The Most Effective Solution to Map with Multiple Frameworks.

Compyl offers a centralized platform that enables you to effortlessly track progress and monitor any framework, whether it’s a custom-built solution or a popular, specialized security or privacy framework.

Security Frameworks

Compyl SOC 2


Close more deals and build customer trust by effectively proving your commitment to security.

Compyl ISO 27001

ISO 27001:2022

Expand your sales reach globally by leveraging a universally recognized standard.

Compyl ISO 27017

ISO 27017

Comprehensive guidelines for implementing information security controls specifically tailored to the provisioning and utilization of cloud services.

Compyl PCI


Demonstrate your commitment to ensuring the security and protection of sensitive cardholder data.



By implementing the NIST CSF, organizations gain valuable insights and tools to effectively manage and minimize cybersecurity risks.

Compyl NIST 800-53

NIST SP 800-53

A comprehensive catalog of security and privacy controls designed for all U.S. federal information systems, excluding those associated with national security.

Compyl NIST 800-171

NIST SP 800-171

NIST 800-171 outlines essential requirements that serve as recommendations for safeguarding the confidentiality of Controlled Unclassified Information (CUI) when engaging with the US government.

Compyl FedRamp


To serve US Federal Agencies, cloud service providers and cloud-based products must adhere to the security framework mandated by FedRAMP.

Compyl DORA Icon 1


EU must comply with regulations covering ICT incident safeguards and risk management, including rules for incident reporting, resilience testing, and third-party ICT risk oversight.

Compyl NIS2 UK EU 1


NIS2, an updated iteration of the NIS framework, was embraced by the EU on November 28, 2022, initiating a two-year window for member states to incorporate its directives into their national laws. By September 2024, all EU member states are tasked with integrating NIS2 provisions into their domestic legislation.

Compyl CIS 1

Center for Internet Security

Devised by the Center for Internet Security (CIS), these controls provide a prioritized set of actions to strengthen an organization’s cybersecurity posture, encompassing both technological defenses and overall readiness against evolving cyber threats.

Privacy Frameworks

Compyl GDPR


Showcase your unwavering dedication to safeguarding data privacy by aligning with GDPR.


By safeguarding health information, you demonstrate a commitment to preserving trust in your brand.

Compyl CCPA


The California Consumer Privacy Act is a law that allows any California consumers to see all the information a company has saved on them. 

Compy CPRA

California Privacy Rights Act

Requires businesses to implement reasonable security procedures and practices to avoid data breaches, intentional violations, and other security risks

Compyl ISO 27701

ISO 27701

ISO 27701 extends the scope of ISO 27001 by outlining the necessary requirements for creating, implementing, maintaining, and enhancing a Privacy Information Management System (PIMS).

Compyl ISO 27018

ISO 27018

ISO 27018 sets forth specific controls designed to safeguard Personally Identifiable Information (PII) within public cloud computing environments.

Additional Frameworks, including Custom Frameworks


Cybersecurity Maturity Model Certification (CMMC) is an assessment standard designed to ensure that defense contractors are in compliance with current security requirements for protecting sensitive defense information.

Compyl COBIT


COBIT stands for Control Objectives for Information and Related Technology. The framework was created by the ISACA and was designed to be a supportive tool for managers—and allows bridging the crucial gap between technical issues, business risks, and control requirements.

Compyl ESG Regulation 1

Environmental, Social and Governance

ESG regulations are enforced within the financial sector to spotlight the environmental, social, and governance effects of investment prospects.

Compyl CDPA

Virginia Consumer Data Protection Act

The CDPA gives Virginia residents more control over how companies use and sell their data.

Compyl CPPA

Canada Consumer Privacy Protection Act

The CPPA recognizes that individuals have the right to privacy with respect to their personal information, while also addressing the need for businesses to collect, use or disclose personal information for reasonable and appropriate purposes.

Compyl New Zealand Privacy Act

New Zealand Privacy Act

The purpose of the New Zealand Privacy Act is to promote and protect individual privacy, by providing a framework for protecting the privacy of personal information, including access by individuals to their information, while also recognizing other rights and interests.

Compyl Custom Framework

Custom Frameworks

Establish customized frameworks and controls tailored to your organization. Seamlessly import existing requirements or create new ones to effectively address your organization’s growing needs.

Rapidly mature your security program with Compyl

An all-in-one streamlined solution created by information security experts.

By clicking “Accept”, you agree to the use of cookies on your device in accordance with our Privacy and Cookie policies