ISO 37301 Foundation Course introduces the principles, concepts and requirements of a Compliance Management System, according to ISO 37301, clarifying its role within organisational governance. The training establishes a solid basis for understanding how to structure, maintain and improve an effective compliance system.
Quick Access: Introduction· Why this course exists· What this course enables· Frameworks and standards· Value· Objectives· Target audience· Prerequisites· Programme· Exam & Certification· Other information· Benefits· Logistics· FAQs· Registration
Upcoming dates
Confirmed dates.
Synchronous, live training. Interaction with the trainer and the group.
Live Online • next edition
Live Online • base price
Language: available in Portuguese or English
Training: practical and case-study based
Exam: 1h
PROFESSIONAL LEVEL — practical application of methods in a professional context.
Why this course exists
To create a practical foundation and common language in ISO 37301, CMS and implementation/operationalisation through a case study.
Many organisations need to strengthen compliance management to ensure alignment with laws, regulations and ethical principles, but begin initiatives without a consistent basis of concepts, terminology and operational understanding of the structure and requirements of ISO 37301.
This course establishes a fundamental and applicable level of knowledge, supported by theoretical and practical sessions and by a case study, enabling professionals from different areas to understand, apply and support the implementation and operation of a CMS, while also framing essential audit principles based on ISO 19011 and integration with risk management (ISO 31000) and other related standards, including the ISO 37000 family.
What this course enables you to do
Understand
Master fundamental compliance management concepts and interpret ISO 37301 in the context of a Compliance Management System (CMS).
Apply
Apply concepts and requirements in a real scenario through a case study, with high-level guidance for implementing and operating a CMS.
Correlate
Relate ISO 37301 to standards in the ISO 37000 family (ISO 37000/37001/37002/37004/37005), understand differences from ISO 19600 and integrate with ISO 31000 (risk).
Audit (fundamentals)
Understand concepts, principles and best practices for CMS auditing, based on ISO 19011, to support audits and continuous improvement.
Frameworks, standards and best practices addressed throughout the course
CMS — fundamental concepts
Clause-by-clause overview
High-level implementation guidance
ISO 19600 — differences vs ISO 37301
ISO 37000 — governance
ISO 37004 — maturity
ISO 37005 — indicators
ISO 37002 — whistleblowing
ISO 37001 — anti-bribery relationship
ISO 31000 — compliance risk
ISO 19011 — audit principles
Related legislation and regulations
Correlated best practices
Value for the organisation
- Creates a common, applicable basis for teams involved in compliance management, risk, internal control and governance.
- Accelerates internal alignment on ISO 37301 requirements, reducing noise and divergent interpretations in CMS implementation and operation.
- Supports preparation for ISO 37301 certification and strengthens understanding of related standards, including the ISO 37000 family and integration with risk management (ISO 31000).
- Introduces audit fundamentals based on ISO 19011 to improve coordination between internal teams and internal/external audits, and continuous improvement of the CMS.
Introduction
The Compliance Management ISO 37301 Foundation course is based on the international standard ISO 37301:2021 and follows a practical approach supported by a case study, in which participants are invited to apply compliance management concepts in a real scenario.
The course prepares participants to support the implementation and operation of a Compliance Management System (CMS), and provides fundamental knowledge on audit concepts, principles and best practices based on ISO 19011.
The course addresses the fundamental concepts related to compliance management, a clause-by-clause overview of ISO 37301 with high-level guidance for implementation and discussions based on practical examples to apply the standard’s requirements. It also presents an overview of the previous standard ISO 19600:2014 (guidelines) and the main differences from ISO 37301:2021.
As participants progress through the course topics, supporting and related standards from the ISO 37000 family are presented, including governance guidance (ISO 37000), maturity model (ISO 37004), indicators of effective governance (ISO 37005), whistleblowing guidelines (ISO 37002) and the relationship with the complementary anti-bribery standard (ISO 37001). The course also provides an overview of ISO 31000 and how it can be used to assess compliance risks.
This course prepares participants for the Certified Compliance Management 37301 Foundation personal certification.
This Training Plan and all associated documents are protected by Copyright and registered as a literary work with IGAC.
General Objectives
At the end of this course, participants will be able to:
- Understand the fundamental concepts of compliance management and the main requirements of ISO 37301.
- Know and understand the correlation between standards in the ISO 37301/ISO 37000 family, including ISO 37001, ISO 37002, ISO 37004, ISO 37005, other ISO standards, and other related best practices, legislation and regulations.
- Understand the relationship between ISO 37301 and ISO 31000, and integration with other Management System Standards (MSS).
- Understand the main differences between ISO 19600:2014 and ISO 37301:2021.
- Support an organisation in implementing and operating an ISO 37301-based CMS, either as part of a CMS implementation team and/or during an implementation project.
- Understand the fundamental audit concepts and principles based on ISO 19011.
- Understand the various sources of requirements related to compliance management, in order to discuss relevant matters with peers regarding the maintenance and improvement of the compliance function.
- Support the organisation in achieving and maintaining ISO 37301 certification.
- Possess the knowledge required to successfully take the Certified Compliance Management 37301 Foundation certification exam and obtain a personal certification.
Target Audience
- Managers, consultants, auditors and risk professionals involved in activities subject to compliance requirements.
- Executives and senior managers responsible for ensuring legal, regulatory and ethical compliance.
- Governance bodies, ethics committees and owners of the compliance function.
- Teams supporting the design, implementation, operation and continuous improvement of an ISO 37301-based CMS.
- Third parties, including partners, suppliers and contractors, who must comply with the organisation’s policies and procedures.
- Professionals who manage other management systems or regulatory frameworks and wish to integrate compliance to reduce non-compliance.
- CSR/ESG and organisational ethics owners.
- Anyone who wishes to learn the fundamentals of ISO 37301.
Prerequisites
There are no mandatory formal prerequisites. However, other specific requirements may apply, where relevant, depending on the quotation or proposal presented. Please consult the applicable proposal.
Programme
Introduction to the course
- Training and certification framework
- Objectives, structure and pedagogical approach
- Case study and working dynamics
Introduction to compliance management, ISO 37301 and related best practices
- Compliance management standards, common requirements for legal and regulatory compliance, and ethical principles
- Relationship between ISO 37301 and ISO 31000, and integration with other Management System Standards (MSS)
- Main differences between ISO 19600:2014 and ISO 37301:2021
- Progressing towards ISO 37301 certification
- Compliance management fundamentals
- Presentation and overview of CMS requirements — Part 1: Clauses 4 to 7
CMS and audit concepts and principles
- Presentation and overview of CMS requirements — Part 2: Clauses 8 to 10
- Overview of related standards from the ISO 37000 family (ISO 37000/37004/37005/37002 and relationship with ISO 37001)
- Other best practices, legislation and regulations related to governance and compliance management
- Introduction to audit concepts and principles based on ISO 19011
Exam(s) and Certification
Exam “Certified Compliance Management 37301 Foundation”
The exam covers the following competence domains:
- Domain 1: Compliance management fundamentals
- Domain 2: ISO 37301 Compliance Management System requirements (Clauses 4 to 10) and related standards
- Domain 3: Fundamental audit concepts and principles based on ISO 19011
Language(s): Portuguese and English.
Duration: 1 hour.
Format: Multiple choice.
Number of questions: 40 questions.
Pass mark: 260/400 points.
Results: Pass or Fail.
Issuing entity: Behaviour (legal entity), through its certification service Behaviour Certification Services.
Retake: 1 free retake within a maximum period of 2 months after the result of the initial exam.
Certification
After successfully completing the exam and accepting or signing the applicable agreement and Code of Ethics, the candidate achieves the credential Certified Compliance Management 37301 Foundation, issued by Behaviour (legal entity), through its certification service Behaviour Certification Services.
A Certificate and a Digital Certification Badge will be issued to participants who successfully complete the certification exam and satisfy all requirements of the certification for which they are applying.
The personal certification programme Certified Compliance Management 37301 Foundation is developed and maintained in accordance with the international standard ISO/IEC 17024.
Certification programmes are valid only for individuals, not companies, and the award and maintenance of certification depend on the exam result, professional experience and compliance with the applicable agreement and Code of Ethics.
If the professional does not comply with the agreement or the Code of Ethics, the certification is not granted or is revoked.
Other Information
General Information
- Training available in Portuguese or English.
- Online training materials available in Portuguese or English, with online access, in accordance with the awarded conditions.
- Practical methodology.
- Behaviour digital Training Attendance Certificate with 16 CPD/CPE credits.
- Online Certification Exam, in Portuguese or English. The exam may be taken up to 2 months from the course start date.
- If the candidate does not pass the exam, they are entitled to one free retake within a maximum period of 2 months from the release date of the initial exam result.
- Digital Certification Diploma and Digital Certification Badge after passing the exam and completing the application process. This process has no associated cost.
Trainer(s)
The trainers are consultants and auditors with experience in implementation, audit and training in compliance management, ISO 37301, related standards from the ISO 37000 family and integration with risk management (ISO 31000), including applicable legal/regulatory practices and requirements.
Benefits
View benefits
- ISO 37301 defines requirements for an auditable and internationally recognised Compliance Management System (CMS).
- Helps strengthen organisational integrity, trust and consistency in managing compliance obligations, including legal, regulatory and ethical obligations.
- The course is based on the BEHAVIOUR pedagogical model, with a personal certification programme in accordance with ISO/IEC 17024.
- Addresses the knowledge required to support implementation and operation of a CMS and provides an overview of related standards (ISO 37000 family) and integration with ISO 31000 (risk).
- The exam is supervised by an official BEHAVIOUR administrator.
- In case of failure, there is 1 free retake within a maximum period of 2 months after the initial exam result.
Logistics
Useful information
- Live Online (synchronous time): 09h30–13h00 and 14h00–17h30 (Lisbon time), with short breaks
- Classroom (synchronous time): 09h30–13h00 and 14h00–17h30 (Lisbon time), with short breaks
- 14 hours of synchronous training, distributed across 2 consecutive days
- Estimated 2 hours of guided autonomous work, intended for content consolidation and exam preparation, carried out flexibly outside the synchronous sessions
- Requirements: computer with stable internet, updated browser, PDF reader and audio/video
Hotels in Lisbon
Find out where you can stay in Lisbon, near Behaviour, for classroom training.
Frequently Asked Questions
Objective answers to the most common questions about the ISO 37301 Foundation course.
Is this course suitable for people already working in compliance?
Yes. The ISO 37301 Foundation course helps structure and formalise existing compliance practices, aligning them with a recognised management system, even for experienced professionals.
For general questions about registration, delivery modes, exams, certification and recertification, please consult the BEHAVIOUR® FAQs.
Registration
Complete the form to request your registration for the preferred edition. Check the upcoming dates.
Request more information
If you would like help to frame the course within your professional or organisational context, contact us and we will indicate the most suitable path.
Companies: request a proposal
For team registrations, we provide volume conditions and a proposal tailored to the organisational need.
This course may be attended by individual professionals. It may also be integrated into foundation pathways for teams that need to understand the principles, requirements, practical application and organisational context of a Compliance Management System.