Guide: Implementation of ISO 45001:2018 Occupational Health and Safety

Guide to Implementing the ISO 45001:2018 Standard

International Occupational Health and Safety (OH&S) Management System.

What is ISO 45001 and why is it important?

ISO 45001:2018 is an international standard that provides a framework for organizations to proactively improve their occupational health and safety performance, preventing injuries and ill-health in the workplace. This standard replaced the older OHSAS 18001.

Its key goal is not just mere compliance with legal norms, but building a safety culture where organizational leadership and the workers themselves take an active role in identifying and eliminating risks.

Benefits of implementing ISO 45001

Companies with a certified system record significant business benefits:

Cost reduction: Fewer injuries mean lower costs for sick leave, insurance premiums, and legal disputes.
Competitive advantage: Many public tenders and large international corporations require an ISO 45001 certificate from their suppliers and contractors.
Worker satisfaction: Workers feel safer, leading to higher productivity and lower staff turnover.
Legal compliance: The standard automatically forces the company to track and comply with all local OH&S laws.

High Level Structure (HLS)

ISO 45001 uses the same 10-chapter structure (HLS) as ISO 9001 (Quality) and ISO 14001 (Environment). This means it is very easy to integrate (so-called Integrated Management System - IMS) into existing ISO certificates the company already holds. If you already have ISO 9001, half the work regarding documentation (document control, internal audits, management review) is already done!

7 Key Steps to Certification

The implementation process usually takes between 6 and 12 months, depending on the company size:

1. Gap Analysis: Comparing the current OH&S state with what the standard requires.
2. Policy and Objectives: Management must sign the OH&S policy and set measurable goals (e.g., "0 accidents this year").
3. Worker Participation: Workers must be consulted about hazards (via safety representatives).
4. Risk and Opportunity Assessment: Identifying hazards and establishing operational controls (which are then implemented through work instructions).
5. Education and Communication: Employee training on new procedures.
6. Internal Audit: Internal review of the system.
7. Certification Audit: Visit by an independent certification body (e.g., TÜV, SGS, Bureau Veritas, DNV).

Mandatory Documentation According to the Standard

For a successful audit, you will need to present the following documents (documented information) to the auditor:

Scope of the OH&S management system.
Health and Safety Policy.
Criteria for evaluating risks.
Legal register (list of laws you must comply with).
Emergency preparedness and response plans (Evacuation plan).
Records of incidents and nonconformities (corrective actions).
Records of training and audits.

Frequently Asked Questions (FAQ) about ISO 45001

Can a small company implement ISO 45001?

Absolutely. The standard is scalable. For a small company, documentation can be very simple and reduced to a few procedures, as long as the spirit of the standard (risk prevention and worker involvement) is met.

What is the difference between OHSAS 18001 and ISO 45001?

OHSAS 18001 was a British standard applied globally. ISO 45001 is the first true international ISO standard for this domain. The main difference is the increased focus on "leadership" (top management must be directly involved, not just delegate responsibility to the safety engineer) and on "worker participation" (unions and representatives must be part of the decision-making process).

How long does the certificate last?

Like other ISO standards, the certificate is valid for 3 years. However, a smaller surveillance audit is conducted every year so the certification body can confirm the system is being maintained, while a full recertification audit is performed after 3 years.