Official Compliance Resources
Direct links to authoritative sources for major compliance frameworks and standards
ISO Standards
ISO/IEC 27001
Information SecurityThe international standard for information security management systems (ISMS).
Note: Purchase required for full standard
ISO/IEC 42001
AI ManagementInternational standard for Artificial Intelligence management systems, addressing the responsible use of AI.
Note: Purchase required for full standard
Payment Card Standards
PCI DSS 4.0
Payment SecurityPayment Card Industry Data Security Standard - requirements for handling credit card data.
Free registration required for access
SOC Standards
SOC 2
Service OrganizationsSystem and Organization Controls framework for service organizations, based on the AICPA Trust Services Criteria.
Healthcare Compliance
HIPAA
HealthcareHealth Insurance Portability and Accountability Act - U.S. legislation for healthcare data privacy and security.
Privacy Regulations
GDPR
EU PrivacyGeneral Data Protection Regulation - EU regulation on data protection and privacy.
CCPA/CPRA
California PrivacyCalifornia Consumer Privacy Act and California Privacy Rights Act - regulations for businesses handling California residents' data.
NIST Standards
NIST Cybersecurity Framework
General SecurityVoluntary framework of computer security guidance developed by the U.S. NIST.
NIST 800-53
Federal SystemsSecurity and Privacy Controls for Federal Information Systems and Organizations.
Disclaimer
The links provided on this page are to official resources maintained by their respective organizations. Infosec Compliance Chat is not affiliated with these organizations and does not claim ownership of their content.
Many official standards require purchase or registration to access the full documentation. Please refer to each organization's website for the most current information on availability and pricing.