ISO 37001-2025 PDF

Full title and description

ISO 37001:2025 — Anti‑bribery management systems — Requirements with guidance for use. This second‑edition international standard specifies requirements and implementation guidance for establishing, implementing, maintaining and continually improving an anti‑bribery management system (ABMS) to help organizations prevent, detect and respond to bribery and comply with applicable anti‑bribery laws and voluntary commitments.

Abstract

ISO 37001:2025 provides a management‑system approach to preventing bribery across public, private and not‑for‑profit organisations. It sets out requirements for leadership and governance, risk‑based planning, anti‑bribery controls (both financial and non‑financial), due diligence on transactions and third parties, reporting and investigation arrangements, training and awareness, and monitoring and continual improvement. The 2025 edition harmonises terminology and structure with related management system standards and introduces greater emphasis on anti‑bribery culture and governance oversight.

General information

• Status: Published / Current
• Publication date: February 2025 (Edition 2, 2025‑02)
• Publisher: International Organization for Standardization (ISO)
• ICS / categories: 03.100.01, 03.100.02, 03.100.70
• Edition / version: Edition 2 (ISO 37001:2025)
• Number of pages: 47

Scope

ISO 37001:2025 applies to any organisation regardless of size, type or sector that seeks to establish, implement, maintain or improve an anti‑bribery management system. The standard covers prevention, detection and response to bribery (direct and indirect) in an organisation’s activities and relationships and is intended to be used as a stand‑alone system or integrated with other management systems.

Key topics and requirements

• Leadership, governance and top‑management commitment to anti‑bribery objectives and oversight.
• Risk‑based approach: identification, assessment and treatment of bribery risks.
• Anti‑bribery policy, roles and responsibilities, and an independent anti‑bribery function where appropriate.
• Due diligence for transactions, business partners and third parties.
• Controls for gifts, hospitality, facilitation payments, political and charitable contributions.
• Conflict‑of‑interest management and disclosure procedures.
• Reporting, whistleblowing arrangements and procedures for internal investigation and corrective action.
• Awareness, training and competence for staff and relevant stakeholders.
• Monitoring, measurement, internal audit and continual improvement of the ABMS.
• Explicit guidance on embedding an anti‑bribery culture and alignment with broader governance and compliance frameworks; new text in the 2025 edition also addresses links with environmental/climate considerations where relevant to bribery risk.

Typical use and users

Organisations across sectors (private companies, public bodies, NGOs) use ISO 37001:2025 to establish or strengthen anti‑bribery systems, to demonstrate due diligence and to support regulatory compliance and stakeholder confidence. Certification bodies, compliance officers, legal teams, internal auditors, boards of directors and external advisors commonly reference the standard when designing or assessing anti‑bribery programmes.

Related standards

ISO 37001:2025 is intended to be compatible with and can be integrated alongside related governance and compliance standards such as ISO 37301 (compliance management), ISO 37000 (governance of organisations) and guidance documents like ISO/TS 37008 (internal investigations). The 2025 edition replaces ISO 37001:2016 (and related amendment activity) and aligns terminology with contemporary management‑system norms.

Keywords

anti‑bribery, bribery prevention, anti‑corruption, compliance, governance, due diligence, whistleblowing, risk assessment, anti‑bribery function, training, ISO 37001:2025

FAQ

Q: What is this standard?

A: ISO 37001:2025 is the international standard specifying requirements and guidance for an anti‑bribery management system to help organisations prevent, detect and respond to bribery.

Q: What does it cover?

A: It covers governance and leadership, bribery risk assessment and treatment, controls (financial and non‑financial), due diligence, reporting and investigations, training, monitoring and continual improvement, and guidance for embedding an anti‑bribery culture. The 2025 edition includes updates to harmonise with other management‑system standards and adds emphasis on culture and governance oversight.

Q: Who typically uses it?

A: Compliance officers, legal teams, internal auditors, certification bodies, senior management and boards, as well as organisations of all sizes and sectors seeking to manage bribery risk or demonstrate anti‑bribery controls.

Q: Is it current or superseded?

A: ISO 37001:2025 is the current published edition (published February 2025). It supersedes ISO 37001:2016 and related amendment work (the 2016 edition and amendment were withdrawn when the 2025 edition was published). Organisations holding ISO 37001:2016 certificates should follow transition guidance from their certification/accreditation bodies.

Q: Is it part of a series?

A: Yes — ISO 37001 sits within a broader set of governance, risk and compliance standards and guidance (notably ISO 37301 for compliance management and ISO 37000 on governance), and it is designed for integration with other management‑system standards.

Q: What are the key keywords?

A: Anti‑bribery, anti‑corruption, compliance, governance, due diligence, whistleblowing, risk assessment, anti‑bribery function, training, ISO 37001:2025.