Certification CostsISO guides & calculators
ISO 37001 · Organisations exposed to bribery risk, public-sector suppliers

Anti-Bribery certification

Anti-bribery management systems

What is ISO 37001?

ISO 37001 specifies requirements for an anti-bribery management system, helping organisations prevent, detect and respond to bribery and comply with anti-bribery laws and voluntary commitments.

Published in 2016, it covers bribery in the public, private and not-for-profit sectors, addressing bribery by the organisation, by its staff and by its business associates. It requires due diligence, financial and non-financial controls, training and a defined anti-bribery function.

For UK organisations it directly supports the "adequate procedures" defence under the Bribery Act 2010 and is increasingly valued in international tendering and supply-chain due diligence.

How to get ISO 37001 certified

  1. Assess your bribery risk across operations, partners and territories.
  2. Establish an anti-bribery policy, controls and a dedicated compliance function.
  3. Implement due diligence, training and gift/hospitality controls.
  4. Operate the system and keep evidence of due diligence and reporting.
  5. Run internal audits and management review.
  6. Certify through a UKAS-accredited body and maintain via surveillance and three-yearly re-certification.

Choosing a certification body

For a certificate to carry weight, choose a body accredited by UKAS, the UK's national accreditation body. Accredited certification is recognised by customers and procurement teams; unaccredited certificates often are not. Get quotes from at least three bodies, as fees vary.

How much does ISO 37001 certification cost?

There is no single price — total cost depends on your organisation's size, how much you already have in place, the number of sites, and whether you use a consultant. Broadly, the cost splits into three parts: implementation (building the system), the certification audit (paid to the certification body), and ongoing costs (annual surveillance and a three-yearly re-certification).

  • Due-diligence record-keeping across third parties is the main ongoing internal cost.
  • Audit duration depends heavily on geographic and partner-network complexity.
  • Frequently pursued by organisations bidding for government and international contracts.

To get a tailored figure for your organisation, use our free calculator:

Open the ISO 37001 cost calculator →

Official & useful resources

Explore related standards

ISO 9001 ISO 27001 ISO 14001 ISO 45001