Language
English (UK)
Estonian
Latvian
Finnish
German (Germany)
Polski
Lithuanian
Request for quote/Application Form Management Systems Certification
For BM Certification to prepare an accurate quotation for certification, and to prepare our auditor(s) for the assessment of your organisation please provide as much detail as possible to help us understand your business and applicable requirements. If you require clarification about any questions in this form, please contact your local BM Certification office.
BM Certification office
Please Select
BM Certification
BM Certification Estonia
BM Certification Lietuva
BM Certification Suomi
BM Certification Deutschland
BM Certification Polska
BM Certification UK
BM Certification Sweden
Name of organisation
*
Address
Number of locations/ sites
*
Contact person
Name, Surname
Position
Position of contact person
Phone
Phone number of contact person
e-mail
E-mail of contact person
Which Management System certification do you require?
*
ISO 9001:2015
ISO 14001:2015
ISO 45001:2015
ISO 50001:2018
ISO 22000:2018
ISO 22301:2019
ISO 37001:2016
ISO 37001:2025
ISO/IEC 27701:2019
ISO 27001:2022
Other
If the organisation applies for certification against more than one standard, are the management systems integrated?
Please Select
Yes
No
Are you transferring any of the above certifications to BM Certification from another certification body?
Please Select
Yes
No
Scope of certification
Please describe the activities/processes, products and/or services to be included in the certification
Number of employees
*
Number of shifts
Please indicate number of employees in same/similar positions. E.g. management, administration, production, drivers, cleaners etc.
Information on locations
Other information
Rows
Yes
No
Does your organisation outsource any activities/processes to a subcontractor?
Does your organisation conduct any production / service activities at temporary locations? e.g. installations at client locations / construction
Does your organisation conduct any seasonal activities?
Did you use / are you using a consultant to assist with the implementation of your management system(s)?
Please Select
Yes
No
Please indicate name of the consultant
Comments/ Other information
Does the organisation perform design activities?
Please Select
Yes
No
Does the organisation carry out any environmentally hazardous activities?
Please Select
Yes
No
Please intricate hazardous activities
Are there any specific activities undertaken by your organisation that present a significant risk to occupational health and safety? (e.g. working at height, confined spaces, working with explosives)
Please Select
Yes
No
Please list all activities presenting significant risk to occupational health and safety
Number of EnMS effective personnel
Annual energy consumption (GWh)
Please Select
< 5.6 GWh
5.6 GWh to 56 GWh
56 GWh to 556 GWh
> 556 GWh
Number of energy sources
Please Select
1 or 2
3
over 3
Number of significant energy uses (SEUs)
Please Select
under 5
6 to 10
11 to 16
over 16
Information management system specifics
Rows
Yes
No
Q1 Information handled by our organisation includes government information classification at or above secret?
Q2 Information handled by our organisation includes: - Customers/end users/staff/contractors or others sensitive personal information e.g. health (e.g. medical) records or financial information (bank account details, credit/debt information) and/or - Intellectual property (e.g. designs, software source code) and/or - Commercially sensitive information (e.g. strategy, budgets, pricing, margins, costs)
Q3 Information held by our organisation includes one or more large sets of sensitive personal information that could be used for identity theft/fraud (more than 1,000 individuals' records).
Q4 Technology used by our organisation includes a diverse or complex infrastructure? e.g. many servers (>100 physical or virtual servers, multiple different platforms) and/or Bring your own device (BYOD) policy is permitted by our organisation?
Q5 The organisation is regulated and/or subject to sector specific rules
Q6 Organisation conducts development activities either in-house or outsourced (e.g. software/hardware development)
Q7 Services are part of critical national infrastructure? (e.g. emergency services, communications, financial services, health, transport, utilities) or an essential part of national infrastructure supply chain (e.g. data centre hosting national infrastructure systems) and/or Services could be a potential terrorist target? and/or Non-availability of our services or product may severely affect the health, well-being, safety or security of people?
Q8 Organisation shares sensitive information with third parties e.g: - Customers'/end users'/staff or others personal information .e.g. outsourced payroll, third party vetting services (criminal records, credit checks) - Intellectual property (designs, source code or other sensitive proprietary information)
Q9 If the information produced by our product/service is incorrect or incomplete there is a threat to individual or collective health/well being/ safety/ security/ miscarriage of justice or risk of fraud?
Q10 Theft of information (by staff/contractors or others) managed by the organisation could result in fraud or targeted disruption, e.g - Theft of personal information by staff working in finance/insurance, call centres, clinics (e.g. theft of customer lists), pharmacies - Hacking of software/website/IT systems
Role of the organisation towards Personal Identifiable Information
Please Select
Controller
Processor
Controller and processor
Information about food production
*
Submit
Should be Empty: