The ISO standards landscape for translation agencies has never been more complex — or more important. With over ten relevant standards spanning quality, security, privacy, specialized domains, and now artificial intelligence, choosing the right certifications can feel overwhelming. This guide cuts through the complexity, explaining every ISO standard relevant to Language Service Providers and providing a practical roadmap for building your certification strategy in 2026.

Whether you are a solo translator considering your first certification or a large multi-language vendor evaluating a multi-standard programme, this guide provides the clarity you need to make informed decisions about which standards to pursue, in what order, and why.

The Standards Landscape at a Glance

10+
Relevant ISO standards for LSPs
100+
Countries recognize these standards
2–4 wks
Typical certification timeline

The Core Translation Standards

ISO 17100: Translation Services — Requirements for Translation Services

ISO 17100 is the flagship standard for the translation industry. Published in 2015, it specifies requirements for all aspects of the translation process that directly affect the quality and delivery of translation services. This includes translator and reviser qualifications, the translation workflow (translation, revision, review, proofreading), project management procedures, and the use of technology.

For most agencies, ISO 17100 is the starting point and the single most impactful certification. It is the standard that enterprise clients, government procurement agencies, and other LSPs most frequently require. If you certify to only one standard, this should be it.

Best for: Every translation agency, regardless of size or specialization. It is the baseline credibility standard for professional translation services.

ISO 18587: Translation Services — Post-Editing of Machine Translation Output

ISO 18587 addresses the increasingly important field of machine translation post-editing (MTPE). It defines the competences and qualifications required of post-editors, the process for post-editing MT output, and the quality expectations for the final product. The standard distinguishes between light and full post-editing and sets requirements for both.

As AI-powered translation becomes central to the industry, ISO 18587 certification has shifted from a niche credential to a mainstream requirement. Agencies offering MTPE services without this certification face growing competitive pressure from those who have it.

Best for: Any agency offering MTPE as a service line, using MT in production workflows, or positioning itself for the AI-driven future of translation.

Quality and Management Standards

ISO 9001: Quality Management Systems

ISO 9001 is the world’s most widely recognized quality management standard, applicable to any industry. For translation agencies, it provides the overarching quality management framework within which translation-specific processes operate. ISO 9001 covers leadership commitment, risk-based thinking, resource management, performance evaluation, and continual improvement.

While ISO 17100 focuses specifically on translation quality, ISO 9001 addresses the broader organizational quality management system. Many enterprise clients require both, as ISO 9001 demonstrates that quality extends beyond the translation process to encompass all business operations.

Best for: Agencies pursuing enterprise and government contracts, those seeking a comprehensive quality framework, and agencies already certified to ISO 17100 that want to expand their certification portfolio.

Security and Privacy Standards

ISO 27001: Information Security Management Systems

ISO 27001 specifies requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS). For translation agencies handling confidential client content — which is virtually all of them — this standard provides the framework for protecting information assets.

The standard covers risk assessment, access controls, encryption, incident management, business continuity, and supplier security. Clients in financial services, healthcare, legal, and government sectors increasingly require ISO 27001 certification from their translation vendors.

Best for: Agencies handling confidential, sensitive, or regulated content. Essential for agencies serving financial, legal, healthcare, or government clients.

ISO 27701: Privacy Information Management

ISO 27701 extends ISO 27001 with privacy-specific controls that map directly to GDPR and other data protection regulations. For translation agencies that process personal data — names, addresses, medical information, legal records — this standard provides the framework for compliant data handling.

ISO 27701 is particularly valuable for agencies operating in or serving the European market, where GDPR compliance is mandatory. The standard helps agencies demonstrate compliance to clients and regulators without undergoing separate GDPR audits.

Best for: Agencies processing documents containing personal data, those serving EU/EEA clients, and agencies seeking to differentiate on privacy and data protection.

Specialized Domain Standards

ISO 20771: Legal Translation — Requirements

ISO 20771 addresses the specific requirements of legal translation, including translator qualifications in legal domains, handling of legal terminology, confidentiality requirements particular to legal content, and the relationship between translation accuracy and legal validity.

Best for: Agencies specializing in legal translation, those serving law firms, corporate legal departments, courts, and government legal services.

ISO 13485: Medical Devices — Quality Management Systems

ISO 13485 is the quality management standard for the medical device industry. For translation agencies, it applies when translating medical device documentation — instructions for use (IFUs), labeling, clinical evaluation reports, and regulatory submissions. The standard requires rigorous documentation, traceability, and validation processes specific to the medical device regulatory environment.

Best for: Agencies translating medical device documentation, pharmaceutical content, clinical trial materials, or other healthcare-regulated content.

ISO 21999: Translation Quality Assurance and Assessment

ISO 21999 provides a framework for translation quality assessment, including metrics, methodologies, and reporting structures. It helps agencies implement systematic quality evaluation processes that go beyond subjective judgment to provide measurable, consistent quality data.

Best for: Agencies wanting to formalize their quality evaluation processes, those managing large linguist networks, and agencies that need to demonstrate quality metrics to clients.

ISO 24495: Plain Language

ISO 24495 provides guidelines for creating and evaluating plain language content. For translation agencies, this standard is relevant when clients require translations that are clear, concise, and accessible to their target audiences — particularly in government communications, consumer information, and healthcare materials.

Best for: Agencies working on public-facing content, government communications, patient information, consumer documentation, and accessibility-focused projects.

ISO 22159: Terminology Management

ISO 22159 addresses terminology work principles and methods. For translation agencies, consistent terminology management is foundational to quality. This standard provides the framework for creating, maintaining, and applying terminology databases across projects and clients.

Best for: Agencies managing large terminology databases, those working on technical or specialized content, and agencies seeking to improve consistency across their linguist networks.

The Newest Addition: ISO 42001 for AI Management

ISO 42001: Artificial Intelligence Management Systems

Published in December 2023, ISO 42001 is the newest and arguably most forward-looking standard relevant to translation agencies. It provides the management system framework for responsible AI governance — covering risk assessment, policy development, stakeholder communication, and continuous improvement of AI systems.

For agencies using machine translation engines, AI-powered QA tools, or other AI technologies, ISO 42001 certification demonstrates that these tools are governed responsibly. With the EU AI Act now in effect, this standard provides documented evidence of compliance readiness.

Best for: Agencies that use AI/MT tools extensively, those serving EU markets (EU AI Act compliance), and agencies wanting to differentiate on responsible AI practices.

The most successful translation agencies do not pursue certifications randomly. They build a strategic certification portfolio that aligns with their market positioning, client requirements, and growth objectives. Start with the foundation, then expand based on your specific needs.

Which Standards to Prioritize by Agency Type

Not every agency needs every standard. Your certification strategy should reflect your agency’s specific services, target markets, and client requirements:

  • General translation agency: Start with ISO 17100 + ISO 9001. This combination covers translation quality and overall business quality, satisfying the vast majority of client requirements
  • MTPE-focused agency: Prioritize ISO 17100 + ISO 18587, then add ISO 42001 for AI governance. This positions you as a leader in the AI translation space
  • Legal translation specialist: Start with ISO 17100 + ISO 20771, then add ISO 27001 for the confidentiality requirements that legal clients demand
  • Life sciences / medical agency: Prioritize ISO 17100 + ISO 13485 + ISO 27001. Medical device clients often require all three
  • Enterprise-serving multi-language vendor: Build the full stack: ISO 17100 + ISO 9001 + ISO 27001 + ISO 27701 + ISO 18587. Differentiate with ISO 42001 and domain-specific standards

Recommended Certification Roadmap

Phase 1 — Foundation (Month 1):
• ISO 17100 (Translation Services) — the essential starting point
• ISO 9001 (Quality Management) — broadens your quality credentials

Phase 2 — Security & Technology (Months 2–3):
• ISO 18587 (MTPE) — if you offer machine translation services
• ISO 27001 (Information Security) — if you handle confidential content

Phase 3 — Specialization (Months 3–6):
• Domain-specific standards (ISO 20771, ISO 13485) based on your specializations
• ISO 27701 (Privacy) — if you process personal data
• ISO 42001 (AI Management) — if AI tools are central to your workflow

Phase 4 — Excellence (Months 6–12):
• ISO 21999, ISO 24495, ISO 22159 — round out your certification portfolio
• Multi-standard integration and continuous improvement

The Economics of Multi-Standard Certification

A common concern is cost. Pursuing multiple certifications individually can be expensive and time-consuming. However, the economics improve significantly with a strategic approach:

  • Bundled audits: Certifying multiple standards simultaneously reduces audit costs by 30–40% compared to separate certifications. TranslationCert offers bundle pricing that makes multi-standard certification accessible
  • Shared management systems: All ISO management system standards follow the Annex SL high-level structure. Once you build the framework for one standard, extending it to others requires incremental effort, not a complete rebuild
  • Compounding returns: Each additional certification unlocks new client segments and justifies further rate increases. The ROI of multi-standard certification is multiplicative, not additive
  • Surveillance efficiency: Annual surveillance audits can cover multiple standards in a single visit, reducing ongoing maintenance costs

Getting Started in 2026

The best time to start your certification journey is now. Here is the fastest path from zero to certified:

  1. Assess your readiness: Take the free assessment at baltum.ai to understand your starting point and identify gaps (15 minutes)
  2. Choose your first standard: For most agencies, ISO 17100 provides the highest immediate impact. Consider bundling with ISO 9001 for maximum value
  3. Prepare documentation: Use pre-built templates to reduce preparation time by up to 80%. TranslationCert provides comprehensive documentation packages for all standards
  4. Complete your audit: Online certification through TranslationCert can be completed in 2–4 weeks, with expert support throughout the process
  5. Plan your expansion: Once your first certification is in place, map out your multi-standard roadmap based on client demand and market positioning

The translation industry is moving toward a future where certification is not a differentiator but a baseline requirement. Agencies that build their certification portfolio now will be the market leaders of tomorrow. Those that wait risk finding themselves unable to compete for the contracts that matter most.

Ready to build your certification strategy?
Start with a free readiness assessment at baltum.ai or request a quote from TranslationCert. We offer bundle pricing for multi-standard certification starting from €500.