Catalog  /  Governance  /  ISO 37001:2016
ISO 37001:2016

ISO 37001:2016 — Anti-bribery Management Systems — Audit Checklist

ISO 37001:2016 (Anti-bribery management systems — Requirements with guidance for use)

ISO 37001:2016 audit checklist. Bribery risk assessment, anti-bribery policy and compliance function, employment due diligence, due diligence on transactions and business associates, financial and non-financial controls, gifts and hospitality, raising concerns and investigating bribery — Clauses 4–10, deep full-leaf split.

For the anti-bribery / compliance officer, the anti-bribery compliance function, internal audit and the board of an organisation operating, building or certifying an anti-bribery management system to ISO 37001.

Buy ISO 37001:2016 — €450 Download a sample ↓

ISO 37001 reads as the familiar seven management-system clauses, but the anti-bribery-specific demands — a live bribery risk assessment, an independent anti-bribery compliance function, risk-based due diligence on transactions and business associates, financial and non-financial controls, gifts/hospitality rules, protected speak-up and impartial investigations — are where certification and enforcement bite. This walks every clause.

Why now

ISO 37001:2016 is the current edition. Certification, and assurance to regulators, customers and the board, turn on evidencing each clause — especially the bribery risk assessment, due diligence and the compliance function’s independence.

What you get for €450

01

Every provision mapped

All 79 audit questions trace to a specific article, annex or clause of ISO 37001:2016. Nothing is hand-waved: each provision is either covered by one or more questions or explicitly recorded as informational. The free Compliance Matrix proves it, line by line.

02

Built to survive scrutiny

Authored and reviewed by compliance management professionals with decades of regulatory experience, against a stated version of ISO 37001:2016. Source text is reproduced verbatim per question, with suggested evidence inline — so an auditor (or a regulator) can follow every answer back to the regulation.

03

Hundreds of hours, ready Monday

The decomposition, evidence prompts and classification scheme are done. Five ready-to-use formats, delivered on payment, that drop straight into your audit process or your GRC tool — instead of months building a checklist from the raw regulation.

COMPLIANCE MATRIX — FREE, UNGATED

Every provision of ISO 37001:2016, accounted for.

Before you spend a cent, download the Compliance Matrix. Every leaf of the regulation appears as a row, with its coverage status and the audit questions that map to it. It is the proof that this checklist is complete — and the artefact your own auditor can use to check the checker.

79 Audit questions
100% Provisions accounted for
5 Artefact formats
12 Months of updates

Authored and reviewed by compliance management professionals. Reviewed against v2016-10-15; each Compliance Matrix states the exact version it was verified against.

Download the Compliance Matrix ↓ PDF · free · no email required · current as of v2016-10-15

See a sample first

ISO 37001:2016 — sample audit checklist

The first section rendered in full, plus the table of contents for the rest, watermarked SAMPLE. See exactly how the questions, evidence prompts and source text read before you buy. Free, no email required.

Download PDF ↓

Pricing

One regulation, one organisation, 12 months of updates included. A single invoice — not a subscription, nothing auto-debited.

Every amendment to ISO 37001:2016 within your 12-month window is re-rendered against the new version and emailed to you automatically. When the 12 months end you keep every artefact you've downloaded — you simply stop receiving new amendments unless you renew.

Licence Price What it covers
Single organisation €450 Use across your organisation, 12 months of updates, all five artefact formats plus the Compliance Matrix.

Licensing for a group of separate legal entities? Contact us for group licensing.

What you'll receive

Five formats of the same reviewed content, covering the full ISO 37001:2016, delivered by email the moment payment clears. Every amendment during your 12-month window is re-rendered and emailed automatically. Everything you download is yours to keep.

  • 01 Audit Checklist The auditor's working document. Per-question blocks with a compliance state, four-state classification and finding-level boxes, the regulation source text verbatim plus suggested evidence inline, and a management-system reference field. Print-ready. PDF
  • 02 Audit Checklist The same content as plain text. Diff it against last year's edition, drop it into Confluence / Notion / your internal wiki via pandoc, or feed it to internal review tooling. MD
  • 03 Audit Workbook Multi-sheet workbook mirroring the PDF: cover, per-section sheets with dropdowns and conditional formatting, Findings Log, Cross-Reference Register and Dashboard. XLSX
  • 04 Data Bank A flat one-row-per-question table. The universal format for upload into third-party audit and GRC software, or your own in-house tooling. Opens directly in Excel. CSV
  • 05 Question Bank A lean structured schema: citation, regulatory hook, question text, classification options, severity, applicability. A stable XSD contract for structured ingestion into third-party audit and GRC software. XML