ISO 12100 in the new legal reality – why is the draft revision of the standard more important than it seems? For many years, the design of safe machinery was based on a fairly stable framework: the Machinery Directive, a set of harmonized standards, and a risk assessment process based on ISO 12100. For many engineers, this was a world they knew very well. It was enough to identify hazards, apply the appropriate risk reduction measures, and diligently document compliance with the relevant standards. At the same time, in engineering practice there was an interesting systemic loophole. The Machinery Directive allowed the manufacturer to declare conformity without having to indicate specific harmonized standards. So, in theory, it was possible to draw up a Declaration of Conformity based solely on the Directive itself and its essential requirements. In reality, of course, it looked completely different. Every experienced designer knew that it was not possible to meaningfully demonstrate compliance with the essent
Knowledge Base Knowledge

ISO 12100 Revision: What Machine Manufacturers and Designers Should Expect in 2026

MB
Marcin Bakota Compliance Expert
08 March 2026
9 min read
AI Overview

The ISO 12100 revision will reshape machine risk assessment, safety functions, and compliance strategy as the EU Machinery Regulation takes effect.

ISO 12100 Revision: What Machine Manufacturers and Designers Should Expect in 2026

For years, machine safety engineering followed a familiar pattern: the Machinery Directive, harmonised standards, and a risk assessment process built around ISO 12100. For many designers, OEMs, and compliance professionals, that framework was stable and predictable. Identify hazards, estimate and evaluate risk, apply risk reduction measures, and document conformity. The ISO 12100 revision matters because that familiar workflow is now being viewed through a new legal and technical lens. With Regulation (EU) 2023/1230 replacing the Machinery Directive, standards cited in the conformity route will carry greater visibility and greater evidential weight. Against that backdrop, the ISO 12100 revision is not just a standards update. It is a signal that machine risk assessment, safety-related control design, and technical documentation must be tied together more explicitly than before.

Why the ISO 12100 revision matters now

ISO 12100 is the core Type-A standard for machinery safety. It sets out the general principles for risk assessment and risk reduction, including:

  • hazard identification,
  • risk estimation,
  • risk evaluation, and
  • iterative risk reduction.

That basic logic remains fundamental. What is changing is the context in which the standard will be used. Under the old Machinery Directive, a manufacturer could formally declare conformity with essential health and safety requirements without always making the supporting standards highly visible in the declaration itself. In practice, competent engineering teams still relied heavily on harmonised standards. But the structure allowed a degree of opacity.

Under the new EU Machinery Regulation, the conformity framework becomes more explicit. Where standards are used to support compliance, their role is harder to keep in the background. That elevates the significance of ISO 12100 because it is typically the starting point of the entire safety case. Once that starting point is named, the follow-on question is unavoidable: which additional standards were used to implement the selected risk reduction measures?

That is why the current draft direction of the ISO 12100 revision deserves attention now, even before final publication. The expected changes do not overturn the standard. They clarify relationships that good practitioners have already been applying for years.

ISO 12100 revision and the shift from standalone risk assessment to integrated safety design

One of the most important developments signalled by draft material is a clearer link between risk assessment and the engineering measures used to control identified risks. In many organisations, risk assessment has too often been treated as a document produced near project completion. That approach was never good practice, but the revised direction makes it even less defensible.

In reality, ISO 12100 should trigger the entire machine safety architecture. It identifies what must be controlled, but it does not provide the detailed technical design rules for every protective measure. Those rules sit in Type-B and Type-C standards. The practical implication is simple: risk assessment cannot be separated from mechanical guarding, interlocking, control system reliability, safe distances, validation, and user interaction.

For experienced machinery engineers, this is not revolutionary. It is a formal acknowledgement of how robust projects already work.

ISO 12100 revision in a real machine design example

Consider a common application: an operator needs regular access to a hazardous area for cleaning, tool change, jam clearance, or setup. The obvious solution is a movable guard with an interlock or guard locking device.

At first glance, the measure seems straightforward. Install a door, fit a safety switch, stop the machine when opened. But a compliant and defensible design quickly spans multiple standards and disciplines.

  1. ISO 12100 establishes the hazard and the need for risk reduction, such as preventing access to dangerous moving parts during machine operation.
  2. ISO 14120 supports the design and construction of the guard itself, including strength, fixing, and resistance to easy defeat or removal.
  3. ISO 14119 guides the selection and design of interlocking devices associated with guards.
  4. ISO 13857 addresses safety distances to prevent reaching hazardous zones.
  5. ISO 13849-1 applies where the interlock function is part of the safety-related parts of the control system, requiring performance level determination and appropriate architecture.

This is exactly where the revised framing becomes important. ISO 12100 is not the end of the compliance story. It is the structured beginning of it. A risk assessment that identifies the need for an interlocked guard, but does not connect that need to the correct guard standard, interlocking standard, and control system standard, is incomplete as an engineering deliverable.

What the ISO 12100 revision is likely to clarify

Although final wording may still change, the direction indicated by draft work points to several themes with direct practical impact.

Modern machines rely heavily on electrical, electronic, pneumatic, hydraulic, and programmable control systems to deliver risk reduction. Examples include:

  • light curtains that stop hazardous motion,
  • safe speed monitoring,
  • axis position monitoring,
  • robot enabling functions,
  • interlocking with guard locking, and
  • safe mode selection.

Where a protective measure depends on the control system, reliability matters as much as intent. That is why concepts such as fault, failure, and common cause failure are becoming more visible in the risk reduction discussion. Safety is no longer viewed solely through a mechanical design lens. It is increasingly about how technical systems behave under fault conditions and foreseeable misuse.

2. Clearer expectation that risk reduction measures must map to relevant standards

The revised presentation appears to make the route from identified hazard to implemented safeguard more transparent. This has significant consequences for technical files, declarations, and internal design reviews. It will no longer be credible to stop at a generic statement that risk was reduced. The file should show:

  • which hazard was identified,
  • which protective measure was selected,
  • why that measure was appropriate, and
  • which standard supported the design and validation of that measure.

For UK and EU-facing manufacturers alike, this is good engineering discipline regardless of market destination. It strengthens traceability and makes third-party review far easier.

3. Greater attention to foreseeable defeat or circumvention

One of the more realistic themes emerging from draft discussions is that designers should consider the possibility that users will intentionally bypass safeguards. In factory environments, this is not a theoretical concern. It is routine enough to deserve explicit design attention.

If a protective measure repeatedly interferes with production, operators may try to override it. Common examples include:

  • holding an interlock actuator in place while a guard remains open,
  • using magnets to influence non-contact safety sensors,
  • misusing setup or maintenance modes to keep production moving, and
  • repositioning presence-sensing devices so they no longer protect the real hazard zone.

The key issue is not operator blame. It is design realism. If a safeguard creates a constant conflict between safety and productivity, the likelihood of circumvention rises. Good safety design therefore has to consider usability, access frequency, restart logic, diagnostics, and maintainability alongside pure risk reduction performance.

4. Early recognition of cybersecurity as part of machine safety integrity

Another important theme is the growing overlap between machine safety and cybersecurity. Connected machines now routinely include remote access, industrial networking, software updates, and data integration with wider plant systems. In that environment, unauthorised parameter changes, software manipulation, or compromised communications can affect safety-related behaviour.

ISO 12100 is not a dedicated cybersecurity standard, and it is unlikely to become one. However, the emerging emphasis is significant. It reflects a broader industry reality: if digital integrity can influence safety functions, then cybersecurity can no longer be treated as entirely separate from machinery safety strategy.

Why this is not a revolution

It is important to keep the change in perspective. The ISO 12100 revision does not appear to replace the established hierarchy of risk reduction or rewrite the fundamentals of machine safety. Inherently safe design measures still come first. Safeguarding and complementary protective measures still follow. Information for use still remains part of the overall solution, but not a substitute for proper engineering controls.

The main shift is one of emphasis and transparency. The revised approach appears to say more openly what experienced practitioners have long understood:

  • risk assessment is not a paperwork exercise,
  • compliance cannot be defended through general statements alone,
  • safety functions must be engineered with appropriate reliability, and
  • the standards used to implement risk reduction should be visible and coherent.

In that sense, the revision is better seen as a codification of mature practice rather than a disruptive departure from it.

What machine manufacturers and integrators should do now

Even before publication of the final edition, there are sensible steps manufacturers, system integrators, and in-house design teams can take.

Review how risk assessments are produced

If your process still treats risk assessment as a compliance form completed after the design is largely fixed, it needs to change. Risk assessment should drive design choices from concept stage onwards and continue through modification, validation, and handover.

Improve traceability between hazards and safeguards

Technical documentation should clearly connect each identified hazard with the selected protective measure and the supporting design standard. This is especially important for interlocking, safeguarding distances, emergency stop functions, mode selection, and automated motion control.

Strengthen control system justification

Where safety depends on the control system, ensure the required performance level or equivalent reliability target is properly derived, implemented, and validated. Unsupported assumptions are likely to attract far more scrutiny in future audits and conformity reviews.

Assess vulnerability to bypass behaviour

During design review, ask practical questions. Will operators need frequent access? Will the safeguard slow routine tasks excessively? Can maintenance be done without creating incentives to defeat protection? This kind of review often reveals weaknesses that a purely theoretical assessment misses.

Coordinate safety and cybersecurity teams

Where machines include remote access, software-configurable safety behaviour, or connected diagnostics, safety and cybersecurity responsibilities should not sit in isolation. Interfaces, permissions, change control, and secure access arrangements need structured governance.

Final thoughts on the ISO 12100 revision

The real significance of the ISO 12100 revision is not that it introduces a completely new philosophy. Its importance lies in making machine safety engineering more explicit, more integrated, and more accountable. Under the new legal and technical environment, declarations of conformity, technical files, and design decisions will need to reflect the real logic of how safety has been achieved.

For competent manufacturers, that should be welcome. It rewards disciplined engineering and makes weak, generic compliance claims harder to sustain. For everyone involved in machinery design, the message is clear: ISO 12100 remains the foundation, but the foundation must now lead visibly and credibly into the full system of standards and technical measures that make a machine safe in practice.

Frequently Asked Questions

What is the ISO 12100 revision and why is 2026 being mentioned?

The revision of ISO 12100 is an update to the key type-A standard describing the process of risk assessment and risk reduction for machinery (in Poland usually cited as ISO 12100). Around 2026 is often indicated as a realistic time horizon for publication of the final version, because work on the draft (including ISO/DIS 12100:2024) is already well advanced, but the standard has not yet been issued.

In practice, this means it is worth preparing your working methods in advance (risk assessment templates, the way hazards are linked to protective measures), because the changes may affect how clearly you demonstrate the transition from risk assessment to technical solutions.

What is expected to actually change in the ISO 12100 revision when it comes to the approach to risk?

The direction of the changes is not about overturning the risk assessment process, but about more clearly specifying the link between risk assessment and the design of safety functions and control solutions. In other words: less room for risk assessment as a “document,” and more emphasis on its role as an input to technical design.

For experienced designers, this will not be a revolution, because for years they have already linked the results of risk assessment with type B/C standards (e.g. guards, interlocks, SRP/CS). The difference is that the standard is intended to name and structure this more explicitly.

How is the revision of ISO 12100 linked to Regulation (EU) 2023/1230?

The Machinery Regulation (EU) 2023/1230 strengthens the practical weight of standards, because the declaration of conformity must include precise information on the standards/specifications applied. This means that the selection and application of ISO 12100 (and related standards) becomes even more “auditable” in the documentation.

In this context, the revision of ISO 12100 is important, because it may affect the expected way of justifying design decisions: from hazard identification, through risk estimation and evaluation, to the selection of risk reduction measures and their verification.

Do I need to wait until 2026 to change the way I work with ISO 12100?

No. You can already prepare the process so that the risk assessment is “translated” into specific design requirements: which protective measures, which parameters, which safety functions, and which validation assumptions result from it.

Good practice is to ensure that each significant hazard scenario has an assigned risk reduction measure and an indication of which type B/C standards support its design (e.g. EN ISO 13849-1 for safety functions, EN ISO 14120 for guards). This approach is usually consistent with the direction of the revision.

How should protective interlocked doors be described in practice in a risk assessment?

“Door + safety switch” is not enough. The risk assessment must describe the hazards (e.g. access to hazardous motion), hazardous situations (e.g. changeover, cleaning, clearing jams) and exposure conditions, and then specify the protective measure and justify its effectiveness.

Typically, the description should include: the required mode of operation (interlocking, guard locking, and, where applicable, monitoring), control system requirements (the safety function for stop/prevention of start-up), and a reference to the relevant specific standards, if applied.

Ready for a change?

Create an account and generate compliant documentation in 15 minutes.

Start Free Trial No credit card required • 14 days free