ISO/IEC 42001:2023 – Information technology Artificial intelligence Management System

The development, implementation and use of artificial intelligence (AI) require a new approach to ethical and responsible technology applications and are increasingly becoming an indispensable part of good corporate governance. The international standard ISO 42001:2023 provides a framework for the management of AI systems based on risk assessment and ethical principles. As the leading certification organisation for management systems in Switzerland, SQS offers independent testing and certification of AI management systems in accordance with this standard. The SQS certificate also enjoys a high international reputation.

 

For questions & offers
checkmark

Leading certification body in Switzerland

checkmark

Recognised internationally for access to markets worldwide

checkmark

We have been certifying management systems since 1983

checkmark

Around 7 000 customers trust our Services

Overview of certified AI management systems according to ISO/IEC 42001:2023

Management system for artificial intelligence according to ISO/IEC 42001:2023

ISO 42001:2023 strengthens the awareness of ethical AI management (company-wide sensitisation). The standard promotes the identification and minimisation of risks associated with AI applications, ensures legal and contractual compliance and strengthens trust when dealing with customers, public organisations and partners in the field of artificial intelligence.

Target groups of ISO/IEC 42001

Companies and organisations of all industry sectors and sizes that develop, deploy or use AI systems.

Validity period of the certificate

3 years - as part of continuous further development, a surveillance audit takes place annually and a recertification audit after 3 years.

Recognition of the SQS certificate

The SQS certificate ISO/IEC 42001 is internationally valid.

For questions and offers

Responsible for the product and there for you

RET-PV

Matthias Reetz

Do you have any questions about the standard or our service? Would you like to know more about the certification process and the costs? Or may we provide you with a concrete offer for the certification? 

We are happy to help you. Our account management team and I, as the product manager, will be happy to forward your questions to our experienced auditors. We want to make it as easy as possible for you to access certified management systems.

Please let us know how we can support you. We look forward to hearing from you!

Kind regards
Matthias Reetz

Would you like

(*) are mandatory

Advantages of a certified AI management system according to ISO 42001:2023

Ethical AI and risk mitigation

A standard-compliant management system facilitates the implementation of responsible AI applications. It reduces risks related to data protection, algorithmic bias, or uncontrolled automation and builds trust among customers, partners, and authorities.

Internationally recognized standard

The ISO/IEC 42001 certificate is a clear signal of professionalism and security in the AI sector. It facilitates cooperation with international business partners and promotes adherence to global requirements and compliance standards.

More efficient processes and innovation promotion

Through systematic planning and monitoring of AI projects, sources of error are identified at an early stage and processes are optimized. This increases efficiency, reduces costs and supports a sustainable innovation culture within the company.

Your way to ISO/IEC 42001 certification

If you feel fit for the standard, you are welcome to use the form above to register for certification. Otherwise, your path to ISO/IEC 42001 certification could look like this:

Customer%20Journey%20-%20Ihr%20Weg%20B-Seiten_EN.png

#1 – Building up the system

Implement your management system in accordance with the requirements of the standard so that you are ready for your first external certification audit by SQS.

 

#2 – Registration for the certification

After registering for certification, you can benefit from a preliminary talk or pre-audit. The pre-audit identifies system-relevant gaps and enables efficient certification.

 

#3 – Auditing

We first review your system documentation, assess your readiness for certification and draw up a detailed audit plan together with you. Our auditors then visit your company to assess the relevant test objects and the maturity degree of the management system and compile a report.

 

#4 – Certificate with a three-year validity

If the report is positive, you receive the certificate in digital and printed form. You can communicate it internally and externally for three years. Annual audits ensure compliance with the standard and enable continuous improvements. A comprehensive recertification takes place after three years.

FAQ – Frequently asked questions

How long does it take to obtain an ISO 42001 certificate? +

The duration depends on the size of the company, the complexity of the AI applications and your level of preparation. A well-documented data-, model- and risk analysis speeds up the procedure.

How often does an ISO 42001 certificate need to be renewed? +

The certificate is generally valid for three years. During this time, a surveillance audit is carried out every year and recertification takes place after three years.

What are the costs associated with an ISO 42001 certification? +

The costs vary depending on the size of the organization, scope of the AI projects and locations. We would be happy to provide you with a customized offer that suits your requirements.

Does SQS also offer consultancy services? +

No, our core competence is certification. However, if required, we will be happy to connect you with external experts or organise training courses so that you can optimally prepare for certification.

What role does the certification body play in ISO 42001 certification? +

The certification body independently assesses whether your AI management system meets the requirements of the standard. If the audit report is positive, it issues the certificate and monitors ongoing compliance.

How can a company verify the validity of an ISO-42001 certificate? +

Each certificate is given a unique registration number. With this number and the details of the certification body, the validity can be verified online. To the query.

Can a company have several certifications at the same time? +

Yes, many companies are certified simultaneously according to ISO 9001, ISO 14001, or ISO 45001, for example. This can create synergies and reduce overall costs.

What happens if a company does not fulfil the requirements of ISO 42001? +

If non-conformities are identified during an audit, the company is given a deadline to implement corrective measures. The certificate cannot be issued or extended without successful implementation.

How do data protection laws and ISO/IEC 42001 interact? +

ISO 42001 covers the responsible development and use of AI, while data protection laws (e.g., GDPR) regulate the handling of personal data. The integrated implementation of AI and data protection requirements promotes compliance and reduces legal risks.

How do ISO/IEC 42001 and ISO/IEC 27001 complement each other? +

ISO/IEC 42001 addresses responsible AI management, while ISO/IEC 27001 regulates information security. Since AI systems often use sensitive data, the two standards complement each other perfectly. This allows both data security risks and algorithmic responsibiity to be minimized.

What advantages does a certified AI management system have for the company's image? +

An AI management system according to ISO/IEC 42001 demonstrates that your company develops and uses artificial intelligence responsibly. This strengthens the trust of customers, investors, and authorities and can make a decisive contribution to competitiveness.

Zur Produktsuche