• CONSULTING
    • Strategy and business processes
      • Strategic planning and management of the implementation of the strategic plan
      • Business process management – identification, modeling and improvement of business processes
      • Designing a modern IT organization and managing human resource efficiency
      • Project management
    • Digital transformation through Data Management
      • Establish a Data Governance framework and develop a data management strategy
      • Data quality management
      • Data security management
      • Master and metadata management
      • Preparations for the implementation of BI and Big data solutions
      • Estimates of data management maturity
      • Documentation and content management
      • Establish organizations for successful data management and digital transformation
    • Risks and compliances
      • Establishment of CMS (Compliance Management System) as an independent system
      • The establishment of CMS as the initiator of the implementation of other management and integration systems
      • Compliance Management System as part of a digitized management system for the entire business system
      • GDPR/Privacy protection management
      • Anti-corruption management system (ISO 37001)
      • Protection of whistleblowers
      • Electronic identification and trust services in accordance with the eIDAS Regulation
    • Information security, Cyber security and business continuity
      • Corporate information security
      • Information security risk management
      • Information security systems management
      • Business continuity management
      • Cyber security management
      • Incident management, disaster recovery
      • Alignment with the EU regulation 2016/1148, the law and the regulation on cyber security
    • Quality, environment protection and energy efficiency
      • Implementation and evaluation of quality management system (ISO 9001, ISO 15017, etc.)
      • Implementation and assessment of environmental management system (ISO 14001)
      • Implementation and evaluation of energy efficiency management system (ISO 50001)
      • Implementation and evaluation of occupational health and safety management systems (ISO 45001)
    • IT Governance & IT Management
      • Design of ICT Governance & ICT Management systems
      • Development of a new IT strategy
      • Designing a modern IT organization and managing human resource efficiency
      • Management and supervision of IT projects
      • Information system development, verification, validation and testing services
      • Development of technical specifications for the development of information systems
      • Information systems audit
    • IT services
      • Managing IT services
      • Implementation of IT service management system (ISO 20000)
      • ITIL & managing IT services
    • EU projects
      • Identify opportunities for financial support and select the best source of funding
      • Preparation of project application in accordance with EU guidelines
      • EU project management
  • EDUCATIONS
    • Education calendar
  • e-learning
  • ABOUT US
    • Partners
    • ZIH team
    • ZIH’s Authorities
    • Reference list
  • NEWS
  • BLOG
  • CONTACT
Menu
  • CONSULTING
    • Strategy and business processes
      • Strategic planning and management of the implementation of the strategic plan
      • Business process management – identification, modeling and improvement of business processes
      • Designing a modern IT organization and managing human resource efficiency
      • Project management
    • Digital transformation through Data Management
      • Establish a Data Governance framework and develop a data management strategy
      • Data quality management
      • Data security management
      • Master and metadata management
      • Preparations for the implementation of BI and Big data solutions
      • Estimates of data management maturity
      • Documentation and content management
      • Establish organizations for successful data management and digital transformation
    • Risks and compliances
      • Establishment of CMS (Compliance Management System) as an independent system
      • The establishment of CMS as the initiator of the implementation of other management and integration systems
      • Compliance Management System as part of a digitized management system for the entire business system
      • GDPR/Privacy protection management
      • Anti-corruption management system (ISO 37001)
      • Protection of whistleblowers
      • Electronic identification and trust services in accordance with the eIDAS Regulation
    • Information security, Cyber security and business continuity
      • Corporate information security
      • Information security risk management
      • Information security systems management
      • Business continuity management
      • Cyber security management
      • Incident management, disaster recovery
      • Alignment with the EU regulation 2016/1148, the law and the regulation on cyber security
    • Quality, environment protection and energy efficiency
      • Implementation and evaluation of quality management system (ISO 9001, ISO 15017, etc.)
      • Implementation and assessment of environmental management system (ISO 14001)
      • Implementation and evaluation of energy efficiency management system (ISO 50001)
      • Implementation and evaluation of occupational health and safety management systems (ISO 45001)
    • IT Governance & IT Management
      • Design of ICT Governance & ICT Management systems
      • Development of a new IT strategy
      • Designing a modern IT organization and managing human resource efficiency
      • Management and supervision of IT projects
      • Information system development, verification, validation and testing services
      • Development of technical specifications for the development of information systems
      • Information systems audit
    • IT services
      • Managing IT services
      • Implementation of IT service management system (ISO 20000)
      • ITIL & managing IT services
    • EU projects
      • Identify opportunities for financial support and select the best source of funding
      • Preparation of project application in accordance with EU guidelines
      • EU project management
  • EDUCATIONS
    • Education calendar
  • e-learning
  • ABOUT US
    • Partners
    • ZIH team
    • ZIH’s Authorities
    • Reference list
  • NEWS
  • BLOG
  • CONTACT
Search
EN
  • HR
[ivory-search id="3372" title="Search form laptop"]

HR 

  • KONZALTING
    • Strategija i poslovni procesi
      • Strateško planiranje i upravljanje implementacijom strateškog plana
      • Upravljanje poslovnim procesima – identifikacija, modeliranje i unapređenje poslovnih procesa
      • Izrada nove organizacije te upravljanje razvojem karijere i radnim učincima djelatnika
      • Upravljanje projektima
    • Digitalna transformacija kroz upravljanje podacima
      • Uspostava Data Governance okvira i izrada strategije upravljanja podacima
      • Upravljanje kvalitetom podataka
      • Upravljanje sigurnošću podataka
      • Upravljanje matičnim i meta podacima
      • Pripreme za implementaciju rješenja za BI i Big data
      • Procjena zrelosti upravljanja podacima
      • Upravljanje dokumentacijom i sadržajem
      • Uspostava organizacije za uspješno upravljanje podacima i digitalnu transformaciju
    • Rizici i usklađenosti
      • Upravljanje poslovnim rizicima
      • Uspostava CMS-a (Compliance Management System) kao samostalnog sustava
      • Uspostava CMS-a (Compliance Management System) kao pokretača implementacije drugih sustava upravljanja i integracije
      • Uspostava CMS-a(Compliance Management System) kao dio digitaliziranog sustava upravljanja cijelim poslovnim sustavom
      • GDPR/Upravljanje zaštitom privatnosti
      • Zaštita prijavitelja nepravilnosti
      • Upravljanje antikorupcijskim sustavom (ISO 37001)
      • Elektronička identifikacija i usluge povjerenja u skladu s eIDAS Uredbom
    • Informacijska sigurnost, kibernetička sigurnost i kontinuitet poslovanja
      • Korporativna informacijska sigurnost
      • Upravljanje rizicima informacijske sigurnosti
      • Upravljanje sustavima informacijske sigurnosti
      • Upravljanje kontinuitetom poslovanja
      • Upravljanje kibernetičkom sigurnošću
      • Upravljanje incidentima, oporavak od katastrofe
      • Usklađivanje s eu uredbom 2016/1148, zakonom i uredbom o kibernetičkoj sigurnosti
    • Kvaliteta, zaštita okoliša i energetska učinkovitost
      • Implementacija i procjena sustava upravljanja kvalitetom (ISO 9001, ISO 15017 i dr.)
      • Implementacija i procjena sustava upravljanja zaštitom okoliša (ISO 14001)
      • Implementacija i procjena sustava upravljanja energetskom učinkovitosti (ISO 50001)
      • Implementacija i procjena sustava upravljanja zdravljem i zaštitom na radu (ISO 45001)
    • IT Governance & IT Management
      • Oblikovanje ICT Governance & ICT Management sustava
      • Razvoj nove IT strategije
      • Oblikovanje suvremene IT organizacije i upravljanje učinkovitošću ljudskih resursa
      • Upravljanje i nadzor IT projekata
      • Usluge u razvoju, verifikaciji, validaciji i testiranju informacijskih sustava
      • Izrada tehničkih specifikacija za razvoj informacijskih sustava
      • Revizija informacijskih sustava
    • IT usluge
      • Upravljanje IT uslugama
      • Primjena norme ISO 20000 u upravljanju IT uslugama
      • ITIL i upravljanje IT uslugama
    • EU projekti
      • Identifikacija mogućnosti dobivanja financijske potpore i odabir najboljeg izvora financiranja
      • Izrada projektne prijave u skladu s EU smjernicama
      • Vođenje EU projekata
  • EDUKACIJE
    • Kalendar edukacija
    • Seminari u prosincu!
  • e-learning
  • O NAMA
    • Partneri
    • Tim ZIH-a
    • Ovlaštenja ZIH-a
    • Referentna lista
  • NOVOSTI
  • BLOG
  • KONTAKT
  • KONZALTING
    • Strategija i poslovni procesi
      • Strateško planiranje i upravljanje implementacijom strateškog plana
      • Upravljanje poslovnim procesima – identifikacija, modeliranje i unapređenje poslovnih procesa
      • Izrada nove organizacije te upravljanje razvojem karijere i radnim učincima djelatnika
      • Upravljanje projektima
    • Digitalna transformacija kroz upravljanje podacima
      • Uspostava Data Governance okvira i izrada strategije upravljanja podacima
      • Upravljanje kvalitetom podataka
      • Upravljanje sigurnošću podataka
      • Upravljanje matičnim i meta podacima
      • Pripreme za implementaciju rješenja za BI i Big data
      • Procjena zrelosti upravljanja podacima
      • Upravljanje dokumentacijom i sadržajem
      • Uspostava organizacije za uspješno upravljanje podacima i digitalnu transformaciju
    • Rizici i usklađenosti
      • Upravljanje poslovnim rizicima
      • Uspostava CMS-a (Compliance Management System) kao samostalnog sustava
      • Uspostava CMS-a (Compliance Management System) kao pokretača implementacije drugih sustava upravljanja i integracije
      • Uspostava CMS-a(Compliance Management System) kao dio digitaliziranog sustava upravljanja cijelim poslovnim sustavom
      • GDPR/Upravljanje zaštitom privatnosti
      • Zaštita prijavitelja nepravilnosti
      • Upravljanje antikorupcijskim sustavom (ISO 37001)
      • Elektronička identifikacija i usluge povjerenja u skladu s eIDAS Uredbom
    • Informacijska sigurnost, kibernetička sigurnost i kontinuitet poslovanja
      • Korporativna informacijska sigurnost
      • Upravljanje rizicima informacijske sigurnosti
      • Upravljanje sustavima informacijske sigurnosti
      • Upravljanje kontinuitetom poslovanja
      • Upravljanje kibernetičkom sigurnošću
      • Upravljanje incidentima, oporavak od katastrofe
      • Usklađivanje s eu uredbom 2016/1148, zakonom i uredbom o kibernetičkoj sigurnosti
    • Kvaliteta, zaštita okoliša i energetska učinkovitost
      • Implementacija i procjena sustava upravljanja kvalitetom (ISO 9001, ISO 15017 i dr.)
      • Implementacija i procjena sustava upravljanja zaštitom okoliša (ISO 14001)
      • Implementacija i procjena sustava upravljanja energetskom učinkovitosti (ISO 50001)
      • Implementacija i procjena sustava upravljanja zdravljem i zaštitom na radu (ISO 45001)
    • IT Governance & IT Management
      • Oblikovanje ICT Governance & ICT Management sustava
      • Razvoj nove IT strategije
      • Oblikovanje suvremene IT organizacije i upravljanje učinkovitošću ljudskih resursa
      • Upravljanje i nadzor IT projekata
      • Usluge u razvoju, verifikaciji, validaciji i testiranju informacijskih sustava
      • Izrada tehničkih specifikacija za razvoj informacijskih sustava
      • Revizija informacijskih sustava
    • IT usluge
      • Upravljanje IT uslugama
      • Primjena norme ISO 20000 u upravljanju IT uslugama
      • ITIL i upravljanje IT uslugama
    • EU projekti
      • Identifikacija mogućnosti dobivanja financijske potpore i odabir najboljeg izvora financiranja
      • Izrada projektne prijave u skladu s EU smjernicama
      • Vođenje EU projekata
  • EDUKACIJE
    • Kalendar edukacija
    • Seminari u prosincu!
  • e-learning
  • O NAMA
    • Partneri
    • Tim ZIH-a
    • Ovlaštenja ZIH-a
    • Referentna lista
  • NOVOSTI
  • BLOG
  • KONTAKT
Menu
  • Konzalting
    • Strategija i poslovni procesi
      • Strateško planiranje i upravljanje implementacijom strateškog plana
      • Upravljanje poslovnim procesima – identifikacija, modeliranje i unapređenje poslovnih procesa
      • Izrada nove organizacije te upravljanje razvojem karijere i radnim učincima djelatnika
      • Upravljanje projektima
    • Digitalna transformacija kroz upravljanje podacima
      • Uspostava Data Governance okvira i izrada strategije upravljanja podacima
      • Upravljanje kvalitetom podataka
      • Upravljanje sigurnošću podataka
      • Upravljanje matičnim i meta podacima
      • Pripreme za implementaciju rješenja za BI i Big data
      • Procjena zrelosti upravljanja podacima
      • Upravljanje dokumentacijom i sadržajem
      • Uspostava organizacije za uspješno upravljanje podacima i digitalnu transformaciju
    • Rizici i usklađenosti
      • Upravljanje poslovnim rizicima
      • Uspostava CMS-a (Compliance Management System) kao samostalnog sustava
      • Uspostava CMS-a (Compliance Management System) kao pokretača implementacije drugih sustava upravljanja i integracije
      • Uspostava CMS-a(Compliance Management System) kao dio digitaliziranog sustava upravljanja cijelim poslovnim sustavom
      • GDPR/Upravljanje zaštitom privatnosti
      • Zaštita prijavitelja nepravilnosti
      • Upravljanje antikorupcijskim sustavom (ISO 37001)
      • Elektronička identifikacija i usluge povjerenja u skladu s eIDAS Uredbom
    • Informacijska sigurnost, kibernetička sigurnost i kontinuitet poslovanja
      • Korporativna informacijska sigurnost
      • Upravljanje rizicima informacijske sigurnosti
      • Upravljanje sustavima informacijske sigurnosti
      • Upravljanje kontinuitetom poslovanja
      • Upravljanje kibernetičkom sigurnošću
      • Upravljanje incidentima, oporavak od katastrofe
      • Usklađivanje s eu uredbom 2016/1148, zakonom i uredbom o kibernetičkoj sigurnosti
    • Kvaliteta, zaštita okoliša i energetska učinkovitost
      • Implementacija i procjena sustava upravljanja kvalitetom (ISO 9001, ISO 15017 i dr.)
      • Implementacija i procjena sustava upravljanja zaštitom okoliša (ISO 14001)
      • Implementacija i procjena sustava upravljanja energetskom učinkovitosti (ISO 50001)
      • Implementacija i procjena sustava upravljanja zdravljem i zaštitom na radu (ISO 45001)
    • IT Governance & IT Management
      • Oblikovanje ICT Governance & ICT Management sustava
      • Razvoj nove IT strategije
      • Oblikovanje suvremene IT organizacije i upravljanje učinkovitošću ljudskih resursa
      • Upravljanje i nadzor IT projekata
      • Usluge u razvoju, verifikaciji, validaciji i testiranju informacijskih sustava
      • Izrada tehničkih specifikacija za razvoj informacijskih sustava
      • Revizija informacijskih sustava
    • IT usluge
      • Upravljanje IT uslugama
      • Primjena norme ISO 20000 u upravljanju IT uslugama
      • ITIL i upravljanje IT uslugama
    • EU projekti
      • Identifikacija mogućnosti dobivanja financijske potpore i odabir najboljeg izvora financiranja
      • Izrada projektne prijave u skladu s EU smjernicama
      • Vođenje EU projekata
  • Edukacije
    • Kalendar edukacija
    • Seminari u prosincu!
  • e-learning
  • O nama
    • Partneri
    • Tim ZIH-a
    • Ovlaštenja ZIH-a
    • Referentna lista
  • Novosti
  • Blog
  • Kontakt
  • En
    • Hr

Homepage > Consulting > Risks and compliances > Anti-corruption management system (ISO 37001)

Anti-corruption management system (ISO 37001)

What is corruption?

Corruption appears in almost all areas of life and activity, in the public or private sector, from public institutions, politics, the economy, etc. Corruption undermines trust and creates the wrong incentive to act, for example, instead of a person doing the activities he should be doing, he focuses on using its power to the maximum extent and in order to satisfy its own interests.

At the organizational level, corruption seriously impairs organizational effectiveness. When corruption becomes part of the system, it is very difficult to remove it without destroying the organization itself. Effectiveness, public trust and social capital are harmed.

Protection measures against corruption

The strategy for combating corruption (Official Gazette 26/2015) and other accompanying regulations of the Republic of Croatia set the fight against corruption as a permanent task in all segments of our society. It requires a complete, transparent and responsible approach in the detection of weaknesses and risks in this area and the undertaking of appropriate controls.

Applying the requirements of the ISO 37001:2016 standard in the organization establishes an anti-corruption system that meets the stated goals. Its basic purpose is:

design and management of a complete anti-corruption system,
substantial increase in the ability to recognize, detect, address and reduce corruption risks,
the development of policies and anti-corruption procedures that prevent the possibility of corruption and implement the necessary controls,
checks of the internal anti-corruption system through its internal and external audits,
raising awareness of the need for anti-corruption actions and training our own employees for internal anti-corruption activities and their certification.

Anticorruption management system (ISO 37001)

This management system is based on a process approach that includes the Plan-Do-Check-Act cycle (PDCA) and risk management thinking. The process approach enables the organization to plan its processes and their interaction. The ISO 37001 management system is based on the fulfillment of the following groups of requirements: organizational context, leadership, planning, support, implementation, performance evaluation and improvement.


The context of the organization refers to the determination of internal and external circumstances that are relevant to the organization and affect its ability to achieve set management goals.

Leadership includes meeting general requirements, stakeholder requirements, and legal requirements, adopting an anti-corruption policy, planning anti-corruption goals, establishing a management system, and evaluating the effectiveness of the management system.

Planning refers to the identification of risks and opportunities that must be addressed in order to ensure that the anti-corruption management system achieves the intended results and improvements, the establishment of anti-corruption goals and plans for achieving them, and change management.

The support includes the management of the resources necessary for the implementation of the system and the establishment of an education and awareness plan with the aim of increasing the competence of employees and raising awareness regarding effective anti-corruption management.

Implementation includes the implementation of in-depth controls that include decision-making and controls during employment and defining requirements for financial and non-financial controls.

Performance evaluation refers to the monitoring and evaluation of the performance of the management system, i.e. the monitoring of non-compliance and the analysis of data required for improvements, as well as the method of improvement itself.

Why implement the ISO 37001 system?

The ISO 37001 system (ABMS – Anti-bribery management system) is intended to help organizations effectively prevent, detect and respond to corruption. The standard does not include other forms of corruption, such as fraud. The requirements of the standard are generic and applicable to all organizations, regardless of their type, size and sector (public, private or non-profit).

The ISO 37001 system can be applied to organizations of all sizes and types, private or public sector. The standard can be integrated into an existing compliance program (eg ISO 37301 compliance management system) or it can be established as a stand-alone management system.

By implementing the system, organizations gain the following benefits:

Increasing the ability to prevent, detect and address corporate risks:
Increasing the detection of corruption risks
Establishing effective mechanisms for preventing and addressing corruption risks
Improvement of corruption risk assessment procedures
Reduction of costs caused by corruption:
Increasing business performance due to the reduction of various losses caused by corruption
Increasing controls to monitor possible corruption
More efficient monitoring of the flow of transactions
Increasing confidence in the business system:
Application, and especially ABMS certification, increases confidence in the business system
Internal and external audits of the ABMS, which constantly monitor its efficiency and effectiveness
International recognition:
Achieving compliance with international anti-corruption standards
Achieving compliance with other industry standards
Increasing compliance with national and international regulations
Increasing anti-corruption skills:
Increasing staff training for anti-corruption procedures
Increasing anti-corruption culture

How ZIH can help you?

ZIH can be a reliable partner in the development and implementation of the ISO 37001 system through the following consulting services:

Preparation of the ABMS undertaking
ABMS team training
Assessment of the current situation and creation of a GAP analysis in relation to the requirements of the standard
Assessment of corruption risks
Development of anti-corruption controls
Development of anti-corruption policy
Development of anti-corruption procedures
Participation in the implementation of ABMS
Integration of ABMS with other systems (ISO 9001, ISO 27001, …)
Preparations for ISO 37001 system certification (internal audits, elimination of non-conformities, management assessment)
Participation in ABMS certification
Participation in continuous improvements of ABMS

Education in the mentioned field:

  • How to establish an anti-corruption system?
  • Audit of the anticorruption system
  • Certified ISO 37001 Foundation (PECB)
  • Certified ISO 37001 Lead Implementer (PECB)
  • Certified ISO 37001 Lead Auditor (PECB)
  • How to establish a system for reporting irregularities?
  • Audit of the whistleblower protection system 
  • Certified ISO 37002 Introduction
  •  

You may also be interested in these services and trainings:

Education

Compliance management in the business system

Read more

Education

PECB Certified ISO 31000 Risk manager

Read more

Service

Business risk management (ISO 31000, etc.)

Read more

Service

Compliance management

Read more

Why ZIH?

ZIH has rich experience in projects that include the preparation of the implementation of the anti-corruption system, that is, the implementation of the situation analysis and the creation of the anti-corruption program with the associated rules.

Do you want a short presentation or offer?

REQUEST AN INQUIRY

Contact us

Fill out the form and our staff will contact you and arrange a visit or online meeting to find out how we can help you.
We want to share with you our experiences and the latest trends that can help you in your daily business.

Consulting

Strategy and business processes

Digital transformation through Data Management

Risks and compliances

Information security and business continuity

Quality, environment protection and energy efficiency

IT Governance & IT Management

IT services

EU projects

EDUCATIONS

Strategy and business processes

Digital transformation through Data Management

Risks and compliances

Information security and business continuity

Quality, environment protection and energy efficiency

IT Governance & IT Management

IT services

EU projects

EDUCATION CALENDAR

ABOUT US

Partners

ZIH team

ZIH’s Authorities

Reference list

NEWS

BLOG

NEWS

BLOG

CONTACT

Trg Antuna, Ivana i Vladimira Mažuranića 8, 10 000 Zagreb
 
Telefon: +385 1 4855 271
Fax: +385 1 4855 272
E-mail: zih@zih.hr
 
IBAN: HR7423400091100013041
 
OIB: 34774399108

NEWSLETTER

Stay up to date with the news and services we provide
Facebook Youtube Linkedin
Copyright © 2022. ZIH
Pravila privatnosti
Mask Group
iso-9001-bureau-veritas-logo
Iso_Trans_Logo-01
Dizajn i programiranje: Prospekt d.o.o.
Copyright © 2022. ZIH

Privacy policy

Mask Group
iso-9001-bureau-veritas-logo
Iso_Trans_Logo-01
Design and programming: Prospekt d.o.o.