Skip to main content

Regulatory Register

The Regulatory Register tracks which regulations apply to your organization, monitors their compliance status, schedules periodic reviews, and surfaces relevant regulatory updates. Regulations are deployed from a platform-level catalog and tracked per tenant with compliance status, review frequency, assignee, and notes.

Overview

Access from Compliance → Regulatory Register in the sidebar. The module has two sub-sections:

  • Register — Your tracked regulations and compliance posture
  • Updates — Regulatory change alerts filtered by your organization's profile
Regulatory Register page showing header with Add Regulation button, seven summary stat cards (Total 10, Compliant 3 green, Partial 2 orange, Gap 1 red, Under Review 1 blue, Not Assessed 3 gray, Overdue 1 red), filter bar with search, status, jurisdiction, and overdue toggle, and regulation table with columns for Name, Jurisdiction, Body, Status, Frequency, Next Review, and Assignee showing 10 regulations with varied compliance statuses

Summary Statistics

The top bar shows live counts by compliance status:

CardDescription
TotalAll tracked regulations
CompliantFully compliant (green)
PartialPartially compliant (orange)
GapGap identified (red)
Under ReviewCurrently under review (blue)
Not AssessedNot yet evaluated (gray)
OverduePast next review due date (red)

Click any stat card to filter the table to that status.

Regulation Table

ColumnDescription
NameRegulation name (click row to open detail sidecar)
JurisdictionGeographic scope (e.g., US Federal, EU, UK, International)
BodyRegulatory body abbreviation (e.g., NIST, SEC, EC, FTC)
StatusColor-coded compliance status
FrequencyReview cadence (Monthly, Quarterly, Semi-Annual, Annual)
Next ReviewNext review due date — shown in red if overdue
AssigneeAssigned reviewer

Use the search bar and dropdown filters to find regulations by name, compliance status, jurisdiction, or assignee. Toggle Overdue to show only regulations past their review due date.

Adding Regulations

Click + Add Regulation to browse the platform regulation catalog. The catalog is curated at the platform level by operators and includes regulations from major regulatory bodies.

Select one or more regulations and click Deploy to add them to your organization's register. Deployed regulations start with a compliance status of Not Assessed and a review frequency of Annual.

Duplicate deployments are automatically skipped — the same regulation cannot be added twice.

Regulation Detail

Regulation detail sidecar showing Health Insurance Portability and Accountability Act with Compliant status badge and Unassigned dropdown, Regulation Details section with Regulatory Body (Federal Register), Jurisdiction (US Federal), Effective Date, Official Reference link, Industries badges (Healthcare, Insurance), Topics badges (Privacy, Data Protection, Health and Safety), and Description, then Compliance Tracking section with Review Frequency dropdown (Annual), Last Reviewed date picker, Next Review Due date picker, and Notes textarea

Click any regulation row to open the detail sidecar. All fields autosave on change.

  • Title — Regulation name
  • Compliance Status — Dropdown badge (see statuses below)
  • Assignee — Dropdown to assign a reviewer from your team

Regulation Details

FieldDescription
Regulatory BodyIssuing authority name
JurisdictionGeographic scope
Effective DateWhen the regulation took effect
Official ReferenceLink to the official regulation text
IndustriesIndustry tags (e.g., Healthcare, Financial Services, Technology)
TopicsTopic tags (e.g., Privacy, Cybersecurity, AI, Data Protection)
DescriptionSummary of what the regulation covers

Compliance Tracking

FieldDescription
Review FrequencyHow often to reassess — Monthly, Quarterly, Semi-Annual, or Annual
Last ReviewedDate of the most recent compliance review
Next Review DueWhen the next review is scheduled — shown in red when overdue
NotesFree-text compliance notes

Compliance Statuses

StatusColorDescription
CompliantGreenFully meeting all requirements
Partially CompliantOrangeSome requirements met, gaps remain
Gap IdentifiedRedCompliance gaps identified, remediation needed
Under ReviewBlueCompliance status currently being evaluated
Not AssessedGrayHaven't evaluated compliance yet
N/AGrayRegulation doesn't apply to this organization

Bulk Status Update

Select multiple regulations and update their compliance status in one action.

Review Scheduling

Each regulation has a review frequency that determines how often compliance should be reassessed:

FrequencyCadence
MonthlyEvery month
QuarterlyEvery 3 months
Semi-AnnualEvery 6 months
AnnualEvery 12 months

When the Next Review Due date passes, the regulation appears in the Overdue count on the summary cards and the date turns red in the table.

Regulatory Updates

Access from Compliance → Regulatory Register → Updates in the sidebar.

The Updates feed surfaces regulatory changes relevant to your organization based on your configured profile. Updates are ingested from platform-level feed sources (RSS feeds, REST APIs), processed by AI for classification and summarization, and filtered to match your profile.

Configuring Your Profile

Click Configure Profile to set your organization's regulatory interests:

FieldDescription
IndustriesWhich industries apply (e.g., Healthcare, Financial Services, Technology)
JurisdictionsWhich geographic regions to monitor (e.g., US Federal, EU, UK)
TopicsWhich regulatory topics to track (e.g., Privacy, Cybersecurity, AI)
KeywordsCustom keywords for additional matching

Updates are matched against your profile so you only see relevant changes.

Alert Feed

Each regulatory alert shows the update title, AI-generated summary, impact level, source, publication date, and relevant tags (industries, jurisdictions, topics). Alerts have a status workflow:

StatusDescription
UnreadNew alert, not yet reviewed
ReadAlert has been viewed
StarredFlagged for follow-up
DismissedNo action needed

Use Mark all read to clear unread alerts in bulk, or use the bulk status update for targeted changes.

Impact Levels

LevelColorDescription
CriticalRedImmediate action — directly affects current compliance
HighOrangeAction needed soon — significant regulatory change
MediumAmberPlan to address — moderate impact
LowBlueLow priority — minor change
InfoGrayAwareness only — informational

Feed Sources

Regulatory updates are ingested from platform-managed feed sources. Tenants can enable or disable individual feed sources via Sources to control which regulatory bodies they monitor.

Source TypeDescription
RSSAutomated monitoring of regulatory body publications
REST APIProgrammatic feed ingestion from compliance services
JSON FileStructured regulatory data files

AI Processing

Ingested updates are processed by AI to generate:

  • Summary — Concise plain-language summary of the regulatory change
  • Classification — Automatic tagging by industry, jurisdiction, topic, and impact level
  • Affected Regulations — Links to regulations in your register that may be impacted

Platform Catalog

The regulation catalog is maintained at the platform level by operators. Each regulation in the catalog includes:

FieldDescription
NameOfficial regulation name
Short NameCommon abbreviation (e.g., HIPAA, GDPR, CCPA)
Regulatory BodyIssuing authority
JurisdictionGeographic scope
IndustriesApplicable industry tags
TopicsRegulatory topic tags
Effective DateWhen the regulation took effect
Reference URLLink to official text
StatusActive, Proposed, Repealed, or Superseded

Tenants browse the catalog and deploy applicable regulations to their register. The catalog follows the platform's standard "curate at platform level, deploy at tenant level" pattern.