Regulatory Signals

0 reviews

Regulatory Signals runs live scans of your website, codebase, and AI systems to generate compliance evidence — not templates, not checklists, findings from what your code and site actually do. Scanners: The free website scan captures every tracker and third-party script in a headless browser, then cross-references your Privacy Policy to surface GDPR, CCPA, and ePrivacy gaps with article-level severity ratings. The AI System Risk Scan ($49/mo) classifies EU AI Act risk from your repo code — EU AI Act enforcement begins August 2026. Repo Audit ($99/mo) finds secrets, OWASP LLM Top 10 vulnerabilities, invalid AI model IDs, and false feature claims. MCP Server Audit ($499 one-time) applies 10 MCP-specific security rules and issues a signed certificate with public registry listing. Specialist audits cover AI-generated codebases (Vibe-Coded App Audit, Lovable Security Audit) and browser extensions. Audit Packs: EU AI Act compliance binder ($39 one-time) unblocks enterprise procurement in 48 hours. HIPAA Audit Pack ($9,990) produces the four documents required for hospital procurement. DORA FinTech Audit Pack (€4,990) delivers the ICT Risk Framework, Incident Protocol, TLPT Plan, and Third-Party Register for FCA, BaFin, and AMF regulated firms. Continuous monitoring: HIPAA quarterly re-scans ($1,990/quarter), DORA monthly ICT-incident alerts ($499/mo), and a daily Federal Register feed covering CFPB, SEC, FDA, and USDA filings ($99/mo). Also ships as @regulatorysignals/mcp on npm — compliance checks run natively inside Claude Desktop, Cursor, and Windsurf. Free scan to start. Subscriptions from $49/month.