Why This Confusion Costs Businesses Time and Money
When businesses start looking into ISO certification, one of the first things that trips them up is the terminology. The words “certification body” and “accreditation body” get used interchangeably all the time, even by people who should know better. They are not the same thing, and understanding the difference between an ISO certification body and an ISO accreditation body is genuinely important before you spend a single dollar on the certification process.
On this page
If you choose a certification body that is not accredited by a recognised accreditation body, your certificate may not be accepted by clients, government agencies, or international partners. That is not a minor inconvenience. It can cost you contracts, force you to repeat the entire process, and damage your credibility in the market. So let us break this down properly.
What Is an ISO Certification Body?
A certification body, sometimes called a conformity assessment body or a registrar, is the organisation that actually audits your business and issues your ISO certificate. When you go through the ISO 9001, ISO 14001, ISO 27001, or any other management system certification process, you are working directly with a certification body.
Their job is to send trained auditors to assess whether your management system meets the requirements of the relevant ISO standard. They conduct a Stage 1 audit to review your documentation and readiness, then a Stage 2 audit to verify that your system is actually working in practice. If you pass, they issue a certificate. They then conduct annual surveillance audits and a full recertification audit every three years to make sure you are maintaining the standard.
What Certification Bodies Are Responsible For
- Conducting Stage 1 and Stage 2 certification audits
- Issuing ISO certificates to organisations that meet the standard
- Performing annual surveillance audits
- Handling recertification audits every three years
- Suspending or withdrawing certificates when organisations fall out of conformance
- Maintaining a public register of certified organisations
Examples of well-known certification bodies operating in Australia include SAI Global, Bureau Veritas, SGS, Intertek, LRQA, and BSI Group. There are dozens of others. The key point is that these are commercial organisations. They charge fees for their services. They compete for your business. And they need to be accredited themselves before their certificates carry any real weight.
If you want a deeper look at how to evaluate and choose between certification bodies, the article on 10 steps to select the best ISO certification body walks through the process with a practical checklist.
What Is an ISO Accreditation Body?
An accreditation body sits one level above the certification bodies. Its role is to formally evaluate and recognise that a certification body is competent, impartial, and operating according to international standards. Think of it as the body that checks the checkers.
Accreditation bodies do not audit your business. They do not issue you an ISO certificate. You will never deal with them directly as a business seeking certification. Their relationship is with the certification bodies themselves.
When an accreditation body grants accreditation to a certification body, it is essentially saying: this organisation has been independently assessed and confirmed to be capable of conducting ISO certification audits to an internationally accepted standard. That standard is ISO 17021, which sets out the requirements for bodies providing audit and certification of management systems.
What Accreditation Bodies Are Responsible For
- Assessing certification bodies against ISO 17021 and related standards
- Granting, maintaining, suspending, or withdrawing accreditation
- Conducting periodic assessments of certification bodies to verify ongoing competence
- Maintaining public registers of accredited certification bodies
- Upholding the integrity and consistency of the certification system globally
In Australia, the national accreditation body is JASANZ, which stands for the Joint Accreditation System of Australia and New Zealand. JASANZ is recognised by the government and operates under a formal agreement with the International Accreditation Forum (IAF), which is the global body that coordinates mutual recognition agreements between national accreditation bodies. This means an ISO certificate issued by a JASANZ accredited certification body is recognised in dozens of countries around the world.
For a thorough explanation of how JASANZ operates and why it matters, the article on what is JASANZ and the role of an accreditation body covers the topic in detail.
The Relationship Between the Two: A Simple Way to Think About It
Here is the clearest way to picture the relationship. Imagine a pyramid with three levels.
At the top is the International Accreditation Forum (IAF), which is the global peak body that coordinates mutual recognition agreements between national accreditation bodies. Below that are the national accreditation bodies like JASANZ in Australia, UKAS in the United Kingdom, DAkkS in Germany, and ANAB in the United States. At the bottom of the pyramid are the certification bodies, which are accredited by the national accreditation bodies and go on to certify individual businesses.
Your business sits outside the pyramid entirely. You engage a certification body to assess your management system. That certification body holds accreditation from JASANZ or another recognised national accreditation body. JASANZ is a member of the IAF. The entire chain creates a globally recognised system of trust.
When you hold a certificate from an accredited certification body, you are not just holding a piece of paper from a private company. You are holding a certificate that is backed by a formal chain of oversight and mutual recognition. That is why it is accepted by government procurement teams, international clients, and industry bodies.
Why Accreditation Status Matters More Than You Think
Here is where things get practical. Not every organisation that calls itself an ISO certification body is actually accredited. There are unaccredited certification bodies operating in Australia and globally that will issue you a certificate for a fraction of the price of an accredited body. The certificate looks real. It has a logo on it. It says ISO 9001 on it. But it is not backed by any independent oversight, and it will not be accepted by any serious client or procurement process.
This is one of the most common traps businesses fall into, particularly when they are shopping on price alone. The article on why cheap ISO certification is bad for your business explains exactly why this happens and what the consequences look like in practice.
How to Check if a Certification Body Is Accredited
The simplest way to verify accreditation status in Australia is to search the JASANZ public register at the JASANZ website. You can search by certification body name and confirm which standards they are accredited to certify against. If a certification body is not listed there, or if they claim accreditation from a body you have never heard of, that is a serious red flag.
Also pay attention to the scope of accreditation. A certification body might be accredited for ISO 9001 but not for ISO 27001. If you need certification against a specific standard, confirm that the body holds accreditation for that exact standard before you engage them.
The article on how to confirm an ISO certification is legitimate before you rely on it provides a step-by-step process for doing exactly this kind of verification check.
Common Misconceptions That Lead Businesses Astray
Misconception 1: Accreditation and Certification Are the Same Thing
They are not. Certification applies to your organisation. Accreditation applies to the certification body. When you achieve ISO 9001 certification, your business is certified. When JASANZ approves a certification body to conduct ISO 9001 audits, that body is accredited. The two terms describe entirely different relationships in the quality infrastructure system.
If you want a broader explanation of how certification and accreditation relate to each other across different contexts, the article on certification vs accreditation: what is the difference covers this with practical examples.
Misconception 2: ISO Itself Certifies Businesses
This one comes up constantly. ISO, the International Organisation for Standardisation, does not certify businesses. ISO publishes the standards. It does not conduct audits. It does not issue certificates. It has no role in determining whether your management system meets the requirements of ISO 9001 or any other standard. That role belongs entirely to accredited certification bodies. ISO's role ends when the standard is published.
Misconception 3: All Certification Bodies Are Equal
They are not equal in terms of their industry expertise, auditor quality, client service, or pricing. Accreditation confirms that a certification body meets a minimum threshold of competence and impartiality. It does not mean every accredited body will give you the same experience or the same level of value. Some certification bodies specialise in certain industries. Some have stronger auditor teams in specific regions. Some are significantly better at communicating with clients throughout the process. Accreditation is the floor, not the ceiling.
Misconception 4: The Cheapest Quote Comes From the Most Efficient Body
Sometimes a very low quote from a certification body is a signal that they are not accredited, or that they are cutting corners in ways that will cause problems later. An audit that takes half the time it should takes is not efficient. It is incomplete. Audit day requirements are based on the size and complexity of your organisation, and a legitimate accredited body will not significantly undercut those requirements just to win your business.
The Role of IAF Mutual Recognition Agreements
One of the most practical benefits of working with an accredited certification body is the international recognition that comes with it. The IAF manages a multilateral recognition arrangement (MLA) between its member accreditation bodies. What this means in practice is that a certificate issued by a JASANZ accredited certification body is recognised in countries whose national accreditation bodies are also members of the IAF MLA.
This covers most major trading partners, including the United States, United Kingdom, Germany, Japan, Singapore, Canada, and many others. If your business is exporting, tendering for international contracts, or working with multinational clients, this recognition is not optional. It is essential.
If you are working with a certification body that is accredited by a body that is not a member of the IAF MLA, your certificate may not be recognised outside Australia, or even within Australia for certain regulated industries and government procurement requirements.
What This Means When You Are Choosing a Certification Body
When you are comparing quotes and evaluating certification bodies, the first filter you should apply is accreditation status. Before you look at price, before you look at turnaround time, before you look at anything else, confirm that the body holds current accreditation from JASANZ or another IAF-recognised national accreditation body for the specific standard you are seeking.
After that, you can start comparing on the factors that differentiate good certification bodies from average ones: auditor expertise in your industry, the clarity of their audit process, their responsiveness, their track record with businesses of your size, and their pricing transparency.
Getting multiple quotes is always a smart move. The challenge most businesses face is knowing how to compare those quotes properly, because the scope of what is included can vary significantly between providers. The article on how to compare ISO certification quotes breaks down exactly what you should be looking for in each quote and what questions to ask before you sign anything.
A Quick Reference Summary
To make this easy to refer back to, here is a clear summary of the key differences between an ISO certification body and an ISO accreditation body.
- ISO Certification Body: Audits your management system and issues your ISO certificate. You engage them directly. They are a commercial organisation. They must hold accreditation to issue certificates that are internationally recognised.
- ISO Accreditation Body: Assesses and approves certification bodies. You do not deal with them directly. In Australia, this is JASANZ. Globally, they operate under the IAF mutual recognition framework.
- ISO itself: Publishes the standards only. Does not audit, certify, or accredit anyone.
- IAF: The global peak body that coordinates mutual recognition between national accreditation bodies, enabling international acceptance of certificates.
How CertBetter Can Help
One of the most common questions we hear from businesses is: how do I know if the certification body I am looking at is actually legitimate and right for my needs? That is exactly the kind of confusion that CertBetter was built to address.
CertBetter connects businesses with verified, accredited ISO certification bodies and experienced ISO consultants. You submit one form, and you receive up to three competing quotes from vetted providers who have been assessed for their accreditation status, industry expertise, and client service track record. The service is completely free for businesses seeking certification. You get the transparency and comparison you need without spending hours researching providers on your own.
If you are starting your certification journey and want to make sure you are working with the right people from the beginning, CertBetter is the most efficient way to do that.
