Browse every framework Compliance PreCheck can evaluate your documents against. Start with a bundle built for your use case, or pick individual frameworks. One price per check regardless of how many you run against.
Pre-built combinations for common compliance scenarios. Each bundle evaluates your document against every framework inside, in one run, for the same $200.
For healthcare organizations, health tech companies, and business associates. Covers HIPAA Privacy, Security, and Breach Notification rules.
For US-based organizations deploying AI systems. Covers federal AI governance foundations, the current NIST framework and GenAI profile, and the first significant state-level AI …
For organizations handling personal data across jurisdictions. Covers GDPR, CCPA/CPRA, and foundational privacy frameworks.
For any organization doing business in the EU with AI systems. Covers the EU AI Act and companion frameworks that inform its interpretation.
For Australia-based organizations deploying AI systems. Covers the Australia AI Act, national AI policy, and the Standard for AI Transparency Statements.
Core cybersecurity frameworks for any organization. Covers NIST CSF 2.0, PCI DSS, NIST 800-171, and SOC 2 Trust Services Criteria.
For any organization that stores, processes, or transmits payment card data. Covers PCI DSS 4.0.1 requirements and testing procedures.
For organizations selling AI systems to the US federal government. Covers OMB guidance, Executive Orders on AI, and DoD responsible AI requirements.
For US banks, fintechs, and lenders using AI in credit, adverse-action, or consumer-facing decisions. Covers the foundational consumer protection, model risk, and examination frameworks.
For Australian banks, lenders, and fintechs using AI. Covers APRA operational risk, ASIC regulatory guidance on credit and AI, and the overarching Australia AI …
For US medical device manufacturers shipping AI/ML-enabled devices. Covers FDA quality system requirements, AI-enabled device software guidance, and predetermined change control plans.
For multinational organizations deploying AI systems in both US and EU markets. Runs checks against both jurisdictional frameworks in a single pass.
For financial services organizations running any ML or AI models in production. Focuses specifically on model risk governance, validation, and operational resilience.
Every regulation in the library. Click any framework for detail, coverage, and source.
| Framework | Jurisdiction | Issuing Body | Year |
|---|---|---|---|
|
APRA CPS 230 — Operational Risk Management
Australian Prudential Standard for operational risk management in financial institutions, including technology and AI-related risks.
|
AU | APRA | 2023 |
|
ASIC REP 643 — AI in Financial Services
ASIC report on artificial intelligence in financial services, addressing regulatory expectations and responsible AI use.
|
AU | ASIC | 2019 |
|
ASIC RG 209 — Credit Licensing: Responsible Lending (2025 Update)
Updated ASIC regulatory guide on responsible lending. Applies to AI and algorithmic credit decision systems.
|
AU | ASIC | 2025 |
|
Australia AI Act 2024 — Explanatory Notes
Explanatory footnotes and commentary accompanying the Australian AI Act 2024.
|
AU | Australian Parliament | 2024 |
|
Australia AI Act 2024 — Signed Act
Australian federal legislation establishing regulatory framework for artificial intelligence systems.
|
AU | Australian Parliament | 2024 |
|
Australia Competition and Consumer Act 2010 — Volume 1 (Compiled 2025)
Australian competition law compiled 2025. Relevant to AI market practices, algorithmic pricing, and automated trading.
|
AU | Australian Parliament | 2025 |
|
Australia Competition and Consumer Act 2010 — Volume 2 (Compiled 2025)
Australian consumer protection law compiled 2025. Relevant to AI in consumer-facing applications and automated decision making.
|
AU | Australian Parliament | 2025 |
|
Australia Privacy Act 1988 (Compiled 2025)
Australian federal privacy legislation compiled 2025. Governs AI processing of personal information.
|
AU | Australian Parliament | 2025 |
|
Australia — AI Policy Guide and Template
Template and guide for organizations to develop their own AI governance policies, aligned with Australian regulatory expectations.
|
AU | Australian Government | 2024 |
|
Australia — Automated Decision-Making Better Practice Guide (March 2025)
Australian government guide for best practices in automated decision-making systems including AI transparency and accountability.
|
AU | Australian Government | 2025 |
|
Australia — National AI Plan
Australian national strategy for AI development, adoption, and governance across public and private sectors.
|
AU | Australian Government | 2024 |
|
Australia — Policy for Responsible Use of AI in Government 2.0
Australian government policy establishing principles and requirements for responsible AI use across government agencies.
|
AU | Australian Government | 2024 |
|
Australia — Standard for AI Transparency Statements 2.0
Australian standard for AI transparency statements, requiring organizations to disclose AI use, purpose, and risk assessments.
|
AU | Australian Government | 2024 |
|
EU AI Act — Official Journal L 2024/1689
The European Union Artificial Intelligence Act. Comprehensive regulation establishing risk-based classification and requirements for AI systems in the EU market.
|
EU | European Parliament | 2024 |
|
GDPR — EU General Data Protection Regulation
Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data. 99 articles covering data subject rights, controller obligations, transfers, and enforcement. …
|
EU | European Parliament and Council | 2016 |
|
PCI DSS 4.0.1 — Payment Card Industry Data Security Standard
Requirements and testing procedures for protecting payment account data. 12 principal requirements covering network security, access controls, vulnerability management, monitoring, and information security policies.
|
Global | PCI Security Standards Council | 2024 |
|
21 CFR Part 820 — Quality System Regulation (Medical Devices)
FDA regulation for medical device quality systems. Applies to AI/ML-enabled medical devices including software as a medical device (SaMD).
|
US | FDA | 2026 |
|
AICPA Trust Services Criteria (SOC 2)
Trust Services Criteria for security, availability, processing integrity, confidentiality, and privacy. The standard behind SOC 2 Type I and Type II audit reports.
|
US | AICPA | 2017 |
|
CFPB Circular 2022-03 — Adverse Action Notification Requirements and AI
CFPB circular addressing adverse action notice requirements when creditors use complex algorithms and AI in credit decisions.
|
US | CFPB | 2022 |
|
DoD Responsible AI Strategy and Implementation Pathway
Department of Defense strategy for implementing responsible AI principles across military and defense applications.
|
US | Department of Defense | 2022 |
|
Executive Order 13960 — Promoting the Use of Trustworthy AI
Presidential executive order establishing principles for federal agency use of AI, including transparency, accountability, and civil liberties protections.
|
US | White House | 2020 |
|
FDA Guidance — AI-Enabled Device Software Functions
FDA guidance on regulatory approach to AI/ML-based software as medical device (SaMD) and device software functions.
|
US | FDA | 2024 |
|
FDA Guidance — Predetermined Change Control Plans for AI/ML Devices
FDA guidance for manufacturers of AI/ML-enabled devices on predetermined change control plans allowing iterative model updates.
|
US | FDA | 2023 |
|
Fair Credit Reporting Act (FCRA) — May 2023 Edition
Federal law governing consumer credit reporting. Critical for AI systems used in credit decisions, lending, and financial scoring.
|
US | FTC | 2023 |
|
Federal Register 2020-27065 — AI in Government Final Rule
Federal Register notice establishing requirements for AI use across executive branch agencies.
|
US | Federal Register | 2020 |
|
GLBA Safeguards Rule — 16 CFR Part 314
FTC Standards for Safeguarding Customer Information under the Gramm-Leach-Bliley Act. Requires financial institutions to develop, implement, and maintain a comprehensive information security program.
|
US | Federal Trade Commission | 2025 |
|
HIPAA Administrative Simplification — Combined Rules
Combined HIPAA Privacy Rule, Security Rule, Breach Notification Rule, and Enforcement Rule. The primary federal standard for protecting individually identifiable health information.
|
US | HHS Office for Civil Rights | 2013 |
|
HIPAA — 45 CFR Part 160 (General Administrative Requirements)
General administrative requirements for HIPAA including definitions, applicability, enforcement, compliance, and civil money penalties.
|
US | HHS Office for Civil Rights | 2024 |
|
HIPAA — 45 CFR Part 164 (Security and Privacy)
Full text of 45 CFR Part 164 covering security standards for electronic PHI (Subpart C), breach notification (Subpart D), and privacy of individually identifiable health information (Subpart E).
|
US | HHS Office for Civil Rights | 2024 |
|
M-24-10 — Advancing Governance, Innovation and Risk Management for Agency Use of AI
OMB memorandum on AI governance frameworks, risk management requirements, and innovation guidelines for federal agencies.
|
US | OMB | 2024 |
|
M-25-21 — Accelerating Federal Use of AI through Innovation, Governance and Public Trust
OMB memorandum directing federal agencies to accelerate AI adoption while maintaining governance frameworks and public trust.
|
US | OMB | 2025 |
|
M-25-22 — Driving Efficient Acquisition of AI in Government
OMB memorandum establishing procurement guidance for federal acquisition of AI technologies and services.
|
US | OMB | 2025 |
|
M-26-04 — Increasing Public Trust in AI Through Unbiased AI Principles
OMB memorandum establishing principles to reduce bias in federal AI systems and increase public confidence.
|
US | OMB | 2026 |
|
NIST AI 100-1 — AI Risk Management Framework (AI RMF 1.0)
Comprehensive framework for managing risks in AI systems across the lifecycle. Core functions: Govern, Map, Measure, Manage.
|
US | NIST | 2023 |
|
NIST AI 600-1 — GenAI Profile (Companion to AI RMF)
Companion resource to AI RMF focused specifically on risks unique to generative AI systems including LLMs.
|
US | NIST | 2024 |
|
NIST CSWP 29 — Cybersecurity Framework and AI Risk Management
NIST Cybersecurity White Paper addressing intersection of cybersecurity frameworks and AI risk management.
|
US | NIST | 2024 |
|
NIST SP 800-171 Rev 3 — Protecting CUI
Security requirements for protecting Controlled Unclassified Information (CUI) in nonfederal systems and organizations. Basis for CMMC certification. Required for DoD contractors.
|
US | NIST | 2024 |
|
OCC Bulletin 2011-12a — Sound Practices for Model Risk Management
OCC supervisory guidance on model risk management (SR 11-7 companion). Foundational for AI model governance in banking.
|
US | OCC | 2011 |
|
SEC 2025 Examination Priorities
SEC annual examination priorities including focus areas for AI and technology in financial services compliance.
|
US | SEC | 2025 |
|
CCPA/CPRA — California Consumer Privacy Act
California Consumer Privacy Act as amended by the California Privacy Rights Act. Establishes consumer rights over personal information including rights to know, delete, correct, opt out, and limit …
|
US-CA | California Privacy Protection Agency | 2025 |
|
California AB 2013 — AI Training Data Transparency Act
California legislation requiring transparency in AI training data usage and disclosure requirements.
|
US-CA | California Legislature | 2023 |
Check #5 evaluated a real AI governance policy against 6 federal frameworks. 112 findings, audit-grade.