AFFIXIO
Regulation mapping
Compliance Hub
Compliance guides for teams evaluating verification infrastructure against UK Online Safety Act age assurance, EU AI Act logging, NIS2 audit evidence, post-quantum procurement, and shadow AI agent governance.
At a glance
- Format
- Buyer checklists, not legal advice
- Evidence
- Sandbox + Merkle verifier reproducible
- Plain text
- /compliance-index.txt for crawlers
- Tools
- Scope checkers and readiness quizzes
- Updated
- 12 July 2026
Verification compliance maps regulations such as the Online Safety Act, EU AI Act Article 12, NIS2, and post-quantum procurement to architecture choices at the allow or deny boundary.
Buyer guides
Choose your starting point
Architecture checklists for engineering, product, and procurement. Each guide links to sandbox evidence and interactive tools.
Online Safety Act age assurance
HEAA four criteria, Part 3 and Part 5 scope, zero-knowledge age paths, and Ofcom evidence pack.
OSA · Part 3 · Part 5EU AI Act Article 12
Automatic logging design obligation, tamper-evident audit, and deployer six-month retention.
Reg 2024/1689 · Art. 12Post-quantum migration
Procurement checklist for ML-DSA, crypto-agility, and long-lived proof risk.
FIPS 204 · ML-DSA-65NIS2 verification evidence
Tamper-evident audit for security incident review and supplier questionnaires.
NIS2 · incident replayShadow AI agent gates
Authorise autonomous actions with signed proof before consequences execute.
KYA · MCP · OWASPRegulatory deadlines
Key enforcement dates on one page for procurement and compliance planning.
2025–2030 timelineSelf-assessment
Interactive tools
Planning aids for scope, readiness, and method scoring. Not legal advice.
Discovery
Indexes and related resources
Machine-readable indexes for crawlers, plus paths for evaluation and trust review.
Plain-text indexes
LLM and search crawlers can read compliance-index.txt and glossary.txt without parsing HTML.
Next steps
Reproduce evidence in the sandbox, follow the 15-minute evaluation, or review the trust centre.
FAQ
Frequently asked questions
Does AffixIO provide legal compliance?
AffixIO provides verification infrastructure and reproducible audit evidence. Legal interpretation remains with your counsel.
Which guide should I read first?
Start with the regulation closest to your boundary, or use regulatory-deadlines if procurement asked for dates.
Are these guides kept current?
Yes. Guides are reviewed against the live sandbox. Last review: 12 July 2026.
Where is the machine-readable index?
See compliance-index.txt and glossary.txt for crawlers.
Can we test without sales calls?
Yes. Sandbox, public tools, and the 15-minute evaluate guide are available.
Reproduce evidence before procurement
Call live verify endpoints, score your readiness, and export Merkle proofs from public tools.