BSI Homepage - UK
Contact Us
Back to menu Choose a country/region

No countries/regions found

Suggested region and language based on your location

    Your current region and language

    Submit
    Man and women looking at laptop
    • Case Study
      Digital Trust

    Umony achieves ISO/IEC 42001 certification for responsible AI

    “ISO/IEC 42001 was about trust and credibility - being able to say to banks: it’s safe to let this system review your data.” 

    Dean Elwood CEO, Umony
    Women on phone
    The People

    Umony records, archives and assesses communications for banks to meet regulatory obligations.

    With AI, Umony can automatically review 100% of recorded interactions to detect behaviors of interest to institutions and regulators. To serve global, risk-sensitive clients, Umony prioritized a formal governance system for AI.

    The Challenge

    Financial institutions face significant penalties for failures in recording & monitoring communications and the manual screening can generate high false-positive rates.

    Umony needed a credible framework to support development of an AI system that helped financial institutions & regulated industries move from ad-hoc monitoring to a comprehensive, AI-enabled assurance.

    It was key for them to be able to reassure their clients that they could manage any AI risks (for example: bias, transparency and data quality) and provide evidence to clients and regulators that the AI is governed responsibly. They were also keen to establish repeatable processes, roles, and controls that scale across products and markets and demonstrate assurance at enterprise level.

    The Solution

    BSI audited Umony’s Artificial Intelligence Management System (AIMS) and achieved certification to ISO/IEC 42001.

    The program included rigorous scoping with cross-functional teams to define AIMS objectives, scope, and interfaces, a specialist pre-assessment by AI-experienced auditors, identifying opportunities for improvements before formal audit, targeted training for operational controls and lifecycle governance, and a two-stage audit focused on risk assessment, impact assessment, controls, and evidence. The AIMS established clear policies, roles, controls, and KPIs to govern AI risk across the lifecycle.

    Umony can evidence responsible AI with an independently certified AIMS

    This strengthens client assurance, supporting alignment with evolving regulations.

    2 women looking at computer
    • Icon description

      The AIMS equips Umony with policies, competency requirements, lifecycle controls, and KPI baselines.

    • Icon description

      Enhanced credibility in enterprise sales and supply-chain assurance.

    • Icon description

      Readiness for evolving regulation and standards.

    • Icon description

      Actively supporting compliance programs & client expectations.

    “The specialist pre-assessment was illuminating. The insights encouraged us to mature our system and put us in a strong position for Stage 1 and 2.” 

    Rachel Churchman Global Head of Compliance, Risk and Governance, Umony
    Women looking at tablet
    Why BSI

    Umony selected BSI based on our specialist AI auditing capability

    BSI's global reputation and regional presence were also powerful factors

    The partnership delivered structured methodology, accessible communication, and rigorous assurance - aligned to international standards and market expectations.

    Contact Us

    Let's shape your organization's future together

    Reach out and see how we can help guide you on your path to sustainable operational success.

    Get in touch
    Get in touch
    Insights & Media

    Stay up to date on the latest developments and issues around AI

    View Insights & Media