ISO 37301 Compliance Management System

ISO 37301 Compliance Management System (CMS) is a Type A management system standard. It sets out the requirements and provides guidelines for establishing, developing, implementing, evaluating, maintaining, and continually improving a CMS. A CMS provides organizations a structured approach to meet all compliance obligations. Examples may include:

• requirements that they mandatorily have to comply with such as laws, regulations, court rulings, permits, licenses.
• voluntary compliance such as internal policies and procedures, codes of conduct, standards, and agreements with communities or NGOs.

ISO 37301 CMS can be applied to all organizations, regardless of their size, nature, or complexity of activity. CMS is based upon the principles of integrity, good governance, proportionality, transparency, accountability, and sustainability.

As with the most of management system standards, ISO 37301 also follows the high-level structure (HLS) developed by ISO. The HLS structure defines the common terminology and definitions used, as well as the clause sequence (1 to 10), where the requirements for the CMS are set out in clauses 4 to 10. The HLS enables organizations to integrate various management systems, meaning that organizations can either adopt a CMS as a stand-alone management system or they can integrate it with other existing management systems.

SimpliGRC offers self-study options for ISO 37301 certification training. The PECB courses are available in different languages which may not be currently available as an option on our website. Contact us if you prefer a different language and we will determine if PECB has the desired course.