Regulatory Framework Crosswalk Mappings
Explore how ARA's 410 ACRs map to 14 major regulatory frameworks. Each mapping is classified as direct (1:1 requirement match), partial (overlapping scope with differences), or complementary (ARA extends the framework's intent).
| Framework | Edition | ACRs | Coverage | Note |
|---|---|---|---|---|
| NIST AI RMF | 1.0 (January 2023) | 348 | 85% | |
| EU AI Act | Regulation (EU) 2024/1689 | 320 | 78% | |
| ISO/IEC 42001 | 2023 | 295 | 72% | |
| SOC 2 | Type II (2017 Trust Services Criteria) | 279 | 68% | |
| ISO/IEC 23894 | 2023 | 254 | 62% | |
| OECD AI Principles | Revised 2024 | 226 | 55% | |
| Executive Order 14110 | October 2023 | 197 | 48% | |
| Google SAIF | June 2023 | 185 | 45% | |
| GDPR | Regulation (EU) 2016/679 | 172 | 42% | Concentrated in Domain 5 |
| IEEE 7000 | 2021 | 156 | 38% | |
| OWASP LLM Top 10 | v1.1 (2023) | 144 | 35% | Concentrated in Domain 7 |
| MITRE ATLAS | v4.0 | 131 | 32% | Concentrated in Domain 7 |
| IEC 61508 | Edition 2.0 (2010) | 115 | 28% | Concentrated in Domain 15 |
| ISO/IEC 22989 | 2022 | 90 | 22% |