ISO 37002:2021 pdf download – Whistleblowing management systems — Guidelines.
3.2 organization person or group of people that has its own functions with responsibilities, authorities and relationships to achieve its objectives (3.25) Note 1 to entry: The concept of organization includes, but is not limited to, sole-trader, company, corporation, firm, enterprise, authority, partnership, charity or institution, or part or combination thereof, whether incorporated or not, public or private. Note 2 to entry: If the organization is part of a larger entity, the term “organization ” refers only to the part of the larger entity that is within the scope of the whistleblowing ( 3.10) management system ( 3.1). Note 3 to entry: This constitutes one of the common terms and core definitions of the harmonized structure for ISO management system standards. 3.3 personnel organization’s (3.2) directors, officers, employees, temporary staff or workers, and volunteers [SOURCE: ISO 37001:2016, 3.25, modified — Notes 1 and 2 to entry have been deleted.] 3.4 interested party (preferred term) stakeholder (admitted term) person or organization (3.2) that can affect, be affected by, or perceive itself to be affected by a decision or activity Note 1 to entry: An interested party can be internal or external to the organization. Note 2 to entry: Interested parties can include, but are not limited to, those who make reports, any subjects of those reports, witnesses, personnel ( 3.3), worker representatives, suppliers, third parties, public, media, regulators and the organization as a whole. Note 3 to entry: This constitutes one of the common terms and core definitions of the harmonized structure for ISO management system standards. The original definition has been modified by adding Notes 1 and 2 to entry. 3.5 top management person or group of people who directs and controls an organization (3.2) at the highest level Note 1 to entry: Top management has the power to delegate authority and provide resources within the organization. Note 2 to entry: If the scope of the management system ( 3.1) covers only part of an organization, then top management refers to those who direct and control that part of the organization. Note 3 to entry: This constitutes one of the common terms and core definitions of the harmonized structure for ISO management system standards. 3.6 governing body person or group of people who have ultimate accountability (3.30) for the whole organization (3.2) Note 1 to entry: Every organizational entity has one governing body, whether or not it is explicitly established. Note 2 to entry: A governing body can include, but is not limited to, a board of directors, committees of the board, a supervisory board or trustees. [SOURCE: ISO/IEC 38500:2015, 2.9, modified — The words “have ultimate accountability for ” have replaced “accountable for the performance and conformance of ” and Notes 1 and 2 to entry have been added.]