All SupportedCompliance Frameworks
Basenorm brings together EU, global, and industry-specific compliance frameworks through a single control architecture, with automated control mapping, AI-supported documentation, and end-to-end evidence workflows.
Frameworks are supported through reusable controls, not isolated checklists.
ISO 27001:2022
Information Security Management
SOC 2
Service Organisation Controls
GDPR
EU Data Protection Regulation
NIS2
Network and Information Security Directive
DORA
Digital Operational Resilience Act
EU AI Act
Artificial Intelligence Regulation
ISO/IEC 42001 (AIMS)
AI Management System
ISO 22301
Business Continuity Management
NIST CSF
Cybersecurity Framework
NIST 800-53
Security and Privacy Controls
CIS Controls v8
Critical Security Controls
SOX ITGC
IT General Controls
ISO 27701
Privacy Information Management
ISAE 3000 / ISAE 3402
International assurance engagement standards
PCI DSS
Payment Card Security
TISAX
Automotive Information Security
HIPAA
Healthcare Data Protection
BAIT / VAIT / KAIT
German Financial Regulations
UK GDPR
United Kingdom Data Protection
Cyber Resilience Act
Product Cybersecurity Regulation
Framework Categories
EU Prime Frameworks
High-impact EU regulations and standards mapped directly to the Unified Control Library.
Global Standards
International standards used across regions and industries, aligned through shared controls.
Control Frameworks
Control-based frameworks used as foundations for risk, assurance, and audit readiness.
Industry and Regional
Sector-specific or country-specific requirements built on top of the same control model.
Built for what comes next
Basenorm is designed for organisations dealing with evolving regulations, overlapping standards, and sector-specific requirements.
Frameworks can be mapped, reused, or extended through the Unified Control Library.