For governance & risk teams

Map controls to obligations — and defend the mapping.

You map controls to obligations and defend those mappings to auditors and regulators. Apeiris gives you an open, versioned control set with framework provenance, direct-versus-partial coverage, and mapping confidence already attached — so proof travels between the frameworks you answer to instead of restarting inside each.

Read the labels before you rely on a mapping

Every mapping carries a fit (direct / supporting / partial / adjacent), a basis (anchored = the cited id is validated against the framework’s captured primary text; asserted = cited but not yet ingested as an anchor), and a typed relation (only satisfies points at a binding obligation — law, regulation, or supervisory guidance). Coverage is not satisfaction, and evidence you self-attest is labeled as self-attested. The corpus is honest about what it has not yet anchored.

Available today vs. in development

The open corpus is usable now. The runtime platform that watches your environment is being built — we hold that line explicitly.

Available today

  • The Evidence Proof Map, Prove, and the Advisor, over real corpus data
  • Framework coverage manifests: EU AI Act, ISO 42001, NIST AI RMF, SR 26-2, DORA
  • Mapping fit, basis (anchored/asserted), and confidence on every citation
  • A signed, recomputable manifest — verify the corpus yourself

In development

  • Assessor workflow and audit-export packages
  • Evidence-retention tracking and reviewer sign-off
  • Continuous obligation monitoring as your environment changes

See coverage become evidence

Start with one obligation and watch coverage and evidence resolve separately.

Not your role?