Certification: New standard for compliance management (CMS) ensures security.
TÜV NORD is the first certification company in Germany to receive accreditation for the certification of compliance management systems in accordance with ISO 37301. The German Accreditation Body (DAkkS) thus certifies TÜV NORD's competence and integrity in certification to the new standard and paves the way for interested companies.
Compliance covers a wide range of aspects, such as legal requirements, ethical principles and other guidelines that are essential in business operations. Compliance violations can easily lead to penalties, reputational damage or business interruptions. ISO 37301 helps companies and organizations of all sizes and industries to establish guidelines for designing or improving their compliance management and reducing the likelihood of compliance violations. “With the help of ISO 37301, compliance risks can be identified, assessed and organized. The internationally valid standard is therefore also a flagship for customers,” says TÜV NORD auditor Saskia Schnell.
It documents the compliance strategy tailored to specific risks, clear regulations and measures to achieve the objectives as well as the appointment of responsible persons who are responsible for compliance and promote a culture of compliance. However, risk assessment, budget and resources, employee training and other points must also be taken into account. “Every company is unique and has specific needs. ISO 37301 should therefore be seen as a guideline rather than a rigid checklist,” says Saskia Schnell.
ISO 37301 is the successor to ISO 19600, which set out uniform guidelines for the design of a compliance management system, but as a so-called type B management system standard, it was not certifiable. With ISO 37301, the specific requirements for the design of the standard were revised and the standard was released for certification. The standard is closely related to ISO 37001, which focuses specifically on anti-corruption management systems. “Organizations that have already implemented an anti-corruption management system can integrate this into their compliance management and thus place a strong focus on measures to prevent, detect and combat corruption,” says Saskia Schnell.
Founded over 150 years ago, we stand for security and trust worldwide. As a knowledge company, we have our sights firmly set on the digital future. Whether engineers, IT security experts or specialists for the mobility of the future: in more than 100 countries, we ensure that our customers become even more successful in the networked world.