Turn your anti-bribery compliance programme into a certified management system
Most companies already have an anti-bribery compliance programme, with policies, training, a code of conduct and a hotline. But what they often lack is independent, accredited confirmation that the programme actually works. ISO 37001 certification provides exactly that – and buyers, governments and ratings agencies increasingly expect to see it.
Why compliance officers are pursuing certification now
Compliance officers tell us they are under pressure from three directions at once:
Procurement teams are being asked to provide certificates in tender responses
ESG ratings agencies score anti-corruption controls, and certification is one of the strongest signals available
Boards are asking for independent assurance that the programmes they have funded actually meet a recognised international benchmark
Upgrading an existing anti-bribery programme to a certified ISO 37001 management system is the most direct way to answer all three at the same time.
Talk to an ISO 37001 expertWhat certification delivers that a compliance programme alone does not
Governments increasingly require – or strongly prefer – ISO 37001 certified suppliers in public procurement. A growing number of jurisdictions reference the standard in public sector tendering, integrity pacts or debarment frameworks. For companies bidding into the public sector, an uncertified programme is becoming a competitive disadvantage.
ESG ratings agencies score business ethics, anti-corruption and governance components. An ISO 37001 certified management system is one of the strongest data points a company can disclose under those indicators. For listed companies and companies raising sustainable finance, this directly affects rating outcomes and the cost of capital.
A certified management system has been tested by an accredited third party. This gives general counsel and the chief compliance officer something the internal programme alone cannot provide: external confirmation that controls are designed and operating effectively.
Regulators and prosecutors in the US, UK, France and Brazil have all signalled that the existence of a credible, tested anti-bribery management system is a relevant factor in enforcement outcomes. Certification is not a shield, but it is recognised evidence of good-faith implementation.
Large buyers – particularly in energy, defence, infrastructure and financial services – now request ISO 37001 certification from suppliers as part of third-party due diligence. Certified suppliers move through onboarding faster.
Five steps to move from an existing anti-bribery programme to a certified management system
Speeki is a world leader in certifying anti-bribery management systems. The path from an existing programme to a certified management system is well-defined.
Gap analysis against ISO 37001
1
Speeki assesses your existing anti-bribery controls against the requirements of the standard and identifies what needs to be added, formalised or evidenced.
Closing the gaps in the management system
2
The compliance team formalises risk assessments, due diligence procedures, controls and monitoring activities into a structured management system. Most of the substantive work is already done inside the existing programme; this step organises it.
Pre-certification preparation
3
Speeki conducts reviews and mock audits, surfacing gaps before the formal audit so the compliance team can address them in advance.
Certification audit
4
Speeki conducts the two-stage ISO 37001 audit. Stage 1 reviews documentation and system design. Stage 2 tests how controls operate in practice.
Certificate issued, surveillance cycle begins
5
After a successful audit, the certificate is issued. Annual surveillance audits and three-yearly recertifications keep the management system alive.
Why compliance officers choose Speeki as their certification body
✔ ANAB and COFRAC accredited certification body*
✔ Senior auditors with over 20 years of experience
✔ Trusted by leading organisations worldwide
✔ Technology-driven approach with Speeki Engage®
*COFRAC: Comité Français d'Accréditation is the French Accreditation Body (Accreditation N°4-0609). List of locations and scope available at http://www.cofrac.fr/.
See what our clients say
We recently asked our clients about their experience with Speeki's ISO certification process. Here is what they told us:
'The audit process was clear, well structured and professionally managed from start to finish.'
'The audit was conducted efficiently and without disruption to our business.'
'Speeki's auditors demonstrated strong subject matter expertise and a practical understanding of our organisation.'
Learn more about the certification process with Speeki – explore examples of certifications for British Standards Institution (BSI), Gaztransport & Technigaz (GTT) and Puma Energy.
Questions compliance officers ask before certifying
-
A compliance programme is internal evidence, but certification provides the external, accredited evidence that procurement teams, ratings agencies, regulators and boards actually rely on. Certification turns the work already done into something demonstrable.
-
Less than most compliance officers expect. A mature programme typically already covers 60–80% of what ISO 37001 requires. The gap analysis identifies what is missing – usually around formalised risk assessment methodology, due diligence documentation, monitoring evidence and management review records.
-
France, Italy, Peru and Singapore reference the standard in public-sector tendering or integrity frameworks. A growing number of jurisdictions in Latin America and Asia are following. For multinationals bidding across regions, certification removes a category of disqualification risk.
-
Anti-corruption is a scored sub-indicator under the governance pillar across all major ESG frameworks. Certification is one of the highest-value disclosures a company can make under that indicator.
-
Six to 12 months for most organisations, depending on size, footprint and the maturity of existing controls.
-
No. As an accredited certification body, Speeki maintains independence from implementation work. Speeki supports compliance functions through training and through the Speeki Engage® platform, which holds policies, due diligence records, training, incidents and audit evidence in one place.
-
Audit fees depend on organisational size, complexity and the duration of the audit. Compliance functions should also plan for any internal gap-closing work, training and supporting technology.
Looking for extra resources before booking a consultation?
We've got you covered.
Checklist
Download Speeki's ISO 37001 checklist to understand what is required to build an anti-bribery management system aligned with the standard.
Podcast
Webinar
Watch our on-demand webinar for practical guidance on preparing for a successful ISO 37001 certification audit.
About Speeki
Speeki is an assurance company helping organisations turn their compliance, sustainability and ESG initiatives into a competitive advantage. Providing independent validation across six areas – ISO certifications, sustainability reporting, product sustainability representations, circular economy, supplier audits and pre-acquisition ESG audits – Speeki strengthens consistency, credibility and confidence.
All of this is delivered through Engage®, Speeki’s AI-powered platform.
Copyright © 2026 Speeki Pte Ltd. Speeki, Speeki Interactive, Nicole, Engage, ETHIC Intelligence are all trademarks of Speeki Pte Ltd or group companies. All other brand, product, and service names and logos are marks of their respective owners. Screen images could be simulated. Appearance of products may vary. Use of ISO 27001 Certification Marks: Speeki Cloud platform, technology services and product management is ISO 27001 Information Security Management System certified. Speeki Europe SAS exclusively provides ISO assurance solutions within the group as it is the only ISO accredited certification body. No companies in the group provide management system consulting or consulting of any kind.