Skip to content

Compliance Reports

Kiket generates one-click compliance reports that aggregate data from your audit trail, approval chains, SLA events, and blockchain verification into framework-specific documentation. Each report can be previewed in the browser or downloaded as a PDF.

Available Reports

Report Framework Key Sections
EU AI Act EU AI Act Article 13/14 AI system inventory, human oversight rates, blockchain verification
SOX Sarbanes-Oxley Section 404 Approval controls, segregation of duties, change management
HIPAA 45 CFR Part 164 Access controls, audit trail completeness, incident response
SOC 2 Type II AICPA Trust Services Security, availability (SLA), processing integrity, monitoring

Accessing Reports

Navigate to Compliance > All Reports in the top navigation bar, or go directly to any report:

  • Audit Trail > Compliance dropdown in the navbar
  • /audit_trail/compliance for the report index
  • /audit_trail/compliance/sox for SOX
  • /audit_trail/compliance/hipaa for HIPAA
  • /audit_trail/compliance/soc2 for SOC 2
  • /audit_trail/compliance/eu_ai_act for EU AI Act

Report Features

Date Range Filtering

Each report accepts a configurable date range. Use the From and To date pickers to adjust the reporting period, then click Update Preview to refresh the data.

PDF Export

Click Download PDF to generate a branded PDF report with:

  • Organization header and metadata
  • All data sections from the preview
  • Attestation with SHA-256 content hash
  • Blockchain verification summary

JSON Export

Append ?format=json to any report's POST URL to receive raw JSON data for integration with external compliance tools.

SOX Report Details

The SOX report covers Sarbanes-Oxley Section 404 internal controls:

  • Approval Controls — Total requests, approval/denial rates, escalation rates, average resolution time, breakdown by assignment type and decision source
  • Segregation of Duties — Self-approval detection, unique approver/requester counts, violation findings
  • Change Management — Configuration changes, workflow changes, role/access changes, secret management events, blockchain verification coverage
  • Access Controls — User additions/removals, role changes, current user count

HIPAA Report Details

The HIPAA report covers Security Rule safeguards (45 CFR Part 164):

  • Access Controls — Login events, failed login attempts, access changes, admin user counts
  • Audit Trail Completeness — Total records, blockchain anchoring rate, actions logged, retention policy
  • User Activity — Active users, actions by category (data access, modification, deletion, configuration, AI operations), top actors
  • Data Integrity — Integrity proofs, verification method, tamper detection
  • Incident Response — SLA breaches, warnings, recoveries

SOC 2 Report Details

The SOC 2 Type II report covers AICPA Trust Services Criteria:

  • Security Controls — Access control events, secret management, approval gate enforcement, denial rates
  • Availability — Active SLA definitions, compliance rate, breach/recovery tracking, monitoring frequency
  • Processing Integrity — Audit record counts, blockchain verification rate, AI operation logging
  • Change Management — Configuration/workflow/GitHub sync changes, change author tracking
  • Monitoring — SLA monitoring status, approval escalation tracking, audit completeness

Blockchain Verification

All compliance reports include a blockchain verification section showing:

  • Total anchors created during the reporting period
  • Confirmation rate (anchors confirmed on-chain)
  • Immutability guarantee statement

Audit records are content-hashed with SHA-256 and anchored to the Polygon blockchain via Merkle trees, providing tamper-evident compliance evidence.

Permissions

Compliance reports are accessible to:

  • Super administrators
  • Organization administrators
  • Organization owners
  • Users with the compliance_officer role