Conformity Assessment Certificate

ISO 26000 – Social Responsibility Assessment

Overview
ISO 26000 is the internationally recognized guidance on social responsibility. It helps organizations of all sizes integrate ethical, transparent, and sustainable practices into their operations—covering areas such as human rights, labor practices, environmental stewardship, fair operating practices, consumer issues, and community involvement.

Who It’s For

  • Organizations aiming to embed CSR and ESG into their strategy

  • Companies seeking stronger social-responsibility credentials for investors and stakeholders

  • NGOs, public bodies, and businesses wanting to improve corporate citizenship

Why a Social Responsibility Assessment Matters

  • Boost Reputation: Show your stakeholders you take ethics and sustainability seriously

  • Mitigate Risks: Identify gaps in labor, environmental, and community practices before they become liabilities

  • Win Business: Differentiate in tenders and RFPs by evidencing robust CSR practices

  • Drive Improvement: Build a clear roadmap based on a third-party-validated gap analysis

Scope of Our Remote Assessment

  1. Gap Analysis
    – Compare your policies and practices against ISO 26000 principles

  2. Stakeholder Mapping
    – Identify and engage key groups (employees, suppliers, communities)

  3. Document & Data Review
    – Audit codes of conduct, sustainability reports, environmental data, grievance mechanisms

  4. Virtual Interviews & Workshops
    – Conduct remote sessions with leadership and operational teams

  5. Recommendations & Roadmap
    – Deliver a prioritized action plan aligned to ISO 26000 guidance

Our 6-Step Remote Audit Process

  1. Kick-off & Scoping Call: Define objectives, scope, and remote-audit logistics

  2. Document Collection: Secure file transfer of your CSR policies, reports, and data

  3. Virtual Interviews: Live video sessions with your team to validate implementation

  4. Preliminary Findings Workshop: Share initial gaps and confirm with stakeholders

  5. Final Report & Certificate: Issue a Conformity Assessment Certificate and detailed gap matrix

  6. Follow-up Support: Optional remote workshops to help you start on improvements

Deliverables

  • Conformity Assessment Certificate confirming alignment with ISO 26000 guidance

  • Comprehensive Gap Analysis Report with executive summary

  • Tailored Improvement Roadmap with responsibilities and timelines

  • Presentation Deck for your board or steering committee

Why Company Certification Int.?

  • Remote-First Expertise: Proven track record delivering thorough assessments entirely online

  • 15+ Years’ Experience: Across manufacturing, healthcare, retail, NGOs, and public sector

  • Actionable Insights: We don’t just flag issues—we help you fix them with clear, practical advice

  • Global Reach: Consultants versed in regional regulations and cultural contexts

Ready to demonstrate your commitment to social responsibility?

ISO/IEC TR 38502 – IT Governance Framework Conformity Assessment

Overview

ISO/IEC TR 38502 provides guidance on the governance of IT within organizations. Our assessment helps:

  • Evaluate your IT governance framework against international standards

  • Identify gaps in IT decision-making and oversight structures

  • Align IT strategy with business objectives

  • Improve value delivery from IT investments

Who It's For

  • Corporate boards and executive teams

  • CIOs and IT leadership teams

  • Organizations undergoing digital transformation

  • Companies preparing for COBIT or ISO 38500 implementation

  • Regulated industries with strict IT governance requirements

Why an IT Governance Assessment Matters

  • Strategic Alignment: Ensure IT supports business goals

  • Risk Management: Identify governance-related IT risks

  • Value Optimization: Maximize return on IT investments

  • Stakeholder Confidence: Demonstrate effective IT oversight

Scope of Our Assessment

  • Governance Framework: Structure and processes

  • Strategic Alignment: IT-business integration

  • Value Delivery: IT investment performance

  • Risk Management: IT risk oversight

  • Resource Optimization: People, processes and technology

  • Performance Measurement: Metrics and monitoring

Our 6-Step Assessment Process

  1. Scoping Workshop: Define assessment objectives

  2. Document Review: Policies, charters, and reports

  3. Leadership Interviews: Board, executives, and IT management

  4. Process Evaluation: Decision-making and oversight

  5. Gap Analysis: Against ISO/IEC TR 38502 guidelines

  6. Final Report: Conformity Assessment with improvement roadmap

Deliverables

  • Conformity Assessment Certificate

  • IT Governance Maturity Report

  • Strategic Alignment Evaluation

  • Governance Improvement Plan

  • Board-Level Presentation Package

Why Company Certification Int.?

  • Governance Experts: Assessors with CGEIT and IT governance certifications

  • Board-Level Experience: Understand executive perspectives

  • Practical Approach: Actionable recommendations

  • Global Standards Alignment: Integrates with COBIT and ISO 38500

FAQ

Q: Is this a certification?
A: No, this is a conformity assessment against guidance standards, providing validation of your IT governance framework.

Q: How does this differ from an IT audit?
A: We focus on governance (decision-making and oversight) rather than operational controls.

Q: Who should participate in the assessment?
A: Board members, executives, and IT leadership for comprehensive evaluation.

Q: What's the typical duration?
A: 3-4 weeks depending on organization size and complexity.

Q: Can this help with regulatory compliance?
A: Yes, particularly for regulations requiring demonstrated IT governance.

Get Started

Ready to strengthen your IT governance?
[Request Governance Assessment] [Download Framework Checklist]

ISO/TR 24028 – AI Trustworthiness Conformity Assessment

Overview

ISO/TR 24028 provides guidance on trustworthiness in artificial intelligence systems. Our assessment helps organizations:

  • Evaluate AI systems against international trustworthiness principles

  • Identify risks in AI decision-making processes

  • Improve transparency and accountability of AI implementations

  • Align with emerging AI governance frameworks

Who It's For

  • Developers and deployers of AI systems

  • Organizations using AI for critical decision-making

  • Regulatory compliance teams addressing AI risks

  • Procurement teams evaluating AI vendor solutions

  • Ethics committees overseeing AI implementations

Why an AI Trustworthiness Assessment Matters

  • Risk Mitigation: Identify and address AI system vulnerabilities

  • Regulatory Preparedness: Stay ahead of evolving AI regulations

  • Stakeholder Trust: Demonstrate responsible AI practices

  • System Improvement: Enhance AI reliability and performance

Scope of Our Assessment

  • AI System Documentation: Review of development processes

  • Algorithmic Transparency: Explainability and interpretability

  • Data Quality: Training data representativeness and bias

  • Decision Auditing: Output validation and monitoring

  • Human Oversight: Control mechanisms and fallback procedures

Our 6-Step Assessment Process

  1. Scoping Call: Define AI systems and use cases

  2. Document Review: Technical documentation and policies

  3. Technical Evaluation: Algorithm and data pipeline analysis

  4. Stakeholder Interviews: Developers, users, and affected parties

  5. Impact Assessment: Potential harms and mitigation strategies

  6. Final Report: Conformity Assessment with improvement plan

Deliverables

  • Trustworthiness Assessment Certificate

  • AI Risk Profile Report

  • Bias and Fairness Evaluation

  • Governance Improvement Plan

  • Executive Summary Presentation

Why Company Certification Int.?

  • AI Ethics Experts: Assessors with technical and ethical expertise

  • Multidisciplinary Approach: Combines technical and governance perspectives

  • Practical Framework: Actionable recommendations for improvement

  • Future-Ready: Aligns with emerging global AI standards

FAQ

Q: Is this a certification of our AI system?
A: This is a conformity assessment providing independent validation of your AI's trustworthiness characteristics.

Q: How does this relate to EU AI Act requirements?
A: Our assessment helps prepare for compliance with high-risk AI system requirements.

Q: What types of AI systems can be assessed?
A: We assess machine learning, deep learning, and other AI approaches across all applications.

Q: How long does the assessment take?
A: Typically 3-5 weeks depending on system complexity.

Q: Do you need access to our source code?
A: We require appropriate technical documentation but typically don't need full source code access.

Get Started

Ready to demonstrate your AI's trustworthiness?
[Request AI Assessment] [Download Trustworthiness Checklist]

ISO/IEC 29134 – Privacy Impact Assessment (PIA) Service

Company Certification Int. offers expert Privacy Impact Assessment (PIA) services based on ISO/IEC 29134, a global guideline that helps organizations systematically assess the privacy risks associated with processing personally identifiable information (PII).

What Is ISO/IEC 29134?

ISO/IEC 29134 provides guidance on:

  • Planning and conducting Privacy Impact Assessments (PIAs)

  • Identifying and evaluating PII-related risks

  • Documenting mitigation actions and accountability

  • Supporting privacy-by-design practices in systems and services

  • Aligning with global laws like GDPR, HIPAA, and PDPA

Our PIA Assessment Services

We support your organization by:

  • Conducting structured PIAs on systems or projects handling PII

  • Mapping data flows, risk points, and third-party data sharing

  • Evaluating the legal and technical risks to individuals’ privacy

  • Recommending mitigation strategies and controls

  • Providing a non-accredited Conformity Assessment Certificate

Key Benefits

  • Demonstrates responsible data processing practices

  • Helps meet legal obligations under GDPR Article 35 (DPIA)

  • Identifies privacy risks early in project life cycles

  • Builds trust with customers and regulators

  • Supports ISO 27701 and ISO 29100 alignment

When to Conduct a PIA

  • Before launching new products/services that process PII

  • During digital transformation, cloud migration, or system redesign

  • When handling biometric, financial, health, or location data

  • If required by law or regulation

What You’ll Receive

  • PIA Report aligned with ISO/IEC 29134

  • Data flow mapping and risk register

  • Detailed recommendations for mitigation

  • Staff awareness guidance

  • PIA Conformity Assessment Certificate

Our Assessment Process

  • Information gathering and scoping with key stakeholders

  • Identification of privacy risks and impact severity

  • Documentation of mitigation controls and responsibilities

  • Delivery of a formal PIA assessment report

Frequently Asked Questions (FAQ)

Q1: Is ISO/IEC 29134 certifiable?
A1: No. It’s a guideline. We provide conformity assessment to verify implementation of its recommendations.

Q2: Is this service helpful for GDPR compliance?
A2: Yes. It aligns closely with GDPR’s DPIA requirements under Article 35.

Q3: What type of organizations need a PIA?
A3: Any organization processing sensitive or large-scale personal data, especially in fintech, health tech, government, and HR systems.

Q4: Who conducts the assessment?
A4: Our privacy experts with experience in data protection and security conduct the assessments remotely or onsite.

Protect Privacy. Minimize Risk.

Ensure your projects handle personal data responsibly with ISO/IEC 29134 – Privacy Impact Assessment by Company Certification Int.

Pages