Compliance Framework
Standard/Regulation
Xcavate Compliance Measures
GDPR & CCPA
Data minimisation, user consent, data subject access requests, breach notifications.
ISO/IEC 27001
Information Security Management System (ISMS), incident response planning, risk assessments.
SOC 2 Type II
Data confidentiality, availability, processing integrity.
Industry-specific regulations (e.g., PCI DSS, HIPAA)
Tailored compliance processes where applicable.
AI Act (EU)
Adherence to risk-based AI system classification, transparency obligations.
PreviousContinuous Monitoring and Continuous ManagementNextThreat and Vulnerability Management (TVM)
Last updated