Compliance by Design
Why this term?
Section titled “Why this term?”Compliance by Design extends to AI the ex-ante, built-in approach that Privacy by Design (GDPR Art. 25) introduced for personal data and that Security by Design (ENISA, NIST SSDF) standardised for cybersecurity. Policy is the input contract of the training run, not a post-hoc checklist.
Compliance by Design is the design philosophy. Compliance-as-Code is the technique that delivers it (executable OSCAL policy, decorators, deterministic enforcement). AI Assurance is the deliverable the regulator audits (Assessment Results, Annex IV technical documentation, evidence bundle).
Compliance by Design (the why) ↓ enabled byCompliance-as-Code (the how) ↓ producingAI Assurance (the deliverable)Three patterns in the SDK
Section titled “Three patterns in the SDK”1. Decorator-driven enforcement
Section titled “1. Decorator-driven enforcement”vl.enforce(metrics, policy=…) runs inside the training script, not
as a downstream audit. A control violation with severity=block halts
the run before the model is registered:
import venturalitica as vl
with vl.monitor(name="Loan Default Audit"): metrics = pipeline.run(X_train, y_train)
vl.enforce(metrics, policy="assessment_plan.oscal.yaml", strict=True)Compliance is a function call, not a JIRA ticket.
2. OSCAL-first input contract
Section titled “2. OSCAL-first input contract”vl pull retrieves the assessment_plan.oscal.yaml before training
starts. The policy is the input contract of the run — the training
script reads its compliance obligations the same way it reads its
hyperparameter file:
vl pull # fetches assessment-planpython train.py # reads it as inputThis inverts the traditional “model first, audit later” workflow.
3. Evidence as byproduct
Section titled “3. Evidence as byproduct”vl.monitor() collects evidence (CycloneDX BOM, hardware fingerprint,
file integrity, AST trace, carbon footprint) as the pipeline runs.
On completion, the SDK materialises an OSCAL Assessment Results
document, no separate audit pass needed. vl export-annex-iv derives
the Art. 11 narrative from the same evidence:
vl export-annex-iv --agentic # narrative for §1/2/3/5/8/9The same run produces the model, the assurance evidence, and the regulator-facing documentation.
Regulatory lineage
Section titled “Regulatory lineage”| Framework | Clause | What it asks for | How CbD answers |
|---|---|---|---|
| GDPR | Art. 25 | Data protection by design and by default | Direct precedent — same ex-ante built-in approach |
| EU AI Act | Art. 9 | Risk management throughout the lifecycle | Decorator-driven enforcement at training time |
| EU AI Act | Art. 15 | Accuracy, robustness, cybersecurity by design | enforce() blocks deployment if thresholds fail |
| EU AI Act | Annex IV §3 | Monitoring, functioning and control | vl.monitor() + Assessment Results |
| ISO/IEC 42001 | A.6.2.4 | AI impact assessment | OSCAL Assessment Plan before training |
| ISO/IEC 42001 | A.8.2 | Data quality | Probes + policy controls in the assessment-plan |
| ISO/IEC 42001 | A.8.3 | System lifecycle | Evidence collected per run, attached to model registry |
| NIST AI RMF | Govern 1.7 | AI risks integrated into risk management | Compliance contract is the training input |
Why this matters for v0.6.0
Section titled “Why this matters for v0.6.0”v0.6.0 unifies all OSCAL emission into a single assessment-plan
envelope (see Migrating to v0.6 and the normative
contract).
That single envelope is what makes Compliance by Design tractable:
one document in, one document out — both in the same OSCAL
dialect, both auditable by vl-fairness-gate (Rust) and any other
NIST OSCAL parser.
Further reading
Section titled “Further reading”- arXiv preprint: Making AI Compliance Evidence Machine-Readable (Cilla Ugarte et al., 2026).
- Quickstart
- Migrating to v0.6
- Policy Authoring
- Glass Box Dashboard