ECIJA is the first law firm in Spain to have its AI management system certified according to the ISO 42001 standard with international accreditation

With the European Regulation on Artificial Intelligence now in full effect, ECIJA has become the first law firm in Spain to obtain the ISO/IEC 42001:2023 certification — the international standard regulating AI management systems — under an international accreditation scheme. The firm, recognized as European Law Firm of the Year 2025 by The Lawyer, is thus at the forefront of the legal sector in terms of AI governance.

The certificate has been issued by SGS, a global leader in inspection, verification, testing and certification, and is accredited by ANAB (ANSI

 National Accreditation Board), one of the leading international organizations in the accreditation of management systems. This dual guarantee, which combines certification by a globally prestigious body with accreditation by an international organization of the highest standards, has required the application of high levels of technical rigor throughout the audit process.

This certification adds to the ones that ECIJA already holds in the areas of information security, quality, and compliance, and consolidates the firm's alignment with recognized best practices in corporate governance, both in Spain and in the international markets in which it operates.

“This milestone reinforces ECIJA's commitment to the safe, respectful, non-discriminatory, and ethical use of artificial intelligence, equipping our internal governance framework with a robust management system aligned with the European AI Regulation and the highest international risk management standards,” emphasized Alejandro Touriño, CEO of ECIJA.

Beyond technical recognition, this achievement represents a firm declaration of principles for the firm, ensuring that the development, implementation, and application of AI solutions —both for internal use and in the services provided to clients— are carried out within a framework of trust, transparency, and accountability.

The certified system covers the entire lifecycle of AI tools within the audited scope and incorporates monitoring and control mechanisms across all processes in which AI has been implemented, with a risk-based approach aimed at minimizing critical aspects associated with these systems as much as possible.

“In a sector like the legal one, where trust is the foundation of the client relationship, it is not enough to incorporate technology: it must be done with guarantees. The ISO 42001 standard, internationally accredited, allows us to demonstrate to our clients, regulators, and society that each AI system we use is subject to rigorous controls regarding governance, human oversight, and accountability,” added Touriño.

For SGS, the accreditation of the certification is part of the SGS Digital Trust strategy, a new approach to quality and governance that places digital trust at the centre of the process as a strategic priority, affecting the technologies created, the services offered, and the organizations that support them.

The certification implemented by SGS allows addressing this complexity across the entire value chain. Both for digital products and critical services, the support from SGS is tailored to the level of digital maturity and is designed to turn trust into a competitive advantage.

The accredited certification is part of the SGS Digital Trust strategy, a new approach to quality...

The tailored solutions and services from SGS enable organizations to address gaps and meet specific sectoral digital trust requirements, including security, cybersecurity, and fairness.