ISO 19650-3:2020(E organization and digitization of information about buildings and civil engineering works, including buildinginformation modelling (BIM) 一Information managementusing building information modelling—Part 3:Operational phase of the assets
1 Scope
This document specifies requirements for information management, in the form of a managementprocess, within the context of the operational phase of assets and the exchanges of information withinit, using building information modeiling.
This document can be applied to all types of assets and by organizations of all types and sizes involvedin the operational phase of assets.
The requirements in this document can be achieved through direct actions carried out by theorganization in question or can be delegated to another party.
2Normative references
The following documents are referred to in the text in such a way that some or all of their contentconstitutes requirements of this document. For dated references, only the edition cited applies.Forundated references, the latest edition of the referenced document (including any amendments) applies.ISO 12006-2,Building construction —Organization of information about construction works — Part 2:Framework for classification
ISO 19650-1:2018,Organization and digitization of information about buildings and civil engineeringworks，including building information modelling (BIM) —Information management using buildinginformation modelling —Part 1: Concepts and principles
ISO 19650-2,Organization and digitization of information about buildings and civil engineering works,including building information modelling (BIM) —lnformation management using building informationmodelling —Part 2: Delivery phase of the assets
ISO 19650-5,Organization and digitization of information about buildings and civil engineering works,including building information modelling (BlM)—lInformation management using building informationmodelling —Part 5:Security-minded approach to information management

ISO 19650-5:2020(E) Organization and digitization of information about buildings and civil engineering works, including building information modelling (BIM)二 Information management
using building information modelling —Part 5:Security-minded approach to information management
1 Scope
This document specifies the principles and requirements for security-minded information managementat a stage of maturity described as "building information modelling(BIMJ according to the lS0 19650series", and as defined in ISO 19650-1,as well as the security-minded management of sensitiveinformation that is obtained, created, processed and stored as part of, or in relation to, any otherinitiative, project, asset, product or service.
lt addresses the steps required to create and cultivate an appropriate and proportionate securitymindset and culture across organizations with access to sensitive information,including the need tomonitor and audit compliance.
The approach outlined is applicable throughout the lifecycle of an initiative, project, asset, product orservice, whether planned or existing, where sensitive information is obtained, created, processed and/or stored.
This document is intended for use by any organization involved in the use of information managementand technologies in the creation，design，construction，manufacture,operation，management,modification, improvement, demolition and/or recycling of assets or products, as well as the provisionof services, within the built environment. lt will also be of interest and relevance to those organizationswishing to protect their commercial information, personal information and intellectual property.

ISo 20121:2012(E) Event sustainability management systems- Requirements with guidance for use
Scope
This International Standard specifies requirements for an event sustainability management system for anytype of event or event-related activity, and provides guidance on conforming to those requirements.
This lInternational Standard is applicable to any organization that wishes to:
-establish, implement, maintain and improve an event sustainability management system;
ensure that it is in conformity with its stated sustainable development policy;
demonstrate voluntary conformlity with this International Standard by
—first party (self-determination and self-declaration),
second party (confirmation of conformance by parties having an interest in the organization, such asclients, or by other persons on their behalf), or
an independent third party (e.g.a certification body).
This lnternational Standard has been designed to address the management of improved sustainabilitythroughout the entire event management cycle.
Additional guidance and information is provided in the annexes to support its implementation.
2Normative references
There are no normative references.
3Terms and definitions
For the purposes of this document, the following terms and definitions apply.

ISO 20400:2017(E) Sustainable procurement— Guidance
1 Scope
This document provides guidance to organizations, independent of their activity or size, on integratingsustainability within procurement, as described in lSo 26000. lt is intended for stakeholders involvedin, or impacted by, procurement decisions and processes.
2 Normative references
There are no normative references in this document.
3Terms and definitions
For the purposes of this document, the following terms and definitions apply.
IlSO and IlEC maintain terminological databases for use in standardization at the following addresses:-ISO Online browsing platform: available at http://www.iso.org/obp
-IEC Electropedia: available at http://www.electropedia.org/
3.1
circular economy
economy that is restorative and regenerative by design, and which aims to keep products, componentsand materials at their highest utility and value at all times, distinguishing between technical andbiological cycles [SOURCE:Adapted from Ellen MacArthur Foundationi24]
3.2
decent work
work performed in conditions of freedom, equity, security and human dignity[SOURCE: Adapted from lSO 26000:2010,6.4.1.1,Box 8]
3.3
due diligence
process through which organizations (3.16) proactively identify, assess, prevent, mitigate and accountfor how they address their actual and potential adverse impacts as an integral part of decision-makingand risk management (3.22)

ISO 21500:2021(E) Project, programme and portfolio management - Contextand concepts
1 Scope
This document specifies the organizational context and underlying concepts for undertaking project,programme and portfolio management. lt also provides guidance for organizations to adopt or improveproject, programme and portfolio management using the standards prepared by ISo/TC 258.
This document is applicable to most organizations, including public and private organizations and it isnot dependent on the size and type of the organization. lt is also applicable to any project, programmeand portfolio, regardless of complexity, size or duration.
Further guidance on project, programme and portfolio management, and the governance thereof, isgiven in iso 21502,ISO 21503,IS0 21504 and lsO 21505.
2Normative references
There are no normative references in this document.
3Terms and definitions
For the purposes of this document, the following terms and definitions apply.
ISO and IEC maintain terminological databases for use in standardization at the following addresses:-ISO online browsing platform: available at https:.//www.iso.org/obp;
—IEC Electropedia: available at http://www.electropedia.orgL.
3.1
benefit
created advantage, walue or other positive effect[SOURCE:ISO/TR 21506:2018,3.6]
3.2
business case
documented justification to support decision making about the commitment to a project (3.15),programme (3.12) or porrfolio [3.9)
[SOURCE:ISO/TR 21506:2018,3.8]

Iso 22000:2005(E) Food safety management systems - Requirements for any organization in the food chain
1Scope
This International Standard specifies requirements for a food safety management system where anorganization in the food chain needs to demonstrate its ability to control food safety hazards in order to ensurethat food is safe at the time of human consumption.
lt is applicable to all organizations, regardless of size, which are involved in any aspect of the food chain andwant to implement systems that consistently provide sate products. The means of meeting any requirements ofthis International Standard can be accomplished through the use of internal and/or external resources.
This International Standard specifies requirements to enable an organization
a) to plan, implement, operate,maintain and update a food safety management system aimed at providingproducts that, according to their intended use, are safe for the consumer,
b) to demonstrate compliance with applicable statutory and regulatory food safety requirements,
c) to evaluate and assess customer requirements and demonstrate conformity with those mutually agreedcustomer requirements that relate to food safety, in order to enhance customer satisfaction,
d) to effectively communicate food safety issues to their suppliers, customers and relevant interested parties in
the food chain,
e) to ensure that the organization conforms to its stated food safety policy,
f to demonstrate such conformity to relevant interested parties,and
g)to seek certification or registration of its food safety management system by an external organization, or
make a self-assessment or self-declaration of conformity to this International Standard.
All requirements of this International Standard are generic and are intended to be applicable to all organizationsin the food chain regardless of size and complexity.This includes organizations directly or indirectly irvolved inone or more steps of the food chain. Organizations that are directly involved include, but are not limited to, feedproducers, harvesters, farmers,producers of ingredients, food manufacturers, retailers, food services, cateringservices, organizations providing cleaning and sanitation services,transportation,storage and distributionservices.Other organizations that are indirectly involved include, but are not limited to, suppliers of equipment,cleaning and sanitizing agents,packaging material, and other food contact materials.

ISo 22301:2019(E) Security and resilience -Business continuity management systems -Requirements
1 Scope
This document specifies requirements to implement, maintain and improve a management system toprotect against,reduce the likelihood of the occurrence of, prepare for, respond to and recover fromdisruptions when they arise.
The requirements specified in this document are generic and intended to be applicable to allorganizations,or parts thereof, regardless of type, size and nature of the organization.The extent ofapplication of these requirements depends on the organization's operating environment and complexity.This document is applicable to all types and sizes of organizations that:
a)implement, maintain and improve a BCMS;
b)seek to ensure conformity with stated business continuity policy;
c)need to be able to continue to deliver products and services at an acceptable predefined capacity
during a disruption;
dseek to enhance their resilience through the effective application of the BCMS.
This document can be used to assess an organization's ability to meet its own business continuity needsand obligations.
2Normative references
The following documents are referred to in the text in such a way that some or all of their contentconstitutes requirements of this document, For dated references, only the edition cited applies.Forundated references, the latest edition of the referenced document (including any amendments) applies.ISO 22300, Security and resilience —Vocabulary
3Terms and definitions
For the purposes of this document, the terms and definitions given in ISo 22300 and the following apply.ISo and IEC maintain terminological databases for use in standardization at the following addresses:

ISO 22313:2020(E) Security and resilience — Business continuity management systems - Guidance on the use of ISO 22301
1Scope
This document gives guidance and recommendations for applying the requirements of the businesscontinuity management system (BCMS) given in IS0 22301.The guidance and recommendations arebased ongood international practice.
This document is applicable to organizations that:a)implement, maintain and improve a BCMS;
b)seek to ensure conformity with stated business continuity policy;
)need to be able to continue to deliver products and services at an acceptable predefined capacity
during a disruption;
d)seek to enhance their resilience through the effective application of the BCMS.
The guidance and recommendations are applicable to all sizes and types of organizations,includinglarge,medium and small organizations operating in industrial, commercial, public and not-for-profitsectors. The approach adopted depends on the organization's operating environment and complexity.
2Normative references
The following documents are referred to in the text in such a way that some or all of their contentconstitutes requirements of this document. For dated references, only the edition cited applies.Forundated references, the latest edition of the referenced document (including any amendments) applies.ISo 22300, Security and resilience — Vocabulary
ISo 22301,Security and resilience —Business continuity management systems —Requirements

ISO 26000:2010(E) Guidance on social responsibility
1Scope
This International Standard provides guidance to all types of organizations, regardless of their size or location,on:
a)concepts, terms and definitions related to social responsibility;
b)the background, trends and characteristics of social responsibility;
c)principles and practices relating to social responsibility;
d)the core subjects and issues of social responsibility;
e) integrating, implementing and promoting socially responsible behaviour throughout the organization and,
through its policies and practices, within its sphere of influence;
f)identifying and engaging with stakeholders; and
g)communicating commitments, performance and other information related to social responsibility.
This International Standard is intended to assist organizations in contributing to sustainable development. lt isintended to encourage them to go beyond legal compliance，recognizing that compliance with law is afundamental duty of any organization and an essential part of their social responsibility. lt is intended topromote common understanding in the field of social responsibility, and to complement other instruments andinitiatives for social responsibility, not to replace them.
ln applying this International Standard, it is advisable that an organization take into consideration societal,environmental，legal，cultural，political and organizational diversity，as well as differences in economicconditions, while being consistent with international norms of behaviour.
This International Standard is not a management system standard.It is not intended or appropriate forcertification purposes or regulatory or contractual use.Any offer to certify，or claims to be certified, toISO 26o00 would be a misrepresentation of the intent and purpose and a misuse of this International Standard.As this International Standard does not contain requirements，any such certification would not be ademonstration of conformity with this International Standard.

ISO 28001:2007(E) Security management systems for the supply chain - Best practices for implementing supply chain security, assessmentsand plans —Requirements and guidance
1 Scope
This International Standard provides requirements and guidance for organizations in international supplychains to
devellop and implement supply chain security processes;
establish and document a minimum level of security within a supply chain(s) or segment of a supplychain;
assist in meeting the applicable authorized economic operator (AEO) criteria set forth in the WorldCustoms Organization Framework of Standards and conforming national supply chain securityprogrammes.
NOTE Only a participating National Customs Agency can designate organizations as AEOs in accordance with itssupply chain security programme and its attendant certification and validation requirements.
In addition，this International Standard establishes certain documentation requirements that would permitverification.
users of this lnternational Standard will
-define the portion of an international supply chain within which they have established security (see 4.1);
conduct security assessments on that portion of the supply chain and develop adequatecountermeasures;
develop and implement a supply chain security plan;
—train security personnel in their security related duties.
2Normative references

ISO 30414:2018(E) Human resource management - Guidelines for internaland external human capital reporting
1 scope
This document provides guidelines for internal and external human capital reporting (HCR). Theobjective is to consider and to make transparent the human capital contribution to the organizationin order to support sustainability of the workforce. This document is applicable to all organizations,regardless of the type, size,nature or complexity of the business,whether in the public, private orvoluntary sector, or a not-for-profit organization.
This document provides guidelines on the following core HCR areas:-compliance and ethics;

• costs;
  — diversity;- leadership;
  -organizational culture;
  organizational health, safety and well-being;productivity;
  -recruitment, mobility and turnover;
  skills and capabilities;
  succession planning;- workforce availability.
  NOTE These guidelines and associated metrics can result in better organizational performance. However,some organizations do not have the objective or the capacity to use the entire set of metrics.Recommendationsfor SME Luse are provided in Table 2 and Annex A.
  2Normative references

ISO 37001:2016(E) Anti-bribery management systems - Requirements withguidance for use
1 Scope
This document specifies requirements and provides guidance for establishing，implementing,maintaining, reviewing and improving an anti-bribery management system.The system can be stand-alone or can be integrated into an overall management system.This document addresses the followingin relation to the organization's activities:
一 bribery in the public, private and not-for-profit sectors;- bribery by the organization;
bribery by the organization's personnel acting on the organization's behalf or for its benefit;
bribery by the organization's business associates acting on the organization's behalf or for itsbenefit;
-bribery of the organization;

• bribery of the organization's personnel in relation to the organization's activities;
  ― bribery of the organization's business associates in relation to the organization's activities;- direct and indirect bribery (e.g. a bribe offered or accepted through or by a third party).
  This document is applicable only to bribery. It sets out requirements and provides guidance for amanagement system designed to help an organization to prevent, detect and respond to bribery andcomply with anti-bribery laws and voluntary commitments applicable to its activities.
  This document does not specifically address fraud, cartels and other anti-trust/competition offences,money-laundering or other activities related to corrupt practices, although an organization can chooseto extend the scope of the management system to include such activities.
  The requirements of this document are generic and are intended to be applicable to all organizations(or parts of an organization), regardless of type, size and nature of activity, and whether in the public,private or not-for-profit sectors.The extent of application of these requirements depends on the factorsspecified in 4.1,4.2 and 4.5.
  NOTE 1 See Clause A.2 for guidance.
  NOTE2 The measures necessary to prevent, detect and mitigate the risk of bribery by the organization can bedifferent from the measures used to prevent, detect and respond to bribery of the organization (or its personnelor business associates acting on the organization's behalf). See A.8.4 for guidance.

ISO/FDIS 37301:2021(E) Compliance management systems - Requirements withguidance for use
1 Scope
This document specifies requirements and provides guidelines for establishing,developing.implementing, evaluating,maintaining and improving an effective compliance management systemwithin an organization.
This document is applicable to all types of organizations regardless of the type, size and nature of theactivity, as well as whether the organization is from the public, private or non-profit sector.
All requirements specified in this document that refer to a governing body apply to top management incases where an organization does not have a governing body as a separate function.
2 Normative references
There are no normative references in this document.
3Terms and definitions
For the purposes of this document,the following terms and definitions apply.
ISO and IEC maintain terminological databases for use in standardization at the following addresses:-lSo Online browsing platform: available at https://www.iso.org/obp
—IEC Electropedia: available at http://www.electropedia.org/
3.1
organization
person or group of people that has its own functions with responsibilities, authorities and relationshipsto achieve its objectives (3.6)
Note 1 to entry:The concept of organization includes, but is not limited to, sole-trader, company, corporation,firm,enterprise, authority, partnership, charity or institution, or part or combination thereof, whether incorporatedor not, public or private.
Note 2 to entry: If the organization is part of a larger entity, the term "organization"refers only to the part of thelarger entity that is within the scope of the compliance management system.
3.2

ISO 45001:2018 occupational health and safety management systems —Requirements with guidance for use
1 Scope
This document specifies requirements for an occupational health and safety(OH&S) managementsystem, and gives guidance for its use, to enable organizations to provide safe and healthy workplacesby preventing work-related injury and ill health,as well as by proactively improving its OH&Sperformance.
This document is applicable to any organization that wishes to establish, implement and maintain anOH&S management system to improve occupational health and safety, eliminate hazards and minimizeOH&S risks (including system deficiencies), take advantage of OH&S opportunities, and address OH&Smanagement system nonconformities associated with its activities.
This document helps an organization to achieve the intended outcomes of its OH&S managementsystem.Consistent with the organization'sOH&S policy, the intended outcomes of an OH&S managementsystem include:
a) continual improvement of OH&S performance;
b)fulfilment of legal requirements and other requirements;achievement of OH&S objectives.
This document is applicable to any organization regardless of its size,type and activities. It isapplicable to the OH&S risks under the organization's control, taking into account factors such as thecontext in which the organization operates and the needs and expectations of its workers and otherinterested parties.
This document does not state specific criteria for OH&S performance, nor is it prescriptive about thedesign of an OH&S management system.
This document enables an organization, through its OH&S management system, to integrate otheraspects of health and safety, such as worker wellness/wellbeing.

ISo 50001:2018([E) Energy management systems - Requirements with guidance for use
1Scope
This document specifies requirements for establishing, implementing, maintaining and improving anenergy management system (EnMS). The intended outcome is to enable an organization to follow asystematic approach in achieving continual improvement of energy performance and the EnMS.
This document:
a) is applicable to any organization regardless of its type, size, complexity, geographical location,
organizational culture or the products and services it provides;
b)is applicable to activities affecting energy performance that are managed and controlled by the
organization;
c)is applicable irrespective of the quantity,use, or types of energy consumed;
d) requires demonstration of continual energy performance improvement, but does not define levels of energy performance improvement to be achieved;
e) can be used independently, or be aligned or integrated with other management systems.
Annex A provides guidance for the use of this document.Annex B provides a comparison of this editionwith the previous edition.
2Normative references
There are no normative references in this document.
3Terms and definitions
For the purposes of this document, the following terms and definitions apply.
ISO and IEC maintain terminological databases for use in standardization at the following addresses:—ISO online browsing platform: available at https:.//www.iso.org/obp
—IEC Electropedia: available at https://www.electropedia.org/

ISo 56002:2019(E) Innovation management- Innovation management system -Guidance
1 Scope
1.1This document provides guidance for the establishment，implementation，maintenance，andcontinual improvement of an innovation management system for use in all established organizations. Itis applicable to:
a)organizations seeking sustained success by developing and demonstrating their ability to
effectively manage innovation activities to achieve the intended outcomes;
b) users, customers, and other interested parties, seeking confidence in the innovation capabilities of
an organization;
c)organizations and interested parties seeking to improve communication through a common
understanding of what constitutes an innovation management system;
d) providers of training in, assessment of, or consultancy for, innovation management and innovation
management systems;
e)policy makers, aiming for higher effectiveness of support programs targeting the innovationcapabilities and competitiveness of organizations and the development of society.
1.2 All the guidance within this document is generic and intended to be applicable to:
a) all types of organizations,regardless of type，sector，or size.The focus is on established
organizations, with the understanding that both temporary organizations and start-ups can alsobenefit by applying these guidelines in all or in part;
b) all types of innovations,e.g.product,service, process, model, and method,ranging from incremental to radical;
c)all types of approaches, e.g. internal and open innovation, user-, market , technology-, and design-driven innovation activities.
lt does not describe detailed activities within the organization, but rather provides guidance at a generallevel. It does not prescribe any requirements or specific tools or methods for innovation activities.

ISO 9000:2015(E) Quality management systems— Fundamentals and vocabulary
1 Scope
This International Standard describes the fundamental concepts and principles of quality managementwhich are universally applicable to the following:

• organizationsseeking sustained successthrough the implementation of a quality managementsystem;customers seeking confidence in an organization's ability to consistently provide products andservices conforming to their requirements;
  organizations seeking confidence in their supply chain that product and service requirements willbe met;
  organizations and interested parties seeking to improve communication through a commonunderstanding of the vocabulary used in quality management;
  -organizations performing conformity assessments against the requirements of iSo 9001;-providers of training, assessment or advice in quality management;
  -developers of related standards.
  This International Standard specifies the terms and definitions that apply to all quality managementand quality management system standards developed by ISO/TC 176.
  2Fundamental concepts and quality management principles
  2.1 General

ISO 9004:2009(E) Managing for the sustained success of an organization — A quality management approach
1 Scope
This International Standard provides guidance to organizations to support the achievement of sustainedsuccess by a quality management approach. lt is applicable to any organization, regardless of size, type andactivity.
This International Standard is not intended for certification, regulatory or contractual use.
2 Normative references
The following referenced documents relate to the application of this document.For dated references, only theedition cited applies. For undated references,the latest edition of the referenced document (including anyamendments) applies.
ISO 9o0o,Quality management systems — Fundamentals and vocabulary
3 Terms and definitions
For the purposes of this document, the terms and definitions given in ISO 9000 and the following apply.
3.1
sustained success
(organization) result of the ability of an organization to achieve and maintain its objectives in the long term
3.2
organization's environment
combination of internal and external factors and conditions that can affect the achievement of anorganization's objectives and its behaviour towards its interested parties

ISO/IEC 17067:2013(E) Conformity assessment — Fundamentals of product certification and guidelines for product certification schemes
1 scope
This International Standard describes the fundamentals of product certification and provides guidelinesfor understanding,developing, operating or maintaining certification schemes for products, processesand services.
lt is intended for use by all with an interest in product certification, and especially by certificationscheme owners.
NOTE1 ln this International Standard the term "product" can also be read as "process" or "service", except inthose instances where separate provisions are stated for "processes" or "services". Definitions of product, processand service are given in ISO/IEC 17065.
NOTE2The certification of products, processes and services is a third-party conformity assessment activity(see ISO/IEC17000) carried out by product certification bodies.The requirements for product certification bodiesare specified in 1sO/IEC 17065.
2Normative references
The following referenced documents are indispensable for the application of this document. For datedreferences, only the edition cited applies. For undated references, the latest edition of the referenceddocument ([including any amendments) applies.
ISO/IEC 17000:2004, Conformity assessment — Vocabulary and general principles
ISO/IEC 17065:2012,Conformity assessment —Requirements for bodies certifying products, processes andservices
3 Terms and definitions
For the purposes of this document, the terms and definitions given in ISO/IEC 17000,ISO/IEC 17065 andthe following apply.

ISO/IEC 20000-10:2018(E) Information technology - Service management—Part 10:Concepts and vocabulary
1 Scope
This document describes the core concepts of ISO/IEC 20000 (all parts), identifying how the differentparts support ISO/IEC 20000-1:2018 as well as the relationships between ISo/IEC 20000-1 and otherinternational Standards and 'Technical Reports. This document also includes the terminology used inall parts of lSO/IEC 20000, so that organizations and individuals can interpret the concepts correctly.This document can be used by:
a) organizations seeking to understand the terms and definitions to support the use of lSO/IEC 20000
(all parts);
b)organizations looking for guidance on how to use the different parts of ISO/IEC 20000 to achieve
their goal;
)organizations that wish to understand how ISO/IEC 20000 (all parts) can be used in combination
with other International Standards;
d)practitioners,auditors and other parties who wish to gain an understanding of ISO/IEC 20000
all parts).
2Normative references
There are no normative references in this document.
3Terms and definitions
For the purposes of this document the following terms and definitions apply.
ISO and IlEC maintain terminological databases for use in standardization at the following addresses:-IECElectropedia: available at http://www.electropedia.orgl
-ISO Online browsing platform: available at https://www.iso.org/obp3.1 Terms specific to management system standards