For auditors · GRC, internal audit, compliance
Evidence without the archaeology.
Audit prep in days, not months. Auditors fetch a signed evidence pack from a URL — verifiable with public keys alone. 173+ control mappings across 13 frameworks. KYE Compliance Mapping Rail™ binds runtime to obligation.
Auditors
Audit prep in days, not months.
KYE Protocol™ exports signed evidence packs mapped to 13 frameworks. 173+ control mappings ride on the KYE Compliance Mapping Rail™. You fetch a URL; you don’t schedule interviews.
SOC 2 · ISO 27001:2022 · PCI DSS 4.0 · PSD2/PSD3 · DORA · NIS2 · EU AI Act · NIST 800-207 · HIPAA · ISO 42001 · NIST AI RMF · GDPR · FedRAMP · NIST CSF
EU AI Act
10 controls. All on the rail.
- KYE-EUAIACT-001 Entity accountability mapping
- KYE-EUAIACT-002 AI system & AI agent registry
- KYE-EUAIACT-003 Capability manifest + risk classification
- KYE-EUAIACT-004 Human oversight decision gates
- KYE-EUAIACT-005 Runtime authority decision logs
- KYE-EUAIACT-006 Technical documentation evidence pack
- KYE-EUAIACT-007 Corrective action & revocation trail
- KYE-EUAIACT-008 Provider / deployer / operator role mapping
- KYE-EUAIACT-009 High-risk workflow profile
- KYE-EUAIACT-010 Post-market monitoring evidence hooks
Evidence types
Four signed projections, one verifiable chain.
- Decision Map™ — per decision, a replayable graph of actor → principal → delegation → capability → authority → scope → state → policy → decision → audit → evidence.
- Evidence Graph™ — decision ↔ authority grants ↔ capability manifests ↔ payloads ↔ audit events ↔ evidence packs.
- Blast Radius Map™ — what breaks if a credential / capability / entity is compromised.
- Compliance Map™ — projection from KYE™ objects to framework controls.