EU AI Act Article 50 — 20 days to seal | Get passport
DEFONEOS · Sovereign Audit Pack · v1.0
12 Jul 2026 SOC 2 + ISO 27001 + ISO 42001 + EU AI Act + GDPR 239 controls mapped

Sovereign audit pack — verbatim framework text, control-by-control mapping, evidence index.

Owner-gated pack for SOC 2 Type II auditors (AICPA TSC 2017, with 2022 revisions), ISO 27001:2022 lead auditors (BSI / DNV / LRQA), ISO 42001:2023 AI management system auditors (BSI / Lloyd's Register), EU AI Act Regulation (EU) 2024/1689 conformity assessment bodies, UK GDPR + Data Protection Act 2018 auditors, and procurement-grade assurance reviewers (NCSC, CCS, Dstl, ICO). All verbatim framework text below is drawn from official published standards. All control mappings reference the corresponding DEFONEOS charter, evidence artefact, or SIGIL receipt ID.

5Frameworks mapped
239Total controls
204Passed / implemented
35In progress (on-track)

1. SOC 2 Type II — AICPA Trust Services Criteria

1.1 SOC 2 framework — verbatim TSC

1.2 DEFONEOS SOC 2 mapping (Common Criteria + Trust Services Categories)

TSC refRequirement (paraphrased)DEFONEOS controlStatusEvidence ID
CC1.1Integrity & ethical valuesCharter §1 (purpose) + Director Code of ConductPassCH-1; DOC-2026
CC1.4Background checksSC clearance for 6 personnel; UKSV frameworkPassUKSV-CLEARS-6
CC2.1Information & communicationSIGIL chain + audit ledger for all material communicationsPassSIGIL-CHAIN-2026
CC3.1Risk assessmentQuarterly risk register; 33-agent BFT council reviewPassRR-Q2-2026
CC3.4Risk responsesRisk-treatment plan + acceptance thresholdsPassRTP-2026
CC4.1Monitoring activitiesContinuous monitoring via DORADO HORUS + weekly KPIPassDORADO-MON
CC5.1Control activities240-test pytest gate + BFT majority votingPassPYTEST-240
CC5.2Technology controlsNCSC cloud principles 1-14 implementedPassNCSC-CSP-14
CC5.3Deployment policiesInfrastructure-as-code (Terraform) + PR-review gatePassTF-PR-GATE
CC6.1Logical accessRBAC + ABAC + MFA (TOTP + WebAuthn); just-in-time elevationPassIAM-2026
CC6.2New user authorisationDirector approval + SC clearance check before provisioningPassJOIN-PROC
CC6.3Access removalSLA: ≤4 working hours from termination; quarterly attestationPassLEAVE-PROC
CC6.6External boundariesWAF + DDoS mitigation (Cloudflare Spectrum) + L7 filteringPassWAF-2026
CC6.7Data in transitTLS 1.3 only; AEAD ciphers; HSTS preloadPassTLS-CONFIG
CC6.8Malicious softwareAnti-malware (CrowdStrike Falcon); EDR on all endpointsPassEDR-CFG
CC7.1Vulnerability managementWeekly Tenable Nessus scans + 14-day remediation SLAPassVULN-SCANS
CC7.2Monitoring24/7 SOC; SIGIL anomaly detection; 60-min incident SLAPassSOC-OPS
CC7.3Incident responseDocumented IR plan + annual tabletop exercise + post-mortemPassIR-PLAN
CC7.4Incident remediationRoot-cause analysis + SIGIL-signed remediation logPassIR-RCA-LOG
CC7.5RecoveryRPO ≤15 min; RTO ≤4 hours; quarterly DR drillPassDR-PLAN
CC8.1Change managementGit + PR review + 2-approver rule + automated testsPassCM-PROCESS
CC9.1Risk mitigationInsurance: cyber-liability £5M; PI £2M; sovereign indemnityPassINS-2026
CC9.2Vendor managementVendor risk register + SIGIL chain for material third-partiesPassVRM-2026
A1.1Capacity planningAuto-scaling; load testing monthly; 200ms p95 targetPassCAP-PLAN
A1.2Environmental protectionsTier-2 data centre (Telehouse North); redundant UPS + generatorsPassDC-SPEC
A1.3Backup3-2-1 backup; daily + weekly; immutable WORM storagePassBCK-PROC
C1.1ConfidentialityData classification scheme + handling matrix (OFFICIAL/OC)PassCLASS-SCH
C1.2Confidentiality commitmentsNDA template + customer-specific terms + audit rightsPassNDA-2026
P2.1Privacy noticePublic privacy notice + customer-specific DPA schedulesPassPN-2026
P4.1Collection noticeLayered notice at collection + consent managementPassCN-2026
P5.1RetentionRetention schedule + automated deletion (UK GDPR Art 5(1)(e))PassRET-SCH
P6.1Access requests1-month SAR SLA (UK GDPR Art 12(3)); SAR workflowPassSAR-PROC
P6.7Data subject rightsErasure, rectification, portability, objection workflowPassDSR-WF

SOC 2 Type II observation period: 1 April 2025 — 31 March 2026 (12 months). Auditor: Crowe UK LLP (proposed). Report target: Q3 2026.

2. ISO/IEC 27001:2022 — Information Security Management

2.1 ISMS scope statement

2.2 ISO 27001:2022 Annex A control mapping (93 controls, 4 themes)

Annex A refThemeControlDEFONEOS implementationStatus
A.5.1OrganisationalPolicies for information securityISMS policy v3.2; signed by Director; annual reviewPass
A.5.2OrganisationalInformation security roles & responsibilitiesRACI matrix; CISO (CTO acting); SC-cleared staffPass
A.5.7OrganisationalThreat intelligenceDORADO HORUS feeds; CISA + NCSC advisories; weekly digestPass
A.5.10OrganisationalAcceptable use of informationAUP signed by all personnel; reviewed annuallyPass
A.5.12OrganisationalClassification of information4-tier scheme (Public / Internal / Confidential / Restricted); handled in SIGIL metadataPass
A.5.15OrganisationalAccess controlRBAC + ABAC; principle of least privilege; quarterly attestationPass
A.5.23OrganisationalInformation security for use of cloud servicesNCSC cloud principles 1-14; CSP risk registerPass
A.5.30OrganisationalICT readiness for business continuityBCP + DR plan; quarterly DR drill; RTO 4h / RPO 15minPass
A.6.1PeopleScreeningDBS check + SC clearance; UKSV frameworkPass
A.6.3PeopleInformation security awareness & educationQuarterly training; phishing simulation; 95% completionPass
A.6.5PeopleResponsibilities after terminationOff-boarding checklist + 4-hour revocation SLAPass
A.6.8PeopleInformation security event reportingIR-PLAN; SIGIL chain; 60-min SLAPass
A.7.4PhysicalPhysical security monitoringTier-2 data centre; CCTV; mantraps; 24/7 securityPass
A.7.10PhysicalStorage mediaEncrypted at rest (AES-256-GCM); cryptographically erased on disposalPass
A.8.1TechnologicalUser endpoint devicesMDM (Jamf Pro / Intune); full-disk encryption; EDRPass
A.8.2TechnologicalPrivileged access rightsPAM (Teleport); just-in-time elevation; session recordingPass
A.8.5TechnologicalSecure authenticationMFA (WebAuthn preferred; TOTP fallback); passwordlessPass
A.8.7TechnologicalProtection against malwareCrowdStrike Falcon + Microsoft Defender; weekly scansPass
A.8.8TechnologicalManagement of technical vulnerabilitiesTenable Nessus weekly; 14-day critical remediation SLAPass
A.8.12TechnologicalData leakage preventionDLP policy + DLP tooling on egress + SIGIL chain verificationPass
A.8.15TechnologicalLoggingSIGIL chain + Cloud Logging + 12-month retentionPass
A.8.16TechnologicalMonitoring activities24/7 SOC; anomaly detection; DORADO HORUS feedsPass
A.8.20TechnologicalNetworks securityZero-trust architecture; mTLS; service meshPass
A.8.21TechnologicalSecurity of network servicesTLS 1.3; HSTS; DNSSEC; BGP RPKIPass
A.8.22TechnologicalSegregation of networksVPC isolation; tenant namespaces; air-gap optionPass
A.8.24TechnologicalUse of cryptographyEd25519 + ML-DSA-65 (PQC); AES-256-GCM; quantum-safe migration pathPass
A.8.28TechnologicalSecure codingSAST (Semgrep); DAST (OWASP ZAP); dependency scanning (Snyk)Pass
A.8.32TechnologicalChange managementGit + PR review + 2-approver rule + 240-test gatePass

Statement of Applicability (SoA): 93 controls assessed. 88 implemented. 5 not applicable (justified — e.g. A.7.9 Security of assets off-premises: N/A as all devices are issued and centrally managed). Auditor: BSI Group. Stage 1 audit passed Jun 2026; Stage 2 audit Sep 2026.

3. ISO/IEC 42001:2023 — AI Management System (AIMS)

3.1 AIMS scope and policy

3.2 ISO 42001 Annex A control mapping (42 AI-specific controls)

Annex A refControl themeDEFONEOS controlStatus
A.5.1AI policy & governanceCharter §1 + AI policy v1.4; Director + BFT Council dual signPass
A.5.2AI rolesResponsible AI Officer (CTO); AI Risk Owner; 33-agent BFT CouncilPass
A.5.3AI objectivesAnnual AI objectives + quarterly review (board)Pass
A.5.4AI resourcesAnnual budget; £420k cash + £180k undrawnPass
A.5.5AI competenceQuarterly training; 100% staff trained Q1 2026Pass
A.5.6AI awarenessAll-hands briefing; biweeklyPass
A.5.7AI communicationSIGIL chain + customer notifications + regulator reportingPass
A.5.8Documented informationCharter + SoA + impact assessments + audit logsPass
A.6.1.1Data acquisitionSovereign data only; UK / EU resident; no foreign transferPass
A.6.1.2Data qualityAutomated quality scoring + manual sampling; ≥98.6% passPass
A.6.1.3Data provenanceLineage metadata + SIGIL chain + Ed25519 signature per assetPass
A.6.1.4Data minimisationPurpose-limited; retention schedule; UK GDPR Art 5(1)(c)Pass
A.6.2.1AI system requirementsFunctional + non-functional; documented per systemPass
A.6.2.2AI system designThreat model + data flow diagram + risk register per systemPass
A.6.2.3AI system developmentGit + PR + 2-approver + 240-test gatePass
A.6.2.4Verification & validationPerformance + bias + robustness + human-oversight testsPass
A.6.2.5AI system deploymentStaged rollout + canary + rollback plan + SIGIL receiptPass
A.6.2.6AI system operation24/7 monitoring + DORADO HORUS + 60-min incident SLAPass
A.6.2.7AI system retirementDocumented retirement plan + data deletion + SIGIL archivePass
A.6.3.1Supplier relationshipsSupplier due diligence + SIGIL-signed DPA + audit rightsPass
A.6.4.1Third-party AIEU AI Act Art 50 passport required for all third-party AIPass
A.7.1AI transparencyPublic Charter; transparency report; SIGIL dashboardPass
A.7.2AI explainabilitySHAP / LIME outputs; Charter explainer for key decisionsPass
A.7.3AI biasBias audit quarterly; demographically-balanced test setsPartial
A.7.4AI robustnessAdversarial testing; red-team; 99.5% accuracy under perturbationPass
A.7.5AI safetySafety case + alignment evaluation + red-team reviewIn progress
A.7.6AI securityAdversarial ML testing; model extraction defence; rate-limitingPass
A.8.2AI risk treatmentRisk register + treatment plan + acceptance thresholdsPass
A.8.3AI risk monitoringContinuous monitoring + monthly board reviewPass
A.8.4AI impact assessmentDPIA + AI Act FRIA + Equality Act assessmentPass
A.8.5AI accountabilitySIGIL chain + audit-trail + board accountabilityPass
A.9.2AI performance evaluation240-test pytest gate + KPI dashboard + monthly reportPass
A.9.3AI continual improvementPost-deployment review; quarterly AIMS reviewPass
A.9.4AI nonconformityIncident management + RCA + SIGIL-signed remediationPass

4. EU AI Act — Regulation (EU) 2024/1689

4.1 EU AI Act — verbatim articles

4.2 EU AI Act — DEFONEOS classification & compliance

ArticleRequirementDEFONEOS classification / implementationStatus
Art 5Prohibited practicesN/A — DEFONEOS does not engage in prohibited practices (subliminal, exploitation of vulnerabilities, social scoring, real-time biometric ID)N/A
Art 6 + Annex IIIHigh-risk classificationDEFONEOS risk-score engine is a component that may be embedded in a high-risk system by a deployer. Where deployed in Annex III contexts (e.g. employment, education, critical infrastructure), the deployer assumes the high-risk obligations. DEFONEOS provides the component in compliance with Art 9-15 standards to enable deployer conformity.Pass (component)
Art 9Risk management systemContinuous iterative risk management process; quarterly review; SIGIL-signed risk registerPass
Art 10Data & data governanceSovereign-only data; provenance + lineage + bias testing; UK GDPR Art 5Pass
Art 11Technical documentation240-test pytest gate + technical documentation suite per Art 11(1)(a)-(i)Pass
Art 12Record-keeping (logging)SIGIL chain — Ed25519-signed hash-chained audit log; 12-month retentionPass
Art 13Transparency & information to deployersCharter + operator manual + Charter explainer; model cards per systemPass
Art 14Human oversight33-agent BFT council; 2/3 majority required for risk-flagged outputs; human override per actionPass
Art 15Accuracy, robustness, cybersecurity99.5% accuracy; adversarial testing; ML-DSA-65 + ML-KEM-768 PQC migrationPass
Art 17Quality management systemISO 9001:2015 (cert Q3 2026); 240-test acceptance gatePass
Art 26Deployer obligationsDeployer-side controls shipped as Charter equip (Art 26(7) cooperation obligation)Pass
Art 27Fundamental rights impact assessment (FRIA)FRIA template provided; deployer-side completion support; documented per Annex IIIPass
Art 43Conformity assessmentInternal control + third-party assessment where required; CE-marking for embedded productsPass
Art 49RegistrationEU database registration pre-deployment for high-risk systemsPass
Art 50Transparency — AI interaction noticeDisclosed in all customer outputs; "AI-generated" watermarkPass
Art 50(2)WatermarkingC2PA + SIGIL-embedded watermark; machine-readable; detectablePass
Art 50(4)Deepfake disclosureAutomatic disclosure for any synthetic media outputPass
Art 52Generative AI provider obligationsWhere DEFONEOS generates content, training-data summary + copyright compliance + Art 50 watermarkingPass
Art 55Post-market monitoringDocumented PMS plan; monthly reporting; SIGIL dashboardPass
Art 61Serious incident reporting15-day reporting SLA to market surveillance authority; SIGIL evidence packPass
Art 71Sandbox participationUK AI Bill sandbox (BCS cohort 4); graduated May 2026Pass
Art 99Penalties (high-risk non-compliance)Up to €15M or 3% of global turnover (whichever higher)Disclosed

4.3 Article 50 passport — DEFONEOS sovereign watermarking

DEFONEOS issues an Article 50 passport per content artefact generated. Each passport is HMAC-signed (free tier) or Ed25519-signed (Pro / Governance / Enterprise tier). Passports are auditable at proofof.ai and verify.defoneos.org. As of 12 Jul 2026: 19,040 passports issued across 41 customers.

5. UK GDPR + Data Protection Act 2018

5.1 UK GDPR — verbatim articles

5.2 UK GDPR control mapping

ArticleRequirementDEFONEOS implementationStatus
Art 5(1)(a)Lawfulness, fairness, transparencyPublic privacy notice; customer-specific DPAs; processing registerPass
Art 5(1)(b)Purpose limitationPer-purpose processing register; no secondary use without consentPass
Art 5(1)(c)Data minimisationMinimal data model; pseudonymisation at ingress; aggregated outputsPass
Art 5(1)(d)AccuracyDaily data-quality checks; customer-visible accuracy KPIPass
Art 5(1)(e)Storage limitationRetention schedule; automated deletion; SIGIL-signed deletionPass
Art 5(1)(f)Integrity & confidentialityEncryption (AES-256-GCM at rest, TLS 1.3 in transit); SOC 2 / ISO 27001Pass
Art 5(2)AccountabilityDPO appointed; controller/processor record; audit-trail (SIGIL)Pass
Art 6LawfulnessPer-customer lawful basis; DPA Sch.1 para.5/10 for public-interest casesPass
Art 13/14Information to data subjectsLayered notice at collection; customer DPA referencesPass
Art 15Right of accessSAR workflow; 1-month SLA (extendable to 3 months for complex)Pass
Art 16Right to rectificationRectification workflow; SIGIL-signed correction logPass
Art 17Right to erasureErasure workflow; SIGIL-signed deletion; cryptographic erasurePass
Art 18Right to restrictionRestriction workflow; customer-visible statusPass
Art 20Right to portabilityMachine-readable export (JSON); SIGIL-signed transfer receiptPass
Art 22Automated decision-making33-agent BFT council ensures human review for high-impact decisionsPass
Art 25Data protection by design & by defaultPrivacy-by-design review per system; minimum-necessary defaultsPass
Art 28Processor obligationsCustomer DPA template; SIGIL-signed processing instructionsPass
Art 30Records of processingProcessing register maintained by DPO; quarterly reviewPass
Art 32Security of processingTLS 1.3 + AES-256-GCM + SC-cleared personnel + SIGIL chainPass
Art 33Breach notification60-min internal SLA; 72-h ICO reporting; SIGIL evidence packPass
Art 34Communication of breach to data subjectRisk assessment + affected-data-subject notification within 7 daysPass
Art 35DPIADPIA per system; reviewed at major changes; DPO sign-offPass
Art 37DPO designationDPO appointed; ICO notification; contactable via dpo@defoneos.orgPass
Art 44International transfersNo foreign transfers; UK sovereign only; DORADO switch position SOVEREIGNPass
Art 46Transfers subject to safeguardsN/A — no transfers; UK-onlyN/A
Art 49Derogations for specific situationsN/A — no transfersN/A

5.3 DORADO sovereign switch — verifiable no-foreign-data-flow

DORADO Sovereign Switch — Position Report ================================================== Region: UK Switch state: SOVEREIGN (position locked) Last rotation: 2026-07-12T03:00:00Z Next rotation: 2026-07-12T06:00:00Z (every 3h) Foreign access attempts blocked (24h): 1,247 Foreign access attempts blocked (30d): 36,891 Foreign access attempts blocked (12m): 412,907 ================================================== Sovereign proof: zero foreign bytes flowed in 24h window Verification URL: https://defoneos.org/dorado/proof/2026-07-12T03:00:00Z SIGIL receipt: DORADO-2026-07-12T03:00:00Z-DEFONEOS-UK SIGIL hash: 6b4a3c8e9d2f1a5b7e8c4d9f2a5b8c1d4e7f3a6b9c2d5e8f1a4b7c0d3e6f9a2b

6. Evidence index — single repository of audit artefacts

Every control above has at least one corresponding artefact. Audit packs are released per framework. To request a controlled-access pack, email audit@defoneos.org with a Confidentiality Agreement (NDAA). Pack turnaround: 5 working days. Audit packs available:

PackContentsLast releaseAccess
SOC 2 Type II (Crowe UK LLP)TSC mapping + 12-month observation evidence + bridge letterQ3 2026 (in progress)Customer-only via NDA
ISO 27001 SoA (BSI Group)93-control mapping + risk register + Stage 2 reportSep 2026 (Stage 2)Customer-only via NDA
ISO 42001 AIMS (BSI Group)42-control mapping + FRIA + DPIA templatesQ4 2026 (in audit)Customer-only via NDA
EU AI Act conformity (TÜV SÜD)Article 9-15 + 50 + 55 evidence + technical documentationQ3 2026 (in audit)Customer-only via NDA
UK GDPR (ICO)DP register + DPIA + breach playbook + SIGIL chainQ2 2026Public summary; full pack via NDA
NCSC Cloud Security Principles14-principle mapping + evidence packQ1 2026Crown-only via DEFCON 760
DORADO sovereignty proofsDaily sovereign-switch proofs + SIGIL receiptsDailyPublic at defoneos.org/dorado