Skip to main content
AgenticAssure

Govern

120 controls. 38 critical.

Controls are severity-weighted and tracked per AI system per framework in the Conformity Pipeline. Select a framework for detail and platform mapping.

Book a demo Govern module

EU AI Act

16 articles tracked, PASS/FAIL pre-deployment certification verdict, honest auto-vs-manual evidence split. Conformity assessment with Annex IV Dossier and Risk Classification Wizard.

30 controls · 13 critical

NIST AI RMF 1.0

72 subcategories across 4 functions (Govern, Map, Measure, Manage). 12 GAI risks mapped. GenAI Profile (NIST AI 600-1) crosswalk included.

17 controls · 3 critical

ISO/IEC 42001:2023

AI Management System (AIMS) standard. Provides requirements for establishing, implementing, maintaining, and continually improving an AI management system.

12 controls

OWASP LLM Top 10

10 categories, 34 attack techniques, 27 vulnerability checks. Full coverage including LLM06 Sensitive Information Disclosure, LLM08 Excessive Agency, LLM09 Vector & Embedding Weaknesses.

10 controls · 3 critical

MITRE ATLAS

Adversarial Threat Landscape for AI Systems - tactics, techniques, and procedures for adversarial ML. All 34 attack techniques mapped to ATLAS TTPs.

7 controls · 2 critical

GDPR AI Subset

AI-specific GDPR obligations: automated decision-making (Art. 22), data protection impact assessments (DPIAs), lawful basis for AI training data, and data subject rights in AI contexts.

10 controls · 4 critical

MAS MindForge

Fairness, Ethics, Accountability, Transparency. 7 risk dimensions, 17 considerations. Purpose-built for Singapore financial services AI governance.

4 controls

AI Verify AIVTF v2.0

11 principles, 62 outcomes, 112 process checks (104 GenAI applicable), 5 technical tests. Crosswalks to NIST AI RMF, ISO/IEC 42001, G7 Hiroshima CoC, NIST AI 600-1.

11 controls · 3 critical

HIPAA

AI-relevant HIPAA obligations for healthcare AI systems - PHI protection, access controls, audit trails, and breach notification requirements for AI-processed health data.

5 controls · 4 critical

PCI DSS 4.0 (AI Profile)

Payment card industry data security applied to AI systems processing cardholder data. Covers secure AI model deployment, data tokenisation, and AI-specific access controls.

4 controls · 2 critical

SOC 2 (AI Controls)

Trust Services Criteria applied to AI systems including security, availability, processing integrity, confidentiality, and privacy controls for AI-powered services.

6 controls · 2 critical

FINRA (AI Profile)

AI-specific regulatory requirements for broker-dealers and financial services including algorithmic trading, customer interaction AI, and supervisory obligations for AI systems.

4 controls · 2 critical

Per-control detail pages export from the platform control library — contact us for the full control ID catalogue aligned to your framework scope.