Private Options GRC

Scale compliance, third-party risk, and GRC in one platform

Research-backed cybersecurity and AI governance workflows for healthcare, fintech, and government organizations.

Cross-Sector

SOC 2

SOC 2 Type II

Trust Services Criteria for security, availability, processing integrity, confidentiality, and privacy. The standard for

5 categories69 controls

ISO 27001

ISO/IEC 27001:2022

International standard for information security management systems (ISMS). Provides a systematic approach to managing se

4 categories93 controls

GDPR

General Data Protection Regulation (EU)

EU regulation on data protection and privacy. Applies to any organization processing personal data of EU residents regar

6 categories52 controls

Custom Frameworks

Custom Framework Builder

Build your own compliance framework tailored to your organization's unique regulatory landscape, internal policies, or c

5 categories0 controls

Healthcare

HIPAA

Health Insurance Portability and Accountability Act

U.S. federal law establishing standards for electronic healthcare transactions and national identifiers, and security an

5 categories57 controls

HITRUST CSF

HITRUST Common Security Framework

A certifiable framework that provides a comprehensive, prescriptive, and scalable security and privacy controls framewor

12 categories143 controls

AI Governance

NIST AI RMF

NIST AI Risk Management Framework 1.0

Voluntary framework from NIST to help organizations manage risks associated with AI systems throughout their lifecycle.

4 categories47 controls

ISO 42001

ISO/IEC 42001:2023 AI Management System

International standard specifying requirements for establishing, implementing, maintaining, and continually improving an

7 categories48 controls