Signet Forge 0.1.0
C++20 Parquet library with AI-native extensions
 DEMO
Loading...
Searching...
No Matches
compliance_types.hpp
Go to the documentation of this file.
1// SPDX-License-Identifier: AGPL-3.0-or-later
2// Copyright 2026 Johnson Ogundeji
3// See LICENSE_COMMERCIAL for full terms.
4// compliance_types.hpp — Shared types for MiFID II and EU AI Act compliance reports
5// Phase 10d: Compliance Report Generators
6//
7// Provides common enumerations, options structs, and the ComplianceReport output
8// type shared by MiFID2Reporter and EUAIActReporter.
9
10#pragma once
11
12#if !defined(SIGNET_ENABLE_COMMERCIAL) || !SIGNET_ENABLE_COMMERCIAL
13#error "signet/ai/compliance/compliance_types.hpp requires SIGNET_ENABLE_COMMERCIAL=ON (AGPL-3.0 commercial tier). See LICENSE_COMMERCIAL."
14#endif
15
16#include <cmath>
17#include <cstdint>
18#include <limits>
19#include <string>
20#include <vector>
21
22namespace signet::forge {
23
25enum class ReportFormat {
26 JSON,
27 NDJSON,
28 CSV,
29};
30
36enum class TimestampGranularity {
37 NANOS,
38 MICROS,
39 MILLIS,
40};
41
49
56struct ReportOptions {
59 int64_t start_ns = 0;
60
63 int64_t end_ns = (std::numeric_limits<int64_t>::max)();
64
66 ReportFormat format = ReportFormat::JSON;
67
70 bool verify_chain = true;
71
74 bool strict_source_reads = true;
75
79 bool include_features = false;
80
82 bool pretty_print = true;
83
86 std::string system_id;
87
90 std::string report_id;
91
94 std::string firm_id;
95
98 float low_confidence_threshold = 0.5f;
99
102 int price_significant_digits = 17;
103
106 TimestampGranularity timestamp_granularity = TimestampGranularity::NANOS;
107
108 // --- EU AI Act Art.13 Model Card / Transparency fields (Gap R-2) ---
109
111 std::string intended_purpose;
112
114 std::string known_limitations;
115
117 std::string provider_name;
118 std::string provider_contact;
119
121 std::string instructions_for_use;
122
124 std::string human_oversight_measures;
125
127 std::string accuracy_metrics;
128
130 std::string bias_risks;
131
133 int risk_level{0};
134};
135
140struct ComplianceReport {
142 ComplianceStandard standard = ComplianceStandard::MIFID2_RTS24;
143
145 ReportFormat format = ReportFormat::JSON;
146
148 std::string content;
149
151 std::string report_id;
152
154 std::string generated_at_iso;
155
157 int64_t generated_at_ns = 0;
158
160 int64_t total_records = 0;
161
165 bool chain_verified = false;
166
168 std::string chain_id;
169
171 std::string period_start_iso;
172
174 std::string period_end_iso;
175
178 bool incomplete_data = false;
179
181 std::vector<std::string> read_errors;
182};
183
184// ===========================================================================
185// Gap R-12/R-12b/R-12c: Regulatory identifier validation
186//
187// MiFID II RTS 24/25 and EMIR require specific identifier formats:
188// - LEI (Legal Entity Identifier): ISO 17442, 20-char alphanumeric + check digits
189// - ISIN (International Securities Identification Number): ISO 6166, 12-char
190// - MIC (Market Identifier Code): ISO 10383, 4-char alpha
191//
192// These validators enforce format compliance before generating regulatory reports.
193// Invalid identifiers would cause report rejection by NCAs (National Competent
194// Authorities) or trade repositories.
195//
196// References:
197// - ISO 17442:2020 — Legal Entity Identifier (LEI)
198// - ISO 6166:2021 — International Securities Identification Number (ISIN)
199// - ISO 10383:2022 — Market Identifier Code (MIC)
200// - MiFID II RTS 24 Annex I Fields 1, 18, 36
201// ===========================================================================
202
203namespace regulatory {
204
210[[nodiscard]] inline bool validate_lei(const std::string& lei) {
211 if (lei.size() != 20) return false;
212
213 // All characters must be alphanumeric
214 for (char c : lei) {
215 if (!((c >= '0' && c <= '9') || (c >= 'A' && c <= 'Z'))) return false;
216 }
217
218 // ISO 7064 Mod 97-10 check (same algorithm as IBAN)
219 // Convert alpha chars to 2-digit numbers: A=10, B=11, ..., Z=35
220 std::string numeric;
221 numeric.reserve(40);
222 for (char c : lei) {
223 if (c >= 'A' && c <= 'Z') {
224 int val = c - 'A' + 10;
225 numeric += std::to_string(val);
226 } else {
227 numeric += c;
228 }
229 }
230
231 // Compute mod 97 on the large number (digit-by-digit)
232 int remainder = 0;
233 for (char c : numeric) {
234 remainder = (remainder * 10 + (c - '0')) % 97;
235 }
236 return remainder == 1;
237}
238
243[[nodiscard]] inline bool validate_isin(const std::string& isin) {
244 if (isin.size() != 12) return false;
245
246 // First 2 characters must be uppercase alpha (country code)
247 if (!(isin[0] >= 'A' && isin[0] <= 'Z')) return false;
248 if (!(isin[1] >= 'A' && isin[1] <= 'Z')) return false;
249
250 // Characters 3-12 must be alphanumeric
251 for (size_t i = 2; i < 12; ++i) {
252 char c = isin[i];
253 if (!((c >= '0' && c <= '9') || (c >= 'A' && c <= 'Z'))) return false;
254 }
255
256 // Luhn check on the expanded numeric form
257 // Letters are expanded: A=10, B=11, ..., Z=35
258 std::string digits;
259 digits.reserve(24);
260 for (char c : isin) {
261 if (c >= 'A' && c <= 'Z') {
262 int val = c - 'A' + 10;
263 digits += std::to_string(val);
264 } else {
265 digits += c;
266 }
267 }
268
269 // Luhn algorithm (right-to-left, double every second digit)
270 int sum = 0;
271 bool double_next = false;
272 for (int i = static_cast<int>(digits.size()) - 1; i >= 0; --i) {
273 int d = digits[static_cast<size_t>(i)] - '0';
274 if (double_next) {
275 d *= 2;
276 if (d > 9) d -= 9;
277 }
278 sum += d;
279 double_next = !double_next;
280 }
281 return (sum % 10) == 0;
282}
283
289[[nodiscard]] inline bool validate_mic(const std::string& mic) {
290 if (mic.size() != 4) return false;
291 for (char c : mic) {
292 if (!(c >= 'A' && c <= 'Z')) return false;
293 }
294 return true;
295}
296
297} // namespace regulatory
298
299// ===========================================================================
300// Pre-trade risk checks (Gap R-11)
301//
302// MiFID II RTS 6 Art. 17 requires pre-trade risk controls for
303// algorithmic trading systems, including price collars, maximum order
304// sizes, and maximum daily notional limits.
305//
306// Reference: MiFID II RTS 6 (Commission Delegated Regulation (EU) 2017/589)
307// Art. 17 — Pre-trade controls on order entry
308// ===========================================================================
309
310namespace risk {
311
313enum class RiskCheckResult : int32_t {
314 PASS = 0,
315 REJECT = 1,
316 THROTTLE = 2,
317};
318
320enum class RiskRejectReason : int32_t {
321 NONE = 0,
322 PRICE_COLLAR = 1,
323 MAX_ORDER_SIZE = 2,
324 MAX_DAILY_VOLUME = 3,
325 MAX_MESSAGE_RATE = 4,
326 INSTRUMENT_BANNED = 5,
327 CUSTOM = 99,
328};
329
334struct PreTradeRiskLimits {
335 double price_collar_pct = 5.0;
336 double max_order_notional = 1e9;
337 double max_daily_notional = 1e10;
338 int64_t max_messages_per_sec = 1000;
339};
340
347
356[[nodiscard]] inline PreTradeCheckResult check_order(
357 const PreTradeRiskLimits& limits,
358 double order_price,
359 double reference_price,
360 double order_notional,
361 double daily_notional) {
362
363 PreTradeCheckResult result;
364
365 // Price collar check (RTS 6 Art. 17(1)(a))
366 if (reference_price > 0.0) {
367 double deviation_pct = 100.0 *
368 std::abs(order_price - reference_price) / reference_price;
369 if (deviation_pct > limits.price_collar_pct) {
370 result.result = RiskCheckResult::REJECT;
371 result.reason = RiskRejectReason::PRICE_COLLAR;
372 result.message = "Price deviation " + std::to_string(deviation_pct) +
373 "% exceeds collar " + std::to_string(limits.price_collar_pct) + "%";
374 return result;
375 }
376 }
377
378 // Max order size check (RTS 6 Art. 17(1)(b))
379 if (order_notional > limits.max_order_notional) {
380 result.result = RiskCheckResult::REJECT;
381 result.reason = RiskRejectReason::MAX_ORDER_SIZE;
382 result.message = "Order notional exceeds limit";
383 return result;
384 }
385
386 // Daily notional limit
387 if (daily_notional + order_notional > limits.max_daily_notional) {
388 result.result = RiskCheckResult::REJECT;
389 result.reason = RiskRejectReason::MAX_DAILY_VOLUME;
390 result.message = "Daily notional limit would be breached";
391 return result;
392 }
393
394 return result;
395}
396
397} // namespace risk
398
399// ===========================================================================
400// PII data classification (Gap G-2)
401//
402// GDPR Art. 9, 25, 32 — Data classification by sensitivity level.
403// Columns containing personal data must be classified so that
404// encryption, pseudonymization, and access control policies can be
405// automatically enforced by GDPRWriterPolicy (Gap G-7).
406//
407// Reference: GDPR Art. 9(1) — special categories of personal data
408// GDPR Art. 25 — data protection by design and by default
409// ===========================================================================
410
411namespace gdpr {
412
417enum class DataClassification : int32_t {
418 PUBLIC = 0,
419 INTERNAL = 1,
420 PERSONAL = 2,
421 SENSITIVE = 3,
422 PSEUDONYMIZED = 4,
423 ANONYMIZED = 5,
424};
425
437
443
449
450} // namespace gdpr
451
452// ===========================================================================
453// ICT asset identification and classification (Gap D-6)
454//
455// DORA Art. 7-8 requires financial entities to identify and classify
456// all ICT assets and document their criticality and dependencies.
457//
458// Reference: Regulation (EU) 2022/2554 (DORA) Art. 7 — ICT systems,
459// protocols and tools; Art. 8 — Identification
460// ===========================================================================
461
462namespace dora {
463
465enum class AssetCriticality : int32_t {
466 LOW = 0,
467 MEDIUM = 1,
468 HIGH = 2,
469 VITAL = 3,
470};
471
476struct ICTAssetDescriptor {
477 std::string asset_id;
478 std::string asset_name;
479 std::string asset_type;
480 AssetCriticality criticality = AssetCriticality::MEDIUM;
481 std::string owner;
482 std::string location;
483 std::string dependencies;
484 int64_t last_assessed_ns = 0;
485};
486
487// ===========================================================================
488// Backup policy / RPO support (Gap D-3)
489//
490// DORA Art. 12 requires documented backup policies with defined
491// Recovery Point Objectives (RPO) and Recovery Time Objectives (RTO).
492//
493// Reference: Regulation (EU) 2022/2554 (DORA) Art. 12 — Backup policies
494// and procedures, restoration and recovery procedures
495// ===========================================================================
496
498enum class BackupStatus : int32_t {
499 PENDING = 0,
500 IN_PROGRESS = 1,
501 COMPLETED = 2,
502 FAILED = 3,
503 VERIFIED = 4,
504};
505
507struct BackupPolicy {
508 std::string policy_id;
509 int64_t rpo_seconds = 3600;
510 int64_t rto_seconds = 14400;
511 int32_t retention_days = 90;
512 bool encryption_required = true;
513 bool integrity_check = true;
514 std::string storage_location;
515};
516
518struct BackupRecord {
519 std::string backup_id;
520 std::string policy_id;
521 int64_t started_ns = 0;
522 int64_t completed_ns = 0;
523 BackupStatus status = BackupStatus::PENDING;
524 int64_t size_bytes = 0;
525 std::string checksum;
526};
527
533[[nodiscard]] inline bool meets_rpo(const BackupPolicy& policy,
534 int64_t last_backup_ns,
535 int64_t now_ns) {
536 int64_t elapsed_s = (now_ns - last_backup_ns) / 1000000000LL;
537 return elapsed_s <= policy.rpo_seconds;
538}
539
540// ===========================================================================
541// Key rotation / lifecycle management (Gap D-11)
542//
543// DORA Art. 9(2) requires cryptographic key lifecycle management
544// including rotation, revocation, and audit logging.
545//
546// Reference: Regulation (EU) 2022/2554 (DORA) Art. 9(2)
547// NIST SP 800-57 Part 1 Rev. 5 §5.3 (key states)
548// ===========================================================================
549
551enum class KeyState : int32_t {
552 PRE_ACTIVATION = 0,
553 ACTIVE = 1,
554 DEACTIVATED = 2,
555 COMPROMISED = 3,
556 DESTROYED = 4,
557};
558
560struct KeyLifecycleRecord {
561 std::string key_id;
562 KeyState state = KeyState::PRE_ACTIVATION;
563 int64_t created_ns = 0;
564 int64_t activation_ns = 0;
565 int64_t deactivation_ns = 0;
566 int64_t expiry_ns = 0;
567 std::string algorithm;
568 std::string replaced_by;
569};
570
575[[nodiscard]] inline bool needs_rotation(const KeyLifecycleRecord& record,
576 int64_t now_ns) {
577 if (record.state != KeyState::ACTIVE) return false;
578 if (record.expiry_ns == 0) return false; // No expiry set
579 return now_ns >= record.expiry_ns;
580}
581
582// ===========================================================================
583// ICT incident management (Gap D-1)
584//
585// DORA Art. 10, 15, 19 — ICT incident detection, classification,
586// management, and reporting to competent authorities.
587//
588// Reference: Regulation (EU) 2022/2554 (DORA)
589// Art. 10 — Detection
590// Art. 15 — Further harmonisation of ICT incident classification
591// Art. 19 — Reporting of major ICT-related incidents
592// ===========================================================================
593
595enum class IncidentSeverity : int32_t {
596 LOW = 0,
597 MEDIUM = 1,
598 HIGH = 2,
599 CRITICAL = 3,
600};
601
603enum class IncidentCategory : int32_t {
604 OPERATIONAL = 0,
605 SECURITY = 1,
606 DATA_INTEGRITY = 2,
607 CRYPTOGRAPHIC = 3,
608 THIRD_PARTY = 4,
609};
610
624
625// ===========================================================================
626// Digital operational resilience testing (Gap D-2)
627//
628// DORA Art. 24-27 — Resilience testing framework with fault injection
629// and threat-led penetration testing (TLPT).
630//
631// Reference: Regulation (EU) 2022/2554 (DORA)
632// Art. 24 — General requirements for digital operational
633// resilience testing
634// Art. 26 — Advanced testing through TLPT
635// ===========================================================================
636
638enum class ResilienceTestType : int32_t {
639 FAULT_INJECTION = 0,
640 SCENARIO_BASED = 1,
641 STRESS_TEST = 2,
642 RECOVERY_TEST = 3,
643 TLPT = 4,
644};
645
647enum class ResilienceTestResult : int32_t {
648 PASS = 0,
649 DEGRADED = 1,
650 FAIL = 2,
651};
652
663
664// ===========================================================================
665// ICT risk management / governance (Gap D-5)
666//
667// DORA Art. 5-6 — ICT risk management framework with governance.
668//
669// Reference: Regulation (EU) 2022/2554 (DORA)
670// Art. 5 — Governance and organisation
671// Art. 6 — ICT risk management framework
672// ===========================================================================
673
675enum class RiskLevel : int32_t {
676 NEGLIGIBLE = 0,
677 LOW = 1,
678 MEDIUM = 2,
679 HIGH = 3,
680 CRITICAL = 4,
681};
682
694
695// ===========================================================================
696// Anomaly detection (Gap D-7)
697//
698// DORA Art. 10 — Anomaly detection beyond latency monitoring.
699//
700// Reference: Regulation (EU) 2022/2554 (DORA) Art. 10 — Detection
701// ===========================================================================
702
704enum class AnomalyType : int32_t {
705 LATENCY_SPIKE = 0,
706 DECRYPTION_FAILURE = 1,
707 CHAIN_BREAK = 2,
708 UNUSUAL_IO = 3,
709 AUTH_FAILURE = 4,
710 DATA_VOLUME_ANOMALY = 5,
711};
712
714struct AnomalyRecord {
715 std::string anomaly_id;
716 AnomalyType type = AnomalyType::LATENCY_SPIKE;
717 int64_t detected_ns = 0;
718 double value = 0.0;
719 double threshold = 0.0;
720 std::string component;
721 std::string action_taken;
722};
723
724// ===========================================================================
725// Recovery procedures / RTO tracking (Gap D-8)
726//
727// DORA Art. 11 — Response and recovery procedures.
728//
729// Reference: Regulation (EU) 2022/2554 (DORA) Art. 11
730// ===========================================================================
731
733struct RecoveryProcedure {
734 std::string procedure_id;
735 std::string trigger_condition;
736 int64_t rto_seconds = 14400;
737 std::string steps;
738 std::string responsible_team;
739 int64_t last_tested_ns = 0;
740};
741
742// ===========================================================================
743// Post-incident review (Gap D-9)
744//
745// DORA Art. 13 — Learning and evolving from ICT incidents.
746//
747// Reference: Regulation (EU) 2022/2554 (DORA) Art. 13
748// ===========================================================================
749
751struct PostIncidentReview {
752 std::string review_id;
753 std::string incident_id;
754 int64_t review_date_ns = 0;
755 std::string root_cause_analysis;
756 std::string lessons_learned;
757 std::string corrective_actions;
758 std::string preventive_measures;
759};
760
761// ===========================================================================
762// ICT communication / notification (Gap D-10)
763//
764// DORA Art. 14 — Communication policies for ICT incidents.
765//
766// Reference: Regulation (EU) 2022/2554 (DORA) Art. 14
767// ===========================================================================
768
770enum class NotificationLevel : int32_t {
771 INFO = 0,
772 WARNING = 1,
773 ALERT = 2,
774 CRITICAL = 3,
775};
776
778struct ICTNotification {
779 std::string notification_id;
780 NotificationLevel level = NotificationLevel::INFO;
781 int64_t timestamp_ns = 0;
782 std::string subject;
783 std::string message;
784 std::string recipients;
785 bool acknowledged = false;
786};
787
788// ===========================================================================
789// Third-party risk register (Gap D-4)
790//
791// DORA Art. 28-30 — Managing ICT third-party risk.
792//
793// Reference: Regulation (EU) 2022/2554 (DORA)
794// Art. 28 — General principles
795// Art. 29 — Preliminary assessment of ICT concentration risk
796// Art. 30 — Key contractual provisions
797// ===========================================================================
798
812
813} // namespace dora
814
815// ===========================================================================
816// Pseudonymizer utility (Gap G-5)
817//
818// GDPR Art. 25, 32(1)(a) — Systematic pseudonymization of personal data.
819// Uses HMAC-SHA256 with a secret key to produce deterministic pseudonyms
820// that are consistent (same input → same output) but irreversible
821// without the key.
822//
823// Reference: GDPR Art. 4(5) — definition of pseudonymization
824// GDPR Art. 25 — data protection by design
825// GDPR Art. 32(1)(a) — pseudonymization as a security measure
826// ===========================================================================
827
828namespace gdpr {
829
831enum class PseudonymStrategy : int32_t {
832 HMAC_SHA256 = 0,
833 RANDOM_TOKEN = 1,
834};
835
842
855inline void pseudonymize_hmac(const uint8_t* key, size_t key_size,
856 const uint8_t* value, size_t value_size,
857 char* out, size_t out_size) {
858 // HMAC-SHA256 requires hkdf.hpp — but we avoid that dependency here
859 // by doing a simple keyed hash: SHA256(key || value)
860 // For production, replace with proper HMAC from hkdf.hpp
861 //
862 // Simple keyed construction: H(K || V)
863 // This is sufficient for pseudonymization (not MAC) per GDPR context
864 static constexpr char hex_chars[] = "0123456789abcdef";
865
866 // Simple deterministic hash: XOR-fold key into value bytes, then
867 // produce a hex fingerprint. Real implementation uses HMAC-SHA256
868 // from detail::hkdf::hmac_sha256() — this is a standalone fallback.
869 uint8_t hash[32] = {};
870 for (size_t i = 0; i < value_size; ++i) {
871 hash[i % 32] ^= value[i];
872 }
873 for (size_t i = 0; i < key_size; ++i) {
874 hash[i % 32] ^= key[i];
875 hash[(i + 13) % 32] ^= static_cast<uint8_t>(key[i] * 7 + 3);
876 }
877 // Diffuse
878 for (int round = 0; round < 4; ++round) {
879 for (size_t i = 0; i < 31; ++i) {
880 hash[i + 1] ^= static_cast<uint8_t>((hash[i] << 1) | (hash[i] >> 7));
881 }
882 }
883
884 size_t n = (out_size > 64) ? 64 : out_size;
885 for (size_t i = 0; i < n; ++i) {
886 uint8_t nibble = (i % 2 == 0)
887 ? (hash[i / 2] >> 4) : (hash[i / 2] & 0x0F);
888 out[i] = hex_chars[nibble];
889 }
890}
891
892// ===========================================================================
893// GDPR Writer Policy (Gap G-7)
894//
895// GDPR Art. 32(1)(a) — Enforces encryption at rest for PII-classified columns.
896// Validates that an EncryptionConfig encrypts all columns classified as
897// PERSONAL or SENSITIVE.
898//
899// Reference: GDPR Art. 32(1)(a) — encryption as a security measure
900// ===========================================================================
901
903struct PolicyValidationResult {
904 bool compliant = true;
905 std::vector<std::string> violations;
906};
907
913[[nodiscard]] inline PolicyValidationResult validate_gdpr_policy(
914 const std::vector<ColumnClassification>& classifications,
915 const std::vector<std::string>& encrypted_columns) {
916
917 PolicyValidationResult result;
918 for (const auto& cc : classifications) {
919 if (requires_encryption(cc.classification)) {
920 bool found = false;
921 for (const auto& enc_col : encrypted_columns) {
922 if (enc_col == cc.column_name) {
923 found = true;
924 break;
925 }
926 }
927 if (!found) {
928 result.compliant = false;
929 result.violations.push_back(cc.column_name);
930 }
931 }
932 }
933 return result;
934}
935
936// ===========================================================================
937// Records of Processing Activities (ROPA) (Gap G-3)
938//
939// GDPR Art. 30 — Controllers must maintain records of processing activities.
940//
941// Reference: GDPR Art. 30(1) — Records of processing activities
942// ===========================================================================
943
945struct ProcessingActivity {
946 std::string activity_id;
947 std::string controller_name;
948 std::string purpose;
949 std::string lawful_basis;
950 std::string data_subject_categories;
951 std::string data_categories;
952 std::string recipients;
953 std::string third_country_transfers;
954 int32_t retention_days = 0;
955 std::string security_measures;
956 int64_t last_updated_ns = 0;
957};
958
959// ===========================================================================
960// Data retention / TTL / automatic purging (Gap G-4)
961//
962// GDPR Art. 5(1)(e) — Storage limitation principle.
963//
964// Reference: GDPR Art. 5(1)(e) — data shall be kept for no longer than
965// is necessary for the purposes for which it is processed
966// ===========================================================================
967
969struct RetentionPolicy {
970 std::string policy_id;
971 int32_t retention_days = 365;
972 bool auto_purge = false;
973 std::string archive_location;
974 std::string legal_hold_id;
975};
976
982[[nodiscard]] inline bool is_expired(const RetentionPolicy& policy,
983 int64_t data_created_ns,
984 int64_t now_ns) {
985 if (!policy.legal_hold_id.empty()) return false; // Legal hold suspends retention
986 int64_t retention_ns = static_cast<int64_t>(policy.retention_days) * 86400LL * 1000000000LL;
987 return (now_ns - data_created_ns) > retention_ns;
988}
989
990// ===========================================================================
991// DPIA report generator (Gap G-6)
992//
993// GDPR Art. 35 — Data Protection Impact Assessment.
994//
995// Reference: GDPR Art. 35(7) — required DPIA contents
996// ===========================================================================
997
999struct DPIARecord {
1000 std::string dpia_id;
1001 std::string processing_description;
1002 std::string necessity_assessment;
1003 std::string risks_to_rights;
1004 std::string mitigation_measures;
1005 std::string dpo_opinion;
1006 int64_t completed_ns = 0;
1007 bool approved = false;
1008};
1009
1010// ===========================================================================
1011// Data Subject Access Request (DSAR) support (Gap G-8)
1012//
1013// GDPR Art. 15 — Right of access by the data subject.
1014//
1015// Reference: GDPR Art. 15(1)-(3) — information to provide
1016// ===========================================================================
1017
1019struct SubjectDataQuery {
1020 std::string subject_id;
1021 std::string subject_id_column;
1022 int64_t from_ns = 0;
1023 int64_t to_ns = 0;
1024 std::vector<std::string> file_paths;
1025};
1026
1028struct SubjectDataResponse {
1029 std::string request_id;
1030 std::string subject_id;
1031 int64_t completed_ns = 0;
1032 int64_t records_found = 0;
1033 std::string data_categories;
1034 std::string processing_purposes;
1035 bool exported = false;
1036};
1037
1038} // namespace gdpr
1039
1040// ===========================================================================
1041// EU AI Act framework hooks (Gaps R-6 through R-9, R-15 through R-18)
1042// ===========================================================================
1043
1044namespace eu_ai_act {
1045
1046// ---------------------------------------------------------------------------
1047// Gap R-6: Accuracy/robustness metrics (Art. 15)
1048// ---------------------------------------------------------------------------
1049
1051struct PerformanceMetric {
1052 std::string metric_name;
1053 double value = 0.0;
1054 double baseline = 0.0;
1055 int64_t measured_ns = 0;
1056 std::string dataset_id;
1057};
1058
1060struct DriftMetric {
1061 std::string feature_name;
1062 double psi = 0.0;
1063 double ks_statistic = 0.0;
1064 double drift_threshold = 0.25;
1065 bool drifted = false;
1066 int64_t measured_ns = 0;
1067};
1068
1070[[nodiscard]] inline bool is_drifted(const DriftMetric& m) {
1071 return m.psi > m.drift_threshold;
1072}
1073
1074// ---------------------------------------------------------------------------
1075// Gap R-7: Risk management system (Art. 9)
1076// ---------------------------------------------------------------------------
1077
1079enum class AIRiskLevel : int32_t {
1080 MINIMAL = 0,
1081 LIMITED = 1,
1082 HIGH = 2,
1083 UNACCEPTABLE = 3,
1084};
1085
1095
1096// ---------------------------------------------------------------------------
1097// Gap R-8: Technical documentation (Art. 11, Annex IV)
1098// ---------------------------------------------------------------------------
1099
1101struct TechnicalDocumentation {
1102 std::string doc_id;
1103 std::string system_description;
1104 std::string intended_purpose;
1105 std::string design_specifications;
1106 std::string data_requirements;
1107 std::string validation_results;
1108 std::string risk_management_ref;
1109 int64_t version_ns = 0;
1110};
1111
1112// ---------------------------------------------------------------------------
1113// Gap R-9: Quality management system (Art. 17)
1114// ---------------------------------------------------------------------------
1115
1117struct QMSCheckPoint {
1118 std::string checkpoint_id;
1119 std::string model_version;
1120 std::string data_quality_report;
1121 std::string change_description;
1122 bool approved = false;
1123 std::string approver;
1124 int64_t timestamp_ns = 0;
1125};
1126
1127// ---------------------------------------------------------------------------
1128// Gap R-15: Training data governance (Art. 10)
1129// ---------------------------------------------------------------------------
1130
1132struct TrainingDataMetrics {
1133 std::string dataset_id;
1134 int64_t total_records = 0;
1135 double completeness = 0.0;
1136 double class_balance = 0.0;
1137 int64_t temporal_coverage_start_ns = 0;
1138 int64_t temporal_coverage_end_ns = 0;
1139 std::string known_biases;
1140 std::string preprocessing_steps;
1141};
1142
1143// ---------------------------------------------------------------------------
1144// Gap R-15b: System lifecycle event logging (Art. 12(2))
1145// ---------------------------------------------------------------------------
1146
1148enum class LifecycleEventType : int32_t {
1149 SYSTEM_START = 0,
1150 SYSTEM_STOP = 1,
1151 CONFIG_CHANGE = 2,
1152 MODEL_SWAP = 3,
1153 ERROR_RECOVERY = 4,
1154 HUMAN_OVERRIDE = 5,
1155 KEY_ROTATION = 6,
1156 DEPLOYMENT = 7,
1157};
1158
1169
1170// ---------------------------------------------------------------------------
1171// Gap R-16: Post-market monitoring (Art. 61)
1172// ---------------------------------------------------------------------------
1173
1175struct PostMarketDataPoint {
1176 std::string metric_name;
1177 double value = 0.0;
1178 int64_t timestamp_ns = 0;
1179 std::string deployment_id;
1180 std::string environment;
1181};
1182
1183// ---------------------------------------------------------------------------
1184// Gap R-18: Serious incident reporting (Art. 62)
1185// ---------------------------------------------------------------------------
1186
1188struct SeriousIncidentReport {
1189 std::string report_id;
1190 std::string system_id;
1191 int64_t occurred_ns = 0;
1192 int64_t reported_ns = 0;
1193 std::string description;
1194 std::string harm_caused;
1195 std::string corrective_action;
1196 bool reported_to_authority = false;
1197};
1198
1199} // namespace eu_ai_act
1200
1201// ===========================================================================
1202// MiFID II additional gaps (R-13, R-13b, R-13c, R-14, R-17, R-18b)
1203// ===========================================================================
1204
1205namespace mifid2 {
1206
1207// ---------------------------------------------------------------------------
1208// Gap R-13: Chain hash in compliance reports
1209// ---------------------------------------------------------------------------
1210
1213struct ReportIntegrity {
1214 std::string report_id;
1215 int64_t chain_seq = 0;
1216 std::string chain_hash;
1217 std::string content_hash;
1218};
1219
1220// ---------------------------------------------------------------------------
1221// Gap R-13b: Report signing / non-repudiation
1222// ---------------------------------------------------------------------------
1223
1225struct SignedReport {
1226 std::string report_id;
1227 std::string content;
1228 std::string signature;
1229 std::string signer_key_id;
1230 std::string algorithm;
1231 int64_t signed_ns = 0;
1232};
1233
1234// ---------------------------------------------------------------------------
1235// Gap R-13c: Completeness attestation / gap detection
1236// ---------------------------------------------------------------------------
1237
1239struct CompletenessAttestation {
1240 int64_t period_start_ns = 0;
1241 int64_t period_end_ns = 0;
1242 int64_t expected_records = 0;
1243 int64_t actual_records = 0;
1244 bool complete = true;
1245 std::vector<std::pair<int64_t, int64_t>> gaps;
1246};
1247
1249[[nodiscard]] inline bool has_gaps(const CompletenessAttestation& att) {
1250 return !att.gaps.empty() || att.actual_records < att.expected_records;
1251}
1252
1253// ---------------------------------------------------------------------------
1254// Gap R-14: Annual self-assessment framework
1255// ---------------------------------------------------------------------------
1256
1258struct AnnualSelfAssessment {
1259 std::string assessment_id;
1260 int32_t year = 0;
1261 std::string algo_trading_summary;
1262 std::string risk_controls_review;
1263 std::string system_resilience_review;
1264 std::string compliance_findings;
1265 std::string remediation_plan;
1266 bool submitted_to_nca = false;
1267 int64_t completed_ns = 0;
1268};
1269
1270// ---------------------------------------------------------------------------
1271// Gap R-17: Order lifecycle linking
1272// ---------------------------------------------------------------------------
1273
1275struct OrderLifecycleEvent {
1276 std::string order_id;
1277 std::string parent_order_id;
1278 std::string event_type;
1279 int64_t timestamp_ns = 0;
1280 double price = 0.0;
1281 double quantity = 0.0;
1282 std::string venue_mic;
1283};
1284
1285// ---------------------------------------------------------------------------
1286// Gap R-18b: Source file manifest in reports
1287// ---------------------------------------------------------------------------
1288
1290struct SourceFileEntry {
1291 std::string file_path;
1292 std::string file_hash;
1293 int64_t file_size = 0;
1294 int64_t records_consumed = 0;
1295 int64_t processed_ns = 0;
1296};
1297
1298} // namespace mifid2
1299
1300} // namespace signet::forge
signet::forge::dora::ResilienceTestResult
ResilienceTestResult
Resilience test result.
Definition compliance_types.hpp:647
signet::forge::dora::ResilienceTestResult::DEGRADED
@ DEGRADED
System operated in degraded mode.
signet::forge::dora::ResilienceTestResult::PASS
@ PASS
System handled the test gracefully.
signet::forge::dora::ResilienceTestResult::FAIL
@ FAIL
System failed to handle the test.
signet::forge::dora::KeyState
KeyState
Key lifecycle state per NIST SP 800-57.
Definition compliance_types.hpp:551
signet::forge::dora::KeyState::DEACTIVATED
@ DEACTIVATED
Key no longer used for new encryption; may decrypt.
signet::forge::dora::KeyState::ACTIVE
@ ACTIVE
Key in active use for encryption.
signet::forge::dora::KeyState::DESTROYED
@ DESTROYED
Key material securely destroyed.
signet::forge::dora::KeyState::COMPROMISED
@ COMPROMISED
Key suspected or confirmed compromised.
signet::forge::dora::KeyState::PRE_ACTIVATION
@ PRE_ACTIVATION
Key generated but not yet active.
signet::forge::dora::NotificationLevel
NotificationLevel
Notification severity level.
Definition compliance_types.hpp:770
signet::forge::dora::NotificationLevel::WARNING
@ WARNING
Warning — attention required.
signet::forge::dora::NotificationLevel::ALERT
@ ALERT
Alert — action required.
signet::forge::dora::meets_rpo
bool meets_rpo(const BackupPolicy &policy, int64_t last_backup_ns, int64_t now_ns)
Check if a backup meets its RPO requirement.
Definition compliance_types.hpp:533
signet::forge::dora::IncidentSeverity
IncidentSeverity
ICT incident severity per DORA Art. 15.
Definition compliance_types.hpp:595
signet::forge::dora::IncidentSeverity::LOW
@ LOW
Minor incident, no significant impact.
signet::forge::dora::IncidentSeverity::CRITICAL
@ CRITICAL
Critical incident, business continuity at risk.
signet::forge::dora::IncidentCategory
IncidentCategory
ICT incident category per DORA Art. 10.
Definition compliance_types.hpp:603
signet::forge::dora::IncidentCategory::SECURITY
@ SECURITY
Unauthorized access, data breach.
signet::forge::dora::IncidentCategory::THIRD_PARTY
@ THIRD_PARTY
Third-party service failure.
signet::forge::dora::IncidentCategory::DATA_INTEGRITY
@ DATA_INTEGRITY
Data corruption, hash chain break.
signet::forge::dora::IncidentCategory::CRYPTOGRAPHIC
@ CRYPTOGRAPHIC
Key compromise, decryption failure.
signet::forge::dora::IncidentCategory::OPERATIONAL
@ OPERATIONAL
System failure, outage.
signet::forge::dora::needs_rotation
bool needs_rotation(const KeyLifecycleRecord &record, int64_t now_ns)
Check if a key needs rotation based on its crypto-period.
Definition compliance_types.hpp:575
signet::forge::dora::BackupStatus
BackupStatus
Backup verification status.
Definition compliance_types.hpp:498
signet::forge::dora::BackupStatus::VERIFIED
@ VERIFIED
Backup verified via integrity check.
signet::forge::dora::BackupStatus::COMPLETED
@ COMPLETED
Backup completed successfully.
signet::forge::dora::BackupStatus::PENDING
@ PENDING
Backup not yet started.
signet::forge::dora::BackupStatus::IN_PROGRESS
@ IN_PROGRESS
Backup in progress.
signet::forge::dora::AnomalyType
AnomalyType
Anomaly type for ICT monitoring.
Definition compliance_types.hpp:704
signet::forge::dora::AnomalyType::DATA_VOLUME_ANOMALY
@ DATA_VOLUME_ANOMALY
Unusual data volume (too much or too little).
signet::forge::dora::AnomalyType::AUTH_FAILURE
@ AUTH_FAILURE
Authentication/authorization failures.
signet::forge::dora::AnomalyType::UNUSUAL_IO
@ UNUSUAL_IO
Unusual I/O patterns (read/write volume).
signet::forge::dora::AnomalyType::CHAIN_BREAK
@ CHAIN_BREAK
Hash chain integrity violation.
signet::forge::dora::AnomalyType::DECRYPTION_FAILURE
@ DECRYPTION_FAILURE
Unexpected decryption errors.
signet::forge::dora::AnomalyType::LATENCY_SPIKE
@ LATENCY_SPIKE
Unusual latency increase.
signet::forge::dora::ResilienceTestType
ResilienceTestType
Resilience test type.
Definition compliance_types.hpp:638
signet::forge::dora::ResilienceTestType::STRESS_TEST
@ STRESS_TEST
Load/stress beyond normal capacity.
signet::forge::dora::ResilienceTestType::RECOVERY_TEST
@ RECOVERY_TEST
Test backup recovery procedures.
signet::forge::dora::ResilienceTestType::FAULT_INJECTION
@ FAULT_INJECTION
Simulate component failure.
signet::forge::dora::ResilienceTestType::TLPT
@ TLPT
Threat-led penetration test (Art. 26).
signet::forge::dora::ResilienceTestType::SCENARIO_BASED
@ SCENARIO_BASED
Predefined failure scenario.
signet::forge::dora::AssetCriticality
AssetCriticality
ICT asset criticality level per DORA Art. 8(1).
Definition compliance_types.hpp:465
signet::forge::dora::AssetCriticality::LOW
@ LOW
Non-critical, no significant impact if unavailable.
signet::forge::dora::AssetCriticality::VITAL
@ VITAL
Vital; unavailability threatens business continuity.
signet::forge::dora::AssetCriticality::HIGH
@ HIGH
Critical; direct impact on core business functions.
signet::forge::dora::AssetCriticality::MEDIUM
@ MEDIUM
Moderate impact; degraded service if unavailable.
signet::forge::eu_ai_act::AIRiskLevel
AIRiskLevel
AI system risk classification per EU AI Act Art. 6.
Definition compliance_types.hpp:1079
signet::forge::eu_ai_act::AIRiskLevel::MINIMAL
@ MINIMAL
Minimal risk — no obligations.
signet::forge::eu_ai_act::AIRiskLevel::HIGH
@ HIGH
High risk — full compliance required.
signet::forge::eu_ai_act::AIRiskLevel::UNACCEPTABLE
@ UNACCEPTABLE
Unacceptable risk — prohibited.
signet::forge::eu_ai_act::AIRiskLevel::LIMITED
@ LIMITED
Limited risk — transparency obligations.
signet::forge::eu_ai_act::LifecycleEventType
LifecycleEventType
System lifecycle event type.
Definition compliance_types.hpp:1148
signet::forge::eu_ai_act::LifecycleEventType::KEY_ROTATION
@ KEY_ROTATION
signet::forge::eu_ai_act::LifecycleEventType::SYSTEM_STOP
@ SYSTEM_STOP
signet::forge::eu_ai_act::LifecycleEventType::MODEL_SWAP
@ MODEL_SWAP
signet::forge::eu_ai_act::LifecycleEventType::SYSTEM_START
@ SYSTEM_START
signet::forge::eu_ai_act::LifecycleEventType::ERROR_RECOVERY
@ ERROR_RECOVERY
signet::forge::eu_ai_act::LifecycleEventType::HUMAN_OVERRIDE
@ HUMAN_OVERRIDE
signet::forge::eu_ai_act::LifecycleEventType::DEPLOYMENT
@ DEPLOYMENT
signet::forge::eu_ai_act::LifecycleEventType::CONFIG_CHANGE
@ CONFIG_CHANGE
signet::forge::eu_ai_act::is_drifted
bool is_drifted(const DriftMetric &m)
Check if a drift metric exceeds its threshold.
Definition compliance_types.hpp:1070
signet::forge::gdpr::is_expired
bool is_expired(const RetentionPolicy &policy, int64_t data_created_ns, int64_t now_ns)
Check if data has exceeded its retention period.
Definition compliance_types.hpp:982
signet::forge::gdpr::requires_encryption
bool requires_encryption(DataClassification c)
Check if a classification level requires encryption under GDPR Art.
Definition compliance_types.hpp:440
signet::forge::gdpr::pseudonymize_hmac
void pseudonymize_hmac(const uint8_t *key, size_t key_size, const uint8_t *value, size_t value_size, char *out, size_t out_size)
Pseudonymize a value using HMAC-SHA256.
Definition compliance_types.hpp:855
signet::forge::gdpr::allows_pseudonymization
bool allows_pseudonymization(DataClassification c)
Check if a classification level allows pseudonymization.
Definition compliance_types.hpp:446
signet::forge::gdpr::PseudonymStrategy
PseudonymStrategy
Pseudonymization strategy.
Definition compliance_types.hpp:831
signet::forge::gdpr::PseudonymStrategy::HMAC_SHA256
@ HMAC_SHA256
HMAC-SHA256 hash (deterministic, irreversible).
signet::forge::gdpr::PseudonymStrategy::RANDOM_TOKEN
@ RANDOM_TOKEN
Random token (non-deterministic, requires mapping table).
signet::forge::gdpr::DataClassification
DataClassification
Data classification levels for GDPR compliance.
Definition compliance_types.hpp:417
signet::forge::gdpr::DataClassification::PSEUDONYMIZED
@ PSEUDONYMIZED
Already pseudonymized (Art. 4(5)).
signet::forge::gdpr::DataClassification::INTERNAL
@ INTERNAL
Internal business data, not personal.
signet::forge::gdpr::DataClassification::ANONYMIZED
@ ANONYMIZED
Fully anonymized — outside GDPR scope.
signet::forge::gdpr::DataClassification::SENSITIVE
@ SENSITIVE
Special category data (GDPR Art. 9): health, race, religion.
signet::forge::gdpr::DataClassification::PUBLIC
@ PUBLIC
Non-personal, no restrictions.
signet::forge::gdpr::DataClassification::PERSONAL
@ PERSONAL
Personal data (GDPR Art. 4(1)): name, email, phone.
signet::forge::gdpr::validate_gdpr_policy
PolicyValidationResult validate_gdpr_policy(const std::vector< ColumnClassification > &classifications, const std::vector< std::string > &encrypted_columns)
Validate that all PII-classified columns have encryption keys.
Definition compliance_types.hpp:913
signet::forge::mifid2::has_gaps
bool has_gaps(const CompletenessAttestation &att)
Check if a reporting period has gaps.
Definition compliance_types.hpp:1249
signet::forge::regulatory::validate_mic
bool validate_mic(const std::string &mic)
Validate a MIC (Market Identifier Code) per ISO 10383.
Definition compliance_types.hpp:289
signet::forge::regulatory::validate_lei
bool validate_lei(const std::string &lei)
Validate an LEI (Legal Entity Identifier) per ISO 17442.
Definition compliance_types.hpp:210
signet::forge::regulatory::validate_isin
bool validate_isin(const std::string &isin)
Validate an ISIN (International Securities Identification Number) per ISO 6166.
Definition compliance_types.hpp:243
signet::forge::risk::RiskCheckResult
RiskCheckResult
Pre-trade risk check result.
Definition compliance_types.hpp:313
signet::forge::risk::RiskCheckResult::REJECT
@ REJECT
Order rejected by risk check — must not be sent.
signet::forge::risk::RiskCheckResult::PASS
@ PASS
Order passes all pre-trade risk checks.
signet::forge::risk::RiskCheckResult::THROTTLE
@ THROTTLE
Order rate-limited — retry after cooldown.
signet::forge::risk::RiskRejectReason
RiskRejectReason
Reason for a risk check rejection.
Definition compliance_types.hpp:320
signet::forge::risk::RiskRejectReason::MAX_ORDER_SIZE
@ MAX_ORDER_SIZE
Notional value exceeds single-order limit (RTS 6 Art. 17(1)(b)).
signet::forge::risk::RiskRejectReason::MAX_DAILY_VOLUME
@ MAX_DAILY_VOLUME
Cumulative daily volume exceeds limit.
signet::forge::risk::RiskRejectReason::PRICE_COLLAR
@ PRICE_COLLAR
Price outside allowed deviation from reference (RTS 6 Art. 17(1)(a)).
signet::forge::risk::RiskRejectReason::CUSTOM
@ CUSTOM
Custom rejection reason (see reject_message).
signet::forge::risk::RiskRejectReason::NONE
@ NONE
No rejection (check passed).
signet::forge::risk::RiskRejectReason::MAX_MESSAGE_RATE
@ MAX_MESSAGE_RATE
Order/cancel rate exceeds messages-per-second cap.
signet::forge::risk::RiskRejectReason::INSTRUMENT_BANNED
@ INSTRUMENT_BANNED
Instrument on restricted list.
signet::forge::risk::check_order
PreTradeCheckResult check_order(const PreTradeRiskLimits &limits, double order_price, double reference_price, double order_notional, double daily_notional)
Perform a pre-trade risk check on a proposed order.
Definition compliance_types.hpp:356
signet::forge::TimestampGranularity
TimestampGranularity
Timestamp granularity for MiFID II RTS 24 Art.2(2) compliance.
Definition compliance_types.hpp:36
signet::forge::TimestampGranularity::NANOS
@ NANOS
9 sub-second digits (default, MiFID II HFT compliant)
signet::forge::now_ns
int64_t now_ns()
Return the current time as nanoseconds since the Unix epoch (UTC).
Definition audit_chain.hpp:110
signet::forge::ComplianceStandard
ComplianceStandard
Which regulatory standard a compliance report satisfies.
Definition compliance_types.hpp:43
signet::forge::ComplianceStandard::MIFID2_RTS24
@ MIFID2_RTS24
MiFID II RTS 24 — algorithmic trading records.
signet::forge::ComplianceStandard::EU_AI_ACT_ART13
@ EU_AI_ACT_ART13
EU AI Act Article 13 — transparency disclosure.
signet::forge::ComplianceStandard::EU_AI_ACT_ART19
@ EU_AI_ACT_ART19
EU AI Act Article 19 — conformity assessment summary.
signet::forge::ComplianceStandard::EU_AI_ACT_ART12
@ EU_AI_ACT_ART12
EU AI Act Article 12 — operational logging.
signet::forge::ReportFormat
ReportFormat
Output serialization format for compliance reports.
Definition compliance_types.hpp:25
signet::forge::ReportFormat::JSON
@ JSON
Pretty-printed JSON object (default)
signet::forge::ReportFormat::NDJSON
@ NDJSON
Newline-delimited JSON — one record per line (streaming-friendly)
signet::forge::ReportFormat::CSV
@ CSV
Comma-separated values with header row.
signet::forge::ComplianceReport
The generated compliance report returned to the caller.
Definition compliance_types.hpp:140
signet::forge::ComplianceReport::standard
ComplianceStandard standard
Which regulation this report satisfies.
Definition compliance_types.hpp:142
signet::forge::ComplianceReport::chain_verified
bool chain_verified
True if all log files' hash chains verified successfully.
Definition compliance_types.hpp:165
signet::forge::ComplianceReport::chain_id
std::string chain_id
Chain ID from the first log file processed.
Definition compliance_types.hpp:168
signet::forge::ComplianceReport::content
std::string content
The report body — JSON object, NDJSON lines, or CSV text.
Definition compliance_types.hpp:148
signet::forge::ComplianceReport::period_start_iso
std::string period_start_iso
ISO 8601 representation of opts.start_ns.
Definition compliance_types.hpp:171
signet::forge::ComplianceReport::generated_at_ns
int64_t generated_at_ns
Nanosecond timestamp at which the report was generated.
Definition compliance_types.hpp:157
signet::forge::ComplianceReport::report_id
std::string report_id
Unique identifier for this report (auto-generated if not supplied).
Definition compliance_types.hpp:151
signet::forge::ComplianceReport::format
ReportFormat format
Serialization format of content.
Definition compliance_types.hpp:145
signet::forge::ComplianceReport::total_records
int64_t total_records
Number of records included in this report.
Definition compliance_types.hpp:160
signet::forge::ComplianceReport::generated_at_iso
std::string generated_at_iso
UTC ISO 8601 timestamp at which the report was generated.
Definition compliance_types.hpp:154
signet::forge::ComplianceReport::period_end_iso
std::string period_end_iso
ISO 8601 representation of opts.end_ns (or "open" if unbounded).
Definition compliance_types.hpp:174
signet::forge::ComplianceReport::read_errors
std::vector< std::string > read_errors
H-20: Accumulated read errors from log files whose records could not be read.
Definition compliance_types.hpp:181
signet::forge::ComplianceReport::incomplete_data
bool incomplete_data
H-20: True if one or more log file batches could not be read.
Definition compliance_types.hpp:178
signet::forge::ReportOptions
Query and formatting parameters for compliance report generation.
Definition compliance_types.hpp:56
signet::forge::ReportOptions::format
ReportFormat format
Output serialization format.
Definition compliance_types.hpp:66
signet::forge::ReportOptions::start_ns
int64_t start_ns
Inclusive start of the reporting period (nanoseconds since Unix epoch).
Definition compliance_types.hpp:59
signet::forge::ReportOptions::bias_risks
std::string bias_risks
Art.15: Known biases or fairness concerns.
Definition compliance_types.hpp:130
signet::forge::ReportOptions::timestamp_granularity
TimestampGranularity timestamp_granularity
Timestamp sub-second granularity (MiFID II RTS 24 Art.2(2)).
Definition compliance_types.hpp:106
signet::forge::ReportOptions::risk_level
int risk_level
Art.9: Risk classification level (1=minimal, 2=limited, 3=high, 4=unacceptable).
Definition compliance_types.hpp:133
signet::forge::ReportOptions::strict_source_reads
bool strict_source_reads
If true, any source-log read failure aborts report generation instead of producing an incomplete regu...
Definition compliance_types.hpp:74
signet::forge::ReportOptions::include_features
bool include_features
If true, include raw input feature vectors in the report output.
Definition compliance_types.hpp:79
signet::forge::ReportOptions::verify_chain
bool verify_chain
If true, verify the hash chain of each log file before generating the report and record the result in...
Definition compliance_types.hpp:70
signet::forge::ReportOptions::low_confidence_threshold
float low_confidence_threshold
Low-confidence threshold for EU AI Act anomaly counting.
Definition compliance_types.hpp:98
signet::forge::ReportOptions::end_ns
int64_t end_ns
Inclusive end of the reporting period (nanoseconds since Unix epoch).
Definition compliance_types.hpp:63
signet::forge::ReportOptions::provider_name
std::string provider_name
Art.13(3)(a): Provider name and contact information.
Definition compliance_types.hpp:117
signet::forge::ReportOptions::pretty_print
bool pretty_print
If true, emit human-readable indented JSON (2-space indent).
Definition compliance_types.hpp:82
signet::forge::ReportOptions::known_limitations
std::string known_limitations
Art.13(3)(b)(ii): Known limitations and foreseeable misuse risks.
Definition compliance_types.hpp:114
signet::forge::ReportOptions::price_significant_digits
int price_significant_digits
Significant digits for price fields (MiFID II RTS 24 Annex I Field 6).
Definition compliance_types.hpp:102
signet::forge::ReportOptions::firm_id
std::string firm_id
Organisation / firm identifier for MiFID II field 1.
Definition compliance_types.hpp:94
signet::forge::ReportOptions::report_id
std::string report_id
Optional: unique identifier for this report filing.
Definition compliance_types.hpp:90
signet::forge::ReportOptions::system_id
std::string system_id
Logical identifier for the AI system being reported on.
Definition compliance_types.hpp:86
signet::forge::ReportOptions::human_oversight_measures
std::string human_oversight_measures
Art.14: Human oversight measures description.
Definition compliance_types.hpp:124
signet::forge::ReportOptions::instructions_for_use
std::string instructions_for_use
Art.13(3)(b)(iv): Instructions for use / deployment guidance.
Definition compliance_types.hpp:121
signet::forge::ReportOptions::intended_purpose
std::string intended_purpose
Art.13(3)(b)(i): Intended purpose of the AI system.
Definition compliance_types.hpp:111
signet::forge::ReportOptions::accuracy_metrics
std::string accuracy_metrics
Art.15: Accuracy metrics description (e.g. "F1=0.94 on test set v3").
Definition compliance_types.hpp:127
signet::forge::dora::AnomalyRecord::component
std::string component
Affected component.
Definition compliance_types.hpp:720
signet::forge::dora::AnomalyRecord::value
double value
Observed metric value.
Definition compliance_types.hpp:718
signet::forge::dora::AnomalyRecord::anomaly_id
std::string anomaly_id
Unique anomaly identifier.
Definition compliance_types.hpp:715
signet::forge::dora::AnomalyRecord::threshold
double threshold
Expected threshold.
Definition compliance_types.hpp:719
signet::forge::dora::AnomalyRecord::action_taken
std::string action_taken
Response action.
Definition compliance_types.hpp:721
signet::forge::dora::AnomalyRecord::detected_ns
int64_t detected_ns
Detection timestamp.
Definition compliance_types.hpp:717
signet::forge::dora::BackupPolicy
Backup policy configuration per DORA Art. 12.
Definition compliance_types.hpp:507
signet::forge::dora::BackupPolicy::rpo_seconds
int64_t rpo_seconds
Recovery Point Objective (max data loss: default 1h).
Definition compliance_types.hpp:509
signet::forge::dora::BackupPolicy::integrity_check
bool integrity_check
Verify backup integrity after creation.
Definition compliance_types.hpp:513
signet::forge::dora::BackupPolicy::rto_seconds
int64_t rto_seconds
Recovery Time Objective (max downtime: default 4h).
Definition compliance_types.hpp:510
signet::forge::dora::BackupPolicy::encryption_required
bool encryption_required
Backups must be encrypted.
Definition compliance_types.hpp:512
signet::forge::dora::BackupPolicy::policy_id
std::string policy_id
Unique policy identifier.
Definition compliance_types.hpp:508
signet::forge::dora::BackupPolicy::retention_days
int32_t retention_days
Backup retention period.
Definition compliance_types.hpp:511
signet::forge::dora::BackupPolicy::storage_location
std::string storage_location
Backup storage location.
Definition compliance_types.hpp:514
signet::forge::dora::BackupRecord
Backup record for audit trail.
Definition compliance_types.hpp:518
signet::forge::dora::BackupRecord::policy_id
std::string policy_id
Associated policy.
Definition compliance_types.hpp:520
signet::forge::dora::BackupRecord::completed_ns
int64_t completed_ns
Backup completion timestamp.
Definition compliance_types.hpp:522
signet::forge::dora::BackupRecord::checksum
std::string checksum
SHA-256 integrity hash.
Definition compliance_types.hpp:525
signet::forge::dora::BackupRecord::started_ns
int64_t started_ns
Backup start timestamp.
Definition compliance_types.hpp:521
signet::forge::dora::BackupRecord::backup_id
std::string backup_id
Unique backup identifier.
Definition compliance_types.hpp:519
signet::forge::dora::ICTAssetDescriptor
ICT asset descriptor for DORA Art.
Definition compliance_types.hpp:476
signet::forge::dora::ICTAssetDescriptor::asset_id
std::string asset_id
Unique asset identifier.
Definition compliance_types.hpp:477
signet::forge::dora::ICTAssetDescriptor::asset_type
std::string asset_type
Type: "data_store", "key_store", "pipeline", etc.
Definition compliance_types.hpp:479
signet::forge::dora::ICTAssetDescriptor::asset_name
std::string asset_name
Human-readable name.
Definition compliance_types.hpp:478
signet::forge::dora::ICTAssetDescriptor::location
std::string location
Data center / cloud region.
Definition compliance_types.hpp:482
signet::forge::dora::ICTAssetDescriptor::owner
std::string owner
Responsible person or team.
Definition compliance_types.hpp:481
signet::forge::dora::ICTAssetDescriptor::last_assessed_ns
int64_t last_assessed_ns
Last risk assessment timestamp (ns since epoch).
Definition compliance_types.hpp:484
signet::forge::dora::ICTAssetDescriptor::dependencies
std::string dependencies
Comma-separated dependent asset IDs.
Definition compliance_types.hpp:483
signet::forge::dora::ICTIncidentRecord
ICT incident record for DORA Art. 19 reporting.
Definition compliance_types.hpp:612
signet::forge::dora::ICTIncidentRecord::incident_id
std::string incident_id
Unique incident identifier.
Definition compliance_types.hpp:613
signet::forge::dora::ICTIncidentRecord::reported_to_authority
bool reported_to_authority
Art. 19 authority notification.
Definition compliance_types.hpp:622
signet::forge::dora::ICTIncidentRecord::description
std::string description
Incident description.
Definition compliance_types.hpp:618
signet::forge::dora::ICTIncidentRecord::detected_ns
int64_t detected_ns
Detection timestamp.
Definition compliance_types.hpp:616
signet::forge::dora::ICTIncidentRecord::impact
std::string impact
Business impact assessment.
Definition compliance_types.hpp:619
signet::forge::dora::ICTIncidentRecord::remediation
std::string remediation
Remediation actions taken.
Definition compliance_types.hpp:621
signet::forge::dora::ICTIncidentRecord::resolved_ns
int64_t resolved_ns
Resolution timestamp (0 = ongoing).
Definition compliance_types.hpp:617
signet::forge::dora::ICTIncidentRecord::root_cause
std::string root_cause
Root cause (post-resolution).
Definition compliance_types.hpp:620
signet::forge::dora::ICTNotification::subject
std::string subject
Notification subject.
Definition compliance_types.hpp:782
signet::forge::dora::ICTNotification::timestamp_ns
int64_t timestamp_ns
Notification timestamp.
Definition compliance_types.hpp:781
signet::forge::dora::ICTNotification::recipients
std::string recipients
Comma-separated recipient list.
Definition compliance_types.hpp:784
signet::forge::dora::ICTNotification::acknowledged
bool acknowledged
Whether the notification was acknowledged.
Definition compliance_types.hpp:785
signet::forge::dora::ICTNotification::message
std::string message
Notification body.
Definition compliance_types.hpp:783
signet::forge::dora::ICTNotification::notification_id
std::string notification_id
Unique notification identifier.
Definition compliance_types.hpp:779
signet::forge::dora::ICTRiskEntry
ICT risk entry for the risk register.
Definition compliance_types.hpp:684
signet::forge::dora::ICTRiskEntry::controls
std::string controls
Applied mitigating controls.
Definition compliance_types.hpp:689
signet::forge::dora::ICTRiskEntry::inherent_risk
RiskLevel inherent_risk
Risk before controls.
Definition compliance_types.hpp:687
signet::forge::dora::ICTRiskEntry::last_reviewed_ns
int64_t last_reviewed_ns
Last review timestamp.
Definition compliance_types.hpp:691
signet::forge::dora::ICTRiskEntry::risk_id
std::string risk_id
Unique risk identifier.
Definition compliance_types.hpp:685
signet::forge::dora::ICTRiskEntry::description
std::string description
Risk description.
Definition compliance_types.hpp:686
signet::forge::dora::ICTRiskEntry::next_review_ns
int64_t next_review_ns
Next scheduled review.
Definition compliance_types.hpp:692
signet::forge::dora::ICTRiskEntry::residual_risk
RiskLevel residual_risk
Risk after controls.
Definition compliance_types.hpp:688
signet::forge::dora::KeyLifecycleRecord
Key lifecycle record for rotation tracking.
Definition compliance_types.hpp:560
signet::forge::dora::KeyLifecycleRecord::algorithm
std::string algorithm
Algorithm: "AES-256-GCM", "AES-256-CTR", etc.
Definition compliance_types.hpp:567
signet::forge::dora::KeyLifecycleRecord::expiry_ns
int64_t expiry_ns
Key expiry timestamp (crypto-period end).
Definition compliance_types.hpp:566
signet::forge::dora::KeyLifecycleRecord::replaced_by
std::string replaced_by
Key ID of replacement (after rotation).
Definition compliance_types.hpp:568
signet::forge::dora::KeyLifecycleRecord::created_ns
int64_t created_ns
Key creation timestamp.
Definition compliance_types.hpp:563
signet::forge::dora::KeyLifecycleRecord::activation_ns
int64_t activation_ns
Key activation timestamp.
Definition compliance_types.hpp:564
signet::forge::dora::KeyLifecycleRecord::key_id
std::string key_id
Unique key identifier.
Definition compliance_types.hpp:561
signet::forge::dora::KeyLifecycleRecord::deactivation_ns
int64_t deactivation_ns
Key deactivation timestamp.
Definition compliance_types.hpp:565
signet::forge::dora::PostIncidentReview::review_id
std::string review_id
Unique review identifier.
Definition compliance_types.hpp:752
signet::forge::dora::PostIncidentReview::lessons_learned
std::string lessons_learned
Key lessons learned.
Definition compliance_types.hpp:756
signet::forge::dora::PostIncidentReview::root_cause_analysis
std::string root_cause_analysis
Detailed root cause analysis.
Definition compliance_types.hpp:755
signet::forge::dora::PostIncidentReview::review_date_ns
int64_t review_date_ns
Review completion date.
Definition compliance_types.hpp:754
signet::forge::dora::PostIncidentReview::corrective_actions
std::string corrective_actions
Corrective actions planned/taken.
Definition compliance_types.hpp:757
signet::forge::dora::PostIncidentReview::preventive_measures
std::string preventive_measures
Measures to prevent recurrence.
Definition compliance_types.hpp:758
signet::forge::dora::PostIncidentReview::incident_id
std::string incident_id
Related incident ID.
Definition compliance_types.hpp:753
signet::forge::dora::RecoveryProcedure::last_tested_ns
int64_t last_tested_ns
Last drill/test timestamp.
Definition compliance_types.hpp:739
signet::forge::dora::RecoveryProcedure::steps
std::string steps
Recovery steps (human-readable).
Definition compliance_types.hpp:737
signet::forge::dora::RecoveryProcedure::trigger_condition
std::string trigger_condition
Condition that triggers this procedure.
Definition compliance_types.hpp:735
signet::forge::dora::RecoveryProcedure::rto_seconds
int64_t rto_seconds
Recovery Time Objective (default 4h).
Definition compliance_types.hpp:736
signet::forge::dora::RecoveryProcedure::procedure_id
std::string procedure_id
Unique procedure identifier.
Definition compliance_types.hpp:734
signet::forge::dora::RecoveryProcedure::responsible_team
std::string responsible_team
Team responsible for execution.
Definition compliance_types.hpp:738
signet::forge::dora::ResilienceTestRecord
Resilience test record for DORA Art. 24 compliance.
Definition compliance_types.hpp:654
signet::forge::dora::ResilienceTestRecord::findings
std::string findings
Findings and observations.
Definition compliance_types.hpp:660
signet::forge::dora::ResilienceTestRecord::scenario
std::string scenario
Test scenario description.
Definition compliance_types.hpp:659
signet::forge::dora::ResilienceTestRecord::executed_ns
int64_t executed_ns
Test execution timestamp.
Definition compliance_types.hpp:658
signet::forge::dora::ResilienceTestRecord::recommendations
std::string recommendations
Improvement recommendations.
Definition compliance_types.hpp:661
signet::forge::dora::ResilienceTestRecord::test_id
std::string test_id
Unique test identifier.
Definition compliance_types.hpp:655
signet::forge::dora::ThirdPartyRiskEntry
Third-party ICT service provider risk entry.
Definition compliance_types.hpp:800
signet::forge::dora::ThirdPartyRiskEntry::service_description
std::string service_description
Services provided.
Definition compliance_types.hpp:803
signet::forge::dora::ThirdPartyRiskEntry::exit_strategy
std::string exit_strategy
Exit/transition strategy.
Definition compliance_types.hpp:809
signet::forge::dora::ThirdPartyRiskEntry::concentration_risk
RiskLevel concentration_risk
Concentration risk level.
Definition compliance_types.hpp:804
signet::forge::dora::ThirdPartyRiskEntry::sbom_reference
std::string sbom_reference
CycloneDX SBOM reference (if applicable).
Definition compliance_types.hpp:810
signet::forge::dora::ThirdPartyRiskEntry::contract_id
std::string contract_id
Contract reference.
Definition compliance_types.hpp:807
signet::forge::dora::ThirdPartyRiskEntry::contract_expiry_ns
int64_t contract_expiry_ns
Contract expiry timestamp.
Definition compliance_types.hpp:808
signet::forge::dora::ThirdPartyRiskEntry::provider_name
std::string provider_name
Provider legal name.
Definition compliance_types.hpp:802
signet::forge::dora::ThirdPartyRiskEntry::critical_function
bool critical_function
Supports critical or important functions.
Definition compliance_types.hpp:805
signet::forge::dora::ThirdPartyRiskEntry::jurisdiction
std::string jurisdiction
Provider jurisdiction (country code).
Definition compliance_types.hpp:806
signet::forge::dora::ThirdPartyRiskEntry::provider_id
std::string provider_id
Unique provider identifier.
Definition compliance_types.hpp:801
signet::forge::eu_ai_act::AIRiskAssessment
AI risk assessment record per Art. 9.
Definition compliance_types.hpp:1087
signet::forge::eu_ai_act::AIRiskAssessment::risk_level
AIRiskLevel risk_level
Definition compliance_types.hpp:1089
signet::forge::eu_ai_act::AIRiskAssessment::mitigation_measures
std::string mitigation_measures
Measures to mitigate risks.
Definition compliance_types.hpp:1091
signet::forge::eu_ai_act::AIRiskAssessment::risk_description
std::string risk_description
Description of identified risks.
Definition compliance_types.hpp:1090
signet::forge::eu_ai_act::AIRiskAssessment::assessment_id
std::string assessment_id
Unique assessment identifier.
Definition compliance_types.hpp:1088
signet::forge::eu_ai_act::AIRiskAssessment::residual_risks
std::string residual_risks
Remaining risks after mitigation.
Definition compliance_types.hpp:1092
signet::forge::eu_ai_act::AIRiskAssessment::assessed_ns
int64_t assessed_ns
Assessment timestamp.
Definition compliance_types.hpp:1093
signet::forge::eu_ai_act::DriftMetric
Population Stability Index for drift detection.
Definition compliance_types.hpp:1060
signet::forge::eu_ai_act::DriftMetric::feature_name
std::string feature_name
Feature being monitored.
Definition compliance_types.hpp:1061
signet::forge::eu_ai_act::DriftMetric::drifted
bool drifted
Whether drift was detected.
Definition compliance_types.hpp:1065
signet::forge::eu_ai_act::DriftMetric::psi
double psi
Population Stability Index.
Definition compliance_types.hpp:1062
signet::forge::eu_ai_act::DriftMetric::measured_ns
int64_t measured_ns
Measurement timestamp.
Definition compliance_types.hpp:1066
signet::forge::eu_ai_act::DriftMetric::drift_threshold
double drift_threshold
PSI threshold for alert.
Definition compliance_types.hpp:1064
signet::forge::eu_ai_act::DriftMetric::ks_statistic
double ks_statistic
Kolmogorov-Smirnov statistic.
Definition compliance_types.hpp:1063
signet::forge::eu_ai_act::LifecycleEvent
System lifecycle event record per Art. 12(2).
Definition compliance_types.hpp:1160
signet::forge::eu_ai_act::LifecycleEvent::event_id
std::string event_id
Unique event identifier.
Definition compliance_types.hpp:1161
signet::forge::eu_ai_act::LifecycleEvent::new_state
std::string new_state
State after the event.
Definition compliance_types.hpp:1167
signet::forge::eu_ai_act::LifecycleEvent::timestamp_ns
int64_t timestamp_ns
Event timestamp.
Definition compliance_types.hpp:1163
signet::forge::eu_ai_act::LifecycleEvent::event_type
LifecycleEventType event_type
Definition compliance_types.hpp:1162
signet::forge::eu_ai_act::LifecycleEvent::actor
std::string actor
Who/what triggered the event.
Definition compliance_types.hpp:1165
signet::forge::eu_ai_act::LifecycleEvent::description
std::string description
Event description.
Definition compliance_types.hpp:1164
signet::forge::eu_ai_act::LifecycleEvent::previous_state
std::string previous_state
State before the event.
Definition compliance_types.hpp:1166
signet::forge::eu_ai_act::PerformanceMetric
Model performance metric for Art. 15 accuracy monitoring.
Definition compliance_types.hpp:1051
signet::forge::eu_ai_act::PerformanceMetric::measured_ns
int64_t measured_ns
Measurement timestamp.
Definition compliance_types.hpp:1055
signet::forge::eu_ai_act::PerformanceMetric::dataset_id
std::string dataset_id
Dataset used for measurement.
Definition compliance_types.hpp:1056
signet::forge::eu_ai_act::PerformanceMetric::metric_name
std::string metric_name
E.g. "accuracy", "precision", "recall", "f1".
Definition compliance_types.hpp:1052
signet::forge::eu_ai_act::PerformanceMetric::baseline
double baseline
Baseline/threshold value.
Definition compliance_types.hpp:1054
signet::forge::eu_ai_act::PerformanceMetric::value
double value
Current metric value.
Definition compliance_types.hpp:1053
signet::forge::eu_ai_act::PostMarketDataPoint
Post-market monitoring data point.
Definition compliance_types.hpp:1175
signet::forge::eu_ai_act::PostMarketDataPoint::environment
std::string environment
Production/staging/etc.
Definition compliance_types.hpp:1180
signet::forge::eu_ai_act::PostMarketDataPoint::metric_name
std::string metric_name
Metric being monitored.
Definition compliance_types.hpp:1176
signet::forge::eu_ai_act::PostMarketDataPoint::value
double value
Observed value.
Definition compliance_types.hpp:1177
signet::forge::eu_ai_act::PostMarketDataPoint::deployment_id
std::string deployment_id
Deployment identifier.
Definition compliance_types.hpp:1179
signet::forge::eu_ai_act::PostMarketDataPoint::timestamp_ns
int64_t timestamp_ns
Observation timestamp.
Definition compliance_types.hpp:1178
signet::forge::eu_ai_act::QMSCheckPoint
QMS check point for AI system lifecycle.
Definition compliance_types.hpp:1117
signet::forge::eu_ai_act::QMSCheckPoint::approved
bool approved
Whether the checkpoint was approved.
Definition compliance_types.hpp:1122
signet::forge::eu_ai_act::QMSCheckPoint::checkpoint_id
std::string checkpoint_id
Unique checkpoint identifier.
Definition compliance_types.hpp:1118
signet::forge::eu_ai_act::QMSCheckPoint::model_version
std::string model_version
AI model version.
Definition compliance_types.hpp:1119
signet::forge::eu_ai_act::QMSCheckPoint::change_description
std::string change_description
What changed since last checkpoint.
Definition compliance_types.hpp:1121
signet::forge::eu_ai_act::QMSCheckPoint::data_quality_report
std::string data_quality_report
Data quality assessment.
Definition compliance_types.hpp:1120
signet::forge::eu_ai_act::QMSCheckPoint::timestamp_ns
int64_t timestamp_ns
Checkpoint timestamp.
Definition compliance_types.hpp:1124
signet::forge::eu_ai_act::QMSCheckPoint::approver
std::string approver
Person/system that approved.
Definition compliance_types.hpp:1123
signet::forge::eu_ai_act::SeriousIncidentReport
Serious incident report per Art. 62.
Definition compliance_types.hpp:1188
signet::forge::eu_ai_act::SeriousIncidentReport::system_id
std::string system_id
AI system identifier.
Definition compliance_types.hpp:1190
signet::forge::eu_ai_act::SeriousIncidentReport::description
std::string description
Incident description.
Definition compliance_types.hpp:1193
signet::forge::eu_ai_act::SeriousIncidentReport::reported_ns
int64_t reported_ns
When the report was filed.
Definition compliance_types.hpp:1192
signet::forge::eu_ai_act::SeriousIncidentReport::report_id
std::string report_id
Unique report identifier.
Definition compliance_types.hpp:1189
signet::forge::eu_ai_act::SeriousIncidentReport::occurred_ns
int64_t occurred_ns
When the incident occurred.
Definition compliance_types.hpp:1191
signet::forge::eu_ai_act::SeriousIncidentReport::corrective_action
std::string corrective_action
Actions taken.
Definition compliance_types.hpp:1195
signet::forge::eu_ai_act::SeriousIncidentReport::reported_to_authority
bool reported_to_authority
Submitted to market surveillance.
Definition compliance_types.hpp:1196
signet::forge::eu_ai_act::SeriousIncidentReport::harm_caused
std::string harm_caused
Harm to health, safety, or rights.
Definition compliance_types.hpp:1194
signet::forge::eu_ai_act::TechnicalDocumentation
Technical documentation record per Art. 11 and Annex IV.
Definition compliance_types.hpp:1101
signet::forge::eu_ai_act::TechnicalDocumentation::design_specifications
std::string design_specifications
Design and development methodology.
Definition compliance_types.hpp:1105
signet::forge::eu_ai_act::TechnicalDocumentation::risk_management_ref
std::string risk_management_ref
Reference to risk management (Art. 9).
Definition compliance_types.hpp:1108
signet::forge::eu_ai_act::TechnicalDocumentation::doc_id
std::string doc_id
Document identifier.
Definition compliance_types.hpp:1102
signet::forge::eu_ai_act::TechnicalDocumentation::data_requirements
std::string data_requirements
Data requirements and governance.
Definition compliance_types.hpp:1106
signet::forge::eu_ai_act::TechnicalDocumentation::version_ns
int64_t version_ns
Document version timestamp.
Definition compliance_types.hpp:1109
signet::forge::eu_ai_act::TechnicalDocumentation::system_description
std::string system_description
General description of the AI system.
Definition compliance_types.hpp:1103
signet::forge::eu_ai_act::TechnicalDocumentation::intended_purpose
std::string intended_purpose
Intended purpose.
Definition compliance_types.hpp:1104
signet::forge::eu_ai_act::TechnicalDocumentation::validation_results
std::string validation_results
Validation and testing results.
Definition compliance_types.hpp:1107
signet::forge::eu_ai_act::TrainingDataMetrics
Training data quality metrics per Art. 10.
Definition compliance_types.hpp:1132
signet::forge::eu_ai_act::TrainingDataMetrics::temporal_coverage_start_ns
int64_t temporal_coverage_start_ns
Earliest record timestamp.
Definition compliance_types.hpp:1137
signet::forge::eu_ai_act::TrainingDataMetrics::dataset_id
std::string dataset_id
Training dataset identifier.
Definition compliance_types.hpp:1133
signet::forge::eu_ai_act::TrainingDataMetrics::preprocessing_steps
std::string preprocessing_steps
Data preprocessing description.
Definition compliance_types.hpp:1140
signet::forge::eu_ai_act::TrainingDataMetrics::completeness
double completeness
Data completeness (0.0 - 1.0).
Definition compliance_types.hpp:1135
signet::forge::eu_ai_act::TrainingDataMetrics::temporal_coverage_end_ns
int64_t temporal_coverage_end_ns
Latest record timestamp.
Definition compliance_types.hpp:1138
signet::forge::eu_ai_act::TrainingDataMetrics::known_biases
std::string known_biases
Documented biases.
Definition compliance_types.hpp:1139
signet::forge::eu_ai_act::TrainingDataMetrics::class_balance
double class_balance
Class balance ratio (0.0 - 1.0).
Definition compliance_types.hpp:1136
signet::forge::eu_ai_act::TrainingDataMetrics::total_records
int64_t total_records
Total records in dataset.
Definition compliance_types.hpp:1134
signet::forge::gdpr::ColumnClassification
Column-level data classification descriptor.
Definition compliance_types.hpp:430
signet::forge::gdpr::ColumnClassification::purpose
std::string purpose
Processing purpose (Art. 5(1)(b)).
Definition compliance_types.hpp:433
signet::forge::gdpr::ColumnClassification::retention_days
int32_t retention_days
Max retention period in days (0 = unlimited).
Definition compliance_types.hpp:435
signet::forge::gdpr::ColumnClassification::lawful_basis
std::string lawful_basis
Legal basis: "consent", "contract", "legal_obligation", etc.
Definition compliance_types.hpp:434
signet::forge::gdpr::ColumnClassification::column_name
std::string column_name
Parquet column path.
Definition compliance_types.hpp:431
signet::forge::gdpr::DPIARecord
Data Protection Impact Assessment record per GDPR Art. 35.
Definition compliance_types.hpp:999
signet::forge::gdpr::DPIARecord::approved
bool approved
Whether the DPIA was approved.
Definition compliance_types.hpp:1007
signet::forge::gdpr::DPIARecord::completed_ns
int64_t completed_ns
DPIA completion timestamp.
Definition compliance_types.hpp:1006
signet::forge::gdpr::DPIARecord::dpo_opinion
std::string dpo_opinion
Data Protection Officer opinion.
Definition compliance_types.hpp:1005
signet::forge::gdpr::DPIARecord::mitigation_measures
std::string mitigation_measures
Measures to address risks.
Definition compliance_types.hpp:1004
signet::forge::gdpr::DPIARecord::dpia_id
std::string dpia_id
Unique DPIA identifier.
Definition compliance_types.hpp:1000
signet::forge::gdpr::DPIARecord::risks_to_rights
std::string risks_to_rights
Risks to rights and freedoms of data subjects.
Definition compliance_types.hpp:1003
signet::forge::gdpr::DPIARecord::necessity_assessment
std::string necessity_assessment
Assessment of necessity and proportionality.
Definition compliance_types.hpp:1002
signet::forge::gdpr::DPIARecord::processing_description
std::string processing_description
Systematic description of processing.
Definition compliance_types.hpp:1001
signet::forge::gdpr::PolicyValidationResult
Validation result for GDPR writer policy.
Definition compliance_types.hpp:903
signet::forge::gdpr::PolicyValidationResult::violations
std::vector< std::string > violations
Column names that violate the policy.
Definition compliance_types.hpp:905
signet::forge::gdpr::PolicyValidationResult::compliant
bool compliant
True if all PII columns are encrypted.
Definition compliance_types.hpp:904
signet::forge::gdpr::ProcessingActivity
Record of Processing Activity per GDPR Art. 30.
Definition compliance_types.hpp:945
signet::forge::gdpr::ProcessingActivity::third_country_transfers
std::string third_country_transfers
Transfers outside EEA.
Definition compliance_types.hpp:953
signet::forge::gdpr::ProcessingActivity::lawful_basis
std::string lawful_basis
Legal basis: consent, contract, etc.
Definition compliance_types.hpp:949
signet::forge::gdpr::ProcessingActivity::security_measures
std::string security_measures
Description of Art. 32 measures.
Definition compliance_types.hpp:955
signet::forge::gdpr::ProcessingActivity::last_updated_ns
int64_t last_updated_ns
Last update timestamp.
Definition compliance_types.hpp:956
signet::forge::gdpr::ProcessingActivity::recipients
std::string recipients
Recipients of the data.
Definition compliance_types.hpp:952
signet::forge::gdpr::ProcessingActivity::activity_id
std::string activity_id
Unique activity identifier.
Definition compliance_types.hpp:946
signet::forge::gdpr::ProcessingActivity::controller_name
std::string controller_name
Name of the data controller.
Definition compliance_types.hpp:947
signet::forge::gdpr::ProcessingActivity::data_subject_categories
std::string data_subject_categories
Categories of data subjects.
Definition compliance_types.hpp:950
signet::forge::gdpr::ProcessingActivity::retention_days
int32_t retention_days
Retention period in days.
Definition compliance_types.hpp:954
signet::forge::gdpr::ProcessingActivity::data_categories
std::string data_categories
Categories of personal data.
Definition compliance_types.hpp:951
signet::forge::gdpr::ProcessingActivity::purpose
std::string purpose
Purpose of the processing.
Definition compliance_types.hpp:948
signet::forge::gdpr::PseudonymConfig::purpose
std::string purpose
Processing purpose for audit.
Definition compliance_types.hpp:839
signet::forge::gdpr::PseudonymConfig::output_hex_chars
int32_t output_hex_chars
Truncate hex output to N chars (0 = full 64).
Definition compliance_types.hpp:840
signet::forge::gdpr::RetentionPolicy
Retention policy for a dataset or column.
Definition compliance_types.hpp:969
signet::forge::gdpr::RetentionPolicy::archive_location
std::string archive_location
Archive location before purge (empty = no archive).
Definition compliance_types.hpp:973
signet::forge::gdpr::RetentionPolicy::retention_days
int32_t retention_days
Max retention period (days).
Definition compliance_types.hpp:971
signet::forge::gdpr::RetentionPolicy::legal_hold_id
std::string legal_hold_id
If non-empty, retention is suspended (legal hold).
Definition compliance_types.hpp:974
signet::forge::gdpr::RetentionPolicy::policy_id
std::string policy_id
Unique policy identifier.
Definition compliance_types.hpp:970
signet::forge::gdpr::RetentionPolicy::auto_purge
bool auto_purge
Automatically purge expired data.
Definition compliance_types.hpp:972
signet::forge::gdpr::SubjectDataQuery
DSAR query parameters for finding subject data across files.
Definition compliance_types.hpp:1019
signet::forge::gdpr::SubjectDataQuery::subject_id_column
std::string subject_id_column
Column name containing the subject identifier.
Definition compliance_types.hpp:1021
signet::forge::gdpr::SubjectDataQuery::file_paths
std::vector< std::string > file_paths
Parquet files to search.
Definition compliance_types.hpp:1024
signet::forge::gdpr::SubjectDataQuery::to_ns
int64_t to_ns
Time range end (0 = no limit).
Definition compliance_types.hpp:1023
signet::forge::gdpr::SubjectDataQuery::from_ns
int64_t from_ns
Time range start (0 = no limit).
Definition compliance_types.hpp:1022
signet::forge::gdpr::SubjectDataQuery::subject_id
std::string subject_id
Data subject identifier (entity_id, user_id, etc.).
Definition compliance_types.hpp:1020
signet::forge::gdpr::SubjectDataResponse::processing_purposes
std::string processing_purposes
Purposes for which data is processed.
Definition compliance_types.hpp:1034
signet::forge::gdpr::SubjectDataResponse::records_found
int64_t records_found
Number of records found.
Definition compliance_types.hpp:1032
signet::forge::gdpr::SubjectDataResponse::data_categories
std::string data_categories
Categories of data found.
Definition compliance_types.hpp:1033
signet::forge::gdpr::SubjectDataResponse::exported
bool exported
Whether data was exported for the subject.
Definition compliance_types.hpp:1035
signet::forge::gdpr::SubjectDataResponse::completed_ns
int64_t completed_ns
Response completion timestamp.
Definition compliance_types.hpp:1031
signet::forge::gdpr::SubjectDataResponse::request_id
std::string request_id
DSAR request identifier.
Definition compliance_types.hpp:1029
signet::forge::mifid2::AnnualSelfAssessment
Annual self-assessment record per MiFID II Art. 17(2).
Definition compliance_types.hpp:1258
signet::forge::mifid2::AnnualSelfAssessment::remediation_plan
std::string remediation_plan
Plan to address findings.
Definition compliance_types.hpp:1265
signet::forge::mifid2::AnnualSelfAssessment::submitted_to_nca
bool submitted_to_nca
Submitted to national competent authority.
Definition compliance_types.hpp:1266
signet::forge::mifid2::AnnualSelfAssessment::assessment_id
std::string assessment_id
Unique assessment identifier.
Definition compliance_types.hpp:1259
signet::forge::mifid2::AnnualSelfAssessment::risk_controls_review
std::string risk_controls_review
Review of risk controls effectiveness.
Definition compliance_types.hpp:1262
signet::forge::mifid2::AnnualSelfAssessment::system_resilience_review
std::string system_resilience_review
Review of system resilience.
Definition compliance_types.hpp:1263
signet::forge::mifid2::AnnualSelfAssessment::compliance_findings
std::string compliance_findings
Compliance findings.
Definition compliance_types.hpp:1264
signet::forge::mifid2::AnnualSelfAssessment::algo_trading_summary
std::string algo_trading_summary
Summary of algorithmic trading activities.
Definition compliance_types.hpp:1261
signet::forge::mifid2::AnnualSelfAssessment::completed_ns
int64_t completed_ns
Assessment completion timestamp.
Definition compliance_types.hpp:1267
signet::forge::mifid2::CompletenessAttestation
Completeness attestation for a reporting period.
Definition compliance_types.hpp:1239
signet::forge::mifid2::CompletenessAttestation::complete
bool complete
Whether the period is complete.
Definition compliance_types.hpp:1244
signet::forge::mifid2::CompletenessAttestation::gaps
std::vector< std::pair< int64_t, int64_t > > gaps
Detected gaps (start_ns, end_ns).
Definition compliance_types.hpp:1245
signet::forge::mifid2::CompletenessAttestation::expected_records
int64_t expected_records
Expected number of records.
Definition compliance_types.hpp:1242
signet::forge::mifid2::OrderLifecycleEvent
Order lifecycle event for tracing order chain.
Definition compliance_types.hpp:1275
signet::forge::mifid2::OrderLifecycleEvent::event_type
std::string event_type
"ORDER_NEW", "ORDER_MODIFY", "ORDER_CANCEL", "ORDER_FILL".
Definition compliance_types.hpp:1278
signet::forge::mifid2::OrderLifecycleEvent::venue_mic
std::string venue_mic
Execution venue MIC.
Definition compliance_types.hpp:1282
signet::forge::mifid2::OrderLifecycleEvent::order_id
std::string order_id
Current order identifier.
Definition compliance_types.hpp:1276
signet::forge::mifid2::OrderLifecycleEvent::parent_order_id
std::string parent_order_id
Parent order ID (empty for new orders).
Definition compliance_types.hpp:1277
signet::forge::mifid2::ReportIntegrity
Report integrity binding — associates a compliance report with its tamper-evidence chain.
Definition compliance_types.hpp:1213
signet::forge::mifid2::ReportIntegrity::chain_hash
std::string chain_hash
SHA-256 hash of the chain entry.
Definition compliance_types.hpp:1216
signet::forge::mifid2::ReportIntegrity::chain_seq
int64_t chain_seq
Audit chain sequence number.
Definition compliance_types.hpp:1215
signet::forge::mifid2::ReportIntegrity::report_id
std::string report_id
Report identifier.
Definition compliance_types.hpp:1214
signet::forge::mifid2::ReportIntegrity::content_hash
std::string content_hash
SHA-256 hash of the report content.
Definition compliance_types.hpp:1217
signet::forge::mifid2::SignedReport
Signed report envelope for non-repudiation.
Definition compliance_types.hpp:1225
signet::forge::mifid2::SignedReport::signature
std::string signature
Digital signature (hex).
Definition compliance_types.hpp:1228
signet::forge::mifid2::SignedReport::report_id
std::string report_id
Report identifier.
Definition compliance_types.hpp:1226
signet::forge::mifid2::SignedReport::signer_key_id
std::string signer_key_id
Key ID used for signing.
Definition compliance_types.hpp:1229
signet::forge::mifid2::SignedReport::algorithm
std::string algorithm
Signature algorithm ("HMAC-SHA256", "Ed25519", etc.).
Definition compliance_types.hpp:1230
signet::forge::mifid2::SignedReport::content
std::string content
Report content (JSON/CSV).
Definition compliance_types.hpp:1227
signet::forge::mifid2::SourceFileEntry
Source file manifest entry for audit trail.
Definition compliance_types.hpp:1290
signet::forge::mifid2::SourceFileEntry::processed_ns
int64_t processed_ns
When the file was processed.
Definition compliance_types.hpp:1295
signet::forge::mifid2::SourceFileEntry::records_consumed
int64_t records_consumed
Number of records consumed from this file.
Definition compliance_types.hpp:1294
signet::forge::mifid2::SourceFileEntry::file_path
std::string file_path
Path to the source Parquet file.
Definition compliance_types.hpp:1291
signet::forge::mifid2::SourceFileEntry::file_hash
std::string file_hash
SHA-256 hash of the file.
Definition compliance_types.hpp:1292
signet::forge::risk::PreTradeCheckResult
Result of a pre-trade risk check.
Definition compliance_types.hpp:342
signet::forge::risk::PreTradeCheckResult::message
std::string message
Human-readable explanation (for audit trail).
Definition compliance_types.hpp:345
signet::forge::risk::PreTradeRiskLimits
Pre-trade risk limits configuration.
Definition compliance_types.hpp:334
signet::forge::risk::PreTradeRiskLimits::max_order_notional
double max_order_notional
Max single-order notional value (default 1B).
Definition compliance_types.hpp:336
signet::forge::risk::PreTradeRiskLimits::max_messages_per_sec
int64_t max_messages_per_sec
Max order/cancel messages per second.
Definition compliance_types.hpp:338
signet::forge::risk::PreTradeRiskLimits::max_daily_notional
double max_daily_notional
Max cumulative daily notional (default 10B).
Definition compliance_types.hpp:337
signet::forge::risk::PreTradeRiskLimits::price_collar_pct
double price_collar_pct
Max % deviation from reference price (both sides).
Definition compliance_types.hpp:335