Compliance

Frameworks are
everything.

Built in the same compliant ecosystem as deepidv. Seven regulatory frameworks, one cryptographic attestation — so your agents ship with compliance as a primitive, not an afterthought.

Get IDRead the whitepaper

SOC 2

Type II Certified

ISO 27001

Certified

GDPR

Compliant

EU AI Act

Registration-ready

Regulatory mapping

Every framework, one primitive.

Where other infrastructure forces you to stitch together regulators' requirements, getai.id's registration + attestation model satisfies each of them with the same on-chain credential.

EU AI Act

European Union

Scope — Agent identification + human oversight + conformity assessment. getai.id attests to every high-risk agent's verified operator.

How getai.id satisfies it — ASID registration satisfies Article 49 (registration) + Article 13 (transparency) + Annex IV audit trail.

FATF Rec 16

Global / FATF members

Scope — Travel Rule for agent-initiated transfers. Every party in a VA transaction must be identified.

How getai.id satisfies it — Agent-bound VOC is the legal identifier — satisfies originator + beneficiary identification without exposing PII.

US EO 14110

United States

Scope — AI safety, risk management, and identity attribution for dual-use foundation models.

How getai.id satisfies it — Model fingerprinting + lineage graph lets NIST-aligned risk assessments trace any output to its operator.

MiCA

European Union

Scope — Agent-operated CASPs must disclose the natural person responsible for the service.

How getai.id satisfies it — VOC serves as the regulated disclosure — operators cannot deploy without biometric proof of identity.

GENIUS Act

United States

Scope — Stablecoin agent transactions must attest operator identity to the issuer.

How getai.id satisfies it — Header-embedded attestations (UAIIP-ATTEST-v1) plug into issuer compliance stacks with no custom integration.

GDPR

European Union

Scope — Data minimization and purpose limitation. Any AI processing personal data must disclose its operator.

How getai.id satisfies it — Zero-knowledge attestation is the textbook data-minimization primitive — relying parties see nothing personal.

BSA / AML

United States

Scope — Agent transaction attribution and CDD/EDD requirements for financial institutions.

How getai.id satisfies it — Arbiter screens every registered operator against sanctions, PEP, and adverse-media databases in real time.

FAQ

Compliance questions answered.

Does getai.id help with EU AI Act Article 49 registration?
Yes. ASID registration directly satisfies Article 49 obligations alongside Article 13 transparency and Annex IV audit-trail requirements.
Is getai.id recognized as a Travel Rule identifier under FATF Rec 16?
The agent-bound VOC is engineered to function as the originator/beneficiary identifier without exposing PII.
How does getai.id integrate with NIST AI RMF?
Model fingerprinting plus the lineage graph allow NIST-aligned risk assessments to trace any output to its operator.
What auditors recognize getai.id attestations?
getai.id attestations are designed for SOC 2 Type II and ISO 27001 control frameworks; signed audit bundles export in standard SCAP-compatible formats.
Does getai.id need a DPIA under GDPR?
Zero-knowledge attestation is a textbook data-minimization primitive — relying parties receive no personal data, simplifying DPIA scope.

Regulators don't audit code. They audit who deployed it.

Why getai.id anchors attestations to a verified human — not an API key.

Ship compliant agents today.

Get IDSee how it works