ISO 20252 is the international quality standard for market, opinion, and social research. Most market research professionals know it exists. Far fewer have read what it actually requires — and fewer still have mapped those requirements against their current operations.
This article does that mapping. Not exhaustively — ISO 20252 is a comprehensive document — but focusing on the operational requirements that are most commonly inadequately addressed.
What the Standard Actually Requires
Project documentation
The standard requires comprehensive project documentation: the brief, the methodology, all material changes to the original plan, and the rationale for those changes. For agencies managing projects through email, this documentation exists — scattered across multiple threads, in different formats, accessible only to the PM who managed the project.
Respondent protection
ISO 20252 requires documented procedures for protecting respondent anonymity and ensuring informed consent. For online panel research, this includes how respondents are recruited, what they are told about how their data will be used, and how their data is stored and protected.
Data quality procedures
The standard requires documented quality control procedures applied at each stage of data collection. This means not just having quality controls — it means being able to demonstrate, with records, that those controls were applied to every project, consistently.
Interviewer and system validation
For online research, this includes validation of the data collection system: that the survey was programmed correctly, that redirects function as intended, and that the data captured matches what was intended. Test respondent documentation is part of this requirement.
Reporting accuracy
The standard requires that reported findings accurately reflect the collected data, with appropriate disclosure of limitations, exclusions, and quality interventions. The exclusion methodology must be documented and disclosed.
The common thread across all of these requirements is documentation. ISO 20252 does not specify which quality controls to use — it specifies that whatever controls are used must be documented, consistently applied, and auditable. The standard is a framework for accountability, not a prescription for method.
An agency whose operations generate comprehensive, automatically stored records of every quality decision is structurally better positioned for ISO 20252 compliance than one whose operations rely on email and manual record-keeping — regardless of how rigorous its actual quality controls are.
SoftSight — SoftSight's audit trail is ISO 20252 aligned. Every project. softsight.io