Skip to main content
ISO/IEC 42001 is the first certifiable standard for AI management systems. 10 clauses (4–10) + 39 Annex A controls.

Mapped controls

ControlRequirementComplior FeatureStatus
A.5.2–5.4Risk/Impact AssessmentFRIA GeneratorDone
A.6.2.3–6V&V, deployment, monitoringScanner + EvalDone
A.6.2.9AI system documentationAgent PassportDone
A.6.2.10Prohibited use policiesSDK prohibited hookDone
A.6.2.11Third-party componentsSBOM (Cloud Scan)Done
A.7.6Data provenanceEvidence ChainDone
A.8.2AI disclosureSDK disclosure hookDone
A.9.5Human oversightSDK escalation hookDone
Clause 6.1.3Statement of ApplicabilityDocument GeneratorPlanned
A.2.2–2.3AI PolicyPolicy GeneratorPlanned
Clause 6.1.2Risk RegisterDocument GeneratorPlanned

ISO 42001 + EU AI Act synergy

ISO 42001 + NIST AI RMF + EU AI Act = the triple coverage. Complior builds the bridge between all three. A single complior scan produces scores for all frameworks simultaneously.