ISO 37002 Standard, enhance your whistleblowing management system


The ISO 37002 Standard, titled "Whistleblowing Management Systems," integrates the necessary guidelines to create, implement, maintain, and improve a whistleblowing management system to be effective and reliable within organizations.

This standard is closely related to the ISO 37001 Standard on anti-bribery management systems; however, it specifically focuses on addressing whistleblowing mechanisms.

Within ISO 37002, key objectives to be addressed by organizations are determined, such as:

  1. Establishing a culture of transparency and trust: Creating an environment where all members of the organization (employees, suppliers, and customers) feel safe and supported when reporting suspected breaches or unethical acts.
  2. Providing a clear normative basis for whistleblowing: The Standard aims to clearly and adequately list the proper process for the receipt, evaluation, and resolution of whistleblowing reports within organizations.
  3. Protecting whistleblowers: Ensuring confidentiality, security, and protection against retaliation for those who report breaches and/or irregularities.
  4. Ensuring effective whistleblowing management: Ensuring a timely and appropriate response to reports, including investigation and corrective actions as required.

Some key components of the ISO 37002 Standard:

  1. Policies and Procedures: Establishing and documenting clear policies for whistleblowing management, detailing the roles, responsibilities, and procedures for all involved.
  2. Accessibility and Communication: Ensuring that all internal and external members, as well as stakeholders, are aware of the different channels for reporting and how they work. For example, SHOGUN’s Ethics Line is accessible from any device, whether through the APP or WEB.
  3. Risk Assessment and Management: Examining reports to assess their validity and the need for further investigation. This includes managing the risks associated with the report and its resolution.
  4. Confidentiality and Whistleblower Protection: Ensuring the protection of the whistleblower’s identity and preventing retaliation, promoting a safe environment for reporting unethical behavior.
  5. Training and Awareness: Regularly providing employees with training on the whistleblowing management system and the importance of reporting unethical behavior within the organization.
  6. Monitoring and Continuous Improvement: Implementing mechanisms to follow up on the effectiveness of the whistleblowing management system and establishing continuous improvements based on feedback and results obtained.

ISO 37002 focuses on creating a management system that not only facilitates the reporting of misconduct but also ensures that these reports are handled fairly, quickly, and effectively, promoting an ethical and responsible organizational culture.

The adoption of ISO 37002 allows organizations to establish a robust whistleblowing management system that facilitates the reporting of potential irregularities, ensuring a fair, efficient, and timely process.

Implementing this type of Standard reflects an organization's commitment to developing an ethical and responsible organizational culture. Strengthen your company’s integrity and enhance its reputation by adopting the ISO 37002 Standard.

Author: Guillermo Casal
International consultant and trainer in fraud prevention and investigation and anti-money laundering. He is a Certified Public Accountant, holds a Master's degree in Economics and Administration, and has six international certifications, including the CFE (Certified Fraud Examiner), CIA (Certified Internal Auditor), and CISA (Certified Information Systems Auditor).

Guillermo Casal
LinkedIn

Guillermo Casal   argentina

A professional with 40 years of experience in the fields of forensic and internal auditing. He graduated as a Certified Public Accountant (UBA - Argentina) and holds a Master's in Economics and Administration (ESEADE - Argentina). He possesses certifications including CFE (Certified Fraud Examiner), Certified Internal Auditor (CIA), and Certified Information Systems Auditor (CISA).

He established the forensic auditing practices at IFPC - IGI, a firm founded and chaired by Stephen P. Walker, a former special agent of the FBI, and at the Law Firm of Dr. Luis Moreno Ocampo, former prosecutor of the International Criminal Court in The Hague.

He has led three Internal Audit units in large companies in Argentina and served as the Executive Director of FLAI, the Latin American Federation of Internal Auditors.

He presided over the Institute of Internal Auditors of Argentina. He has acted as a consultant, fraud investigator, and speaker in various countries in Latin America, the United States, Spain, and Mozambique.

Regulatory compliance with SHOGUN ethical line

European Whistleblower Protection Directive

ISO 37301: Compliance Management System

ISO 37001: Anti-bribery management system

ISO 37002: Whistleblower Channel System

EU General Data Protection Regulation

Corporate Anti-Fraud program

COSO: Committee of Sponsoring Organizations of the Tradeway Commission

 

Request a demo

Learn how SHOGUN can positively impact your organization