Non-conformance Report (NCR) & Disposition Workflow

The problem this kills

A bad lot shows up. Someone scribbles a non-conformance on paper or fires off an email, the parts get pushed to a shelf "for now," and then the trail goes cold. Who decided to use it as-is? Did anyone with authority actually approve scrapping $4,000 of material? Was the supplier ever charged back? When the auditor asks to see the NCR register with dispositions, you're stitching it together from inboxes and memory.

The danger isn't just the paperwork. It's nonconforming material that quietly slips back into production because nobody put a real hold on it, and concessions ("use-as-is") that get waved through without senior sign-off. That's exactly the kind of thing that fails an audit - or worse, reaches a customer.

What you'll build

A simple internal web app that runs the whole non-conformance loop:

• Log the NCR - what's wrong, where it was found, the affected quantity, and the lot/serial - from a clean form (or a CSV/Sheet import of past records).
• Quarantine instantly - the moment an NCR is logged, the material is flagged on hold and stays there until it's dispositioned. No accidental release.
• AI-suggested disposition - the agent reads the non-conformance and proposes the likely path (use-as-is, rework, repair, return-to-supplier, scrap) with a short rationale - a starting point, never the decision.
• Tiered approval gate - the right approver(s) review and sign. Riskier dispositions (like use-as-is / concession) require higher sign-off before anything is released, reworked, or scrapped.
• Action recorded + CAPA link - the final action and cost/quantity are logged, with an optional link to a corrective action (CAPA) when the problem needs a root-cause fix.
• Notices + export - Resend emails the approver when sign-off is needed and the requester when it's decided; one click exports the full NCR register as CSV.

What's inside the Implementation Plan

A step-by-step runbook you paste into an AI coding agent (Claude Code). It does the building; you steer.

• It starts by interviewing you about your business - your current non-conformance process, the systems and spreadsheets you use, the exact fields and naming/lot/serial conventions in your data, your real volumes, and your approval rules and messy edge cases. It reads back a short tailored spec and gets your thumbs-up before it builds anything. You get a tool shaped to how you actually work, not a generic template.
• Copy-paste prompts for every step - you never write code.
• The data model, the quarantine hold logic, the tiered approval rules, and the CSV export, all tuned to your answers.
• A "No API yet?" fallback so you can build the whole thing today from a spreadsheet and export clean CSVs into your existing system.

The governance it includes (this is the point)

This isn't a toy. The plan bakes in the controls a quality system needs:

• Login so only your team can use the tool.
• Row-level security so people only ever see their own organization's data.
• A complete audit trail - who logged it, who approved it, what changed, and when.
• A hard human-in-the-loop approval gate - the AI only drafts a suggested disposition; material stays on hold until a real, authorized person reviews and signs, with tiered sign-off for higher-risk calls.
• Duplicate guards keyed on the NCR number so the same non-conformance can't be logged or processed twice.

Who it's for

Quality engineers, production supervisors, and QC inspectors who have to control nonconforming material - and anyone who's tired of chasing dispositions across email and spreadsheets and wants a defensible, audit-ready register.

You've got this - paste the first prompt and let the agent interview you.