Office ergonomics, screen exposure, remote work and burnout — the invisible OH&S risks of a software company are managed with ISO 45001:2018.
At first glance software looks like low-risk office work — no machine hazards, no chemical exposure, no falls from height. In practice the risks are subtler and long-term: musculoskeletal disorders from long hours of seated screen work (lower back, neck, shoulders, carpal tunnel), digital eye strain, chronic stress and burnout, and the social isolation that can come with remote working. ISO 45001:2018 provides the framework to manage these invisible but real risks systematically.
OH&S law already covers software employers. The EU Framework Directive (89/391/EEC), Directive 90/270/EEC on display screen equipment and the national OSH acts (Arbeitsschutzgesetz in Germany, the UK Health and Safety at Work Act, French Code du Travail, etc.) impose risk-assessment, training and occupational-health obligations on every employer. The "low-risk industry" label does not remove those duties — it simply changes their emphasis.
Burnout has become a chronic problem in software. The World Health Organization classified burnout as an occupational phenomenon in 2019 (ICD-11), and ISO has since published ISO 45003:2021 specifically on psychosocial risk at work. Deadline pressure, technical debt stress, career uncertainty and "always-on" culture all feed it. ISO 45001 places psychosocial risk alongside physical risk; employees' mental health is monitored and improvement actions are planned.
Enterprise customers increasingly ask for OH&S evidence. SMETA and Sedex social audits request OH&S records from software suppliers. European clients now routinely ask for ISO 45001 or equivalent. The certificate is also a talent-attraction and retention factor: younger professionals pay attention to health and safety, mental-health support and remote-work policy when choosing an employer, and 45001 strengthens the employer brand.
The company is 40% hybrid or fully remote, but there is no ergonomic risk assessment for remote workers. Home-office chair, screen and lighting conditions are unassessed; ergonomic complaints (lower-back pain, shoulder stiffness) make up 35% of occupational-health visits but the risk register has no "remote" category. Remote workers and office workers are treated as one homogeneous group. Corrective action: introduce a home-office checklist, provide an ergonomic-equipment budget, make an annual ergonomics refresher mandatory for remote workers, and add a remote category to the risk assessment.
Under EU Directive 90/270/EEC regular display-screen workers are entitled to a funded eye test on joining and at defined intervals. The company has 150+ employees but has not organised systematic eye testing for the last two years. A handful of employees have self-organised their own tests. The directive obligation is actively breached. Corrective action: run a corporate eye-test programme via the occupational health provider (on joining and annually or biennially), publish the glasses-contribution policy, and keep digital records of attendance.
There is no systematic psychosocial risk assessment. The employee engagement survey asks a single "how happy are you?" question and nothing about workload, manager support or career clarity. Four resignations in the last year cited "burnout" — that data has never been fed into the OH&S assessment. Corrective action: adopt a validated psychosocial instrument such as COPSOQ, feed exit-interview data into OH&S analysis, and roll out an Employee Assistance Programme (EAP).
Preparation guides for the other two standards most commonly required in this sector:
ISO 9001 — Quality management system →
ISO 14001 — Environmental management system →
Upload your OH&S Manual, risk assessments (office and remote), ergonomic assessment forms, periodic health surveillance plan, psychosocial survey procedure and emergency response plan to the ISODraft platform. Our AI analyses them against ISO 45001:2018 in two to three minutes; missing clauses and evidence gaps come back with the exact clause number. The first 15,000 characters are free.
OH&S law (the EU Framework Directive 89/391/EEC and its national implementations, including the UK Health and Safety at Work Act) applies to every employer regardless of industry. ISO 45001 is voluntary but answers enterprise-customer expectations. The work may look physically low-risk, but ergonomics, screen exposure and psychosocial risk produce real occupational illness — the standard gives you a systematic way to manage them.
Yes. EU Directive 90/270/EEC (Display Screen Equipment) and national OSH laws cover remote work. The ergonomic risks of the home office (chair, screen, lighting), isolation and work-life balance need to be assessed. A home-office checklist, photo submission or online ergonomics training are accepted ways to discharge the obligation.
Yes. Under ISO 45001 clause 6.1.2.1 and the growing focus on psychosocial risk, burnout is an OH&S category. The WHO classified burnout as an occupational phenomenon in 2019 (ICD-11). ISO 45003:2021 gives specific guidance on managing psychosocial risk at work. Excessive workload, unclear goals, poor communication and career uncertainty are all drivers — the employer has to assess and control them via mental-health support programmes and regular surveys.