ISO 37001 is an international standard focused on anti-bribery management systems. The latest version, ISO 37001:2025, provides requirements and guidance for establishing, implementing, maintaining, reviewing, and improving an anti-bribery management system. The system can be standalone or integrated into an organization’s existing management systems, such as ISO 9001 or ISO 14001. Its primary goal is to help organizations prevent, detect, and respond to bribery while complying with applicable anti-bribery laws and voluntary commitments.

Applicability and Scope

• ISO 37001 applies to all organizations, regardless of size, sector (public, private, or not-for-profit), or geographical location.
• It covers various forms of bribery, including:
  • Bribery by or of the organization, its personnel, or its business associates.
  • Direct and indirect bribery, including bribery conducted through third parties.
• While it focuses specifically on bribery, organizations may extend the scope of their anti-bribery management system to cover other corrupt practices like fraud, cartels, or money laundering.

Key Requirements

Organizations implementing ISO 37001 must:

1. Establish Anti-Bribery Policies: Develop and communicate a clear anti-bribery policy outlining the organization’s commitment to combating bribery.
2. Conduct Risk Assessments: Identify and assess bribery risks relevant to their operations, projects, and business relationships.
3. Implement Controls and Procedures:
   • Perform due diligence on business associates and transactions.
   • Establish financial and non-financial controls to mitigate bribery risks.
   • Institute reporting and investigation procedures for suspected bribery incidents.
4. Appoint an Anti-Bribery Compliance Officer: Assign responsibility for overseeing the anti-bribery management system to a designated individual or team.
5. Provide Training and Awareness: Educate employees and business partners about anti-bribery policies, procedures, and legal requirements.
6. Regular Monitoring and Auditing: Conduct audits and reviews to ensure compliance and identify areas for improvement.
7. Take Corrective Actions: Address nonconformities and improve the system based on findings from audits, risk assessments, or bribery incidents.

Latest Updates

ISO 37001 was revised in 2025 to reflect current best practices and regulatory expectations. The updated standard continues to provide a systematic approach to combating bribery, emphasizing compliance, risk management, and organizational integrity. It reinforces the importance of fostering a culture of transparency and ethical business conduct across all sectors.

Benefits

Adopting ISO 37001 offers several advantages:

• Reduces the risk of bribery and its associated costs by implementing structured prevention and response measures.
• Enhances compliance with international anti-bribery laws, including agreements like the OECD Anti-Bribery Convention and the UN Convention against Corruption.
• Builds stakeholder confidence and trust in business operations, strengthening relationships with regulators, investors, and clients.
• Strengthens organizational reputation and integrity by demonstrating a clear commitment to ethical business practices.

Additional Notes

• ISO 37001 follows the High-Level Structure (HLS) used in other ISO management system standards, making integration with ISO 9001 (Quality Management) and ISO 14001 (Environmental Management) more straightforward.
• While compliance with ISO 37001 demonstrates strong anti-bribery practices, it does not guarantee that bribery will not occur. Instead, it helps organizations implement reasonable and proportionate measures based on their specific bribery risk profile.

For further details, visit the official International Organization for Standardization (ISO) page about ISO 37001 - Anti-Bribery Management Systems.