Resource Library

The AI Runtime Assurance Library

Practical references for the teams turning AI governance from policy language into runtime controls, signed evidence, and review-ready artifacts.

Regulation Deep-Dive

EU AI Act Compliance

The world’s first comprehensive AI regulation. Master the requirements with our detailed guides.

Pillar Guide

The Complete EU AI Act Guide

Everything you need to know about the EU AI Act: risk classifications, compliance timelines, penalties, and implementation strategies.

Read the Guide

EU Member State Implementation Guides

🇩🇪

Germany

Bundesnetzagentur oversight, KI-VO implementation, works council requirements.
🇫🇷

France

CNIL coordination, sectoral regulators, French AI strategy alignment.
🇪🇸

Spain

AESIA sandbox, early adopter status, regional considerations.
🇮🇹

Italy

AgID coordination, Garante privacy integration, sectoral enforcement.
🇳🇱

Netherlands

Autoriteit Persoonsgegevens role, algorithmic impact assessments.
🇧🇪

Belgium

EU institution proximity, federal structure, BIPT coordination.
🇵🇱

Poland

IT outsourcing hub, cross-border compliance, UODO coordination.

Role-Specific EU AI Act Guides

CISO guide

Security requirements, Article 12 logging, cybersecurity integration, incident response.

General Counsel guide

Legal liability, contract requirements, due diligence, regulatory exposure.

CCO guide

Compliance program design, risk assessment, audit preparation, documentation.

CMIO guide

Clinical AI governance, human oversight, diagnostic AI systems, ambient scribes.
Regional Focus

UK AI Regulation

The UK’s pro-innovation approach to AI governance, sector-specific oversight, and comparison with EU requirements.

🇬🇧

UK AI framework

Pro-innovation principles, sector regulators, AI Security Institute, and upcoming legislation.
UK vs EU

UK vs EU AI Act

Regulatory divergence, dual compliance strategies, and cross-border considerations.
Healthcare

UK healthcare AI

MHRA AI-as-medical-device, CQC oversight, NHS AI Lab, and clinical AI requirements.
Financial

UK financial services AI

FCA and PRA AI oversight, Consumer Duty, SM&CR accountability, and model risk.
Regional Focus

US State AI Laws

State-level AI regulation is expanding rapidly. Navigate the evolving patchwork of US AI laws.

Overview

US State AI Laws Overview

Comprehensive survey of state-level AI regulation across the US, from Colorado to California and beyond.

Read the Guide
🌴

California

AB 2013 training data transparency, employment AI rules, bot disclosure, and political deepfakes.
🗽

New York

NYC Local Law 144 hiring audits, RAISE Act frontier safety, LOADinG Act, and NYDFS guidance.
🌲

Washington state

Facial recognition regulation, My Health My Data Act, AI Task Force, and pending HB 1168.
🦫

Oregon

OCPA profiling opt-out, campaign deepfake disclosure, AG guidance, and 2026 amendments.
Colorado AI Act

High-risk AI requirements

 California ADMT

Automated Decision Tech
Framework Analysis

Framework Crosswalks

Understand how different AI governance frameworks align, overlap, and complement each other.

ISO 42001 vs EU AI Act

ISO 42001 vs EU AI Act

Control mapping, certification value, implementation synergies between the AI management standard and regulation.
NIST AI RMF vs EU AI Act

NIST AI RMF vs EU AI Act

US framework alignment with EU regulation, dual compliance strategies for multinational organizations.
EU AI Act vs HIPAA

EU AI Act vs HIPAA

Healthcare AI compliance across jurisdictions, PHI handling with AI systems, dual compliance requirements.
NIST AI RMF

Complete framework guide

 ISO 42001

AI management system

 FDA AI/ML Guidance

Medical device oversight

 SR 11-7

Model risk management
Risk Classification

High-Risk AI Use Case Guides

Detailed compliance guidance for specific AI applications classified as high-risk under the EU AI Act.

Healthcare High-Risk

Ambient AI scribes

Clinical documentation AI, HIPAA intersection, consent requirements, Sharp lawsuit implications.
Healthcare High-Risk

Clinical decision support

CDSS compliance, FDA oversight, medical device classification, clinical workflow integration.
Healthcare High-Risk

AI-assisted diagnosis

Diagnostic AI systems, radiology AI, pathology AI, MDR compliance requirements.
Financial High-Risk

Credit scoring AI

Creditworthiness assessment, ECOA/FCRA compliance, adverse action requirements, model validation.
Financial High-Risk

Insurance underwriting AI

Risk assessment AI, pricing algorithms, claims processing, actuarial model compliance.
HR/Employment High-Risk

Employment AI

Recruitment AI, resume screening, performance evaluation, worker monitoring compliance.
Security High-Risk

Biometric AI systems

Facial recognition, emotion detection, biometric categorization, prohibited uses.
Customer Service Limited Risk

AI chatbots

Transparency requirements, disclosure obligations, when chatbots become high-risk.

More Resources

JPM 2026 Healthcare AI Briefing Healthcare AI Readiness Assessment What is AI Attestation? HIPAA Compliant AI Ambient AI Scribe Privacy Colorado AI Act Guide LLM Security Prompt Injection Defense AI Vendor Due Diligence AI Risk Assessment AI Data Governance AI Supply Chain Security ISO 42001 Certification Journey AI Incident Response Generative AI Policy AI Vendor Due Diligence Checklist AI Runtime Security Assessment Guide Healthcare AI Vendor Evaluation Healthcare Industry Overview

Turn one workflow into evidence

Talk to the team. We map one high-risk AI workflow, place local controls, instrument signed receipts, and assemble the evidence pack reviewers can use.

Talk to the team