Following the update of the ISO 37001 Anti-Bribery Management Systems standard by the International Organization for Standardization (ISO), the transition process to ISO 37001:2025 has been initiated in line with our accreditation body s transition policy and the requirements of IAF MD 30:2025 (Issue 1).
Through this announcement, all clients holding an ISO 37001:2016 certificate, or currently undergoing certification under this scope, are informed of the transition timeline and their obligations.
Key Changes in the Standard
- Greater emphasis on anti-bribery culture and top management leadership
- Clarified role and responsibilities of the anti-bribery function
- Strengthened management of conflicts of interest
- Expanded requirements for third-party due diligence and related risks
- Integration with enterprise risk management and digital tools
- Consideration of climate-related factors
- Requirements for the protection of whistleblowers
- A structure harmonized with other ISO management system standards
- Clause-level structural adjustments
Transition Timeline
| Milestone |
Date |
| Initial certification / recertification will be issued only against ISO 37001:2025 |
31 August 2026 |
| Deadline for transitioning your existing certificate to ISO 37001:2025 |
28 February 2027 |
| Validity of certificates issued to ISO 37001:2016 |
Invalid after 28 February 2027 |
What We Expect from Certified Clients
- As of 31 August 2026, all initial and recertification audits will be conducted solely against ISO 37001:2025.
- Your existing ISO 37001:2016 certificate must be transitioned to ISO 37001:2025 no later than 28 February 2027, within the scope of your surveillance or recertification audit.
- After 28 February 2027, certificates issued to ISO 37001:2016 will no longer be valid.
- We recommend conducting a gap analysis against the changes in the standard and planning the necessary updates to your management system.
- The timing of your transition audit will be planned together with you, in line with your existing audit program.
Not planning to transition to ISO 37001:2025? Clients in this situation are kindly requested to notify us of their decision in writing as soon as possible. If you do not transition, your certificate may remain valid until 28 February 2027, after which it will be considered invalid.