Cyber, critical infrastructure & AI standards — all in one place.

The latest standards, laws and regulations, with curated metadata, mapped controls and expert guidance from 6clicks. Built for GRC, compliance and security teams.

Browse by industry

Browse by sector. Each page shows relevant standards, laws, regulations, and frameworks.

Explore all industries

Ciritical Infrastructure3 items defence1 item test wesley 31 item Others0 items

Content Library

In App

Showing 8 of 8

GRCGuideline

not-real — Not a real item - Made as a test

Summary of the item

Fake body • fake jurisdiction • v1.1

View details

GRCGuideline

RG 270 Whistleblower Policies

RG 270 is a regulatory guide by the Australian Securities & Investments Commission (ASIC) detailing requirements for entities that must have a whistleblower policy under the Corporations Act. It covers compliance obligations as well as good practice guidance for implementing and maintaining such policies.

Australian Securities & Investments Commission (ASIC) • Australia

View details

Critical InfrastructureLaw

PIPEDA — Personal Information Protection and Electronic Documents Act

The Personal Information Protection and Electronic Documents Act (PIPEDA) establishes rules for organizations to manage the collection, use, and disclosure of personal information in the course of commercial activities in Canada. It aims to balance individual privacy rights with businesses' need to process personal data.

Government of Canada • Canada

View details

CybersecurityGuideline

CPG 234 — CPG 234 - Information Security

APRA's CPG 234 guideline provides principles and key considerations for managing information security risks within Australian Prudential Regulation Authority-regulated entities. It emphasizes the need for robust governance, secure information-sharing practices, and resilience against cyber threats.

Australian Prudential Regulation Authority (APRA) • Australia

View details

AI - 2Standard

AIUC-1 — AIUC-1

AIUC-1 is a standard focused on the security, safety, reliability, accountability, and societal impact of AI agents. It provides enterprises with actionable guidelines to identify, assess, and mitigate risks associated with AI deployment, covering data protection, adversarial robustness, harmful output prevention, and compliance with various frameworks.

Artificial Intelligence Underwriting Company (AIUC) • vQ2-2026

View details

CybersecurityStandard

ISO 27001:2013 — ISO/IEC 27001:2013 - Information security management systems — Requirements

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining, and improving an information security management system tailored to organizational needs. It is applicable to organizations of any type, size, or nature.

ISO/IEC JTC 1/SC 27 • v2013

View details

CybersecurityStandard

ISO 27001 — ISO/IEC 27001:2022 - Information security management systems – Requirements

ISO/IEC 27001:2022 is a globally recognized standard for establishing, implementing, maintaining, and improving an Information Security Management System (ISMS). It helps organizations manage risks to data security by addressing people, processes, and technology.

International Organization for Standardization (ISO) and International Electrotechnical Commission (IEC) • International • v2022

View details

GRCStandard

ISO 9001:2015 — ISO 9001:2015 Quality Management Systems

ISO 9001:2015 is an international standard for quality management systems (QMS), helping organizations improve performance, meet customer expectations, and demonstrate a commitment to quality. It includes requirements for establishing, maintaining, and continually improving a QMS.

International Organization for Standardization (ISO) • v2015 (Edition 5)

View details