Skip to main content
The platform includes foundational endpoints intended to support EU AI Act compliance reporting.
In v0.1, these are foundational stubs (no PDF generation, no immutable/WORM storage). Deployments may gate these to Enterprise tiers.

Health

GET /api/v1/compliance/health
Returns the subscription tier and whether compliance features are enabled.

Export report

POST /api/v1/compliance/export
Generates a compliance export response containing summary stats, incidents, oversight log stubs, and model-card aggregation (when present in action metadata).

Oversight log

GET /api/v1/compliance/oversight
Returns actions that required human approval (based on compliance_metadata).

Export history

GET  /api/v1/compliance/exports
GET  /api/v1/compliance/exports/{export_id}
List previously generated exports for the current organization, or fetch a specific export by ID. Useful for re-downloading a report without regenerating it.

Verify a deployment

POST /api/v1/compliance/verify
Runs a server-side check that asserts the org’s current configuration meets a given standard’s required mappings. Returns a structured verdict (per-control pass/fail) suitable for embedding in a compliance dashboard.

Standards catalog

GET  /api/v1/compliance/standards
GET  /api/v1/compliance/standards/{standard}
Lists supported compliance standards (EU AI Act, SOC 2, etc.) and the per-standard set of ComplianceMapping rows. Mappings link platform features (interventions, approvals, audit log) to the controls they satisfy.

Edit a mapping

PUT  /api/v1/compliance/mappings/{mapping_id}
Update a single ComplianceMapping row (typically used by the console’s compliance editor to attach evidence or notes to a control).