ISO 42006
The ISO/IEC standard setting requirements for bodies that audit and certify AI management systems against ISO 42001. It ensures that certification audits are conducted consistently and credibly, regardless of which certification body performs them.
Why It Matters
A certification is only as credible as the auditor behind it. ISO 42006 prevents a race to the bottom where some certification bodies offer easy passes, ensuring that ISO 42001 certification carries genuine weight with regulators and stakeholders.
Example
When selecting a certification body for its ISO 42001 audit, an organization verifies that the auditor is accredited under ISO 42006 standards, ensuring the audit team has the requisite AI expertise and follows established assessment protocols.
Think of it like...
ISO 42006 is like the licensing exam for accountants — it doesn't audit your books itself, but it ensures that whoever does audit them meets a professional standard of competence and rigor.
Related Terms
ISO 42001
The first international standard for an AI Management System (AIMS), published by ISO/IEC. It provides a certifiable framework for organizations to establish, implement, maintain, and continually improve responsible AI governance. Compatible with other ISO management system standards like ISO 27001.
AI Audit
An independent evaluation of an AI system's compliance, performance, fairness, and governance practices. Audits can be internal (conducted by the organization's own team) or external (by independent third parties), and may be required by regulation for high-risk systems.
Conformity Assessment
The process by which a high-risk AI system is evaluated against regulatory requirements before being placed on the market. Under the EU AI Act, this may involve self-assessment by the provider or evaluation by an independent third-party body, depending on the system's use case.