ORSYS le mag 2025 logo

The training and skills medium

Home > AI Glossary > ISO 42001 🟦 Standard

ISO 42001 🟦 Standard

The standard ISO/IEC 42001:2023 is the first international standard specifically dedicated to the management of artificial intelligence (AI).

Published in December 2023, it sets out the requirements for setting up, maintaining and continuously improving a Artificial Intelligence Management System (AIMS) within organisations. Sound main objective is to ensure responsible, ethical and secure use of AIIn line with current regulations such as the European Regulation on AI (AI Act).

📘 Definition

L'ISO/IEC 42001 provides a structured framework for organisations of all sizes and in all sectors to develop, deploy and use AI systems responsibly. It is based on the PDCA (Plan-Do-Check-Act) continuous improvement cycle, similar to other management system standards such as theISO 27001 for information security.

🎯 Objectives of the standard

 

  1. AI risk management : identify, assess and mitigate the risks associated with AI systems, including the bias breaches of privacy and security failures.
  2. Promoting ethics and transparency : ensure that AI systems are developed and used ethically, with transparency in decision-making processes
  3. Regulatory compliance : facilitate compliance with national and international regulations, in particular the European AI Regulation (AI Act)
  4. Continuous improvement : implement processes for the continuous improvement of AI systems, taking into account feedback and technological developments

 

🏢 Who is ISO/IEC 42001 aimed at?

 

This standard is applicable to any organisation developing, supplying or using products or services incorporating AI, regardless of its size or sector of activity. It is particularly relevant for :

  • Technology companies : software developers, cloud service providers, AI start-ups
  • Regulated sectors : healthcare, finance, transport, where AI is used for critical decisions
  • Public bodies : administrations, local authorities, research institutions

 

🧩 Key components of an ISMS according to ISO/IEC 42001

 

  1. Governance AI : Establishment of clear policies and responsibilities for the use of AI
  2. Risk management : Identification and treatment of AI-specific risks, including ethical and security risks
  3. Transparency and traceability : Putting in place mechanisms to ensure the transparency of AI systems and the traceability of decisions taken
  4. Stakeholder engagement : Inclusion of internal and external stakeholders in the AI management process
  5. Continuous improvement : Monitoring, auditing and regular updating of AI systems to ensure their effectiveness and compliance

✅ Benefits of ISO/IEC 42001 certification

  • Building confidence : ddemonstrating the organisation's commitment to the responsible use of AI
  • Competitive advantage : dMarket differentiation through ethical and transparent practices
  • Risk reduction : iproactive identification and mitigation of AI-related risks
  • Regulatory alignment : prepairing compliance with regulations such as the IA Act

🛠️ Implementation process

 

  1. Initial assessment : analysis of current AI practices and identification of gaps in relation to the requirements of the standard
  2. Planning : definition of the objectives, policies and responsibilities relating to the management of AI
  3. Implementation : deployment of the processes and controls needed to meet the requirements of the standard
  4. Monitoring and assessment : sonitoring the SMIA's performance, carrying out internal audits and taking corrective action
  5. Continuous improvement : mregular updating of the SMIA based on feedback and technological developments

🔗 Links with other standards and regulations

 

ISO/IEC 42001 is designed to be compatible with other management system standards, such as :

  • ISO/IEC 27001 : Information security management systems
  • ISO 9001 : Quality management systems

It also supports compliance with European Regulation on AIwhich imposes strict requirements for high-risk AI systems

📚 Additional resources

Back to Glossary

field of training

AI, Machine Learning, data analysis

associated training

Artificial intelligence: issues and tools

Machine learning, methods and solutions

Deep Learning and neural networks: the basics

IA Academy banner