Compliance

AGCMS ships policy packs for the regulatory frameworks our buyers actually face. Each finding in your audit log links back to the specific article it satisfies.

• HIPAA

  US healthcare PHI handling — §164.312(b) audit controls.

• GDPR

  EU personal data — Art. 17 erasure, Art. 30 records of processing.

• EU AI Act (high-risk)

  Art. 13 transparency, Art. 12 record-keeping for high-risk systems.

• NIST AI RMF

  Govern · Map · Measure · Manage controls for AI risk.

• SOC 2 (CC)

  Common Criteria — CC6 logical access, CC7 system operations.

• PCI-DSS

  Cardholder-data leakage prevention in AI workflows.