Built for compliance professionals and regulated organisations

Audit-IQ delivers practical, AI-assisted capabilities that reduce manual compliance work and improve audit readiness. AI-assisted extraction for APA 2024. Checklist-mode coverage for DIFC DPL, SOC 2, ISO 27001, Essential Eight, ISO 31000, and AI Ethics.

Supported frameworks vary by capability — AI-assisted extraction, checklist workflows, or preview support.

Core Capabilities

Compliance Graph

Regulations trace all the way to obligations, controls, evidence, and coverage in a structured graph. Every coverage verdict is explainable — not a black-box score.

Regulation → Obligation → Control → Evidence → Coverage fully connected
Coverage computed from evidence and test runs, not self-reported status
Every compliance verdict is traceable to its source
Deterministic workflow: same inputs, same coverage result

Obligation Extraction

Automatically identify requirements, obligations, and responsibilities from regulatory documents, policies, and client material.

Extract obligations from APA 2024, EU AI Act Title IV, and internal policies
AI-assisted obligation extraction and structuring
Support for PDFs, Word documents, and web content
Clear, export-ready obligation lists for client or internal use

Evidence Linking

Attach supporting evidence to obligations and controls. The suggestion engine surfaces relevant candidates based on keyword matching — you review each one and confirm before anything is recorded.

Upload policies, test reports, and notes as evidence
Keyword-matched suggestions surface relevant evidence with reasons shown
Nothing is recorded without your action — every attachment is reviewer-confirmed
Obligation-to-evidence mapping for audit preparation and export

Policy Coverage Analysis

Identify coverage gaps and weak areas in your policies against regulatory expectations.

Keyword-based coverage check against regulation master list
Consultant-friendly gap summaries
Priority flags for areas requiring review
Results can be reviewed and enhanced by your compliance team

Compliance Dashboard

Track progress and coverage across your compliance obligations, controls, and evidence — at a glance.

Compliance metrics and obligation-level status
Coverage tracking across APA 2024, SOC 2, ISO 27001, and more
Obligation tracking and preparation progress visibility
Clean exports for auditors, clients, and internal stakeholders

Compliance dashboard

Know your compliance posture at a glance

The readiness dashboard surfaces your audit readiness score, obligation coverage, and open gaps — so your team and auditor are always looking at the same ground truth.

Readiness score computed from evidence-backed controls, not self-assessment
Gap summary shows which obligations are missing evidence and why
Obligation-by-obligation status you can hand directly to an auditor

Compliance dashboard showing 71/100 audit readiness score, 70% obligation coverage, and gap breakdown by obligation

Compliance graph view showing obligations linked to controls and evidence with computed coverage status

How the graph works

Every coverage verdict is traceable to its source

Regulations, obligations, controls, and evidence are connected into a live compliance graph. Coverage is computed deterministically — same inputs, same result, every time.

Regulations map to obligations; obligations map to controls
Evidence is attached by reviewers — nothing is auto-linked
Coverage status derives from test runs and evidence, not self-reporting
Every verdict shows exactly which controls and evidence contributed

Evidence management

Every evidence link is a deliberate reviewer action

Upload policies, test reports, and notes as evidence. Keyword-matched suggestions surface relevant candidates with reasons shown — nothing is recorded without your explicit confirmation.

Suggestions show why each match was surfaced — no black-box ranking
Nothing auto-links — every attachment requires reviewer confirmation
Obligation-to-evidence mapping is included in every compliance export

Evidence management view showing obligation-to-evidence links with keyword-matched suggestions and control side panel open

Audit period workspace showing remediation items with severity levels, action buttons, and linked controls

Remediation tracking

Track every gap to closure

When tests fail or evidence is missing, remediation items surface the gap with severity, due date, and linked control. Every action — Start, Block, Accept risk, Resolve — is tracked and auditable.

Severity-ranked remediation items across all controls
Link directly to the failing control and test run
Consultant-tracked: Start, Block, Accept risk, or Resolve each item
Due dates and open status visible at a glance

Compliance export

One click to an audit-ready compliance report

Generate a point-in-time compliance report with obligation status, evidence confidence, and coverage notes. Delivered as PDF or Excel, with a tamper-evident audit hash on every export.

Point-in-time snapshot — obligations, controls, evidence, and coverage in one file
Client-safe mode strips internal references and is presentation-ready
Audit hash on every export for tamper-evident provenance

Export compliance report dialog showing 7/10 obligations covered, PDF and Excel format options, internal and client-ready export modes

Client deliverables

Presentation-ready audit packs for clients

Client-safe exports strip internal references and produce a clean, structured deliverable — cover page, obligation status, evidence summary, and coverage notes — ready to hand to a client or board.

Client-ready mode separates internal evidence trails from external deliverables
Cover page, structured sections, and audit hash included on every export
Point-in-time snapshot — obligations and coverage at the moment of export

Consultant plan · Available on all projects

Example audit pack cover — generated from project obligations, controls, and evidence

Compliance Graph — Regulation to Coverage

Regulation

e.g. APA 2024

›

Obligation

e.g. breach notification

›

Control

e.g. IR response plan

›

Evidence

e.g. IR-Policy-2024.pdf

›

Coverage

computed deterministically

Regulation

e.g. APA 2024

↓

Obligation

e.g. breach notification

↓

Control

e.g. IR response plan

↓

Evidence

e.g. IR-Policy-2024.pdf

↓

Coverage

computed deterministically

Every node is linked — obligations, controls, evidence, and coverage computed deterministically from test runs.

Built for Compliance Consultants

One workspace. Every client. Audit-ready deliverables.

Audit-IQ consultant portfolio view showing readiness signals and attention queue across client engagements

Consultant workspace

All your clients in one view

The portfolio dashboard surfaces readiness signals, open gaps, and attention items across every client engagement — without switching accounts or losing context.

Readiness risk level and trend for each client at a glance
Attention queue ranks overdue items by severity across all engagements
Coverage delta shows which clients improved or regressed week-on-week

Roadmap

Planned capabilities — prioritised based on customer demand.

Planned – 2026

Regulatory Change Monitoring

Stay informed about updates to the frameworks you rely on.

Monitor APA 2024, Essential Eight, ISO updates
Alerts when requirements change
High-level impact summaries
Suggestions for areas requiring reassessment

Planned – Late 2026

Vendor Risk Assessment Tools

Lightweight tools for consultants and SMEs managing third-party compliance.

Vendor questionnaire templates
Basic risk scoring
Document collection and tracking
Verification checklists

Integrations

Google Drive integration is available. SharePoint and Jira integrations are planned.

SharePoint

Document import & evidence storage

Coming Soon

Google Drive

Import PDFs, DOCX files, and Google Docs directly into projects. Read-only access.

Jira

Task tracking for remediation work

Coming Soon