IAF-Accredited  •  12 Standards

ISO Standards We Facilitate

From quality management to information security, our network of IAF-accredited certification bodies covers every major ISO standard your business needs to win contracts, satisfy auditors, and pass tender qualification.

ISO 9001

ISO 9001:2015 — Quality Management Systems

The world's most widely adopted management system standard. Demonstrates consistent quality, customer focus, and process discipline. Essential for tendering, supplier qualification, and export-market entry.

Who it's for

Manufacturers, exporters, IT companies, traders, construction, services — any organisation that wants to prove operational discipline.

Audit process

Stage 1 documentation review → Stage 2 on-site/remote audit → 3-year certificate with annual surveillance.

ISO 14001

ISO 14001:2015 — Environmental Management Systems

Demonstrates measurable environmental performance and regulatory compliance. Increasingly mandatory for ESG-reporting suppliers, EU buyers, and government tenders.

Who it's for

Manufacturers, construction, chemicals, mining, logistics, FMCG — any organisation with environmental impact or ESG obligations.

Audit process

Aspect-impact register review → on-site/remote audit → 3-year certificate with annual surveillance.

ISO 45001

ISO 45001:2018 — Occupational Health & Safety

The global benchmark for worker safety management. Replaces OHSAS 18001 and is required by most multinational supply chains and government tenders.

Who it's for

Construction, manufacturing, oil & gas, logistics, healthcare — any operation with workforce safety obligations.

Audit process

OH&S risk assessment review → on-site audit of operations → 3-year certificate with annual surveillance.

ISO 27001

ISO/IEC 27001:2022 — Information Security Management

The international gold standard for information security. Required for SaaS vendors, BPO providers, healthcare data handlers, and any organisation processing client or regulated data.

Who it's for

IT services, SaaS, BPO, KPO, fintech, healthtech, e-commerce, government IT contractors.

Audit process

Statement of Applicability (SoA) review → control-by-control assessment → 3-year certificate with annual surveillance.

ISO 22000

ISO 22000:2018 — Food Safety Management

A globally recognised food-safety management system integrating HACCP principles. Required by retailers, exporters, and food-service supply chains worldwide.

Who it's for

Food processors, dairy, beverages, packaging, restaurants, catering, agri-export, cold-chain operators.

Audit process

HACCP plan + PRP review → on-site facility audit → 3-year certificate with annual surveillance.

ISO 13485

ISO 13485:2016 — Medical Devices Quality Management

The regulatory-driven QMS standard for medical-device manufacturers. Mandatory for EU CE marking, FDA pathways, and most international medical-device markets.

Who it's for

Medical-device manufacturers, in-vitro diagnostic (IVD) producers, sterile-product packagers, device distributors.

Audit process

Design-history file and regulatory documentation review → on-site audit → 3-year certificate with annual surveillance.

ISO 17025

ISO/IEC 17025:2017 — Testing & Calibration Laboratory Competence

Demonstrates technical competence of testing and calibration laboratories. Required for any lab whose results are used for regulatory, legal, or commercial decisions.

Who it's for

Testing laboratories, calibration labs, in-house quality labs, environmental monitoring labs.

Audit process

Method validation review + on-site technical assessment by subject-matter experts → accreditation cycle.

ISO 50001

ISO 50001:2018 — Energy Management Systems

Systematic improvement of energy performance. Increasingly tied to government incentives, carbon-disclosure programmes, and large-customer ESG requirements.

Who it's for

Energy-intensive manufacturers, large facilities, hotels, data centres, transport fleets.

Audit process

Energy review + baseline analysis → on-site audit → 3-year certificate with annual surveillance.

ISO 20000-1

ISO/IEC 20000-1:2018 — IT Service Management

The international standard for IT service management. Demonstrates ITIL-aligned service delivery and is required for managed-service providers and IT-outsourcing contracts.

Who it's for

Managed service providers (MSPs), IT outsourcing, cloud service providers, internal IT departments.

Audit process

Service-management process review → on-site/remote audit → 3-year certificate with annual surveillance.

ISO 22301

ISO 22301:2019 — Business Continuity Management

Proves an organisation can continue operating through disruption. Increasingly required for banking, IT, healthcare, and critical-infrastructure suppliers.

Who it's for

Banks, IT services, healthcare, telecoms, logistics, utilities, government contractors.

Audit process

BIA + continuity-plan review → on-site audit including scenario testing → 3-year certificate with annual surveillance.

ISO 37001

ISO 37001:2016 — Anti-Bribery Management Systems

Demonstrates a credible anti-bribery management programme. Increasingly required for government, infrastructure, and high-integrity-risk supply chains.

Who it's for

Infrastructure contractors, government suppliers, financial services, multinational operations.

Audit process

Anti-bribery risk assessment + due-diligence review → on-site audit → 3-year certificate with annual surveillance.

ISO 27701

ISO/IEC 27701:2019 — Privacy Information Management

Extends ISO 27001 with privacy controls aligned to GDPR, India's DPDP Act, CCPA, and similar regulations. The privacy industry's most credible third-party assurance.

Who it's for

SaaS, healthtech, fintech, e-commerce, marketing-tech — any controller or processor of personal data.

Audit process

PIMS scoping + controller/processor mapping → on-site/remote audit → 3-year certificate with annual surveillance.

Not sure which standard you need?

Our advisors will recommend the right standard(s) based on your industry, target markets, and tender requirements — at no obligation.

See How It Works →