Back to feed
Dev.to
Dev.to
5/9/2026
One Receipt, Nine Regulators

One Receipt, Nine Regulators

Short summary

An IETF Internet-Draft proposes Compliance Receipts—a unified JSON envelope that satisfies audit requirements across nine regulatory regimes (EU AI Act, DORA, NYDFS, Colorado, Texas, NIST, CIRCIA, HIPAA, SEC) without needing per-regime adapters or rewrites. The same wire format handles retention floors, cross-jurisdiction queries, and regime-specific mappings by treating compliance as data, not code changes. A reference implementation at api.asqav.com is available for testing today.

  • One unified Compliance Receipt JSON format covers 9 regulatory regimes without per-regime adapters
  • Regime mapping stays in data (Audit Pack metadata) so adding new regulations doesn't require code changes
  • Reference implementation available at api.asqav.com with pip package and verification via single unauthenticated GET

Generated with AI, which can make mistakes.

#regulation-policy#ai-tools#ai-agents#open-source#industry-adoption
Read full article at Dev.to

Is this a good recommendation for you?

Explore more

Audit Trails for LLM Apps: What Regulators Really Demand
Dev.to
Building a Deterministic Governance Kernel: Separating Custody from Truth
Dev.to
LangChain issue requests EU AI Act audit logging — frameworks need this now
Dev.to
The Audit Trail Is a Data Structure, Not a Log Message
Dev.to