verified_user
Standardful
domain

Finance & Banking

(79 standards)

Industries: Finance & Banking

ISO/IEC 27001:2022Active

ISO/IEC 27001:2022

Information security, cybersecurity and privacy protection — Information security management systems — Requirements

Global
SOC 2 Type IIActive

SOC 2 Type II

Service Organization Control - Trust Services Criteria

United StatesGlobal
GDPRActive

GDPR

General Data Protection Regulation — EU Regulation (EU) 2016/679

European UnionEuropean Economic Area
PCI DSS 4.0.1Active

PCI DSS 4.0.1

Payment Card Industry Data Security Standard

Global
CCPA/CPRAActive

CCPA/CPRA

California Consumer Privacy Act & California Privacy Rights Act

United States
LGPDActive

LGPD

Lei Geral de Proteção de Dados Pessoais — Brazil's General Data Protection Law (Law No. 13,709/2018)

Brazil
PIPLActive

PIPL

Personal Information Protection Law — 中华人民共和国个人信息保护法

China
ISO/IEC 27017:2015Active

ISO/IEC 27017:2015

Code of practice for information security controls based on ISO/IEC 27002 for cloud services

Global
ISO/IEC 27018:2025Active

ISO/IEC 27018:2025

Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors

Global
ISO/IEC 27701:2025Active

ISO/IEC 27701:2025

Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management

Global
ISO/IEC 42001:2023Active

ISO/IEC 42001:2023

Information technology — Artificial intelligence — Management system

Global
ISO 9001:2015Active

ISO 9001:2015

Quality management systems — Requirements

Global
ISO 31000:2018Active (Guidelines - Not Certifiable)

ISO 31000:2018

Risk management — Guidelines

Global
EU AI ActActive

EU AI Act

Regulation (EU) 2024/1689 — Artificial Intelligence Act

European UnionEuropean Economic Area
ISO 22301:2019Active

ISO 22301:2019

Security and resilience — Business continuity management systems — Requirements

Global
NIST CSF 2.0Active

NIST CSF 2.0

Cybersecurity Framework 2.0 — Framework for Improving Critical Infrastructure Cybersecurity

United StatesGlobal
DORAActive

DORA

Digital Operational Resilience Act — EU Regulation (EU) 2022/2554

European UnionEuropean Economic Area
NIS2 DirectiveActive

NIS2 Directive

Directive (EU) 2022/2555 — Measures for a High Common Level of Cybersecurity Across the Union

European UnionEuropean Economic Area
SOXActive

SOX

Sarbanes-Oxley Act of 2002 — U.S. Public Company Accounting Reform and Investor Protection Act

United StatesGlobal
ISO/IEC 20000-1:2018Active

ISO/IEC 20000-1:2018

Information technology — Service management — Part 1: Service management system requirements

Global
ISO 37001:2025Active

ISO 37001:2025

Anti-bribery management systems — Requirements with guidance for use

Global
CSA STARActive

CSA STAR

Cloud Security Alliance Security, Trust, Assurance and Risk Program

Global
Cyber EssentialsActive

Cyber Essentials

UK Government-Backed Cyber Security Certification Scheme

United Kingdom
SWIFT CSPActive

SWIFT CSP

SWIFT Customer Security Programme — Customer Security Controls Framework

Global
ISO/IEC 27002:2022Active

ISO/IEC 27002:2022

Information security, cybersecurity and privacy protection — Information security controls

Global
ISO 37301:2021Active

ISO 37301:2021

Compliance management systems — Requirements with guidance for use

Global
ISO 26000:2010Active

ISO 26000:2010

Guidance on social responsibility

Global
ISO 4217:2015Active

ISO 4217:2015

Codes for the representation of currencies

Global
ISO 8601-1:2019 / ISO 8601-2:2019Active

ISO 8601-1:2019 / ISO 8601-2:2019

Date and time — Representations for information interchange

Global
ISO 3166-1/2/3:2020Active

ISO 3166-1/2/3:2020

Codes for the representation of names of countries and their subdivisions

Global
ISO/IEC 27706:2025Active

ISO/IEC 27706:2025

Information security, cybersecurity and privacy protection — Requirements for bodies providing audit and certification of privacy information management systems

Global
ISO/IEC 42006:2025Active

ISO/IEC 42006:2025

Information technology — Artificial intelligence — Requirements for bodies providing audit and certification of artificial intelligence management systems

Global
ISO/IEC 27006-1:2024Active

ISO/IEC 27006-1:2024

Information security, cybersecurity and privacy protection — Requirements for bodies providing audit and certification of information security management systems — Part 1: General

Global
ISO/IEC 27003:2017Active

ISO/IEC 27003:2017

Information technology — Security techniques — Information security management systems — Guidance

Global
ISO/IEC 27007:2020Active

ISO/IEC 27007:2020

Information security, cybersecurity and privacy protection — Guidelines for information security management systems auditing

Global
ISO/IEC 27013:2021Active

ISO/IEC 27013:2021

Information security, cybersecurity and privacy protection — Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1

Global
ISO 37003:2025Active

ISO 37003:2025

Fraud control management systems — Guidance for organizations managing the risk of fraud

Global
ISO 30201:2026Active

ISO 30201:2026

Human resources management systems — Requirements

Global
ISO 56001:2024Active

ISO 56001:2024

Innovation management system — Requirements

Global
ISO 55001:2024Active

ISO 55001:2024

Asset management — Asset management system — Requirements

Global
ISO 41001:2018Active

ISO 41001:2018

Facility management — Management systems — Requirements with guidance for use

Global
ISO/IEC 27010:2015Active

ISO/IEC 27010:2015

Information technology — Security techniques — Information security management for inter-sector and inter-organizational communications

Global
ISO 10014:2021Active

ISO 10014:2021

Quality management systems — Managing an organization for quality results — Guidance for realizing financial and economic benefits

Global
ISO 34101-2:2019Active

ISO 34101-2:2019

Sustainable and traceable cocoa — Part 2: Requirements for performance (related to economic, social and environmental aspects)

Global
ISO 32210:2022Active

ISO 32210:2022

Sustainable finance — Guidance on the application of sustainability principles for organizations in the financial sector

Global
ISO 37116:2026Active

ISO 37116:2026

Sustainable cities and communities — Disaster risk finance — Principles and general requirements for financing ex-ante investment in risk reduction

Global
ISO 14100:2022Active

ISO 14100:2022

Guidance on environmental criteria for projects, assets and activities to support the development of green finance

Global
ISO 32212:2026Active

ISO 32212:2026

Sustainable finance — Net zero transition planning for financial institutions

Global
NYDFS 23 NYCRR 500Active

NYDFS 23 NYCRR 500

New York Department of Financial Services — Cybersecurity Requirements for Financial Services Companies

United States
PDPA (Singapore)Active

PDPA (Singapore)

Personal Data Protection Act 2012 — Singapore Data Protection Law

Asia PacificSingapore
APPIActive

APPI

Act on the Protection of Personal Information — 個人情報の保護に関する法律

Asia PacificJapan
PIPEDAActive

PIPEDA

Personal Information Protection and Electronic Documents Act — Canadian Federal Privacy Law

Canada
HITRUST CSFActive

HITRUST CSF

HITRUST Common Security Framework — Healthcare-Focused Certifiable Security & Privacy Framework

United StatesGlobal
NIST AI RMF 1.0Active (Voluntary Framework)

NIST AI RMF 1.0

AI Risk Management Framework — NIST AI 100-1

United StatesGlobal
CSRDActive

CSRD

Corporate Sustainability Reporting Directive — Directive (EU) 2022/2464

European UnionEuropean Economic Area
IFRS S1 / IFRS S2Active

IFRS S1 / IFRS S2

ISSB Sustainability Disclosure Standards — General and Climate-related Disclosures

Global
MiCAActive

MiCA

Markets in Crypto-assets Regulation — Regulation (EU) 2023/1114

European UnionEuropean Economic Area
Colorado ADMT ActActive

Colorado ADMT Act

Consumer Protections for Automated Decision-Making Technology — SB24-205 as amended by SB26-189

United States
SOC 1 Type IIActive

SOC 1 Type II

Service Organization Control 1 — Internal Controls over Financial Reporting (SSAE 18)

United StatesGlobal
EU AMLA & AML PackageActive

EU AMLA & AML Package

AML Authority and AMLR/AMLD6 — Regulations (EU) 2024/1620, 2024/1624 and Directive (EU) 2024/1640

European UnionEuropean Economic Area
FATF Travel RuleActive

FATF Travel Rule

FATF Recommendation 16 — Information Sharing for Wire and Virtual Asset Transfers

Global
India DPDP ActActive

India DPDP Act

Digital Personal Data Protection Act 2023 and DPDP Rules 2025

Asia PacificIndia
EU ESG Ratings RegulationActive

EU ESG Ratings Regulation

Transparency and Integrity of ESG Rating Activities — Regulation (EU) 2024/3005

European UnionEuropean Economic Area
US Corporate Transparency ActActive

US Corporate Transparency Act

Beneficial Ownership Information Reporting — 31 U.S.C. 5336 and 31 CFR 1010.380

United States
WCAG 2.2Active (Voluntary Framework)

WCAG 2.2

Web Content Accessibility Guidelines (WCAG) 2.2 — W3C Recommendation (also ISO/IEC 40500:2025)

Global
European Accessibility Act (EAA)Active

European Accessibility Act (EAA)

Directive (EU) 2019/882 — Accessibility requirements for products and services

European UnionEuropean Economic Area
US Bank Secrecy Act / AMLActive

US Bank Secrecy Act / AML

Bank Secrecy Act (Currency and Foreign Transactions Reporting Act) — 31 U.S.C. 5311 et seq. and 31 CFR Chapter X

United States
NIST SP 800-53Active

NIST SP 800-53

Security and Privacy Controls for Information Systems and Organizations — NIST SP 800-53 Rev. 5 (Release 5.2.0)

United StatesGlobal
GHG Protocol Corporate StandardActive (Voluntary Framework)

GHG Protocol Corporate Standard

The Greenhouse Gas Protocol — A Corporate Accounting and Reporting Standard (Revised Edition, with 2015 Scope 2 Guidance)

Global
PSD2Active

PSD2

Revised Payment Services Directive — Directive (EU) 2015/2366

European UnionEuropean Economic Area
OFAC Sanctions Compliance (SDN Screening)Active

OFAC Sanctions Compliance (SDN Screening)

A Framework for OFAC Compliance Commitments — Economic Sanctions Regulations, 31 CFR Chapter V (SDN List screening under IEEPA/TWEA)

United StatesGlobal
CSDDDActive

CSDDD

Corporate Sustainability Due Diligence Directive — Directive (EU) 2024/1760 (as amended by the Omnibus I Directive (EU) 2026/470)

European UnionEuropean Economic Area
California SB 253Active

California SB 253

Climate Corporate Data Accountability Act — SB 253 (Chapter 382, Statutes of 2023; Health & Safety Code §38532), as amended by SB 219

United States
ESRSActive

ESRS

European Sustainability Reporting Standards — Commission Delegated Regulation (EU) 2023/2772

European UnionEuropean Economic Area
MLPS 2.0Active

MLPS 2.0

Cybersecurity Multi-Level Protection Scheme — GB/T 22239-2019 Information Security Technology, Baseline for Classified Protection of Cybersecurity

China
GLBA Safeguards RuleActive

GLBA Safeguards Rule

Standards for Safeguarding Customer Information — 16 CFR Part 314 (Gramm-Leach-Bliley Act)

United States
Essential EightActive (Guidelines - Not Certifiable)

Essential Eight

ASD Essential Eight Maturity Model — Strategies to Mitigate Cyber Security Incidents

AustraliaAsia Pacific
Basel III / Basel III EndgameActive

Basel III / Basel III Endgame

Basel III: Finalising post-crisis reforms (BCBS d424) — Global bank capital, leverage and liquidity framework

GlobalUnited StatesEuropean UnionUnited Kingdom
eIDAS 2.0Active

eIDAS 2.0

European Digital Identity Regulation (EU) 2024/1183 — amending Regulation (EU) No 910/2014

European UnionEuropean Economic Area