ISO/IEC 42001:2023, Information technology — Artificial intelligence — Management system, is the first international management system standard dedicated to artificial intelligence. Published in December 2023 by the ISO/IEC Joint Technical Committee 1, Subcommittee 42 (JTC 1/SC 42), it specifies the requirements for establishing, implementing, maintaining, and continually improving an AI Management System (AIMS) within an organisation.
The Standard is certifiable. An organisation can be audited against it by an accredited certification body and issued a certificate valid for three years, subject to annual surveillance audits.
“This document specifies the requirements and provides guidance for establishing, implementing, maintaining and continually improving an AI management system within the context of an organization.” — ISO/IEC 42001:2023, Clause 1 (Scope)
Key definitions
| Term | Meaning |
|---|---|
| AI system | An engineered system that generates outputs such as content, forecasts, recommendations or decisions for a given set of human-defined objectives. The boundary of what the AIMS governs. |
| AI Management System (AIMS) | The set of interrelated or interacting elements of an organisation to establish policies, objectives, and processes to achieve those objectives in relation to AI. |
| AI system lifecycle | The stages of an AI system from inception through design, development, verification, validation, deployment, operation, monitoring, and retirement. |
| Top management | The person or group of persons who directs and controls the organisation at the highest level. Named as the accountable party for the AIMS. |
| Interested party | A person or organisation that can affect, be affected by, or perceive itself to be affected by a decision or activity of the organisation. |
| Statement of Applicability (SoA) | The document that lists each Annex A control, declares whether it applies, justifies inclusion or exclusion, and records implementation status. The working surface of certification. |
| AI impact assessment | Assessment of potential consequences for individuals, groups of individuals, and societies that can result from the development, provision, or use of AI systems. Distinct from organisational risk assessment. |
Structure of the Standard
The Standard follows the Annex SL high-level structure shared across ISO management system standards. This is what allows ISO 42001 to be integrated with ISO 27001, ISO 9001, and other ISO management systems already in place.
| Section | Content | Normative? |
|---|---|---|
| Clauses 1–3 | Scope, normative references, terms and definitions | Descriptive |
| Clauses 4–10 | Requirements: context, leadership, planning, support, operation, performance evaluation, improvement | Yes |
| Annex A | 38 reference controls across 9 control objectives | Yes |
| Annex B | Implementation guidance for Annex A controls | Informative |
| Annex C | Potential AI-related organisational objectives and risk sources | Informative |
| Annex D | Use of the AIMS across domains and sectors | Informative |
The ten ISO 42001 clauses at a glance
| Clause | Title | What it produces |
|---|---|---|
| 1 | Scope | Boundary of the Standard |
| 2 | Normative references | Placeholder — no normative references |
| 3 | Terms and definitions | Vocabulary (largely via ISO/IEC 22989) |
| 4 | Context of the organisation | Role declaration, interested parties, AIMS scope |
| 5 | Leadership | AI policy, leadership commitment, assigned roles |
| 6 | Planning | Risk assessment, risk treatment, impact assessment, SoA, objectives |
| 7 | Support | Resources, competence, awareness, communication, documented information |
| 8 | Operation | Lifecycle processes, recurring risk and impact assessments, third-party AI controls |
| 9 | Performance evaluation | Monitoring, internal audit, management review |
| 10 | Improvement | Nonconformity, corrective action, continual improvement |
The nine ISO 42001 Annex A control objectives
Annex A is the operational core. Each of the 38 controls is grouped under one of nine objectives.
| Objective | Focus |
|---|---|
| A.2 | Policies related to AI |
| A.3 | Internal organisation |
| A.4 | Resources for AI systems |
| A.5 | Assessing impacts of AI systems |
| A.6 | AI system lifecycle |
| A.7 | Data for AI systems |
| A.8 | Information for interested parties of AI systems |
| A.9 | Use of AI systems |
| A.10 | Third-party and customer relationships |
A.6 (lifecycle) is the largest set and the spine of the AIMS. A.5 (impact assessment) is where ISO 42001 departs most clearly from ISO 27001 logic. A.10 (third-party) carries disproportionate weight for organisations procuring foundation models or AI-enabled SaaS.
Who the ISO 42001 Standard applies to
ISO 42001 applies to any organisation that provides or uses AI systems, regardless of size, type, or sector. The Standard recognises multiple roles, and an organisation may hold more than one:
| Role | Definition |
|---|---|
| Provider | An organisation that develops an AI system and places it on the market or puts it into service. |
| Developer | An organisation involved in the design and development of AI systems. |
| Deployer | An organisation that uses an AI system under its own authority. |
| User | An entity that interacts with an AI system. |
The role declaration is made under Clause 4.1 and determines which Annex A controls bear most heavily.
ISO 42001 Certification
Certification against ISO 42001 follows the same pattern as other ISO management system certifications.
| Stage | What happens |
|---|---|
| Stage 1 audit | Documentation review — policy, SoA, risk and impact assessments, scope, key procedures. Identifies gaps before Stage 2. |
| Stage 2 audit | Implementation audit — sampling of controls, interviews, evidence verification. Determines certification decision. |
| Certification decision | Independent review and issuance of certificate, valid for three years. |
| Surveillance audits | Annual audits in years 1 and 2 to verify ongoing conformity. |
| Recertification audit | Full reassessment in year 3 before certificate expiry. |
Certification must be performed by a certification body accredited for ISO 42001 by a national accreditation body that is a signatory to the IAF MLA. Accreditation status should be verified — the market is new and not all bodies offering ISO 42001 audits are accredited for it.
ISO 42001 and the EU AI Act
The two instruments serve different purposes and operate at different levels.
| Aspect | ISO/IEC 42001 | EU AI Act |
|---|---|---|
| Type | Voluntary international standard | Binding EU regulation |
| Scope | Management system around AI | AI systems themselves |
| Approach | Process and governance | Risk-tiered obligations |
| Audience | Any organisation providing or using AI | Providers, deployers, importers, distributors in the EU market |
| Outcome | Certification | Conformity and market access |
| Enforceability | Contractual and reputational | Legal — fines up to 7% of global turnover |
Certification to ISO 42001 supports — but does not substitute for — conformity with the EU AI Act. Many AIMS controls evidence Act obligations (risk management, data governance, technical documentation, human oversight, post-market monitoring), but the Act imposes specific requirements ISO 42001 does not enumerate, and the Act applies regardless of whether the organisation is certified.
What the AIMS produces
A functioning AIMS produces a defined set of documents and records. The five most scrutinised at audit:
| Document | Source clause | Purpose |
|---|---|---|
| AI policy | 5.2 | Top-management statement of direction and commitment |
| AIMS scope statement | 4.3 | Definition of what is in and out of certification |
| AI risk assessment | 6.1.2, 8.2 | Identified risks, criteria, methodology, results |
| Statement of Applicability | 6.1.3 | Applied controls, justifications, implementation status |
| AI system impact assessment | 6.1.4, 8.4 | Consequences for individuals, groups, and societies |
Management review minutes (9.3), internal audit reports (9.2), and the nonconformity and corrective action register (10.2) are the operational records that prove the AIMS is alive rather than documentary.
FAQ
Is ISO 42001 mandatory?
No. It is a voluntary international standard. It becomes contractually mandatory only where customers, partners, or procurement frameworks require it.
Does ISO 42001 certification mean my AI systems are safe?
No. Certification is to the management system, not to any individual AI system. It demonstrates that the organisation has a governance system that addresses AI responsibly, not that any specific model is safe, fair, or accurate in isolation.
Do I need ISO 27001 before ISO 42001?
No. ISO 42001 is self-contained. Clause 2 lists no normative references. But organisations with mature ISO 27001 implementations can integrate ISO 42001 efficiently because of the shared Annex SL structure.
How long does ISO 42001 implementation take?
Typical implementations run six to twelve months from kickoff to Stage 1 audit, depending on the maturity of existing management systems, the size of the AI portfolio, and the resources committed. Organisations starting from scratch — no ISO 27001, no existing AI governance — should expect the longer end.
How many ISO 42001 Annex A controls must I implement?
All applicable controls. The Standard requires every Annex A control to be considered, and exclusions to be justified in the Statement of Applicability against the risk treatment plan. The number of included controls depends on the organisation’s role and risk profile; for most providers and deployers, the large majority of the 38 controls apply.
Does ISO 42001 cover generative AI and foundation models?
Yes. The Standard is technology-neutral and applies to any AI system regardless of architecture. Foundation models and generative systems are within scope when developed, provided, or used by the organisation, and the third-party controls in A.10 address procurement of foundation models from upstream providers.
Does ISO 42001 certification satisfy the EU AI Act?
No. ISO 42001 certification is evidence of governance maturity and supports conformity assessment for the Act, but the Act imposes specific obligations — risk classification, conformity assessment routes, CE marking for high-risk systems, post-market monitoring, transparency to deployers and users — that ISO 42001 does not directly impose. The two are complementary; neither replaces the other.
What is the difference between ISO 42001 and ISO/IEC 23894?
ISO 42001 is the management system standard — certifiable, structured around Annex SL, focused on the system around AI. ISO/IEC 23894 is the AI risk management standard — non-certifiable guidance on how to perform AI risk assessment, intended to be used as a methodology reference within an ISO 42001 AIMS.
Who owns the AIMS inside the organisation?
Top management is accountable. The Standard does not name a specific role — Chief AI Officer, Chief Compliance Officer, CISO — and organisations are free to structure ownership as they choose, provided the assignment is documented under Clause 5.3 and the named owner has the authority to perform the role.
