Skip to main content

Compliance Management

RegPilot’s compliance management system helps you track, manage, and maintain compliance across multiple regulatory frameworks including EU AI Act, GDPR, ISO 27001, and SOC 2.

Supported Frameworks

  • Risk classification and assessment
  • High-risk system requirements
  • Prohibited practices monitoring
  • Transparency obligations
  • Technical documentation

Compliance Score

Your compliance score is calculated based on:
  • Active Violations: Number and severity of current violations
  • Model Compliance: Risk classification alignment
  • Documentation: Completeness of technical documentation
  • Monitoring: Active monitoring and logging
  • Policies: Defined and enforced policies
Score ranges:
  • 90-100: Excellent compliance
  • 70-89: Good compliance
  • 50-69: Needs improvement
  • Below 50: Critical issues

Managing Compliance

View Compliance Status

GET /api/compliance/projects/:projectId/status
Response: 
{
  "overall_score": 87,
  "frameworks": {
    "eu_ai_act": {
      "score": 92,
      "status": "compliant",
      "violations": 2
    },
    "gdpr": {
      "score": 85,
      "status": "compliant",
      "violations": 5
    }
  }
}

Create Compliance Policy

Define custom compliance rules: 
const policy = await regpilot.compliance.policies.create({
  name: "Customer Data Protection",
  framework: "GDPR",
  rules: [
    {
      type: "data_retention",
      max_days: 90,
      severity: "high"
    },
    {
      type: "consent_required",
      data_types: ["personal_info", "financial"],
      severity: "critical"
    }
  ]
});

Compliance Reports

Generate compliance reports for audits:
1

Select Framework

Choose which frameworks to include (EU AI Act, GDPR, etc.)
2

Set Date Range

Select reporting period
3

Include Sections

  • Executive summary
  • Violations log
  • Model registry
  • Technical documentation
4

Export

Download as PDF or send via email

Next Steps

Violations

Track and resolve violations

Policies

Create compliance policies