Skip to content

Compliance

Coalex helps enterprises meet AI-specific regulatory requirements by automatically generating compliance artifacts from your actual governance data.

Supported Frameworks

EU AI Act

The EU AI Act requires organizations deploying high-risk AI systems to demonstrate:

Requirement How Coalex Helps
Risk management Automated risk scoring for every agent output
Data governance Full data lineage through OpenTelemetry traces
Technical documentation Auto-generated from agent declarations and trace metadata
Transparency Complete audit trail of decisions and human reviews
Human oversight Human-in-the-loop escalation and resolution workflow
Accuracy & robustness Quality metrics computed from human corrections

The dashboard provides an EU AI Act Compliance Checklist that auto-fills based on your governance data — showing which requirements are met and which need attention.

ISO 42001

ISO 42001 (AI Management System) requires an organization-wide AI governance framework. Coalex provides:

  • Agent inventory — All declared agents with lifecycle status
  • Risk assessment records — Evaluation history with risk scores
  • Performance monitoring — Health scores and metric trends
  • Incident management — Escalation and resolution records

SOC 2

For SOC 2 Type II audits, Coalex provides:

  • Access controls — API key management and reviewer identity tracking
  • Monitoring — Real-time agent health scoring and alerting
  • Change management — Prompt versioning and A/B testing history
  • Audit logging — Immutable record of all evaluations and resolutions

Compliance Reports

Generate compliance reports from the dashboard under Trust > Compliance:

  1. Select framework — EU AI Act, ISO 42001, or SOC 2
  2. Select time range — The reporting period
  3. Select agents — Which agents to include
  4. Generate — Download a PDF or share a link

Reports include:

  • Executive summary with key metrics
  • Agent-by-agent risk assessment
  • Escalation and resolution statistics
  • Reviewer activity and coverage
  • Quality metric trends

Data Residency

Coalex hosts all data in European regions (eu-west) by default, ensuring GDPR compliance for EU-based organizations. Contact us for custom data residency requirements.