Jump to the main content

ISO 45001

ISO 45001 – Occupational health and safety

The innovative standard ISO 45001:2018 describes the requirements on a modern, workplace occupational health and safety management system and replaces the former standard BS OHSAS 18001.

Your advantages

  • Provides and accordingly improves a safe workplace for employees and other persons working under the responsibility of the company
  • National and international cutting edge through the award of the ISO 45001 certificate by the certification body of TÜV AUSTRIA
  • International recognition of the labor protection management system
  • Ongoing improvements to the labor protection management system and revelation of rationalization potential using the PDCA model
  • Prompt identification of possible risks and a better calculation of liability risks, hence greater legal security
  • Improves the company’s performance through effective occupational health and safety as well as the motivation and qualification of all employees through their active involvement

Target group

From microenterprises through to major industrial enterprises, from service providers to producers – across all sectors and irrespective of the type of company, you too can be certified pursuant to ISO 45001.


A documented occupational safety management system that is integrated in and lived by the organization.

ISO 45001 - important changes compared to OHSAS 18001

Just like the OHSAS 18001 regulations, this new standard ISO 45001 is also based on the “Plan-Do-Check-Act model” (PDCA) and is characterized by its high level structure. This results in changes in content whose main features are identical to the revised standards ISO 9001 and ISO 14001, e.g. more attention is paid to the context of the organization.

  • Apart from extending the process orientation, the transition from OHSAS to ISO 45001 entails an adaptation to the requirements of modern management systems and new technologies.
  • What’s more, the new standard takes into account both external (e.g. clients, partners, suppliers) as well as internal topics (e.g. agreements on working hours and working conditions) related to occupational health and safety, emphasizes the basic responsibility of upper management and strengthens the awareness of executives.
  • What’s more, the ISO 45001 now takes into account everyone whose work falls under the responsibility of the company, for example sub-contractors and contract workers.
  • A further change is that not only are risks ascertained and evaluated, opportunities in occupational health and safety are now also identified and targeted.
  • There is also a greater focus on the aspect of a systematic root cause analysis of accidents and near-misses in ISO 45001, as well as on the fields of emergency preparedness and response incl. first aid.

Changeover made easy
The switch from BS OHSAS 18001 to ISO 45001 is the next logical step for companies who have already implemented an occupational health and safety management system according to the current standard and entails relatively little effort. The most important points for a successful switchover:

  • Certifications pursuant to ISO 45001 can now be carried out with immediate effect.
  • Initial certifications, re-certifications and the perpetuation of an existing certification by means of a surveillance audit are possible during the transitional period. However, certificates are only valid until the end of the transitional period (03-11-2021) and should therefore be converted to the new standard ISO 45001 by then.
  • The change of the certification pursuant to OHSAS 18001 to the new standard ISO 45001 can be carried out during any audit (re-certification or surveillance), whereby one has to reckon with a greater effort.

Certification procedure

A certification process usually takes between three and five weeks. We already take your individual needs and the urgency of the certification into account during its planning. We will determine the exact effort as well as the duration and costs together with you before the certification process. This is why every certification process begins with a briefing.

1. Briefing
We will explain the procedure to obtain your certificate in a non-binding and free meeting. Amongst those items that will be clarified in this meeting are:

  • Basis requirements for your certification
  • Goals and benefits of the certification
  • Comparison of the business data and definition of the scope of the certification
  • Discussion of your specific needs and wishes
  • Determination of the next steps that are needed for the certification
    You will then receive an individual offer that is tailored to your organization on the basis of this briefing.

2. Commissioning
If our offer meets with your approval, the certification body is commissioned. Once you have received confirmation of your order, the certification process begins with a joint agreement of the timetable with the responsible auditor(s).

3. Pre-audit (optional)
A pre-audit can be carried out on request. However, this is not an essential requirement for certification. Either specific areas and/or processes or the overall situation in your organization will be audited on the basis of a jointly defined framework. Any weak spots in the documentation and implementation of the system will be identified here. A pre-audit can provide you with a status report regarding the basic suitability for certification, a detailed expertise on individual processes or the conformity with individual requirements of the respective standard on request. The audit method hereby corresponds to that of the certification audit.

4. Level 1 certification audit
The level 1 audit serves to determine whether you are suitable for certification. Location-specific conditions are assessed and any necessary information with respect to the scope is collected. The level 1 audit primarily deals with the following main points:

  • Verification of the documentation for conformity and completeness compared to the requirements of the standard.
  • Status of the implementation of the management system within the company: Does the existing management and the level of implementation of the management system in the organization allow a certification in principle, or are any crucial details missing?
    Before the level 2 audit is performed, an audit plan for the actual certification audit will be drafted on the basis of knowledge gained of your organization and the management system and jointly agreed upon with you.

5. Level 2 certification audit
During the level 2 audit, the efficacy of the management system in place in your company will be verified. Random checks will hereby be made with respect to all of the requirements in departments and organizational units as well as along the process chain.
This audit is based on:

  • The audit plan
  • The respective certification standard and/or the individual standard requirements specified therein
  • Organization-specific documents
  • General and industry-specific principles (laws, additional, industry-specific, necessary standards...)
  • Following an analysis and assessment of the results, you will already be informed of the outcome of the audit and any deficiencies or deviations during the final review. Corrective measures will be specified in the event of deficiencies. Subsequently, a root cause analysis and a respective documented measure will once again be verified by the audit team.

6. TÜV AUSTRIA certificate
The actual certification will be issued by the certification body of TÜV AUSTRIA following a successful audit and reporting on the basis of the audit report. Provided the following certification requirements have been satisfied, there is no reason why the certificate should not be issued promptly:

  • Documentation and implementation of the management system
  • Certification agreement (confirmation of the certification offer, the certification regulations and the T&Cs )
  • Positive outcome of the audit and thus a corresponding recommendation by your audit team to the certification body

A certificate will be issued for a period of 3 years. In order to maintain the validity of the certificate over its entire term, an annual surveillance audit has to be performed with a positive outcome (12 months and 24 months after the certificate has been issued).

7. Surveillance audits
The annual surveillance audit verifies the efficacy and further development of the management system through random sampling. Surveillance audits are shorter than a normal audit and cover the deficiencies discovered in the last audit along with various key points of the requirements in the standard.

8. Re-certification audit
This has to be carried out before the certificate becomes invalid (usually after three years). In a re-certification audit (often also referred to as a repeat audit), all of the requirements are checked at random, the same as for a certification audit. The effort involved for this repeat certification audit is less than that for an initial certification (approx. 2/3 of the time needed for an initial certification audit).

Following a positive decision on the certification, a new certificate valid for a further three years will be issued that also has to be confirmed by an annual surveillance audit.

Your ISO 45001 certificate with the TÜV AUSTRIA logo

Your certificate is valid for three years and may be used for advertising purposes in accordance with the certification regulations.

Take a look at a sample certificate!

You are free to use the certification logo on your business stationery, website (in each case in connection with your organization), for example. Your planned use has to be approved/confirmed by the certification body for legal reasons.

  •  | Print
to top