Services
(50 standards)Industries: Services
GDPR
General Data Protection Regulation (EU) 2016/679
PCI DSS 4.0
Payment Card Industry Data Security Standard
CCPA/CPRA
California Consumer Privacy Act & California Privacy Rights Act
LGPD
Lei Geral de Proteção de Dados Pessoais — Brazil General Data Protection Law
PIPL
Personal Information Protection Law — 中华人民共和国个人信息保护法
ISO/IEC 27017:2015
Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services
ISO/IEC 27018:2019
Information technology — Security techniques — Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors
ISO/IEC 27701:2019
Security techniques — Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management — Requirements and guidelines
ISO/IEC 42001:2023
Information technology — Artificial intelligence — Management system
ISO 9001:2015
Quality management systems — Requirements
ISO 14001:2015
Environmental management systems — Requirements with guidance for use
ISO 45001:2018
Occupational health and safety management systems — Requirements with guidance for use
ISO 31000:2018
Risk management — Guidelines
ISO 50001:2018
Energy management systems — Requirements with guidance for use
ISO 19650 (Series)
Organization and digitization of information about buildings and civil engineering works, including building information modelling (BIM)
EU AI Act
Regulation (EU) 2024/1689 — Artificial Intelligence Act
ISO 22301:2019
Security and resilience — Business continuity management systems — Requirements
FedRAMP
Federal Risk and Authorization Management Program — Cloud Service Security Authorization
DORA
Digital Operational Resilience Act — EU Regulation (EU) 2022/2554
NIS2 Directive
Directive (EU) 2022/2555 — Measures for a High Common Level of Cybersecurity Across the Union
SOX
Sarbanes-Oxley Act of 2002 — U.S. Public Company Accounting Reform and Investor Protection Act
COPPA
Children's Online Privacy Protection Act of 1998
ISO/IEC 20000-1:2018
Information technology — Service management — Part 1: Service management system requirements
ISO 37001:2016
Anti-bribery management systems — Requirements with guidance for use
CSA STAR
Cloud Security Alliance Security, Trust, Assurance and Risk Program
Cyber Essentials
UK Government-Backed Cyber Security Certification Scheme
ISO 28000:2022
Security and resilience — Security management systems — Requirements
ISO/IEC 27002:2022
Information security, cybersecurity and privacy protection — Information security controls
ISO 37301:2021
Compliance management systems — Requirements with guidance for use
EU DSA
Digital Services Act — Regulation (EU) 2022/2065
EU CRA
Cyber Resilience Act — Regulation (EU) 2024/2847
NYDFS 23 NYCRR 500
New York Department of Financial Services — Cybersecurity Requirements for Financial Services Companies
PDPA (Singapore)
Personal Data Protection Act 2012 — Singapore Data Protection Law
APPI
Act on the Protection of Personal Information — 個人情報の保護に関する法律
PIPEDA
Personal Information Protection and Electronic Documents Act — Canadian Federal Privacy Law
HITRUST CSF
HITRUST Common Security Framework — Healthcare-Focused Certifiable Security & Privacy Framework
NIST AI RMF 1.0
AI Risk Management Framework — NIST AI 100-1
CSRD
Corporate Sustainability Reporting Directive — Directive (EU) 2022/2464
IFRS S1 / IFRS S2
ISSB Sustainability Disclosure Standards — General and Climate-related Disclosures
MiCA
Markets in Crypto-assets Regulation — Regulation (EU) 2023/1114
Colorado AI Act
SB24-205 — Consumer Protections for Artificial Intelligence
SOC 1 Type II
Service Organization Control 1 — Internal Controls over Financial Reporting (SSAE 18)
EU Entry/Exit System (EES)
Regulation (EU) 2017/2226 — Biometric Records of Non-EU Short-Stay Travellers
EU AMLA & AML Package
AML Authority and AMLR/AMLD6 — Regulations (EU) 2024/1620, 2024/1624 and Directive (EU) 2024/1640
FATF Travel Rule
FATF Recommendation 16 — Information Sharing for Wire and Virtual Asset Transfers
India DPDP Act
Digital Personal Data Protection Act 2023 and DPDP Rules 2025
EU ESG Ratings Regulation
Transparency and Integrity of ESG Rating Activities — Regulation (EU) 2024/3005
CountEmissionsEU
Greenhouse Gas Emissions Accounting of Transport Services — based on EN ISO 14083:2023
US Corporate Transparency Act
Beneficial Ownership Information Reporting — 31 U.S.C. 5336 and 31 CFR 1010.380
ADA Title II Web Accessibility
28 CFR Part 35 — Web and Mobile Accessibility for State and Local Governments (WCAG 2.1 AA)