Logo_100yearsAfnor_CMYK_White

The "low" risk: what changes for businesses

Facebook
Email
Twitter
LinkedIn
Agri-food expertise

The simplification of controls on economic activities enters a new phase.
With Legislative Decree No. 103 of July 12, 2024, the legislator introduced a system for identifying and assessing "low" risk levels, aimed at making the planning of administrative controls more proportionate, effective, and consistent with the risk profile of economic activities.

In implementation of the provisions of Article 3 of the decree, UNI has published UNI/PdR 186, which provides the technical reference for the identification and assessment of the "low" risk level and for the issuance of the certification report by accredited bodies. The resulting regulatory and technical framework emphasizes objective and verifiable criteria, linking the risk level of companies to elements such as organizational structure, compliance with applicable requirements, and the use of independent assessment tools.

To explore this new regulatory framework and understand its operational implications for businesses, AFNOR Italia has organized a dedicated seminar to be held:

📅 Friday, February 6, 2026
🕙 from 10:00 a.m. to 11:30 a.m.

Registration: https://forms.gle/Hai15EZWFo3tD2e1A  

A paradigm shift in economic activity controls

Legislative Decree 103/2024 establishes a voluntary system that allows companies to demonstrate, in an objective and verifiable manner, their "low" risk level in relation to five key areas:

  • environmental protection
  • public health and hygiene
  • public safety
  • protection of public trust
  • worker safety

The objective is to promote a risk-based control model, moving beyond uniform approaches and introducing criteria based on objective and verifiable elements, capable of distinguishing the most structured and compliant organizations.

The central role of the certification report

A key element of the system is the certification report, which provides formal evidence of the "low" risk level of an economic activity.

The decree establishes that this report may only be issued by bodies that:

  • certification
  • inspection
  • validation or verification

provided that they are:

  • accredited by the recognized national accreditation body, and
  • signatories to the mutual recognition agreements (MRAs) of theEuropean co-operation for Accreditation (EA).

This regulatory choice reinforces the value of accreditation as a guarantee of competence, impartiality, and reliability, while ensuring the European recognition of conformity assessment results.

Accredited certification as a regulatory trust tool

With the introduction of the "low" risk system, accredited certifications take on a new and strategic role.
They are no longer just voluntary tools for organizational improvement, but become relevant elements for the purposes of public control planning.

The parameters considered for risk assessment include:

  • possession of management system certifications issued under accreditation;
  • certifications related to ESG principles;
  • the history of audits undergone by the organization;
  • the sector and characteristics of the economic activity.

Accredited certifications thus take on greater value, becoming qualifying elements in the overall assessment of a company's risk profile, while retaining their voluntary nature.

UNI/PdR 186 as a technical application reference

UNI/PdR 186, published by UNI in implementation of Article 3 of Legislative Decree 103/2024, constitutes the technical reference for the application of the "low" risk identification and assessment system.
The practice does not replace the law, but supports its practical application by providing criteria and operational requirements for the issuance of the certification report by accredited bodies.

UNI/PdR 186 is divided into four parts:

  • UNI/PdR 186-1 – General aspects of the system;
  • UNI/PdR 186-2 – Environmental protection scope;
  • UNI/PdR 186-3 – Public health and hygiene sector;
  • UNI/PdR 186-4 – Worker safety.

Thanks to this structure, the practice provides a structured and consistent technical framework that is useful for companies, conformity assessment bodies, and public administrations.

The AFNOR Italia seminar

The seminar promoted by AFNOR Italia, scheduled for Friday, February 6, 2026, from 10:00 a.m. to 11:30 a.m., aims to:

  • illustrate the system for identifying and assessing "low" risk as provided for in Legislative Decree 103/2024;
  • clarify the role of the certification report and accredited bodies;
  • present the structure and contents of UNI/PdR 186;
  • provide companies and professionals with operational guidelines to navigate the new regulatory and technical framework.

The meeting is aimed at companies, compliance officers, quality, environment, and safety managers, consultants, auditors, and certification professionals.

latest news
from the international network

Agri-food expertise
Taiwan

"Tokyo Metropolitan Corporation" has obtained ISO 9001, ISO 14001, and ISO 45001 management system certifications from "FBI International Certification"

"Fabao International Certification" recently announced that "Tokyo Corporation" has successfully passed international certification for the ISO 9001 Quality Management System, ISO 14001 Environmental Management System, and ISO 45001 Occupational Health and Safety Management System. As an internationally recognized third-party certification body, "Fabao International Certification" conducted a comprehensive assessment of "Tokyo City Company’s" management systems. The certification process included document reviews and on-site audits, confirming that the company’s quality management, environmental protection, and occupational health and safety management systems are operating effectively with no nonconformities, demonstrating the maturity and implementation of its management systems. “Tokyo Metropolitan Corporation” introduced the ISO 9001 Quality Management System in 1999, implemented the ISO 14001 Environmental Management System in 2008, and formally introduced the ISO 45001 Occupational Health and Safety Management System in 2015, becoming the only company in its industry to have passed all three international management system certifications.The company’s occupational safety and health policy is “Full participation, enhancing safety, caring for employees, and safeguarding health,” and it strengthens internal governance through systematic management. The professional certification team at “Fabao International Certification” noted that a company’s simultaneous certification under three management systems signifies that it has established an integrated management mechanism capable of balancing the development of quality, environmental, and occupational health and safety. “Tokyo Company” has long been committed to the establishment and maintenance of management systems, demonstrating its emphasis on sustainable operations and employee health. "Fabao International Certification" has long provided various management system certification services to help companies improve operational efficiency and management performance. In the future, it will continue to promote the implementation of international standard management practices across Taiwan’s industries through professional certification.

Read more "
April 20, 2026
Taiwan

"Jiu Jing International" has passed the ISO 27001 Information Security Management System certification conducted by "Fabao International Certification"

"Fabao International Certification" recently announced that "Jujing International Co., Ltd." has successfully passed the ISO/IEC 27001:2022 international certification for information security management systems, confirming that it has established a management system compliant with international standards for maintaining the confidentiality, integrity, and availability of its information assets. As an internationally recognized third-party certification body, "Fabao International Certification" conducted a comprehensive assessment of "Jujing International" based on the ISO/IEC 27001 standard, covering four key areas: organizational management, personnel security, physical protection, and technical controls. The certification results confirm that the company has established a comprehensive information security management framework, with management procedures and control measures that meet international standards. “Jujing International” is a professional information security value-added reseller that has long assisted enterprises in building information security protection systems. Through the optimization of its internal management systems, the company has integrated information security management into its daily operational processes, demonstrating its commitment to information security. Passing this certification signifies that the information security management of its own operations has reached international standards. The professional certification team at “Fabao International Certification” noted that information security management system certification is not merely a technical confirmation of compliance but also signifies that an organization has established a systematic management mechanism. “Jujing International’s” successful ISO 27001 certification demonstrates its professional capabilities and management practices in the field of information security. "Fabao International Certification" has long provided information security management system certification services, assisting companies in establishing protection mechanisms that comply with international standards. In the future, it will continue to promote the strengthening of information security governance capabilities within Taiwan’s industries through professional certification.

Read more "
April 14, 2026
See all news
Back to top