{"id":57314,"date":"2026-06-18T08:14:05","date_gmt":"2026-06-18T08:14:05","guid":{"rendered":"https:\/\/my.legal500.com\/developments\/?post_type=legal_developments&#038;p=57314"},"modified":"2026-06-18T08:14:05","modified_gmt":"2026-06-18T08:14:05","slug":"iso-370012025-starts-the-countdown-for-certified-organisations-mandatory-transition-required-before-february-2027","status":"publish","type":"legal_developments","link":"https:\/\/my.legal500.com\/developments\/thought-leadership\/iso-370012025-starts-the-countdown-for-certified-organisations-mandatory-transition-required-before-february-2027\/","title":{"rendered":"ISO 37001:2025 Starts the Countdown for Certified Organisations: Mandatory Transition Required Before February 2027"},"content":{"rendered":"<p><strong>Contact<\/strong><br \/>\n<strong>Carolina Cueva<\/strong><br \/>\n<strong>Partner<\/strong><br \/>\n<strong>Head of Compliance CMS Grau<\/strong><\/p>\n<p><strong>The updated anti-bribery standard introduces new areas of focus: conflicts of interest, compliance culture and climate-related factors as part of the risk context.<\/strong><\/p>\n<p><!--more--><\/p>\n<p>The publication of the new <strong>ISO 37001:2025<\/strong>, the international standard for Anti-Bribery Management Systems, marks the beginning of a mandatory transition process for all organisations certified under <strong>ISO 37001:2016<\/strong>. According to the <strong>International Accreditation Forum (IAF)<\/strong>, the transition must be completed by <strong>28 February 2027<\/strong> to ensure continuity of certification.<\/p>\n<p>For <strong>Carolina Cueva<\/strong>, Partner in Compliance and Internal Investigations at CMS Grau, the change is significant:<\/p>\n<p>\u201cThis is not merely a cosmetic update. ISO 37001:2025 raises the bar for anti-bribery risk management and places greater emphasis on evidence: how risks are managed in practice, how conflicts of interest are prevented, and how genuine the organisation\u2019s culture of integrity really is.\u201d<\/p>\n<p><strong>What is changing and why does it matter?<\/strong><\/p>\n<p>The new version introduces enhancements aimed at strengthening the effectiveness of anti-bribery management systems and their integration with corporate governance. One of the most significant changes is the more robust approach to <strong>conflicts of interest management<\/strong>, with clearer requirements regarding the identification, monitoring, control and transparency of conflict situations.<\/p>\n<p>In addition, the standard reinforces the importance of fostering a strong <strong>compliance culture<\/strong>, linking the performance of the anti-bribery management system to leadership, decision-making processes and organisational conduct.<\/p>\n<p>\u201cThe standard sends a clear message: having policies in place is no longer enough. Organisations must be able to demonstrate that those policies are effective, implemented in practice and actively supported by leadership,\u201d explains Carolina Cueva.<\/p>\n<p>A notable new feature is the inclusion of <strong>climate change considerations<\/strong> within the organisation\u2019s context and risk assessment process.<\/p>\n<p>\u201cThis update acknowledges that the operating environment, including climate-related factors, can influence pressures, decisions and risks. It signals the direction in which standards are evolving: compliance that is more integrated, more preventive and more closely connected to the broader context,\u201d she adds.<\/p>\n<p><strong>Next steps: the real risk is waiting<\/strong><\/p>\n<p>Although the deadline extends until 2027, specialists recommend starting the transition process early to avoid bottlenecks in follow-up audits conducted by certification bodies. Organisations should also take into account the internal adjustments required to their management systems. Key steps include conducting a gap assessment, updating documentation and controls, and planning the transition with the certification body.<\/p>\n<p>\u201cThe greatest risk is leaving it until the last minute. Many organisations underestimate the time required to align processes, evidence and internal training. A well-managed transition not only avoids certification-related issues but also strengthens the organisation\u2019s integrity framework.\u201d<\/p>\n<p>The ISO 37001:2025 update also presents an opportunity for organisations to review and modernise their anti-bribery prevention programmes through a more integrated and cross-functional approach.<\/p>\n<p>\u201cThose who use this transition as an opportunity to strengthen governance and risk management will be better prepared for audits, third-party requirements and increasingly demanding compliance standards,\u201d concludes the CMS Grau Partner.<\/p>\n","protected":false},"featured_media":0,"template":"","class_list":["post-57314","legal_developments","type-legal_developments","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/my.legal500.com\/developments\/wp-json\/wp\/v2\/legal_developments\/57314","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/my.legal500.com\/developments\/wp-json\/wp\/v2\/legal_developments"}],"about":[{"href":"https:\/\/my.legal500.com\/developments\/wp-json\/wp\/v2\/types\/legal_developments"}],"wp:attachment":[{"href":"https:\/\/my.legal500.com\/developments\/wp-json\/wp\/v2\/media?parent=57314"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}