Gap Analysis: Customer Support Bot
Cross-framework compliance comparison.
Framework Coverage
67%
4 of 6 frameworks
Worst Classification
Limited Risk
Strictest classification drives governance
Cross-Framework Gaps
1
0 critical
Framework Comparison
| Framework | Jurisdiction | Status | Risk Level | Score | Remediation | Last Assessed |
|---|---|---|---|---|---|---|
EU AI Act EU AI Act | European Union | Assessed | Limited Risk | — | 5/6 | 4/29/2026 |
NIST AI RMF NIST AI Risk Management Framework | United States | Assessed | adequate | 76% | No items | 4/26/2026 |
ISO 42001 ISO/IEC 42001 AI Management System | International | Not assessed | — | — | — | — |
UK AI Safety UK AI Safety Principles | United Kingdom | Not assessed | — | — | — | — |
SOC 2 + AI SOC 2 + AI Controls | United States / Global | Assessed | ready | 84% | No items | 4/21/2026 |
GDPR AI GDPR AI Processing Assessment | European Union | Assessed | largely_compliant | 74% | No items | 4/22/2026 |
Cross-Framework Gaps
mediumISO 42001 · UK AI Safety
Framework Coverage
2 of 6 frameworks have not been assessed. Missing frameworks may have unique requirements not covered by existing assessments.
Compliance Trends
→ Stable| Framework | Current | Previous | Change | Trend | History |
|---|---|---|---|---|---|
EU AI Act 1 assessment | — | — | — | • New | |
GDPR AI Processing Assessment 1 assessment | 74% | — | — | • New | |
NIST AI Risk Management Framework 1 assessment | 76% | — | — | • New | |
SOC 2 + AI Controls 1 assessment | 84% | — | — | • New |