top of page
Search

The B Corp Audit Process Broken Down

  • Writer: Laura Matz
    Laura Matz
  • Nov 18, 2025
  • 4 min read

Updated: Nov 25, 2025

Lost in the detail? Need some assurance about the assurance model? We're here to help!


In November 2025 B Lab shared the process for getting certified under the new B Corp standards (v2.1). Here is what you need to know for now:


If we've only got 30 seconds of your attention

  • Audits will now be conducted by an independent assurance provider, through a new platform.

  • B Corp certificates will be valid for 5 years with main audits at years 0, 3 and 5. Some companies will have surveillance audits depending on size and sector.

  • You will get set timelines to fix minor and major nonconformities.


Third party assurance

Thanks in part to a little EU directive called Empowering the Consumers for the Green Transition B Lab will no longer be conducting verifications themselves (or directly contracting the task as they had been doing for companies on the micro small and medium enterprise paths). Audits will now be conducted by an independent third party. The assurance providers that have been announced are To-Cert and SCS Global Services.


The platform

If you are like us, you have been getting used to the B Impact self-assessment. For those of you who haven't, the BIA (or B Impact Assessment app) has had a mini rebrand and the new standards have been added into that interface as a self-assessment tool. As you can imagine you can begin tracking how you are progressing against the new standards there, you can also read the compliance criteria and log evidence there.


This is the news part...


The audit will not be taking place on B Impact, it will take place on the B Lab Digital Certification Platform. This platform will be designed to hold all of the information related to the auditing process including logistical bits like audit scheduling as well as a place to receive and act on reports. This should hopefully be live by March 2026!


Before you get audited

Before we get into the juicy details of the audit process let's take a step backwards. After you register onto the process you must first meet the Foundation Requirements. This will involve "scoping" which will determine which requirements you must meet based on your size and industry, and a risk profile which will determine which additional requirements you must based on the particular risks of your business. The great thing about this is that you will know your eligibility and requirements early in the process! There have been cases in the past where this has only become clear after a long wait in the verification queue.


The timeline at a glance

Audit timeline
Audit timeline

Requirements are split into Year 0, Year 3 and Year 5. After you have met the Year 0 you are a B Corp! Unless you withdraw or you have your license suspended, you are now a B Corp for the next 5 years.


At the recertification audit in year 5 you are expected to meet all requirements across 0, 3 and 5. If successful, you will be issued a new five year B Corp certificate.


Some companies may be audited at intervals other than years 0, 3 and 5. This will depend on the size and type of company as well as the risk level.


What will the audit be like?

At least 10 days before you have your an audit you will receive an Audit Plan. The plan will outline useful details such as the expected length of the audits, whether it will be remote or onsite (and how many sites will be audited), the criteria of the audit and everyone's responsibilities.


If you are having a remote audit, you can expect:

  1. An opening meeting to make introductions, confirm your scope and audit plan, scheduling, confidentiality and an opportunity to ask questions (alongside confirming lots of other admin bits).

  2. The auditors will begin reviewing your self-assessment and evidence.

  3. One opportunity to share initial findings and request missing evidence.

  4. A be a closing meeting in which all of the audit findings will be communicated.


If you are having an onsite audit, you can expect:

  1. A remote review of your evidence and readiness.

  2. An opening meeting as with the remote audit.

  3. Onsite review of documentation and interviews with employees.

  4. A walk-through/tour of the facilities.

  5. A closing meeting as with the remote audit (but in person).


Corrective actions

In your audit findings you will find out if you have any minor or major nonconformities. I'm sure you are very interested to hear the difference between a minor and a major...

(for the full definitions please check page 33 of the B Lab guidance)


  • Minor: The issue is not at risk of causing significant harm to anyone (or the planet), at least not in the short-term. The system itself is not broken but an element is maybe not conforming to the compliance criteria. For example: your document should clearly state the time period but it doesn't.

  • Major: You've completely missed the mark on one of the requirements, or you have a cluster of minor nonconformities showing the system is breaking down, or your control systems are not working to the point where there is a major risk to people or the planet.


These will be in your report alongside a corrective action report. In both cases, you will have to submit a corrective action plan and begin working on closing that nonconformity. The timeframes vary depending on minor or major status as shown below.



Once you have closed any major nonconformities (if you have any) then you will receive your Certification Decision. If all goes well...you receive a B Corp license that is valid for 5 years.



Want to know more or get help with your own B Corp journey? Get in touch

Comments

bottom of page