Certification Frequency
Overview of ISO 42001
What is ISO 42001
Who is ISO/IEC 42001 for?
Does this standard apply to all AI systems?
What is an Artificial Intelligence Management System (AIMS)?
Objectives of ISO/IEC 42001
Main benefits of implementing ISO/IEC 42001?
Types of standards ISO has for AI
ISO 42001 Cost
ISO 42001 Timeline
Certification Frequency
ISO 42001 Challenges
ISO/IEC 42001 certificates follow the standard ISO three-year cycle. Once you are certified, the certificate is typically valid for three years, provided you pass annual surveillance audits and a recertification audit at the end of the cycle. This structure is designed to keep your AI Management System (AIMS) “alive” and continually improving, rather than a one-time compliance project.
Certification validity and cycle
ISO 42001 certificates are typically issued with a 3‑year validity period (36 months) from the date of initial certification, assuming you maintain conformity.
The certification body can suspend or withdraw the certificate if surveillance audits reveal serious or uncorrected nonconformities, so validity is conditional, not automatic.
Maintaining compliance includes:
- Annual surveillance audits to verify ongoing effectiveness
- Recertification audit at the end of the three-year cycle
SOC Frameworks Overview
SOC 2 Basics
SOC 2 Compliance Process
SOC 2 Compliance Process
Sprinto: Your ally for all things compliance, risk, governance
