Legal & Compliance

INTRODUCTION

Our work is guided by, and references, the legal and regulatory frameworks that safeguard citizens, markets, and institutions. While we operate as an independent research entity, our methodologies are aligned with the principles underpinning these frameworks. We examine how systemic technological failures may result in violations of established legal and regulatory frameworks.

OUR LEGAL FOUNDATION

Our work operates within the boundaries of, and contributes to the understanding and effective application of, critical legal domains including:

  • Corporate Governance & Executive Accountability
  • Financial Market Integrity & Investor Protection
  • Digital Rights, Data Protection & Privacy
  • Consumer Safety & Product Liability
  • Public Health & Medical Ethics
  • Environmental Sustainability
  • Human Rights & Equality
  • Electoral Integrity & Media Governance
  • Emerging AI-Specific Regulation

THE BRIDGE FROM RESEARCH TO REGULATION

Our core function is to build credible, evidence-based bridges between technical discovery and regulatory action.

Methodological Rigor: Our audit frameworks are designed to produce documented, reproducible evidence that meets forensic-grade documentation standards.

Quantifiable Metrics: We develop metrics that translate observable AI behaviors into quantifiable data relevant for compliance and risk assessment.

Actionable Reporting: Our research output is structured to assist regulators and legal counsel in understanding the materiality and implications of systemic risks.

We maintain strict independence from any commercial entities subject to audit and uphold conflict-of-interest safeguards in all engagements.

RELEVANT LEGAL & REGULATORY RESOURCES

International Standards & Major Regulations

  • ISO/IEC JTC 1/SC 42: Artificial Intelligence
  • The EU AI Act (EUR-Lex)
  • General Data Protection Regulation (GDPR)
  • U.S. Securities and Exchange Commission (SEC)
  • California Consumer Privacy Act (CCPA)/CPRA

U.S. Federal & State Agencies

  • U.S. Department of Justice (DOJ)
  • Federal Trade Commission (FTC)
  • U.S. Department of Health & Human Services (HIPAA)
  • California Privacy Protection Agency (CPPA)

Irish & EU Regulatory Bodies

  • Data Protection Commission (DPC) – Ireland
  • Coimisiún na Meán (Media Commission) – Ireland
  • An Coimisiún Toghcháin (Electoral Commission) – Ireland
  • Irish Human Rights and Equality Commission (IHREC)
  • Environmental Protection Agency (EPA) – Ireland
  • Financial Services and Pensions Ombudsman (FSPO) – Ireland

Ombudsman & Oversight Offices

  • The Office of the Ombudsman – Ireland
  • Ombudsman for Children – Ireland
  • Ombudsman for the Defence Forces – Ireland

OUR COMMITMENT TO LAWFUL PROCESS

The AI Audit Group is committed to the lawful and responsible handling of its findings. Our policy includes engaging with the appropriate regulatory bodies through official channels to support their public interest mandates. Such engagement does not imply endorsement, partnership, or ongoing collaboration unless explicitly stated by the relevant authority.

Updates on our principle-based engagements will be shared in our News section, subject to confidentiality and legal constraints.

DISCLAIMER

The information provided on this website is for research and informational purposes only and does not constitute legal advice or compliance certification. Inclusion of any regulatory body or legal reference does not imply affiliation, endorsement, or ongoing communication.