Capability · 01
EU AI Act + ISO + NIST
EU AI Act, ISO 42001, ISO 23894, NIST AI RMF, each with article/clause-level mapping.
What this module does
Every AI finding maps to specific regulator articles. EU AI Act risk-tier classification, transparency obligations, ISO 42001 management-system evidence, NIST AI RMF mappings, GDPR Art. 22 automated-decision evidence, produced from live AIBOM data, refreshed weekly.
Capabilities
Four operational capabilities.
Capability · 02
Multi-jurisdiction coverage
GDPR Art. 22, Colorado AI Act, UK AI Bill, Singapore Model AI Governance, Canada AIDA.
Capability · 03
Risk-tier classifier
Per-agent EU AI Act risk-tier classification with the evidence chain a regulator can read.
Capability · 04
DPIA support
Data Protection Impact Assessment artefacts derived from AIBOM and runtime evidence.
Technical detail
What evaluators want to know.
Output formats
PDF · structured JSON · regulator-specific templates where they exist.
Article-level mapping
EU AI Act Articles 9, 13, 14 · ISO 42001 clauses 6.1 / 8.3 · NIST AI RMF Govern/Map/Measure functions.
Customer overrides
Per-agent operational annotations preserved across refresh cycles.
API access
Evidence packets and per-finding queries via API.
Region-prioritized proof
Current region focus: Global. These cards show which proof paths should lead the conversation first.