MetincTrust
Free · AIMS-aware · ISO/IEC 42001

How ready are you for ISO/IEC 42001?

Answer an adaptive assessment to derive your AI management system’s scope, organizational role and complexity — then get an instant, self-attested readiness score across nine AIMS domains, with a confidence score, certification-prep summary, top gaps and a prioritized roadmap.

  • No documents to upload
  • No personal info to start
  • Adaptive & AIMS-aware
  • Standards snapshot · Jun 2026
See sample reports3 examples across AIMS scope and risk paths
Free assessment

Start your free assessment

Self-attested · ~15–35 min · Save & resume anytime

Already started? Resume your assessment

What you get

An AIMS-specific ISO/IEC 42001 readiness report, instantly

Your free report turns an adaptive questionnaire into a defensible picture of where you stand across the nine management-system domains — with foundational caps that cannot be averaged away and a confidence score that tells you how much to trust the number.

A real example — generated live by the scoring engine
Sample
Aisha OkonkwoAI-generated
Scored

Aisha Okonkwo

VP, Customer Experience · Northwind Support Cloud

Customer-facing GenAI + RAG support assistant with strong AIMS foundations — tighten generative-AI testing and data governance to reach certification-prep readiness.

View report
Result
Complexity
medium
Confidence
100 · High
Controls
77
81
/ 100
Substantially ready
Full report · 40 pages

The sample above is your free report. The full report is a 40-page comprehensive deep-dive — clause-by-clause gap matrix, Statement-of-Applicability mapping and a certification-prep roadmap.

See all sample reports →
How it works

A three-layer, scope- and risk-aware assessment

The assessment establishes your AIMS scope, organizational role, certification goal and complexity first, then asks only the AIMS clauses and Annex A controls relevant to your derived profile.

01

Discovery & AIMS scope

Scope, role, certification goal & complexity

02

Adaptive AIMS controls

Only the controls that apply

03

Final attestation & confidence

Resolve unknowns & contradictions

REPORT

Instant free report

Score · gaps · roadmap

AIMS clauses & Annex A modules — shown only when they apply to you

LeadershipPlanningOperationImpact assessmentData governanceGenerative AIAgentic AICertification prep
How it's scored

Nine domains, a confidence score, and foundational caps

Scores across the nine AIMS domains roll up into a readiness score. A separate confidence score tells you how much to trust it, and foundational gaps cap the result regardless of the average.

Domain weighting · nine AIMS domainsTotal · 100
Context & AIMS scope
12
Leadership, policy & accountability
14
Planning, risks, impacts & objectives
14
Support, competence & documented information
10
Operation & AI lifecycle control
14
Data & model controls
12
Value chain & third parties
8
Performance evaluation
8
Improvement
8

Each domain maps to an ISO/IEC 42001 clause or Annex A control group. Domains with no applicable, answered controls are marked not assessed and excluded — the remaining weights renormalize. A separate confidence score tells you how much to trust the result, and foundational caps (no scope, no AI policy, no risk process, no internal audit…) prevent a strong area from hiding a missing foundation.

Certification-prep readiness · 8 artifacts

AI policyRisk assessment & treatmentStatement of ApplicabilityAI impact assessmentsInternal AIMS auditManagement reviewAudit evidence packCertification plan

If certification is a goal, the report adds a certification-preparation summary showing which audit-critical artifacts appear ready, partial or missing — so you know what stands between you and a Stage 1 / Stage 2 audit.

What it adapts to

Every scope and risk path that changes your controls

The engine derives your AIMS profile before showing a score — and activates impact, data, model, generative-AI, agent, value-chain and certification modules only when they apply.

AI system impact

Impact assessment on rights, safety, fairness; human review & contest paths.

A.5.2
Data governance

Acquisition, quality, provenance, privacy and access controls for AI data.

A.7
Generative AI / RAG

Use policies, content safety, injection/leakage testing, RAG grounding.

A.6
Agentic AI

Tool scope, approval gates, kill switch, audit trail, secure credentials.

A.9.2
Value chain

Role allocation, third-party AI intake, supplier agreements & monitoring.

A.10
Certification prep

Internal audit, Statement of Applicability, management review, audit plan.

Clause 9

This assessment is informational and self-attested. It is not an ISO/IEC 42001 certification, accredited audit, conformity assessment, or proof that an AI management system meets the standard. No documents or evidence are reviewed. Every session records the standards snapshot used to determine its result.

Who it's for

Built for the people accountable for AI governance

AI governance & GRC

Stand up an ISO/IEC 42001 AIMS with scope, policy, risk treatment, a Statement of Applicability and a prioritized roadmap.

Compliance & certification leads

See which audit-critical artifacts are ready before engaging a certification body for Stage 1 / Stage 2.

Product & engineering

Understand the AIMS controls that apply to RAG, agents, fine-tuning and customer-facing AI before launch.

Risk & data science

Operationalize impact assessment, model validation, data governance and monitoring as an action plan.

See where your AIMS stands against ISO/IEC 42001

Start the free assessment — it adapts to your scope and complexity, and your report is ready instantly.

Start the assessment →

Frequently asked questions

What does this assessment tell me?

How ready your organization is to establish and operate an ISO/IEC 42001-aligned AI management system (AIMS) — as a self-attested 0–100 readiness score across nine management-system domains, a separate confidence score, foundational caps, your top gaps, a certification-preparation summary and a prioritized 30/60/90-day roadmap.

Is this an ISO/IEC 42001 certification or audit?

No. ISO/IEC 42001 certification requires an accredited certification body and a formal audit. This is an informational, self-attested readiness diagnostic — not a certification, accredited audit, conformity assessment, legal opinion, or proof that an AIMS meets the standard. No documents or evidence are reviewed.

Why does the score get capped?

Some gaps are foundational — no defined AIMS scope, no leadership-approved AI policy, no AI inventory, no risk assessment process, no internal audit or management review for a certification goal, or no human oversight on a high-impact system. These cap the score so a strong area cannot average away a missing foundation.

What is the confidence score?

A separate score reflecting how complete and consistent your scope and current-state answers are. It is reported alongside readiness and never changes the readiness number — it simply tells you how much to trust the result given unknowns or contradictions.

Do you upload documents or store personal data?

No. The assessment is self-attested and asks for no evidence uploads or personal data. You provide an email only if you want your report delivered or to resume later.

Which paths and modules does it cover?

The six universal AIMS clauses (context, leadership, planning, support, operation, performance & improvement) plus conditional modules for AI impact assessment, data governance, model development, generative AI/RAG, agentic AI, customer-facing AI, the value chain and certification preparation — and ten industry overlays. Modules activate only when relevant.

ISO/IEC 42001 Readiness Assessment — Free Check | Metinc Trust