Compliance Framework Catalog
Database-managed framework catalog covering security, privacy, industry, and regional compliance programs.
Showing 20 of 20 frameworks
security(14)
SOC 2 Type II
Service trust criteria for security, availability, processing integrity, confidentiality, and privacy.
ISO/IEC 27001
Information Security Management System (ISMS) requirements.
NIST Cybersecurity Framework 2.0
Govern, Identify, Protect, Detect, Respond, Recover cybersecurity outcomes.
CIS Controls v8
Prioritized cybersecurity best practices for enterprise defense.
AICPA Trust Services Criteria
Control criteria framework underlying SOC reporting.
CIS Benchmarks
Secure configuration baselines for systems and cloud services.
ISO/IEC 27002
Information security controls catalogue supporting ISO 27001 implementation.
ISO/IEC 27005
Information security risk management guidance for risk identification and treatment.
ISO/IEC 27035
Information security incident management lifecycle requirements and practices.
ISO/IEC 27036
Supplier relationship security controls for third-party and supply-chain risk.
NIST SP 800-30
Guide for conducting risk assessments.
NIST SP 800-61
Computer security incident handling guidance.
NIST Zero Trust Architecture
Zero trust principles and reference architectures.
SOC for Cybersecurity
AICPA reporting framework for enterprise cybersecurity risk management.
privacy(6)
GDPR
General Data Protection Regulation for EU personal data protection.
CCPA
California consumer privacy rights and disclosure obligations.
CPRA
California privacy rights expansion with sensitive data obligations.
EU-US Data Privacy Framework
Cross-border data transfer commitments and safeguards.
NIST Privacy Framework
Risk-based privacy engineering and governance outcomes.
UK GDPR
United Kingdom data protection regime based on GDPR principles.
Need a framework that's not listed?
We continuously expand the catalog. Request additions and we'll prioritize based on regulatory impact.