On December 18th, 2023, the International Standardisation Organisation (ISO) and the International Electrotechnical Commission (IEC) published a new standard, ISO/IEC 42001. This standard is a voluntary guideline designed to help organizations set up, implement, and continuously improve their Artificial Intelligence Management Systems (AIMS).
What you need to know: ISO/IEC 42001 is a voluntary standard you can utilize as a trust-building tool in the form of a certification or general framework for governing AI.
ISO/IEC 42001 is a significant step forward in AI standards, offering a detailed governance framework for trustworthy and responsible AI use.
As a flexible standard, organizations can choose to certify their AIMs under the standard. It also supports auditing, laying the foundation for external certification and auditing of AI systems, in line with the risk assessment framework in the upcoming ISO/IEC 42006 standard. ISO/IEC 42001 is scalable, making it suitable for organizations of all sizes and sectors.
ISO 42001 is part of a broader suite of standards aiming to govern best practices for trustworthy AI development, deployment, and improvement, including:
ISO/IEC 42001 will likely guide emerging regulations – primarily in the European Union and United States – in the form of guiding principles and mechanisms for future legislation.
What you need to know: Pre-emptively tracking ISO/IEC developments can help your organization to be prepared in advance of future legal requirements.
For instance, policymakers behind the EU AI Act (which obtained a provisional agreement on 8 December 2023) may choose to adopt the standard’s objectives and modalities to guide regional standardisation efforts by bodies like CEN/CENELEC and ETSI on conformity assessment procedures for High-Risk AI Systems (HRAIS).
Similarly, legislative efforts on AI in the United States, which have particularly intensified after the Biden-Harris Administration’s recent Executive Order – may seek to integrate aspects of ISO/IEC 42001 and the NIST’s Risk Management Framework (RMF) into future regulatory frameworks.
AI regulations are rapidly gaining momentum in jurisdictions like the European Union, United Kingdom, and United states. Standards are growing in importance as well, often as the underlying principles and guidelines behind formal legislation. For instance, the EU AI Act aims to fulfil its objectives regarding AI trustworthiness, accountability, risk management, and transparency by adopting harmonised procedural, performance and measurement standards.
The urgent need for standardisation is further underscored by the lack of harmonisation in the regulatory language used across different regulations. This has translated to a lack of global alignment and consensus on crucial issues like AI taxonomy, governance mechanisms, assessment methodologies, and measurement.
By establishing clear and universally accepted standards, a more coherent and consistent approach to governing AI technologies, mitigating risks, and fostering responsible and ethical AI development and deployment can be realised.
For organizations using AI in their business, third-party audits and other conformity assessment processes are increasingly demanded by emerging regulations.
Through our proprietary Platform and suite of innovative regulatory compliance solutions, Holistic AI can help you operationalize technical standards at scale, giving you the tools to ensure your AI systems are developed and deployed safely, effectively, and in line with compliance obligations.
We support trustworthy AI and enable teams to build trust with internal and external stakeholders for more widespread and effective AI adoption:
Schedule a call with one of our specialists to find out more about how we can help your organization.
DISCLAIMER: This blog article is for informational purposes only. This blog article is not intended to, and does not, provide legal advice or a legal opinion. It is not a do-it-yourself guide to resolving legal issues or handling litigation. This blog article is not a substitute for experienced legal counsel and does not provide legal advice regarding any situation or employer.
Schedule a call with one of our experts
DISCLAIMER: The information provided on this website does not, and is not intended to, constitute legal advice; instead, all information, content, and materials available on this site are for general informational purposes only. Information on this website may not constitute the most up-to-date legal or other information. This website contains links to other third-party websites. Such links are only for the convenience of the reader, user or browser; Holistic AI does not recommend or endorse the contents of the third-party sites.
Readers of this website should contact their attorney to obtain advice with respect to any particular legal matter. No reader, user, or browser of this site should act or refrain from acting on the basis of information on this site without first seeking legal advice from counsel in the relevant jurisdiction. Only your individual attorney can provide assurances that the information contained herein – and your interpretation of it – is applicable or appropriate to your particular situation. Use of, and access to, this website or any of the links or resources contained within the site do not create an attorney-client relationship between the reader, user, or browser and website authors, contributors, contributing law firms, or committee members and their respective employers.
The views expressed at, or through, this site are those of the individual authors writing in their individual capacities only – not those of their respective employers, Holistic AI, or committee/task force as a whole. All liability with respect to actions taken or not taken based on the contents of this site are hereby expressly disclaimed. The content on this posting is provided "as is;" no representations are made that the content is error-free.
