Compliance API
The Compliance API provides tools for regulatory compliance, audit logging, and evidence collection for AI governance.
Overview
Compliance API provides:
- Compliance Registry — Track compliance requirements
- Audit Scans — Verify compliance with regulations
- Evidence Collection — Gather proof of compliance
- Audit Trail — Complete record of all governance actions
Compliance Registry
Create Compliance Item
POST /api/v1/compliance/items
curl -X POST https://api.truthvouch.com/api/v1/compliance/items \ -H "Authorization: Bearer tv_live_..." \ -H "Content-Type: application/json" \ -d '{ "title": "GDPR Article 22 - Automated Decision Making", "regulation": "GDPR", "description": "Ensure no automated decision-making without human review", "status": "in_progress", "dueDate": "2024-06-30", "owner": "user@company.com" }'List Compliance Items
GET /api/v1/compliance/items
curl "https://api.truthvouch.com/api/v1/compliance/items?regulation=GDPR&status=in_progress" \ -H "Authorization: Bearer tv_live_..."Audit Scans
Submit Audit Scan
POST /api/v1/compliance/scans
curl -X POST https://api.truthvouch.com/api/v1/compliance/scans \ -H "Authorization: Bearer tv_live_..." \ -d '{ "complianceItemId": "comp_item_123", "scanType": "hallucination_detection", "scope": "all_llm_calls", "timeRange": { "startDate": "2024-01-01", "endDate": "2024-03-15" } }'Get Scan Results
GET /api/v1/compliance/scans/{scanId}
curl https://api.truthvouch.com/api/v1/compliance/scans/scan_xyz \ -H "Authorization: Bearer tv_live_..."Response:
{ "data": { "scanId": "scan_xyz", "status": "completed", "complianceStatus": "compliant", "summary": { "totalChecks": 500, "passed": 495, "failed": 5 }, "findings": [ { "issue": "Unreviewed hallucination", "severity": "high", "count": 5 } ], "generatedReport": "https://api.truthvouch.com/reports/scan_xyz/report.pdf" }}Evidence Collection
Upload Evidence
POST /api/v1/compliance/evidence
curl -X POST https://api.truthvouch.com/api/v1/compliance/evidence \ -H "Authorization: Bearer tv_live_..." \ -F "file=@policy.pdf" \ -F "complianceItemId=comp_item_123" \ -F "description=AI governance policy document"List Evidence
GET /api/v1/compliance/evidence
curl "https://api.truthvouch.com/api/v1/compliance/evidence?complianceItemId=comp_item_123" \ -H "Authorization: Bearer tv_live_..."Audit Trail
List Audit Events
GET /api/v1/audit-trail
Complete log of all governance decisions and policy enforcements:
curl "https://api.truthvouch.com/api/v1/audit-trail?action=policy_blocked&page=1" \ -H "Authorization: Bearer tv_live_..."Response:
{ "data": [ { "id": "event_123", "timestamp": "2024-03-15T10:30:00Z", "action": "policy_blocked", "userId": "user_xyz", "resource": { "type": "chat_completion", "id": "req_abc123" }, "policyId": "policy_456", "reason": "PII detected in response", "details": { "detectedEntity": "email", "field": "response" } } ], "meta": { "page": 1, "pageSize": 25, "total": 1234 }}Export Audit Log
GET /api/v1/audit-trail/export
Export audit trail for compliance reporting:
curl -X GET "https://api.truthvouch.com/api/v1/audit-trail/export?format=csv&startDate=2024-01-01&endDate=2024-03-15" \ -H "Authorization: Bearer tv_live_..." \ > audit_log.csv