ISO 37001 Readiness Checklist

Internal and external issues relevant to the ABMS have been identified, including the anti-corruption regulatory environment

Bribery risk has been assessed considering countries, sectors, transactions, and business partners

Top management and the governing body have approved an anti-bribery policy that explicitly prohibits bribery

An anti-bribery compliance function has been designated with adequate authority, independence, and resources

Roles and responsibilities for the ABMS have been assigned at all relevant levels

A periodic bribery risk assessment identifying, analyzing, and evaluating risks is performed

Existing anti-bribery controls are evaluated against identified risks

Due diligence proportionate to bribery risk is applied for transactions, projects, and business partners

Criteria for approval of gifts, hospitality, donations, and sponsorship payments have been established

Financial controls are implemented to prevent the use of funds for bribery purposes

An accessible, confidential whistleblowing channel protected against retaliation exists

Relevant personnel receive periodic training on the anti-bribery policy, risks, and reporting procedures

Anti-bribery clauses are included in contracts with business partners and risk-exposed suppliers

The effectiveness of anti-bribery controls is monitored through indicators and periodic reviews

Internal ABMS audits are performed at planned intervals with auditors independent from the evaluated area

Top management and the governing body review the ABMS at planned intervals

Nonconformities are investigated, corrective actions are taken, and their effectiveness is verified

Opportunities for continual ABMS improvement are identified based on risk trends and audit results