Understanding the new version of ISO 9001 v 2026

The ISO 9001 standard, and the certification of the same name, is the global benchmark for company certification to demonstrate the quality of products and services.

This standard, which defines a quality management system, is currently undergoing a revision towards a new version (this revision takes place at least every 10 years). 

The new version is scheduled for October 2026, with a public consultation phase organized by AFNOR between September 5 and October 14, 2025.

We explain the changes and our analysis of this new version.

Download ISO 9001 v 2026 - the draft standard

New directions for ISO 9001:2026

The main areas of development concern updating the standard to meet current challenges. It helps companies to keep up to date with current business constraints.

Certain fundamentals have been preserved.

In terms of the structure of the standard, the High Level Structure (HLS) remains valid. As a reminder, this is the general organization of the standard, which enables standards to be better integrated with each other in the event of the application of several ISO standards (27001, 14001, 9001, etc.).

In terms of content, of course, the P.D.C.A. (Plan Do Check Act) cycle, the logic of continuous improvement and customer orientation remain at the heart of the standard.

Sustainability and climate

• Amendment A1:2024 explicitly introduces consideration of climate change in the context of the organization and stakeholder management.
• Version 2026 will deepen this integration, with greater attention to ESG (environmental, social and governance) issues.

Quality culture

• At the heart of the project is the notion of a quality culture that is more firmly rooted in the organization, going beyond the mere formal framework of systems.

Ethics and governance

• The 2026 version should include requirements in the areas of ethics, managerial integrity and transparency of decision-making processes.

Cybersecurity and data

• The evolution of the standard should also include a cybersecurity and data protection dimension, in line with digital transformation (RGPD, traceability, integrity of documented information)

Behind this seemingly innocuous point lie major developments in cybersecurity.

It's no longer just about complying with RGPD: new regulations such as NIS 2, DORA or the Cyber Resilience Act (CRA) are rapidly redefining the landscape.

Faced with this acceleration, companies must :

• implement appropriate solutions,
• raise team awareness,
• and above all provide proof of their safety level

Quality in the age of AI

It's hard to imagine a new version of ISO 9001 that doesn't include artificial intelligence. Behind the challenges of digitizing companies, AI plays a central role in automating processes.

Two complementary approaches are possible:

• Commit to the ISO 42001 standard, to structure the use of AI and make it a lever for differentiation.
• Deploy a plan to automate company processes, to increase efficiency and boost overall performance.

‍

The public consultation process

• The public consultation phase will run from September 5 to October 14, 2025, enabling French stakeholders to submit their comments via the AFNOR Group Norminfo platform.
• The feedback gathered will be consolidated to contribute to the French position submitted to ISO.

Important dates

• AFNOR public consultationSeptember 5 - October 14, 2025
• ISO 9001:2026 version scheduled for October 2026
• Transition (approximately from 2026 to 2029)

A major change?

This new version cannot be considered a major breakthrough in company organization. The fundamentals of ISO 9001 remain unchanged. Most organizations have already incorporated dimensions such as cybersecurity, digital transformation and sustainability into their strategy - which will of course have to be adjusted and adapted to the reality of each company.

An opportunity for change

Although the new version of ISO 9001 does not introduce any major upheavals in fundamental concepts - unlike the 2008 version, which marked the arrival of the process approach - it does represent a real opportunity for change.

It's the perfect time to :

• Update your QMS to keep it in line with your current challenges.
• Automate your processes with adapted software, such as Oversecur, and gain in efficiency.
• Simplify your management system: scattered paper documents and spreadsheets give way to centralized SaaS solutions.
• Refocus your efforts on what really counts in terms of quality for your customers.
• Rethink your managerial approach, by integrating quality culture more closely into corporate strategy.
• Strengthen synergies with other standards, notably ISO 27001, for a global vision of quality + security.

The link with ISO 27001

The fact that the new version highlights digital and cybersecurity issues is essential. Moving to ISO 27001 can be one of the ways in which your company can enhance its competitive edge.

Many synergies exist between ISO 9001 and ISO 27001 , and we detail them in our webinar dedicated to the integration of these two standards.

‍

Video on the differences and synergies with 27001 and the new 9001 version

In a nutshell

The future version of ISO 9001:2026 will retain the fundamentals of the standard while enriching them to meet today's challenges:

• Strengthening social responsibility and resilience in the face of climate change.
• Promoting an inclusive quality culture shared by all employees.
• Introduction of an ethical, transparency and governance dimension.
• Integrating cybersecurity and data protection into quality processes.

‍