ISO 37001: Who’s doing the certifying (and other responses to Hui Chen)

Hui Chen recently published a post sharing her opinions on the ISO 37001 Anti-Bribery Management Standard and ISO 37001 certification. She made some important points. 

She also asked questions and drew comparisons that should be evaluated in the context of how the ISO 37001 certification process occurs, and what it means for companies and organizations seeking it.

I want to respond to ensure the conversation is balanced and that another point of view is considered.

1. It is correct that “Prosecutors will not outsource their responsibilities.” Ms. Chen begins by stating that prosecutors won’t rely on ISO 37001 certification, but will always do a proper investigation. Ms. Chen makes an important point that is often misunderstood by the compliance community.