What is ISO 42001?

ISO/IEC 42001 is the first international standard for an AI Management System (AIMS). It aligns well with the EU AI Act.

April 2, 2026

What is ISO 42001?

The first international standard for an AI management system.

Background

ISO/IEC 42001 is the first international standard for an AI Management System (AIMS). It defines how an organization establishes, implements, maintains, and continually improves its AIMS.

The standard was published in 2023 and the world's first certification was achieved in summer 2024. It aligns well with the EU AI Act.

Key characteristics

Common structure with other management standards (ISO 9001, ISO/IEC 27001)
Risk-based approach
Impact assessments
Lifecycle thinking and documentation

Standard structure

Clause 4: Context of the organization
Clause 5: Leadership
Clause 6: Planning
Clause 7: Support
Clause 8: Operation
Clause 9: Performance evaluation
Clause 10: Improvement

Controls (Annex A)

A.2 AI-related policies
A.3 Internal organization
A.4 AI system resources
A.5 AI system impact assessment
A.6 AI system lifecycle
A.7 Data and information
A.8 Information for interested parties
A.9 Responsible use of AI systems
A.10 Third parties and customers

Articles

Related blogs & news

Stay Ahead with Fresh News and Expert Tips

April 2, 2026

What is the NIS2 Directive?

The NIS2 Directive is coming into force in Finland in 2025. Essential and important service providers must significantly improve their cybersecurity.

Read more

April 2, 2026

What is the CER Directive?

The CER Directive strengthens the resilience of critical entities and infrastructure essential to society across the entire EU.