search

Compliance Framework

Standard/Regulation
Xcavate Compliance Measures

GDPR & CCPA

Data minimisation, user consent, data subject access requests, breach notifications.

ISO/IEC 27001

Information Security Management System (ISMS), incident response planning, risk assessments.

SOC 2 Type II

Data confidentiality, availability, processing integrity.

Industry-specific regulations (e.g., PCI DSS, HIPAA)

Tailored compliance processes where applicable.

AI Act (EU)

Adherence to risk-based AI system classification, transparency obligations.

PreviousContinuous Monitoring and Continuous ManagementNextThreat and Vulnerability Management (TVM)

Last updated