PL EN
PL EN
787 974 136
731 901 601
Implementation methodology Standard information Benefits Testimonials
DJB Doradztwo Implementations ISO 42001

ISO 42001 Artificial Intelligence Management System

With our help, you will implement ISO 42001

Certyfikat Certificate with guaranteed certification
Czas Fast implementation
Puzzle Tailored to your company's needs
Bez papierologii No unnecessary paperwork

Over 5,000 small, medium, and large companies have trusted us over 25 years:

xerox brother good-mills promedica 24 stalesia norvacc holidayin eisberg univar hanarol mwv lot parp minimax
Request a free quote

fill out the form or call us

787 974 136 731 901 601
Certificate guarantee
Bezpieczne dane

Your data is safe with us.
We care about your privacy.

Implementation Methodology

Discover our unique implementation methodology that guarantees
successful certification.

1 Analysis of the organisational context and AI systems
The first step involves a detailed analysis of the organisational context and the identification of AI systems used or developed by the organisation. The audit includes defining the organisation’s roles in relation to AI systems and mapping business processes that utilise AI.
Step 1: Analysis of the organisational context and AI systems
2 Assessment of the risks and impacts of AI systems
In this phase, the organisation carries out a comprehensive assessment of the risks associated with AI systems (AI Risk Assessment) and an assessment of the impact of AI systems on individuals, groups of people and society (AI System Impact Assessment). These are fundamental processes for the responsible management of AI.
Step 2: Assessment of the risks and impacts of AI systems
3 AI policy and board engagement
ISO/IEC 42001 requires the personal commitment of top management to the responsible management of AI. In this phase, the accountability structure is established, an AI policy is developed, and board support for the AIMS is secured.
Step 3: AI policy and board engagement
4 Documentation of AI system resources
The organisation must identify and document all resources used throughout the AI system lifecycle. This includes data, tools, computing infrastructure and team competencies. Scope of resource documentation: Data resources: origin, quality, categories, intended use AI tools: algorithms, models, libraries, platforms Computing resources: infrastructure, cloud, edge computing Human resources: AI team competencies, roles in the AI lifecycle Documentation of data provenance Mapping of data flow in AI systems
Step 4: Documentation of AI system resources
5 AI system lifecycle
The organisation defines and documents processes related to the full lifecycle of AI systems, from conception through development, deployment and operation, right through to decommissioning. This is the foundation of responsible AI governance.
Step 5: AI system lifecycle
6 Data management for AI
Data quality and appropriate data management are crucial for AI systems. The organisation must implement processes to ensure appropriate data quality, provenance, preparation and management throughout the entire lifecycle.
Step 6: Data management for AI
7 Security controls and oversight of AI
Implementation of the controls from Annex A of the ISO/IEC 42001 standard, with particular emphasis on security controls for AI systems, human oversight mechanisms, and monitoring of AI performance.
Step 7: Security controls and oversight of AI
8 AI incident management
The organisation must be prepared to detect and respond to incidents related to AI systems, including incorrect predictions, unexpected model behaviour, breaches of AI ethics and security incidents.
Step 8: AI incident management
9 Supply chain and third-party relationships
This is one of the key areas of ISO/IEC 42001. The organisation must ensure an appropriate level of responsible AI management among its suppliers, partners and third parties providing AI systems, components or data.
Step 9: Supply chain and third-party relationships
10 Information for interested parties
The organisation must provide appropriate information to various stakeholder groups: users of AI systems, customers, regulators and the public. This includes technical documentation, user instructions and transparency mechanisms.
Step 10: Information for interested parties
11 AI training and awareness-raising
Staff at all levels of the organisation must understand the principles of responsible AI, the risks associated with AI, and know how to use AI systems properly. Training is a key element of effective AI management.
Step 11: AI training and awareness-raising
12 Internal audit and management review
Once all elements of the AIMS system have been implemented, a comprehensive internal audit and review involving senior management is carried out to ensure that the system operates in accordance with the requirements of ISO/IEC 42001.
Step 12: Internal audit and management review
13 Advisory Support
We help select a certification body and support you during the certification process.
Step 13: Advisory Support

What We Provide to Our Clients

Certyfikat
Guarantee of obtaining certification
Procedury
Development of all procedures and instructions
Zegar
Fast and efficient implementation
Certyfikat
Training confirmed with certificates

Information about ISO 42001

What is ISO 42001?

ISO/IEC 42001 is an international standard setting out the requirements for an Artificial Intelligence Management System (AIMS). It helps organisations to design, implement, use and oversee AI systems in a responsible, safe, ethical and compliant manner. It is the first standard of its kind in the world, based on the approach familiar from other ISO standards (e.g. ISO 9001 or ISO 27001).

Who does this standard apply to?

ISO 42001 applies to all organisations that:

  • develop AI-based systems,
  • use AI in their business processes,
  • provide AI-based products or services,

regardless of the organisation’s size, industry or sector (public, private, IT, manufacturing, finance, healthcare, administration, etc.).

Key elements of success:

Implementing ISO 42001 enables an organisation to:

  • effectively manage risks associated with AI (e.g. errors, bias, lack of transparency),
  • ensure compliance with legal regulations (e.g. AI Act, GDPR),
  • build trust among customers, partners and stakeholders,
  • improve the control, quality and security of AI systems,
  • strengthen the organisation’s image as responsible and innovative,
  • facilitate the integration of AI with other management systems within the organisation.

ISO 42001 provides robust support for organisations wishing to utilise the potential of artificial intelligence in a conscious and responsible manner.

What are the benefits of implementing it?

  • Management commitment – full support from top management for responsible AI
  • Comprehensive risk and impact assessment – systematic identification of technical, ethical and social risks
  • Data quality and governance – ensuring appropriate data quality throughout the AI lifecycle
  • AI supply chain – managing accountability among suppliers and partners
  • Transparency and accountability – mechanisms for explainability and accountability for AI systems
  • Human oversight – appropriate human supervision of AI systems
  • Awareness and competence – training and development of AI competencies at all levels
  • Continuous improvement – regular reviews and adaptation to the changing AI landscape

ISO/IEC 42001 is not a one-off activity, but a continuous process. Organisations that treat responsible AI management as a priority will not only meet the requirements of the international standard, but will also build stakeholder trust, mitigate AI-related risks and gain a competitive advantage through the ethical and professional use of artificial intelligence.

Testimonials

See what our clients say about our implementations

AGH
Main Library of the Stanisław Staszic University of Science and Technology in Kraków
"The Main Library of the Stanisław Staszic University of Science and Technology in Kraków confirms that in 2011, DJB Doradztwo Marcin Chorąży provided a service at the Main Library of the University of Science and Technology consisting of the implementation of an information security management system compliant with the PN-ISO/IEC 27001 standard. The subject of the contract was performed with due diligence, in accordance with professional expertise and within the timeframe specified in the contract.

We particularly appreciate the delivery of a series of training sessions on the ISO 27001 standard for staff and management, which enabled us to organise proper oversight of the information security management system and its continuous development."
AGH BIBLIOTEKA GŁÓWNADr Jerzy Krawczyk
Deputy Director of the Main Library
View testimonials
DIRECT COMMUNICATION Sp. z o.o.
"Working with DJB Doradztwo enabled us to quickly implement the ISO 27001 system, provide professional training for our staff, and efficiently obtain the system certification required by our business partners.

Professionalism, flexibility and punctuality – these are the qualities that set DJB Doradztwo's staff apart. Thanks to them, the process of implementing the ISO 27001 system did not place an additional burden on our staff and allowed them to carry out their daily duties."
DIRECT COMMUNICATION Sp. z o.o.Krzysztof Kunowski
IT Director
View testimonials
PRIME FORCE Sp. z o.o.
"DJB Doradztwo Marcin Chorąży carried out a project for our organisation to implement the ISO 9001:2015 and ISO 27001:2017 standards in a professional and reliable manner, which enables us to recommend their services to all interested clients.

The implementation objectives were achieved to a high standard in terms of both content and organisation. The company developed excellent training materials tailored to our needs."
PRIME FORCE Sp. z o.o.Kazimierz Konarski
Commercial Director
View testimonials
SANDS PARTNERS Sp. z o.o.
"SANDS PARTNERS Sp. z o.o., based in Wrocław, would like to extend its sincere thanks to DJB Doradztwo Marcin Chorąży for their assistance in implementing the Information Security Management System (ISO 27001). The implementation of the System was carried out in a professional and timely manner, demonstrating excellent knowledge of the subject matter and an appropriately chosen approach. We rate our cooperation with the staff of DJB Doradztwo Marcin Chorąży very highly, both during the organisational phase and following the successful implementation of the System."
SANDS PARTNERS Sp. z o.o.Bartosz Strożek, Grzegorz Struś
Management Board of Sands Partners Sp. z o.o.
View testimonials
View all testimonials
Djb Doradztwo

DJB DORADZTWO
Marcin Chorąży

ul. Kilińskiego 121 C / 152
90-049 Łódź
Offer
Company
Copyright 2026 DJB Doradztwo
Privacy Policy Contact