> For the complete documentation index, see [llms.txt](https://docs.linuxguard.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.linuxguard.io/audit-and-comply.md). # Audit & Comply - [Audit & Comply](https://docs.linuxguard.io/audit-and-comply/audit-comply.md): Compliance mapping hub for LinuxGuard — three-tier vocabulary (Satisfies / Supports / Out of scope), framework version pin reference, scope statement template, and per-framework page template. - [PCI-DSS v4.0.1](https://docs.linuxguard.io/audit-and-comply/audit-comply/pci-dss.md): PCI-DSS v4.0.1 control mapping — LinuxGuard agent and console capabilities aligned to Requirements 2, 6, 7, 8, 10, and 11 with Satisfies / Supports / Out of scope tiers. - [HIPAA](https://docs.linuxguard.io/audit-and-comply/audit-comply/hipaa.md): HIPAA 45 CFR §164 control mapping — LinuxGuard agent and console capabilities aligned to Security Rule technical safeguards with Satisfies / Supports / Out of scope tiers. - [SOC 2](https://docs.linuxguard.io/audit-and-comply/audit-comply/soc2.md): SOC 2 TSC 2017 (rev 2022) control mapping — LinuxGuard agent and console capabilities aligned to Common Criteria and supplemental TSC categories with Satisfies / Supports / Out of scope tiers. - [GDPR](https://docs.linuxguard.io/audit-and-comply/audit-comply/gdpr.md): GDPR Regulation (EU) 2016/679 control mapping — LinuxGuard agent and console capabilities aligned to Article 32 security of processing with IP-as-PII gotcha and Satisfies / Supports / Out of scope tie - [NIS2](https://docs.linuxguard.io/audit-and-comply/audit-comply/nis2.md): NIS2 Directive (EU) 2022/2555 control mapping — LinuxGuard agent and console capabilities aligned to Article 21 risk management measures with member-state transposition note and Satisfies / Supports / - [DORA](https://docs.linuxguard.io/audit-and-comply/audit-comply/dora.md): DORA Regulation (EU) 2022/2554 control mapping — LinuxGuard agent and console capabilities aligned to ICT risk management, incident reporting, and digital operational resilience testing with effective - [EU AI Act](https://docs.linuxguard.io/audit-and-comply/audit-comply/eu-ai-act.md): EU AI Act Regulation (EU) 2024/1689 control mapping — LinuxGuard host-layer telemetry for Art 12 record-keeping and Art 15 cybersecurity of high-risk AI. - [FedRAMP / StateRAMP](https://docs.linuxguard.io/audit-and-comply/audit-comply/fedramp-stateramp.md): FedRAMP Rev 5 and StateRAMP control mapping — LinuxGuard agent and console capabilities aligned to NIST SP 800-53 Rev 5 control families AC, AU, CM, CP, IA, IR, SC, SI, SR with authorization-boundary - [HITRUST + FFIEC](https://docs.linuxguard.io/audit-and-comply/audit-comply/hitrust-ffiec.md): HITRUST CSF v11.x and FFIEC CAT 2017 control mapping — LinuxGuard agent and console capabilities aligned to HITRUST access control, audit, incident response domains and FFIEC Domain 3 (Cybersecurity C - [NIST CSF 2.0](https://docs.linuxguard.io/audit-and-comply/audit-comply/nist-csf.md): NIST Cybersecurity Framework 2.0 control mapping — LinuxGuard agent and console capabilities aligned to PROTECT, DETECT, and RESPOND functions with Satisfies / Supports / Out of scope tiers. - [ISO/IEC 27001:2022](https://docs.linuxguard.io/audit-and-comply/audit-comply/iso-27001.md): ISO/IEC 27001:2022 control mapping — LinuxGuard agent and console capabilities aligned to Annex A Technological controls (A.8.x) with :2013 transition note and Satisfies / Supports / Out of scope tier - [CIS Controls v8.1](https://docs.linuxguard.io/audit-and-comply/audit-comply/cis-controls.md): CIS Controls v8.1 control mapping — LinuxGuard agent and console capabilities aligned to the 18 control families with explicit separation from CIS Benchmarks and Satisfies / Supports / Out of scope ti - [CIS Benchmarks (Linux)](https://docs.linuxguard.io/audit-and-comply/audit-comply/cis-benchmarks.md): CIS Benchmarks Linux control mapping — LinuxGuard agent and console capabilities aligned to per-distro hardening configurations with explicit separation from CIS Controls and Satisfies / Supports / Ou --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.linuxguard.io/audit-and-comply.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.