853 documents · 33 regulators · 7 regions · live

The regulatory
library, structured.

CompEye maintains a continuously updated, machine-readable register of obligations and controls — pulled directly from regulators across Australia, the US, UK, EU, APAC and Canada. One source of truth for your GRC stack.

Try free → Browse the library
LIVE COVERAGE
checked recently
853
Documents loaded
33
Regulators
3,389
Obligations identified
<4h
Update latency
LIVE FEED
14:32 AESTAPRA · CPS 230Operational risk management — para 47 amendedmodified
11:08 AESTASIC · RG 271Internal dispute resolution — new guidancenew
09:54 AESTAUSTRAC · AML/CTFRules 2007 — section 8.1.2 revisedrevised
yesterdayEU · DORARTS on ICT risk management updatedmodified
yesterdayFCA · PS24/1Consumer Duty review — feedback publishednew
2d agoOSFI · CAR 2026Chapter 4 — credit risk RWA, table 4.3revised
2d agoSEC · Reg S-KItem 402 executive compensation — clarifiedmodified
3d agoHKMA · SPM CG-5Guideline on a sound remuneration systemnew
14:32 AESTAPRA · CPS 230Operational risk management — para 47 amendedmodified
11:08 AESTASIC · RG 271Internal dispute resolution — new guidancenew
09:54 AESTAUSTRAC · AML/CTFRules 2007 — section 8.1.2 revisedrevised
yesterdayEU · DORARTS on ICT risk management updatedmodified
yesterdayFCA · PS24/1Consumer Duty review — feedback publishednew
2d agoOSFI · CAR 2026Chapter 4 — credit risk RWA, table 4.3revised
2d agoSEC · Reg S-KItem 402 executive compensation — clarifiedmodified
3d agoHKMA · SPM CG-5Guideline on a sound remuneration systemnew
Sample feed · real-time monitoring available on Team tier
01 Coverage domains

Every regulator. Every relevant domain.

Our library spans prudential, market conduct, anti-money laundering, privacy, cyber, tax, and insurance regulation — pulled from primary sources, normalised into one schema.

02 The library

Browse every regulator we track.

Real-time coverage status, by region. Green = fully loaded, amber = in progress, red = early stages. We publish coverage transparently so you always know what you're getting.

7 regions live
33 regulators
853 documents
Hover any highlighted country for stats
Australia 7
United States 17
United Kingdom 3
European Union 2
Asia-Pacific 3
Canada 1
APRA
Australian Prudential Regulation Authority
● Complete
Documents
80
Series
7
Coverage
Live
CPS APS GPS LPS HPS SPS 3PS
ASIC
Australian Securities & Investments Commission
● Complete
Documents
169
Series
RG
Coverage
Live
Regulatory Guides · 169 loaded
ATO
Australian Taxation Office
● Complete
Documents
8
Series
TR · GSTR
Coverage
Live
Tax Rulings GST Rulings
AUSTRAC
Transaction Reports & Analysis Centre
◯ Minimal
Documents
2
Focus
AML / CTF
Coverage
Live
AML/CTF Act Rules 2025
OAIC
Office of the Australian Information Commissioner
◯ Minimal
Documents
1
Focus
Privacy
Coverage
Live
APP Guidelines
ACSC
Australian Cyber Security Centre
◯ Minimal
Documents
1
Focus
Cyber
Coverage
Live
Information Security Manual
FASEA
Financial Adviser Standards & Ethics Authority
◯ Minimal
Documents
1
Focus
Code of Ethics
Coverage
Live
Financial Planners and Advisers Code of Ethics
FINRA
Financial Industry Regulatory Authority
● Complete
Documents
247
Series
Rules
Coverage
Live
All FINRA Rules · 247 loaded
NIST
National Institute of Standards & Technology
● Complete
Documents
74
Focus
Cyber
Coverage
Live
SP 800 series CSF 2.0
OFAC
Office of Foreign Assets Control
● Complete
Documents
45
Series
31 CFR
Coverage
Live
Chapter V · 45 sanctions programs
FED
Federal Reserve Board
● Complete
Documents
15
Series
Regs
Coverage
Live
Reg D · H · J · K · O · Q · T · U · W · Y · BB · HH · LL · MM · YY
FINCEN
Financial Crimes Enforcement Network
● Complete
Documents
12
Focus
BSA / AML
Coverage
Live
31 CFR Parts 1010–1031
SEC
Securities and Exchange Commission
● Complete
Documents
10
Series
17 CFR
Coverage
Live
17 CFR 242–245 Reg S-K · Reg S-X
CFTC
Commodity Futures Trading Commission
● Complete
Documents
8
Series
Parts
Coverage
Live
Parts 1, 4, 23, 30, 37–40
CFPB
Consumer Financial Protection Bureau
● Complete
Documents
9
Series
Regs
Coverage
Live
Reg B · DD · E · F · M · P · V · X · Z
CISA
Cybersecurity & Infrastructure Security Agency
◐ Partial
Documents
8
Focus
Cyber
Coverage
Live
BODs · Advisories
HHS-OCR
HIPAA — Health & Human Services
◯ Minimal
Documents
1
Focus
Healthcare
Coverage
Live
HIPAA Part 164
NYDFS
NY Department of Financial Services
◯ Minimal
Documents
1
Focus
Cyber
Coverage
Live
23 NYCRR 500
CCPA
California Consumer Privacy Act
◯ Minimal
Documents
1
Focus
Privacy
Coverage
Live
CCPA Regulations
NAIC
National Association of Insurance Commissioners
◯ Minimal
Documents
2
Focus
Insurance
Coverage
Live
Model 312 · Model 505
+ more
OCC · FDIC · IRS · FTC · ACSC
Onboarding
Status
Available on request
SLA
4–8 weeks
5 regulators · onboarding queue
UK FCA
Financial Conduct Authority
● Complete
Documents
12
Series
PS · COBS
Coverage
Live
Policy Statements · 11 COBS
UK PRA
Bank of England Prudential Regulation Authority
● Complete
Documents
10
Series
SS
Coverage
Live
Supervisory Statements · 10
NCSC
National Cyber Security Centre
● Complete
Documents
6
Focus
Cyber
Coverage
Live
10 Steps CAF
EU
European Union — Regulations & Directives via EUR-Lex
● Complete
Documents
34
Source
EUR-Lex
Coverage
Live
GDPR MiFID II MiFIR DORA AI Act CRR · CRD IV MiCA EMIR PSD2 Solvency II SFDR UCITS AMLD6 · AMLR +22 more
EBA
European Banking Authority
● Complete
Documents
56
Series
Guidelines
Coverage
Live
EBA Article 16 Guidelines · 56 loaded
HKMA
Hong Kong Monetary Authority
● Complete
Documents
11
Series
SPM
Coverage
Live
Supervisory Policy Manual · 11
SFC
HK Securities & Futures Commission
◯ Minimal
Documents
2
Focus
Markets
Coverage
Live
Code of Conduct FMCC
MAS
Monetary Authority of Singapore
● Complete
Documents
12
Series
Notices · GL
Coverage
Live
MAS Notices · 9 TRM · Outsourcing · BCM Guidelines
OSFI
Office of the Superintendent of Financial Institutions
● Complete
Documents
11
Series
CAR · LAR
Coverage
Live
CAR 2026 · 9 chapters LAR 2026 · 2 chapters
03 What you get

Two frameworks. One library.

Every regulator's source material is broken down into two layers: the obligations you must meet, and the controls you can use to meet them. Query both interactively or pull both into your GRC system.

CORE PRODUCT

Obligations Library

Citation-linked obligations parsed from every document in our coverage. Each obligation maps back to its source paragraph, so you always have audit-grade traceability.

  • 3,389 cross-regulator obligations · all high-confidence, published
  • Source paragraph + citation for every record
  • Real-time deltas — see exactly what changed
  • Tagged by jurisdiction, regulator, domain, document
  • Conversational query interface, API, or direct GRC integration
Try the copilot →
COMPLEMENTARY

Controls Library

3,389 minimum-control templates auto-drafted from clustered cross-regulator obligations. Each control cites the source paragraphs and includes activities, evidence, frequency, and owner suggestions.

  • 3,389 control templates · all published, high-confidence
  • Activities, evidence, owner, frequency on every template
  • Cross-regulator citations preserved
  • Use as a starting point for your own control library
  • Mandatory legal disclaimer on every output
Browse controls →
04 How it works

From regulator to your GRC, continuously.

We monitor, parse, normalise and ship — so your compliance team doesn't have to.

STEP_01

Monitor

We watch every regulator's primary source 24/7 — websites, RSS, official gazettes — for new or amended documents.

STEP_02

Parse

Documents are broken down to the paragraph level, with each obligation extracted, citation-preserved, and structurally tagged.

STEP_03

Normalise

Different regulators format things differently. We map everything into one consistent schema so you can query across jurisdictions.

STEP_04

Deliver

The result lands in your stack — chat copilot, REST API, or native GRC integrations (ServiceNow, Archer, OneTrust). Sub-4-hour latency.

EXPLORE The graph

One document. Every obligation it creates.

CompEye explodes each regulator document into the obligations it imposes and the controls that satisfy them — every node citation-linked. Click an obligation to see its source paragraphs; click a control for its minimum standard. Here's a single document — the live explorer spans all 853.

NEW Gap analysis

Test your controls, not just ours.

Upload your own control library. CompEye matches every control to the closest obligation, judges whether it's adequate, and hands back a report — coverage at a glance, gaps ranked first, and a fix for each. Team & Enterprise.

  1. 1
    Upload your libraryA CSV of your controls — title + description. A template's one click away.
  2. 2
    Matched to obligationsEach control is paired with its closest regulatory obligation across 33 regulators.
  3. 3
    Adequacy judgedAdequate, partial, or a gap — each with the reason and a concrete fix.
  4. 4
    A report you keepCoverage %, a radar by regulator, saved to revisit any time — free to reopen.
Run a gap analysis →
05 Pricing

Self-serve. Or enterprise.

Pick the region you need — or get the lot. Watermarked answers and full citation traceability on every plan.

5 free queries before you subscribe · no card required

TIER_01
Basic
Copilot, insights and change alerts for one jurisdiction — pick yours at signup.
$59.99 USD / month
1 jurisdiction · cancel anytime
  • One jurisdiction · AU, US, UK, EU, HK, SG, or CA
  • Copilot chat · citation-linked answers
  • Insights dashboard
  • Regulatory change alerts
  • 1M tokens/month
  • Obligation & gap analysis
  • Controls, documents & API
Sign up & subscribe
TIER_02
Pro
All 33 regulators, plus obligation analysis and gap analysis.
$149.99 USD / month
4× the tokens · 2× the regulators
  • Everything in Basic · all 33 regulators
  • Obligation analysis
  • Gap analysis
  • Cross-jurisdiction obligation index
  • 4M tokens/month
  • Control & document analysis
  • API access
Sign up & subscribe →
TIER_03
Team
For mid-large firms · multi-seat · controls & documents · admin tracing.
$999.99 USD / month
Includes 10 seats · then $119.99/seat/month
  • Everything in Pro
  • Control & document analysis
  • 8M tokens/seat
  • Multi-seat · shared team audit log
  • Admin watermark-trace endpoint
  • API access
Sign up & subscribe
TIER_04 · NEGOTIATED

Enterprise

For organisations that need it all — the only tier with programmatic API access, plus usage scaled to your needs, your own identity provider, on-prem or region-pinned deployment, and a name to call. Pricing is negotiated to your scale.

Custom · let's talk
  • Programmatic REST API access — exclusive to Enterprise
  • Unlimited seats · usage scaled to your needs
  • SSO / SAML single sign-on
  • Dedicated support + uptime SLA
  • On-prem / data residency · custom integrations
06 FAQ

Common questions.

The ones we get on every demo call. If yours isn't here, ask us on the call.

How is this different from Thomson Reuters, LexisNexis or Wolters Kluwer?
Those are document repositories — you log in, search, and read PDFs. CompEye is structured data: every obligation is parsed out, citation-linked, and delivered as a feed into your GRC system. We're the layer underneath, not another portal to log into. Most of our customers run us alongside one of those incumbents.
How quickly do regulatory changes appear in the feed?
Sub-4 hours from regulator publish to delta in your feed, for monitored documents. We poll primary sources on a continuous schedule and trigger immediate parsing on detected changes. Team customers can request prioritised monitoring with sub-hour SLAs.
What if a regulator we need isn't in the library yet?
Tell us. We add new regulators based on customer demand — most onboard in 4–8 weeks. Team customers can fund accelerated onboarding for specific regulators or document sets. Our public coverage page is updated in real time so you always know where we are.
Do you cover controls, or just obligations?
Both. The Obligations Library is our core product — 3,389 atomic requirements parsed from primary sources. The Controls Library is a complementary layer of 3,389 control templates clustered across regulators, designed as a starting point for your own control library. Most customers start with obligations and layer controls in later.
How does this integrate with our existing GRC tooling?
Three ways: a REST API for direct integration (Team tier), structured exports (JSON / CSV / Parquet) for batch ingestion, and native connectors for ServiceNow GRC, Archer, OneTrust and MetricStream (Team and Enterprise). Enterprise customers can also pipe directly into Snowflake, BigQuery or Databricks.
What's the legal status of the data — is it licensed?
We source exclusively from primary regulators — government and statutory sources that publish under public domain or open licensing. No third-party licensed content. Citations always trace back to the original published document, so audit-grade traceability is preserved.
How do you prevent unauthorised redistribution of your data?
Every answer is invisibly watermarked with a unique query identifier (16 zero-width characters distributed across the prose) that survives copy-paste. Paste any leaked snippet into our admin trace endpoint and we identify the exact user account, IP address, and timestamp of the original query. We also apply per-user phrasing variations as a secondary fingerprint that survives Unicode normalisation.
Can we trial it before committing?
Yes — every signup is free for 5 queries. No card required. Stress-test the cross-regulator copilot on your real questions before you decide. If you want a longer pilot for a Team rollout, book a demo and we'll set up a 30-day evaluation.
→ Get started

See your industry's
obligations, mapped.

5 free queries. No card. Cross-jurisdiction synthesis on every answer that has cross-regulator coverage.

Try free → Talk to the team