How to List ISO Certification on Your Company Website Correctly

Why Getting This Right Actually Matters

You have worked hard to earn your ISO certification. You have sat through audits, fixed non-conformities, trained your team, and paid the bills. The last thing you want is to undermine all of that by listing your certification incorrectly on your website.

This is more common than most people realise. Businesses either overclaim what their certification covers, use outdated certificate details, display logos they are not permitted to use, or write descriptions that would make an auditor wince. Any of these mistakes can erode trust, create legal exposure, and in some cases, trigger a complaint to your certification body.

This guide walks you through exactly how to list ISO certification on your company website in a way that is accurate, compliant, and genuinely useful to the people reading it.

Understand What Your Certificate Actually Says

Before you write a single word on your website, go back and read your certificate. Not the summary your consultant gave you. The actual certificate document issued by your certification body.

Your certificate contains several specific details that must be reflected accurately whenever you reference your certification publicly. These include:

• The standard and edition, for example ISO 9001:2015, not just “ISO 9001”
• The scope of certification, which describes exactly what activities and locations are covered
• The certificate number
• The issuing certification body
• The validity period, including the initial certification date and the expiry date
• The accreditation body that accredits your certification body

Each of these matters. If your certificate covers the design and manufacture of industrial valves at your Brisbane facility, you cannot claim on your website that your entire business is ISO 9001 certified. That would be a misrepresentation of the scope, and it is one of the most common mistakes businesses make.

If you are unsure what your scope actually covers, read our guide on determining the scope of your management system for a clear breakdown of how scope works in practice.

The Correct Way to Write Your ISO Certification Statement

There is a specific format that works well for website listings. It is clear, accurate, and gives visitors the information they need to verify your certification if they choose to.

A Good Format to Follow

Here is a practical example of how to write it:

Acme Engineering Pty Ltd holds ISO 9001:2015 certification for the design, manufacture, and servicing of industrial pumps at our Melbourne facility. Our certificate number is AU-QMS-12345, issued by [Certification Body Name], accredited by JAS-ANZ. Certificate valid until [date].

This format works because it tells the reader exactly what is certified, where, by whom, and for how long. It does not overclaim. It does not say “we are ISO certified” in a vague way that implies everything the company does is covered.

What to Avoid Writing

Here are some common phrasings that cause problems:

• “We are ISO certified” without specifying which standard. ISO is not a single certification. There are thousands of ISO standards. This statement tells the reader almost nothing.
• “ISO 9001 certified company” when only part of your operations are in scope. If your certification covers one site or one service line, you cannot imply the whole company is covered.
• “ISO compliant” when you mean certified. Compliance and certification are different things. ISO compliance vs conformance is a distinction worth understanding before you write anything public-facing.
• Listing a certification that has expired. This is a serious issue. If your certificate has lapsed or been suspended, you must remove any reference to it from your website immediately.

Using Certification Logos and Marks Correctly

This is where many businesses get into trouble without realising it.

When you receive ISO certification, you do not automatically have the right to use whatever logo you like. The marks you are permitted to use, and the rules around using them, are controlled by your certification body and the accreditation body behind them.

The Difference Between the ISO Logo and Certification Marks

The ISO logo itself, the one with the circular design and “ISO” text, belongs to the International Organisation for Standardisation. ISO has strict rules about who can use its name and logo, and certified companies are generally not permitted to use the ISO logo to imply endorsement by ISO itself.

What you are typically permitted to use is the certification mark issued by your certification body, sometimes combined with the accreditation body mark. For example, if your certification body is accredited by JAS-ANZ, you may be permitted to display a mark that shows both the certification body logo and the JAS-ANZ accreditation symbol together.

How to Get This Right

Contact your certification body directly and ask them for their logo usage guidelines. Most reputable certification bodies provide a document or webpage that explains exactly how their mark can be used, in what sizes, on what backgrounds, and in what contexts.

Key rules that typically apply include:

• Do not alter the logo in any way, including changing colours, proportions, or adding effects
• Do not use the logo on products themselves unless your certification specifically covers product certification
• Do not use the logo in a way that implies your products are certified when only your management system is certified
• Always display the standard number alongside the mark so it is clear what you are certified to
• Update or remove the logo if your certification lapses or is suspended

If you are not sure whether your certification body is properly accredited, our article on how to verify your ISO certificate online explains how to check this in a few minutes.

Where to Display Your Certification on Your Website

Once you have the content right, placement matters. You want your certification to be visible to the people who care about it, without making it feel like a decoration.

High-Value Placement Locations

The footer. This is the most common location and it works well. A small certification mark with the standard number in the footer appears on every page, which is useful for visitors who are evaluating your credentials while browsing.

The About Us page. This is where potential clients and partners often go to assess your credibility. A short paragraph explaining your certification, what it covers, and why you pursued it adds genuine context.

A dedicated Quality or Compliance page. For businesses where certification is a key differentiator, a standalone page works well. This gives you space to explain your management system, list your certifications with full details, and link to your certificate or a verification portal.

Tender and procurement pages. If you have a section of your site aimed at government or enterprise clients, listing your certifications here with full details is directly relevant to responding to tenders that require ISO certification.

Product and service pages. If a specific product or service is within your certification scope, mentioning it there is appropriate. Just be careful not to imply that products outside the scope are also covered.

What Not to Do With Placement

Do not put certification logos in your website header as if they are brand badges. This can look like you are using them as marketing decoration rather than factual credentials. Some certification bodies specifically prohibit header placement in their usage guidelines.

Do not scatter certification claims across your site without consistent information. If your footer says your certificate expires in one year but your About page has an older certificate number, it creates confusion and looks sloppy.

Keeping Your Website Listing Up to Date

ISO certifications run on a three-year cycle with annual surveillance audits. Your certificate has an expiry date. When it is renewed, the certificate number may change, the expiry date definitely changes, and sometimes the scope wording is updated.

Every time your certificate is renewed or updated, you need to update your website. This sounds obvious, but it is genuinely one of the most common problems I see. A business will go through their recertification audit, receive their new certificate, and then forget to update the date on their website for six months.

Build a Simple Update Process

Here is a practical approach that works for most businesses:

1. When you receive your new certificate, add a task to your calendar to update the website within five business days
2. Keep a simple document that lists every location on your website where certification information appears, including the footer, About page, any dedicated quality pages, and any downloadable documents
3. Assign one person as the owner of this task so it does not fall through the cracks
4. If your certification body sends you updated logo files, replace the old ones immediately
5. If your certification is ever suspended or withdrawn, remove all references from your website the same day

This kind of simple maintenance is part of what it means to actually maintain your management system rather than just holding a certificate. If you want to go deeper on this, our guide on how to check if your ISO management system is actually working covers the broader picture of keeping your system genuine.

What Happens If You Get It Wrong

This is not just a theoretical concern. There are real consequences for misrepresenting your ISO certification on your website.

Complaints to Your Certification Body

Competitors, clients, and industry bodies can and do lodge complaints with certification bodies when they believe a company is misrepresenting its certification. Your certification body has an obligation to investigate. Depending on the nature of the misrepresentation, this could result in a formal warning, a requirement to correct the information, or in serious cases, suspension of your certificate.

Tender and Contract Risks

If you win a contract based on a certification claim that turns out to be inaccurate, whether because the scope did not cover the relevant activities or the certificate had lapsed, you may be in breach of contract. This can result in financial penalties, loss of the contract, or reputational damage that is very difficult to recover from.

Misleading and Deceptive Conduct

In Australia, making false or misleading claims about your business credentials can breach the Australian Consumer Law. If a client suffers loss because they relied on an inaccurate certification claim on your website, you could face legal action. This is not a common outcome, but it is a real risk, particularly in regulated industries.

Damage to Your Reputation

Beyond the formal consequences, getting caught with inaccurate certification claims on your website is simply embarrassing. In industries where trust is everything, it can cost you relationships that took years to build.

A Practical Checklist for Your Website Listing

Use this checklist to review how your certification is currently displayed on your website:

• Does your listing include the full standard name and edition, for example ISO 9001:2015?
• Does your listing accurately reflect the scope of certification as it appears on your certificate?
• Is your certificate number displayed or available?
• Is your certification body named?
• Is the accreditation body named or their mark displayed?
• Is the certificate validity period current and accurate?
• Have you checked with your certification body that you are using their logo correctly?
• Are you avoiding the ISO logo unless you have explicit permission to use it?
• Have you avoided claiming certification for activities or locations that are outside your scope?
• Do you have a process to update this information when your certificate is renewed?

If you can answer yes to all of these, your website listing is in good shape. If there are gaps, address them before your next audit or before your next tender submission.

A Note on Displaying Multiple Certifications

Many businesses hold more than one ISO certification. It is common to see companies certified to ISO 9001 for quality, ISO 14001 for environmental management, and ISO 45001 for health and safety, sometimes as part of an integrated management system.

When displaying multiple certifications, the same rules apply to each one individually. List each standard separately with its own scope, certificate number, and validity period. Do not bundle them into a single vague statement like “we hold multiple ISO certifications” without the supporting detail.

If you hold an integrated certification where multiple standards are covered under a single certificate, check with your certification body on how they prefer the details to be displayed, as the certificate format can vary between providers.

Getting Your Certification Right From the Start

If you are still in the process of getting certified and want to make sure you end up with a certification that is worth displaying, the quality of your certification body and consultant matters enormously. A well-scoped certification from an accredited body gives you something you can display with confidence. A poorly scoped one, or worse, a certificate from an unaccredited body, creates problems you will have to manage for years.

If you are comparing providers or looking for a consultant to help you through the process, CertBetter makes it straightforward. You submit one form and receive up to three competing quotes from vetted consultants and accredited certification bodies. There is no cost to use the platform, and it saves you the considerable time it takes to research and approach providers individually. It is a practical starting point if you want to get the certification right before you ever have to think about how to display it.