Verksamhetsstyrning och etik

Kommittébeteckning: SIS/TK 478 (Organisationers samhällsansvar)
Källa: ISO
Svarsdatum: den 16 apr 2024
Se merSe mindre
 

ISO 37001:2016 specifies requirements and provides guidance for establishing, implementing, maintaining, reviewing and improving an anti-bribery management system. The system can be stand-alone or can be integrated into an overall management system. ISO 37001:2016 addresses the following in relation to the organization's activities:

· bribery in the public, private and not-for-profit sectors;

· bribery by the organization;

· bribery by the organization's personnel acting on the organization's behalf or for its benefit;

· bribery by the organization's business associates acting on the organization's behalf or for its benefit;

· bribery of the organization;

· bribery of the organization's personnel in relation to the organization's activities;

· bribery of the organization's business associates in relation to the organization's activities;

· direct and indirect bribery (e.g. a bribe offered or accepted through or by a third party).

ISO 37001:2016 is applicable only to bribery. It sets out requirements and provides guidance for a management system designed to help an organization to prevent, detect and respond to bribery and comply with anti-bribery laws and voluntary commitments applicable to its activities.

ISO 37001:2016 does not specifically address fraud, cartels and other anti-trust/competition offences, money-laundering or other activities related to corrupt practices, although an organization can choose to extend the scope of the management system to include such activities.

The requirements of ISO 37001:2016 are generic and are intended to be applicable to all organizations (or parts of an organization), regardless of type, size and nature of activity, and whether in the public, private or not-for-profit sectors. The extent of application of these requirements depends on the factors specified in 4.1, 4.2 and 4.5.

Kommittébeteckning: SIS/TK 478 (Organisationers samhällsansvar)
Källa: ISO
Svarsdatum: den 16 apr 2024
Se merSe mindre
 

This document will provide guidance for use for establishing, developing, implementing, evaluating, maintaining and improving an effective anti-fraud management system. The guidance will be generic and applicable to all organizations, regardless of type, size and nature of activity, and whether in the public, private or not-for-profit sectors. The guidance will include: • creation and maintenance of a fraud risk recognition, tracking and monitoring environment within an organisation including proactive control systems, protocols and procedures; • mitigation of internal and external fraud against, and by, the organization; • detection of fraud in the event that pre-emptive counter-fraud strategies, protocols and procedures fail to identify and trace incidents; • effective response to fraud events so that - lessons are learned that can be applied to the mitigation framework, - reputational harm to the organisation can be minimised and restored, - funds lost to fraud can be recovered. This is a Type B management system standard.