This International Standard specifies requirements and provides guidance for establishing, implementing, maintaining,
reviewing, and improving an effective and responsive HER Compliance Management
System in an epidemic context for all organizations. It helps them to comply with Guidelines and Regulatory
Frameworks and voluntary commitments applicable to their activities, as well as
prevent, detect, and respond to non-compliance events.
Given the non-ordinary context triggered by the epidemic, in order to "not leave behind ordinary people and simplest organizations" and "help them to remain safely in business and give assurance to the public that they are doing the right things, being compliant", a simplified version of this Standard has been created as well, for the benefit of all Micro, Small and Medium Enterprises.
Neither of the two Standards specifically address how to develop a specific Risk Management System (formal or informal): they deal with how to formalize, manage and document HER Compliance with Guidelines and Regulatory Frameworks.
The CMS can be stand-alone or integrated into an overall management system, and the Standards can be used in conjunction with other management system standards (e.g., ISO 9001, ISO 14001, ISO/IEC 27001 and ISO 19600) and management standards (e.g., ISO 26000 and ISO 31000).