ISO/IEC 42001:2023 — AI management system

ISO 42001 implementation for organisations deploying AI under EU AI Act obligations

Build the AI governance system that satisfies ISO 42001 and accelerates your EU AI Act compliance — by the same advisor team that shipped our internal Acuna GRC platform.

Book a 30-min call
ISO 27001:2022 certified
Swiss-precision methodology
EU + Switzerland advisory experience

What you get in 90 days

Concrete deliverables, on a fixed timeline, with named outcomes per phase.

30 days

AI inventory, risk classification, AIMS scoping

Centralised AI system inventory, risk classification under EU AI Act tiers and ISO 42001 controls, and approved AIMS scope statement.

60 days

Governance, AIIA template, control library

AI governance role assignments, AI impact assessment template aligned to ISO 42001 Annex B, and control library covering data, model, deployment and monitoring.

90 days

Audit prep and EU AI Act readiness map

Internal audit on the AIMS, management review delivered, and a cross-mapping document showing how ISO 42001 evidence supports EU AI Act conformity.

Implementation

Our ISO 42001 Implementation Methodology

A proven 3-phase approach to implement ISO 42001 AI management systems that ensures compliance, efficiency, and long-term success.

1

AI Governance Assessment

Comprehensive evaluation of your current AI governance framework, ethical AI practices, and AI risk management processes to identify gaps and opportunities for improvement.

2-3 weeks

Deliverables:

  • AI governance gap analysis
  • Ethical AI framework assessment
  • AI risk management evaluation
  • Implementation roadmap
2

AI Management System Design

Design and implement comprehensive AI governance frameworks, ethical AI controls, and AI lifecycle management processes aligned with ISO 42001 requirements.

4-6 weeks

Deliverables:

  • AI governance policies & procedures
  • Ethical AI framework implementation
  • AI risk assessment methodology
  • AI lifecycle management processes
3

Certification & Optimization

Prepare for ISO 42001 certification audit, implement continuous improvement processes, and optimize AI governance frameworks for long-term success and compliance.

2-4 weeks

Deliverables:

  • Pre-certification audit support
  • Continuous improvement framework
  • AI governance monitoring tools
  • Ongoing support & maintenance

Ready to Start Your ISO 42001 Journey?

Get a personalized implementation roadmap tailored to your organization's specific needs and challenges.

Frequently asked questions

The questions compliance leads ask us most about ISO 42001.

ISO 42001 is a voluntary management-system standard. The EU AI Act is binding regulation. They are complementary: ISO 42001 provides the governance scaffold (policies, roles, risk processes) that an AI Act-subject organisation needs to demonstrate compliance, particularly for high-risk systems. We deliver one programme that satisfies both — ISO 42001 evidence is reusable for AI Act conformity assessment.

Ready to start? Book a 30-min scoping call.

We diagnose where you stand against the standard, scope the right engagement, and send a written brief within 48 hours.

Diagnose your gap against the standard in 30 minLive walkthrough on your call
Receive a written engagement brief in 48 hoursScope, timeline, fixed deliverables
Decide on terms before any work startsNo commitment until you sign
Book a 30-min callTalk to our team