Match the following potential audit client options to the type of audit.

 First-party Management System audit → All members of an audited organisation

 Second-party Management System audit → Interested parties of an organisation

According to ISO 19011:2018 (Guidelines for Auditing Management Systems) and as reinforced in ISO 9001 Lead Auditor training materials, audit types are defined as:

First-party audit – conducted by the organization itself, or on its behalf (internal audit).✅ The audit client is all members of the audited organisation, because the audit is internal, involving all functional areas under the organization’s control.

Second-party audit – conducted by a customer or other person on behalf of a customer (external but not by a certification body).✅ The audit client includes interested parties of an organisation, such as customers who want to verify if their suppliers meet contractual or regulatory requirements.

These definitions are directly aligned with ISO 19011:2018, Clause 3.13 – Types of audits.

Why Other Options Are Incorrect:

Certification body / Accreditation body → These relate to third-party audits, not first or second.

Top management / Functions of an audited organisation → Refer to auditees or audit participants, not the audit client itself.