Delivery Log & Forward Plan
Transparent view of what's shipped, what's in flight, and what's next.
Enterprise-Restricted Features
Compliance cartridges are part of Trust (Enterprise) and may be enterprise-restricted. They are not licensed as OSS modules.
Learn about Enterprise features →Status Key
Enterprise: Available through enterprise licensing and Trust tier
All production features require appropriate licensing for commercial use
✅ Delivered
Production-ready features and frameworks
EU AI Act
High-risk AI systems compliance with risk classification and transparency requirements
GDPR
Data protection and privacy compliance for EU operations
HIPAA
PHI protection and healthcare data governance (US)
SOC 2
Security, availability, and confidentiality controls
ISO 27001
Information security management system certification
ISO/IEC 42001
AI management system standard compliance
SOX
Financial reporting controls and audit trails
CCPA
California Consumer Privacy Act compliance
HITRUST
Healthcare IT security and risk management
NIST
NIST Cybersecurity Framework compliance
QiXPharm
Pharmaceutical AI governance with ALCOA+ and GxP compliance
QiXHealth
Healthcare AI governance with HIPAA PHI protection
QiXCite
Legal citation validation and quote-locking
Multi-Model Quorum
Consensus-based governance across 3-5 LLMs
Evidence Bundles
Cryptographically signed audit trails
Aletheia v2.0 Integration
Ethical AI assessment automation (~65% of facets)
🚚 In Flight
Currently under development
FDA 21 CFR Part 11
In FlightElectronic records and signatures for pharmaceutical/medical device
🗂️ Planned/Backlog
Future initiatives (subject to change)
QiXFinance
Financial services AI governance with SOX and fair lending
HighQiXLaw
Legal AI governance beyond citation (contracts, discovery)
HighQiXGov
Government and public sector AI compliance
MediumQiXMind
Mental health AI governance with ethical safeguards
MediumQiXInsurer
Insurance AI governance with bias detection
LowFederated Governance
Multi-organization distributed governance
HighLive Telemetry Dashboard
Real-time latency and performance metrics
MediumConsole v2.0
Redesigned management console with usage analytics
MediumMobile SDK
Native iOS and Android governance SDKs
LowCompliance Playbooks
Step-by-step compliance implementation guides
MediumRolls-Royce Aletheia Partnership
Formal partnership for Aletheia v2.0 integration
HighRegulatory Sandbox Program
Monetary Authority of Singapore regulatory sandbox
MediumFrequently Asked Questions
Why aren't all cartridges OSS?
Compliance cartridges implement proprietary regulatory logic and require specialized licensing. Enterprise-restricted cartridges are available through our Trust tier for organizations with specific compliance needs.
How are dates sourced?
Dates are automatically derived from repository commit history, manifest files, and CHANGELOG entries. The data is generated at build time to ensure accuracy.
How often is this page updated?
This page is rebuilt with each deployment. The delivery data is automatically synchronized from across all IOA repositories.
Shape the Future of IOA
Have suggestions for new cartridges, QIX frameworks, or features? We'd love to hear from you.