Available requirements

Within the platform, we have different available internal and external requirements to support your compliance requirements efforts. You can easily search and retrieve these requirements through the integrated 3rdRisk store or directly via your requirements module.

Once per month, we update this page to reflect the latest platform additions.

Compliance attestation / certification

#NameDescriptionPublisherMore info
1ISO/IEC 9001Specifies requirements for a quality management system.International Organization for Standardization (ISO)
2ISO/IEC 14001Specifies the requirements for an environmental management system that an organization can use to enhance its environmental performance.International Organization for Standardization (ISO)
3ISO/IEC 22301Specifies requirements to implement, maintain and improve a management system to protect against, reduce the likelihood of the occurrence of, prepare for, respond to and recover from disruptions when they arise.International Organization for Standardization (ISO)
4ISO/IEC 27001Specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system.International Organization for Standardization (ISO)
5Statement on Standards for Attestation Engagements 18 (SSAE 18) (SOC1)Standard from the American Institute of Certified Public Accountants (AICPA). Any company that provides outsourced services that affect another company's financial statements can request an audit.American Institute of Certified Public Accountants (AICPA)
6International Standard on Assurance Engagements 3402 (ISAE 3402) (SOC1)International Standard on Assurance Engagements 3402 (ISAE 3402), is an international assurance standard that prescribes Service Organization Control (SOC) reports, which gives assurance to an organisation's customers and service users that the service organisation has adequate internal controls.International Federation of Accountants (IFAC)
7The Service Organization Control (SOC) 2Designed to provide assurances about the effectiveness of controls in place at a service organisation that are relevant to the security, availability, or processing integrity of the system used to process clients’ information or the confidentiality or privacy of that information.American Institute of Certified Public Accountants (AICPA)
8Payment Card Industry Data Security Standard (PCI DSS)Information security standard for organizations that handle branded credit cards from the major card schemes.Payment Card Industry Security Standards Council
9EU–US Privacy ShieldThe EU-U.S. and Swiss-U.S. Privacy Shield Frameworks were designed by the U.S. Department of Commerce and the European Commission and Swiss Administration to provide companies on both sides of the Atlantic with a mechanism to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States in support of transatlantic commerce.U.S. Department of Commerce and the European Commission, and the Swiss Administration
10NEN 7510Standard developed by the Nederlands Normalisatie Institute for information security in the health sector.Nederlandse Norm (NEN)
11Cloud Infrastructure Services Providers in Europe (CISPE)Helps IAAS providers and their customers to comply with the EU General Data Protection Regulation (GDPR). On top of the required compliance to meet with the GDPR, the code also ensures that IaaS customers may choose to have their data located and processed exclusively in Europe and that the supplier will not re-use customer data.Cloud Infrastructure Services Providers in Europe (CISPE)


#NameDescriptionPublisherMore info
1UN Sustainable Development Goals (SDGs)The Sustainable Development Goals are the blueprint for achieving a better and more sustainable future. They address the global challenges we face, including poverty, inequality, climate change, environmental degradation, peace and justice. The 17 Goals are interconnected, and to leave no one behind, we must achieve them by 2030.United Nations
2UTZ (Formerly called UTZ Certified)UTZ, formerly UTZ Certified, is a program and a label for sustainable farming. The UTZ label is featured on over 10,000 product packages in over 116 countries. Since 2014, UTZ has been the world's largest sustainable coffee and cocoa farming program. (Source: Wikipedia)Rainforest Alliance
3Rainforest AllianceThe Rainforest Alliance is an international non-governmental organization (NGO) based in New York City and Amsterdam, with operations in more than 60 countries. Its certificate seal gives information to consumers about business practices based on specific standards they set. (Source: Wikipedia)Rainforest Alliance
4MSC Fisheries StandardWild, traceable, sustainable: the blue fish label is applied to wild fish or seafood from fisheries certified to the MSC Fisheries Standard, a science-based set of requirements for sustainable fishing.Marine Stewardship Council
5International Cocoa InitiativeThe International Cocoa Initiative promotes child protection in cocoa-growing communities. They work to ensure a better future for children and their families.International Cocoa Initiative
6FSC Forest Management CertificationFSC forest management certification confirms that the forest is being managed in a way that preserves biological diversity and benefits the lives of local people and workers while ensuring it sustains economic viability.Forest Stewardship Council
7FSC Chain of Custody CertificationFSC chain of custody certification provides credible confirmation that products with environmentally and socially responsible sources can access the market.Forest Stewardship Council
8FairtradeThe Fairtrade label was developed in the late 1980s by a Dutch development agency collaborating with Mexican farmers. The initiative performs development work and promotes its political vision of an alternative economy. Its main objective is empowering small producers and providing them access to and improving their position in global markets. (Source Wikipedia)Fairtrade International
9Beter Leven keurmerkDutch animal welfare standards and labels allow farmers and consumers to improve animal welfare step by step.Stichting Beter Leven keurmerk / Dierenbescherming
10ASI Performance StandardStandard setting and certification organisation that recognises and fosters the responsible production, sourcing and stewardship of aluminiumAluminium Stewardship Initiative
11ASC Tropical Marine Finfish StandardASC farm standard. The farming of tropical marine finfish, including Grouper, snapper, pompano, barramundi, and croaker, has been associated with several environmental impacts, such as the use of marine ingredients in feed, negative impact on biodiversity, disease and parasite transfer, and impact of pollution on water quality and the seabed.Aquaculture Stewardship Council
12ASC-MSC Seaweed StandardThe ASC and MSC have released a joint standard for environmentally sustainable and socially responsible seaweed production.Marine Stewardship Council & Aquaculture Stewardship Council
13ASC Tilapia StandardASC farm standard. There are several problems associated with poorly managed tilapia farming. Tilapia is adaptable and can cause problems if escapes are not carefully monitored and controlled. In addition, there are issues of pollution when the water quality is not well managed, which also increases the risk of disease.Aquaculture Stewardship Council
14ASC Shrimp StandardASC farm standard. A widely publicised problem with the shrimp farming industry is its impact on local environments – particularly the clearing of mangroves. But it isn’t just the environment that is affected. Poorly managed shrimp farming can have a detrimental effect on local communities.Aquaculture Stewardship Council
15ASC Seriola and Cobia StandardASC farm standard. The majority of Seriola and cobia that we eat is farmed. However, Seriola and cobia farming has been associated with several environmental impacts, such as using marine ingredients in feed.Aquaculture Stewardship Council
16ASC Seabass Seabream and Meagre StandardASC farm standard. Seabass, seabream and meagre farming have been associated with several environmental impacts such as fish escapes, negative impacts on biodiversity, birds and sea mammals, wild fish as an ingredient in feed, the use of antibiotics and other chemicals, impacts on water quality and the seabed.Aquaculture Stewardship Council
17ASC Salmon StandardASC farm standard. Salmon farming has been associated with several environmental impacts, such as fish escapes, negatives impact on wild salmon, birds and sea mammals, the use of wild fish as an ingredient in feed, the introduction of diseases and parasites, use of antibiotics and the impact of pollution on water quality and the seabed.Aquaculture Stewardship Council
18ASC Pangasius StandardASC farm standard. ASC certification demands that farms adhere to strict guidelines to ensure they produce a healthy product while minimising the negative environmental and social impacts associated with pangasius farmingAquaculture Stewardship Council
19ASC Flatfish StandardASC farm standard. The ASC Flatfish Standard applies to Flounders (species in the genus Paralichthys), Turbot (species in the genus Scophthalmus) and Halibut (species in the genus Hippoglossus) and in all regions globally where these fish are farmed.Aquaculture Stewardship Council
20ASC Bivalve StandardASC farm standard. ASC certification gives farms clear guidelines to follow and helps protect farms against biodiversity, pollution, diseases, wild seed collection and social.Aquaculture Stewardship Council
21ASC Abalone StandardASC farm standard. ASC certification helps ensure that farms meet strict requirements from preserving the local environment to ensuring workers are well treated: Biodiversity, feed, pollution, diseases and social.Aquaculture Stewardship Council
22ASC Freshwater Trout StandardASC farm standard. Nearly all trout that we eat is farmed. However, trout farming has been associated with several environmental impacts, such as poor water quality, the threat of spreading disease, and using marine ingredients in feed.Aquaculture Stewardship Council
23RSPO CertificationRSPO is a non-profit association that unites stakeholders to develop and implement global standards for sustainable palm oil. The RSPO has developed a set of environmental and social criteria which companies must comply with to produce Certified Sustainable Palm Oil (CSPO) and help to minimise the negative impact of palm oil cultivation on the environment and communities in palm oil-producing regions.Roundtable on Sustainable Palm Oil (RSPO)
24Responsible Jewellery Council: Code of PracticesRJC is the world’s leading standard-setting organisation for the entire jewellery and watches industry. Our members are helping to transform supply chains to be more responsible and sustainable – catalysing partnerships, underpinning trust in the global jewellery and watch industry and securing a future that can be treasured for generations to come.Responsible Jewellery Council
25UEBT StandardUEBT defines practices that respect people and biodiversity in how ingredients from biodiversity are grown, collected, researched, processed and commercialised. The UEBT standard checks that these practices are systemically applied independently.Union for Ethical Biotrade
26Convenant voor de Pensioenfondsen / Agreement for the Pension FundDutch pension funds, the Federation of the Dutch Pension Funds, non-governmental organisations (NGOs), trade unions and the Dutch government have signed a Responsible Business Conduct Agreement on responsible investment by Pension Funds. This agreement helps pension funds to gain a clearer picture of the international investment chain and thus prevent or tackle issues such as human rights violations and environmental damage.Dutch Social and Economic Council
27Covenant Voedingsmiddelen / Agreement for the Food Products SectorSector and civil society organisations, trade unions and the Dutch national government have signed the IRBC Agreement for the Food Products Sector. Together, they will minimise the risks of negative impacts, including human rights violations and environmental damage, and work towards a more sustainable production chain in the food products sector.Dutch Social and Economic Council
28Covenant Verantwoord Goud / Responsible Gold AgreementA broad coalition of companies and organisations in the Dutch gold sector is working to prevent abuses such as exploitation and environmental damage in the gold chain. The coalition comprises goldsmiths, authorities, jewellers, recyclers, NGOs, electronics companies, trade unions, and the government.Dutch Social and Economic Council
29Convenant Sierteeltsector / FloricultureThe Dutch Floriculture Sector has joined forces with the Dutch government, a trade union and an NGO to agree on a more responsible approach to international production and trade in ornamental plants. The sector widely supports the agreement, and more companies are expected to join in the coming months.Dutch Social and Economic Council
30Convenant Metaalsector / International RBC Agreement for the Metals SectorMetric sector stakeholders are joining forces to advocate for international responsible business conduct (IRBC). The aim is to promote responsible international business conduct and combat human rights and environmental abuses in the metals sector.Dutch Social and Economic Council
31Covenant Land- en Tuinbouw / Agreement for the Agricultural sectorThe agricultural sector, civil society organisations, trade unions and the Dutch government are working towards an International Responsible Business Conduct Agreement. Together, they will minimise the risks of adverse impacts and work towards a more sustainable production chain.Dutch Social and Economic Council
32Convenant internationaal maatschappelijk verantwoord beleggen in de verzekeringssector / Agreement for international responsible investment in the insurance sectorSector organisations in the insurance sector, civil society organisations, trade unions, and the Dutch government have signed the IRBC agreement on international responsible investment in the insurance sector. The agreement helps to clarify the international chain and thus prevent and tackle such issues as human rights violations, environmental damage, and animal suffering.Dutch Social and Economic Council
33Convenant Duurzame Kleding en Textiel / Dutch Agreement on Sustainable Garments and TextileA broad coalition of businesses and other organisations has signed an agreement on international responsible business conduct in the garment and textile sector. The aim is to improve working conditions, prevent pollution, and promote animal welfare in production countries.Dutch Social and Economic Council
34Convenant Bevorderen duurzaam bosbeheer / Agreement to Promote Sustainable ForestryThe Agreement to Promote Sustainable Forestry promotes the sustainable management of forests and is meant to improve international responsible business conduct throughout the entire wood value chain.Dutch Social and Economic Council
35Convenant Bancaire SectorA coalition of banks, the Dutch Banking Association (NVB), trade unions, civil society organisations (CSOs), and the Dutch Government have agreed. They aim to work towards a situation in which human rights are respected.Dutch Social and Economic Council
36IMVO Initiatief TruStone / IRBC TruStone InitiativeThe Dutch and Flemish natural stone sectors have reached agreements with the Dutch and Flemish governments, NGOs and trade unions concerning the more responsible production and purchase of the natural stone. The programme has been given the name ‘TruStone Initiative’.Dutch Social and Economic Council


#NameDescriptionPublisherMore info
1General Data Protection Regulation (EU) 2016/679 (GDPR)The General Data Protection Regulation (EU) 2016/679 (GDPR) is a regulation in EU law on data protection and privacy in the European Union (EU) and the European Economic Area (EEA).European Parliament and Council of the European Union
2Sarbanes–Oxley Act (SOX)Sarbanes–Oxley or SOX is a United States federal law that sets new or expanded requirements for all U.S. public company boards, management and public accounting firms.The United States Congress
3Payment Services Directive (PSD2, Directive 2007/64/EC)PSD2 is the second Payment Services Directive designed by the countries of the European Union.European Commission (Directorate General Internal Market)
4Health Insurance Portability and Accountability Act (HIPAA)The Health Insurance Portability And Accountability Act (HIPAA) is legislation which provides security provisions and data privacy to keep patients’ medical information safe.United States Congress
5Federal Risk and Authorization Management Program (FedRAMP)The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.Office of Management and Budget (OMB)
6Federal Information Security Management Act of 2002 (FISMA)Federal Information Security Management Act of 2002 (FISMA) requires each federal agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other sources.United States Congress
7European Union – Anti-Money Laundering Directive 5 (AMLD5)The 5th Money Laundering Directive aims to eliminate financial crimes. It intends to prevent money laundering and large-scale concealment of funds by promoting transparency. The businesses operating across Europe are obligated to comply with these regulations.European Union