FREE · CLAUSE-MAPPED · AUDIT-READY

Compliance readiness checklists for every major framework

6 framework checklists, 205 total items — every step mapped to a specific clause or control (TSC CC1–CC9, GDPR Articles 5–49, 45 CFR §164, ISO 27001:2022 Annex A, PCI DSS 4.0.1, CCPA §1798). Walk these in order and you'll pass your audit.

Browse checklists Run free audit
SOC 2 Readiness Checklist (Type I & Type II)
40 steps
40-step SOC 2 readiness checklist mapped to the 2017 TSC — Security (CC1–CC9) plus Availability, Confidentiality, Processing Integrity, Privacy. Use for Type I or Type II prep.
Open checklist →
GDPR Compliance Checklist (EU + UK GDPR)
35 steps
35-step GDPR readiness checklist covering Articles 5–49 — lawful basis, DPIA, ROPA, DSAR workflow, breach notification, international transfers (SCCs/UK IDTA).
Open checklist →
HIPAA Compliance Checklist (Privacy + Security Rule)
40 steps
40-step HIPAA checklist mapped to 45 CFR §164 — Privacy Rule (§164.502), Security Rule (§164.308–.312), Breach Notification (§164.404), and Business Associate Agreements (§164.504(e)).
Open checklist →
ISO 27001:2022 Implementation Checklist
35 steps
35-step ISO 27001:2022 implementation checklist — Clauses 4–10 (ISMS, leadership, planning, support, ops, performance, improvement) plus Annex A's 93 controls grouped by theme.
Open checklist →
PCI DSS 4.0.1 Compliance Checklist (Merchants + Service Providers)
30 steps
30-step PCI DSS 4.0.1 readiness checklist — Build & Maintain Secure Network, Protect Account Data, Vulnerability Management, Access Control, Monitoring & Testing, Information Security Policy.
Open checklist →
CCPA/CPRA Compliance Checklist (California Privacy)
25 steps
25-step California Consumer Privacy Act (CCPA + CPRA amendments) compliance checklist — disclosures, consumer rights, opt-out signals, contractor/service provider agreements, employee/B2B coverage.
Open checklist →

Checklists tell you what. ComplianceIQ shows you where you stand.

Drop your existing policy into our free audit and we'll score it against the framework checklist — gap-by-gap, with specific fixes for every miss.

Run a free audit