ISO 37001: The Anti-Bribery Standard & Public Procurement

Q: Is ISO 37001 mandatory by law?

It is voluntary, but often a mandatory requirement in major public tenders and international contracts.

Q: Does the certificate guarantee zero bribery in the company?

It does not guarantee 100% absence of incidents, but it proves the company took reasonable prevention measures and provides legal protection.

Q: Can ISO 37001 be integrated with ISO 9001?

Yes, they are fully compatible, and integration saves administrative burden.

In modern business, reputation is the most expensive currency. A single scandal involving bribery or unregulated practices can destroy an image built over decades. But the risk is not just reputational. For companies aiming for large-scale public procurement or partnerships with international corporations, the lack of a proven anti-corruption policy is becoming an insurmountable barrier.

This is where ISO 37001:2016 comes in – the international standard for anti-bribery management systems. It is not just “another certificate” on the wall. It is your “shield” against legal risks and your “ticket” to participate in tenders where transparency is mandatory. In this article, we will explore why ISO 37001 is becoming the new gold standard for trust in 2026.

What is ISO 37001 and who is it for?

ISO 37001 provides a framework for preventing, detecting, and responding to bribery. It is important to understand – the standard does not guarantee that bribery will never occur in your company (that is impossible). It guarantees that the organization has taken all reasonable and proportionate measures to prevent it.

It is crucial for high-risk sectors:

Construction and Infrastructure;
Pharmaceutical industry and Healthcare;
Energy and Mining;
IT companies working with government data (in combination with ISO 27001).

The Key to Public Procurement

In Public Procurement legislation and the practices of major contracting authorities (ministries, municipalities, state enterprises), there is a growing trend of setting strict requirements for ethics and transparency.

Competitive Advantage in Tenders

In major tenders, especially those funded by EU funds, having an implemented ISO 37001 system can be:

A mandatory condition for eligibility (in highly regulated sectors);
A source of additional points in the technical evaluation of the offer.

When two candidates offer a similar price, the contracting authority will always prefer the one with a certified anti-corruption system because it reduces the risk for the institution itself.

ISO 37001 as Part of ESG Strategy (Governance)

We have already written about ESG reporting and the new EU directives. While ISO 14001 covers Environment (E) and ISO 45001 covers Social aspects (S), ISO 37001 is the foundation of Good Governance (G).

Banks and investors increasingly require an ESG audit before granting large loans or funding. Having an anti-bribery certificate is the strongest proof to financial institutions that your company is managed transparently and their money is safe.

How Does the System Work in Practice?

Implementing ISO 37001 does not mean blocking your business with bureaucracy. Here is what it actually involves:

Due Diligence

Before signing a contract with a subcontractor or supplier, the system requires you to check their reliability. This protects you from being involved in third-party corruption schemes.

Gifts and Hospitality Policy

Clearly defining the line between a “business lunch” and a “bribe”. The standard helps establish clear limits and rules for accepting and giving gifts, protecting your employees from compromising situations.

Whistleblowing Channels

Creating a secure and anonymous environment where employees can report irregularities without fear of retaliation. This is also key for compliance with the EU Whistleblowing Directive.

Easy Integration with ISO 9001

The good news is that ISO 37001 follows the same structure (High Level Structure) as ISO 9001. If you already have a quality system, adding the anti-corruption module is a natural and easy process. You don’t need to rewrite all procedures, just upgrade existing ones with financial and non-financial control mechanisms.

Conclusion: An Investment in Peace of Mind

In a world where compliance requirements are becoming stricter, ISO 37001 is your insurance policy. It shows your clients, partners, and the state that you play fair.

Do not wait for it to be requested at the last minute before a tender deadline. Prepare now and turn ethics into your competitive advantage. The ISOBG team has experience in building working systems that bring real value, not just paperwork.

FAQ about ISO 37001

Is ISO 37001 mandatory by law?

The standard itself is voluntary. However, many government institutions and multinational companies make it a mandatory contractual requirement for their suppliers to minimize their own risk.

Does the certificate guarantee zero bribery in the company?

No standard can guarantee 100% absence of criminal intent by individuals. However, ISO 37001 guarantees that the organization has taken all reasonable measures for prevention. In the event of an investigation, having the standard can serve as evidence in court that the company acted in good faith (the so-called “due diligence defense”).

Can ISO 37001 be integrated with ISO 9001?

Yes, absolutely. Both standards use the Annex SL structure. This allows you to use common processes for document management, internal audits, and management review, saving time and resources.

How long does implementation take?

For small and medium-sized enterprises, the process usually takes between 2 and 4 months, depending on the complexity of the activity and the number of high-risk partners that need to be evaluated.