Criteria
A Criterion represents an individual requirement, control, or rule within a compliance framework. These are the specific elements used to evaluate whether a document, dataset, or process aligns with the selected compliance standard.
Each compliance framework contains a set of these criteria. During the assessment process, the Compliance Service API evaluates the selected input data against these criteria to determine adherence and identify potential gaps.
Structure of a Criterion
A criterion typically includes:
name: A human-readable label describing the compliance aspect (e.g., Access Control Policy).codeName: A unique, machine-friendly identifier.description: A concise explanation of what the criterion evaluates.
These definitions help structure the automated assessment and guide the user interface in manual review scenarios.
Retrieving Criteria for a Framework
To get the list of criteria associated with a specific compliance framework, use the following endpoint:
Code
Code
Example Response
Code
This response is a flat array of criteria associated with the selected framework.
-
Use this list to populate UI components that allow users to select individual criteria for manual or automated assessment.
-
If your frontend supports advanced UX, consider grouping or filtering criteria based on tags, risk category, or topic (if available in future metadata).
-
Display the criterion description to help users understand what each control checks before running an assessment.
For more detailed specifications of the endpoint and request parameters, see the dedicated API Reference Pages.