Overview
The Compliance area manages your organization’s regulatory posture end-to-end. From onboarding a regulation through to submitting evidence to an auditor, all compliance activity is tracked, scored, and linked to the obligations that drive it.
Key Concepts
- Regulations & Standards — The external frameworks your organization is subject to (e.g., DORA, ISO 27001, GDPR). Each is onboarded via a guided wizard.
- Obligations — The specific requirements that flow from a regulation. Each obligation must be addressed by one or more controls.
- Controls — The policies, procedures, and technical measures your organization has in place to satisfy obligations. Evidence is collected against controls.
- Posture Score — A calculated score reflecting how well your controls currently satisfy your active obligations. It combines coverage, evidence freshness, and outstanding issues.
- Gap Assessment — An analysis of which obligations are not yet covered by sufficient controls or evidence. The starting point for a remediation plan.
- Licensing Readiness — A workspace for business licenses, permits, postings, fees, credentials, authority layers, and unresolved readiness questions.
What You Can Do
- Onboard a new regulation or standard using the guided wizard
- Map controls to obligations and collect evidence against them
- Review your current compliance posture score and trending direction
- Run a gap assessment and create corrective actions for identified gaps
- Manage risk assessments, incidents, audits, and regulatory submissions
- Maintain your policy library and link policies to the obligations they address
- Track licensing readiness before starting, expanding, or changing regulated activity