When a business earns an ISO certificate, one of the first questions a sophisticated buyer, regulator, or trading partner will ask is: “Is this certificate accredited?” That question — and the answer — comes down to the International Accreditation Forum, or IAF.
Most organizations pursuing ISO certification focus on the standard itself — the requirements, the audit, the certificate. Far fewer understand the accreditation infrastructure that determines whether that certificate is genuinely trusted by governments, procurement teams, and enterprise clients worldwide. This guide closes that gap.
What is IAF?
The International Accreditation Forum (IAF) is the worldwide association of Conformity Assessment Accreditation Bodies — the organizations that evaluate, accredit, and oversee certification bodies operating in the fields of management systems, products, services, personnel, validation, and verification.
In plain terms: IAF does not certify companies. IAF accredits the bodies that certify companies. It sits at the top of a three-tier pyramid that governs the entire ISO certification ecosystem:
| Level | Who | What They Do |
|---|---|---|
| IAF | International Accreditation Forum | Oversees and recognizes accreditation bodies globally |
| Accreditation Bodies | UKAS, NABCB, ANAB, JAS-ANZ, etc. | Accredit and oversee certification bodies |
| Certification Bodies | Independent audit firms | Audit organizations and issue ISO certificates |
Your organization sits below all three — and the credibility of your ISO certificate depends on whether your certification body is accredited by an IAF-recognized accreditation body. Understanding this chain is the single most important thing any organization should know before choosing a certification partner. It directly connects to who needs to be ISO certified and what that certification will actually be worth in practice.
IAF History & the Role of IAF in ISO?
IAF was born from a single meeting on 28 January 1993, attended by representatives from organizations we now know as ANSI, RvA, UKAS, JAS-ANZ, SCC, ANAB, and JAB. That meeting created the platform for what became the global accreditation framework in use today.
Key milestones:
- January 1998 — IAF By-Laws formally adopted
- 22 January 1998 — First Multilateral Recognition Arrangement (MLA) signed for Quality Management Systems
- 27 September 1998 — IAF legally incorporated in Delaware, USA
- November 2000 — IAF Charter adopted and published
- November 2001 — New IAF structure announced; first joint General Assembly with ILAC (International Laboratory Accreditation Cooperation)
- November 2003 — IAF Code of Conduct published
- October 2004 — MLA extended to Environmental Management Systems and Product Certification
From 6 founding accreditation bodies in 1993, IAF has grown to encompass over 70 accreditation body members, 18 association members, and multiple regional cooperation bodies — making it the most comprehensive global accreditation network in existence.
THE RELATIONSHIP BETWEEN ISO AND IAF
This is one of the most frequently misunderstood aspects of ISO certification, and it is critical to get right.
ISO publishes the standards. The International Organization for Standardization develops and maintains standards like ISO 9001, ISO 27001, ISO 14001, and ISO 42001. But ISO does not issue certificates, does not accredit certification bodies, and does not operate the audit process.
IAF governs the accreditation system that makes ISO certification credible. ISO formally recommends IAF-recognized compliance for organizations seeking certification. IAF-recognized certificates can be verified and accepted by most government bodies across multiple countries — because IAF ensures that the accreditation bodies overseeing certification bodies are themselves competent, impartial, and operating to internationally accepted standards.
The practical implication: two organizations can both hold an “ISO 27001 certificate,” but if one certificate comes from an IAF-accredited certification body and the other does not, they are not equivalent in the eyes of international regulators, enterprise procurement teams, or global trading partners.
What is the IAF MLA?
The IAF Multilateral Recognition Arrangement (MLA) is the cornerstone of the entire global accreditation system. It is a formal, legally binding agreement between IAF member accreditation bodies in which each signatory commits to recognizing the accredited certifications issued by certification bodies under all other signatory accreditation bodies.
In practical terms: certified once, accepted everywhere.
An organization certified by a certification body accredited under a UKAS (UK) accreditation, for example, holds a certificate that is recognized — without re-certification — in countries whose accreditation bodies are also IAF MLA signatories. This covers most of the world’s major trading partners: the United States, United Kingdom, Germany, Japan, Singapore, Canada, India, Australia, and dozens more.
The four main scopes of the IAF MLA:
- Management Systems Certification — ISO 9001, ISO 27001, ISO 14001, ISO 45001, ISO 22000, ISO 42001, and others
- Product Certification — conformity of products to specified standards
- Certification of Individuals/Personnel — competence certification for professionals
- Validation and Verification — greenhouse gas emissions, sustainability claims, and similar
For any organization holding or pursuing ISO 27001 certification, SOC 2 compliance, or any other internationally recognized compliance standard, ensuring your certification body falls within the IAF MLA framework is not optional — it is the baseline for international credibility.
IAF-Accredited vs Non-IAF-Accredited: The Critical Difference
This is the question most organizations should ask — and rarely do — before engaging a certification body.
IAF-Accredited Certificates
- Issued by a certification body that has been assessed, approved, and is regularly monitored by an IAF MLA signatory accreditation body
- Internationally recognized across all IAF MLA member countries
- Accepted by government agencies, regulators, and enterprise procurement teams globally
- Verifiable through IAF CertSearch — the official global database
- Carry the logos of the certification body and the accreditation body — the presence of both is your signal of a genuine, accredited certificate
Non-IAF-Accredited Certificates
- Issued by certification bodies whose accreditation body is not an IAF MLA signatory — or by certification bodies operating without any accreditation at all
- Not internationally recognized; may be rejected by government tenders, international clients, or regulated-sector procurement processes
- Cannot be independently verified through IAF CertSearch
- Often cheaper to obtain — but the commercial risk of rejection far outweighs the cost saving
- May involve conflicted assessment processes with no independent oversight of the certification body’s competence or impartiality
The bottom line: a non-IAF-accredited ISO certificate may look identical to an accredited one on paper, but it carries none of the same international recognition or trust. When tendering for international business, supplying enterprise clients, or demonstrating compliance to regulators, a non-accredited certificate is not just less valuable — it can actively damage credibility when discovered.
This distinction sits at the heart of what compliance certifications actually deliver for business growth — the commercial value is inseparable from the legitimacy of the accreditation behind the certificate.
How to Verify an ISO Certificate Using IAF CertSearch
IAF CertSearch is the official global database for verifying accredited ISO certifications. It cross-references three independent data sources simultaneously:
- IAF data — confirming the accreditation body is a current IAF MLA signatory
- Accreditation body data — confirming the certification body is currently accredited by that body
- Certification body data — confirming the specific certificate issued to your organization (or a supplier) is valid and current
This three-way verification across over 2,500 certification and accreditation bodies makes IAF CertSearch the most reliable tool available for confirming certificate legitimacy.
Why this matters for your business:
- Use it during supplier onboarding to verify that a supplier’s claimed ISO certification is genuine and currently valid
- Use it when responding to procurement requirements to confirm your own certificate will be accepted
- Use it when evaluating certification bodies before engaging one — verify their accreditation status before committing
Organizations that skip this verification step expose themselves to the risk of paying for a certification process with a non-accredited body — and discovering only when a major tender is rejected that the certificate they hold has no international standing. Sound compliance documentation practices include maintaining evidence of your certification body’s accreditation status as part of your management system records.
Benefits of IAF Accreditation — By Stakeholder
For Governments and Regulators
The IAF MLA provides governments with a robust, internationally recognized framework for developing bilateral and multilateral trade agreements. Rather than each country maintaining its own assessment infrastructure, IAF-recognized accreditation enables regulators to rely on certificates issued anywhere within the MLA system. The long-term goal — certified once, accepted everywhere — directly reduces trade friction and regulatory duplication. Regulatory compliance best practices increasingly require organizations to hold IAF-accredited certifications as the baseline for regulated market participation.
For Businesses Procuring Products and Services
When you source from a supplier holding an IAF-accredited certificate, you have independent, internationally recognized assurance that their management system has been assessed by a competent, impartial third party. This reduces supplier risk, simplifies due diligence, and strengthens your own vendor risk management processes.
For Manufacturers and Service Providers
IAF-accredited certification distinguishes your organization from non-certified competitors and from those holding non-accredited certificates. It signals to international buyers that your quality, security, or environmental management systems have been independently verified to a globally recognized standard — opening doors to markets and relationships that would otherwise require costly individual customer audits. ISO certification for startups in particular delivers outsized value when the certificate is IAF-accredited, as enterprise clients increasingly demand it as a supplier qualification requirement.
For Consumers
Consumer confidence in products and services is supported by certification marks and conformity certificates. The IAF MLA ensures that products bearing certification marks — from whichever country of origin — have been assessed against the required standards of quality and safety by a body operating under credible, internationally recognized oversight.
Major IAF Member Accreditation Bodies by Country
Knowing which accreditation body covers your region helps you verify that any certification body you engage is operating under proper IAF oversight.
| Country | Accreditation Body | Notes |
|---|---|---|
| USA | ANAB (ANSI National Accreditation Board) | One of the largest accreditation bodies globally |
| USA | IAS (International Accreditation Service) | Non-profit; accrediting since 1975 |
| United Kingdom | UKAS (UK Accreditation Service) | Government-appointed national body; one of the oldest MLA signatories |
| India | NABCB (National Accreditation Board for Certification Bodies) | Represents Indian industry at international forums; IAF MLA signatory |
| UAE | EIAC (Emirates International Accreditation Centre) | Established to replace Dubai Municipality’s conformity assessment department |
| Australia/NZ | JAS-ANZ (Joint Accreditation System) | Covers both Australia and New Zealand |
| Germany | DAkkS (Deutsche Akkreditierungsstelle) | National accreditation body under EU Regulation 765/2008 |
| Singapore | SAC (Singapore Accreditation Council) | Key body for Southeast Asian market access |
For Indian organizations — a key CertPro market — NABCB is the primary IAF MLA-recognized accreditation body. Certification bodies accredited by NABCB issue ISO certificates that carry full international recognition across all IAF MLA member countries. This is particularly relevant for ISO 27001 certification for startups in India seeking to supply enterprise clients in the US, UK, and EU.
IAF and the Broader Compliance Ecosystem
IAF does not operate in isolation. It works in close coordination with:
- ILAC (International Laboratory Accreditation Cooperation) — the equivalent body for laboratories, inspection, and calibration services
- ISO — which publishes the standards against which certifications are issued
- Regional accreditation cooperations — including EA (Europe), IAAC (Americas), APAC (Asia-Pacific), and AFRAC (Africa)
Together, these bodies form the global quality infrastructure that underpins everything from ISO 27001 information security and ISO 9001 quality management to GDPR compliance and AI governance under ISO 42001. Organizations that understand this ecosystem make better decisions about which certifications to pursue, which certification bodies to engage, and how to communicate the value of their compliance investments to stakeholders. A robust GRC framework that maps your certifications against this accreditation hierarchy ensures your compliance portfolio delivers maximum commercial and regulatory value.
How CertPro Can Help
CertPro is a licensed CPA firm delivering ISO 27001, SOC 2, ISO 42001, HIPAA, GDPR, and a full suite of compliance certifications through a process that meets the highest standards of audit quality and independence. Our clients receive certifications backed by recognized accreditation bodies operating within the IAF MLA framework — ensuring that every certificate we support delivers genuine, internationally accepted value.
Contact CertPro today to discuss which certification is right for your organization and to verify that your path to compliance will result in a certificate that opens doors, not questions.
FAQ
Does IAF certify companies directly?
No. IAF accredits accreditation bodies, which in turn accredit certification bodies, which issue certificates to organizations. IAF operates at the governance level — it does not interact directly with individual certified organizations.
How do I know if my ISO certificate is IAF-accredited?
Check for the logo of a recognized accreditation body (such as UKAS, ANAB, NABCB, or JAS-ANZ) on your certificate alongside your certification body’s logo. You can verify the certificate’s validity and accreditation status using IAF CertSearch.
What happens if I get certified by a non-IAF-accredited body?
Your certificate will not be internationally recognized and may be rejected by government tenders, enterprise procurement processes, and regulated-sector requirements in most countries. It may also be flagged as invalid when a buyer attempts verification through IAF CertSearch.
Is IAF accreditation required for every ISO standard?
IAF accreditation is available for most major management system standards. Some niche or emerging standards may not yet have IAF-endorsed accreditation programs — always check with your certification body before committing.
How often are accreditation bodies evaluated by IAF?
IAF conducts regular peer evaluations of its member accreditation bodies to verify that they continue to meet IAF requirements and operate competently and impartially.
