SpanForge Standards
Open, regulator-facing specifications for compliant and trustworthy AI. Each standard maps directly to enforceable obligations — EU AI Act, GDPR, DPDP, CCPA — and ships with audit-ready checklists and CLI tooling.
Standards catalog
All standards are open specifications. Conformance profiles and audit checklists are included in each document.
RFC-0001 SPANFORGE
An open event-schema standard for observability of agentic AI systems. Defines a structured event envelope, 15 compliance and telemetry namespaces, HMAC audit chains, PII redaction, and four conformance profiles — from baseline AI spans to full compliance-grade evidence.
Training Data Compliance Standard
Defines what constitutes compliant training data for AI systems under EU AI Act, GDPR, DPDP Act, and CCPA. Includes a 30+ PII detection framework, redaction standards, data lineage requirements, compliance audit checklists, and Spanforge CLI integration.
Built for regulators, practitioners, and auditors
Regulatory coverage
Each standard maps directly to enforceable articles in EU AI Act, GDPR, DPDP, and CCPA — not aspirational guidelines.
Open & vendor-neutral
Standards are published as open specifications. Any toolchain or framework can implement them without a SpanForge dependency.
Tool-assisted compliance
SpanForge CLI provides reference implementations so teams can move from standard to working compliance pipeline in hours.
Audit-ready evidence
Every standard includes sign-off templates, audit checklists, and evidence formats that satisfy regulator expectations.
How standards are developed
SpanForge standards follow an open RFC (Request for Comments) process. Draft standards are published in the SpanForge repository, open for community feedback, and ratified after a review period. Any practitioner, legal professional, or regulator can submit feedback or propose new standards.