.<\/span><\/p><h2><span style=\"font-weight: 400;\">2) Appoint a GQA owner and arrange access for audits<\/span><\/h2><p><span style=\"font-weight: 400;\">AQAP requires management to appoint a representative for GQA matters with the authority to resolve quality issues and report directly to top management. In addition, access to sites, documents, and verification activities must be provided where this is required by the contract.<\/span><\/p><h2><span style=\"font-weight: 400;\">3) Risk management is not a presentation, but a real plan<\/span><\/h2><p><span style=\"font-weight: 400;\">Risks are considered already at the contract review stage and are updated throughout the project, including risks relating to external suppliers. The risk management plan is submitted to the customer\/GQAR, and it may be rejected.<\/span><\/p><p><span style=\"font-weight: 400;\">To make the system work effectively, include at least three layers in the risk register: requirements (technical specification\/specifications), execution (equipment, competence, special processes), and suppliers (lead times, quality, component substitutions).<\/span><\/p><h2><span style=\"font-weight: 400;\">4) Configuration and changes: every version must be controlled<\/span><\/h2><p><span style=\"font-weight: 400;\">One of AQAP\u2019s key reinforcements is configuration management: identification, change control, status accounting, configuration audit, and a contract-specific CM plan.<\/span><\/p><p><span style=\"font-weight: 400;\">If you produce a product\/hardware\/software, answer two questions in writing: \u201cWhat do we define as a version?\u201d and \u201cWho is authorised to change a version, and how do we confirm compliance after the change?\u201d<\/span><\/p><h2><span style=\"font-weight: 400;\">5) Suppliers: requirements must be flowed down through the chain<\/span><\/h2><p><span style=\"font-weight: 400;\">Purchasing components on the basis of \u201cit was fine yesterday\u201d is not acceptable here. Contract requirements must be included in procurement documents, together with a clause stating that the work may be subject to GQA; at the same time, inspections at external providers do not remove your responsibility.<\/span><\/p><p><span style=\"font-weight: 400;\">Before the list, here is a short checklist that usually delivers a quick effect:<\/span><\/p><ul><li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">qualification of critical suppliers and their periodic re-evaluation;<\/span><\/li><li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">incoming inspection and clear acceptance criteria;<\/span><\/li><li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">rules for substituting materials\/components (what is equivalent and what is not);<\/span><\/li><li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">traceability requirements and the \u201cquality package\u201d (certificates, test records, calibration documents).<\/span><\/li><\/ul><p><span style=\"font-weight: 400;\">Once these points have been implemented, you will usually notice that \u201cfirefighting\u201d in production or in the project becomes a set of predictable tasks.<\/span><\/p><h2><span style=\"font-weight: 400;\">6) Documents and records: if it is not recorded, it is difficult to prove<\/span><\/h2><p><span style=\"font-weight: 400;\">AQAP requires you to define in advance which records will serve as objective evidence of conformity (plans, records, inspection\/test results, calibrations, training, non-conformities) and to ensure access to contract-related documented information.<\/span><\/p><h2><span style=\"font-weight: 400;\">What AQAP 2110 certification looks like in practice<\/span><\/h2><p><span style=\"font-weight: 400;\">In most cases, AQAP 2110 certification is built on top of an already functioning QMS in accordance with ISO 9001 \u2014 this provides a strong foundation (see the page:<\/span><a href=\"https:\/\/isocerthub.com\/en\/iso-90012015\/\"><span style=\"font-weight: 400;\"> ISO 9001:2015 Quality Management System<\/span><\/a><span style=\"font-weight: 400;\">).<\/span><\/p><p><span style=\"font-weight: 400;\">A practical preparation route usually includes:<\/span><\/p><ol><li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">a GAP analysis against AQAP 2110;<\/span><\/li><li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">a pilot on one contract (Quality Plan + risk plan + CM);<\/span><\/li><li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">an internal audit using checklists (the approach from the article<\/span><a href=\"https:\/\/isocerthub.com\/en\/kak-podgotovitsya-k-vnutrennemu-auditu-iso-poshagovyy-gayd-dlya-nachinayushchikh\/\"><span style=\"font-weight: 400;\"> How to Prepare for an Internal ISO Audit<\/span><\/a><span style=\"font-weight: 400;\">).<\/span><\/li><\/ol><h2><span style=\"font-weight: 400;\">What to do right now<\/span><\/h2><p><span style=\"font-weight: 400;\">Start with a pilot project: prepare a Quality Plan, set up a risk register and a change management process, and update your procurement procedures. Then scale this approach across the remaining contracts.<\/span><\/p><p><span style=\"font-weight: 400;\">System Management supports AQAP 2110 implementation across the CIS, from diagnostics through to preparation for the external audit. As a reference for the stages, you may look at the article<\/span><a href=\"https:\/\/isocerthub.com\/en\/kak-poluchit-sertifikat-iso-v-kazakhstane\/\"><span style=\"font-weight: 400;\"> How to get an ISO certificate in Kazakhstan<\/span><\/a><span style=\"font-weight: 400;\">.<\/span><\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>","protected":false},"excerpt":{"rendered":"<p>\u0415\u0441\u043b\u0438 \u0432\u044b \u0437\u0430\u0445\u043e\u0434\u0438\u0442\u0435 \u0432 \u043e\u0431\u043e\u0440\u043e\u043d\u043d\u044b\u0435 \u0446\u0435\u043f\u043e\u0447\u043a\u0438 \u043f\u043e\u0441\u0442\u0430\u0432\u043e\u043a (\u0447\u0435\u0440\u0435\u0437 \u043f\u043e\u0434\u0440\u044f\u0434\u0447\u0438\u043a\u043e\u0432, \u0438\u043d\u0442\u0435\u0433\u0440\u0430\u0442\u043e\u0440\u043e\u0432, \u0433\u043e\u0441\u0437\u0430\u043a\u0430\u0437\u044b), \u043f\u043e\u0447\u0442\u0438 \u043d\u0435\u0438\u0437\u0431\u0435\u0436\u043d\u043e \u0432\u0441\u043f\u043b\u044b\u0432\u0430\u0435\u0442 \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442 AQAP 2110. \u041e\u043d \u043e\u043f\u0438\u0440\u0430\u0435\u0442\u0441\u044f \u043d\u0430 ISO 9001:2015, \u043d\u043e \u0434\u043e\u0431\u0430\u0432\u043b\u044f\u0435\u0442 \u041d\u0410\u0422\u041e\u0432\u0441\u043a\u0443\u044e \u0434\u0438\u0441\u0446\u0438\u043f\u043b\u0438\u043d\u0443: \u043a\u043e\u043d\u0442\u0440\u0430\u043a\u0442-\u043e\u0440\u0438\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0435 \u043f\u043b\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435, \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u043c\u044b\u0435 \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f, \u0431\u043e\u043b\u0435\u0435 \u0436\u0451\u0441\u0442\u043a\u0438\u0439 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u043e\u0432 \u0438 \u0433\u043e\u0442\u043e\u0432\u043d\u043e\u0441\u0442\u044c \u043a Government Quality Assurance (GQA). \u041f\u0440\u0435\u0434\u043b\u0430\u0433\u0430\u0435\u043c \u043f\u0440\u0430\u043a\u0442\u0438\u0447\u043d\u044b\u0435 \u0438\u0437\u043c\u0435\u043d\u0435\u043d\u0438\u044f, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0447\u0430\u0449\u0435 \u0432\u0441\u0435\u0433\u043e \u043d\u0443\u0436\u043d\u044b \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f\u043c \u0438\u0437 \u041a\u0430\u0437\u0430\u0445\u0441\u0442\u0430\u043d\u0430, \u0423\u0437\u0431\u0435\u043a\u0438\u0441\u0442\u0430\u043d\u0430, \u0413\u0440\u0443\u0437\u0438\u0438 \u0438 \u041a\u044b\u0440\u0433\u044b\u0437\u0441\u0442\u0430\u043d\u0430,&hellip;&nbsp;<a href=\"https:\/\/isocerthub.com\/en\/aqap-2110-chto-neobkhodimo-izmenit-v-kompanii-chtoby-sootvetstvovat-trebovaniyam-nato\/\" class=\"\" rel=\"bookmark\">Read More &raquo;<span class=\"screen-reader-text\">AQAP 2110: what needs to be changed in a company to comply with NATO requirements<\/span><\/a><\/p>","protected":false},"author":2,"featured_media":1252,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","footnotes":""},"categories":[12],"tags":[],"class_list":["post-1251","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-12"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/isocerthub.com\/en\/wp-json\/wp\/v2\/posts\/1251","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/isocerthub.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/isocerthub.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/isocerthub.com\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/isocerthub.com\/en\/wp-json\/wp\/v2\/comments?post=1251"}],"version-history":[{"count":7,"href":"https:\/\/isocerthub.com\/en\/wp-json\/wp\/v2\/posts\/1251\/revisions"}],"predecessor-version":[{"id":1261,"href":"https:\/\/isocerthub.com\/en\/wp-json\/wp\/v2\/posts\/1251\/revisions\/1261"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/isocerthub.com\/en\/wp-json\/wp\/v2\/media\/1252"}],"wp:attachment":[{"href":"https:\/\/isocerthub.com\/en\/wp-json\/wp\/v2\/media?parent=1251"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/isocerthub.com\/en\/wp-json\/wp\/v2\/categories?post=1251"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/isocerthub.com\/en\/wp-json\/wp\/v2\/tags?post=1251"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}