9.2 Internal audits

Welcome Mehrdad!

Your CB auditor should have verified this at the Stage 1! It's too late to be discussing this at Stage 2! (tell them it's in ISO/IEC 17021!)

Typically, the CB requires a "full cycle" of internal audits - but no-one can define that. The auditor is wrong to suggest all clauses must be audited in "an audit". All you have to do is demonstrate that you have an effective internal audit process.

I'd also suggest that at this point in the development of your QMS, doing internal audits half-yearly is a) not going to be effective and b) not meeting the requirements of 9.2 either. You may wish to revisit this. Based on the attachments, I'd also suggest that you shouldn't be doing audits using such a checklist. Although not required, it's fashionable to audit the processes of your QMS and not go through some set of questions based on who knows what? Did you have anyone train your organization on how to do QMS audits? If they did and this is what you are doing, as a result of what you were trained, then you've been ripped off. Sorry to bring bad news.

So, your auditor is a) incompetent and delinquent (if they did the Stage 1) and you should have been told the expectations BEFORE the Stage 1. Or the auditor should have reported to you that doing no audits before the Stage 2 would results in a (major) non-conformity, and b) inaccurate when they say ALL requirements must be audited. Double check the wording of your agreement/contract with your chosen CB; sometimes, they "slip in" additional requirements to the standard and you might have missed the significance of them, buried in the "small print".

I'd lodge a complaint with your CB if I were in your shoes!