ISO 9001 is a management system standard for Quality.
Organisations have a great challenge in fulfilling specified requirements and at the same time identifying and meeting future needs and expectations: ISO 9001 sets out the basis for systematic Quality- and improvement-work.
A management system based on ISO 9001 is based around strategic decisions by an organisation and is a tool which improves performance and assures that products and services meet customer- and legal requirements. This provides the basis for increased customer satisfaction.
The standard is built upon the well-known PDCA model (Plan-Do-Check-Act) with a focus on processes, management of risk and opportunities, and the organisation’s objectives and targets for continuous improvement.
ISO 14001 is a management system standard for the Environment.
One of this generation’s biggest challenges is a sustainable community in balance, which does not put future generation’s basic needs at risk. ISO 14001 can help organisations systematically improve their environmental performance, and develop their business from a lifecycle perspective. A management system based on ISO 14001 is a tool which helps organisations to identify their environmental aspects, and legal and other requirements, and to control its processes and daily operations in order to minimise environmental impact, whether direct or indirect.
ISO 45001 is a management system standard for health & safety.
An employer has an overarching responsibility to provide a safe workplace and prevent ill-health, both for employees and for other people who work within the organisation’s working area. A management system based on ISO 45001 helps organisations to systematically identify risks and hazards, prevent accidents and minimise risks to health and safety. The management system also facilitates the fulfilment and implementation of laws and requirements in a timely fashion.
ISO 39001 is a management system standard for Road Traffic Safety.
Accidents and incidents in traffic is a community problem, which leads to personal suffering and extensive economic costs for everyone. This is the basis for Vision Zero, that we shall strive so no one dies or is injured in traffic. A management system based on ISO 39001 helps organisations prevent road-traffic accidents in a systematic way, and reduce risk in traffic situations.
ISO 27001 is a management system standard for information security.
ISO/IEC 27001 is an excellent framework for helping organisations handle and protect their information assets so they remain safe and secure. It helps you continuously assess and refine how you do this, not just for today but also the future. Thus ISO/ IEC 27001 protects your company, your reputation and adds value.
The standard contributes to:
• Identifying risks for your company’s information and minimising them
• Improving reputation and stakeholder trust
• Increasing awareness of information security
• Minimising staff-related information security breaches
• Keeping you updated with, and meeting legal requirements
ISO/ IEC 27701 is an extension of ISO/ IEC 27001 with focus on integrity. An international management system standard, it gives guidance on protecting the privacy, including how organisations handle personal data, and help in showing that privacy law around the world is being followed. In order to be certified to ISO/ IEC 27701 an organisation must also have, or be certified at the same time, to ISO/ IEC 27001. It is not possible to be certified to ISO/ IEC 27701 without being certified to ISO/ IEC 27001.
SBcert has an extensive network of partners within information security and can offer experienced auditors of all areas and sectors. All our information security auditors have solid IT experience with specific competence of cyber-security.
ISO 26001 is a guidance management system standard which can be integrated into your management system to give recommendations on social responsibility (SR- Social Responsibility) and Corporate Social Responsibility (CSR- Corporate Social Responsibility).
ISO 26000 is an excellent framework with guidelines on both operations and supply-chains, helping you handle and focus on social responsibility work as well as continuously assessing and refining how this is done, not just for today but also for the future.
A ISO 26000 verification contributes to stronger relations with partners, authorities, media, suppliers, stakeholders, customers and the community in which you work. Risk management improves, and so with it the likelihood of conflict with stakeholders and bad publicity reduces.
A good reputation also raises pride amongst employees and makes your company attractive during recruitment. Even when it comes to investors and financial instances can the choice be easier when investing in ethically sound organisations.
The standard contains 7 basic principles which underpin social responsibility work, and can be seen as mandatory for those organisations wishing to implement the whole of ISO 26001.
Basic principles of social responsibility:
• Responsibility as an organisation for the impact its decisions and activities have on the community and the environment
• Ethical behaviour
• Respect for Stakeholders
• Respect for the law and international rules
• Compliance with international norms for Conduct
• Respect for Human Rights
ISO 26001 also includes an additional 7 topics where companies can choose one or more to focus upon:
• Organisational control
• Human Rights
• Working conditions
• Responsible business methods
• Consumer rights