Data Licensing

Compliance Intelligence Data

License the world's most comprehensive compliance knowledge graph. 718 frameworks live, 526 source-grounded with structured evidence requirements on every catalogued control. 330,000+ verified cross-framework mappings. The full enterprise compliance catalog.

90-second live API demo

Live API: ISO/IEC 42001:2023 control with structured evidence pack, cross-mapped to ASEAN AI, Australia AI Ethics, FedRAMP, NIST 800-53. Plus CMMC L2 verified against 32 CFR Part 170.

718 frameworks|20,400+ controls|330,000+ verified mappings|160+ countries|Updated daily

Start in 5 minutes

Self-serve checkout

For standard terms, skip the sales conversation. Pay with a card, your API key is provisioned instantly, and a welcome email with sample exports lands in your inbox.

Work email

Company (optional)

I accept the standard Content Feed terms (MSA + DPA).

Need custom terms (white-label config, exclusivity, enterprise volume)? instead.

Data Assets

A structured, verified compliance knowledge graph built from primary regulatory sources.

Framework Database

718 frameworks across 160+ countries, 12 jurisdictions. Updated daily via automated discovery.

718 frameworks

Control Library

20,400+ source-grounded controls organized into 5,901 domains. Full descriptions, codes, requirements.

20,400+ controls

Cross-Framework Mappings

330,000+ MAPS_TO relationships linking controls across standards. The only dataset of its kind at this scale.

330,000+ verified mappings

Industry Taxonomy

12-category industry classification across all frameworks. Healthcare, financial services, government, technology, and more.

12 industries

Evidence Requirements

Structured evidence per control: categories, specific artefacts an auditor expects, common gaps, verbatim source citations, and a confidence percentage. Live across all 718 frameworks (526 source-grounded) with 99.7% controls carrying structured auditor evidence (categories + artefacts + common gaps) with every catalogued control enriched and zero empty fields. The full enterprise compliance catalog, programmatically audited (zero invalid JSON, zero missing keys, zero placeholder sources, zero formatting-rule violations). NIST library (full 800-53 LOW + MODERATE + HIGH baselines, 800-171 R2 + R3, CSF 2.0, AI RMF + GenAI Profile, Privacy Framework, 800-37 R2 RMF, 800-30 R1 Risk Assessment, 800-63 Digital Identity, 800-82 R3 OT/ICS, 800-88 R1 Media Sanitization, 800-128 SecCM, 800-92 Log Management, 800-66 R2 HIPAA, 800-161 R1 SCRM). FedRAMP Moderate + High. ISO standards (27001, 27017, 27018, 27701, 22301, 31000, 42001, 9001, 14001, 45001, 13485). Cloud + financial (CSA CCM v4, CSA STAR, AWS Well-Architected Security, SWIFT CSCF, MAS TRM, HKMA TM-G-1, FFIEC IT Handbook, BCBS 239). Audit + governance (COBIT 2019, COSO IC 2013, SOX 404 / ICFR, SOC 1, SOC 2, PCI DSS 4.0). Life sciences (FDA 21 CFR Part 11). Privacy laws (GDPR, CCPA/CPRA, UK DPA 2018, PIPEDA, LGPD, Indian DPDP, Singapore PDPA, Japan APPI, Korea PIPA, Saudi PDPL, UAE Federal Data Law, Thailand PDPA, South African POPIA, China PIPL, China DSL+CSL, Turkey KVKK, Mexico LFPDPPP, FERPA, COPPA). Sectoral (HIPAA, NY DFS, GLBA, NAIC MDL-668, NERC CIP, IRS Pub 1075). EU regulations (DORA, NIS2, EU AI Act, EU Cyber Resilience Act). Australian (Essential 8, ISM). UK Cyber Essentials. CMMC 2.0 L1 + L2. Expanding daily.

718 frameworks (526 source-grounded), every control enriched

Who Licenses This Data

Compliance intelligence for organizations that need structured, verified regulatory data at scale.

GRC Software Vendors

Embed our framework mappings into your compliance platform.

Consulting Firms

Automate gap analysis across 718 frameworks instead of manual spreadsheets.

Enterprise Risk Teams

Map your controls across every standard your organization must meet.

AI/ML Companies

Train compliance models on verified, structured framework data.

Cyber Insurance

Assess policyholder compliance posture against 20,400+ controls.

Structured API Access

Query the compliance knowledge graph via RESTful API. Get framework metadata, control details, and cross-framework mappings in structured JSON.

RESTful JSON API with comprehensive documentation
Bulk export in JSON, CSV, and custom formats
Real-time updates as frameworks change
Webhook notifications for data changes

GET /api/licensing/frameworks/iso-27001

{
  "code": "ISO27001-A.5.1",
  "official_title": "Policies for information security",
  "framework": "ISO 27001:2022",
  "domain": "A.5 Organizational Controls",
  "text_paraphrased": "An information security policy and topic-specific policies shall be defined, approved by top management, published, communicated to and acknowledged by relevant personnel and interested parties, and reviewed at planned intervals and on significant change.",
  "evidence_requirements": {
    "categories": ["Policy documentation", "Top management approval", "Communication and acknowledgement", "Periodic and event-driven review"],
    "artefacts": [
      "Signed information security policy with version number and effective date",
      "Topic-specific policies (acceptable use, access control, cryptography, supplier security)",
      "Top management approval evidence: board minutes, signed approval page",
      "Per-user acknowledgement records dated for current staff and contractors",
      "Annual policy review minutes with documented outcome"
    ],
    "common_gaps": [
      "Topic-specific policies missing or stale",
      "Approval at IT director level only; clause requires top management",
      "Annual review treated as calendar event without substantive consideration"
    ],
    "sources": ["ISO/IEC 27001:2022 A.5.1", "ISO/IEC 27002:2022 §5.1", "AICPA TSP-100 CC1.1"],
    "confidence": 97,
    "version": "1.0-verified"
  }
}

Licensing Tiers

Flexible licensing for teams of every size. All tiers include daily data updates and new framework additions.

Starter

$5,000/year

Up to 50 frameworks
10K API calls/month
JSON export
Daily data updates
Email support

Professional

$15,000/year

All 718 frameworks
100K API calls/month
Bulk export
Cross-mapping access
Daily data updates
Priority support

Content Feed

$10,000/month

All 718 frameworks, weekly refresh
Bulk export (JSON, CSV, Neo4j dump)
White-label rights
Data escrow
Annual agreement, monthly billing, 30-day termination
Pilot tier: $7,500 for 90 days (25K calls/mo)

All tiers include daily data updates and new framework additions.

Request License Information

Tell us about your use case and we'll send you a detailed licensing proposal.