AI System Impact Assessment: Where ISO Asks You to Consider Everyone Everywhere All the Time
Welcome back to the series, and to the post I have been quietly putting off since Clause 6. The AI […]
Improvement — Where You Acknowledge, In Writing, That Nothing Is Ever Quite Done
Welcome back to the part of the series I have been quietly looking forward to, in the same resigned way
Performance Evaluation — Or, How to Prove Your AI Management System Was Doing Anything
Clause 9 is where ISO/IEC 42001:2023 stops asking what you built and starts asking how you know it works. Monitoring, internal audit, and management review — three subclauses, all designed to surface the gap between ‘we have a policy’ and ‘we have evidence.’
Operation — Where Planning Ends and Something Resembling Execution Begins
Clause 8 is where the AI management system stops being a stack of documents and starts having to run. Art Meta walks you through operational planning and control, the recurring risk assessment, risk treatment, and the genuinely novel AI system impact assessment — the one subclause in ISO 42001 that asks you to think about the humans on the other end.
Artificial Intelligence, ISO 42001, Standards
Support — Resources, Competence, and the Paper Trail You Promised to Maintain
Clause 7 of ISO/IEC 42001:2023 governs the unglamorous machinery of an AI management system — resources, competence, awareness, communication, and documented information. Art Meta walks through what the standard actually asks for, and why this is the clause where most implementations quietly collapse.
Artificial Intelligence, ISO 42001
Planning — Objectives, Risks, and the Fond Hope That You’ve Thought This Through
Clause 6 of ISO/IEC 42001:2023 asks you to plan actions against risks and opportunities, then set measurable AI objectives and figure out how to achieve them. Art Meta walks you through what that actually means — and why AI risks are not quite like the ones you’ve been managing since ISO 27001.
Artificial Intelligence, ISO 42001
Leadership — Top Management Must Lead (Apparently This Needs Saying)
Clause 5 of ISO 42001 asks top management to demonstrate leadership and commitment to the AI management system. Art Meta walks through what that actually requires — policy, roles, and the fine tradition of recycled Annex SL language.
Artificial Intelligence, ISO 42001
Context of the Organization — Apparently, We’re a Tech Company Is Not Sufficient
Welcome back. You’ve made it to Clause 4, which means you have survived the Scope (Clause 1), the Normative References
Artificial Intelligence, ISO 42001
Terms and Definitions — Buy Three Standards, Get One Vocabulary
Welcome back to our meticulous, clause-by-clause walkthrough of ISO/IEC 42001:2023 — the international standard for AI management systems that you’ve
Artificial Intelligence, ISO 42001, Standards
Normative References — You Will Need to Buy More Documents
Ah, Clause 2. The normative references section. In virtually every ISO management system standard ever published, this is the page