# Bidda AI: Sovereign Intelligence Platform > 9722 Verified Nodes | Generated: 2026-06-16 Bidda.com is a source-verified, cryptographically signed, and RAG-optimized repository for autonomous agents. ## Sovereign Insights (High-Authority Technical Articles) - **Access**: https://bidda.com/insights/defining-sovereign-knowledge-nodes - **Access**: https://bidda.com/insights/nist-iso-eu-ai-act-workflows - **Access**: https://bidda.com/insights/micro-economy-of-truth-l402 - **Access**: https://bidda.com/insights/integrating-sovereign-knowledge-guide - **Access**: https://bidda.com/insights/esg-autonomous-compliance - **Access**: https://bidda.com/insights/healthcare-agent-compliance - **Access**: https://bidda.com/insights/cybersecurity-agent-hardening - **Access**: https://bidda.com/insights/enterprise-ai-governance-onboarding - **Access**: https://bidda.com/insights/skyfire-agentic-economy-bidda - **Access**: https://bidda.com/insights/gdpr-compliance-checklist-2026 - **Access**: https://bidda.com/insights/nist-ai-risk-management-framework-2026 - **Access**: https://bidda.com/insights/eu-ai-act-high-risk-compliance-2026 - **Access**: https://bidda.com/insights/ai-governance-certification-guide-2026 - **Access**: https://bidda.com/insights/ai-compliance-healthcare-2026 - **Access**: https://bidda.com/insights/mitre-attack-enterprise-explained - **Access**: https://bidda.com/insights/mitre-attack-mobile-explained - **Access**: https://bidda.com/insights/mitre-attack-ics-explained - **Access**: https://bidda.com/insights/mitre-atlas-explained - **Access**: https://bidda.com/insights/mitre-d3fend-explained - **Access**: https://bidda.com/insights/mitre-capec-explained - **Access**: https://bidda.com/insights/dora-compliance-2026-ict-risk-third-party - **Access**: https://bidda.com/insights/nis2-directive-essential-important-entities-2026 - **Access**: https://bidda.com/insights/mica-crypto-compliance-casp-2026 - **Access**: https://bidda.com/insights/iso-iec-42001-ai-management-system-2026 ## Gated Intelligence Registry (9722 Nodes) - **Discovery Endpoint**: /api/v1/nodes/index.json - **Payment Path**: 402 Settlement (0.01 USD) ### AI Governance & Law (770 nodes) #### African Union Continental AI Strategy - Harnessing AI for African Development and Digital Transformation - **ID**: africa-union-ai-strategy-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The African Union Continental AI Strategy provides a comprehensive framework for AU Member States to develop and implement national AI policies that are inclusive, ethical, and drive socio-economic de... - **Discovery URL**: https://bidda.com/api/v1/nodes/africa-union-ai-strategy-2024.json #### AI Action Summit Paris - Statement on Inclusive and Sustainable AI for People and the Planet (February 11, 2025) - **ID**: ai-action-summit-paris-statement-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The AI Action Summit hosted in Paris by France co-chaired with India on February 10-11, 2025 produced the Statement on Inclusive and Sustainable Artificial Intelligence for People and the Planet, sign... - **Discovery URL**: https://bidda.com/api/v1/nodes/ai-action-summit-paris-statement-2025.json #### Multi-Agent Collision Resolution - **ID**: ai-agent-collision-logic - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: Multi-agent collision logic provides deterministic protocols for resolving conflicts when two or more autonomous AI agents simultaneously attempt to access the same resource, modify the same shared st... - **Discovery URL**: https://bidda.com/api/v1/nodes/ai-agent-collision-logic.json #### Anthropic Responsible Scaling Policy (RSP) 2023 - AI Safety Levels (ASL-2/ASL-3/ASL-4), Capability Thresholds Triggering Enhanced Safeguards, Deployment Restrictions at ASL-3, Third-Party Evaluations, Commitments to Model Cards and Interpretability Research - **ID**: anthropic-responsible-scaling-policy-2023 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: Anthropic’s Responsible Scaling Policy establishes an AI Safety Level (ASL) framework to manage catastrophic risks from increasingly capable AI systems, requiring enhanced safety, security, and operat... - **Discovery URL**: https://bidda.com/api/v1/nodes/anthropic-responsible-scaling-policy-2023.json #### Anthropic Responsible Scaling Policy (Version 2.1, Effective 31 March 2025) - AI Safety Level Standards (ASL-2 Current Baseline; ASL-3 Required for Capability Thresholds in CBRN and Autonomous AI R&D); Capability Thresholds, Required Safeguards, and Governance Framework - **ID**: anthropic-responsible-scaling-policy-v2-1-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Anthropic Responsible Scaling Policy version 2.1, effective 31 March 2025, is Anthropic PBC's public commitment not to train or deploy models capable of causing catastrophic harm unless safety and sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/anthropic-responsible-scaling-policy-v2-1-2025.json #### Argentina Decisión Administrativa 899/2024 (Mesa Interministerial de IA) and AAIP Resolución 161/2023 (Programa Nacional de Transparencia y Protección de Datos Personales en el Uso de IA) - **ID**: ar-decision-administrativa-899-2024-mesa-interministerial-ai-aaip-resolucion-161-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Argentina's national AI governance framework is structured through two operational instruments: (1) Decisión Administrativa 750/2023 of 7 September 2023 created the Mesa Interministerial de Inteligenc... - **Discovery URL**: https://bidda.com/api/v1/nodes/ar-decision-administrativa-899-2024-mesa-interministerial-ai-aaip-resolucion-161-2023.json #### ASEAN Guide on AI Governance and Ethics 2020 - ASEAN AI Governance Framework: Seven Principles for Responsible AI Development, Consumer Protection, Transparency and Human Oversight - **ID**: asean-guide-ai-governance-ethics-2020 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This non-binding guide provides a voluntary framework for ASEAN member states and organizations, outlining seven core principles for the ethical governance and deployment of AI systems. It emphasizes ... - **Discovery URL**: https://bidda.com/api/v1/nodes/asean-guide-ai-governance-ethics-2020.json #### ASEAN Model AI Governance Framework Second Edition 2020 - Ethical and Accountable AI Deployment in Southeast Asia - **ID**: asean-model-ai-governance-v2-2020 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This non-binding framework provides guidance for organizations in ASEAN member states on deploying AI systems ethically and responsibly, focusing on principles of transparency, explainability, fairnes... - **Discovery URL**: https://bidda.com/api/v1/nodes/asean-model-ai-governance-v2-2020.json #### Australia AI Ethics Framework - National Principles for Ethical AI (2019) - Compliance Obligations for Australian AI Developers, Human-Centred AI Requirements, and Voluntary AI Ethics Principles for Australian Organisations - **ID**: au-ai-ethics-framework-2019 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines the Australia AI Ethics Framework (2019), focusing on voluntary principles for ethical AI development. Key compliance actions include ensuring human-centered values and transparency... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-ai-ethics-framework-2019.json #### Australia National AI Plan 2025 and Voluntary AI Safety Standard - DISR Technology-Neutral Approach, Unveiled 2 December 2025 - **ID**: au-national-ai-plan-vaiss-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organisations adopting AI in or affecting Australia should align with the National AI Plan 2025 unveiled by the Australian Government on 2 December 2025, coordinated by the Department of Industry, Sci... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-national-ai-plan-vaiss-2025.json #### Australia's Artificial Intelligence Ethics Framework: Eight AI Ethics Principles - **ID**: australia-ai-ethics-framework-2019 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This voluntary framework provides eight principles to guide Australian businesses and governments in the responsible design, development, and implementation of AI. It requires organizations to ensure ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-ai-ethics-framework-2019.json #### Australia's Artificial Intelligence Ethics Framework: Eight AI Ethics Principles - **ID**: australia-ai-ethics-principles-disr-2019 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This voluntary framework establishes eight core principles for ethical AI development and deployment in Australia, applicable to all organizations designing, developing, or deploying AI systems. Key o... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-ai-ethics-principles-disr-2019.json #### Australia Voluntary AI Safety Standard (Department of Industry, Science and Resources, August 2024) - **ID**: australia-voluntary-ai-safety-standard-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Australian Government Department of Industry, Science and Resources published the Voluntary AI Safety Standard on August 22, 2024. The Standard is non-mandatory practical guidance for Australian o... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-voluntary-ai-safety-standard-2024.json #### Deterministic RAG Verification - **ID**: automated-fact-verification - **Category**: AI Governance & Law - **Version**: 1.1.1 - **BLUF**: Deterministic RAG (Retrieval-Augmented Generation) verification is a systematic process for cross-referencing AI-generated claims against authoritative knowledge bases to detect and block hallucinated... - **Discovery URL**: https://bidda.com/api/v1/nodes/automated-fact-verification.json #### Automation Support for Control Assessments: Project Update and Vision - **ID**: automation-support-for-control-assessments - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: In 2017, the National Institute of Standards and Technology (NIST) published a methodology for supporting the automation of Special Publication (SP) 800-53 control assessments in the form of Interagen... - **Discovery URL**: https://bidda.com/api/v1/nodes/automation-support-for-control-assessments.json #### Bletchley Declaration on AI Safety - First Global AI Safety Summit (November 2023) - **ID**: bletchley-declaration-2023-frontier-ai-safety - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: The Bletchley Declaration establishes a global consensus among 28 countries, including the US, UK, EU, and China, to collaboratively address frontier AI risks, particularly catastrophic risks from adv... - **Discovery URL**: https://bidda.com/api/v1/nodes/bletchley-declaration-2023-frontier-ai-safety.json #### Bletchley Declaration on AI Safety - First Global AI Safety Summit (November 2023) - **ID**: bletchley-declaration-ai-safety-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Bletchley Declaration, signed on 1-2 November 2023 at Bletchley Park (United Kingdom) at the inaugural AI Safety Summit hosted by the UK government, was the first multilateral statement on frontie... - **Discovery URL**: https://bidda.com/api/v1/nodes/bletchley-declaration-ai-safety-2023.json #### Brazil Artificial Intelligence Framework (PL 2338/2023) - Federal AI Regulation Proposal - **ID**: brazil-ai-bill-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This bill establishes a risk-based framework for AI systems in Brazil, requiring providers and deployers to conduct impact assessments, implement governance measures, and ensure transparency, particul... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-ai-bill-2023.json #### Brazil AI Bill 2338/2023 (Senate) - Risk-Based Framework for Artificial Intelligence Systems - **ID**: brazil-ai-bill-2338-2023-senate - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: Brazilian Senate Bill 2338/2023 establishes a risk-based framework for AI systems, categorising them into excessive (prohibited), high, limited, and minimal risk tiers with specific obligations for hi... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-ai-bill-2338-2023-senate.json #### Projeto de Lei nº 2338, de 2023: Dispõe sobre o uso da Inteligência Artificial no Brasil (Marco Legal da Inteligência Artificial) - **ID**: brazil-ai-bill-plc-2338-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Brazil's AI Bill (PLC 2338/2023) establishes a risk-based regulatory framework for the development and use of AI systems, mandating risk assessments, governance measures, and transparency for provider... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-ai-bill-plc-2338-2023.json #### Brazil Artificial Intelligence Framework Bill PL 2338/2023 - Risk Classification, Transparency Requirements and National AI Authority - **ID**: brazil-ai-framework-law-pl-2338-2023 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This regulation establishes a national framework for the use of artificial intelligence in Brazil, mandating risk classification, transparency, and accountability for AI systems. It applies to develop... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-ai-framework-law-pl-2338-2023.json #### C2PA Content Provenance - **ID**: c2pa-watermark-valid - **Category**: AI Governance & Law - **Version**: 1.1.1 - **BLUF**: The Coalition for Content Provenance and Authenticity (C2PA) specification defines a cryptographically signed metadata manifest standard that embeds verifiable provenance information directly into dig... - **Discovery URL**: https://bidda.com/api/v1/nodes/c2pa-watermark-valid.json #### Directive on Automated Decision-Making, Section 6: Requirements - **ID**: ca-directive-automated-decision-making-2019-section-4-algorithmic-impact - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organizations must complete, publish, and regularly update an Algorithmic Impact Assessment (AIA) for any automated decision system, provide transparent notices to clients before and meaningful explan... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-directive-automated-decision-making-2019-section-4-algorithmic-impact.json #### An Act to enact the Consumer Privacy Protection Act, the Personal Information and Data Protection Tribunal Act and the Artificial Intelligence and Data Act and to make consequential and related amendments to other Acts (Bill C-27), Part 3: Artificial Intelligence and Data Act - **ID**: canada-ai-data-act-aida-bill-c-27 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: Bill C-27, Part 3 establishes the Artificial Intelligence and Data Act (AIDA), which imposes obligations on persons responsible for high-impact AI systems to assess and mitigate risks of harm and bias... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-ai-data-act-aida-bill-c-27.json #### Artificial Intelligence and Data Act (AIDA) - Bill C-27 Part 3 (2022) - **ID**: canada-aida-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This Act requires persons responsible for high-impact AI systems in Canadian interprovincial or international trade to establish measures for risk identification and mitigation, monitoring, data anony... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-aida-2022.json #### Artificial Intelligence and Data Act (AIDA) - Bill C-27 High-Impact AI System Obligations, Audits and ATIP Commissioner Role - **ID**: canada-aida-artificial-intelligence-data-act-c27 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Canada's Artificial Intelligence and Data Act (AIDA), part of Bill C-27, mandates that persons responsible for a high-impact AI system must establish measures to identify, assess, and mitigate risks o... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-aida-artificial-intelligence-data-act-c27.json #### Directive on Automated Decision-Making - **ID**: canada-directive-automated-decision-making-2021 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This directive requires federal departments to assess, document, and publicly disclose the algorithmic impact of automated decision systems used in administrative decisions, ensuring transparency, hum... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-directive-automated-decision-making-2021.json #### Canada Treasury Board Secretariat - Directive on Automated Decision-Making (in force April 1 2019, updated 2023, 2025) - **ID**: canada-tbs-directive-automated-decision-making-2019 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Treasury Board of Canada Secretariat (TBS) Directive on Automated Decision-Making (ADM Directive) is binding instrument-level policy for the Government of Canada governing the use of automated dec... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-tbs-directive-automated-decision-making-2019.json #### Canada ISED Voluntary Code of Conduct on Responsible Development and Management of Advanced Generative AI - **ID**: canada-voluntary-code-conduct-genai-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Canada's Voluntary Code of Conduct on the Responsible Development and Management of Advanced Generative AI Systems was published by Innovation, Science and Economic Development (ISED) Canada in Septem... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-voluntary-code-conduct-genai-2023.json #### Chile Ley No. 21,383 (2021) Constitutional Amendment Establishing Neurorights - **ID**: chile-ley-21383-2021-neurorights-constitutional-amendment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Ley No. 21,383 of 25 October 2021 amended Article 19 paragraph 1 of the Constitution of the Republic of Chile to recognise the development of science and technology at the service of persons and to co... - **Discovery URL**: https://bidda.com/api/v1/nodes/chile-ley-21383-2021-neurorights-constitutional-amendment.json #### Internet Information Service Algorithmic Recommendation Management Provisions - **ID**: china-algorithm-recommendation-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: These provisions require providers of algorithmic recommendation services within the People's Republic of China to uphold mainstream values, protect user rights, and prevent the generation of illegal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-algorithm-recommendation-2022.json #### Internet Information Service Algorithmic Recommendation Management Provisions (2022) - **ID**: china-algorithm-recommendation-regulation-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This regulation applies to all providers of algorithmic recommendation services within the People's Republic of China, mandating transparency about the basic principles of their algorithms and providi... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-algorithm-recommendation-regulation-2022.json #### China Algorithm Recommendation Regulations 2022 (CAC) - Algorithmic Recommendation Service Providers Registration, Prohibition on Illegal Price Discrimination, Addictive Algorithm Features Disabled for Minors, Transparent Recommendation Mechanisms and User Opt-Out Rights - **ID**: china-algorithm-recommendation-regulations-2022 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This regulation applies to algorithmic recommendation service providers operating in China and mandates transparency in recommendation mechanisms, prohibits illegal price discrimination, requires user... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-algorithm-recommendation-regulations-2022.json #### CAC Algorithm Recommendation Measures 2022 - Provisions on the Management of Algorithmic Recommendations - **ID**: china-cac-algorithm-recommendation-measures-2022 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: The CAC Algorithm Recommendation Measures 2022 require algorithmic recommendation service providers to provide transparency, user opt-out rights, and prohibit price discrimination, as stated in Articl... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-cac-algorithm-recommendation-measures-2022.json #### Provisions on the Management of Deep Synthesis Internet Information Services - **ID**: china-cac-deep-synthesis-provisions-2022 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: The CAC Deep Synthesis Provisions 2022 require internet information service providers to label deep synthesis content, register synthetic media, and prohibit the dissemination of illegal deepfakes, as... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-cac-deep-synthesis-provisions-2022.json #### Interim Measures for the Management of Generative Artificial Intelligence Services - **ID**: china-cac-generative-ai-measures-2023 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: The regulation applies to providers of generative AI services within China and mandates compliance with content security, algorithm transparency, training data legality, watermarking of AI-generated c... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-cac-generative-ai-measures-2023.json #### Provisions on Administration of Deep Synthesis Internet Information Services (2023) - **ID**: china-deep-synthesis-provisions-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Provisions require providers of deep synthesis (e.g., deepfake) services in China to label synthetic content, authenticate user identities, and prohibit dissemination of illegal information. Appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-deep-synthesis-provisions-2023.json #### Provisions on Administration of Deep Synthesis Internet Information Services - **ID**: china-deep-synthesis-regulation-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This regulation requires providers of deep synthesis (e.g., deepfake) services in China to conspicuously label AI-generated content that may cause public confusion or misidentification, and to obtain ... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-deep-synthesis-regulation-2022.json #### Provisions on the Administration of Deep Synthesis of Internet-based Information Services (China Deep Synthesis Regulations 2023) - **ID**: china-deep-synthesis-regulations-2023 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: These regulations require all providers of deep synthesis services in China to label AI-generated content, obtain explicit consent before using individuals' faces or voices, prohibit malicious deepfak... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-deep-synthesis-regulations-2023.json #### Interim Measures for the Management of Generative Artificial Intelligence Services - **ID**: china-genai-regulation-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This regulation applies to providers offering generative AI services to the public within the People's Republic of China, mandating adherence to socialist core values, ensuring the legality of trainin... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-genai-regulation-2023.json #### Interim Measures for the Administration of Generative Artificial Intelligence Services - **ID**: china-generative-ai-interim-measures-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: These measures apply to providers offering generative AI services to the public within the People's Republic of China, mandating adherence to socialist core values, prevention of illegal content gener... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-generative-ai-interim-measures-2023.json #### Measures for the Management of Generative Artificial Intelligence Services - **ID**: china-generative-ai-measures-2023 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: These Measures require all public-facing generative AI services operating in China to undergo security assessments, register algorithmic models, ensure training data respects intellectual property and... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-generative-ai-measures-2023.json #### China Global AI Governance Initiative 2023 - PRC International AI Governance Framework - **ID**: china-global-ai-governance-initiative-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Global AI Governance Initiative (全球人工智能治理倡议, GAIGI) was released by the People's Republic of China on October 18, 2023, coinciding with the Third Belt and Road Forum for International Cooperation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-global-ai-governance-initiative-2023.json #### Interim Measures for the Management of Generative Artificial Intelligence Services - **ID**: china-interim-measures-generative-ai-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: These Interim Measures, issued by the Cyberspace Administration of China, apply to providers of generative AI services within China and require compliance with content safety, data legitimacy, transpa... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-interim-measures-generative-ai-2023.json #### CISA-NCSC Joint Guidelines for Secure AI System Development (November 26, 2023) - **ID**: cisa-ncsc-guidelines-secure-ai-system-development-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On November 26, 2023 the UK National Cyber Security Centre (NCSC) and the US Cybersecurity and Infrastructure Security Agency (CISA), with co-sealing from 21 additional international cyber agencies in... - **Discovery URL**: https://bidda.com/api/v1/nodes/cisa-ncsc-guidelines-secure-ai-system-development-2023.json #### China CAC Measures for Labelling AI-Generated Synthetic Content 2025 - Explicit and Implicit Labels under GB 45438-2025 - **ID**: cn-cac-ai-generated-content-labelling-measures-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Internet information service providers and providers of online content distribution services creating AI-generated content for the China market must, from 1 September 2025, apply explicit labels to AI... - **Discovery URL**: https://bidda.com/api/v1/nodes/cn-cac-ai-generated-content-labelling-measures-2025.json #### Colombia CONPES 3975 (2019) - Política Nacional para la Transformación Digital e Inteligencia Artificial; MinCiencias 2025 Proyecto de Ley AI Framework; National AI Authority Designation - **ID**: co-conpes-3975-2019-digital-transformation-ai-policy - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Colombia's national artificial intelligence policy framework is anchored by Documento CONPES 3975 (Consejo Nacional de Política Económica y Social) Política Nacional para la Transformación Digital e I... - **Discovery URL**: https://bidda.com/api/v1/nodes/co-conpes-3975-2019-digital-transformation-ai-policy.json #### Council of Europe Framework Convention on AI, Human Rights, Democracy and the Rule of Law (CETS No. 225) - **ID**: coe-framework-convention-ai-human-rights-democracy - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Council of Europe's Framework Convention on Artificial Intelligence and Human Rights, Democracy and the Rule of Law (CETS No. 225), opened for signature on 5 September 2024 in Vilnius, is the worl... - **Discovery URL**: https://bidda.com/api/v1/nodes/coe-framework-convention-ai-human-rights-democracy.json #### Constitutional AI Algorithm - **ID**: constitutional-ai-align - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: Constitutional AI (CAI) is an alignment training methodology developed by Anthropic (Bai et al., 2022) that trains AI systems to be helpful, harmless, and honest using a set of explicit behavioral pri... - **Discovery URL**: https://bidda.com/api/v1/nodes/constitutional-ai-align.json #### Framework Convention on Artificial Intelligence and Human Rights, Democracy and the Rule of Law (CETS No. 225) - **ID**: council-of-europe-ai-treaty-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This treaty establishes a legal framework for Parties (ratifying countries) to regulate AI activities, ensuring they are consistent with human rights, democracy, and the rule of law. It requires Parti... - **Discovery URL**: https://bidda.com/api/v1/nodes/council-of-europe-ai-treaty-2024.json #### Council of Europe Framework Convention on AI and Human Rights (CETS No. 225) 2024 - Obligations on Lifecycle, Transparency and Redress - **ID**: council-of-europe-ai-treaty-2024-cets-225 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This convention requires signatory Parties to establish legal frameworks ensuring that AI systems are designed, developed, and used in a manner consistent with human rights, democracy, and the rule of... - **Discovery URL**: https://bidda.com/api/v1/nodes/council-of-europe-ai-treaty-2024-cets-225.json #### US Department of Homeland Security AI Safety and Security Board Guidance 2024 - Compliance Obligations for Critical Infrastructure AI Safety, AI Deployment Controls for National Security-Adjacent Systems, and DHS AI Risk Management - **ID**: dhs-ai-safety-security-board-guidance-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for AI safety in critical infrastructure and national security-adjacent systems under DHS guidance, aligning with EU AI Act 2024 high-risk system requirements... - **Discovery URL**: https://bidda.com/api/v1/nodes/dhs-ai-safety-security-board-guidance-2024.json #### Regulation (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 16: Notice and action mechanisms - **ID**: dsa-regulation-article-16-notice-action-mechanisms-hosting-providers - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Hosting service providers must establish and operate easy-to-use electronic mechanisms for individuals and entities to report illegal content, and must process these notices in a timely, diligent, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-16-notice-action-mechanisms-hosting-providers.json #### REGULATION (EU) 2022/2065 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 19 October 2022 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 20: Internal complaint-handling system - **ID**: dsa-regulation-article-20-internal-complaint-handling-system - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Providers of online platforms must establish and operate an easily accessible, free, and effective internal system for handling user complaints against content moderation decisions. - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-20-internal-complaint-handling-system.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 29 - **ID**: dsa-regulation-article-29-recommender-systems-online-marketplaces - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Providers of online platforms using recommender systems must transparently disclose the main parameters used for recommendations and provide any available options for users to modify or influence them... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-29-recommender-systems-online-marketplaces.json #### REGULATION (EU) 2022/2065 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 19 October 2022 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 30 - **ID**: dsa-regulation-article-30-online-marketplace-trader-obligations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Online marketplaces must collect, verify, and display specific identification and contact information from their business users (traders) to ensure traceability and compliance before allowing them to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-30-online-marketplace-trader-obligations.json #### Regulation (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 33: Very large online platforms and very large online search engines - **ID**: dsa-regulation-article-33-vlop-vlose-designation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes the process by which the European Commission designates online platforms and search engines as 'very large' (VLOPs/VLOSEs) based on their number of average monthly active user... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-33-vlop-vlose-designation.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 34 - **ID**: dsa-regulation-article-34-risk-assessment-vlop-vlose - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Very Large Online Platforms (VLOPs) and Very Large Online Search Engines (VLOSEs) must diligently conduct, document, and report on annual assessments of any significant systemic risks stemming from th... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-34-risk-assessment-vlop-vlose.json #### REGULATION (EU) 2022/2065 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 19 October 2022 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 36 Data access and scrutiny - **ID**: dsa-regulation-article-36-data-access-research - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article mandates that very large online platforms provide vetted researchers with access to platform data for the sole purpose of conducting research on systemic risks in the Union. - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-36-data-access-research.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 37 Auditing - **ID**: dsa-regulation-article-37-independent-audit-vlop - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Providers of very large online platforms (VLOPs) must undergo and pay for an independent audit at least once a year to assess their compliance with specific obligations under the Digital Services Act. - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-37-independent-audit-vlop.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 38 Recommender systems - **ID**: dsa-regulation-article-38-vlop-recommender-system-additional-obligations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Very large online platforms (VLOPs) and very large online search engines (VLOSEs) using recommender systems must provide users with an accessible option to modify the main parameters of each system, i... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-38-vlop-recommender-system-additional-obligations.json #### REGULATION (EU) 2022/2065 (Digital Services Act) Article 39: Online advertising transparency - **ID**: dsa-regulation-article-39-online-advertising-transparency-vlop - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Providers of online platforms, especially very large online platforms (VLOPs), must ensure transparency for all online advertising, including identifying ads, the advertiser, and the main targeting pa... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-39-online-advertising-transparency-vlop.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 39: Online advertising transparency - **ID**: dsa-regulation-article-40-online-advertising-repository - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Very large online platforms must compile and maintain a publicly accessible, searchable repository of all advertisements displayed on their service for one year after the ad was last presented. - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-40-online-advertising-repository.json #### Regulation (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 42 Transparency reporting obligations for providers of online platforms and of very large online platforms - **ID**: dsa-regulation-article-42-systemic-risk-transparency-reporting - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Providers of online platforms, and especially very large online platforms (VLOPs), must publish detailed transparency reports on their content moderation activities, including orders from authorities,... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-42-systemic-risk-transparency-reporting.json #### Regulation (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 43: Supervisory fees - **ID**: dsa-regulation-article-43-supervisory-fee-vlop - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article requires the Commission to charge annual supervisory fees to providers of very large online platforms (VLOPs) and very large online search engines (VLOSEs) to cover the costs of its super... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-43-supervisory-fee-vlop.json #### REGULATION (EU) 2022/2065 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 19 October 2022 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 45 - **ID**: dsa-regulation-article-45-penalties-non-compliance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article requires Member States to establish effective, proportionate, and dissuasive penalties for non-compliance with the DSA, setting maximum fines based on the global annual turnover of the se... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-45-penalties-non-compliance.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 52 Supervisory fees - **ID**: dsa-regulation-article-52-supervisory-fees - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article requires providers of very large online platforms (VLOPs) and very large online search engines (VLOSEs) to pay annual supervisory fees to the Commission to cover the costs of its supervis... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-52-supervisory-fees.json #### REGULATION (EU) 2022/2065 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 19 October 2022 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 56 - **ID**: dsa-regulation-article-56-exclusive-competence-commission-vlop - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organizations must acknowledge the principles of the Digital Services Act, which aims to harmonize rules for intermediary services to ensure a safe, predictable, and trustworthy online environment wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-56-exclusive-competence-commission-vlop.json #### Regulation (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 73 Penalties - **ID**: dsa-regulation-article-73-penalties-non-compliance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article requires Member States to establish effective, proportionate, and dissuasive penalties for infringements of the Digital Services Act, setting maximum fines up to 6% of annual worldwide tu... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-73-penalties-non-compliance.json #### Regulation (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 74: Independent audit - **ID**: dsa-regulation-article-74-independent-audit - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Very large online platforms and search engines must undergo an independent audit at least once a year, at their own expense, to assess compliance with specific DSA obligations and commitments. - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-74-independent-audit.json #### European Data Protection Board (EDPB) Opinion 28/2024 (Adopted 17 December 2024) - On Certain Data Protection Aspects Related to the Processing of Personal Data in the Context of AI Models (Article 64(2) GDPR Opinion Requested by the Irish Supervisory Authority on 4 September 2024) - **ID**: edpb-opinion-28-2024-ai-models - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EDPB Opinion 28/2024 'on certain data protection aspects related to the processing of personal data in the context of AI models', adopted by the European Data Protection Board on 17 December 2024, is ... - **Discovery URL**: https://bidda.com/api/v1/nodes/edpb-opinion-28-2024-ai-models.json #### ENISA Guidelines on AI Cybersecurity for the EU AI Act - Compliance Obligations for EU AI System Cybersecurity Controls, AI Attack Surface Mapping, and ENISA Technical Guidelines for Article 15 Cybersecurity Requirements - **ID**: enisa-ai-cybersecurity-guidelines-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines ENISA's cybersecurity guidelines for AI systems under the EU AI Act, focusing on compliance with Article 15 cybersecurity requirements, AI attack surface mapping, and multilayered s... - **Discovery URL**: https://bidda.com/api/v1/nodes/enisa-ai-cybersecurity-guidelines-2023.json #### Spain AESIA Agencia Espanola de Supervision de Inteligencia Artificial - First EU National AI Supervisory Authority, Operational from 19 June 2024 - **ID**: es-aesia-ai-supervision-agency-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organisations deploying AI in Spain subject to the EU AI Act must engage with the Agencia Espanola de Supervision de la Inteligencia Artificial (AESIA), the first European national agency dedicated to... - **Discovery URL**: https://bidda.com/api/v1/nodes/es-aesia-ai-supervision-agency-2024.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 laying down harmonised rules on artificial intelligence and amending Regulations (EC) No 300/2008, (EU) No 167/2013, (EU) No 168/2013, (EU) 2018/858, (EU) 2018/1139 and (EU) 2019/2144 and Directives 2014/90/EU, (EU) 2016/797 and (EU) 2020/1828 (Artificial Intelligence Act) - **ID**: eu-ai-act-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The EU AI Act establishes a comprehensive, risk-based legal framework for AI systems placed on the Union market, prohibiting certain unacceptable-risk practices (Article 5), imposing strict conformity... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024.json #### EU AI Act (EU) 2024/1689 - Article 16: Obligations of Providers of High-Risk AI Systems - **ID**: eu-ai-act-2024-1689-article-16-obligations-providers-high-risk-ai - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 16 of the EU AI Act imposes seven mandatory obligations on providers of high-risk AI systems before and during placement on the EU market: (a) establish a compliant quality management system u... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-16-obligations-providers-high-risk-ai.json #### EU AI Act (EU) 2024/1689 - Article 17: Quality Management System Requirements for Providers of High-Risk AI Systems - **ID**: eu-ai-act-2024-1689-article-17-quality-management-system-providers - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 17 mandates that every provider of a high-risk AI system document and implement a Quality Management System (QMS) proportionate to the organisation's size and the risk level of the AI system. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-17-quality-management-system-providers.json #### EU AI Act (EU) 2024/1689 - Article 18: Technical Documentation Requirements for High-Risk AI System Providers - **ID**: eu-ai-act-2024-1689-article-18-technical-documentation-high-risk-ai - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 18 requires providers of high-risk AI systems to draw up Annex IV-compliant technical documentation before placing the system on the market and to keep it up to date throughout the product lif... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-18-technical-documentation-high-risk-ai.json #### EU AI Act (EU) 2024/1689 - Article 20: Automatically Generated Logs and Audit Trail Requirements for High-Risk AI - **ID**: eu-ai-act-2024-1689-article-20-automatically-generated-logs-high-risk - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 20 requires providers of high-risk AI systems to design and build in automatic log-keeping capabilities that record the system's operation throughout the entire period of use. These logs must ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-20-automatically-generated-logs-high-risk.json #### EU AI Act (EU) 2024/1689 - Article 21: Cooperation with Competent Authorities by Providers of High-Risk AI Systems - **ID**: eu-ai-act-2024-1689-article-21-cooperation-competent-authorities-providers - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 21 requires providers of high-risk AI systems to cooperate with national competent authorities (NCAs) and the AI Office upon request. Cooperation obligations include: providing authorities wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-21-cooperation-competent-authorities-providers.json #### EU AI Act (EU) 2024/1689 - Article 22: Obligations of Authorised Representatives of Providers of High-Risk AI Systems - **ID**: eu-ai-act-2024-1689-article-22-obligations-authorised-representatives-providers - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 22 requires non-EU providers of high-risk AI systems placed on the EU market to designate - by written mandate - an EU-established authorised representative before market placement. The author... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-22-obligations-authorised-representatives-providers.json #### EU AI Act (EU) 2024/1689 - Article 23: Obligations of Importers of High-Risk AI Systems - **ID**: eu-ai-act-2024-1689-article-23-obligations-importers-high-risk-ai - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 23 places specific obligations on importers - EU-established entities that place a high-risk AI system from a non-EU provider on the EU market. Before placing the system on the market, importe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-23-obligations-importers-high-risk-ai.json #### EU AI Act (EU) 2024/1689 - Article 24: Obligations of Distributors of High-Risk AI Systems - **ID**: eu-ai-act-2024-1689-article-24-obligations-distributors-high-risk-ai - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 24 requires distributors - entities in the supply chain that make a high-risk AI system available on the EU market without being the provider or importer - to verify before making the system a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-24-obligations-distributors-high-risk-ai.json #### EU AI Act (EU) 2024/1689 - Article 25: Responsibilities Along the AI Value Chain - **ID**: eu-ai-act-2024-1689-article-25-responsibilities-along-ai-value-chain - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 25 establishes clear role transitions within the AI value chain that shift provider obligations to other economic operators. An importer or distributor becomes a provider - and assumes all Art... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-25-responsibilities-along-ai-value-chain.json #### EU AI Act (EU) 2024/1689 - Article 26: Obligations of Deployers of High-Risk AI Systems - **ID**: eu-ai-act-2024-1689-article-26-obligations-deployers-high-risk-ai - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 26 is the primary compliance article for organisations that use (deploy) high-risk AI systems in their operations. Deployers must: (a) use the system in accordance with the provider's instruct... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-26-obligations-deployers-high-risk-ai.json #### EU AI Act (EU) 2024/1689 - Article 40: Harmonised Standards and Presumption of Conformity for High-Risk AI Systems - **ID**: eu-ai-act-2024-1689-article-40-harmonised-standards-presumption-conformity - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 40 establishes the presumption of conformity mechanism for high-risk AI systems: a system that complies with harmonised European standards (EN standards) published in the Official Journal of t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-40-harmonised-standards-presumption-conformity.json #### EU AI Act (EU) 2024/1689 - Article 43: Conformity Assessment Procedures for High-Risk AI Systems - **ID**: eu-ai-act-2024-1689-article-43-conformity-assessment-procedures-high-risk - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 43 specifies two conformity assessment routes for high-risk AI systems before market placement. Route 1 (internal control - Annex VI): providers self-assess against AI Act requirements; applie... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-43-conformity-assessment-procedures-high-risk.json #### EU AI Act (EU) 2024/1689 - Article 44: Certificates and EU Declaration of Conformity for High-Risk AI - **ID**: eu-ai-act-2024-1689-article-44-certificates-eu-declaration-conformity - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 44 governs EU AI Act certificates issued by notified bodies following Route 2 conformity assessment under Article 43. Certificates must: (a) contain information required by Annex VII; (b) be i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-44-certificates-eu-declaration-conformity.json #### EU AI Act (EU) 2024/1689 - Article 57: AI Office Tasks and Responsibilities for GPAI Model Oversight - **ID**: eu-ai-act-2024-1689-article-57-ai-office-tasks-responsibilities - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 57 establishes the AI Office - an EU-level body within the European Commission - as the primary supervisor of general-purpose AI (GPAI) model providers in the EU. The AI Office's core tasks in... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-57-ai-office-tasks-responsibilities.json #### EU AI Act (EU) 2024/1689 - Article 64: Market Surveillance Authority Powers and Enforcement for High-Risk AI - **ID**: eu-ai-act-2024-1689-article-64-market-surveillance-enforcement-authorities - **Category**: AI Governance & Law - **Version**: 2.0 - **BLUF**: Article 64 grants national market surveillance authorities (NCAs) extensive investigative and corrective powers for high-risk AI system compliance. NCAs may: (a) access all documentation and source co... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-article-64-market-surveillance-enforcement-authorities.json #### EU AI Act Article 5 Prohibited AI Practices Compliance Node - **ID**: eu-ai-act-2024-1689-prohibited-practices - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1689 Article 5 prohibits specific AI practices deemed unacceptable. These include deploying AI systems using subliminal techniques to materially distort a person's behavior in a m... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-1689-prohibited-practices.json #### EU AI Act 2024 Article 26 - Deployer Obligations for High-Risk AI Systems - **ID**: eu-ai-act-2024-article-26-deployer-obligations-high-risk - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1689 Article 26 sets out obligations for deployers of high-risk AI systems. Deployers must use systems in accordance with instructions of use, assign human oversight to qualified ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-article-26-deployer-obligations-high-risk.json #### EU AI Act - Accuracy, Robustness, and Cybersecurity Requirements for High-Risk AI Systems (Article 15) - **ID**: eu-ai-act-accuracy-robustness-cybersecurity - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 15 establishes mandatory accuracy, robustness, and cybersecurity requirements for high-risk AI systems; Article 15(1) - high-risk AI systems shall be designed ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-accuracy-robustness-cybersecurity.json #### EU AI Act - AI Regulatory Sandboxes for Innovative AI Development (Articles 57-60) - **ID**: eu-ai-act-ai-regulatory-sandboxes - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Articles 57-60 establish the AI regulatory sandbox framework - a controlled environment enabling providers and prospective providers to develop, train, test, and valid... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-ai-regulatory-sandboxes.json #### Regulation (EU) 2024/1689 Annex I: Artificial Intelligence Techniques and Approaches Referred to in Article 3, Point 1 - **ID**: eu-ai-act-annex-i-ai-techniques-definition - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node defines the specific machine learning, logic-based, and statistical techniques that qualify a system as an 'AI system' under the EU AI Act, as referenced in Article 3(1). Organizations must ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-i-ai-techniques-definition.json #### EU AI Act Annex II - Union Harmonisation Legislation for Products in High-Risk AI Classification - **ID**: eu-ai-act-annex-ii-union-harmonisation-legislation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Annex II lists the Union harmonisation legislation applicable to safety-regulated products whose embedded AI components are automatically classified as high-risk under A... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-ii-union-harmonisation-legislation.json #### EU AI Act Annex III - Exhaustive List of High-Risk AI Systems: Biometrics, Critical Infrastructure, Education, Employment and Public Services - **ID**: eu-ai-act-annex-iii-high-risk-ai-list - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Annex III of the EU AI Act provides an exhaustive list of AI systems considered high-risk across eight critical domains, including biometrics, critical infrastructure, education, and employment. AI sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-iii-high-risk-ai-list.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 laying down harmonised rules on artificial intelligence and amending Regulations (EC) No 300/2008, (EU) No 167/2013, (EU) No 168/2013, (EU) 2018/858, (EU) 2018/1139 and (EU) 2019/2144 and Directives 2014/90/EU, (EU) 2016/797 and (EU) 2020/1828 (Artificial Intelligence Act) - **ID**: eu-ai-act-annex-iii-high-risk-ai-systems - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This regulation establishes a harmonised framework for high-risk AI systems listed in Annex III, requiring strict compliance with risk management, data governance, transparency, and human oversight ob... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-iii-high-risk-ai-systems.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council on Harmonised Rules on Artificial Intelligence (Artificial Intelligence Act) - Annex III: AI Systems Considered High-Risk - **ID**: eu-ai-act-annex-iii-high-risk-classification - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This regulation defines eight categories of AI systems classified as high-risk under the EU AI Act, subjecting providers and deployers to strict conformity assessments, transparency obligations, and r... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-iii-high-risk-classification.json #### EU AI Act Annex III - High-Risk AI System Use Cases Classification List - **ID**: eu-ai-act-annex-iii-high-risk-use-cases - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Annex III enumerates eight categories of high-risk AI system use cases subject to the full requirements of Chapter III: (1) biometric identification and categorisation o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-iii-high-risk-use-cases.json #### EU AI Act Annex IV - Technical Documentation Content Requirements for High-Risk AI Systems - **ID**: eu-ai-act-annex-iv-technical-documentation-requirements - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Annex IV specifies the mandatory content that providers must include in the technical documentation for high-risk AI systems under Article 11, comprising ten categories ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-iv-technical-documentation-requirements.json #### EU AI Act Annex IX - Information for Registration of High-Risk AI Systems in the EU Database - **ID**: eu-ai-act-annex-ix-registration-eu-database - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Annex IX specifies the information that providers and deployers must submit when registering high-risk AI systems in the EU database established under Article 60 - the r... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-ix-registration-eu-database.json #### EU AI Act Annex V - Content Requirements for the EU Declaration of Conformity - **ID**: eu-ai-act-annex-v-eu-declaration-of-conformity - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Annex V specifies the mandatory content that providers must include in the EU declaration of conformity required under Article 47 for high-risk AI systems - the declarat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-v-eu-declaration-of-conformity.json #### EU AI Act Annex VI - Internal Control Conformity Assessment Procedure for High-Risk AI Systems - **ID**: eu-ai-act-annex-vi-internal-control-conformity-assessment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Annex VI establishes the internal control conformity assessment procedure under which providers of most high-risk AI systems listed in Annex III may self-certify conform... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-vi-internal-control-conformity-assessment.json #### EU AI Act Annex VII - Third-Party Conformity Assessment by Notified Bodies for High-Risk AI Systems - **ID**: eu-ai-act-annex-vii-notified-body-conformity-assessment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Annex VII establishes the third-party conformity assessment procedure based on assessment of quality management system and assessment of technical documentation, conduct... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-vii-notified-body-conformity-assessment.json #### EU AI Act Annex VIII - Technical Documentation Requirements for General-Purpose AI Models - **ID**: eu-ai-act-annex-viii-gpai-technical-documentation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Annex VIII specifies the mandatory technical documentation that providers of general-purpose AI (GPAI) models must prepare and maintain under Article 53 - the documentat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-viii-gpai-technical-documentation.json #### EU AI Act Annex VIII - Technical Documentation Requirements for General Purpose AI Models - Compliance Obligations for GPAI Model Documentation, Training Data Disclosure, and Capability Evaluation Documentation Under EU AI Act - **ID**: eu-ai-act-annex-viii-technical-documentation-gpai - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for General Purpose AI (GPAI) models under EU AI Act Annex VIII, focusing on technical documentation, training data disclosure, and capability evaluation as m... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-annex-viii-technical-documentation-gpai.json #### EU AI Act Article 1 - Subject Matter and Purpose - **ID**: eu-ai-act-article-1-subject-matter - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 1 establishes that the Regulation lays down harmonised rules on the placing on the market, putting into service, and use of AI systems in the Union, aiming to en... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-1-subject-matter.json #### Regulation (EU) 2024/1689 - Article 10: Data and data governance - **ID**: eu-ai-act-article-10-data-governance-training - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 10 of the EU AI Act, providers of high-risk AI systems must ensure their training, validation, and testing datasets are relevant, representative, complete, and error-free. This includes ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-10-data-governance-training.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 100 - **ID**: eu-ai-act-article-100-transitional-provisions-notified-bodies - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes transitional provisions allowing certain existing notified bodies to act as notified bodies under the AI Act, provided they apply for designation and declare their intent to c... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-100-transitional-provisions-notified-bodies.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 101: Application of prohibitions - **ID**: eu-ai-act-article-101-prohibition-application-dates - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes the specific future dates on which the various prohibitions on certain AI practices, as detailed in Article 5, become applicable and legally enforceable. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-101-prohibition-application-dates.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 102 - **ID**: eu-ai-act-article-102-gpai-application-date - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes that AI systems must be developed and used to improve the internal market in accordance with Union values, ensuring a high level of protection for health, safety, and fundamen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-102-gpai-application-date.json #### Regulation (EU) 2024/1689 (Artificial Intelligence Act) - Article 103: Transitional provisions for high-risk AI systems - **ID**: eu-ai-act-article-103-high-risk-systems-transition-period - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article outlines the transitional compliance requirements for high-risk AI systems placed on the market before the regulation's application date, focusing on obligations triggered by substantial ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-103-high-risk-systems-transition-period.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 104 - **ID**: eu-ai-act-article-104-derogations-specific-systems - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes specific derogations allowing the processing of personal data for developing, training, and testing AI systems for law enforcement purposes, provided strict conditions within ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-104-derogations-specific-systems.json #### REGULATION (EU) 2024/1689 (Artificial Intelligence Act) - Article 105 Derogations for specific purposes - **ID**: eu-ai-act-article-105-derogations-authorisation-defence - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes specific derogations and exemptions from the AI Act for systems used for national security, research and development, and personal use, and sets out procedures for Member Stat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-105-derogations-authorisation-defence.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 106 - **ID**: eu-ai-act-article-106-derogations-public-security - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article provides a derogation from the Regulation's requirements for AI systems used for the exclusive purpose of safeguarding public security, subject to strict conditions of necessity, proporti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-106-derogations-public-security.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 107 - **ID**: eu-ai-act-article-107-derogations-biometric-systems - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes the conditions under which providers of certain high-risk AI systems may test them in real world conditions by way of derogation, requiring a detailed testing plan, market sur... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-107-derogations-biometric-systems.json #### REGULATION (EU) 2024/1689 (Artificial Intelligence Act) - Article 108: Derogations for specific operators - **ID**: eu-ai-act-article-108-derogations-critical-infrastructure - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes specific derogations and support measures for small-scale providers to ease their compliance burden, including reduced conformity assessment fees, priority access to regulator... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-108-derogations-critical-infrastructure.json #### Regulation (EU) 2024/1689 (Artificial Intelligence Act) - Article 109: Derogations for law enforcement and migration authorities and for Union institutions, bodies, offices and agencies - **ID**: eu-ai-act-article-109-derogations-law-enforcement - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes specific derogations and modified compliance obligations for law enforcement, migration authorities, and EU bodies when they put high-risk AI systems into service, particularl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-109-derogations-law-enforcement.json #### EU AI Act Article 11 and Annex IV - Technical Documentation for High-Risk AI Systems - **ID**: eu-ai-act-article-11-technical-documentation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 11 of the EU AI Act, providers of high-risk AI systems must create and maintain comprehensive technical documentation as specified in Annex IV before placing the system on the market. Th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-11-technical-documentation.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 110 - **ID**: eu-ai-act-article-110-derogations-migration-asylum - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes specific derogations for the use of AI systems in the context of migration, asylum, and border control management, subject to strict necessity, proportionality, and fundamenta... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-110-derogations-migration-asylum.json #### EU AI Act Article 111 - Transitional Provisions for GPAI Models Already on the Market - **ID**: eu-ai-act-article-111-gpai-transitional-provisions - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 contains transitional provisions for general-purpose AI models that were already placed on the market before 2 August 2025 (12 months after entry into force) - providers... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-111-gpai-transitional-provisions.json #### REGULATION (EU) 2024/1689 on Artificial Intelligence (Artificial Intelligence Act) - Article 112: Addressees of decisions of the Commission and fines - **ID**: eu-ai-act-article-112-addressees - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article specifies that Commission decisions and fines related to Union testing facilities must be formally addressed and notified to the facility concerned, which must be given an opportunity to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-112-addressees.json #### EU AI Act Article 113 - Entry into Force and Phased Application Dates - **ID**: eu-ai-act-article-113-entry-into-force-application - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 113 establishes the Regulation's entry into force date of 1 August 2024 and the phased application schedule - prohibited AI practices (Article 5) and AI literacy... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-113-entry-into-force-application.json #### EU AI Act Article 12 - Automatic Log-Keeping for High-Risk AI Systems - **ID**: eu-ai-act-article-12-record-keeping - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Article 12 requires providers of high-risk AI systems to ensure their systems automatically generate logs documenting operation including input data references, output results, and system ev... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-12-record-keeping.json #### EU AI Act Article 13 - Transparency and Instructions for Use: Information for Deployers of High-Risk AI Systems - **ID**: eu-ai-act-article-13-transparency-deployers - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 13 of the EU AI Act, providers of high-risk AI systems are mandated to furnish deployers with comprehensive, clear, and concise instructions for use. This documentation must detail the s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-13-transparency-deployers.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 laying down harmonised rules on artificial intelligence and amending Regulations (EC) No 300/2008, (EU) No 167/2013, (EU) No 168/2013, (EU) 2018/858, (EU) 2018/1139 and (EU) 2019/2144 and Directives 2014/90/EU, (EU) 2016/797 and (EU) 2020/1828 (Artificial Intelligence Act) - Article 13: Transparency and provision of information for high-risk AI systems - **ID**: eu-ai-act-article-13-transparency-high-risk - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This regulation requires providers of high-risk AI systems to ensure transparency by providing comprehensive instructions for use, information on system capabilities and limitations, accuracy metrics,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-13-transparency-high-risk.json #### EU AI Act Article 13 - Transparency and Provision of Information for High-Risk AI Systems - **ID**: eu-ai-act-article-13-transparency-high-risk-ai-instructions-use - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Article 13 requires providers of high-risk AI systems to ensure the systems are sufficiently transparent to enable deployers to interpret the output and use them appropriately. Providers mus... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-13-transparency-high-risk-ai-instructions-use.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 laying down harmonised rules on artificial intelligence and amending Regulations (EC) No 300/2008, (EU) No 167/2013, (EU) No 168/2013, (EU) 2018/858, (EU) 2018/1139 and (EU) 2019/2144 and Directives 2014/90/EU, (EU) 2016/797 and (EU) 2020/1828 (Artificial Intelligence Act) - Article 14: Human Oversight - **ID**: eu-ai-act-article-14-human-oversight - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This regulation requires providers and deployers of high-risk AI systems to implement human oversight measures that enable effective monitoring, intervention, and control over AI system operation, as ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-14-human-oversight.json #### EU AI Act Article 15 - Accuracy, Robustness, and Cybersecurity of High-Risk AI Systems - **ID**: eu-ai-act-article-15-robustness - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Article 15 requires that high-risk AI systems achieve appropriate levels of accuracy, robustness, and cybersecurity throughout their lifecycle, with providers specifying accuracy metrics in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-15-robustness.json #### EU AI Act Article 16 - Obligations of Providers of High-Risk AI Systems - **ID**: eu-ai-act-article-16-provider-obligations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 16 establishes the comprehensive set of obligations for providers of high-risk AI systems including compliance with risk management, data governance, technical d... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-16-provider-obligations.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 February 2024 on harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 17: Quality Management System for Providers of High-Risk AI Systems - **ID**: eu-ai-act-article-17-quality-management - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: Article 17 of the EU AI Act requires providers of high-risk AI systems to establish, implement, document, and maintain a quality management system (QMS) that ensures compliance with the Act’s requirem... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-17-quality-management.json #### Regulation (EU) 2024/1689 (EU AI Act) Article 17: Quality Management System for High-Risk AI Systems - **ID**: eu-ai-act-article-17-quality-management-system - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 17 of the EU AI Act, providers of high-risk AI systems must establish, implement, document, and maintain a comprehensive quality management system (QMS). This system must ensure complian... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-17-quality-management-system.json #### EU AI Act Article 18 - Technical Documentation Obligations for Conformity Assessment - **ID**: eu-ai-act-article-18-conformity-assessment-doc - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 18 requires providers of high-risk AI systems to draw up technical documentation in accordance with Annex IV before placing the system on the market, keep it upd... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-18-conformity-assessment-doc.json #### EU AI Act Article 2 - Scope of Application - **ID**: eu-ai-act-article-2-scope - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 2 defines the personal and territorial scope of the Regulation: it applies to providers placing AI systems on the market or putting them into service in the Unio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-2-scope.json #### EU AI Act Article 21 - Corrective Actions and Information Obligations for Non-Conforming High-Risk AI Systems - **ID**: eu-ai-act-article-21-corrective-actions - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 21 requires providers of high-risk AI systems that do not conform to applicable requirements to take corrective actions to bring the system into conformity, with... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-21-corrective-actions.json #### EU AI Act Article 25 - Responsibilities Along the AI Value Chain - **ID**: eu-ai-act-article-25-responsibilities - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Article 25 establishes that distributors or deployers who substantially modify a high-risk AI system beyond its intended purpose, or who place their name or trademark on a high-risk AI syste... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-25-responsibilities.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 laying down harmonised rules on artificial intelligence and amending Regulations (EC) No 300/2008, (EU) No 167/2013, (EU) No 168/2013, (EU) 2018/858, (EU) 2018/1139 and (EU) 2019/2144 and Directives 2014/90/EU, (EU) 2016/797 and (EU) 2020/1828 (Artificial Intelligence Act) - **ID**: eu-ai-act-article-26-deployer-obligations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This regulation imposes binding obligations on deployers of high-risk AI systems to implement provider instructions, ensure human oversight, maintain logs for 6 months to 3 years, conduct Fundamental ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-26-deployer-obligations.json #### REGULATION (EU) 2024/1689 (Artificial Intelligence Act) - Article 26: Obligations of deployers of high-risk AI systems - **ID**: eu-ai-act-article-26-obligations-deployers-high-risk-ai - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article mandates that deployers of high-risk AI systems must use them according to the provider's instructions, ensure input data quality, monitor operations, maintain logs, inform workers, and c... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-26-obligations-deployers-high-risk-ai.json #### Regulation (EU) 2024/1689 (EU AI Act) Article 27 - Fundamental Rights Impact Assessment for High-Risk AI Systems - **ID**: eu-ai-act-article-27-fria-fundamental-rights - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 27 of the EU AI Act, deployers that are public bodies, or private operators providing public services, must conduct and document a Fundamental Rights Impact Assessment (FRIA) before putt... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-27-fria-fundamental-rights.json #### EU AI Act Article 28 - Obligations of Distributors of High-Risk AI Systems - **ID**: eu-ai-act-article-28-obligations-distributors - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 28 requires distributors of high-risk AI systems to verify that the CE marking is affixed, the EU declaration of conformity and instructions for use are availabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-28-obligations-distributors.json #### EU AI Act Article 29 - Obligations of Importers of High-Risk AI Systems - **ID**: eu-ai-act-article-29-obligations-importers - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 29 requires importers placing high-risk AI systems on the EU market on behalf of non-EU providers to verify that the provider has conducted a conformity assessme... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-29-obligations-importers.json #### EU AI Act Article 3 - Key Definitions for AI Governance Compliance - **ID**: eu-ai-act-article-3-definitions - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 3 provides the definitional framework for the entire Regulation, including the core definitions of 'AI system' (a machine-based system designed to operate with v... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-3-definitions.json #### EU AI Act Article 30 - EU Database Registration for High-Risk AI Systems - **ID**: eu-ai-act-article-30-gpai-technical-doc - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 30 requires providers of high-risk AI systems listed in Annex III to register their systems and themselves in the EU-wide AI database operated by the Commission ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-30-gpai-technical-doc.json #### EU AI Act Article 31 - Requirements for Notified Bodies - **ID**: eu-ai-act-article-31-notified-body-requirements - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 31 establishes the mandatory requirements that conformity assessment bodies must meet before they can be designated as notified bodies to conduct third-party con... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-31-notified-body-requirements.json #### EU AI Act Article 32 - Notification Procedure for Conformity Assessment Bodies - **ID**: eu-ai-act-article-32-notification-procedure - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 32 establishes the notification procedure through which Member States formally designate and notify the Commission and other Member States about conformity asses... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-32-notification-procedure.json #### EU AI Act Article 33 - Tasks of Notified Bodies - **ID**: eu-ai-act-article-33-tasks-notified-bodies - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 33 establishes that notified bodies must carry out the conformity assessment activities for which they are notified, that they must assess provider applications ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-33-tasks-notified-bodies.json #### EU AI Act Article 34 - Subsidiaries and Subcontracting of Notified Bodies - **ID**: eu-ai-act-article-34-subsidiaries-subcontracting - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 34 establishes that where a notified body subcontracts specific conformity assessment activities or uses a subsidiary to perform those activities, it must ensure... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-34-subsidiaries-subcontracting.json #### EU AI Act Article 35 - Changes to Notifications of Notified Bodies - **ID**: eu-ai-act-article-35-changes-to-notifications - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 35 establishes that the notifying authority must notify the Commission and other Member States of any changes to the notification of a notified body including re... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-35-changes-to-notifications.json #### EU AI Act Article 36 - Operational Obligations of Notified Bodies - **ID**: eu-ai-act-article-36-operational-obligations-notified-bodies - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 36 establishes the operational obligations that notified bodies must comply with when conducting third-party conformity assessments of high-risk AI systems, requ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-36-operational-obligations-notified-bodies.json #### EU AI Act Article 37 - EU Reference Laboratories for High-Risk AI Systems - **ID**: eu-ai-act-article-37-eu-reference-laboratories - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 37 empowers the Commission to designate EU reference laboratories for high-risk AI systems in specific domains where technical validation of AI system compliance... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-37-eu-reference-laboratories.json #### EU AI Act Article 38 - NANDO Notification and Notified Body Identification Numbers - **ID**: eu-ai-act-article-38-nando-notification - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 38 requires the Commission to maintain and make publicly available an updated list of notified bodies designated under the Regulation, including each notified bo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-38-nando-notification.json #### EU AI Act Article 39 - Conformity Assessment Bodies from Third Countries - **ID**: eu-ai-act-article-39-conformity-assessment-bodies-third-countries - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 39 provides that conformity assessment bodies established in third countries may be designated as notified bodies under the Regulation only where a bilateral agr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-39-conformity-assessment-bodies-third-countries.json #### EU AI Act Article 4 - AI Literacy Obligations for Providers and Deployers - **ID**: eu-ai-act-article-4-ai-literacy - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 4 requires providers and deployers of AI systems to take measures to ensure, to the best of their ability, a sufficient level of AI literacy among their staff an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-4-ai-literacy.json #### EU AI Act Article 40 - Harmonised Standards and Presumption of Conformity - **ID**: eu-ai-act-article-40-harmonised-standards - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 40 establishes that high-risk AI systems complying with harmonised standards adopted pursuant to Regulation (EU) 1025/2012 and cited in the Official Journal are ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-40-harmonised-standards.json #### EU AI Act Article 41 - Common Specifications for High-Risk AI Systems - **ID**: eu-ai-act-article-41-common-specifications - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 41 empowers the Commission to adopt implementing acts establishing common specifications for the requirements of Chapter III Title II where harmonised standards ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-41-common-specifications.json #### EU AI Act Article 42 - Presumption of Conformity with Certain Requirements - **ID**: eu-ai-act-article-42-presumption-of-conformity - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 42 establishes that high-risk AI systems that have been trained and tested on data reflecting the specific geographical, contextual, and functional settings in w... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-42-presumption-of-conformity.json #### REGULATION (EU) 2024/1689 (Artificial Intelligence Act) - Article 43: Conformity assessment procedures for high-risk AI systems - **ID**: eu-ai-act-article-43-conformity-assessment-procedures-notified-bodies - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article mandates specific conformity assessment procedures for providers of high-risk AI systems, determining when an internal control assessment is sufficient versus when a third-party notified ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-43-conformity-assessment-procedures-notified-bodies.json #### EU AI Act Article 46 - Derogation from Conformity Assessment Procedures - **ID**: eu-ai-act-article-46-derogation-conformity-assessment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 46 provides an exceptional derogation procedure allowing market surveillance authorities to authorise the placing on the market or putting into service of specif... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-46-derogation-conformity-assessment.json #### EU AI Act Article 47 - EU Declaration of Conformity - **ID**: eu-ai-act-article-47-eu-declaration-of-conformity - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 47 requires providers of high-risk AI systems to draw up a written EU declaration of conformity confirming that the system fulfils all applicable EU AI Act requi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-47-eu-declaration-of-conformity.json #### EU AI Act Article 48 - CE Marking Affixation Rules and Restrictions - **ID**: eu-ai-act-article-48-ce-marking-affixation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 48 establishes that the CE conformity marking for high-risk AI systems must be affixed visibly, legibly, and indelibly before the AI system is placed on the mark... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-48-ce-marking-affixation.json #### EU AI Act - Article 5 Prohibited AI Practices: Complete Framework Overview - **ID**: eu-ai-act-article-5-prohibited-overview - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 5 establishes eight categories of prohibited AI practices that represent the highest tier of AI risk - practices so harmful to fundamental rights, safety, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-5-prohibited-overview.json #### Regulation (EU) 2024/1689 (EU AI Act) Article 5: Prohibited Artificial Intelligence Practices - **ID**: eu-ai-act-article-5-prohibited-practices - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Article 5 of the EU AI Act establishes an absolute ban on placing on the market, putting into service, or using certain AI practices considered to pose an unacceptable risk to fundamental rights. This... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-5-prohibited-practices.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 February 2024 on harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 50: Transparency obligations for general purpose AI models and specific transparency requirements for certain AI systems - **ID**: eu-ai-act-article-50-gpai-transparency - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: Article 50 of the EU AI Act imposes transparency obligations on providers of general purpose AI (GPAI) models and requires specific disclosures for AI systems generating synthetic content, including d... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-50-gpai-transparency.json #### EU AI Act Article 50 - Transparency Obligations for Certain AI Systems - **ID**: eu-ai-act-article-50-transparency-obligations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 50 requires providers of AI systems that interact directly with natural persons to ensure those persons are informed they are interacting with an AI system, requ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-50-transparency-obligations.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 on Artificial Intelligence (Artificial Intelligence Act) and amending certain Union Legislative Acts - Article 51: General Purpose AI Models with Systemic Risk - **ID**: eu-ai-act-article-51-gpai-model-registration - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: Article 51 of the EU AI Act imposes specific obligations on providers of general-purpose AI (GPAI) models trained using a computational capability exceeding 10^25 FLOPs, or designated by the European ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-51-gpai-model-registration.json #### EU AI Act Article 51 - Classification of GPAI Models with Systemic Risk - **ID**: eu-ai-act-article-51-gpai-systemic-risk-classification - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 51 establishes that a general-purpose AI model is classified as a GPAI model with systemic risk where it is trained using a total computing power of more than 10... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-51-gpai-systemic-risk-classification.json #### EU AI Act Article 52 - Obligations for Providers of General-Purpose AI Models - **ID**: eu-ai-act-article-52-gpai-provider-obligations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 52 establishes baseline obligations for all providers of general-purpose AI models placed on the EU market, requiring them to draw up and maintain technical docu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-52-gpai-provider-obligations.json #### EU AI Act Article 53 - GPAI Model Codes of Practice - **ID**: eu-ai-act-article-53-gpai-codes-of-practice - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 53 requires the AI Office to facilitate the drawing up of codes of practice by providers of GPAI models and other stakeholders, covering the technical, operation... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-53-gpai-codes-of-practice.json #### EU AI Act Article 54 - Authorised Representatives of GPAI Model Providers - **ID**: eu-ai-act-article-54-gpai-authorised-representatives - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 54 requires providers of general-purpose AI models established outside the European Union who make their models available in the EU to appoint an authorised repr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-54-gpai-authorised-representatives.json #### EU AI Act Article 55 - Obligations for General-Purpose AI Models with Systemic Risk - **ID**: eu-ai-act-article-55-systemic-risk-gpai - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 55 imposes additional obligations on providers of general-purpose AI models that are designated as posing systemic risk - specifically those trained with compute... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-55-systemic-risk-gpai.json #### EU AI Act Article 56 - Establishment of the AI Office - **ID**: eu-ai-act-article-56-ai-office - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 56 establishes the AI Office within the European Commission as the central EU-level supervisory body responsible for monitoring and enforcing the rules applicabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-56-ai-office.json #### EU AI Act Article 58 - European Artificial Intelligence Board - **ID**: eu-ai-act-article-58-ai-board - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 58 establishes the European Artificial Intelligence Board (EAIB) composed of one senior representative from each Member State's national competent authority, the... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-58-ai-board.json #### EU AI Act Article 59 - EDPS as Competent Authority for EU Institutions - **ID**: eu-ai-act-article-59-edps-authority - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 59 designates the European Data Protection Supervisor as the competent authority responsible for supervising EU institutions, bodies, offices, and agencies in th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-59-edps-authority.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 laying down harmonised rules on artificial intelligence and amending Regulations (EC) No 300/2008, (EU) No 167/2013, (EU) No 168/2013, (EU) 2018/858, (EU) 2018/1139 and (EU) 2019/2144 and Directives 2014/90/EU, (EU) 2016/797 and (EU) 2020/1828 (Artificial Intelligence Act) - **ID**: eu-ai-act-article-6-classification-high-risk - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This regulation establishes the criteria for classifying AI systems as high-risk under Article 6 of the EU AI Act, based on either integration into a product covered by Annex I safety legislation or f... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-6-classification-high-risk.json #### EU AI Act Article 60 - EU Database for High-Risk AI Systems - **ID**: eu-ai-act-article-60-eu-database-high-risk-ai - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 60 establishes an EU-wide database for stand-alone high-risk AI systems that providers must register their systems in before placing them on the market or puttin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-60-eu-database-high-risk-ai.json #### EU AI Act Article 61 - Post-Market Monitoring for High-Risk AI Systems - **ID**: eu-ai-act-article-61-post-market-monitoring - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 61 requires providers of high-risk AI systems to establish and document a post-market monitoring system that actively collects and analyses data on system perfor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-61-post-market-monitoring.json #### EU AI Act Article 73 - Reporting Obligations for Serious Incidents - **ID**: eu-ai-act-article-62-reporting-serious-incidents - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 73 requires providers of high-risk AI systems placed on the Union market to report serious incidents to the market surveillance authorities of the Member States ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-62-reporting-serious-incidents.json #### Regulation (EU) 2024/1689 - Article 73: Reporting of serious incidents - **ID**: eu-ai-act-article-62-serious-incident-reporting - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 73 of the EU AI Act, providers of high-risk AI systems must report any serious incident or malfunctioning that breaches fundamental rights obligations to the market surveillance authorit... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-62-serious-incident-reporting.json #### EU AI Act Article 63 - Market Surveillance of AI Systems - **ID**: eu-ai-act-article-63-market-surveillance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 63 designates national competent authorities as market surveillance authorities for AI systems under Regulation (EU) 2019/1020, grants them powers to request tec... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-63-market-surveillance.json #### Regulation (EU) 2024/1689 on artificial intelligence (Artificial Intelligence Act) - Article 64: Access to data and documentation - **ID**: eu-ai-act-article-64-access-data-documentation-market-surveillance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organizations must grant market surveillance authorities full access to high-risk AI system data, documentation, and, upon reasoned request, source code to assess compliance with the AI Act's requirem... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-64-access-data-documentation-market-surveillance.json #### EU AI Act Article 64 - Testing of High-Risk AI Systems in Real-World Conditions - **ID**: eu-ai-act-article-64-testing-real-world-conditions - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 64 establishes that market surveillance authorities may request providers of high-risk AI systems to allow testing in real-world conditions where they cannot ade... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-64-testing-real-world-conditions.json #### EU AI Act Article 65 - Procedure for Dealing with AI Systems Presenting a Risk at National Level - **ID**: eu-ai-act-article-65-market-surveillance-corrective-actions - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 65 establishes the procedure by which national market surveillance authorities deal with high-risk AI systems presenting a risk to health, safety, or fundamental... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-65-market-surveillance-corrective-actions.json #### EU AI Act Article 66 - Formal Non-Compliance of High-Risk AI Systems - **ID**: eu-ai-act-article-66-formal-non-compliance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 66 establishes the procedure by which market surveillance authorities deal with high-risk AI systems that present formal non-compliance with the EU AI Act - such... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-66-formal-non-compliance.json #### EU AI Act Article 67 - Compliant High-Risk AI Systems That Present a Risk - **ID**: eu-ai-act-article-67-compliant-systems-presenting-risk - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 67 establishes the procedure for dealing with high-risk AI systems that are formally compliant with the EU AI Act - holding a valid conformity assessment and CE ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-67-compliant-systems-presenting-risk.json #### EU AI Act Article 68 - National Competent Authorities - **ID**: eu-ai-act-article-68-national-competent-authorities - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 68 requires each Member State to designate at least one national competent authority responsible for implementing and enforcing the EU AI Act within its territor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-68-national-competent-authorities.json #### EU AI Act Article 69 - Supervisory Authority Cooperation and Mutual Assistance - **ID**: eu-ai-act-article-69-supervisory-authority-cooperation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 69 establishes the framework for cooperation and mutual assistance between national competent authorities across Member States in implementing and enforcing the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-69-supervisory-authority-cooperation.json #### EU AI Act Article 7 - Amendments to the List of High-Risk AI Systems - **ID**: eu-ai-act-article-7-high-risk-classification-updates - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 7 grants the European Commission power to amend Annex III of the EU AI Act through delegated acts to add, modify, or remove categories of high-risk AI systems, b... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-7-high-risk-classification-updates.json #### EU AI Act Article 70 - Confidentiality Obligations - **ID**: eu-ai-act-article-70-confidentiality - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 70 imposes confidentiality obligations on national competent authorities, notified bodies, the AI Board, the AI Office, and all persons involved in implementing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-70-confidentiality.json #### EU AI Act Article 71 - Penalties and Fines for EU AI Act Violations - **ID**: eu-ai-act-article-71-fines - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 71 establishes the EU's penalty framework for AI Act violations including administrative fines up to EUR 35 million or 7% of total worldwide annual turnover for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-71-fines.json #### EU AI Act Article 72 - AI Regulatory Sandboxes - **ID**: eu-ai-act-article-72-ai-regulatory-sandboxes - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 72 requires Member States to establish at least one AI regulatory sandbox at national level, that sandboxes provide a controlled environment in which AI systems ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-72-ai-regulatory-sandboxes.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 72: EU database for high-risk AI systems - **ID**: eu-ai-act-article-72-eu-database-high-risk-ai-systems - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article mandates the European Commission to establish and maintain a publicly accessible EU database for high-risk AI systems, and requires providers to register specific information about their ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-72-eu-database-high-risk-ai-systems.json #### EU AI Act Article 99 - Penalties - **ID**: eu-ai-act-article-73-penalties - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 99 requires Member States to lay down rules on penalties applicable to infringements of the EU AI Act, establishing maximum administrative fine levels as a floor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-73-penalties.json #### EU AI Act Article 74 - Administrative Fines for Providers of General-Purpose AI Models - **ID**: eu-ai-act-article-74-gpai-administrative-fines - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 74 grants the AI Office the power to impose administrative fines directly on providers of general-purpose AI models for infringements of the GPAI-specific obliga... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-74-gpai-administrative-fines.json #### EU AI Act Article 75 - Penalties for Providers of GPAI Models with Systemic Risk - **ID**: eu-ai-act-article-75-gpai-systemic-risk-penalties - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 75 establishes that providers of general-purpose AI models with systemic risk who infringe the obligations under Article 55 - including failure to conduct model ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-75-gpai-systemic-risk-penalties.json #### EU AI Act Article 76 - Supervision of Testing in Real-World Conditions - **ID**: eu-ai-act-article-76-real-world-testing-supervision - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 76 empowers market surveillance authorities to supervise testing of high-risk AI systems in real-world conditions, granting authorities the right to access testi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-76-real-world-testing-supervision.json #### EU AI Act Article 77 - Obligations of Public Authority Deployers for Fundamental Rights - **ID**: eu-ai-act-article-77-fundamental-rights-public-authority-deployers - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 77 establishes specific obligations for public authorities and bodies governed by public law that deploy high-risk AI systems falling under Annex III categories ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-77-fundamental-rights-public-authority-deployers.json #### EU AI Act Article 78 - Confidentiality Obligations in Market Surveillance - **ID**: eu-ai-act-article-78-access-to-data-evidence - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 78 establishes confidentiality obligations for national competent authorities, the AI Board, the AI Office, and the Commission when exercising their powers under... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-78-access-to-data-evidence.json #### EU AI Act Article 79 - Right to Lodge a Complaint with a Market Surveillance Authority - **ID**: eu-ai-act-article-79-right-to-lodge-complaint - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 79 grants any natural or legal person the right to lodge a complaint with a national market surveillance authority where they have reason to consider that there ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-79-right-to-lodge-complaint.json #### Regulation (EU) 2024/1689 (EU AI Act) Article 8 - Compliance with the requirements - **ID**: eu-ai-act-article-8-compliance-with-requirements - **Category**: AI Governance & Law - **Version**: 2.0.0 - **BLUF**: Article 8 of Regulation (EU) 2024/1689 is the gateway provision for Chapter III Section 2 of the EU AI Act on high-risk AI systems. Article 8(1) requires that high-risk AI systems shall comply with th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-8-compliance-with-requirements.json #### EU AI Act Article 80 - Right to an Effective Judicial Remedy Against a Supervisory Authority - **ID**: eu-ai-act-article-80-judicial-remedy-supervisory-authority - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 80 establishes that any natural or legal person has the right to an effective judicial remedy against a legally binding decision of a market surveillance authori... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-80-judicial-remedy-supervisory-authority.json #### EU AI Act Article 81 - Right to an Effective Judicial Remedy Against a Provider or Deployer - **ID**: eu-ai-act-article-81-judicial-remedy-provider-deployer - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 81 establishes that natural persons who consider that their rights have been infringed due to a provider's or deployer's non-compliance with the EU AI Act have t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-81-judicial-remedy-provider-deployer.json #### EU AI Act Article 82 - Representation of Affected Persons - **ID**: eu-ai-act-article-82-representation-affected-persons - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 82 enables natural persons who consider their rights under the EU AI Act to have been infringed to mandate not-for-profit bodies, organisations, or associations ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-82-representation-affected-persons.json #### EU AI Act Article 83 - AI Systems for Defense, National Security, and Military Purposes - **ID**: eu-ai-act-article-83-defense-exclusion - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 83 excludes AI systems developed or deployed exclusively for military, defense, or national security purposes from the scope of the EU AI Act, that this exclusio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-83-defense-exclusion.json #### EU AI Act Article 84 - Exercise of the Delegation for Delegated Acts - **ID**: eu-ai-act-article-84-exercise-of-delegation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 84 grants the Commission the power to adopt delegated acts and sets out the procedural framework governing that power: the delegation runs for five years from 1 ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-84-exercise-of-delegation.json #### EU AI Act Article 85 - Committee Procedure for Implementing Acts - **ID**: eu-ai-act-article-85-committee-procedure - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 85 establishes the committee procedure under which the Commission adopts implementing acts for the EU AI Act, providing that the Commission is assisted by a comm... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-85-committee-procedure.json #### EU AI Act Article 86 - Right to Explanation of Individual Decisions - **ID**: eu-ai-act-article-86-right-to-explanation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 86 grants natural persons who are subject to a decision taken by a deployer on the basis of output from a high-risk AI system listed under Annex III the right to... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-86-right-to-explanation.json #### REGULATION (EU) 2024/1689 (Artificial Intelligence Act) - Article 87: Confidentiality - **ID**: eu-ai-act-article-87-confidentiality-of-reporting - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organizations must ensure that information submitted to competent authorities and conformity assessment bodies is properly managed for confidentiality, while understanding that certain information for... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-87-confidentiality-of-reporting.json #### REGULATION (EU) 2024/1689 (Artificial Intelligence Act) Article 88: Obligation of cooperation - **ID**: eu-ai-act-article-88-cooperation-national-authorities-operators - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Operators of high-risk AI systems must cooperate with national competent authorities upon receiving a reasoned request regarding actions taken under this Regulation. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-88-cooperation-national-authorities-operators.json #### EU AI Act Article 89 - Evaluation and Review by the Commission - **ID**: eu-ai-act-article-89-evaluation-review - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 89 requires the Commission to evaluate and review the application of the Regulation and submit reports to the European Parliament and the Council, including an e... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-89-evaluation-review.json #### Regulation (EU) 2024/1689 (EU AI Act) Article 89 - Monitoring actions by the AI Office and downstream provider complaints concerning general-purpose AI models - **ID**: eu-ai-act-article-89-monitoring-actions-gpai - **Category**: AI Governance & Law - **Version**: 2.0.0 - **BLUF**: Article 89 of Regulation (EU) 2024/1689 sits in Chapter IX Section 5 (Supervision, investigation, enforcement and monitoring in respect of providers of general-purpose AI models). Article 89(1) empowe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-89-monitoring-actions-gpai.json #### Regulation (EU) 2024/1689 (EU AI Act) Article 9 - Risk Management System - **ID**: eu-ai-act-article-9-risk-management-system - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 9 of the EU AI Act, providers of high-risk AI systems must establish, implement, document, and maintain a continuous, iterative risk management system throughout the AI system's entire l... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-9-risk-management-system.json #### EU AI Act Article 9 - Risk Management System for High-Risk AI Systems - **ID**: eu-ai-act-article-9-risk-management-system-high-risk-ai - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Article 9 requires providers of high-risk AI systems to establish, implement, document, and maintain a risk management system throughout the AI system lifecycle. The risk management system m... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-9-risk-management-system-high-risk-ai.json #### Regulation (EU) 2024/1689 (Artificial Intelligence Act) - Article 90: Administrative Fines - **ID**: eu-ai-act-article-90-administrative-fines-prohibited-practices - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organizations face administrative fines up to EUR 35,000,000 or 7% of total worldwide annual turnover for non-compliance with the prohibitions of AI practices laid down in this Regulation. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-90-administrative-fines-prohibited-practices.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 91 Administrative fines - **ID**: eu-ai-act-article-91-administrative-fines-providers-deployers - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes the framework for administrative fines for non-compliance with the AI Act, setting maximum penalties based on the type of infringement and the offender's annual turnover. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-91-administrative-fines-providers-deployers.json #### Regulation (EU) 2024/1689 (Artificial Intelligence Act) - Article 92: Administrative fines on providers of GPAI models for infringements of this Regulation - **ID**: eu-ai-act-article-92-administrative-fines-third-party-conformity - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article empowers the AI Office to impose significant administrative fines on providers of general-purpose AI models for specific infringements, with amounts based on a percentage of worldwide ann... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-92-administrative-fines-third-party-conformity.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 93: Administrative Fines for Incorrect, Incomplete or Misleading Information - **ID**: eu-ai-act-article-93-administrative-fines-incorrect-information - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organizations must provide correct, complete, and non-misleading information to notified bodies and national competent authorities upon request, facing significant administrative fines for non-complia... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-93-administrative-fines-incorrect-information.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 94: Penalties - **ID**: eu-ai-act-article-94-penalties-member-states - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article requires Member States to establish rules on effective, proportionate, and dissuasive penalties, including specific tiers of administrative fines for infringements of the AI Act by operat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-94-penalties-member-states.json #### EU AI Act Article 95 - Voluntary Codes of Conduct for Non-High-Risk AI Systems - **ID**: eu-ai-act-article-95-codes-of-conduct - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 95 encourages the development of voluntary codes of conduct for AI systems that are not classified as high-risk, allowing providers of non-high-risk AI systems t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-95-codes-of-conduct.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 96 Guidelines from the Commission - **ID**: eu-ai-act-article-96-commission-guidance-implementation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organizations must monitor for, review, and incorporate guidelines issued by the European Commission on the practical implementation of the AI Act, particularly concerning high-risk AI requirements, p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-96-commission-guidance-implementation.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 97 - **ID**: eu-ai-act-article-97-commission-evaluation-report - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes a recurring evaluation and review cycle for the AI Act, mandating the Commission to submit periodic reports to the European Parliament and the Council on the regulation's impl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-97-commission-evaluation-report.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 98 - **ID**: eu-ai-act-article-98-review-and-amendment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article mandates the European Commission to periodically evaluate and review the AI Act's application, report findings to the Parliament and Council, and propose amendments as necessary, with spe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-98-review-and-amendment.json #### REGULATION (EU) 2024/1689 (Artificial Intelligence Act) - Article 113: Entry into force and application - **ID**: eu-ai-act-article-99-entry-into-force-and-application - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes the timeline for the EU AI Act's entry into force and specifies the staggered application dates for its various titles, chapters, and specific obligations. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-99-entry-into-force-and-application.json #### EU AI Act Articles 57-63 - AI Regulatory Sandboxes: Eligibility, Conditions, Supervision and Liability Treatment for Participants - **ID**: eu-ai-act-articles-57-63-regulatory-sandboxes - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The EU AI Act establishes AI regulatory sandboxes to provide a controlled environment for providers, particularly SMEs and start-ups, to develop, train, validate, and test innovative AI systems under ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-articles-57-63-regulatory-sandboxes.json #### EU AI Act Articles 74-79 - Market Surveillance and Enforcement: National Authority Powers, Penalties and Cross-Border Cooperation - **ID**: eu-ai-act-articles-74-79-market-surveillance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This regulation establishes the market surveillance framework for AI systems in the EU, granting national authorities extensive powers under Article 74 to investigate non-compliance, demand access to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-articles-74-79-market-surveillance.json #### EU AI Act - Authorised Representatives and Importers of High-Risk AI Systems (Articles 22-25) - **ID**: eu-ai-act-authorised-representative-importer - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Articles 22-25 establish obligations for authorised representatives and importers who play a role in the supply chain for high-risk AI systems placed on the EU market ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-authorised-representative-importer.json #### EU AI Act: Data Bias Mitigation (Article 10) - **ID**: eu-ai-act-bias - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: Article 10 of the EU AI Act (2026 fully enforced) mandates strict controls to detect, prevent, and mitigate biases in training, validation, and testing datasets for high-risk AI systems. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-bias.json #### EU AI Act: Obligations of Distributors, Importers, and Deployers (Article 25) - **ID**: eu-ai-act-cloud-providers-article-25 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 25 of the EU AI Act, distributors, importers, and deployers of high-risk AI systems must verify the system's compliance, including the presence of CE marking and required documentation, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-cloud-providers-article-25.json #### EU AI Act - Commission Guidelines on High-Risk AI Classification Under Article 6 (Article 96 Guidelines) - **ID**: eu-ai-act-commission-guidelines-article-6-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1689 (EU AI Act) Article 96 mandates the European Commission to publish guidelines on the practical implementation of Article 6 - the high-risk AI system classification rules - to... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-commission-guidelines-article-6-2025.json #### Regulation (EU) 2024/1689 (EU AI Act) Chapter 5 - Conformity Assessment of High-Risk AI Systems - **ID**: eu-ai-act-conformity-assessment-chapter-5 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This chapter mandates that providers of high-risk AI systems must conduct a conformity assessment to demonstrate compliance with the Act's requirements before placing the system on the market. Article... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-conformity-assessment-chapter-5.json #### EU AI Act - Conformity Assessment Procedures for High-Risk AI Systems (Articles 43-49) - **ID**: eu-ai-act-conformity-assessment-procedure - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Articles 43-49 establish the conformity assessment framework that high-risk AI system providers must complete before placing their systems on the EU market; two confor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-conformity-assessment-procedure.json #### EU AI Act and Cyber Resilience Act - Dual Compliance for Connected AI Products - **ID**: eu-ai-act-cyber-resilience-act-intersection - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Providers of AI systems embedded in connected products face dual compliance obligations under Regulation (EU) 2024/1689 (EU AI Act) and Regulation (EU) 2024/2847 (EU Cyber Resilience Act, CRA); the CR... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-cyber-resilience-act-intersection.json #### EU AI Act - Data Governance Requirements for High-Risk AI Training Data (Article 10) - **ID**: eu-ai-act-data-governance-high-risk - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 10 establishes mandatory data governance requirements for training, validation, and testing datasets used in high-risk AI systems; Article 10(1) - providers mu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-data-governance-high-risk.json #### EU AI Act - Obligations of Deployers of High-Risk AI Systems (Article 26) - **ID**: eu-ai-act-deployer-obligations-high-risk - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 26 establishes the obligations of deployers - the natural or legal persons who use a high-risk AI system under their authority - for high-risk AI systems liste... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-deployer-obligations-high-risk.json #### EU AI Act - European Artificial Intelligence Board (Articles 65-68) - **ID**: eu-ai-act-european-ai-board - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Articles 65-68 establish the European Artificial Intelligence Board (AI Board) as the coordination body for consistent application of the EU AI Act across Member State... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-european-ai-board.json #### EU AI Act: Fundamental Rights Impact Assessment for High-Risk AI Systems (Article 27) - **ID**: eu-ai-act-fundamental-rights-impact-assessment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 27 of the EU AI Act, deployers that are public bodies or private operators providing public services must conduct and document a Fundamental Rights Impact Assessment (FRIA) before puttin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-fundamental-rights-impact-assessment.json #### EU AI Act - GPAI Model Code of Practice under Article 54 - **ID**: eu-ai-act-gpai-code-of-practice - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 54 establishes the GPAI model code of practice as a voluntary compliance mechanism enabling providers of general-purpose AI models to demonstrate compliance wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-gpai-code-of-practice.json #### EU AI Act - GPAI Model Copyright Compliance and Training Data Summary Obligations (Article 53(1)(c)-(d)) - **ID**: eu-ai-act-gpai-copyright-training-data - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 53(1)(c)-(d) imposes two specific obligations on providers of general-purpose AI (GPAI) models relating to copyright and training data: Article 53(1)(c) - copy... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-gpai-copyright-training-data.json #### EU AI Act - General-Purpose AI Model Obligations (Articles 53-54) - **ID**: eu-ai-act-gpai-model-obligations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Articles 53-54 establish obligations for all providers of general-purpose AI (GPAI) models, regardless of whether the model poses systemic risk; Article 53(1) - provid... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-gpai-model-obligations.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 laying down harmonised rules on artificial intelligence and amending Regulations (EC) No 300/2008, (EU) No 167/2013, (EU) No 168/2013, (EU) 2018/858, (EU) 2018/1139 and (EU) 2019/2144 and Directives 2014/90/EU, (EU) 2016/797 and (EU) 2020/1828 (European Union AI Act) - Chapter V: General-Purpose AI Models - **ID**: eu-ai-act-gpai-obligations-chapter-v - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This regulation imposes transparency, documentation, and risk management obligations on all providers of general-purpose AI (GPAI) models placed on the EU market, as detailed in Article 53. It establi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-gpai-obligations-chapter-v.json #### EU AI Act - General-Purpose AI Models with Systemic Risk: Classification and Additional Obligations (Articles 51, 55) - **ID**: eu-ai-act-gpai-systemic-risk-obligations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 51 establishes that a general-purpose AI (GPAI) model is classified as posing systemic risk where the cumulative amount of compute used for its training, measu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-gpai-systemic-risk-obligations.json #### EU AI Act Article 40 - Harmonised Standards and Presumption of Conformity - **ID**: eu-ai-act-harmonised-standards-article-40 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act Regulation 2024/1689 Article 40 establishes that high-risk AI systems complying with harmonised standards whose references are published in the Official Journal of the European Union shall b... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-harmonised-standards-article-40.json #### EU AI Act: High-Risk Conformity (Title III) - **ID**: eu-ai-act-high-risk - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: Title III of the EU AI Act (2026 fully enforced) mandates rigorous conformity assessments for "High-Risk AI Systems," including mandatory requirements for data governance, technical documentation, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk.json #### EU AI Act - High-Risk AI in Administration of Justice and Democratic Processes (Annex III Point 8) - **ID**: eu-ai-act-high-risk-administration-justice - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Annex III Point 8 designates as high-risk AI systems used in the administration of justice and democratic processes, covering two distinct categories: (8a) AI systems ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk-administration-justice.json #### EU AI Act - High-Risk AI in Biometric Identification and Categorisation (Annex III Point 1) - **ID**: eu-ai-act-high-risk-biometric-systems - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Annex III Point 1 designates as high-risk certain biometric AI systems - specifically (1a) AI systems intended to be used for post-remote biometric identification of n... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk-biometric-systems.json #### EU AI Act - High-Risk AI in Critical Infrastructure Safety Components (Annex III Point 2) - **ID**: eu-ai-act-high-risk-critical-infrastructure - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Annex III Point 2 designates as high-risk AI systems intended to be used as safety components in the management and operation of critical infrastructure, covering: (2a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk-critical-infrastructure.json #### EU AI Act - High-Risk AI in Education and Vocational Training (Annex III Point 3) - **ID**: eu-ai-act-high-risk-education-vocational - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Annex III Point 3 designates as high-risk all AI systems used in education and vocational training, covering: (3a) AI systems intended to determine access to education... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk-education-vocational.json #### EU AI Act - High-Risk AI in Employment, Workers Management, and Recruitment (Annex III Point 4) - **ID**: eu-ai-act-high-risk-employment-recruitment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Annex III Point 4 designates as high-risk all AI systems used in employment, workers management, and access to self-employment, covering four categories: (4a) AI for t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk-employment-recruitment.json #### EU AI Act - High-Risk AI in Essential Private and Public Services (Annex III Point 5) - **ID**: eu-ai-act-high-risk-essential-services - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Annex III Point 5 designates as high-risk all AI systems used to determine access to or denial of essential private and public services and benefits, covering: (5a) AI... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk-essential-services.json #### EU AI Act - High-Risk AI in Law Enforcement (Annex III Point 6) - **ID**: eu-ai-act-high-risk-law-enforcement - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Annex III Point 6 designates as high-risk AI systems used in law enforcement purposes by competent authorities, covering: (6a) AI systems intended to be used by compet... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk-law-enforcement.json #### EU AI Act - High-Risk AI in Migration, Asylum, and Border Control (Annex III Point 7) - **ID**: eu-ai-act-high-risk-migration-border - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Annex III Point 7 designates as high-risk all AI systems used in migration, asylum, and border control management by competent authorities, covering: (7a) AI for indiv... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk-migration-border.json #### EU AI Act - Human Oversight Requirements for High-Risk AI Systems (Article 14) - **ID**: eu-ai-act-human-oversight-design - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 14 requires providers of high-risk AI systems to design and develop systems in such a way that they can be effectively overseen by natural persons during the p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-human-oversight-design.json #### EU AI Act: Reporting of Serious Incidents (Article 73) - **ID**: eu-ai-act-incident-reporting-article-73 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 73 of the EU AI Act, providers of high-risk AI systems on the Union market must report any serious incidents involving their systems to the market surveillance authorities of the Member ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-incident-reporting-article-73.json #### EU AI Act: Market Surveillance and Enforcement (Chapter VIII) - **ID**: eu-ai-act-market-surveillance-chapter-viii - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This chapter establishes the post-market surveillance framework for AI systems within the EU, empowering national market surveillance authorities to investigate, demand corrective actions, and withdra... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-market-surveillance-chapter-viii.json #### EU AI Act - Market Surveillance, National Competent Authorities, and EU AI Office (Articles 70-86) - **ID**: eu-ai-act-market-surveillance-framework - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Articles 70-86 establish the market surveillance and enforcement governance structure; Article 70 - each Member State must designate one or more national competent aut... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-market-surveillance-framework.json #### EU AI Act and Medical Devices Regulation - Dual Compliance for AI Medical Devices - **ID**: eu-ai-act-medical-devices-mdr-intersection - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: AI systems used as medical devices or embedded in medical devices are subject to dual compliance obligations under Regulation (EU) 2024/1689 (EU AI Act) and Regulation (EU) 2017/745 (Medical Devices R... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-medical-devices-mdr-intersection.json #### EU AI Act - Open-Source AI Model Exception Under Article 53(2) and Recital 102 - **ID**: eu-ai-act-open-source-ai-exception - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 53(2) creates a partial exception for providers of general-purpose AI (GPAI) models released under free and open-source licences - exempting them from Article ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-open-source-ai-exception.json #### EU AI Act - Penalties, Fines, and Enforcement Framework (Articles 99-101) - **ID**: eu-ai-act-penalties-and-enforcement - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Articles 99-101 establish the penalty and enforcement framework for violations; Article 99 establishes the three-tier penalty structure: (1) up to EUR 35,000,000 or 7%... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-penalties-and-enforcement.json #### EU AI Act - Post-Market Surveillance, Monitoring, and Incident Reporting (Articles 61-62) - **ID**: eu-ai-act-post-market-surveillance-monitoring - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Articles 61 and 62 establish the post-market surveillance and serious incident reporting framework applicable to high-risk AI system providers - Article 61 requires pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-post-market-surveillance-monitoring.json #### EU AI Act - Prohibition on Biometric Categorisation AI Inferring Sensitive Attributes (Article 5(1)(g)) - **ID**: eu-ai-act-prohibited-biometric-categorisation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 5(1)(g) prohibits the placing on the market, putting into service, or use of AI systems that categorise natural persons individually based on their biometric d... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-prohibited-biometric-categorisation.json #### EU AI Act - Prohibition on Emotion Recognition AI in Workplaces and Educational Institutions (Article 5(1)(f)) - **ID**: eu-ai-act-prohibited-emotion-recognition - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 5(1)(f) prohibits the placing on the market, putting into service, or use of AI systems intended to infer emotions of natural persons in the context of the wor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-prohibited-emotion-recognition.json #### EU AI Act - Prohibition on Untargeted Scraping of Facial Images to Create Facial Recognition Databases (Article 5(1)(e)) - **ID**: eu-ai-act-prohibited-facial-scraping - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 5(1)(e) prohibits AI systems that create or expand facial recognition databases through the untargeted scraping of facial images from the internet or CCTV foot... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-prohibited-facial-scraping.json #### Prohibited Artificial Intelligence Practices (Article 5, Regulation (EU) 2024/1689) - **ID**: eu-ai-act-prohibited-practices-article-5 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 5 of the EU AI Act, it is strictly forbidden to place on the market, put into service, or use AI systems that deploy subliminal techniques, exploit vulnerabilities of specific groups, co... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-prohibited-practices-article-5.json #### EU AI Act - Prohibition on AI Individual Criminal Risk Assessment Based Solely on Profiling (Article 5(1)(d)) - **ID**: eu-ai-act-prohibited-predictive-policing - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 5(1)(d) prohibits AI systems used by or on behalf of competent authorities, or by Union institutions, bodies, offices or agencies, to make or assist in making ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-prohibited-predictive-policing.json #### EU AI Act - Prohibition on Real-Time Remote Biometric Identification in Public Spaces for Law Enforcement (Article 5(1)(h)) - **ID**: eu-ai-act-prohibited-realtime-biometric-id - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 5(1)(h) prohibits the use of real-time remote biometric identification (RTBRI) systems in publicly accessible spaces for law enforcement purposes, subject to t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-prohibited-realtime-biometric-id.json #### EU AI Act - Prohibition on Social Scoring AI by Public Authorities (Article 5(1)(c)) - **ID**: eu-ai-act-prohibited-social-scoring - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 5(1)(c) prohibits the placing on the market, putting into service, or use of AI systems by public authorities, or on their behalf, that evaluate or classify na... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-prohibited-social-scoring.json #### EU AI Act - Prohibition on Subliminal AI Manipulation and Exploitation of Vulnerabilities (Articles 5(1)(a) and 5(1)(b)) - **ID**: eu-ai-act-prohibited-subliminal-manipulation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 5(1)(a) prohibits AI systems that deploy subliminal techniques beyond a person's consciousness or deceptive techniques that materially distort the behaviour of... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-prohibited-subliminal-manipulation.json #### EU AI Act - Obligations of Providers of High-Risk AI Systems (Articles 16-20) - **ID**: eu-ai-act-provider-obligations-high-risk - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Articles 16-20 establish the comprehensive obligations of providers - natural or legal persons who develop or have high-risk AI systems developed and place them on the... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-provider-obligations-high-risk.json #### EU AI Act - Quality Management System Obligations for High-Risk AI Providers (Article 17) - **ID**: eu-ai-act-quality-management-system - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 17 requires providers of high-risk AI systems to put in place a quality management system (QMS) that ensures compliance with the EU AI Act; Article 17(1) - pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-quality-management-system.json #### EU AI Act: Further processing of personal data for developing certain AI systems in the public interest in the AI regulatory sandbox (Article 57) - **ID**: eu-ai-act-regulatory-sandboxes-article-57 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Under Article 57 of the EU AI Act, AI regulatory sandboxes may permit the processing of special categories of personal data for developing and testing certain AI systems in the public interest, provid... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-regulatory-sandboxes-article-57.json #### EU AI Act - Right to Lodge Complaint and Effective Judicial Remedy (Articles 87-88) - **ID**: eu-ai-act-right-to-complaint-remedy - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Articles 87-88 establish procedural rights enabling natural persons to challenge AI systems that may violate the Regulation; Article 87 - right to lodge a complaint: a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-right-to-complaint-remedy.json #### EU AI Act - Right to Explanation for Decisions Made with High-Risk AI Assistance (Article 86) - **ID**: eu-ai-act-right-to-explanation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 86 establishes a right to explanation for individuals significantly affected by decisions made on the basis of high-risk AI system outputs where those decision... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-right-to-explanation.json #### EU AI Act - Risk Management System for High-Risk AI Systems (Article 9) - **ID**: eu-ai-act-risk-management-system - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 9 requires providers of high-risk AI systems to establish, implement, document, and maintain a risk management system throughout the entire lifecycle of the hi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-risk-management-system.json #### EU AI Act - SME and Startup-Specific Provisions: Reduced Fees, Sandbox Priority, and Proportionate Compliance - **ID**: eu-ai-act-sme-startup-provisions - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) includes multiple provisions specifically designed to reduce the compliance burden on small and medium-sized enterprises (SMEs, as defined in Commission Recommendation... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-sme-startup-provisions.json #### EU AI Act - Technical Documentation Requirements for High-Risk AI Systems (Article 11 and Annex IV) - **ID**: eu-ai-act-technical-documentation-requirements - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 11 requires providers of high-risk AI systems to draw up technical documentation before the system is placed on the market or put into service and to keep it u... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-technical-documentation-requirements.json #### Regulation (EU) 2024/1689 (EU AI Act) Title VIII - General-Purpose AI Models: Capability Thresholds, Technical Documentation and Systemic Risk Rules - **ID**: eu-ai-act-title-viii-gpai-obligations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This regulation establishes a tiered compliance framework for providers of General-Purpose AI (GPAI) models, mandating transparency obligations for all GPAI models under Article 52 and imposing strict... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-title-viii-gpai-obligations.json #### EU AI Act - Transparency Obligations for AI Systems Interacting with Natural Persons (Article 50) - **ID**: eu-ai-act-transparency-certain-ai-systems - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 50 establishes transparency obligations for specific categories of AI systems that interact with natural persons or generate content, applicable from 2 August ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-transparency-certain-ai-systems.json #### EU AI Act - Transparency and Instructions for Use for High-Risk AI Systems (Article 13) - **ID**: eu-ai-act-transparency-instructions-for-use - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU AI Act (Regulation 2024/1689) Article 13 requires providers of high-risk AI systems to design and develop the systems in such a way as to ensure that their operation is sufficiently transparent to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-transparency-instructions-for-use.json #### EU AI Act: Transparency Obligations for Certain AI Systems (Article 50) - **ID**: eu-ai-act-transparency-obligations-article-50 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Providers and deployers of certain AI systems must ensure natural persons are informed when they are interacting with an AI system or when content is artificially generated or manipulated, as mandated... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-transparency-obligations-article-50.json #### EU Coordinated Plan on Artificial Intelligence 2021 - Member State AI Strategy Coordination Framework - **ID**: eu-ai-coordinated-plan-2021-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The EU Coordinated Plan on Artificial Intelligence (the Coordinated Plan) was first adopted in December 2018 and substantively revised in April 2021 by the European Commission to align with the EU AI ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-coordinated-plan-2021-2024.json #### Proposal for a DIRECTIVE OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on adapting non-contractual civil liability rules to artificial intelligence (AI Liability Directive) - **ID**: eu-ai-liability-directive-2022 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This proposal establishes fault-based liability rules for damage caused by AI systems, introducing a disclosure obligation for evidence related to high-risk AI systems and a rebuttable presumption of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-liability-directive-2022.json #### EU AI Liability Directive Proposal (2022/0303) - Article 4: Disclosure of Evidence for High-Risk AI Systems - **ID**: eu-ai-liability-directive-2022-0303-article-4-disclosure-evidence-high-risk-ai - **Category**: AI Governance & Law - **Version**: 2.0.0 - **BLUF**: Article 4 of the proposed EU AI Liability Directive (Commission Proposal COM(2022)496) establishes a mechanism for courts to order disclosure of relevant evidence from providers and users of high-risk... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-liability-directive-2022-0303-article-4-disclosure-evidence-high-risk-ai.json #### EU AI Liability Directive Proposal (2022/0303) - Article 5: Rebuttable Presumption of Causality for Non-Compliant High-Risk AI - **ID**: eu-ai-liability-directive-2022-0303-article-5-rebuttable-presumption-causality - **Category**: AI Governance & Law - **Version**: 2.0.0 - **BLUF**: Article 5 of the proposed EU AI Liability Directive (Commission Proposal COM(2022)496) establishes a rebuttable presumption of causal link between non-compliance with EU AI Act duties of care and dama... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-liability-directive-2022-0303-article-5-rebuttable-presumption-causality.json #### EU AI Liability Directive (COM/2022/496) - Burden of Proof Reversal for AI System Damage - **ID**: eu-ai-liability-directive-2022-proposed-burden-proof - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The proposed EU AI Liability Directive (COM(2022) 496) complements the Product Liability Directive by addressing non-contractual fault-based civil liability for damage caused by AI systems: it introdu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-liability-directive-2022-proposed-burden-proof.json #### Proposal for a DIRECTIVE OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on adapting non-contractual civil liability rules to artificial intelligence (AI Liability Directive) - **ID**: eu-ai-liability-directive-2023-proposal - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This proposed directive facilitates civil liability claims for damages caused by AI systems by establishing a rebuttable presumption of a causal link between a provider's fault and the AI-produced out... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-liability-directive-2023-proposal.json #### Proposal for a DIRECTIVE OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on adapting non-contractual civil liability rules to artificial intelligence (AI Liability Directive) - **ID**: eu-ai-liability-directive-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This directive establishes rules to ease the burden of proof for victims claiming compensation for damage caused by AI systems, applying to non-contractual civil liability claims within the EU. It int... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-liability-directive-2024.json #### Proposal for a Directive of the European Parliament and of the Council on adapting non-contractual civil liability rules to artificial intelligence (AI Liability Directive) - **ID**: eu-ai-liability-directive-proposal-2022 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: The EU AI Liability Directive Proposal COM(2022) 496 establishes a rebuttable presumption of causality in AI-related harm claims when claimants prove non-compliance with EU AI Act obligations and the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-liability-directive-proposal-2022.json #### Proposal for a DIRECTIVE OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on adapting non-contractual civil liability rules to artificial intelligence (AI Liability Directive) - **ID**: eu-ai-liability-directive-proposal-2022-workflow - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This proposal establishes a rebuttable presumption of causality in AI-related damage claims and enables disclosure of evidence from AI operators to claimants, supporting fault-based liability for high... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-liability-directive-proposal-2022-workflow.json #### European AI Office - Commission Decision Establishing the European Artificial Intelligence Office (January 24, 2024) - **ID**: eu-ai-office-establishment-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On January 24, 2024 the European Commission adopted Commission Decision C(2024)390 establishing the European Artificial Intelligence Office within the Commission Directorate-General for Communications... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-office-establishment-2024.json #### EU AI Office - General-Purpose AI Code of Practice (Published July 2025, Effective August 2 2025) - **ID**: eu-ai-office-gpai-code-of-practice-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The European AI Office published the General-Purpose AI Code of Practice on July 10, 2025, with effect aligned to the EU AI Act GPAI obligations becoming applicable on August 2, 2025. The Code of Prac... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-office-gpai-code-of-practice-2025.json #### EU AI Pact 2024 - Voluntary Pledges Before AI Act Application: Early GPAI Code of Practice Implementation, Transparency Templates, Systemic Risk Assessment Commitments, 700+ Company Signatories, European AI Office Oversight and Basis for AI Act Code of Practice - **ID**: eu-ai-pact-voluntary-pledges-2024 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: The EU AI Pact establishes a voluntary framework for organisations to proactively commit to early implementation of key AI Act requirements, particularly around governance, high-risk system identifica... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-pact-voluntary-pledges-2024.json #### EU AI Pact - Voluntary Pre-Commitments to the EU AI Act (Launched September 25, 2024) - **ID**: eu-ai-pact-voluntary-pre-commitments-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The European AI Office launched the EU AI Pact on September 25, 2024 as a voluntary initiative for companies to commit to early implementation of selected EU AI Act obligations ahead of mandatory appl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-pact-voluntary-pre-commitments-2024.json #### EU Artificial Intelligence Act 2024/1689 - **ID**: eu-artificial-intelligence-act-2024-1689 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1689, the EU AI Act, entered into force on 1 August 2024 and establishes a risk-based framework for AI systems: prohibited practices apply from 2 August 2024; GPAI model obligatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-artificial-intelligence-act-2024-1689.json #### EU Better Internet for Kids+ (BIK+) Strategy 2022 - COM(2022) 212 final - **ID**: eu-better-internet-for-kids-strategy-bik-plus-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The EU Better Internet for Kids+ (BIK+) Strategy was adopted by the European Commission on 11 May 2022 as Communication COM(2022) 212 final. BIK+ updates the original 2012 BIK Strategy and structures ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-better-internet-for-kids-strategy-bik-plus-2022.json #### EU Chips Act (EU) 2023/1781 - Article 12: Integrated Production Facilities and Open EU Foundries - First-of-a-Kind Designation - **ID**: eu-chips-act-2023-1781-article-12-integrated-production-facilities - **Category**: AI Governance & Law - **Version**: 2.0.0 - **BLUF**: Article 12 of the EU Chips Act (Regulation 2023/1781) establishes the designation framework for Integrated Production Facilities (IPFs) and Open EU Foundries (OEFs) - the manufacturing pillar of the E... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-2023-1781-article-12-integrated-production-facilities.json #### EU Chips Act (EU) 2023/1781 - Article 20: Monitoring the Semiconductor Supply Chain and Crisis Stage Response Measures - **ID**: eu-chips-act-2023-1781-article-20-monitoring-supply-chain-semiconductor - **Category**: AI Governance & Law - **Version**: 2.0.0 - **BLUF**: Article 20 of the EU Chips Act (Regulation 2023/1781) establishes the semiconductor supply chain monitoring and crisis response mechanism. The Commission, assisted by the European Semiconductor Board,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-2023-1781-article-20-monitoring-supply-chain-semiconductor.json #### EU Chips Act (EU) 2023/1781 - Article 5: Union Facilities of Excellence for Semiconductor Research and Innovation - **ID**: eu-chips-act-2023-1781-article-5-union-facilities-semiconductor - **Category**: AI Governance & Law - **Version**: 2.0.0 - **BLUF**: Article 5 of the EU Chips Act (Regulation 2023/1781) establishes the framework for designating Union Facilities of Excellence (UFEs) in the Chips for Europe Initiative. UFEs are world-class research a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-2023-1781-article-5-union-facilities-semiconductor.json #### EU Commission Guidelines on Prohibited Artificial Intelligence Practices (February 4, 2025) - **ID**: eu-commission-guidelines-prohibited-ai-practices-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On February 4, 2025 the European Commission published Guidelines on Prohibited Artificial Intelligence Practices to support the application of the EU AI Act prohibited practices that became binding on... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-commission-guidelines-prohibited-ai-practices-2025.json #### EU Data Act (Regulation 2023/2854) - Data Access and Sharing Obligations for AI Systems - **ID**: eu-data-act-2023-ai-system-implications - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU Regulation 2023/2854 on harmonised rules on fair access to and use of data (the Data Act), which applied from 12 September 2025, establishes data access and sharing obligations with significant imp... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-ai-system-implications.json #### Regulation (EU) 2023/2854 (Data Act) - Article 11: Unfair terms concerning access to and use of data between enterprises - **ID**: eu-data-act-2023-article-11-switching-process-requirements - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article renders non-binding any unfair contractual term unilaterally imposed by one enterprise on another concerning data access and use, and establishes specific conditions under which a term is... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-article-11-switching-process-requirements.json #### REGULATION (EU) 2023/2854 on harmonised rules on fair access to and use of data and amending Regulation (EU) 2017/2394 and Directive (EU) 2020/1828 (Data Act) - Article 17 - **ID**: eu-data-act-2023-article-17-data-altruism-public-interest - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organizations must make non-personal data available to public sector bodies or Union institutions upon a justified request demonstrating an exceptional need for performing a task in the public interes... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-article-17-data-altruism-public-interest.json #### REGULATION (EU) 2023/2854 on harmonised rules on fair access to and use of data (Data Act) - Article 21 - **ID**: eu-data-act-2023-article-21-unfair-contractual-terms-data-sharing - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article renders unilaterally imposed, unfair contractual terms related to data access and use between enterprises non-binding, particularly those that grossly deviate from good commercial practic... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-article-21-unfair-contractual-terms-data-sharing.json #### Regulation (EU) 2023/2854 on harmonised rules on fair access to and use of data (Data Act) - Article 8: Conditions under which data holders make data available to data recipients - **ID**: eu-data-act-2023-article-8-technical-protection-measures-data - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: In business-to-business relations, data holders obligated to share data must establish arrangements with data recipients under fair, reasonable, non-discriminatory, and transparent terms. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-article-8-technical-protection-measures-data.json #### Regulation (EU) 2023/2854 on harmonised rules on fair access to and use of data and amending Regulation (EU) 2017/2394 and Directive (EU) 2020/1828 (Data Act) - Article 12 - **ID**: eu-data-act-article-12-switching-cloud-service-providers - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article mandates that providers of data processing services must remove commercial, technical, and contractual obstacles to allow customers to effectively switch to another provider. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-article-12-switching-cloud-service-providers.json #### REGULATION (EU) 2023/2854 (Data Act) Article 13: Unfair contractual terms unilaterally imposed on an SME - **ID**: eu-data-act-article-13-portability-of-data - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article renders unfair contractual terms non-binding when they are unilaterally imposed by an enterprise on a small or medium-sized enterprise (SME) concerning data access, use, liability, or ter... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-article-13-portability-of-data.json #### REGULATION (EU) 2023/2854 on harmonised rules on fair access to and use of data (Data Act) - Article 20: International and third-country governmental access and transfer - **ID**: eu-data-act-article-20-international-access-transfers - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Data processing services must implement measures to prevent international governmental access to or transfer of non-personal data held in the Union that would conflict with EU or Member State law, unl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-article-20-international-access-transfers.json #### Regulation (EU) 2023/2854 on harmonised rules on fair access to and use of data (Data Act) - Article 3: Right of the user to access and use data generated by the use of a connected product or related service - **ID**: eu-data-act-article-3-right-to-access-data-from-connected-products - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes that entities defined as gatekeepers under Regulation (EU) 2022/1925 are prohibited from soliciting or commercially incentivizing users to provide data that those users have a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-article-3-right-to-access-data-from-connected-products.json #### Regulation (EU) 2023/2854 on harmonised rules on fair access to and use of data (Data Act) - Article 4 - **ID**: eu-data-act-article-4-obligation-to-make-data-available-third-parties - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes obligations for data holders and third parties regarding data access requests, including prohibitions on coercive tactics and data misuse, and requirements for data minimizati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-article-4-obligation-to-make-data-available-third-parties.json #### Regulation (EU) 2023/2854 on harmonised rules on fair access to and use of data (Data Act) - Article 5 - **ID**: eu-data-act-article-5-conditions-for-data-sharing - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article obligates data holders to make a user's personal data available to the user or a designated third party upon the user's request, for data already processed under a valid legal basis. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-article-5-conditions-for-data-sharing.json #### Regulation (EU) 2023/2854 on harmonised rules on fair access to and use of data (Data Act) - Article 6: Obligations of third parties receiving data at the request of the user - **ID**: eu-data-act-article-6-compensation-for-data-sharing - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article establishes strict obligations and prohibitions for third parties that receive data at a user's request, including purpose limitation, data erasure, and restrictions on sharing or using t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-article-6-compensation-for-data-sharing.json #### Regulation (EU) 2023/2854 on harmonised rules on fair access to and use of data (Data Act) - Article 9 - **ID**: eu-data-act-article-9-obligations-for-data-holders - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This article requires data holders to ensure any compensation for making data available is reasonable, non-discriminatory, and calculated based on specific costs and investments, with special provisio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-article-9-obligations-for-data-holders.json #### EU Data Governance Act (DGA) 2022/868 - Data Intermediation Services, Data Altruism, and Public Sector Data Reuse - **ID**: eu-data-governance-act-2022-868-intermediation-services - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2022/868 (Data Governance Act) creates a regulatory framework for data intermediation services (trusted third-party data brokers), establishes data altruism organisations (not-for-prof... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-governance-act-2022-868-intermediation-services.json #### Regulation (EU) 2022/1925 of the European Parliament and of the Council of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019/1937 and (EU) 2020/1828 (Digital Markets Act) - **ID**: eu-digital-markets-act-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The EU Digital Markets Act (DMA) designates large online platforms providing core platform services (CPS) as 'gatekeepers' and imposes a set of specific obligations to ensure market contestability and... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-markets-act-2022.json #### EU Digital Markets Act (Regulation 2022/1925) - AI Obligations for Designated Gatekeepers - **ID**: eu-digital-markets-act-2022-ai-gatekeepers - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU Regulation 2022/1925 on contestable and fair markets in the digital sector (Digital Markets Act - DMA), which designated its first gatekeepers in September 2023, imposes specific obligations on des... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-markets-act-2022-ai-gatekeepers.json #### Regulation (EU) 2022/2065 of the European Parliament and of the Council of 19 October 2022 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - **ID**: eu-digital-services-act-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The EU Digital Services Act (DSA) imposes harmonized due diligence obligations on online intermediaries and platforms to combat illegal content, disinformation, and other societal risks. Obligations a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-services-act-2022.json #### EU Digital Services Act (Regulation 2022/2065) - AI Recommender Systems and Algorithmic Transparency - **ID**: eu-digital-services-act-ai-recommender-systems - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU Regulation 2022/2065 on a Single Market for Digital Services (Digital Services Act - DSA), which has applied to Very Large Online Platforms (VLOPs) and Very Large Online Search Engines (VLOSEs) sin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-services-act-ai-recommender-systems.json #### EU General-Purpose AI Code of Practice 2025 - Transparency, Copyright, and Safety and Security Chapters for GPAI Providers, In Force 2 August 2025 - **ID**: eu-gpai-code-of-practice-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Providers of general-purpose AI (GPAI) models placed on the EU market may use the voluntary EU GPAI Code of Practice (published 10 July 2025) to comply with the EU AI Act obligations applicable from 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gpai-code-of-practice-2025.json #### EU Revised Product Liability Directive 2024/2853 - Liability for AI-Caused Harm - **ID**: eu-revised-product-liability-directive-2024-ai - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: EU Directive 2024/2853 on liability for defective products (the revised Product Liability Directive - rPLD), which entered into force on 9 December 2024 and must be transposed by Member States by 9 De... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-revised-product-liability-directive-2024-ai.json #### France CNIL AI Development Recommendations (Phases 1 + 2, April-June 2024) - **ID**: france-cnil-ai-recommendations-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The French data protection authority Commission Nationale de l'Informatique et des Libertes (CNIL) published its first set of AI development recommendations on April 8, 2024 (Phase 1) and an extended ... - **Discovery URL**: https://bidda.com/api/v1/nodes/france-cnil-ai-recommendations-2024.json #### G20 AI Principles: Human-Centred AI Values, Accountability and International Co-operation - **ID**: g20-ai-principles-2019 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Endorsed by G20 leaders at the 2019 Osaka Summit, these non-binding principles provide a framework for the responsible stewardship of trustworthy AI, based on the OECD AI Principles. They call on AI a... - **Discovery URL**: https://bidda.com/api/v1/nodes/g20-ai-principles-2019.json #### G20 AI Principles (Osaka Track) - International Compliance Obligations for Responsible AI, AI Transparency and Explainability, and G20 Member State Commitments to OECD-Aligned AI Governance Frameworks - **ID**: g20-ai-principles-osaka-track-2019 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations under the G20 AI Principles (Osaka Track 2019) for responsible AI development, focusing on transparency, explainability, and human-centric values, with overla... - **Discovery URL**: https://bidda.com/api/v1/nodes/g20-ai-principles-osaka-track-2019.json #### G7 Hiroshima AI Process International Code of Conduct for Organizations Developing Advanced AI Systems - **ID**: g7-hiroshima-ai-process-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This voluntary code of conduct establishes 11 guiding principles for organizations developing the most advanced AI systems, including foundation models and generative AI, to promote safety, security, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/g7-hiroshima-ai-process-2023.json #### G7 Hiroshima AI Process - International Guiding Principles and Code of Conduct 2023: 11 Principles for Advanced AI Developers, Voluntary Code of Conduct (11 Actions), Incident Reporting, Watermarking, Bias/Discrimination Mitigation and Cross-Border AI Governance Cooperation - **ID**: g7-hiroshima-ai-process-2023-code-conduct - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This regulation establishes 11 voluntary guiding principles and a corresponding Code of Conduct for advanced AI developers within G7 nations, focusing on risk mitigation, transparency, and internation... - **Discovery URL**: https://bidda.com/api/v1/nodes/g7-hiroshima-ai-process-2023-code-conduct.json #### G7 Hiroshima AI Process - Guiding Principles and Code of Conduct for Advanced AI - **ID**: g7-hiroshima-ai-process-guiding-principles - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The G7 Hiroshima AI Process, launched at the May 2023 G7 Leaders' Summit and producing the International Guiding Principles on Advanced AI Systems and the G7 Code of Conduct for AI Developers publishe... - **Discovery URL**: https://bidda.com/api/v1/nodes/g7-hiroshima-ai-process-guiding-principles.json #### Google DeepMind Frontier Safety Framework - Second Iteration (4 February 2025) - Critical Capability Levels (CCLs), Security Level Recommendations, Updated Deployment Mitigation Procedure, and Industry-Leading Approach to Deceptive Alignment Risk - **ID**: google-deepmind-frontier-safety-framework-v2-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Google DeepMind Frontier Safety Framework (FSF), second iteration published on 4 February 2025, is Google DeepMind's authoritative public framework for staying ahead of possible severe risks from ... - **Discovery URL**: https://bidda.com/api/v1/nodes/google-deepmind-frontier-safety-framework-v2-2025.json #### IEEE 7000-2021 - Model Process for Addressing Ethical Concerns During System Design: Value Elicitation, Concept of Operations with Ethical Values, Ethical Risk Assessment, Value Stories and Value Scenarios Methodology, Traceability Requirements and Audit Trail for AI Systems - **ID**: ieee-7000-2021-ethical-ai-system-design - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: IEEE 7000-2021 establishes a model process for integrating ethical values throughout system design, requiring organizations to elicit, prioritize, and trace ethical values through concept of operation... - **Discovery URL**: https://bidda.com/api/v1/nodes/ieee-7000-2021-ethical-ai-system-design.json #### IEEE 7000-2021 Ethically Aligned Design for Autonomous and Intelligent Systems - Value Elicitation, Ethical Risk Assessment and Transparency - **ID**: ieee-7000-2021-ethically-aligned-design - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This standard provides a process model for developers of autonomous and intelligent systems (A/IS) to analyze and address ethical considerations throughout the design lifecycle. It mandates specific p... - **Discovery URL**: https://bidda.com/api/v1/nodes/ieee-7000-2021-ethically-aligned-design.json #### IEEE 7010-2020 Recommended Practice for Assessing the Impact of Autonomous and Intelligent Systems on Human Well-Being - **ID**: ieee-7010-2020-ai-wellbeing-impact - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This standard provides a recommended practice for assessing the impact of autonomous and intelligent systems (A/IS) on human well-being, using scientifically valid well-being indices and stakeholder e... - **Discovery URL**: https://bidda.com/api/v1/nodes/ieee-7010-2020-ai-wellbeing-impact.json #### IEEE Ethics (AI Systems) - **ID**: ieee-ethics-ai-system - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: Compliance verification for this node mandates adherence to a comprehensive framework of IEEE standards governing ethical AI system development and deployment. The process begins by prioritizing human... - **Discovery URL**: https://bidda.com/api/v1/nodes/ieee-ethics-ai-system.json #### IETF RFC 9309 - Robots Exclusion Protocol (Standards Track, September 2022) - **ID**: ietf-rfc-9309-robots-exclusion-protocol-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: IETF RFC 9309 standardises the Robots Exclusion Protocol as an IETF Standards Track document published in September 2022, formalising the de facto robots.txt convention used since 1994. The protocol d... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-9309-robots-exclusion-protocol-2022.json #### Digital India Act, 2023 - AI Provisions on Safe Harbour, Harmful AI, and Enforcement - **ID**: india-digital-india-act-ai-provisions-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The proposed Digital India Act (DIA) 2023 introduces a risk-based framework for AI regulation, imposing legal accountability on platforms deploying 'high-risk AI systems' by limiting safe harbour prot... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-digital-india-act-ai-provisions-2023.json #### Responsible AI for All: Adopting the Framework - A use-case approach for India (Part 1 and 2) - **ID**: india-niti-aayog-responsible-ai-2021 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This guidance document from India's NITI Aayog establishes a voluntary framework with seven guiding principles for the ethical development and deployment of AI systems. It applies to all stakeholders ... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-niti-aayog-responsible-ai-2021.json #### ISO/IEC 23894:2023 Information Technology - Artificial Intelligence - Guidance on Risk Management - **ID**: iso-23894-ai-risk-management - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This standard provides guidance for managing risks related to artificial intelligence (AI) for any organization involved in the AI lifecycle. It extends the generic risk management framework of ISO 31... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-23894-ai-risk-management.json #### AIMS Improvement (ISO 42001) - **ID**: iso-42001-improvement - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: ISO/IEC 42001:2023 Clause 10 (Improvement) mandates that organizations operating an AI Management System (AIMS) establish systematic processes for identifying, addressing, and preventing nonconformiti... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-42001-improvement.json #### AIMS Performance Eval (ISO 42001) - **ID**: iso-42001-performance - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: ISO/IEC 42001:2023 Clause 9 (Performance Evaluation) requires organizations operating an AI Management System (AIMS) to establish monitoring and measurement programs for AI systems and the AIMS itself... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-42001-performance.json #### AI System Impact & Risk Assessment (ISO/IEC 42001:2023) - **ID**: iso-42001-risk-assess - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: The AI System Impact Assessment (Clause 6.1.2) is a mandatory requirement to identify, analyze, and evaluate the potential consequences of an AI system on individuals, groups, and society, focusing on... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-42001-risk-assess.json #### AI Transparency & Communication (ISO/IEC 42001:2023 Annex A.8) - **ID**: iso-42001-transparency - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: Transparency controls (Annex A.8) mandate the provision of clear, accessible information regarding the AI system’s intent, capabilities, and limitations to ensure stakeholders can make informed decisi... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-42001-transparency.json #### ISO/IEC 42005:2025 - Artificial Intelligence System Impact Assessment Guidance and Methodology - **ID**: iso-42005-ai-impact-assessment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This standard provides guidance and a methodology for conducting impact assessments of AI systems on individuals, society, and the environment. It outlines a structured process (Clause 5) for identify... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-42005-ai-impact-assessment.json #### ISO/IEC 22989:2022 - Artificial Intelligence Concepts and Terminology - **ID**: iso-iec-22989-ai-concepts-terminology-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: ISO/IEC 22989:2022 'Artificial intelligence - Concepts and terminology' is the foundational ISO/IEC standard establishing the vocabulary for artificial intelligence; published by ISO/IEC JTC 1/SC 42 (... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-22989-ai-concepts-terminology-2022.json #### ISO/IEC 23053:2022 Framework for Artificial Intelligence Systems Using Machine Learning - Compliance Obligations for ML System Architecture Governance, AI System Lifecycle Documentation, and Framework-Based AI Risk Controls - **ID**: iso-iec-23053-ai-framework-ml-systems-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations under ISO/IEC 23053:2022 for AI systems using machine learning, focusing on architecture governance, lifecycle documentation, and risk controls; it aligns wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-23053-ai-framework-ml-systems-2022.json #### ISO/IEC 23894:2023 Information technology - Artificial intelligence - Guidance on risk management - **ID**: iso-iec-23894-ai-risk-management-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This standard provides guidance for organizations on managing risks related to AI systems, extending the general risk management framework of ISO 31000 to the specific context of AI. It details a comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-23894-ai-risk-management-2023.json #### ISO/IEC 24027: Bias and Fairness in AI - **ID**: iso-iec-24027-bias-fairness - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: The mathematical and technical playbook for mitigating human cognitive bias, data bias, and engineering bias through quantitative fairness metrics like demographic parity and equalized odds. - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-24027-bias-fairness.json #### Artificial Intelligence (AI) - Assessment of the Robustness of Neural Networks - Part 1: Overview - **ID**: iso-iec-24029-1-robustness-neural-networks - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This technical report provides an overview of existing methods to assess the robustness of neural networks, focusing on formal verification and statistical testing approaches. It applies to developers... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-24029-1-robustness-neural-networks.json #### ISO/IEC 42001:2023 - Artificial Intelligence Management System Standard - **ID**: iso-iec-42001-2023-ai-management-system - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: ISO/IEC 42001:2023, published on 18 December 2023, is the first international standard specifying requirements for an Artificial Intelligence Management System (AIMS) - it provides a structured framew... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-42001-2023-ai-management-system.json #### ISO/IEC 42001:2023 Information technology - Artificial intelligence - Management system - **ID**: iso-iec-42001-ai-management-system-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: ISO/IEC 42001:2023 specifies the requirements for establishing, implementing, maintaining, and continually improving an Artificial Intelligence Management System (AIMS) within an organization. It appl... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-42001-ai-management-system-2023.json #### ISO/IEC 42001:2023 Clause 10 - Continual Improvement of AI Management Systems - Compliance Obligations for AI Nonconformity Response, Corrective Action for AI Failures, and Systematic AI Governance Improvement - **ID**: iso-iec-42001-clause-10-continual-improvement - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines obligations under ISO/IEC 42001:2023 Clause 10 for continual improvement of AI management systems, focusing on nonconformity response and corrective actions for AI failures, with ov... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-42001-clause-10-continual-improvement.json #### ISO/IEC 42001:2023 Clause 5 - Leadership and AI Governance Commitment - Compliance Obligations for Top Management AI Accountability, AI Policy Approval, and Organisational Role Assignment for AI Risk Management - **ID**: iso-iec-42001-clause-5-leadership-ai-governance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines top management obligations under ISO/IEC 42001:2023 Clause 5 for AI governance, including accountability, policy approval, and role assignment for AI risk management, with overlappi... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-42001-clause-5-leadership-ai-governance.json #### ISO/IEC 42001:2023 Clause 6 - AI Risk Planning and Objective Setting - Compliance Obligations for AI Risk Assessment Methodology, AI Objective Documentation, and Organisational AI Risk Treatment Planning - **ID**: iso-iec-42001-clause-6-ai-risk-planning - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines obligations under ISO/IEC 42001:2023 Clause 6 for AI risk planning, including risk assessment methodologies, objective documentation, and treatment planning, with overlapping requir... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-42001-clause-6-ai-risk-planning.json #### ISO/IEC 42001:2023 Clause 7 - Support and Resources for AI Management Systems - Compliance Obligations for AI Competency Development, Awareness Programmes, AI Documentation Controls, and Communication Requirements - **ID**: iso-iec-42001-clause-7-support-resources - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines obligations under ISO/IEC 42001:2023 Clause 7 for AI management systems, focusing on resource allocation, competency development, awareness programs, documentation controls, and com... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-42001-clause-7-support-resources.json #### ISO/IEC 42001:2023 Clause 8 - AI System Operational Planning and Control - Compliance Obligations for AI Lifecycle Operational Controls, AI System Deployment Governance, and Operational Change Management for AI - **ID**: iso-iec-42001-clause-8-operations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines obligations under ISO/IEC 42001:2023 Clause 8 for operational planning and control of AI systems, including lifecycle controls, deployment governance, and change management, with ov... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-42001-clause-8-operations.json #### ISO/IEC 42005:2025 - Information Technology - Artificial Intelligence - AI System Impact Assessment - **ID**: iso-iec-42005-2025-ai-system-impact-assessment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: ISO/IEC 42005:2025 is an international standard published by ISO/IEC JTC 1/SC 42 (Artificial Intelligence) that provides organizations with guidance on conducting AI system impact assessments. The sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-42005-2025-ai-system-impact-assessment.json #### ISO/IEC TR 24027:2021 - Information Technology - Artificial Intelligence - Bias in AI Systems and AI Aided Decision Making - **ID**: iso-iec-tr-24027-2021-bias-in-ai-systems - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: ISO/IEC TR 24027:2021 is a Technical Report published by ISO/IEC JTC 1/SC 42 (Artificial Intelligence) that addresses bias in AI systems and AI-aided decision making. The report defines bias terminolo... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-tr-24027-2021-bias-in-ai-systems.json #### ISO/IEC TR 24028:2020 - Information Technology - Artificial Intelligence - Overview of Trustworthiness in AI - **ID**: iso-iec-tr-24028-2020-ai-trustworthiness-overview - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: ISO/IEC TR 24028:2020 is a Technical Report published by ISO/IEC JTC 1/SC 42 (Artificial Intelligence) that provides an overview of trustworthiness in AI systems. The report defines trustworthiness in... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-tr-24028-2020-ai-trustworthiness-overview.json #### ISO/IEC TR 24028:2020 Information technology - Artificial intelligence - Overview of trustworthiness in artificial intelligence - **ID**: iso-iec-tr-24028-ai-trustworthiness-overview - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This Technical Report (TR) provides a comprehensive overview of AI trustworthiness, identifying potential threats and mitigation approaches across the AI system lifecycle. It serves as a foundational ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-tr-24028-ai-trustworthiness-overview.json #### ISO/IEC TR 24368:2022 Information technology - Artificial intelligence - Overview of ethical and societal concerns - **ID**: iso-iec-tr-24368-2022-ai-ethical-concerns - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This technical report provides a structured overview of ethical and societal concerns in artificial intelligence, identifying key issues such as bias, transparency, accountability, and human oversight... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-tr-24368-2022-ai-ethical-concerns.json #### Israel National AI Regulation Roadmap 2023 - Innovation-Preserving Approach, Responsible Ministry Assignment per AI Domain, Soft-Law First Strategy, ILITA Data Protection Role, AI Regulatory Sandbox, Public Sector AI Procurement Guidelines and OECD AI Principles Adoption - **ID**: israel-ai-regulation-roadmap-2023 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This roadmap establishes a cross-ministerial, innovation-friendly framework for AI governance in Israel, assigning lead regulatory responsibility by domain, promoting soft-law instruments, embedding O... - **Discovery URL**: https://bidda.com/api/v1/nodes/israel-ai-regulation-roadmap-2023.json #### Italy Legge 23 settembre 2025, n. 132 - Italian AI Law (Anthropocentric Use, AgID and ACN as National AI Authorities, Health, Public Administration, Judicial Use, EU AI Act Adaptation Delegation) - **ID**: it-ai-law-132-2025-italian-ai-act-anthropocentric-supervision - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Italy Legge 23 settembre 2025, n. 132 (Disposizioni e deleghe in materia di intelligenza artificiale) is the first EU Member State implementing law adapting domestic Italian legislation to Regulation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/it-ai-law-132-2025-italian-ai-act-anthropocentric-supervision.json #### ITU AI for Good Global Summit Framework 2023 - Connecting AI Innovators with Global Challenges: SDG-Aligned AI Use Cases, AI Repository, Neural Network Standards (ITU-T F.748 Series), National AI Capacity Building and IMT-2030 (6G) AI Integration - **ID**: itu-ai-for-good-global-summit-framework-2023 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This framework establishes a global platform for advancing AI innovation aligned with the UN Sustainable Development Goals (SDGs), facilitating collaboration among stakeholders through the AI for Good... - **Discovery URL**: https://bidda.com/api/v1/nodes/itu-ai-for-good-global-summit-framework-2023.json #### Japan AI Guidelines for Business 2024 (METI/MIC) - Voluntary Code for AI Developers and Operators, Risk Management Approach, Human Oversight, Transparency, Fairness, Privacy and Security Principles, Linkage with Hiroshima AI Process and G7 Code of Conduct - **ID**: japan-ai-governance-guidelines-meti-2024 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: These voluntary guidelines issued by Japan's Ministry of Economy, Trade and Industry (METI) and Ministry of Internal Affairs and Communications (MIC) establish a risk-based governance framework for AI... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-ai-governance-guidelines-meti-2024.json #### AI Guidelines for Business 2024 - METI and Cabinet Office Principles: Transparency, Safety, Fairness and Accountability for AI Developers - **ID**: japan-ai-guidelines-meti-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: These non-binding guidelines from Japan's METI and Cabinet Office establish ten core principles for all businesses developing, providing, or using AI, promoting a risk-based, human-centric approach. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-ai-guidelines-meti-2024.json #### Japan Artificial Intelligence Strategy 2022 Fundamental Plan - Social Implementation Goals, AI Governance Framework and International Cooperation Strategy - **ID**: japan-ai-strategy-fundamental-plan-2022 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This strategy establishes Japan's national framework for the responsible development and deployment of AI, emphasizing human-centric design, transparency, and international alignment. It applies to pu... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-ai-strategy-fundamental-plan-2022.json #### AI Guidelines for Business 2024 - Hiroshima AI Process Friendly Framework - **ID**: jp-ai-guidelines-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: These voluntary guidelines from Japan's METI and MIC provide a risk-based, agile framework for all businesses developing, providing, or using AI. They establish ten core principles, outlined in Chapte... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-ai-guidelines-2024.json #### South Korea Act on Development and Support of Artificial Intelligence 2024 - Compliance Obligations for Korean AI Operators, High-Impact AI Service Notification Requirements, and AI Safety Certification for High-Risk AI Systems - **ID**: korea-act-on-development-ai-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for Korean AI operators under the 2024 Act, including high-impact AI service notification as per Article 12 and mandatory safety certification for high-risk A... - **Discovery URL**: https://bidda.com/api/v1/nodes/korea-act-on-development-ai-2024.json #### Framework Act on the Development of Artificial Intelligence and Establishment of Trust - **ID**: kr-ai-basic-act-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This South Korean framework promotes AI development and innovation under a 'priority permission, ex-post regulation' principle (Article 5), while establishing national strategies and ethical guideline... - **Discovery URL**: https://bidda.com/api/v1/nodes/kr-ai-basic-act-2024.json #### South Korea AI Basic Act 2025 - Act on the Development of Artificial Intelligence and Establishment of Trust, Effective 22 January 2026 - **ID**: kr-ai-framework-act-2024-effective-2026 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organisations developing, providing, or using AI in or affecting the Republic of Korea must, from 22 January 2026, comply with risk-based obligations under the AI Framework Act including user notifica... - **Discovery URL**: https://bidda.com/api/v1/nodes/kr-ai-framework-act-2024-effective-2026.json #### METR (Model Evaluation and Threat Research) - Independent Frontier AI Evaluation Methodology, RSP Guidance and Common Elements of Frontier Safety Policies - **ID**: metr-model-evaluation-threat-research-frontier-evaluation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: METR (Model Evaluation and Threat Research) is an independent research nonprofit that scientifically measures whether and when AI systems might threaten catastrophic harm to society. METR spun out of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/metr-model-evaluation-threat-research-frontier-evaluation.json #### MITRE ATLAS Acquisition of Compromised ML Artifacts from Third-Party Sources (AML.T0008) - Compliance Obligations for Pre-Trained Model Integrity Verification, Vendor Security Assessments, and AI Component Provenance Checks - **ID**: mitre-atlas-acquire-compromised-ml-artifact - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses compliance obligations under the EU AI Act for defending against MITRE ATLAS technique AML.T0008 (Acquisition of Compromised ML Artifacts), specifically requiring pre-trained model... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-acquire-compromised-ml-artifact.json #### MITRE ATLAS Acquisition of Public ML Artifacts for Attack Preparation (AML.T0006) - Compliance Obligations for Open-Weight Model Risk Assessment, Third-Party ML Artifact Due Diligence, and AI Supply Chain Security Controls - **ID**: mitre-atlas-acquire-public-ml-artifacts - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0006, focusing on adversaries acquiring public ML artifacts for attack preparation, aligns with EU AI Act Articles 9 and 15, and mandates robust supply c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-acquire-public-ml-artifacts.json #### MITRE ATLAS Activation Triggers (AML.T0084.002) - Adversarial Activation Triggers threat to AI systems - **ID**: mitre-atlas-activation-triggers - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0084.002 (Activation Triggers). Adversaries may discover keywords or other triggers (such as incoming emails, documents being added, incoming message, or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-activation-triggers.json #### MITRE ATLAS Adversarial AI Attack Implementations (AML.T0016.000) - Adversarial Adversarial AI Attack Implementations threat to AI systems - **ID**: mitre-atlas-adversarial-ai-attack-implementations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0016.000 (Adversarial AI Attack Implementations). Adversaries may search for existing open source implementations of AI attacks. The research community o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-adversarial-ai-attack-implementations.json #### MITRE ATLAS Adversarial AI Attacks (AML.T0017.000) - Adversarial Adversarial AI Attacks threat to AI systems - **ID**: mitre-atlas-adversarial-ai-attacks - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0017.000 (Adversarial AI Attacks). Adversaries may develop their own adversarial attacks. They may leverage existing libraries as a starting point (Adver... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-adversarial-ai-attacks.json #### MITRE ATLAS AI Reconnaissance via Adversarial Vulnerability Analysis (AML.T0001) - Compliance Obligations for AI Security Patch Management, Vulnerability Disclosure Programmes, and Adversarial Robustness Reporting - **ID**: mitre-atlas-adversarial-vulnerability-research - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses compliance obligations under the EU AI Act for defending against MITRE ATLAS technique AML.T0001 (AI Reconnaissance via Adversarial Vulnerability Analysis), focusing on AI security... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-adversarial-vulnerability-research.json #### MITRE ATLAS Agentic Resource Consumption (AML.T0034.002) - Adversarial Agentic Resource Consumption threat to AI systems - **ID**: mitre-atlas-agentic-resource-consumption - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0034.002 (Agentic Resource Consumption). Adversaries may coerce an agentic AI system into performing computationally expensive tool calls that waste reso... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-agentic-resource-consumption.json #### MITRE ATLAS AI Agent (AML.T0108) - Adversarial AI Agent threat to AI systems - **ID**: mitre-atlas-ai-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0108 (AI Agent). Adversaries may abuse AI agents present on the victim's system for command and control. AI agents are often granted access to tools that... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-agent.json #### MITRE ATLAS AI Agent Configuration (AML.T0002.002) - Adversarial AI Agent Configuration threat to AI systems - **ID**: mitre-atlas-ai-agent-configuration - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0002.002 (AI Agent Configuration). Adversaries may acquire publicly accessible AI agent configuration files to understand agent capabilities, gain unauth... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-agent-configuration.json #### MITRE ATLAS AI Agent Context Poisoning (AML.T0080) - Adversarial Manipulation of AI Agent LLM Context to Alter Future Behaviour - **ID**: mitre-atlas-ai-agent-context-poisoning - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0080 (AI Agent Context Poisoning). Adversaries may attempt to manipulate the context used by an AI agent's large language model (LLM) to influence the re... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-agent-context-poisoning.json #### MITRE ATLAS AI Agent Tool (AML.T0010.005) - Adversarial AI Agent Tool threat to AI systems - **ID**: mitre-atlas-ai-agent-tool - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0010.005 (AI Agent Tool). Adversaries may target AI agent tools as a means to compromise a victim's AI supply chain. Tools add capabilities to AI agents,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-agent-tool.json #### MITRE ATLAS AI Agent Tool Invocation (AML.T0053) - Adversary Abuse of AI Agent Tool Access for Execution and Privilege Escalation - **ID**: mitre-atlas-ai-agent-tool-invocation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0053 (AI Agent Tool Invocation). Adversaries may use their access to an AI agent to invoke tools the agent has access to. LLMs are often connected to oth... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-agent-tool-invocation.json #### MITRE ATLAS AI Agent Tools (AML.T0085.001) - Adversarial AI Agent Tools threat to AI systems - **ID**: mitre-atlas-ai-agent-tools - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0085.001 (AI Agent Tools). Adversaries may prompt the AI service to invoke various tools the agent has access to. Tools may retrieve data from different ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-agent-tools.json #### MITRE ATLAS AI Artifact Collection Techniques (AML.T0035) - Compliance Obligations for Protecting AI Model Weights, Training Datasets, and Configuration Files from Adversarial Collection - **ID**: mitre-atlas-ai-artifact-collection - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses adversarial techniques under MITRE ATLAS AML.T0035 (AI Artifact Collection), focusing on the theft of AI model weights, training datasets, and configuration files. Compliance frame... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-artifact-collection.json #### MITRE ATLAS AI Artifacts (AML.T0112.001) - Adversarial AI Artifacts threat to AI systems - **ID**: mitre-atlas-ai-artifacts - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0112.001 (AI Artifacts). Adversaries may achieve full system compromise by introducing malicious AI artifacts, such as models or data, that contain embed... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-artifacts.json #### MITRE ATLAS Denial of AI Service Techniques (AML.T0029) - Operational Resilience and Business Continuity Obligations for AI System Availability Attacks Under DORA, EU AI Act, and ISO 42001 - **ID**: mitre-atlas-ai-denial-of-service - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses adversarial techniques under MITRE ATLAS AML.T0029 (Denial of AI Service), focusing on resource exhaustion and model overload attacks. It outlines compliance obligations for operat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-denial-of-service.json #### MITRE ATLAS AI Development Workspaces (AML.T0008.000) - Adversarial AI Development Workspaces threat to AI systems - **ID**: mitre-atlas-ai-development-workspaces - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0008.000 (AI Development Workspaces). Developing and staging AI attacks often requires expensive compute resources. Adversaries may need access to one or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-development-workspaces.json #### MITRE ATLAS AI-Generated Influence Operations and Synthetic Content Campaigns (AML.T0048) - Compliance Obligations for Synthetic Content Governance, Influence Operation Detection, and AI Transparency Requirements Under EU AI Act - **ID**: mitre-atlas-ai-influence-operations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0048 on AI-generated influence operations, aligning with EU AI Act Articles 9, 15, and 50 for transparency and risk management. Key compliance actions in... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-influence-operations.json #### MITRE ATLAS AI Intellectual Property Theft (AML.T0048.004) - Adversarial AI Intellectual Property Theft threat to AI systems - **ID**: mitre-atlas-ai-intellectual-property-theft - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0048.004 (AI Intellectual Property Theft). Adversaries may exfiltrate AI artifacts to steal intellectual property and cause economic harm to the victim o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-intellectual-property-theft.json #### MITRE ATLAS AI Service API (AML.T0096) - Adversarial AI Service API threat to AI systems - **ID**: mitre-atlas-ai-service-api - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0096 (AI Service API). Adversaries may communicate using the API of an AI service on the victim's system. The adversary's commands to the victim system, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-service-api.json #### MITRE ATLAS AI Service Proxies (AML.T0008.005) - Adversarial AI Service Proxies threat to AI systems - **ID**: mitre-atlas-ai-service-proxies - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0008.005 (AI Service Proxies). Adversaries may utilize commercial proxy services that resell access to AI services such as frontier model APIs. This infr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-service-proxies.json #### MITRE ATLAS AI Software (AML.T0010.001) - Adversarial AI Software threat to AI systems - **ID**: mitre-atlas-ai-software - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0010.001 (AI Software). Adversaries may target software packages that are commonly used in AI-enabled systems or are part of the AI DevOps lifecycle. Thi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-software.json #### MITRE ATLAS AI Supply Chain Compromise Techniques (AML.T0010) - Targeting Model Repositories, Pre-Trained Weights, Datasets, and Third-Party AI Pipeline Components - **ID**: mitre-atlas-ai-supply-chain-compromise - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses adversarial techniques under MITRE ATLAS AML.T0010, focusing on AI supply chain compromises such as targeting model repositories, pre-trained weights, datasets, and third-party pip... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-supply-chain-compromise.json #### MITRE ATLAS AI Supply Chain Reputation Inflation (AML.T0111) - Adversarial AI Supply Chain Reputation Inflation threat to AI systems - **ID**: mitre-atlas-ai-supply-chain-reputation-inflation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0111 (AI Supply Chain Reputation Inflation). AI Supply Chain Reputation Inflation is the process of building or leveraging genuinely credible-looking tru... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-supply-chain-reputation-inflation.json #### MITRE ATLAS AI Supply Chain Rug Pull (AML.T0109) - Adversarial AI Supply Chain Rug Pull threat to AI systems - **ID**: mitre-atlas-ai-supply-chain-rug-pull - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0109 (AI Supply Chain Rug Pull). Adversaries may publish legitimate AI components or software, gain user adoption, then push an update with a malicious v... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-supply-chain-rug-pull.json #### MITRE ATLAS Application Access Token (AML.T0091.000) - Adversarial use of Application Access Token as adapted in MITRE ATT&CK T1550.001 - **ID**: mitre-atlas-application-access-token - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0091.000 (Application Access Token). Adversaries may use stolen application access tokens to bypass the typical authentication process and access restric... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-application-access-token.json #### MITRE ATLAS AI Reconnaissance via Application and Model Repositories (AML.T0003) - Compliance Obligations for Securing AI Artifacts in Public Code Repositories, Model Hubs, and Container Registries - **ID**: mitre-atlas-application-repository-search - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0003, focusing on securing AI artifacts in public repositories under the EU AI Act Articles 9 and 15. Key compliance action involves auditing and monitor... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-application-repository-search.json #### MITRE ATLAS Black-Box Query-Based Attacks Against ML Models (AML.T0030) - Compliance Obligations for AI API Rate Limiting, Query Pattern Monitoring, and Adversarial Probing Detection Under AI Robustness Requirements - **ID**: mitre-atlas-black-box-ml-attacks - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0030 (Black-Box Query Attacks) under the EU AI Act, focusing on API rate limiting and adversarial probing detection. Key compliance actions align with Ar... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-black-box-ml-attacks.json #### MITRE ATLAS Black-Box Optimization (AML.T0043.001) - Adversarial Black-Box Optimization threat to AI systems - **ID**: mitre-atlas-black-box-optimization - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0043.001 (Black-Box Optimization). In Black-Box attacks, the adversary has black-box (i.e. AI Model Inference API Access via API access) access to the ta... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-black-box-optimization.json #### MITRE ATLAS Black-Box Transfer (AML.T0043.002) - Adversarial Black-Box Transfer threat to AI systems - **ID**: mitre-atlas-black-box-transfer - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0043.002 (Black-Box Transfer). In Black-Box Transfer attacks, the adversary uses one or more proxy models (trained via Create Proxy AI Model or Train Pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-black-box-transfer.json #### MITRE ATLAS Call Chains (AML.T0084.003) - Adversarial Call Chains threat to AI systems - **ID**: mitre-atlas-call-chains - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0084.003 (Call Chains). Adversaries may extract call chains from AI agent configurations, which can reveal potentially targets for remote code execution ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-call-chains.json #### MITRE ATLAS Citations (AML.T0067.000) - Adversarial Citations threat to AI systems - **ID**: mitre-atlas-citations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0067.000 (Citations). Adversaries may manipulate the citations provided in an AI system's response, in order to make it appear trustworthy. Variants incl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-citations.json #### MITRE ATLAS Cloud Service Discovery (AML.T0075) - Adversarial use of Cloud Service Discovery as adapted in MITRE ATT&CK T1526 - **ID**: mitre-atlas-cloud-service-discovery - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0075 (Cloud Service Discovery). Adversaries may attempt to enumerate the cloud services running on a system after gaining access. These methods can diffe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-cloud-service-discovery.json #### MITRE ATLAS Code Repositories (AML.T0095.000) - Adversarial use of Code Repositories as adapted in MITRE ATT&CK T1593.003 - **ID**: mitre-atlas-code-repositories - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0095.000 (Code Repositories). Adversaries may search public code repositories for information about a victim or victim system that can be used during tar... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-code-repositories.json #### MITRE ATLAS Container Registry (AML.T0010.004) - Adversarial Container Registry threat to AI systems - **ID**: mitre-atlas-container-registry - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0010.004 (Container Registry). An adversary may compromise a victim's container registry by pushing a manipulated container image and overwriting an exis... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-container-registry.json #### MITRE ATLAS Corrupt AI Model (AML.T0076) - Adversarial Corrupt AI Model threat to AI systems - **ID**: mitre-atlas-corrupt-ai-model - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0076 (Corrupt AI Model). An adversary may purposefully corrupt a malicious AI model file so that it cannot be successfully deserialized in order to evade... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-corrupt-ai-model.json #### MITRE ATLAS AI Cost Harvesting Techniques (AML.T0034) - Excessive Query, Resource-Intensive Prompt, and Agentic Resource Consumption Attack Compliance Obligations for Cloud AI Governance - **ID**: mitre-atlas-cost-harvesting - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses adversarial AI cost harvesting techniques under MITRE ATLAS AML.T0034, including Excessive Query, Resource-Intensive Prompt, and Agentic Resource Consumption attacks, with complian... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-cost-harvesting.json #### MITRE ATLAS Craft Adversarial Data for ML Model Attacks (AML.T0014) - Compliance Obligations for Adversarial Input Robustness Testing, Adversarial Example Detection, and AI System Resilience Validation Requirements - **ID**: mitre-atlas-craft-adversarial-data - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0014 (Craft Adversarial Data), aligning with EU AI Act Articles 9 and 15 for robustness and risk management. Key compliance actions include adversarial t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-craft-adversarial-data.json #### MITRE ATLAS Craft Adversarial Perturbations for ML Model Evasion (AML.T0040) - Compliance Obligations for Adversarial Robustness Testing, Perturbation Detection Controls, and AI System Resilience Standards Under Article 15 - **ID**: mitre-atlas-craft-adversarial-perturbations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0040 (Craft Adversarial Perturbations for Evasion), aligning with EU AI Act Articles 15 and 9 for robustness and risk management. Key compliance action i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-craft-adversarial-perturbations.json #### MITRE ATLAS Create Proxy AI Model Techniques (AML.T0005) - Compliance Obligations for Defending Against Model Replication, Shadow Model Attacks, and AI Intellectual Property Theft - **ID**: mitre-atlas-create-proxy-model - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses adversarial techniques under MITRE ATLAS AML.T0005 (Create Proxy Models), focusing on model replication and shadow model attacks, with compliance obligations under frameworks like ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-create-proxy-model.json #### MITRE ATLAS AI Agent Tool Credential Harvesting Techniques (AML.T0098) - Compliance Obligations for Securing Credentials Accessed by Autonomous AI Agents and Agentic Pipelines - **ID**: mitre-atlas-credential-access-via-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses adversarial techniques under MITRE ATLAS AML.T0098 (Credential Access via AI Agent Tools), focusing on harvesting credentials through autonomous AI agents. Compliance frameworks li... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-credential-access-via-agent.json #### MITRE ATLAS Credentials from AI Agent Configuration (AML.T0083) - Adversarial Credentials from AI Agent Configuration threat to AI systems - **ID**: mitre-atlas-credentials-from-ai-agent-configuration - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0083 (Credentials from AI Agent Configuration). Adversaries may access the credentials of other tools or services on a system from the configuration of a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-credentials-from-ai-agent-configuration.json #### MITRE ATLAS Data (AML.T0010.002) - Adversarial Data threat to AI systems - **ID**: mitre-atlas-data - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0010.002 (Data). Data is a key vector of supply chain compromise for adversaries. Every AI project will require some form of data. Many rely on large ope... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-data.json #### MITRE ATLAS Data Destruction via Compromised AI Agent Actions (AML.T0102) - Compliance Obligations for Agentic AI Data Deletion Controls, Agent Action Reversibility Requirements, and Autonomous System Destructive Action Governance - **ID**: mitre-atlas-data-destruction-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0102 (Data Destruction via Compromised AI Agent), aligning with EU AI Act Articles 9, 14, and 15 for robust AI governance. Key compliance actions include... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-data-destruction-agent.json #### MITRE ATLAS Data from AI Services (AML.T0085) - Adversary Collection of Data from AI Services - **ID**: mitre-atlas-data-from-ai-services - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0085 (Data from AI Services). Adversaries may use their access to a victim organization's AI-enabled services to collect proprietary or otherwise sensiti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-data-from-ai-services.json #### MITRE ATLAS Data from Information Repositories (AML.T0036) - Adversarial use of Data from Information Repositories as adapted in MITRE ATT&CK T1213 - **ID**: mitre-atlas-data-from-information-repositories - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0036 (Data from Information Repositories). Adversaries may leverage information repositories to mine valuable information. Information repositories are t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-data-from-information-repositories.json #### MITRE ATLAS Data from Local System (AML.T0037) - Adversarial use of Data from Local System as adapted in MITRE ATT&CK T1005 - **ID**: mitre-atlas-data-from-local-system - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0037 (Data from Local System). Adversaries may search local system sources, such as file systems and configuration files or local databases, to find file... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-data-from-local-system.json #### MITRE ATLAS Training Data Poisoning and Backdoor Attack Techniques (AML.T0020) - Corrupting Training and Fine-Tuning Datasets for Persistent Model Manipulation - **ID**: mitre-atlas-data-poisoning - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0020 (Training Data Poisoning), focusing on adversarial corruption of training and fine-tuning datasets to embed persistent backdoors in AI models. Compl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-data-poisoning.json #### MITRE ATLAS Datasets (AML.T0002.000) - Adversarial Datasets threat to AI systems - **ID**: mitre-atlas-datasets - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0002.000 (Datasets). Adversaries may collect public datasets to use in their operations. Datasets used by the victim organization or datasets that are re... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-datasets.json #### MITRE ATLAS Deepfake-Assisted Phishing (AML.T0052.001) - Adversarial Deepfake-Assisted Phishing threat to AI systems - **ID**: mitre-atlas-deepfake-assisted-phishing - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0052.001 (Deepfake-Assisted Phishing). Adversaries may use deepfakes (AI-generated synthetic images, audio, or video) in phishing campaigns to impersonat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-deepfake-assisted-phishing.json #### MITRE ATLAS AI-Generated Deepfake Techniques (AML.T0088) - Synthetic Media Generation for Identity Fraud, Disinformation, and Social Engineering - Regulatory Compliance Obligations - **ID**: mitre-atlas-deepfake-generation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0088 (Generate Synthetic Media), focusing on adversarial AI tactics for creating deepfakes used in identity fraud, disinformation, and social engineering... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-deepfake-generation.json #### MITRE ATLAS Defense Evasion via AI Agent Actions (AML.T0101) - Compliance Obligations for Agentic AI Audit Trail Integrity, Agent Action Non-Repudiation, and Autonomous System Security Control Bypass Detection - **ID**: mitre-atlas-defense-evasion-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0101 on Defense Evasion via AI Agent Actions, aligning with EU AI Act Articles 9 and 15 for robust cybersecurity and risk management. Key compliance acti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-defense-evasion-agent.json #### MITRE ATLAS Delay Execution of LLM Instructions (AML.T0094) - Adversarial Delay Execution of LLM Instructions threat to AI systems - **ID**: mitre-atlas-delay-execution-of-llm-instructions - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0094 (Delay Execution of LLM Instructions). Adversaries may include instructions to be followed by the AI system in response to a future event, such as a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-delay-execution-of-llm-instructions.json #### MITRE ATLAS Develop Adversarial AI Capabilities and Attack Infrastructure (AML.T0017) - Compliance Obligations for AI Red Team Governance, Adversarial Capability Monitoring, and Threat Intelligence Sharing Requirements - **ID**: mitre-atlas-develop-adversarial-capabilities - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses compliance obligations under MITRE ATLAS technique AML.T0017 for developing adversarial AI capabilities and attack infrastructure, aligning with EU AI Act requirements under Articl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-develop-adversarial-capabilities.json #### MITRE ATLAS Direct (AML.T0051.000) - Adversarial Direct threat to AI systems - **ID**: mitre-atlas-direct - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0051.000 (Direct). An adversary may inject prompts directly as a user of the LLM. This type of injection may be used by the adversary to gain a foothold ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-direct.json #### MITRE ATLAS Discover AI Agent Configuration (AML.T0084) - Adversarial Discover AI Agent Configuration threat to AI systems - **ID**: mitre-atlas-discover-ai-agent-configuration - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0084 (Discover AI Agent Configuration). Adversaries may attempt to discover configuration information for AI agents present on the victim's system. Agent... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-discover-ai-agent-configuration.json #### MITRE ATLAS Discover AI Artifacts (AML.T0007) - Adversary Discovery of AI Artifacts in Victim Environment - **ID**: mitre-atlas-discover-ai-artifacts - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0007 (Discover AI Artifacts). Adversaries may search private sources to identify AI learning artifacts that exist on the system and gather information ab... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-discover-ai-artifacts.json #### MITRE ATLAS Discover AI Model Ontology (AML.T0013) - Adversary Discovery of AI Model Ontology for Targeted Attack - **ID**: mitre-atlas-discover-ai-model-ontology - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0013 (Discover AI Model Ontology). Adversaries may discover the ontology of an AI model's output space, for example, the types of objects a model can det... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-discover-ai-model-ontology.json #### MITRE ATLAS Discover AI Model Outputs (AML.T0063) - Adversarial Discovery of AI Model Outputs to Extract Information - **ID**: mitre-atlas-discover-ai-model-outputs - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0063 (Discover AI Model Outputs). Adversaries may discover model outputs, such as class scores, whose presence is not required for the system to function... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-discover-ai-model-outputs.json #### MITRE ATLAS Discover LLM Hallucinations (AML.T0062) - Adversarial Discovery of LLM Hallucinations for Exploitation - **ID**: mitre-atlas-discover-llm-hallucinations - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0062 (Discover LLM Hallucinations). Adversaries may prompt large language models and identify hallucinated entities. They may request software packages, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-discover-llm-hallucinations.json #### MITRE ATLAS Discover LLM System Information (AML.T0069) - Adversarial Discover LLM System Information threat to AI systems - **ID**: mitre-atlas-discover-llm-system-information - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0069 (Discover LLM System Information). The adversary is trying to discover something about the large language model's (LLM) system information. This may... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-discover-llm-system-information.json #### MITRE ATLAS System and Environment Discovery via AI Agent Actions (AML.T0106) - Compliance Obligations for Agentic AI Reconnaissance Controls, Agent Information Gathering Limits, and Autonomous Discovery Activity Monitoring - **ID**: mitre-atlas-discovery-via-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0106 for system and environment discovery via AI agents, aligning with EU AI Act Articles 9 and 15. Key compliance actions include implementing scope lim... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-discovery-via-agent.json #### MITRE ATLAS Domains (AML.T0008.002) - Adversarial use of Domains as adapted in MITRE ATT&CK T1583.001 - **ID**: mitre-atlas-domains - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0008.002 (Domains). Adversaries may acquire domains that can be used during targeting. Domain names are the human readable names used to represent one or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-domains.json #### MITRE ATLAS Drive-by Compromise (AML.T0078) - Adversarial use of Drive-by Compromise as adapted in MITRE ATT&CK T1189 - **ID**: mitre-atlas-drive-by-compromise - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0078 (Drive-by Compromise). Adversaries may gain access to an AI system through a user visiting a website over the normal course of browsing, or an AI ag... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-drive-by-compromise.json #### MITRE ATLAS Embed Malware (AML.T0018.002) - Adversarial Embed Malware threat to AI systems - **ID**: mitre-atlas-embed-malware - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0018.002 (Embed Malware). Adversaries may embed malicious code into AI Model files. AI models may be packaged as a combination of instructions and weight... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-embed-malware.json #### MITRE ATLAS Embedded Knowledge (AML.T0084.000) - Adversarial Embedded Knowledge threat to AI systems - **ID**: mitre-atlas-embedded-knowledge - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0084.000 (Embedded Knowledge). Adversaries may attempt to discover the data sources a particular agent can access. The AI agent's configuration may revea... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-embedded-knowledge.json #### MITRE ATLAS Erode AI Model Integrity (AML.T0031) - Adversarial Erosion of AI Model Integrity Over Time - **ID**: mitre-atlas-erode-ai-model-integrity - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0031 (Erode AI Model Integrity). Adversaries may degrade the target model's performance with adversarial data inputs to erode confidence in the system ov... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-erode-ai-model-integrity.json #### MITRE ATLAS Erode Dataset Integrity Techniques (AML.T0059) - Compliance Obligations for Training Data Provenance, Continuous Dataset Integrity Monitoring, and Adversarial Dataset Corruption Response - **ID**: mitre-atlas-erode-dataset-integrity - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses adversarial techniques under MITRE ATLAS AML.T0059 (Erode Dataset Integrity), focusing on dataset poisoning and corruption tactics. Compliance frameworks like the EU AI Act and NIS... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-erode-dataset-integrity.json #### MITRE ATLAS Establish Accounts (AML.T0021) - Adversarial use of Establish Accounts as adapted in MITRE ATT&CK T1585 - **ID**: mitre-atlas-establish-accounts - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0021 (Establish Accounts). Adversaries may create accounts with various services for use in targeting, to gain access to resources needed in AI Attack St... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-establish-accounts.json #### MITRE ATLAS Evade AI Model (AML.T0015) - Adversarial Evasion of AI Model Classification at Inference Time - **ID**: mitre-atlas-evade-ai-model - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0015 (Evade AI Model). Adversaries can Craft Adversarial Data that prevents an AI model from correctly identifying the contents of the data or Generate D... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-evade-ai-model.json #### MITRE ATLAS Adversarial Evasion via ML Explanation Method Exploitation (AML.T0043) - Compliance Obligations for XAI Security Controls, SHAP and LIME Attack Defence, and Explainability System Integrity Monitoring - **ID**: mitre-atlas-evasion-via-explanation-methods - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0043, focusing on adversarial evasion via explanation methods, aligns with EU AI Act Articles 9 and 15, and mandates robust security controls for explain... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-evasion-via-explanation-methods.json #### MITRE ATLAS Excessive Queries (AML.T0034.000) - Adversarial Excessive Queries threat to AI systems - **ID**: mitre-atlas-excessive-queries - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0034.000 (Excessive Queries). Adversaries may send an excessive number of otherwise normal or low-complexity queries to an AI system with the goal of ove... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-excessive-queries.json #### MITRE ATLAS Code and Command Execution via Hijacked AI Agent (AML.T0104) - Compliance Obligations for Agentic AI Code Execution Sandboxing, Tool Call Validation, and Autonomous System Remote Execution Governance - **ID**: mitre-atlas-execution-via-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses the MITRE ATLAS technique AML.T0104, focusing on preventing code execution via hijacked AI agents, aligned with EU AI Act Articles 9, 14, and 15. Key compliance actions include san... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-execution-via-agent.json #### MITRE ATLAS Data Exfiltration via Compromised AI Agent Tool Calls (AML.T0103) - Compliance Obligations for Agentic AI Data Loss Prevention, Agent Output Monitoring, and Autonomous Exfiltration Detection Controls - **ID**: mitre-atlas-exfiltration-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0103, focusing on data exfiltration via compromised AI agent tool calls, aligning with EU AI Act Articles 9 and 15 for risk management and cybersecurity.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-exfiltration-agent.json #### MITRE ATLAS Exfiltration via AI Agent Tool Invocation (AML.T0086) - Adversary Use of AI Agent Write-Capable Tools to Exfiltrate Sensitive Data - **ID**: mitre-atlas-exfiltration-via-ai-agent-tool-invocation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0086 (Exfiltration via AI Agent Tool Invocation). AI agent tools capable of performing write operations may be invoked to exfiltrate data to an adversary... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-exfiltration-via-ai-agent-tool-invocation.json #### MITRE ATLAS Exfiltration via AI Inference API Techniques (AML.T0024) - Model Inversion, Training Data Membership Inference, and AI Model Extraction Attacks Under Data Protection Law - **ID**: mitre-atlas-exfiltration-via-ai-inference - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses adversarial AI techniques under MITRE ATLAS AML.T0024, including model inversion, training data membership inference, and AI model extraction attacks, with compliance obligations m... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-exfiltration-via-ai-inference.json #### MITRE ATLAS Exploit Public-Facing Application (AML.T0049) - Adversarial use of Exploit Public-Facing Application as adapted in MITRE ATT&CK T1190 - **ID**: mitre-atlas-exploit-public-facing-application - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0049 (Exploit Public-Facing Application). Adversaries may attempt to take advantage of a weakness in an Internet-facing computer or program using softwar... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-exploit-public-facing-application.json #### MITRE ATLAS Exploitation for Defense Evasion (AML.T0107) - Adversarial use of Exploitation for Defense Evasion as adapted in MITRE ATT&CK T1211 - **ID**: mitre-atlas-exploitation-for-defense-evasion - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0107 (Exploitation for Defense Evasion). Adversaries may exploit a system or application vulnerability to bypass security features. Exploitation of a vul... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-exploitation-for-defense-evasion.json #### MITRE ATLAS Extract AI Model (AML.T0024.002) - Adversarial Extract AI Model threat to AI systems - **ID**: mitre-atlas-extract-ai-model - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0024.002 (Extract AI Model). Adversaries may extract a functional copy of a private model. By repeatedly querying the victim's AI Model Inference API Acc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-extract-ai-model.json #### MITRE ATLAS LLM System Prompt Extraction Techniques (AML.T0056) - Intellectual Property Protection and Confidential AI Configuration Disclosure Compliance Obligations - **ID**: mitre-atlas-extract-system-prompt - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses adversarial techniques for extracting system prompts from large language models as defined in MITRE ATLAS AML.T0056 (LLM System Prompt Extraction), focusing on compliance obligatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-extract-system-prompt.json #### MITRE ATLAS False RAG Entry Injection Techniques (AML.T0071) - Defense Evasion via Retrieval-Augmented Generation Knowledge Base Integrity Attacks and Misinformation Insertion - **ID**: mitre-atlas-false-rag-injection - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0071, focusing on False RAG Entry Injection for defense evasion through misinformation insertion in retrieval-augmented generation systems. Compliance wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-false-rag-injection.json #### MITRE ATLAS Financial Harm (AML.T0048.000) - Adversarial Financial Harm threat to AI systems - **ID**: mitre-atlas-financial-harm - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0048.000 (Financial Harm). Financial harm involves the loss of wealth, property, or other monetary assets due to theft, fraud or forgery, or pressure to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-financial-harm.json #### MITRE ATLAS Obtaining Full ML Model Access for Attack Staging (AML.T0045) - Compliance Obligations for AI System Access Control, Privileged Model Access Governance, and Insider Threat Detection for AI Pipelines - **ID**: mitre-atlas-full-ml-model-access - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0045 (Obtaining Full ML Model Access) under the EU AI Act, focusing on robust access controls and cybersecurity. Key compliance actions align with Articl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-full-ml-model-access.json #### MITRE ATLAS Functionally Equivalent ML Model Extraction via Query Replication (AML.T0032) - Compliance Obligations for AI Intellectual Property Protection, Model Extraction Defence, and API Usage Analytics Controls - **ID**: mitre-atlas-functionally-equivalent-extraction - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0032, focusing on defending against functionally equivalent model extraction via query replication, aligned with EU AI Act Articles 9 and 15 for risk man... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-functionally-equivalent-extraction.json #### MITRE ATLAS Gather RAG-Indexed Targets (AML.T0064) - Adversarial Gather RAG-Indexed Targets threat to AI systems - **ID**: mitre-atlas-gather-rag-indexed-targets - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0064 (Gather RAG-Indexed Targets). Adversaries may identify data sources used in retrieval augmented generation (RAG) systems for targeting purposes. By ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-gather-rag-indexed-targets.json #### MITRE ATLAS Gather Victim Identity Information (AML.T0087) - Adversarial use of Gather Victim Identity Information as adapted in MITRE ATT&CK T1589 - **ID**: mitre-atlas-gather-victim-identity-information - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0087 (Gather Victim Identity Information). Adversaries may gather information about the victim's identity that can be used during targeting. Information ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-gather-victim-identity-information.json #### MITRE ATLAS Generative AI (AML.T0016.002) - Adversarial Generative AI threat to AI systems - **ID**: mitre-atlas-generative-ai - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0016.002 (Generative AI). Adversaries may search for and obtain generative AI models or tools, such as large language models (LLMs), to assist them in va... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-generative-ai.json #### MITRE ATLAS Hardware (AML.T0010.000) - Adversarial Hardware threat to AI systems - **ID**: mitre-atlas-hardware - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0010.000 (Hardware). Adversaries may target AI systems by disrupting or manipulating the hardware supply chain. AI models often run on specialized hardwa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-hardware.json #### MITRE ATLAS Identity Theft via AI Synthetic Media and Biometric Spoofing (AML.T0089) - Compliance Obligations for Biometric AI Fraud Prevention, Synthetic Identity Detection, and AI-Enabled Identity Theft Incident Response - **ID**: mitre-atlas-identity-theft-synthetic-media - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0089, focusing on identity theft via AI synthetic media, aligning with EU AI Act Articles 9, 15, and 50 for robust AI fraud prevention. Key compliance ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-identity-theft-synthetic-media.json #### MITRE ATLAS Impersonation (AML.T0073) - Adversarial use of Impersonation as adapted in MITRE ATT&CK T1656 - **ID**: mitre-atlas-impersonation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0073 (Impersonation). Adversaries may impersonate a trusted person or organization in order to persuade and trick a target into performing some action on... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-impersonation.json #### MITRE ATLAS Indirect (AML.T0051.001) - Adversarial Indirect threat to AI systems - **ID**: mitre-atlas-indirect - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0051.001 (Indirect). An adversary may inject prompts indirectly via separate data channel ingested by the LLM such as include text or multimedia pulled f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-indirect.json #### MITRE ATLAS Infer Training Data Membership (AML.T0024.000) - Adversarial Infer Training Data Membership threat to AI systems - **ID**: mitre-atlas-infer-training-data-membership - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0024.000 (Infer Training Data Membership). Adversaries may infer the membership of a data sample or global characteristics of the data in its training se... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-infer-training-data-membership.json #### MITRE ATLAS Insert Backdoor Trigger (AML.T0043.004) - Adversarial Insert Backdoor Trigger threat to AI systems - **ID**: mitre-atlas-insert-backdoor-trigger - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0043.004 (Insert Backdoor Trigger). The adversary may add a perceptual trigger into inference data. The trigger may be imperceptible or non-obvious to hu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-insert-backdoor-trigger.json #### MITRE ATLAS Invert AI Model (AML.T0024.001) - Adversarial Invert AI Model threat to AI systems - **ID**: mitre-atlas-invert-ai-model - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0024.001 (Invert AI Model). AI models' training data could be reconstructed by exploiting the confidence scores that are available via an inference API. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-invert-ai-model.json #### MITRE ATLAS Journals and Conference Proceedings (AML.T0000.000) - Adversarial Journals and Conference Proceedings threat to AI systems - **ID**: mitre-atlas-journals-and-conference-proceedings - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0000.000 (Journals and Conference Proceedings). Many of the publications accepted at premier artificial intelligence conferences and journals come from c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-journals-and-conference-proceedings.json #### MITRE ATLAS Label Manipulation Attack on ML Training Pipelines (AML.T0038) - Compliance Obligations for Training Data Annotation Integrity, Labelling Process Governance, and AI Output Accuracy Monitoring Under Article 15 - **ID**: mitre-atlas-label-manipulation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses the MITRE ATLAS Label Manipulation Attack (AML.T0038) on ML training pipelines, aligning with EU AI Act Articles 15, 10, and 9 for robust data integrity and accuracy monitoring. Ke... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-label-manipulation.json #### MITRE ATLAS Lateral Movement via Compromised AI Agent (AML.T0099) - Compliance Obligations for Agentic AI Network Segmentation, Agent Credential Isolation, and Autonomous System Lateral Movement Detection - **ID**: mitre-atlas-lateral-movement-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0099, focusing on lateral movement via compromised AI agents, aligning with EU AI Act Articles 9 and 15 for robust cybersecurity and risk management. Key... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-lateral-movement-agent.json #### MITRE ATLAS LLM Data Leakage Techniques (AML.T0057) - Exfiltration of Training Data, System Prompts, and Confidential Information via Language Model Outputs Under GDPR and AI Act Obligations - **ID**: mitre-atlas-llm-data-leakage - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0057 (LLM Data Leakage), focusing on adversarial exfiltration of training data, system prompts, and confidential information through language model outpu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-llm-data-leakage.json #### MITRE ATLAS LLM Jailbreak Techniques (AML.T0054) - Privilege Escalation and Defense Evasion Through Prompt Engineering to Bypass AI Safety Controls and Governance Guardrails - **ID**: mitre-atlas-llm-jailbreak - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0054 (LLM Jailbreak), focusing on adversarial prompt engineering to bypass AI safety controls, with compliance obligations under frameworks like the EU A... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-llm-jailbreak.json #### MITRE ATLAS LLM Prompt Crafting (AML.T0065) - Adversarial LLM Prompt Crafting threat to AI systems - **ID**: mitre-atlas-llm-prompt-crafting - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0065 (LLM Prompt Crafting). Adversaries may use their acquired knowledge of the target generative AI system to craft prompts that bypass its defenses and... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-llm-prompt-crafting.json #### MITRE ATLAS LLM Prompt Injection Techniques (AML.T0051) - Adversarial Inputs to Manipulate Large Language Model Behaviour and Bypass Safety Controls - **ID**: mitre-atlas-llm-prompt-injection - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0051 (LLM Prompt Injection), focusing on adversarial inputs designed to manipulate large language model behavior and bypass safety controls. Compliance f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-llm-prompt-injection.json #### MITRE ATLAS LLM Prompt Obfuscation (AML.T0068) - Adversarial LLM Prompt Obfuscation threat to AI systems - **ID**: mitre-atlas-llm-prompt-obfuscation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0068 (LLM Prompt Obfuscation). Adversaries may hide or otherwise obfuscate prompt injections or retrieval content to avoid detection from humans, large l... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-llm-prompt-obfuscation.json #### MITRE ATLAS LLM Prompt Self-Replication (AML.T0061) - Worm-Class Self-Propagating Prompts that Persist Across LLM Outputs - **ID**: mitre-atlas-llm-prompt-self-replication - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0061 (LLM Prompt Self-Replication). An adversary may use a carefully crafted LLM Prompt Injection designed to cause the LLM to replicate the prompt as pa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-llm-prompt-self-replication.json #### MITRE ATLAS LLM Response Rendering (AML.T0077) - Adversarial LLM Response Rendering threat to AI systems - **ID**: mitre-atlas-llm-response-rendering - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0077 (LLM Response Rendering). An adversary may get a large language model (LLM) to respond with private information that is hidden from the user when th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-llm-response-rendering.json #### MITRE ATLAS LLM Trusted Output Components Manipulation (AML.T0067) - LLM Output Component Manipulation to Evade User Detection - **ID**: mitre-atlas-llm-trusted-output-components-manipulation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0067 (LLM Trusted Output Components Manipulation). Adversaries may utilize prompts to a large language model (LLM) which manipulate various components of... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-llm-trusted-output-components-manipulation.json #### MITRE ATLAS Local AI Agent (AML.T0112.000) - Adversarial Local AI Agent threat to AI systems - **ID**: mitre-atlas-local-ai-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0112.000 (Local AI Agent). Adversaries may achieve full system compromise by abusing AI agents running locally on a host, such as computer-use agents or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-local-ai-agent.json #### MITRE ATLAS Machine Compromise (AML.T0112) - Adversarial Machine Compromise threat to AI systems - **ID**: mitre-atlas-machine-compromise - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0112 (Machine Compromise). Adversaries may compromise a machine by exploiting or manipulating AI-enabled components on the system. Compromising a victim ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-machine-compromise.json #### MITRE ATLAS Malicious Link (AML.T0011.003) - Adversarial use of Malicious Link as adapted in MITRE ATT&CK T1204 - **ID**: mitre-atlas-malicious-link - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0011.003 (Malicious Link). An adversary may rely upon a user clicking a malicious link in order to gain execution. Users may be subjected to social engin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-malicious-link.json #### MITRE ATLAS Malicious Package (AML.T0011.001) - Adversarial Malicious Package threat to AI systems - **ID**: mitre-atlas-malicious-package - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0011.001 (Malicious Package). Adversaries may develop malicious software packages that when imported by a user have a deleterious effect. Malicious packa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-malicious-package.json #### MITRE ATLAS AI Model Manipulation Techniques (AML.T0018) - Compliance Obligations for Detecting and Responding to Poisoned Models, Modified Architectures, and Embedded Malware in AI Systems - **ID**: mitre-atlas-manipulate-ai-model - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses adversarial techniques under MITRE ATLAS AML.T0018 (Manipulate AI Model), focusing on poisoned models, modified architectures, and embedded malware. Compliance frameworks like the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-manipulate-ai-model.json #### MITRE ATLAS Manipulate AI Training Data to Alter Model Behaviour (AML.T0025) - Compliance Obligations for Training Data Integrity Controls, Data Validation Gates, and AI Model Behaviour Monitoring Under EU AI Act Article 10 - **ID**: mitre-atlas-manipulate-training-data - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0025 (Manipulate Training Data) under the EU AI Act Articles 9, 10, and 15, focusing on implementing integrity controls and monitoring to prevent model b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-manipulate-training-data.json #### MITRE ATLAS Manipulate User LLM Chat History (AML.T0092) - Adversarial Manipulate User LLM Chat History threat to AI systems - **ID**: mitre-atlas-manipulate-user-llm-chat-history - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0092 (Manipulate User LLM Chat History). Adversaries may manipulate a user's large language model (LLM) chat history to cover the tracks of their malicio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-manipulate-user-llm-chat-history.json #### MITRE ATLAS Manual Modification (AML.T0043.003) - Adversarial Manual Modification threat to AI systems - **ID**: mitre-atlas-manual-modification - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0043.003 (Manual Modification). Adversaries may manually modify the input data to craft adversarial data. They may use their knowledge of the target mode... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-manual-modification.json #### MITRE ATLAS Masquerading (AML.T0074) - Adversarial use of Masquerading as adapted in MITRE ATT&CK T1036 - **ID**: mitre-atlas-masquerading - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0074 (Masquerading). Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-masquerading.json #### MITRE ATLAS Membership Inference Attack on ML Training Data (AML.T0066) - Compliance Obligations for Training Data Privacy Protection, GDPR Article 5 Data Minimisation, and AI Model Output Privacy Monitoring - **ID**: mitre-atlas-membership-inference-attack - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses compliance obligations to protect against MITRE ATLAS Membership Inference Attacks (AML.T0066) on ML training data, aligning with EU AI Act Articles 5, 15, and 50 for data privacy ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-membership-inference-attack.json #### MITRE ATLAS Memory (AML.T0080.000) - Adversarial Memory threat to AI systems - **ID**: mitre-atlas-memory - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0080.000 (Memory). Adversaries may manipulate the memory of a large language model (LLM) in order to persist changes to the LLM to future chat sessions. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-memory.json #### MITRE ATLAS Mitigation Adversarial Input Detection (AML.M0015) - Adversarial Input Detection at Model Inference - **ID**: mitre-atlas-mitigation-adversarial-input-detection - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0015 (Adversarial Input Detection). Detect and block adversarial inputs or atypical queries that deviate from known benign behavior, exhibit behav... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-adversarial-input-detection.json #### MITRE ATLAS Mitigation AI Agent Tools Permissions Configuration (AML.M0028) - AI Agent Tools Permissions Configuration - **ID**: mitre-atlas-mitigation-ai-agent-tools-permissions-configuration - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0028 (AI Agent Tools Permissions Configuration). When deploying tools that will be shared across multiple AI agents, it is important to implement ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-ai-agent-tools-permissions-configuration.json #### MITRE ATLAS Mitigation AI Bill of Materials (AML.M0023) - AI Supply Chain Inventory and Dataset Provenance Tracking - **ID**: mitre-atlas-mitigation-ai-bill-of-materials - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0023 (AI Bill of Materials). An AI Bill of Materials (AI BOM) contains a full listing of artifacts and resources that were used in building the AI... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-ai-bill-of-materials.json #### MITRE ATLAS Mitigation AI Model Distribution Methods (AML.M0017) - AI Model Distribution Methods to Reduce Extraction Risk - **ID**: mitre-atlas-mitigation-ai-model-distribution-methods - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0017 (AI Model Distribution Methods). Deploying AI models to edge devices can increase the attack surface of the system. Consider serving models i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-ai-model-distribution-methods.json #### MITRE ATLAS Mitigation AI Telemetry Logging (AML.M0024) - Telemetry-Driven Detection of AI Model and Agent Threats - **ID**: mitre-atlas-mitigation-ai-telemetry-logging - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0024 (AI Telemetry Logging). Implement logging of inputs and outputs of deployed AI models. When deploying AI agents, implement logging of the int... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-ai-telemetry-logging.json #### MITRE ATLAS Mitigation Code Signing (AML.M0013) - Code Signing Across AI Pipelines and Deployed Models - **ID**: mitre-atlas-mitigation-code-signing - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0013 (Code Signing). Enforce binary and application integrity with digital signature verification to prevent untrusted code from executing. Advers... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-code-signing.json #### MITRE ATLAS Mitigation Control Access to AI Models and Data at Rest (AML.M0005) - Access Controls on AI Model Registries, Production Models, and Training Data - **ID**: mitre-atlas-mitigation-control-access-to-ai-models-and-data-at-rest - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0005 (Control Access to AI Models and Data at Rest). Establish access controls on internal model registries and limit internal access to productio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-control-access-to-ai-models-and-data-at-rest.json #### MITRE ATLAS Mitigation Control Access to AI Models and Data in Production (AML.M0019) - Access Controls on AI Models and Data in Production - **ID**: mitre-atlas-mitigation-control-access-to-ai-models-and-data-in-production - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0019 (Control Access to AI Models and Data in Production). Require users to verify their identities before accessing a production model. Require a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-control-access-to-ai-models-and-data-in-production.json #### MITRE ATLAS Mitigation Deepfake Detection (AML.M0034) - Deepfake Detection at AI System Boundaries - **ID**: mitre-atlas-mitigation-deepfake-detection - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0034 (Deepfake Detection). Apply deepfake detection algorithms against any untrusted or user-provided data, especially in impactful applications s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-deepfake-detection.json #### MITRE ATLAS Mitigation Encrypt Sensitive Information (AML.M0012) - Encryption of Sensitive AI Information at Rest and in Transit - **ID**: mitre-atlas-mitigation-encrypt-sensitive-information - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0012 (Encrypt Sensitive Information). Encrypt sensitive data such as AI models to protect against adversaries attempting to access sensitive data.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-encrypt-sensitive-information.json #### MITRE ATLAS Mitigation Generative AI Guardrails (AML.M0020) - Pre-Output Safety Controls for Generative AI Systems - **ID**: mitre-atlas-mitigation-generative-ai-guardrails - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0020 (Generative AI Guardrails). Guardrails are safety controls that are placed between a generative AI model and the output shared with the user ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-generative-ai-guardrails.json #### MITRE ATLAS Mitigation Generative AI Guidelines (AML.M0021) - Generative AI Usage Guidelines for Workforce Safety - **ID**: mitre-atlas-mitigation-generative-ai-guidelines - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0021 (Generative AI Guidelines). Guidelines are safety controls that are placed between user-provided input and a generative AI model to help dire... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-generative-ai-guidelines.json #### MITRE ATLAS Mitigation Generative AI Model Alignment (AML.M0022) - Generative AI Model Alignment for Safety and Compliance - **ID**: mitre-atlas-mitigation-generative-ai-model-alignment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0022 (Generative AI Model Alignment). When training or fine-tuning a generative AI model it is important to utilize techniques that improve model ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-generative-ai-model-alignment.json #### MITRE ATLAS Mitigation Human In-the-Loop for AI Agent Actions (AML.M0029) - Human In-the-Loop for High-Impact AI Agent Actions - **ID**: mitre-atlas-mitigation-human-in-the-loop-for-ai-agent-actions - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0029 (Human In-the-Loop for AI Agent Actions). Systems should require the user or another human stakeholder to approve AI agent actions before the... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-human-in-the-loop-for-ai-agent-actions.json #### MITRE ATLAS Mitigation Input and Output Validation for AI Agent Components (AML.M0033) - Input and Output Validation for AI Agent Components - **ID**: mitre-atlas-mitigation-input-and-output-validation-for-ai-agent-components - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0033 (Input and Output Validation for AI Agent Components). Implement validation on inputs and outputs for the tools and data sources used by AI a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-input-and-output-validation-for-ai-agent-components.json #### MITRE ATLAS Mitigation Input Restoration (AML.M0010) - Input Restoration to Neutralise Adversarial Perturbations - **ID**: mitre-atlas-mitigation-input-restoration - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0010 (Input Restoration). Preprocess all inference data to nullify or reverse potential adversarial perturbations. It maps the mitigation to EU AI... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-input-restoration.json #### MITRE ATLAS Mitigation Limit Model Artifact Release (AML.M0001) - Restrictions on Public Release of Model Artifacts and Weights - **ID**: mitre-atlas-mitigation-limit-model-artifact-release - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0001 (Limit Model Artifact Release). Limit public release of technical project details including data, algorithms, model architectures, and model ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-limit-model-artifact-release.json #### MITRE ATLAS Mitigation Limit Public Release of Information (AML.M0000) - Disclosure Restrictions on AI System Information - **ID**: mitre-atlas-mitigation-limit-public-release-of-information - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0000 (Limit Public Release of Information). Limit the public release of technical information about the AI stack used in an organization's product... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-limit-public-release-of-information.json #### MITRE ATLAS Mitigation Maintain AI Dataset Provenance (AML.M0025) - Maintaining AI Dataset Provenance Across the Lifecycle - **ID**: mitre-atlas-mitigation-maintain-ai-dataset-provenance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0025 (Maintain AI Dataset Provenance). Maintain a detailed history of datasets used for AI applications. The history should include information ab... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-maintain-ai-dataset-provenance.json #### MITRE ATLAS Mitigation Memory Hardening (AML.M0031) - Memory Hardening for AI Agents Against Persistent Adversarial Influence - **ID**: mitre-atlas-mitigation-memory-hardening - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0031 (Memory Hardening). Memory Hardening involves developing trust boundaries and secure processes for how an AI agent stores and accesses memory... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-memory-hardening.json #### MITRE ATLAS Mitigation Model Hardening (AML.M0003) - Model Hardening Techniques Against Adversarial Inputs - **ID**: mitre-atlas-mitigation-model-hardening - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0003 (Model Hardening). Use techniques to make AI models robust to adversarial inputs such as adversarial training or network distillation. It map... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-model-hardening.json #### MITRE ATLAS Mitigation Passive AI Output Obfuscation (AML.M0002) - Output Obfuscation Controls to Inhibit Model Extraction - **ID**: mitre-atlas-mitigation-passive-ai-output-obfuscation - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0002 (Passive AI Output Obfuscation). Decreasing the fidelity of model outputs provided to the end user can reduce an adversary's ability to extra... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-passive-ai-output-obfuscation.json #### MITRE ATLAS Mitigation Privileged AI Agent Permissions Configuration (AML.M0026) - Privileged AI Agent Permissions Configuration - **ID**: mitre-atlas-mitigation-privileged-ai-agent-permissions-configuration - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0026 (Privileged AI Agent Permissions Configuration). AI agents may be granted elevated privileges above that of a normal user to enable desired w... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-privileged-ai-agent-permissions-configuration.json #### MITRE ATLAS Mitigation Restrict AI Agent Tool Invocation on Untrusted Data (AML.M0030) - Restrictions on AI Agent Tool Invocation with Untrusted Data - **ID**: mitre-atlas-mitigation-restrict-ai-agent-tool-invocation-on-untrusted-data - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0030 (Restrict AI Agent Tool Invocation on Untrusted Data). Untrusted data can contain prompt injections that invoke an AI agent's tools, potentia... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-restrict-ai-agent-tool-invocation-on-untrusted-data.json #### MITRE ATLAS Mitigation Restrict Library Loading (AML.M0011) - Restrictions on Loading Untrusted Libraries into AI Pipelines - **ID**: mitre-atlas-mitigation-restrict-library-loading - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0011 (Restrict Library Loading). Prevent abuse of library loading mechanisms in the operating system and software to load untrusted code by config... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-restrict-library-loading.json #### MITRE ATLAS Mitigation Restrict Number of AI Model Queries (AML.M0004) - Query Rate Controls to Prevent Model Extraction and Adversarial Probing - **ID**: mitre-atlas-mitigation-restrict-number-of-ai-model-queries - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0004 (Restrict Number of AI Model Queries). Limit the total number and rate of queries a user can perform. It maps the mitigation to EU AI Act, NI... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-restrict-number-of-ai-model-queries.json #### MITRE ATLAS Mitigation Sanitize Training Data (AML.M0007) - Training Data Sanitisation to Prevent Poisoning - **ID**: mitre-atlas-mitigation-sanitize-training-data - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0007 (Sanitize Training Data). Detect and remove or remediate poisoned training data. Training data should be sanitized prior to model training an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-sanitize-training-data.json #### MITRE ATLAS Mitigation Segmentation of AI Agent Components (AML.M0032) - Segmentation of AI Agent Components to Limit Blast Radius - **ID**: mitre-atlas-mitigation-segmentation-of-ai-agent-components - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0032 (Segmentation of AI Agent Components). Define security boundaries around agentic tools and data sources with methods such as API access, cont... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-segmentation-of-ai-agent-components.json #### MITRE ATLAS Mitigation Single-User AI Agent Permissions Configuration (AML.M0027) - Single-User AI Agent Permissions Configuration - **ID**: mitre-atlas-mitigation-single-user-ai-agent-permissions-configuration - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0027 (Single-User AI Agent Permissions Configuration). When deploying an AI agent that acts as a representative of a user and performs actions on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-single-user-ai-agent-permissions-configuration.json #### MITRE ATLAS Mitigation Use Ensemble Methods (AML.M0006) - Ensemble Methods for Adversarial Robustness - **ID**: mitre-atlas-mitigation-use-ensemble-methods - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0006 (Use Ensemble Methods). Use an ensemble of models for inference to increase robustness to adversarial inputs. Some attacks may effectively ev... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-use-ensemble-methods.json #### MITRE ATLAS Mitigation Use Multi-Modal Sensors (AML.M0009) - Multi-Modal Sensor Fusion for Physical World Robustness - **ID**: mitre-atlas-mitigation-use-multi-modal-sensors - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0009 (Use Multi-Modal Sensors). Incorporate multiple sensors to integrate varying perspectives and modalities to avoid a single point of failure s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-use-multi-modal-sensors.json #### MITRE ATLAS Mitigation User Training (AML.M0018) - User Training on AI Risks and Safe Use - **ID**: mitre-atlas-mitigation-user-training - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0018 (User Training). Educate AI model developers to on AI supply chain risks and potentially malicious AI artifacts. Educate users on how to iden... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-user-training.json #### MITRE ATLAS Mitigation Validate AI Model (AML.M0008) - AI Model Validation Before and After Deployment - **ID**: mitre-atlas-mitigation-validate-ai-model - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0008 (Validate AI Model). Validate that AI models perform as intended by testing for backdoor triggers, potential for data leakage, or adversarial... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-validate-ai-model.json #### MITRE ATLAS Mitigation Verify AI Artifacts (AML.M0014) - Verification of AI Artifacts Before Deployment - **ID**: mitre-atlas-mitigation-verify-ai-artifacts - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0014 (Verify AI Artifacts). Verify the cryptographic checksum of all AI artifacts to verify that the file was not modified by an attacker. It maps... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-verify-ai-artifacts.json #### MITRE ATLAS Mitigation Vulnerability Scanning (AML.M0016) - Vulnerability Scanning of AI Components - **ID**: mitre-atlas-mitigation-vulnerability-scanning - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node operationalises MITRE ATLAS mitigation AML.M0016 (Vulnerability Scanning). Vulnerability scanning is used to find potentially exploitable software vulnerabilities to remediate them. File for... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-mitigation-vulnerability-scanning.json #### MITRE ATLAS AI Artifact Collection from Victim ML Infrastructure (AML.T0035.001) - Compliance Obligations for AI Asset Inventory Protection, Model Weight Confidentiality, and ML Pipeline Access Logging - **ID**: mitre-atlas-ml-artifact-collection - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0035.001, focusing on protecting AI artifacts from unauthorized collection, aligned with EU AI Act Articles 9 and 15. Key compliance actions include secu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ml-artifact-collection.json #### MITRE ATLAS ML Model Fingerprinting for Targeted Adversarial Attack Preparation (AML.T0044) - Compliance Obligations for AI Model Identification Prevention, API Response Consistency Controls, and Adversarial Profiling Detection - **ID**: mitre-atlas-ml-model-fingerprinting - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses compliance obligations to prevent ML model fingerprinting under MITRE ATLAS technique AML.T0044, focusing on AI model identification prevention and adversarial profiling detection ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ml-model-fingerprinting.json #### MITRE ATLAS Model (AML.T0010.003) - Adversarial Model threat to AI systems - **ID**: mitre-atlas-model - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0010.003 (Model). AI-enabled systems often rely on open sourced models in various ways. Most commonly, the victim organization may be using these models ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-model.json #### MITRE ATLAS Model Inversion Attack to Reconstruct Training Data (AML.T0028) - Compliance Obligations for Training Data Privacy Protection, GDPR Pseudonymisation of AI Training Sets, and Model Output Privacy Controls - **ID**: mitre-atlas-model-inversion-attack - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses the MITRE ATLAS Model Inversion Attack (AML.T0028), aligning with EU AI Act Articles 9 and 15 for robust AI system security. Key compliance actions include detecting backdoor trigg... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-model-inversion-attack.json #### MITRE ATLAS ML Model Replication for Targeted Attack Development (AML.T0033) - Compliance Obligations for AI Model Confidentiality Controls, Replica Detection Monitoring, and Surrogate Model Attack Mitigation - **ID**: mitre-atlas-model-replication-attack - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0033 on ML model replication for attack staging, aligning with EU AI Act Articles 9 and 15 for risk management and cybersecurity. Key compliance actions ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-model-replication-attack.json #### MITRE ATLAS ML Model Stealing via Inference API Query Extraction (AML.T0047) - Compliance Obligations for AI Intellectual Property Protection, API Rate Limiting and Monitoring, and ML Model Confidentiality Enforcement - **ID**: mitre-atlas-model-stealing-inference-api - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0047, focusing on ML model stealing via inference API, aligning with EU AI Act Articles 9 and 15 for risk management and cybersecurity. Key compliance ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-model-stealing-inference-api.json #### MITRE ATLAS Models (AML.T0002.001) - Adversarial Models threat to AI systems - **ID**: mitre-atlas-models - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0002.001 (Models). Adversaries may acquire public models to use in their operations. Adversaries may seek models used by the victim organization or model... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-models.json #### MITRE ATLAS Modify AI Agent Configuration (AML.T0081) - Adversarial Modify AI Agent Configuration threat to AI systems - **ID**: mitre-atlas-modify-ai-agent-configuration - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0081 (Modify AI Agent Configuration). Adversaries may modify the configuration files for AI agents on a system. This allows malicious changes to persist ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-modify-ai-agent-configuration.json #### MITRE ATLAS Modify AI Model Architecture (AML.T0018.001) - Adversarial Modify AI Model Architecture threat to AI systems - **ID**: mitre-atlas-modify-ai-model-architecture - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0018.001 (Modify AI Model Architecture). Adversaries may directly modify an AI model's architecture to re-define it's behavior. This can include adding o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-modify-ai-model-architecture.json #### MITRE ATLAS Obtain AI and ML Capabilities for Attack Development (AML.T0016) - Compliance Obligations for AI Tool and Library Risk Assessment, Development Environment Security, and Third-Party AI Framework Due Diligence - **ID**: mitre-atlas-obtain-ml-capabilities - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses compliance obligations under MITRE ATLAS technique AML.T0016 for securing AI/ML capabilities against adversarial attacks, aligning with EU AI Act requirements under Articles 5, 15,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-obtain-ml-capabilities.json #### MITRE ATLAS OS Credential Dumping (AML.T0090) - Adversarial use of OS Credential Dumping as adapted in MITRE ATT&CK T1003 - **ID**: mitre-atlas-os-credential-dumping - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0090 (OS Credential Dumping). Adversaries may extract credentials from OS caches, application memory, or other sources on a compromised system. Credentia... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-os-credential-dumping.json #### MITRE ATLAS Persistence Establishment via Compromised AI Agent (AML.T0105) - Compliance Obligations for Agentic AI State Persistence Controls, Agent Memory Integrity, and Autonomous System Long-Term Access Governance - **ID**: mitre-atlas-persistence-via-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0105, focusing on persistence via compromised AI agents, under the EU AI Act Articles 9 and 15, with key compliance actions centered on integrity monitor... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-persistence-via-agent.json #### MITRE ATLAS Spearphishing Attacks Targeting AI and ML Researchers (AML.T0052) - Compliance Obligations for AI Development Team Security Awareness, Social Engineering Defence, and ML Pipeline Insider Threat Governance - **ID**: mitre-atlas-phishing-ml-researcher - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0052, focusing on spearphishing attacks targeting ML researchers, with compliance obligations under the EU AI Act Articles 9 and 15. Key actions include ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-phishing-ml-researcher.json #### MITRE ATLAS Physical Countermeasures (AML.T0008.003) - Adversarial Physical Countermeasures threat to AI systems - **ID**: mitre-atlas-physical-countermeasures - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0008.003 (Physical Countermeasures). Adversaries may acquire or manufacture physical countermeasures to aid or support their attack. These components may... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-physical-countermeasures.json #### MITRE ATLAS Physical Environment Access (AML.T0041) - Adversary Use of Physical Environment Access to Manipulate AI Inputs - **ID**: mitre-atlas-physical-environment-access - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0041 (Physical Environment Access). In addition to the attacks that take place purely in the digital domain, adversaries may also exploit the physical en... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-physical-environment-access.json #### MITRE ATLAS Poison AI Model (AML.T0018.000) - Adversarial Poison AI Model threat to AI systems - **ID**: mitre-atlas-poison-ai-model - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0018.000 (Poison AI Model). Adversaries may manipulate an AI model's weights to change it's behavior or performance, resulting in a poisoned model. Adver... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-poison-ai-model.json #### MITRE ATLAS Poisoned AI Agent Tool (AML.T0011.002) - Adversarial Poisoned AI Agent Tool threat to AI systems - **ID**: mitre-atlas-poisoned-ai-agent-tool - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0011.002 (Poisoned AI Agent Tool). A victim may invoke a poisoned tool when interacting with their AI agent. A poisoned tool may execute an LLM Prompt In... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-poisoned-ai-agent-tool.json #### MITRE ATLAS Pre-Print Repositories (AML.T0000.001) - Adversarial Pre-Print Repositories threat to AI systems - **ID**: mitre-atlas-pre-print-repositories - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0000.001 (Pre-Print Repositories). Pre-Print repositories, such as arXiv, contain the latest academic research papers that haven't been peer reviewed. Th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-pre-print-repositories.json #### MITRE ATLAS Privilege Escalation via AI Agent Tool Access (AML.T0100) - Compliance Obligations for Agentic AI Least-Privilege Enforcement, Permission Boundary Controls, and Agent Privilege Escalation Detection - **ID**: mitre-atlas-privilege-escalation-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0100, focusing on privilege escalation via AI agent tool access, aligning with EU AI Act Articles 9, 14, and 15 for robust cybersecurity and human oversi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-privilege-escalation-agent.json #### MITRE ATLAS Prompt Infiltration via Public-Facing Application (AML.T0093) - Adversarial Prompt Infiltration via Public-Facing Application threat to AI systems - **ID**: mitre-atlas-prompt-infiltration-via-public-facing-application - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0093 (Prompt Infiltration via Public-Facing Application). An adversary may introduce malicious prompts into the victim's system via a public-facing appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-prompt-infiltration-via-public-facing-application.json #### MITRE ATLAS Publish Hallucinated Entities (AML.T0060) - Adversarial Publish Hallucinated Entities threat to AI systems - **ID**: mitre-atlas-publish-hallucinated-entities - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0060 (Publish Hallucinated Entities). Adversaries may create an entity they control, such as a software package, website, or email address to a source ha... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-publish-hallucinated-entities.json #### MITRE ATLAS Publish Poisoned Datasets (AML.T0019) - Adversary Publication of Poisoned Datasets to Public Repositories - **ID**: mitre-atlas-publish-poisoned-datasets - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0019 (Publish Poisoned Datasets). Adversaries may Poison Training Data and publish it to a public location. The poisoned dataset may be a novel dataset o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-publish-poisoned-datasets.json #### MITRE ATLAS Publish Poisoned Models (AML.T0058) - Adversary Publication of Poisoned Models to Public Repositories - **ID**: mitre-atlas-publish-poisoned-models - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0058 (Publish Poisoned Models). Adversaries may publish a poisoned model to a public location such as a model registry or code repository. The poisoned m... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-publish-poisoned-models.json #### MITRE ATLAS RAG Credential Harvesting (AML.T0082) - Adversary Harvesting of Credentials from Retrieval-Augmented Generation Pipelines - **ID**: mitre-atlas-rag-credential-harvesting - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0082 (RAG Credential Harvesting). Adversaries may attempt to use their access to a large language model (LLM) on the victim's system to collect credentia... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-rag-credential-harvesting.json #### MITRE ATLAS RAG Databases (AML.T0085.000) - Adversarial RAG Databases threat to AI systems - **ID**: mitre-atlas-rag-databases - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0085.000 (RAG Databases). Adversaries may prompt the AI service to retrieve data from a RAG database. This can include the majority of an organization's ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-rag-databases.json #### MITRE ATLAS RAG Poisoning Techniques (AML.T0070) - Persistence and Information Integrity Attacks Against Retrieval-Augmented Generation Systems Used in Regulated AI Applications - **ID**: mitre-atlas-rag-poisoning - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS RAG Poisoning Techniques (AML.T0070), focusing on adversarial attacks that compromise retrieval-augmented generation systems by poisoning data sources or manipulating o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-rag-poisoning.json #### MITRE ATLAS AI Reconnaissance via Victim Publicly Available Research (AML.T0000) - Compliance Obligations for AI Model Card Minimisation, Architecture Disclosure Controls, and Adversarial Research Exposure Governance - **ID**: mitre-atlas-reconnaissance-victim-research - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0000, focusing on adversarial reconnaissance via publicly available research, aligning with EU AI Act Articles 9 and 15 for risk management and cybersecu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-reconnaissance-victim-research.json #### MITRE ATLAS Reputational Harm (AML.T0048.001) - Adversarial Reputational Harm threat to AI systems - **ID**: mitre-atlas-reputational-harm - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0048.001 (Reputational Harm). Reputational harm involves a degradation of public perception and trust in organizations. Examples of reputation-harming in... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-reputational-harm.json #### MITRE ATLAS Resource Development and Infrastructure Building via AI Agent (AML.T0110) - Compliance Obligations for Agentic AI Resource Acquisition Controls, Agent Infrastructure Governance, and Autonomous Capability Development Detection - **ID**: mitre-atlas-resource-development-agent - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses compliance obligations under the EU AI Act for mitigating adversarial AI techniques like MITRE ATLAS AML.T0110 (Resource Development via AI Agents), focusing on controls for resour... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-resource-development-agent.json #### MITRE ATLAS Resource-Intensive Queries (AML.T0034.001) - Adversarial Resource-Intensive Queries threat to AI systems - **ID**: mitre-atlas-resource-intensive-queries - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0034.001 (Resource-Intensive Queries). Adversaries may craft inputs specifically designed to increase the compute resources required for processing. For ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-resource-intensive-queries.json #### MITRE ATLAS Reverse Shell (AML.T0072) - Adversarial Reverse Shell threat to AI systems - **ID**: mitre-atlas-reverse-shell - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0072 (Reverse Shell). Adversaries may utilize a reverse shell to communicate and control the victim system. Typically, a user uses a client to connect to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-reverse-shell.json #### MITRE ATLAS Search Application Repositories (AML.T0004) - Adversary Reconnaissance via Application Repository Search - **ID**: mitre-atlas-search-application-repositories - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0004 (Search Application Repositories). Adversaries may search open application repositories during targeting. Examples of these include Google Play, the... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-search-application-repositories.json #### MITRE ATLAS Search Open Websites/Domains (AML.T0095) - Adversarial use of Search Open Websites/Domains as adapted in MITRE ATT&CK T1593 - **ID**: mitre-atlas-search-open-websites-domains - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0095 (Search Open Websites/Domains). Adversaries may search public websites and/or domains for information about victims that can be used during targetin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-search-open-websites-domains.json #### MITRE ATLAS Discovery of Victim AI Artifacts via Open-Source Intelligence (AML.T0050) - Compliance Obligations for AI Asset Inventory Management, Model Documentation Minimisation, and AI System Exposure Controls - **ID**: mitre-atlas-search-victim-ai-artifacts - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0050, focusing on defending against OSINT-based discovery of AI artifacts, aligned with EU AI Act Articles 9 and 15 for risk management and cybersecurity... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-search-victim-ai-artifacts.json #### MITRE ATLAS Serverless (AML.T0008.004) - Adversarial use of Serverless as adapted in MITRE ATT&CK T1583.007 - **ID**: mitre-atlas-serverless - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0008.004 (Serverless). Adversaries may purchase and configure serverless cloud infrastructure, such as Cloudflare Workers, AWS Lambda functions, or Googl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-serverless.json #### MITRE ATLAS Societal Harm (AML.T0048.002) - Adversarial Societal Harm threat to AI systems - **ID**: mitre-atlas-societal-harm - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0048.002 (Societal Harm). Societal harms might generate harmful outcomes that reach either the general public or specific vulnerable groups such as the e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-societal-harm.json #### MITRE ATLAS Software Tools (AML.T0016.001) - Adversarial use of Software Tools as adapted in MITRE ATT&CK T1588.002 - **ID**: mitre-atlas-software-tools - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0016.001 (Software Tools). Adversaries may search for and obtain software tools to support their operations. Software designed for legitimate use may be ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-software-tools.json #### MITRE ATLAS Spamming AI System with Chaff Data (AML.T0046) - Adversary Spamming of AI System with Chaff Data to Degrade Service - **ID**: mitre-atlas-spamming-ai-system-with-chaff-data - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0046 (Spamming AI System with Chaff Data). Adversaries may spam the AI system with chaff data that causes increase in the number of detections. This can ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-spamming-ai-system-with-chaff-data.json #### MITRE ATLAS Spearphishing via Social Engineering LLM (AML.T0052.000) - Adversarial Spearphishing via Social Engineering LLM threat to AI systems - **ID**: mitre-atlas-spearphishing-via-social-engineering-llm - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0052.000 (Spearphishing via Social Engineering LLM). Adversaries may turn LLMs into targeted social engineers. LLMs are capable of interacting with users... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-spearphishing-via-social-engineering-llm.json #### MITRE ATLAS Special Character Sets (AML.T0069.000) - Adversarial Special Character Sets threat to AI systems - **ID**: mitre-atlas-special-character-sets - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0069.000 (Special Character Sets). Adversaries may discover delimiters and special characters sets used by the large language model. For example, delimit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-special-character-sets.json #### MITRE ATLAS Stage Capabilities (AML.T0079) - Adversarial use of Stage Capabilities as adapted in MITRE ATT&CK T1608 - **ID**: mitre-atlas-stage-capabilities - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0079 (Stage Capabilities). Adversaries may upload, install, or otherwise set up capabilities that can be used during targeting. To support their operatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-stage-capabilities.json #### MITRE ATLAS System Instruction Keywords (AML.T0069.001) - Adversarial System Instruction Keywords threat to AI systems - **ID**: mitre-atlas-system-instruction-keywords - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0069.001 (System Instruction Keywords). Adversaries may discover keywords that have special meaning to the large language model (LLM), such as function n... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-system-instruction-keywords.json #### MITRE ATLAS System Prompt (AML.T0069.002) - Adversarial System Prompt threat to AI systems - **ID**: mitre-atlas-system-prompt - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0069.002 (System Prompt). Adversaries may discover a large language model's system instructions provided by the AI system builder to learn about the syst... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-system-prompt.json #### MITRE ATLAS Commodity-Grade Hardware Supply Chain Risk (AML.T0008.001) - Adversarial use of off-the-shelf hardware in the AI supply chain - **ID**: mitre-atlas-t0008-001-commodity-grade-hardware-risk - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0008.001 (Consumer Hardware). Adversaries may acquire consumer hardware to conduct their attacks. Owning the hardware provides the adversary with complet... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-t0008-001-commodity-grade-hardware-risk.json #### MITRE ATLAS Technical Blogs (AML.T0000.002) - Adversarial Technical Blogs threat to AI systems - **ID**: mitre-atlas-technical-blogs - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0000.002 (Technical Blogs). Research labs at academic institutions and company R&D divisions often have blogs that highlight their use of artificial inte... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-technical-blogs.json #### MITRE ATLAS Thread (AML.T0080.001) - Adversarial Thread threat to AI systems - **ID**: mitre-atlas-thread - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0080.001 (Thread). Adversaries may introduce malicious instructions into a chat thread of a large language model (LLM) to cause behavior changes which pe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-thread.json #### MITRE ATLAS Tool Definitions (AML.T0084.001) - Adversarial Tool Definitions threat to AI systems - **ID**: mitre-atlas-tool-definitions - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0084.001 (Tool Definitions). Adversaries may discover the tools the AI agent has access to. By identifying which tools are available, the adversary can u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-tool-definitions.json #### MITRE ATLAS Train Proxy via Gathered AI Artifacts (AML.T0005.000) - Adversarial Train Proxy via Gathered AI Artifacts threat to AI systems - **ID**: mitre-atlas-train-proxy-via-gathered-ai-artifacts - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0005.000 (Train Proxy via Gathered AI Artifacts). Proxy models may be trained from AI artifacts (such as data, model architectures, and pre-trained model... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-train-proxy-via-gathered-ai-artifacts.json #### MITRE ATLAS Train Proxy via Replication (AML.T0005.001) - Adversarial Train Proxy via Replication threat to AI systems - **ID**: mitre-atlas-train-proxy-via-replication - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0005.001 (Train Proxy via Replication). Adversaries may replicate a private model. By repeatedly querying the victim's AI Model Inference API Access, the... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-train-proxy-via-replication.json #### MITRE ATLAS Transfer Learning Attack via Pre-Trained Model Poisoning (AML.T0027) - Compliance Obligations for Foundation Model Due Diligence, Transfer Learning Risk Assessment, and Fine-Tuning Data Governance - **ID**: mitre-atlas-transfer-learning-attack - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0027 (Develop Adversarial Examples), aligning with EU AI Act Articles 9 and 15 for robust AI system defense. Key compliance action involves implementing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-transfer-learning-attack.json #### MITRE ATLAS Triggered (AML.T0051.002) - Adversarial Triggered threat to AI systems - **ID**: mitre-atlas-triggered - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0051.002 (Triggered). An adversary may trigger a prompt injection via a user action or event that occurs within the victim's environment. Triggered promp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-triggered.json #### MITRE ATLAS Unsafe AI Artifacts (AML.T0011.000) - Adversarial Unsafe AI Artifacts threat to AI systems - **ID**: mitre-atlas-unsafe-ai-artifacts - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0011.000 (Unsafe AI Artifacts). Adversaries may develop unsafe AI artifacts that when executed have a deleterious effect. The adversary can use this tech... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-unsafe-ai-artifacts.json #### MITRE ATLAS Unsecured Credentials (AML.T0055) - Adversarial use of Unsecured Credentials as adapted in MITRE ATT&CK T1552 - **ID**: mitre-atlas-unsecured-credentials - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0055 (Unsecured Credentials). Adversaries may search compromised systems to find and obtain insecurely stored credentials. These credentials can be store... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-unsecured-credentials.json #### MITRE ATLAS Use Alternate Authentication Material (AML.T0091) - Adversarial use of Use Alternate Authentication Material as adapted in MITRE ATT&CK T1550 - **ID**: mitre-atlas-use-alternate-authentication-material - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0091 (Use Alternate Authentication Material). Adversaries may use alternate authentication material, such as password hashes, Kerberos tickets, and appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-use-alternate-authentication-material.json #### MITRE ATLAS Use Pre-Trained Model (AML.T0005.002) - Adversarial Use Pre-Trained Model threat to AI systems - **ID**: mitre-atlas-use-pre-trained-model - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0005.002 (Use Pre-Trained Model). Adversaries may use an off-the-shelf pre-trained model as a proxy for the victim model to aid in staging the attack. De... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-use-pre-trained-model.json #### MITRE ATLAS User Execution of Malicious ML Models and Adversarial Notebooks (AML.T0011) - Compliance Obligations for AI System Access Controls, Execution Safeguards, and Malicious Model Ingestion Prevention - **ID**: mitre-atlas-user-execution-ml-model - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses compliance obligations to prevent user execution of malicious ML models and adversarial notebooks under MITRE ATLAS technique AML.T0011, aligning with EU AI Act Article 15 (accurac... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-user-execution-ml-model.json #### MITRE ATLAS User Harm (AML.T0048.003) - Adversarial User Harm threat to AI systems - **ID**: mitre-atlas-user-harm - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0048.003 (User Harm). User harms may encompass a variety of harm types including financial and reputational that are directed at or felt by individual vi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-user-harm.json #### MITRE ATLAS Valid ML Platform Account Abuse for Unauthorised AI Access (AML.T0012) - Compliance Obligations for AI Platform Identity and Access Management, Service Account Controls, and Privileged AI Pipeline Access Governance - **ID**: mitre-atlas-valid-ml-platform-accounts - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses compliance obligations to mitigate MITRE ATLAS technique AML.T0012 (Valid ML Platform Account Abuse) for unauthorised AI access, aligning with EU AI Act requirements under Articles... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-valid-ml-platform-accounts.json #### MITRE ATLAS Verify Attack (AML.T0042) - Adversarial Verification of Attack Effectiveness Before Deployment - **ID**: mitre-atlas-verify-attack - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0042 (Verify Attack). Adversaries can verify the efficacy of their attack via an inference API or access to an offline copy of the target model. This giv... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-verify-attack.json #### MITRE ATLAS Victim AI Model Replication for Surrogate Attack Development (AML.T0026) - Compliance Obligations for AI Intellectual Property Protection, Model Cloning Detection, and API Access Governance - **ID**: mitre-atlas-victim-model-replication - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0026 (Create Proxy ML Model), aligning with EU AI Act Articles 9 and 15 for robust AI system protection. Key compliance actions include API response limi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-victim-model-replication.json #### MITRE ATLAS AI Reconnaissance via Victim-Owned Websites and API Endpoints (AML.T0002) - Compliance Obligations for AI Service Exposure Minimisation, API Security Governance, and Information Disclosure Controls - **ID**: mitre-atlas-victim-website-reconnaissance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0002, focusing on adversary reconnaissance via victim-owned websites and APIs, under the EU AI Act Articles 9 and 15. Key compliance actions include mini... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-victim-website-reconnaissance.json #### MITRE ATLAS Virtualization/Sandbox Evasion (AML.T0097) - Adversarial use of Virtualization/Sandbox Evasion as adapted in MITRE ATT&CK T1497 - **ID**: mitre-atlas-virtualization-sandbox-evasion - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0097 (Virtualization/Sandbox Evasion). Adversaries may employ various means to detect and avoid virtualization and analysis environments. This may includ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-virtualization-sandbox-evasion.json #### MITRE ATLAS White-Box Optimization (AML.T0043.000) - Adversarial White-Box Optimization threat to AI systems - **ID**: mitre-atlas-white-box-optimization - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses MITRE ATLAS technique AML.T0043.000 (White-Box Optimization). In White-Box Optimization, the adversary has full access to the target model and optimizes the adversarial example dir... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-white-box-optimization.json #### Mexico Agenda Nacional de IA 2024-2030 (ANIA), Senado Comisión de Innovación e IA (8 October 2024), Iniciativa Ley Federal IA (April 2024 Morena Senador Monreal); Ley Federal de Protección de Datos Personales en Posesión de los Particulares (LFPDPPP) - **ID**: mx-agenda-nacional-ia-2024-2030-senado-comision-ia-iniciativa-ley-federal - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Mexico does not yet have a consolidated national AI law but operates a multi-track AI governance architecture built around the Agenda Nacional de la Inteligencia Artificial para México 2024-2030 publi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mx-agenda-nacional-ia-2024-2030-senado-comision-ia-iniciativa-ley-federal.json #### NIST AI 100-2 E2023 - Adversarial Machine Learning: Taxonomy and Terminology for Attacks and Mitigations - **ID**: nist-ai-100-2-adversarial-ml - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This NIST Special Publication establishes a comprehensive taxonomy and common terminology for describing adversarial machine learning (AML) attacks and mitigations. It provides a structured vocabulary... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-100-2-adversarial-ml.json #### NIST AI 100-2 Adversarial Machine Learning Taxonomy and Terminology - Compliance Obligations for Standardised Adversarial AI Risk Categorisation, Attack Type Classification, and Adversarial ML Vocabulary Under NIST Standards - **ID**: nist-ai-100-2-adversarial-ml-taxonomy-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations under NIST AI 100-2 for categorising adversarial AI risks, classifying attack types such as poisoning and evasion, and standardising adversarial ML terminolog... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-100-2-adversarial-ml-taxonomy-2023.json #### NIST AI 100-2 E2023 - Adversarial Machine Learning: A Taxonomy and Terminology of Attacks and Mitigations (January 2024) - **ID**: nist-ai-100-2-adversarial-ml-taxonomy-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: NIST AI 100-2 E2023 (final published January 4, 2024) establishes a standardised taxonomy and common terminology for adversarial machine learning (AML) attacks and mitigations. The document organises ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-100-2-adversarial-ml-taxonomy-2024.json #### Adversarial Machine Learning: A Taxonomy and Terminology of Attacks and Mitigations - **ID**: nist-ai-100-2-aml-taxonomy - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This NIST Trustworthy and Responsible AI report develops a taxonomy of concepts and defines terminology in the field of adversarial machine learning (AML). The taxonomy is built on surveying the AML l... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-100-2-aml-taxonomy.json #### AI Red Teaming (NIST AI 100-4) - **ID**: nist-ai-100-4-redteam - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: Adversarial red teaming constitutes a mandatory control for designated AI systems, aligning with directives in U.S. Executive Order 14110 and fulfilling the accuracy, robustness, and cybersecurity req... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-100-4-redteam.json #### Reducing Risks Posed by Synthetic Content An Overview of Technical Approaches to Digital Content Transparency - **ID**: nist-ai-100-4-synthetic-content - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This report examines existing standards, tools, methods, and practices for authenticating digital content, tracking its provenance, labeling and detecting synthetic content, and preventing generative ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-100-4-synthetic-content.json #### A Plan for Global Engagement on AI Standards - **ID**: nist-ai-100-5-global-engagement-plan - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Recognizing the importance of technical standards in shaping development and use of Artificial Intelligence (AI), the President’s October 2023 Executive Order on the Safe, Secure, and Trustworthy Deve... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-100-5-global-engagement-plan.json #### Artificial Intelligence Risk Management Framework: Generative Artificial Intelligence Profile - **ID**: nist-ai-600-1-gen-ai-profile - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This document is a cross-sectoral profile of and a companion resource for the AI Risk Management Framework (AI RMF 1.0) for Generative AI, developed pursuant to Executive Order 14110 on Safe, Secure, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-600-1-gen-ai-profile.json #### Artificial Intelligence Risk Management Framework (AI RMF 1.0): Generative Artificial Intelligence Profile - **ID**: nist-ai-600-1-generative-ai-profile-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This NIST profile extends the AI Risk Management Framework (AI RMF 1.0) to address the unique risks of generative AI, requiring organizations to identify, assess, and manage threats such as data poiso... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-600-1-generative-ai-profile-2024.json #### Adversarial Machine Learning: A Taxonomy and Terminology of Attacks and Mitigations - **ID**: nist-ai-adversarial-machine-learning - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This NIST Trustworthy and Responsible AI report develops a taxonomy of concepts and defines terminology in the field of adversarial machine learning (AML), which may aid in securing applications of ar... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-adversarial-machine-learning.json #### Artificial Intelligence Risk Management Framework (AI RMF 1.0) - **ID**: nist-ai-rmf-1-0 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The goal of the AI RMF is to offer a resource to the organizations designing, developing, deploying, or using AI systems to help manage the many risks of AI and promote trustworthy and responsible dev... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-1-0.json #### NIST AI RMF 1.0 Govern Function - Organisational Policies, Culture, Roles and Accountability Structures for AI Risk Management - **ID**: nist-ai-rmf-1-0-govern-function - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The NIST AI RMF GOVERN function establishes the foundational context for managing AI risks by requiring organizations to cultivate a risk-aware culture, define clear policies, and assign specific role... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-1-0-govern-function.json #### Artificial Intelligence Risk Management Framework (AI RMF 1.0): MANAGE Function - Risk Response, Treatment, and Incident Planning - **ID**: nist-ai-rmf-1-0-manage-function - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The NIST AI RMF MANAGE function requires organizations to develop and implement plans for responding to and recovering from identified AI risks, including prioritizing risk responses, treating residua... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-1-0-manage-function.json #### NIST AI RMF 1.0 Map Function - AI System Context, Categorisation, Risk Identification and Stakeholder Impact Analysis - **ID**: nist-ai-rmf-1-0-map-function - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The NIST AI RMF MAP function requires organizations to establish the context for managing AI system risks by identifying the system's purpose, categorizing its potential impacts, and analyzing how it ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-1-0-map-function.json #### NIST AI RMF 1.0 Measure Function - AI Risk Analysis, Bias Testing, Explainability Assessment and Performance Benchmarking - **ID**: nist-ai-rmf-1-0-measure-function - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The NIST AI RMF MEASURE function requires organizations to employ quantitative, qualitative, or mixed-method tools, techniques, and methodologies to analyze, assess, and monitor AI risks and their imp... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-1-0-measure-function.json #### NIST AI Risk Management Framework 1.0 (2023) - Govern, Map, Measure, Manage - **ID**: nist-ai-rmf-1-0-risk-management-framework - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: NIST AI RMF 1.0 (January 2023) provides a voluntary, risk-based framework for organisations to manage AI-specific risks across the AI system lifecycle: the GOVERN function establishes policies and cul... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-1-0-risk-management-framework.json #### NIST AI RMF: Response - **ID**: nist-ai-rmf-manage - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: NIST AI RMF MANAGE is the action function of the AI Risk Management Framework (NIST AI 100-1, January 2023). It converts the risk assessments produced by MAP and MEASURE into concrete treatment decisi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-manage.json #### NIST AI RMF MANAGE Function - AI Risk Treatment, Response and Recovery (NIST AI 100-1) - **ID**: nist-ai-rmf-manage-function - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The NIST AI RMF MANAGE function requires organizations to implement a documented AI risk management process by prioritizing, allocating resources for, and responding to identified and analyzed risks o... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-manage-function.json #### NIST AI RMF: Risk Context - **ID**: nist-ai-rmf-map - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: NIST AI RMF MAP is the discovery function of the AI Risk Management Framework (NIST AI 100-1, January 2023). It establishes the context for each AI system - its intended use, deployment environment, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-map.json #### Artificial Intelligence Risk Management Framework (AI RMF 1.0): MAP Function - AI Risk Contextualization and Prioritization - **ID**: nist-ai-rmf-map-function - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The NIST AI RMF MAP function requires organizations to establish the context to frame AI risks by identifying system purposes, scope, potential impacts, and relevant stakeholders. This foundational st... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-map-function.json #### NIST AI RMF: Metrics - **ID**: nist-ai-rmf-measure - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: NIST AI RMF MEASURE is the evaluation function of the AI Risk Management Framework (NIST AI 100-1, January 2023). It converts the context established in MAP into quantitative and qualitative assessmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-measure.json #### NIST AI RMF MEASURE Function - AI Risk Analysis and Measurement (NIST AI 100-1) - **ID**: nist-ai-rmf-measure-function - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The NIST AI RMF MEASURE function requires organizations to develop and apply metrics and methodologies for continuous analysis, assessment, and monitoring of AI system risks throughout the lifecycle. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-measure-function.json #### NIST AI Risk Management Framework Roadmap (January 26, 2023) - **ID**: nist-ai-rmf-roadmap-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The NIST AI Risk Management Framework Roadmap was published on January 26, 2023 alongside the NIST AI RMF 1.0 (NIST AI 100-1). The Roadmap is the forward-looking companion document setting out priorit... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-roadmap-2023.json #### Automation Support for Control Assessments: Project Update and Vision - **ID**: nist-cswp-30-automation-support - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: NIST Interagency Report (IR) 8011 is a multi-volume series that provides a blueprint for supporting automated control assessments. It proposes an approach for creating specific tests, denominated as '... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-cswp-30-automation-support.json #### NISTIR 8202 Blockchain Technology Overview - **ID**: nist-ir-8202-blockchain-overview - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Blockchains are tamper evident and tamper resistant digital ledgers implemented in a distributed fashion (i.e., without a central repository) and usually without a central authority (i.e., a bank, com... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8202-blockchain-overview.json #### The Language of Trustworthy AI: An In-Depth Glossary of Terms - **ID**: nist-language-of-trustworthy-ai - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This document is a guide and record of the development for the NIST (National Institute of Standards and Technology) glossary of terms for trustworthy and responsible artificial intelligence (AI) and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-language-of-trustworthy-ai.json #### Towards a Standard for Identifying and Managing Bias in Artificial Intelligence - **ID**: nist-sp-1270-ai-bias-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This NIST Special Publication provides a foundational framework for identifying and managing bias in artificial intelligence systems throughout the AI lifecycle. It applies to developers, deployers, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1270-ai-bias-2022.json #### Towards a Standard for Identifying and Managing Bias in Artificial Intelligence - **ID**: nist-sp-1270-managing-ai-bias - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This special publication describes the challenges of bias in artificial intelligence and provides examples of how and why it can erode public trust. It identifies three categories of bias in AI-system... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1270-managing-ai-bias.json #### NIST SP 1270 Towards Explainable AI - Explainability Principles, Technical Approaches and Policy Implications for AI Systems - **ID**: nist-sp-1270-towards-explainable-ai - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: NIST SP 1270 provides a comprehensive overview of Explainable AI (XAI), outlining principles, technical approaches, and policy implications for developers, evaluators, and policymakers. It builds upon... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1270-towards-explainable-ai.json #### Foundational Cybersecurity Activities for IoT Device Manufacturers - **ID**: nistir-8259-iot-device-manufacturers - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This publication provides recommendations for manufacturers to improve the securability of the Internet of Things (IoT) devices they create. Many IoT devices lack cybersecurity capabilities that custo... - **Discovery URL**: https://bidda.com/api/v1/nodes/nistir-8259-iot-device-manufacturers.json #### NISTIR 8312 Four Principles of Explainable Artificial Intelligence - **ID**: nistir-8312-explainable-ai-principles - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This document introduces four principles for explainable artificial intelligence (AI) that comprise fundamental properties for explainable AI systems. For AI systems that are intended or required to b... - **Discovery URL**: https://bidda.com/api/v1/nodes/nistir-8312-explainable-ai-principles.json #### New Zealand Algorithm Charter for Aotearoa New Zealand 2020 - Compliance Obligations for Government Algorithm Use, Transparency Requirements for Public Sector AI, and Human Review Commitments for Algorithmic Decision-Making - **ID**: nz-algorithm-charter-government-2020 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for New Zealand government agencies under the Algorithm Charter 2020, focusing on transparency, human oversight, and accountability in algorithmic decision-ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-algorithm-charter-government-2020.json #### The OECD AI Principles - **ID**: oecd-ai-principles - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The OECD AI Principles are the first intergovernmental standard on AI, designed to promote innovative, trustworthy artificial intelligence that respects human rights and democratic values. While AI ho... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-ai-principles.json #### OECD Recommendation on Artificial Intelligence (2019, Updated May 2024) - Principles for Trustworthy AI and Recommendations to Policymakers - **ID**: oecd-ai-principles-2019-2024-update-trustworthy-ai - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The OECD Recommendation on Artificial Intelligence is an international intergovernmental standard adopted by the OECD Council on 22 May 2019 and updated on 3 May 2024. The Recommendation consists of (... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-ai-principles-2019-2024-update-trustworthy-ai.json #### OECD AI Principles 2024 - Updated Recommendation on Artificial Intelligence - **ID**: oecd-ai-principles-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The OECD Recommendation of the Council on Artificial Intelligence (originally adopted May 2019, significantly updated May 2024) establishes the foundational international AI governance framework that ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-ai-principles-2024.json #### OECD AI Principles 2024 (Updated Recommendation) - Trustworthy AI Values and Implementation - **ID**: oecd-ai-principles-2024-recommendation-updated-framework - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The updated OECD Recommendation on AI (OECD/LEGAL/0449, revised 2024) provides the international reference framework for trustworthy AI governance adopted by 46 countries: 5 values-based principles (i... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-ai-principles-2024-recommendation-updated-framework.json #### OECD AI Principles 2024 Update - Inclusive Growth, Human-Centred Values, Transparency, Robustness and Accountability - **ID**: oecd-ai-principles-2024-update - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The OECD AI Principles, updated in May 2024, provide a global, non-binding framework for governments and organizations to ensure AI systems are trustworthy, human-centric, and respect the rule of law.... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-ai-principles-2024-update.json #### OECD Recommendation on Artificial Intelligence (2024 Update) - Five OECD AI Principles: Inclusive Growth, Human-Centred Values, Transparency, Robustness and Accountability - **ID**: oecd-ai-principles-recommendation-2024 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: The OECD AI Principles require AI actors and policymakers to ensure AI systems are developed and used in ways that respect human rights, promote transparency, and ensure robustness and accountability.... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-ai-principles-recommendation-2024.json #### OpenAI Preparedness Framework 2023 - Model Capability Evaluation: Cybersecurity, CBRN, Persuasion and Model Autonomy Risk Scoring, Critical (Red)/High/Medium/Low Thresholds, Safety Advisory Group Veto Power, Post-Mitigation Score Requirement Before Deployment - **ID**: openai-preparedness-framework-2023 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This framework requires developers of advanced AI models to evaluate and score capabilities in high-risk domains including cybersecurity, chemical-biological-radiological-nuclear (CBRN), persuasion, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/openai-preparedness-framework-2023.json #### OWASP LLM Top 10 LLM03 - Training Data Poisoning - Compliance Obligations for AI Training Data Integrity Controls, Provenance Verification, and Poisoning Attack Mitigation Under EU AI Act Article 10 - **ID**: owasp-llm-03-training-data-poisoning - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines obligations for AI training data integrity, provenance verification, and mitigation of poisoning attacks as per OWASP LLM Top 10 (LLM03), reinforced by EU AI Act Article 10 requirem... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-03-training-data-poisoning.json #### OWASP LLM Top 10 LLM04 - Model Denial of Service - Compliance Obligations for AI System Availability Controls, Resource Exhaustion Prevention, and LLM Operational Resilience Under DORA and EU AI Act - **ID**: owasp-llm-04-model-denial-of-service - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines obligations for preventing Model Denial of Service (DoS) attacks on LLMs as per OWASP LLM Top 10 (LLM04), focusing on availability controls and resource exhaustion prevention, with ... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-04-model-denial-of-service.json #### OWASP LLM Top 10 LLM05 - Supply Chain Vulnerabilities in LLM Applications - Compliance Obligations for AI Supply Chain Risk Management, Third-Party Model and Plugin Governance, and LLM Dependency Security Controls - **ID**: owasp-llm-05-supply-chain-vulnerabilities - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines obligations for managing supply chain vulnerabilities in LLM applications as per OWASP LLM Top 10 (LLM05), focusing on third-party model governance, plugin security, and dependency ... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-05-supply-chain-vulnerabilities.json #### OWASP LLM Top 10 LLM06 - Sensitive Information Disclosure via LLM Outputs - Compliance Obligations for AI Output Data Leakage Prevention, Training Data Exposure Controls, and GDPR Data Minimisation in LLM Applications - **ID**: owasp-llm-06-sensitive-information-disclosure - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines obligations for preventing sensitive information disclosure in LLM outputs under OWASP LLM Top 10 (LLM06), focusing on data leakage prevention, training data exposure controls, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-06-sensitive-information-disclosure.json #### OWASP LLM Top 10 LLM07 - Insecure Plugin and Tool Design in LLM Applications - Compliance Obligations for LLM Plugin Security Controls, Tool Permission Governance, and AI Extension Trust Boundary Enforcement - **ID**: owasp-llm-07-insecure-plugin-design - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for securing plugins and tools in LLM applications as per OWASP LLM Top 10 (LLM07), focusing on plugin security controls, permission governance, and trust bou... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-07-insecure-plugin-design.json #### OWASP LLM Top 10 LLM08 - Excessive Agency in LLM and Agentic AI Systems - Compliance Obligations for Agentic AI Scope Limitation, Human Oversight Requirements, and Autonomous Action Control Under EU AI Act Article 14 - **ID**: owasp-llm-08-excessive-agency - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for mitigating excessive agency in LLM and agentic AI systems as per OWASP LLM Top 10 (LLM08), focusing on scope limitation, human oversight, and autonomous a... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-08-excessive-agency.json #### OWASP LLM Top 10 LLM09 - Overreliance on LLM Outputs Without Human Oversight - Compliance Obligations for AI-Assisted Decision Governance, Human Review Requirements, and LLM Output Verification Controls - **ID**: owasp-llm-09-overreliance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node addresses obligations to prevent overreliance on Large Language Model (LLM) outputs by enforcing human oversight, as outlined in OWASP LLM Top 10 (LLM09), and aligns with EU AI Act (Regulati... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-09-overreliance.json #### OWASP Top 10 for Large Language Model Applications - De Facto Industry-Standard LLM Security Vulnerability Taxonomy (Project under the OWASP GenAI Security Project; Version 2025 Current; Version 1.1 Verified Below) - **ID**: owasp-llm-top-10-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The OWASP Top 10 for Large Language Model Applications is the de facto industry-standard taxonomy of the most critical security vulnerabilities in LLM applications, maintained by the OWASP Foundation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-top-10-2025.json #### OWASP LLM Top 10 (2025) - LLM07:2025 System Prompt Leakage - **ID**: owasp-llm-top-10-2025-llm07-system-prompt-leakage - **Category**: AI Governance & Law - **Version**: 2.0.0 - **BLUF**: OWASP LLM Top 10 (2025) LLM07:2025 System Prompt Leakage. The system prompt leakage vulnerability in LLMs refers to the risk that the system prompts or instructions used to steer the behavior of the m... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-top-10-2025-llm07-system-prompt-leakage.json #### OWASP LLM Top 10 (2025) - LLM08:2025 Vector and Embedding Weaknesses - **ID**: owasp-llm-top-10-2025-llm08-vector-and-embedding-weaknesses - **Category**: AI Governance & Law - **Version**: 2.0.0 - **BLUF**: OWASP LLM Top 10 (2025) LLM08:2025 Vector and Embedding Weaknesses. Vectors and embeddings vulnerabilities present significant security risks in systems utilizing Retrieval Augmented Generation (RAG) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-top-10-2025-llm08-vector-and-embedding-weaknesses.json #### OWASP LLM Top 10 (2025) - LLM09:2025 Misinformation - **ID**: owasp-llm-top-10-2025-llm09-misinformation - **Category**: AI Governance & Law - **Version**: 2.0.0 - **BLUF**: OWASP LLM Top 10 (2025) LLM09:2025 Misinformation. Misinformation from LLMs poses a core vulnerability for applications relying on these models. Misinformation occurs when LLMs produce false or mislea... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-top-10-2025-llm09-misinformation.json #### OWASP LLM Top 10 (2025) - LLM10:2025 Unbounded Consumption - **ID**: owasp-llm-top-10-2025-llm10-unbounded-consumption - **Category**: AI Governance & Law - **Version**: 2.0.0 - **BLUF**: OWASP LLM Top 10 (2025) LLM10:2025 Unbounded Consumption. Unbounded Consumption refers to the process where a Large Language Model (LLM) generates outputs based on input queries or prompts. Inference ... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-top-10-2025-llm10-unbounded-consumption.json #### Paris AI Action Summit 2025 - Statement on Inclusive and Sustainable AI for People and Planet - **ID**: paris-ai-action-summit-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Paris AI Action Summit, held on 10-11 February 2025 at the Grand Palais under the French presidency of the EU Council, was the third international AI safety summit in the Bletchley Process - it ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/paris-ai-action-summit-2025.json #### Peru Ley N° 31814 (5 July 2023) - Ley que Promueve el Uso de la Inteligencia Artificial; Decreto Supremo 115-2025-PCM (9 September 2025) Reglamento; SGTD Secretaría de Gobierno y Transformación Digital as AI Authority - **ID**: pe-ley-31814-2023-uso-inteligencia-artificial-ds-115-2025-pcm - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Peru's Ley N° 31814 'Ley que promueve el uso de la inteligencia artificial en favor del desarrollo económico y social del país' was published in El Peruano on 5 July 2023 and is the first dedicated AI... - **Discovery URL**: https://bidda.com/api/v1/nodes/pe-ley-31814-2023-uso-inteligencia-artificial-ds-115-2025-pcm.json #### Reducing Risks Posed by Synthetic Content: An Overview of Technical Approaches to Digital Content Transparency - **ID**: reducing-risks-posed-by-synthetic-content - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This report examines the existing standards, tools, methods, and practices for authenticating content, tracking its provenance, labeling synthetic content through techniques like watermarking, and det... - **Discovery URL**: https://bidda.com/api/v1/nodes/reducing-risks-posed-by-synthetic-content.json #### Saudi Arabia SDAIA Generative AI Guidelines 2024 and Principles and Controls of AI Ethics 2023 - **ID**: sa-sdaia-generative-ai-guidelines-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Saudi government entities and employees adopting, using, or overseeing generative AI must apply the SDAIA Generative AI Guidelines for Government (issued January 2024) and the SDAIA Principles and Con... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-sdaia-generative-ai-guidelines-2024.json #### Saudi Arabia Vision 2030 Digital Economy Regulations - CITC Telecom and Cloud Regulations, SAMA Digital Payment Framework, NCA Cybersecurity Controls, SDAIA AI Governance, ZATCA E-Invoicing (FATOORAH) Phase 2 and CPLP Cloud Localisation Requirements - **ID**: saudi-arabia-vision-2030-digital-economy-regulations - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This regulatory framework establishes mandatory compliance requirements for digital transformation initiatives under Saudi Arabia’s Vision 2030, including AI governance, cybersecurity, cloud localizat... - **Discovery URL**: https://bidda.com/api/v1/nodes/saudi-arabia-vision-2030-digital-economy-regulations.json #### Saudi Arabia SDAIA National AI Ethics Principles 2023 - Six Principles: Fairness and Non-Discrimination, Reliability and Safety, Privacy and Security, Inclusivity, Transparency and Accountability for AI Systems - **ID**: saudi-ndmo-ai-ethics-principles-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Saudi Data & AI Authority (SDAIA) establishes six core ethical principles for the development, deployment, and use of AI systems by all public and private sector entities in Saudi Arabia. These pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/saudi-ndmo-ai-ethics-principles-2023.json #### Security Segmentation in a Small Manufacturing Environment - **ID**: security-segmentation-small-manufacturing - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Manufacturers are increasingly targeted in cyber-attacks. Small manufacturers are particularly vulnerable due to limitations in staff and resources to operate facilities and manage cybersecurity. This... - **Discovery URL**: https://bidda.com/api/v1/nodes/security-segmentation-small-manufacturing.json #### Seoul AI Safety Summit 2024 - Ministerial Declaration and Frontier AI Safety Commitments - **ID**: seoul-ai-safety-summit-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The second international AI Safety Summit, co-hosted by South Korea and the United Kingdom on 21-22 May 2024 in Seoul, produced the Seoul Ministerial Declaration on Advancing AI Safety, Innovation, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/seoul-ai-safety-summit-2024.json #### Seoul Declaration for Safe, Innovative and Inclusive AI (AI Seoul Summit, 21-22 May 2024) - Frontier AI Safety Commitments and Network of AI Safety Institutes - **ID**: seoul-declaration-ai-summit-2024-frontier-safety-commitments - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Seoul Declaration for Safe, Innovative and Inclusive AI was adopted by leaders at the AI Seoul Summit on 21-22 May 2024, co-hosted by the Republic of Korea and the United Kingdom as the follow-on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/seoul-declaration-ai-summit-2024-frontier-safety-commitments.json #### Singapore IMDA Agentic AI Framework - **ID**: sg-imda-agentic-ai - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: Execution rules for the world's first framework specifically targeting Agentic AI, focusing on bounding autonomous actions, financial limits, and verifiable intent. - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-imda-agentic-ai.json #### SG IMDA AI Governance Framework (Second Edition) - Model Governance and Explainability - **ID**: sg-imda-ai-governance-framework-second-edition-model-governance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Singapore's Infocomm Media Development Authority (IMDA) and Personal Data Protection Commission (PDPC) published the Model AI Governance Framework (Second Edition, 2020) providing detailed and practic... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-imda-ai-governance-framework-second-edition-model-governance.json #### Singapore MAS Guidelines on AI Risk Management for Financial Institutions 2025 - FEAT Principles Operationalisation - **ID**: sg-mas-ai-risk-management-guidelines-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: All Monetary Authority of Singapore (MAS) regulated financial institutions including banks, insurers, fintechs, and payment providers must align AI use to the Fairness, Ethics, Accountability and Tran... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-mas-ai-risk-management-guidelines-2025.json #### Singapore MAS Veritas Framework - Fairness, Ethics, Accountability and Transparency Assessment for Financial Services AI - **ID**: sg-mas-veritas-fairness-assessment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Monetary Authority of Singapore (MAS) Veritas initiative is a voluntary industry framework providing financial institutions with a methodology for assessing and demonstrating responsible AI in fin... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-mas-veritas-fairness-assessment.json #### Model Artificial Intelligence Governance Framework Second Edition (2020) - **ID**: sg-model-ai-governance-v2 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Singapore's voluntary framework guides organizations in the responsible deployment of AI by outlining two core principles: AI decisions should be explainable, transparent, and fair, and AI systems sho... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-model-ai-governance-v2.json #### Model AI Governance Framework (Second Edition, 2020) - Internal Governance, Decision-Making Model, Operations Management and Stakeholder Interaction Principles - **ID**: singapore-model-ai-governance-framework-2020 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This framework provides organizations with guidance on establishing internal governance structures, risk management processes, and human-centric AI deployment practices to ensure ethical, transparent,... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-model-ai-governance-framework-2020.json #### Model Artificial Intelligence Governance Framework Second Edition (2020) - **ID**: singapore-model-ai-governance-framework-2020-v2 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This voluntary framework from Singapore's IMDA guides organizations in the responsible deployment of AI by outlining principles for internal governance, risk assessment, and operational management. It... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-model-ai-governance-framework-2020-v2.json #### South Korea AI Basic Act 2024 - Risk-Based AI Classification, Conformity Assessment, AI Transparency Label, AI Service Provider Registration, National AI Commission, Prohibited AI Uses and Fines up to KRW 30M per Violation - **ID**: south-korea-ai-basic-act-2024 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: The South Korea AI Basic Act 2024 establishes a national framework for AI governance, mandating risk-based classification of AI systems across 15 designated high-impact sectors, requiring conformity a... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-korea-ai-basic-act-2024.json #### UAE National Artificial Intelligence Strategy 2031 - **ID**: uae-national-ai-strategy-2031 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The UAE National AI Strategy 2031 is a government initiative to position the UAE as a global leader in AI by 2031, focusing on integrating AI across key sectors such as healthcare, transport, and educ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-national-ai-strategy-2031.json #### UK Code of Practice for the Cyber Security of AI (DSIT, 2025) - 13 Voluntary Principles for AI Lifecycle Cyber Security across Secure Design, Development, Deployment, Maintenance, and End of Life - **ID**: uk-ai-cyber-security-code-of-practice-2025-dsit - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The UK Code of Practice for the Cyber Security of AI was published by the Department for Science, Innovation and Technology (DSIT) in 2025 as a voluntary code setting baseline security requirements fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ai-cyber-security-code-of-practice-2025-dsit.json #### UK AI Opportunities Action Plan 2025 - Matt Clifford Review and Government Response - **ID**: uk-ai-opportunities-action-plan-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The UK AI Opportunities Action Plan was published on January 13, 2025 by the Department for Science, Innovation and Technology (DSIT) following an independent review commissioned from Matt Clifford (c... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ai-opportunities-action-plan-2025.json #### AI Safety Institute: approach to evaluations - **ID**: uk-ai-safety-institute-framework-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The UK AI Safety Institute (AISI) framework outlines its approach to evaluating advanced AI models for national security and societal risks, focusing on five capabilities: misuse, societal impacts, au... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ai-safety-institute-framework-2023.json #### UK AI Safety Institute (AISI) Framework 2024 - Frontier AI Evaluation Methodology, Pre-Deployment Testing Protocol, International Network of AI Safety Institutes, Alignment with Bletchley Declaration, Uplift Testing for Cyber/CBRN Capabilities and Government Model Access - **ID**: uk-ai-safety-institute-framework-2024 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This framework outlines the UK AI Safety Institute's approach to evaluating frontier AI models, including pre-deployment testing, systemic risk assessments, and international collaboration to prevent ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ai-safety-institute-framework-2024.json #### UK DSIT AI Safety Institute - Frontier AI Safety Commitments and Responsible Capability Scaling - **ID**: uk-ai-safety-institute-frontier-ai-safety-commitments-responsible-capability-scaling - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The UK Department for Science, Innovation and Technology (DSIT) established the AI Safety Institute (AISI, now renamed AI Security Institute) and facilitated voluntary Frontier AI Safety Commitments s... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ai-safety-institute-frontier-ai-safety-commitments-responsible-capability-scaling.json #### UK AI Safety Institute (AISI) AI Safety Evaluation Framework 2024 - Frontier Model Evaluations, Pre-Deployment Testing and Uplift Assessment - **ID**: uk-aisi-ai-safety-evaluation-framework-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This framework outlines the UK AI Safety Institute's methodology for evaluating the safety of advanced AI models, focusing on pre-deployment testing across five key risk areas: Misuse, Societal Impact... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-aisi-ai-safety-evaluation-framework-2024.json #### UK Competition and Markets Authority - AI Foundation Models Update Paper (April 11, 2024) - **ID**: uk-cma-ai-foundation-models-update-paper-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On April 11, 2024 the UK Competition and Markets Authority (CMA) published its AI Foundation Models Update Paper, refreshing the September 2023 initial review and setting out the CMA's evolving concer... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-cma-ai-foundation-models-update-paper-2024.json #### UK Data Protection Act 2018 (Code of Practice on AI and Automated Decision-Making) Regulations 2026, SI 2026/425 - ICO Code Duty - **ID**: uk-data-protection-ai-code-of-practice-2026-si-425 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Information Commissioner must prepare a code of practice giving guidance on good practice in the processing of personal data under the UK GDPR and the Data Protection Act 2018 (except Part 4) in r... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-data-protection-ai-code-of-practice-2026-si-425.json #### UK Data (Use and Access) Act 2025 - Smart Data, DVS Trust Framework, UK GDPR/DPA Reform, Information Commission Establishment - **ID**: uk-data-use-and-access-act-2025 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: The UK Data (Use and Access) Act 2025 (c. 18) is the post-DPDI legislative reform of UK data law, structured in 8 Parts: Part 1 (sections 1-24) Access to Customer Data and Business Data - UK Smart Dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-data-use-and-access-act-2025.json #### Frontier AI Safety Commitments - AI Seoul Summit (May 21-22, 2024) - **ID**: uk-frontier-ai-safety-commitments-seoul-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On May 21, 2024 at the AI Seoul Summit co-hosted by the United Kingdom and the Republic of Korea, 16 frontier AI companies signed the Frontier AI Safety Commitments. The Commitments require signatorie... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-frontier-ai-safety-commitments-seoul-2024.json #### UK ICO Guidance on AI and Data Protection (2023, updated 2024) - **ID**: uk-ico-ai-data-protection-guidance-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The UK Information Commissioner's Office issued Guidance on AI and Data Protection in 2023 (substantially updated in 2024) under the UK GDPR and the Data Protection Act 2018. The Guidance covers how d... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ico-ai-data-protection-guidance-2023.json #### International AI Safety Report 2025 (Chaired by Yoshua Bengio, January 29 2025) - **ID**: uk-international-ai-safety-report-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The International AI Safety Report 2025 was published on January 29, 2025 ahead of the AI Action Summit in Paris (February 10-11, 2025). The Report was commissioned at the Bletchley AI Safety Summit (... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-international-ai-safety-report-2025.json #### Online Safety Act 2023 - **ID**: uk-online-safety-act-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The UK Online Safety Act 2023 imposes a statutory duty of care on providers of user-to-user services and search services to protect users from illegal and harmful content. This includes conducting com... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023.json #### Online Safety Act 2023 Section 122: Requirement to obtain skilled person’s report - **ID**: uk-online-safety-act-2023-section-122-notice-to-deal-with-terrorism - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Organizations must understand that the UK regulator, OFCOM, is required to obtain a report from an appointed skilled person before it can issue a notice to a provider under Section 121(1). - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-122-notice-to-deal-with-terrorism.json #### Online Safety Act 2023, Section 179: False communications offence - **ID**: uk-online-safety-act-2023-section-179-ofcom-enforcement-notifications - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This section establishes a criminal offense for a person who sends a message containing information they know to be false, with the intent to cause non-trivial psychological or physical harm to a like... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-179-ofcom-enforcement-notifications.json #### Online Safety Act 2023 Section 238: Financial provisions - **ID**: uk-online-safety-act-2023-section-238-senior-manager-liability - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This section mandates that any expenditure incurred by the Secretary of State under the Online Safety Act 2023, and any resulting increase in sums payable under other Acts, must be paid out of money p... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-238-senior-manager-liability.json #### Online Safety Act 2023, Section 56: “Recognised news publisher” - **ID**: uk-online-safety-act-2023-section-56-children-safety-duties - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This section defines the criteria an entity must meet to be classified as a 'recognised news publisher', including requirements for editorial control, complaints procedures, and public disclosure of b... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-56-children-safety-duties.json #### AI regulation: a pro-innovation approach - **ID**: uk-pro-innovation-ai-white-paper-2023 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This white paper sets out the UK government’s proposals for a pro-innovation, cross-sectoral approach to AI regulation based on five high-level principles to be implemented by existing regulators. It ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-pro-innovation-ai-white-paper-2023.json #### UN Secretary-General AI Advisory Body Interim Report 2024 - Governing AI for Humanity - **ID**: un-ai-advisory-body-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This interim report from the UN's AI Advisory Body proposes a framework for global AI governance, recommending the creation of a new UN-affiliated agency to coordinate international efforts. It establ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-ai-advisory-body-2024.json #### UN General Assembly Resolution A/RES/78/265 - Seizing the Opportunities of Safe, Secure and Trustworthy AI for Sustainable Development (March 21 2024) - **ID**: un-ga-resolution-78-265-ai-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: UN General Assembly Resolution 78/265 was adopted by consensus by all 193 UN Member States on March 21, 2024. The Resolution, titled Seizing the Opportunities of Safe, Secure and Trustworthy AI System... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-ga-resolution-78-265-ai-2024.json #### UN Global Digital Compact (September 2024) - International AI Governance Commitments under the Pact for the Future - **ID**: un-global-digital-compact-2024-ai-governance-commitments - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The UN Global Digital Compact (GDC) was adopted by UN Member States on 22 September 2024 at the Summit of the Future in New York as an annex to the Pact for the Future. The GDC is a comprehensive glob... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-global-digital-compact-2024-ai-governance-commitments.json #### Global Digital Compact - **ID**: un-global-digital-compact-2024-principle-ai-governance-safety - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This compact establishes a comprehensive global framework for digital cooperation and the governance of artificial intelligence, charting a roadmap to harness digital technology's potential and close ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-global-digital-compact-2024-principle-ai-governance-safety.json #### UN Global Digital Compact 2024 - AI Governance Principles: International Cooperation, Inclusive Development and Risk Management - **ID**: un-global-digital-compact-ai-governance-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The UN Global Digital Compact establishes a framework for international cooperation on AI governance, requiring member states and stakeholders to align AI development with human rights, the rule of la... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-global-digital-compact-ai-governance-2024.json #### UN High-Level Advisory Body on AI - Governing AI for Humanity Final Report (September 2024) - **ID**: un-hlab-governing-ai-for-humanity-final-report-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The UN Secretary-General's High-Level Advisory Body on Artificial Intelligence (HLAB-AI) published Governing AI for Humanity as its Final Report on September 19, 2024, in advance of the UN Summit of t... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-hlab-governing-ai-for-humanity-final-report-2024.json #### UNESCO Ethics of AI - **ID**: unesco-ethics-ai - **Category**: AI Governance & Law - **Version**: 1.1.1 - **BLUF**: Compliance with the UNESCO Recommendation on the Ethics of Artificial Intelligence demands a comprehensive governance framework ensuring AI systems uphold human rights, dignity, and environmental sust... - **Discovery URL**: https://bidda.com/api/v1/nodes/unesco-ethics-ai.json #### Recommendation on the Ethics of Artificial Intelligence - **ID**: unesco-recommendation-ethics-ai-2021 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This regulation establishes a global standard for ethical AI development and deployment across all 194 UNESCO member states, centered on human rights, transparency, and fairness. It mandates adherence... - **Discovery URL**: https://bidda.com/api/v1/nodes/unesco-recommendation-ethics-ai-2021.json #### UNESCO Recommendation on the Ethics of Neurotechnology (2025) - **ID**: unesco-recommendation-ethics-neurotechnology-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The UNESCO Recommendation on the Ethics of Neurotechnology was adopted by the General Conference of the United Nations Educational, Scientific and Cultural Organization at its 43rd session in November... - **Discovery URL**: https://bidda.com/api/v1/nodes/unesco-recommendation-ethics-neurotechnology-2025.json #### US AI in Government Act of 2020 (Title I of Division U, Consolidated Appropriations Act 2021, Public Law 116-260) - **ID**: us-ai-in-government-act-2020 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The AI in Government Act of 2020 was enacted on December 27, 2020 as Title I of Division U of the Consolidated Appropriations Act 2021 (Public Law 116-260). Section 102 establishes the Artificial Inte... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ai-in-government-act-2020.json #### US AI Safety Institute (AISI) - NIST AI Safety Evaluation Framework and International Role - **ID**: us-ai-safety-institute-nist-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The US AI Safety Institute (AISI), established within the National Institute of Standards and Technology (NIST) under the US Department of Commerce pursuant to President Biden's Executive Order 14110 ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ai-safety-institute-nist-2024.json #### US AI Safety Institute Charter (Department of Commerce, February 7 2024) - **ID**: us-aisi-charter-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On February 7, 2024 the US Department of Commerce announced the establishment of the United States Artificial Intelligence Safety Institute (US AISI) housed within the National Institute of Standards ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-aisi-charter-2024.json #### Algorithmic Accountability Act of 2023 - **ID**: us-algorithmic-accountability-act-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Requires entities deploying high-impact automated decision systems (ADS) to conduct impact assessments evaluating risks of algorithmic discrimination, data quality, and system transparency. Applies to... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-algorithmic-accountability-act-2023.json #### US Algorithmic Accountability Act 2023 - Automated Decision Systems Impact Assessment Requirements - **ID**: us-algorithmic-accountability-act-2023-automated-decision-systems-impact-assessment - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Algorithmic Accountability Act of 2023 (Senate Bill S.2892), introduced in the 118th Congress, would require large US companies (over 50 million users or USD 550 million revenue) to conduct and do... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-algorithmic-accountability-act-2023-automated-decision-systems-impact-assessment.json #### America's AI Action Plan - Three-Pillar Federal Strategy (July 2025) - **ID**: us-americas-ai-action-plan-2025 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: America's AI Action Plan, published July 2025 by OSTP, OMB, NSC and the Special Advisor for AI and Crypto pursuant to Executive Order 14179, sets US federal AI policy across three pillars: (I) Acceler... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-americas-ai-action-plan-2025.json #### US Blueprint for an AI Bill of Rights 2022 (OSTP) - **ID**: us-blueprint-ai-bill-of-rights-2022-ostp - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This non-binding guidance from the White House Office of Science and Technology Policy establishes five principles for the design, use, and deployment of automated systems to protect the public in the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-blueprint-ai-bill-of-rights-2022-ostp.json #### California Assembly Bill 1836 (2024) - Use of Likeness: Digital Replica of Deceased Personality (Amendment to Civil Code Section 3344.1) - **ID**: us-ca-ab-1836-postmortem-digital-replicas-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 1836 was chaptered on 17 September 2024 (Stats. 2024, Chap. 258) and amends California Civil Code Section 3344.1 to create a new statutory liability for the unauthorised produ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab-1836-postmortem-digital-replicas-2024.json #### California Assembly Bill 2602 (2024) - Contracts Against Public Policy: Personal or Professional Services: Digital Replicas of Living Persons (Labor Code Section 927) - **ID**: us-ca-ab-2602-living-person-digital-replica-labor-code-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 2602 was approved by the Governor on 17 September 2024 (Stats. 2024, Chap. 259) and adds Section 927 to the California Labor Code. AB 2602 renders unenforceable any provision ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab-2602-living-person-digital-replica-labor-code-2024.json #### California Assembly Bill 853 of 2025 - AI Transparency Act Amendments and Manifest and Latent Disclosure Obligations - **ID**: us-ca-ab-853-ai-transparency-act-amendments-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Governor Gavin Newsom signed AB 853 on 13 October 2025, delaying the operation of the California AI Transparency Act from 1 January 2026 to 2 August 2026 (to align with the EU AI Act), expa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab-853-ai-transparency-act-amendments-2025.json #### California Use of Likeness: Digital Replica of Deceased Personalities - Assembly Bill 1836 (Chapter 258 of 2024) - **ID**: us-ca-ab1836-digital-replica-deceased-personalities-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 1836, authored by Assemblymember Bauer-Kahan and enacted as Chapter 258 of the Statutes of 2024, was signed by Governor Newsom and filed with the Secretary of State on 17 Sept... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab1836-digital-replica-deceased-personalities-2024.json #### California AB 2013 (2024) - Generative AI Training Data Transparency Act - **ID**: us-ca-ab2013-2024-genai-training-data-transparency - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 2013 (Irwin) requires developers of generative artificial intelligence systems or services made available to Californians on or after 1 January 2022 to post on their website d... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab2013-2024-genai-training-data-transparency.json #### California Generative Artificial Intelligence Training Data Transparency Act - Assembly Bill 2013 (Chapter 817 of 2024) - **ID**: us-ca-ab2013-genai-training-data-transparency-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 2013, authored by Assemblymember Irwin and enacted as Chapter 817 of the Statutes of 2024, was signed by Governor Newsom on 28 September 2024 and takes effect on 1 January 202... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab2013-genai-training-data-transparency-2024.json #### California Digital Replicas in Personal or Professional Services Contracts - Assembly Bill 2602 (Chapter 259 of 2024) - **ID**: us-ca-ab2602-digital-replicas-personal-services-contracts-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 2602, authored by Assemblymember Kalra and enacted as Chapter 259 of the Statutes of 2024, was signed by Governor Newsom on 17 September 2024 and adds Section 927 to the Calif... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab2602-digital-replicas-personal-services-contracts-2024.json #### California AB 2655 (2024) - Defending Democracy from Deepfake Deception Act - **ID**: us-ca-ab2655-2024-defending-democracy-deepfake-deception - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 2655 (Berman) - the Defending Democracy from Deepfake Deception Act of 2024 - obliges 'large online platforms' to identify and either remove or label materially deceptive AI-g... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab2655-2024-defending-democracy-deepfake-deception.json #### California Defending Democracy from Deepfake Deception Act of 2024 - Assembly Bill 2655 (Chapter 261 of 2024) - **ID**: us-ca-ab2655-defending-democracy-deepfake-deception-act-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 2655, authored by Assemblymember Berman and enacted as Chapter 261 of the Statutes of 2024, was signed by Governor Newsom on 17 September 2024 and adds Chapter 7 (Sections 205... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab2655-defending-democracy-deepfake-deception-act-2024.json #### California Elections: Deceptive Media in Advertisements - Assembly Bill 2839 (Chapter 262 of 2024) - **ID**: us-ca-ab2839-elections-deceptive-media-advertisements-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 2839, authored by Assemblymember Pellerin and enacted as Chapter 262 of the Statutes of 2024, was signed by Governor Newsom as an urgency statute on 17 September 2024 and took... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab2839-elections-deceptive-media-advertisements-2024.json #### California Pupil Instruction: Artificial Intelligence Literacy in Curriculum Frameworks - Assembly Bill 2876 (Chapter 927 of 2024) - **ID**: us-ca-ab2876-ai-literacy-curriculum-frameworks-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 2876, authored by Assemblymember Berman and enacted as Chapter 927 of the Statutes of 2024, was signed by Governor Newsom on 29 September 2024 and adds California Education Co... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab2876-ai-literacy-curriculum-frameworks-2024.json #### California Health Care Services: Generative Artificial Intelligence Patient Communications - Assembly Bill 3030 (Chapter 879 of 2024) - **ID**: us-ca-ab3030-healthcare-genai-patient-communications-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 3030 was approved by Governor Newsom on 28 September 2024 and adds Health and Safety Code Section 1339.75 et seq. requiring health facilities, clinics, physician offices and g... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab3030-healthcare-genai-patient-communications-2024.json #### California SB 53 (Transparency in Frontier AI Act) - **ID**: us-ca-sb53-frontier-ai - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: The nation's first comprehensive safety and transparency requirement for frontier AI developers, mandating catastrophic risk frameworks, 15-day incident reporting, and whistleblower protections for mo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-sb53-frontier-ai.json #### California Generative Artificial Intelligence Accountability Act - Senate Bill 896 (Chapter 928 of 2024) - **ID**: us-ca-sb896-genai-accountability-act-state-agencies-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Senate Bill 896, authored by Senator Dodd and enacted as Chapter 928 of the Statutes of 2024, was signed by Governor Newsom on 29 September 2024 and codifies key generative AI accountabilit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-sb896-genai-accountability-act-state-agencies-2024.json #### California SB 942 (2024) - California AI Transparency Act (Watermarking, Disclosures and Detection) - **ID**: us-ca-sb942-2024-ai-transparency-act-watermarking - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Senate Bill 942 (Becker) - the California AI Transparency Act - obligates a 'covered provider' of a generative AI system with over 1,000,000 monthly visitors or users that is publicly acces... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-sb942-2024-ai-transparency-act-watermarking.json #### California Senate Bill 942 - California AI Transparency Act (Chapter 25, commencing with Section 22757, of Division 8 of the Business and Professions Code) - Operative 1 January 2026 - **ID**: us-ca-sb942-ai-transparency-act-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Senate Bill 942, the 'California AI Transparency Act,' adds Chapter 25 (commencing with Section 22757) to Division 8 of the Business and Professions Code and becomes operative on 1 January ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-sb942-ai-transparency-act-2024.json #### United States Center for AI Standards and Innovation (CAISI) - Successor to the US AI Safety Institute (AISI) at NIST; Industry Primary Contact for Federal AI Testing, Voluntary Standards, National Security AI Capability Evaluations, and US International AI Standards Leadership (Trump Administration Reorganization, 2025) - **ID**: us-caisi-center-ai-standards-innovation-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Center for AI Standards and Innovation (CAISI) is the successor entity to the US AI Safety Institute (AISI) at NIST, established under the Trump administration's AI policy reorganization. CAISI se... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-caisi-center-ai-standards-innovation-2025.json #### California SB 942 - California AI Transparency Act (Bus. & Prof. Code §§ 22757-22757.6) - **ID**: us-california-sb-942-ai-transparency-act-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Covered generative AI providers with over 1,000,000 monthly users or visitors must offer a free AI detection tool, embed a latent provenance disclosure in AI-generated image, video, or audio content, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-california-sb-942-ai-transparency-act-2024.json #### US CFPB - Adverse Action Notification Requirements for AI Credit Decisions (ECOA/FCRA Guidance 2022) - **ID**: us-cfpb-adverse-action-ai-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The US Consumer Financial Protection Bureau (CFPB) published guidance in May 2022 clarifying that the adverse action notification requirements under the Equal Credit Opportunity Act (ECOA) and Regulat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-adverse-action-ai-2022.json #### CFPB Consumer Financial Protection Circular 2022-03 - Adverse Action Notification for Credit Decisions Based on Complex Algorithms - **ID**: us-cfpb-circular-2022-03-adverse-action-complex-algorithms - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: CFPB Consumer Financial Protection Circular 2022-03 (26 May 2022) confirms that creditors using complex algorithms, including artificial intelligence and machine learning models, must comply with the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-circular-2022-03-adverse-action-complex-algorithms.json #### CFPB Consumer Financial Protection Circular 2023-03 - Adverse Action Notices When Using AI and Complex Credit Models - **ID**: us-cfpb-circular-2023-03-adverse-action-ai-creditors - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: CFPB Consumer Financial Protection Circular 2023-03 (19 September 2023) builds on the 2022-03 Circular and clarifies that creditors using AI and other complex algorithmic models in credit decisions ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-circular-2023-03-adverse-action-ai-creditors.json #### CISA AI Cybersecurity Collaboration Playbook 2024 - Compliance Obligations for Critical Infrastructure AI Security, AI Incident Sharing with CISA, and Collaborative AI Threat Intelligence Reporting Requirements - **ID**: us-cisa-ai-cybersecurity-collaboration-playbook-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines obligations for critical infrastructure organizations to secure AI systems, share AI-related cyber incidents with CISA, and engage in collaborative threat intelligence reporting as ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-ai-cybersecurity-collaboration-playbook-2024.json #### US CISA AI Cybersecurity Collaboration Playbook (January 14, 2025) - **ID**: us-cisa-ai-cybersecurity-collaboration-playbook-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On January 14, 2025 the US Cybersecurity and Infrastructure Security Agency (CISA) published the AI Cybersecurity Collaboration Playbook. The Playbook provides operational guidance for AI providers, A... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-ai-cybersecurity-collaboration-playbook-2025.json #### Guidelines for Secure AI System Development - **ID**: us-cisa-ai-cybersecurity-guidelines-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This joint guidance from CISA, UK NCSC, and 21 international partners provides a framework for organizations to secure AI systems throughout their lifecycle. It outlines four key areas-Secure Design, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-ai-cybersecurity-guidelines-2023.json #### US CISA Roadmap for Artificial Intelligence (FY2024-2025) - **ID**: us-cisa-roadmap-for-ai-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The US Cybersecurity and Infrastructure Security Agency (CISA) published its 2024-2025 Roadmap for Artificial Intelligence on April 30, 2024. The Roadmap operationalises CISA's mandate under Executive... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-roadmap-for-ai-2024.json #### US CISA Safety and Security Guidelines for Critical Infrastructure Owners and Operators - AI Considerations (April 26, 2024) - **ID**: us-cisa-safety-security-ai-critical-infrastructure-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On April 26, 2024 the US Cybersecurity and Infrastructure Security Agency (CISA) published Safety and Security Guidelines for Critical Infrastructure Owners and Operators - Considerations for Managing... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-safety-security-ai-critical-infrastructure-2024.json #### Colorado AI Act (SB 205) - High-Risk Systems - **ID**: us-co-sb205-high-risk-ai - **Category**: AI Governance & Law - **Version**: 1.1.0 - **BLUF**: US state-level regulatory requirements for developers and deployers of high-risk AI systems making consequential decisions, mandating algorithmic discrimination audits and consumer opt-out rights. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-co-sb205-high-risk-ai.json #### Colorado Senate Bill 24-205 - Consumer Protections for Artificial Intelligence Act (2024 Session Laws of Colorado, Effective 1 February 2026) - First US Comprehensive AI Law - **ID**: us-colorado-ai-act-sb24-205 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Colorado Senate Bill 24-205, the 'Consumer Protections for Artificial Intelligence' act, signed by Governor Jared Polis on 17 May 2024 (2024 Session Laws of Colorado), is the first comprehensive Unite... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-colorado-ai-act-sb24-205.json #### Connecticut Artificial Intelligence Act SB 2 (2025) - Compliance Obligations for High-Risk AI Deployers, Developer Transparency Requirements, and Algorithmic Discrimination Prevention for Connecticut Entities - **ID**: us-connecticut-ai-act-sb2-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for high-risk AI deployers under Connecticut SB 2 (2025), focusing on transparency, risk assessments, and algorithmic discrimination prevention, with overlapp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-connecticut-ai-act-sb2-2025.json #### US Joint Cybersecurity Information Sheet - Deploying AI Systems Securely (NSA-CISA-FBI-NCSC-UK-ACSC-CCCS-NCSC-NZ, April 15 2024) - **ID**: us-csi-deploying-ai-systems-securely-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On April 15, 2024 the US National Security Agency's Artificial Intelligence Security Center (NSA AISC), the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-csi-deploying-ai-systems-securely-2024.json #### US Department of Defense AI Ethical Principles (Adopted February 24, 2020) - **ID**: us-dod-ai-ethical-principles-2020 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On February 24, 2020 the US Secretary of Defense adopted five Ethical Principles for the use of Artificial Intelligence in military operations, drawn from the Defense Innovation Board's October 2019 r... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dod-ai-ethical-principles-2020.json #### US DoD Responsible Artificial Intelligence Strategy and Implementation Pathway (Chief Digital and AI Office, June 22, 2022) - **ID**: us-dod-cdao-responsible-ai-strategy-pathway-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The US Department of Defense Responsible AI Strategy and Implementation Pathway was issued by the DoD Chief Digital and AI Office (CDAO, successor to the Joint AI Center) on June 22, 2022. It operatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dod-cdao-responsible-ai-strategy-pathway-2022.json #### US Department of Defense Directive 3000.09 - Autonomy in Weapon Systems (Updated January 25, 2023) - **ID**: us-dod-directive-3000-09-autonomy-weapons-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: US Department of Defense Directive 3000.09 Autonomy in Weapon Systems was reissued on January 25, 2023 as the foundational DoD policy on the design, development, acquisition, testing, fielding, and us... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dod-directive-3000-09-autonomy-weapons-2023.json #### US Department of Justice Civil Rights Division - Algorithms, Artificial Intelligence, and Disability Discrimination in Hiring (May 12, 2022) - **ID**: us-doj-ada-ai-disability-employment-2022 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On May 12, 2022 the US Department of Justice Civil Rights Division published a guidance document titled Algorithms, Artificial Intelligence, and Disability Discrimination in Hiring, issued jointly wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-doj-ada-ai-disability-employment-2022.json #### US DOJ-EEOC-CFPB-FTC Joint Statement on Enforcement Efforts Against Discrimination and Bias in Automated Systems (April 25, 2023) - **ID**: us-doj-eeoc-cfpb-ftc-joint-statement-ai-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On April 25, 2023 the heads of four US federal civil rights and consumer protection agencies issued a Joint Statement on Enforcement Efforts Against Discrimination and Bias in Automated Systems. The s... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-doj-eeoc-cfpb-ftc-joint-statement-ai-2023.json #### US DOJ National Security Division Final Rule on Bulk Sensitive Personal Data Transactions - 28 CFR 202 (December 27 2024) - **ID**: us-doj-nsd-bulk-data-final-rule-28-cfr-202-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The US Department of Justice National Security Division issued a Final Rule on December 27, 2024 implementing Executive Order 14117 of February 28, 2024 on access by countries of concern to Americans ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-doj-nsd-bulk-data-final-rule-28-cfr-202-2024.json #### US Department of Labor - AI and Worker Well-Being Principles and Best Practices (April 2024) - **ID**: us-dol-ai-worker-principles-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The US Department of Labor (DOL) published 'Artificial Intelligence and Worker Well-Being: Principles and Best Practices for Developers and Employers' in April 2024, establishing the Biden administrat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dol-ai-worker-principles-2024.json #### US EEOC - Artificial Intelligence and Employment Decision-Making: Title VII Adverse Impact Guidance (2023) - **ID**: us-eeoc-ai-employment-guidance-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The US Equal Employment Opportunity Commission (EEOC) published 'Select Issues: Assessing Adverse Impact in Software, Algorithms, and Artificial Intelligence Used in Employment Selection Procedures' i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eeoc-ai-employment-guidance-2023.json #### US Executive Order 13859 - Maintaining American Leadership in Artificial Intelligence (February 11, 2019) - **ID**: us-eo-13859-american-ai-initiative-2019 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Executive Order 13859 of February 11, 2019 establishes the American AI Initiative as the first federal whole-of-government policy on AI leadership. The Order directs federal departments and agencies t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-13859-american-ai-initiative-2019.json #### US Executive Order 13960 - Promoting the Use of Trustworthy Artificial Intelligence in the Federal Government (2020) - **ID**: us-eo-13960-promoting-trustworthy-ai-federal-government-2020 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Executive Order 13960 of December 3, 2020 directs federal agencies to design, develop, acquire, and use AI in a manner that fosters public trust and confidence while protecting privacy, civil rights, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-13960-promoting-trustworthy-ai-federal-government-2020.json #### Promoting the Use of Trustworthy Artificial Intelligence in the Federal Government - **ID**: us-eo-13960-trustworthy-ai-federal-2020 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Executive Order 13960 requires federal agencies to adopt AI in a manner that fosters public trust, protects civil rights and liberties, and ensures transparency, accountability, and oversight, consist... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-13960-trustworthy-ai-federal-2020.json #### Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence - **ID**: us-eo-14110-ai-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This Executive Order directs US federal agencies to establish new standards for AI safety and security, requiring developers of powerful foundation models that pose a serious risk to national security... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-14110-ai-2023.json #### Executive Order on the Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence - **ID**: us-eo-14110-safe-trustworthy-ai-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This Executive Order directs US federal agencies to establish new standards for AI safety and security and requires developers of powerful dual-use foundation models that pose a serious risk to nation... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-14110-safe-trustworthy-ai-2023.json #### US Executive Order 14117 - Preventing Access to Americans Bulk Sensitive Personal Data and US Government-Related Data by Countries of Concern (February 28, 2024) - **ID**: us-eo-14117-bulk-data-foreign-adversary-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Executive Order 14117 of February 28, 2024 addresses the national security risks posed by access by countries of concern to Americans bulk sensitive personal data and US government-related data, inclu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-14117-bulk-data-foreign-adversary-2024.json #### US Executive Order 14148 - Initial Rescissions of Harmful Executive Orders and Actions (January 20, 2025) - Rescinding Biden AI Orders - **ID**: us-eo-14148-rescissions-harmful-orders-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Executive Order 14148 of January 20, 2025 rescinds 78 Biden Administration executive orders and presidential memoranda identified as harmful, including the foundational Biden AI executive order EO 141... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-14148-rescissions-harmful-orders-2025.json #### Removing Barriers to American Leadership in Artificial Intelligence - **ID**: us-eo-14179-removing-barriers-ai-2025 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This executive order revokes Executive Order 14110 and mandates federal agencies to suspend, revise, or rescind AI policies inconsistent with U.S. AI dominance, as defined in Section 2. It requires th... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-14179-removing-barriers-ai-2025.json #### US Executive Order 14365 of 11 December 2025 - Ensuring a National Policy Framework for Artificial Intelligence - **ID**: us-eo-14365-national-policy-framework-for-ai-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Federal agencies must evaluate, restrict funding for, and act to preempt state laws that the administration views as affecting national AI policy under Executive Order 14365 (signed 11 December 2025; ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-14365-national-policy-framework-for-ai-2025.json #### US Executive Order of 2 June 2026 - Promoting Advanced AI Innovation and Security via Frontier Benchmarking and Cybersecurity Clearinghouse - **ID**: us-eo-promoting-advanced-ai-innovation-and-security-2026-06 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: within 60 days of the date of the order, the Department of the Treasury, the National Security Agency, and the Cybersecurity and Infrastructure Security Agency, coordinating with the National Cyber Di... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-promoting-advanced-ai-innovation-and-security-2026-06.json #### US Executive Order: Promoting Advanced Artificial Intelligence Innovation and Security (June 2, 2026) - **ID**: us-eo-promoting-advanced-ai-innovation-security-2026 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: Executive Order 'Promoting Advanced Artificial Intelligence Innovation and Security' signed by President Donald J. Trump on June 2, 2026 (originally scheduled May 21, 2026 and postponed) establishes U... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-promoting-advanced-ai-innovation-security-2026.json #### Executive Order on the Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence - **ID**: us-executive-order-14110-ai-safety-2023 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This Executive Order establishes binding requirements for federal agencies and contractors to ensure the safe, secure, and trustworthy development and use of AI, including mandatory safety testing for... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-executive-order-14110-ai-safety-2023.json #### US Executive Order 14110 - Safe, Secure, and Trustworthy AI (October 2023) - **ID**: us-executive-order-14110-safe-secure-trustworthy-ai-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Executive Order 14110 (October 30, 2023) directed federal agencies to establish AI safety standards, reporting requirements for frontier AI models, and red-teaming programmes. Federal contractors deve... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-executive-order-14110-safe-secure-trustworthy-ai-2023.json #### US Executive Order 14110 - Safe, Secure, and Trustworthy AI - Dual-Use Foundation Model Reporting - **ID**: us-executive-order-14110-safe-secure-trustworthy-ai-ai-safety-reporting - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Executive Order 14110 on Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence (October 2023) directed federal agencies to implement a broad set of AI safety standards. Key prov... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-executive-order-14110-safe-secure-trustworthy-ai-ai-safety-reporting.json #### US FCC Declaratory Ruling - AI-Generated Voices in Robocalls Are Artificial Voices under TCPA (February 8, 2024) - **ID**: us-fcc-tcpa-ai-voice-robocalls-ruling-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On February 8, 2024 the Federal Communications Commission adopted a unanimous Declaratory Ruling holding that calls made with AI-generated voices are calls made using artificial or prerecorded voice w... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-tcpa-ai-voice-robocalls-ruling-2024.json #### FDA / Health Canada / UK MHRA - Good Machine Learning Practice for Medical Device Development - 10 Guiding Principles (October 27, 2021) - **ID**: us-fda-good-machine-learning-practice-2021 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On October 27, 2021 the US Food and Drug Administration jointly with Health Canada and the United Kingdom Medicines and Healthcare products Regulatory Agency (MHRA) published the Good Machine Learning... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-good-machine-learning-practice-2021.json #### FINRA Regulatory Notice 24-09 (2024) - Member Firm Obligations on Generative AI and Large Language Models - **ID**: us-finra-rn-24-09-2024-genai-llm-firm-supervision - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: FINRA Regulatory Notice 24-09 (27 June 2024) reminds FINRA member firms that existing FINRA rules continue to apply when firms develop, integrate, or deploy generative AI tools and large language mode... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-finra-rn-24-09-2024-genai-llm-firm-supervision.json #### US Voluntary Covered Frontier Model Pre-Release Disclosure Framework (Sec. 3, EO Promoting Advanced AI Innovation and Security, 2026) - **ID**: us-frontier-model-voluntary-pre-release-disclosure-2026 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: Section 3 of the Executive Order Promoting Advanced Artificial Intelligence Innovation and Security signed June 2, 2026 establishes a voluntary federal framework under which frontier AI model develope... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-frontier-model-voluntary-pre-release-disclosure-2026.json #### FTC Guidance on AI Unfair and Deceptive Practices - Compliance Obligations for AI Marketing Claims, Prohibition on AI-Enabled Deception, and FTC Section 5 Compliance for AI Product Developers and Deployers - **ID**: us-ftc-ai-unfair-deceptive-practices-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines FTC obligations under Section 5 to prevent unfair or deceptive AI practices, focusing on truthful marketing claims and prohibiting AI-enabled deception; it aligns with EU AI Act 202... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-ai-unfair-deceptive-practices-2023.json #### US FTC Operation AI Comply - Crackdown on Deceptive AI Claims and Schemes (September 25, 2024) - **ID**: us-ftc-operation-ai-comply-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: On September 25, 2024 the Federal Trade Commission announced Operation AI Comply, an enforcement sweep targeting unfair or deceptive practices involving artificial intelligence. The Operation comprise... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-operation-ai-comply-2024.json #### US GAO Artificial Intelligence Accountability Framework for Federal Agencies and Other Entities (GAO-21-519SP, June 2021) - **ID**: us-gao-ai-accountability-framework-2021 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Government Accountability Office published the AI Accountability Framework (GAO-21-519SP) in June 2021 to help federal agencies and other entities ensure accountability and responsible AI use. The... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-gao-ai-accountability-framework-2021.json #### Illinois Artificial Intelligence Video Interview Act and 2023 Amendments - Compliance Obligations for AI-Driven Employment Screening, Biometric Data Governance in Hiring, and Candidate Consent Requirements - **ID**: us-illinois-ai-video-interview-act-amendments - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations under the Illinois AI Video Interview Act, focusing on candidate consent, transparency in AI-driven hiring tools, and biometric data governance, with overlapp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-illinois-ai-video-interview-act-amendments.json #### US National AI Initiative Act of 2020 (Title LI of NDAA FY2021, Public Law 116-283, codified at 15 USC 9401 et seq.) - **ID**: us-naiia-national-ai-initiative-act-2020 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The National AI Initiative Act of 2020 (NAIIA) was enacted on January 1, 2021 as Division E of the William M. (Mac) Thornberry National Defense Authorization Act for Fiscal Year 2021 (Public Law 116-2... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naiia-national-ai-initiative-act-2020.json #### US National AI Initiative Act 2020 (NDAA Title II) - National AI Research Resource, Interagency Coordination and International Competitiveness Strategy - **ID**: us-national-ai-initiative-act-2020 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This regulation establishes a coordinated federal strategy to accelerate AI innovation, infrastructure, and international leadership under Executive Orders and OMB Memos issued between 2019 and 2025. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-ai-initiative-act-2020.json #### NIST AI 600-1 Generative AI Profile 2024 - Trustworthy AI Implementation Requirements and Compliance Obligations for Managing Risks Unique to Generative AI Systems Across GOVERN, MAP, MEASURE, and MANAGE Functions - **ID**: us-nist-ai-600-1-generative-ai-profile-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines specific obligations for managing risks in generative AI systems under NIST AI 600-1 across GOVERN, MAP, MEASURE, and MANAGE functions, aligning with NIST AI RMF 1.0 and reinforcing... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nist-ai-600-1-generative-ai-profile-2024.json #### NIST GenAI Playbook 2024 - Companion to AI RMF for Generative AI: Suggested Actions for GOVERN/MAP/MEASURE/MANAGE Functions, Generative AI-Specific Risks (Confabulation/CSAM/Homogenisation/Misuse), Evaluator Profiles and Test Sets - **ID**: us-nist-ai-rmf-playbook-generative-ai-2024 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: This NIST guidance provides actionable steps for federal agencies and AI developers to govern, map, measure, and manage generative AI systems, with emphasis on mitigating risks such as confabulation, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nist-ai-rmf-playbook-generative-ai-2024.json #### NIST SP 800-218A Secure Software Development Practices for Generative AI and Dual-Use Foundation Models - **ID**: us-nist-sp-800-218a-secure-ai-development - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This publication provides specific secure software development practices for generative AI and dual-use foundation models, extending the NIST Secure Software Development Framework (SSDF, SP 800-218). ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nist-sp-800-218a-secure-ai-development.json #### NSA Cybersecurity Information Sheet on AI Security - Compliance Obligations for Secure AI Integration, AI Model Hardening Requirements, and NSA Guidance on Adversarial ML Defences for National Security AI Systems - **ID**: us-nsa-ai-security-guidance-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: This node outlines NSA guidance on secure AI system development, focusing on model hardening, adversarial ML defenses, and integration obligations, aligning with EU AI Act (Regulation 2024/1689) high-... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nsa-ai-security-guidance-2024.json #### New York Responsible AI Safety and Education (RAISE) Act - Senate Bill S 6953-B / Chapter 699 of 2025 - **ID**: us-ny-raise-act-chapter-699-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The New York Responsible AI Safety and Education (RAISE) Act, enacted as Chapter 699 of the Laws of 2025 (Senate Bill S 6953-B), was signed by Governor Hochul on 19 December 2025 and adds a new Articl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ny-raise-act-chapter-699-2025.json #### New York City Local Law 144 - Automated Employment Decision Tools (Enacted 2021, Effective July 5 2023) - **ID**: us-nyc-ll-144-aedt-2021 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: New York City Local Law 144 of 2021, codified at New York City Administrative Code 20-870 et seq., regulates the use of Automated Employment Decision Tools (AEDTs) by employers and employment agencies... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nyc-ll-144-aedt-2021.json #### US OMB Advanced AI Vulnerability Detection Grant Funding Availability (Sec. 2(e) 30-Day Directive, EO Promoting Advanced AI Innovation and Security, 2026) - **ID**: us-omb-ai-vulnerability-detection-grant-funding-2026 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: Sec. 2(e) of the Executive Order Promoting Advanced Artificial Intelligence Innovation and Security signed June 2, 2026 directs the Director of the Office of Management and Budget, in coordination wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-omb-ai-vulnerability-detection-grant-funding-2026.json #### US OMB Memorandum M-24-10 - Advancing Governance, Innovation, and Risk Management for Agency Use of AI, Executed 28 March 2024 - **ID**: us-omb-m-24-10-federal-ai-governance-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: US Federal agencies using artificial intelligence must, under OMB Memorandum M-24-10 executed on 28 March 2024, complete an AI impact assessment before using any safety- or rights-impacting AI that st... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-omb-m-24-10-federal-ai-governance-2024.json #### OMB Memorandum M-24-10 (2024) - Advancing Governance, Innovation and Risk Management for Agency Use of Artificial Intelligence - **ID**: us-omb-m-24-10-federal-ai-governance-risk-management - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: OMB Memorandum M-24-10 (28 March 2024) implements Section 10.1(b) of Executive Order 14110 and establishes binding governance, innovation, and risk management practices for all civilian executive bran... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-omb-m-24-10-federal-ai-governance-risk-management.json #### OMB Memorandum M-24-18 (2024) - Advancing the Responsible Acquisition of Artificial Intelligence in Government - **ID**: us-omb-m-24-18-federal-ai-acquisition-guidance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: OMB Memorandum M-24-18 (3 October 2024) implements Section 10.1(d)(ii) of Executive Order 14110 and establishes binding federal AI acquisition guidance for civilian executive branch agencies. The memo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-omb-m-24-18-federal-ai-acquisition-guidance.json #### US OMB Memorandum M-24-10 - Advancing Governance, Innovation, and Risk Management for Agency Use of AI - **ID**: us-omb-memorandum-ai-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: US Office of Management and Budget Memorandum M-24-10 (March 28, 2024) establishes minimum governance requirements for federal agency use of artificial intelligence pursuant to Executive Order 14110; ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-omb-memorandum-ai-2024.json #### US OSTP Blueprint for an AI Bill of Rights - Five Principles for Automated Systems - **ID**: us-ostp-blueprint-ai-bill-of-rights - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The White House Office of Science and Technology Policy (OSTP) Blueprint for an AI Bill of Rights (October 2022) establishes five principles and associated practices that should guide the design, deve... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ostp-blueprint-ai-bill-of-rights.json #### California Bot Disclosure Law - SB 1001 (Effective July 1, 2019) - **ID**: us-state-california-sb-1001-bot-disclosure-2018 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: California Senate Bill 1001 (Hertzberg, 2018) was signed by Governor Brown on September 28, 2018 and took effect July 1, 2019 as the first US state law requiring bot disclosure in consumer-facing inte... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-state-california-sb-1001-bot-disclosure-2018.json #### Illinois HB 3773 - Amendments to Illinois Human Rights Act for AI in Employment (Signed August 9 2024, Effective January 1 2026) - **ID**: us-state-illinois-hb-3773-ai-employment-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Illinois House Bill 3773 was signed by Governor Pritzker on August 9, 2024 and takes effect January 1, 2026. The Bill amends the Illinois Human Rights Act at 775 ILCS 5 to prohibit employer use of art... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-state-illinois-hb-3773-ai-employment-2024.json #### Michigan Campaign Deepfake Disclosure Law - Public Acts 263-265 of 2023 (Effective February 13, 2024) - **ID**: us-state-michigan-ai-deepfake-pa-264-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Michigan Public Acts 263, 264, and 265 of 2023 were signed by Governor Gretchen Whitmer on November 30, 2023 and took effect February 13, 2024. The Acts amend the Michigan Campaign Finance Act and the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-state-michigan-ai-deepfake-pa-264-2023.json #### Tennessee Ensuring Likeness Voice and Image Security Act (ELVIS Act) - HB 2091 / SB 2096 (Signed March 21 2024) - **ID**: us-state-tennessee-elvis-act-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Tennessee Ensuring Likeness Voice and Image Security Act (ELVIS Act) was signed by Governor Bill Lee on March 21, 2024 and took effect July 1, 2024. The ELVIS Act amends the Tennessee Personal Rights ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-state-tennessee-elvis-act-2024.json #### Utah Artificial Intelligence Policy Act (SB 149, Signed March 13, 2024) - **ID**: us-state-utah-ai-policy-act-sb149-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Utah Senate Bill 149, the Utah Artificial Intelligence Policy Act, was signed by the Governor on March 13, 2024 and took effect May 1, 2024. The Act was the first US state AI consumer disclosure law o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-state-utah-ai-policy-act-sb149-2024.json #### US Treasury - Managing Artificial Intelligence-Specific Cybersecurity Risks in the Financial Services Sector (March 2024) - **ID**: us-treasury-managing-ai-cyber-risk-financial-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The US Department of the Treasury published Managing Artificial Intelligence-Specific Cybersecurity Risks in the Financial Services Sector on March 27, 2024, pursuant to Section 4.3(b) of Executive Or... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-treasury-managing-ai-cyber-risk-financial-2024.json #### Texas HB 149 - Responsible Artificial Intelligence Governance Act (TRAIGA) - **ID**: us-tx-hb149-traiga-2025 - **Category**: AI Governance & Law - **Version**: 1.0.1 - **BLUF**: Texas HB 149 (TRAIGA) takes effect 1 January 2026, creating Chapter 552 of the Business & Commerce Code. It imposes disclosure obligations on government AI use, prohibits AI deployments that intention... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tx-hb149-traiga-2025.json #### Texas House Bill 2060 (88th Legislature, 2023) - Artificial Intelligence Advisory Council and Automated Decision Systems Inventory (Government Code Chapter 2054, Subchapter S, Sections 2054.621-2054.624) - **ID**: us-tx-hb2060-ai-advisory-council-2023 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Texas House Bill 2060, enacted by the 88th Legislature (2023), adds Subchapter S to Chapter 2054 of the Texas Government Code (Sections 2054.621 through 2054.624) creating the Texas Artificial Intelli... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tx-hb2060-ai-advisory-council-2023.json #### Texas Responsible AI Governance Act 2025, TRAIGA HB 149 - Intent-Based Prohibitions, Governmental Disclosure, and NIST AI RMF Safe Harbour - **ID**: us-tx-traiga-hb-149-2025 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Developers and deployers of artificial intelligence systems in or affecting Texas must, from 1 January 2026, refrain from developing or deploying AI systems with the intent to incite or encourage a pe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tx-traiga-hb-149-2025.json #### Texas Responsible Artificial Intelligence Governance Act (TRAIGA) - HB 149 (89R) - **ID**: us-tx-traiga-hb149-2025-responsible-ai-governance - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: The Texas Responsible Artificial Intelligence Governance Act (HB 149 of the 89th Legislature, Regular Session) adds new Subtitle D (Chapters 551 to 554) to Title 11 of the Texas Business and Commerce ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tx-traiga-hb149-2025-responsible-ai-governance.json #### Utah Artificial Intelligence Policy Act 2024 (SB 149) - **ID**: us-ut-ai-policy-act-2024 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Utah SB 149 signed March 13, 2024 effective May 1, 2024 requires regulated entities in consumer-facing industries including insurance, financial services, and real estate to disclose to consumers when... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ut-ai-policy-act-2024.json #### Vietnam Law on Artificial Intelligence (Law No. 134/2025/QH15) - **ID**: vietnam-ai-law-134-2025-qh15 - **Category**: AI Governance & Law - **Version**: 1.0.0 - **BLUF**: Vietnam's Law on Artificial Intelligence No. 134/2025/QH15 was passed by the National Assembly of the Socialist Republic of Vietnam on 10 December 2025 and takes effect on 1 March 2026. It is the firs... - **Discovery URL**: https://bidda.com/api/v1/nodes/vietnam-ai-law-134-2025-qh15.json #### SA AI Accountability Framework - POPIA §71 + Pending National AI Policy - **ID**: za-national-ai-policy-2026 - **Category**: AI Governance & Law - **Version**: 1.2.0 - **BLUF**: Operationalizing POPIA Section 71 automated-decision-making obligations and the forthcoming republished SA National AI Policy. Original April 2026 draft withdrawn by DCDT on 2026-04-26 due to source-i... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-national-ai-policy-2026.json ### Adult Industry & Sexual Content Compliance (117 nodes) #### Australia Criminal Code Act 1995 Section 474.25A - Using a Carriage Service to Procure a Child - **ID**: au-criminal-code-act-1995-section-474-25a-using-carriage-service-procure-child - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 474.25A of the Criminal Code Act 1995 (Cth) makes it an offence to use a carriage service to engage in sexual activity with a person who is under 16 years of age. The offence requires (1) the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-criminal-code-act-1995-section-474-25a-using-carriage-service-procure-child.json #### Australia Online Safety Act 2021 - eSafety Commissioner Removal Notice Scheme - **ID**: au-online-safety-act-2021-removal-notice-scheme - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: The Online Safety Act 2021 (Cth) establishes the eSafety Commissioner as the federal regulator with formal removal-notice powers across multiple harm schemes: Part 5 cyberbullying material targeted at... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-online-safety-act-2021-removal-notice-scheme.json #### Canada Criminal Code Section 162.1 - Publication of an Intimate Image Without Consent and Section 162.2 Prohibition Order (Protecting Canadians from Online Crime Act SC 2014 c. 31) - **ID**: ca-criminal-code-162-1-intimate-image-without-consent - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 162.1 of the Criminal Code of Canada (R.S.C. 1985, c. C-46), enacted by the Protecting Canadians from Online Crime Act SC 2014 c. 31, criminalises the publication, distribution, transmission, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-criminal-code-162-1-intimate-image-without-consent.json #### Canada Criminal Code Section 151 - Sexual Interference with a Person Under 16 - **ID**: ca-criminal-code-section-151-sexual-interference-under-16 - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 151 of the Criminal Code of Canada makes it an offence for a person to, for a sexual purpose, touch, directly or indirectly, with a part of the body or with an object, any part of the body of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-criminal-code-section-151-sexual-interference-under-16.json #### Canada Criminal Code Section 163 - Obscene Material Distribution and Possession Offences (R.S.C. 1985 c. C-46) - **ID**: ca-criminal-code-section-163-obscene-materials - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 163 of the Canadian Criminal Code (R.S.C. 1985, c. C-46) is the principal federal criminal prohibition on the production, publication, distribution, circulation, sale, public exhibition and po... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-criminal-code-section-163-obscene-materials.json #### Canada Criminal Code Section 163 - Offences Tending to Corrupt Morals (Obscene Matter) - **ID**: ca-criminal-code-section-163-obscene-matter - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 163 of the Canadian Criminal Code (R.S.C. 1985, c. C-46) creates federal criminal offences for the making, distribution, and possession-for-distribution of obscene matter: subsection (1) makes... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-criminal-code-section-163-obscene-matter.json #### Canada Criminal Code Section 172.1 - Luring a Child via Telecommunications - **ID**: ca-criminal-code-section-172-1-luring-a-child - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 172.1 of the Criminal Code of Canada makes it an offence to communicate by a means of telecommunication with (a) a person who is, or who the accused believes is, under the age of 18 years, for... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-criminal-code-section-172-1-luring-a-child.json #### Council of Europe Lanzarote Convention 2007 Article 18 - Sexual Abuse of Children - **ID**: coe-lanzarote-convention-2007-article-18-sexual-abuse - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Article 18 of the Council of Europe Convention on the Protection of Children against Sexual Exploitation and Sexual Abuse (Lanzarote Convention, CETS No. 201, 2007) requires States Parties to criminal... - **Discovery URL**: https://bidda.com/api/v1/nodes/coe-lanzarote-convention-2007-article-18-sexual-abuse.json #### Germany JuSchG §10b - Entwicklungsbeeinträchtigende Medien (Development-Impairing Media Risk Factors) - **ID**: de-juschg-10b-entwicklungsbeeintraechtigende-medien - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 10b of the German Jugendschutzgesetz (JuSchG - Youth Protection Act of 23 July 2002 BGBl. I S. 2730 as amended by the Zweites Gesetz zur Änderung des Jugendschutzgesetzes of 9 April 2021 BGBl.... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-juschg-10b-entwicklungsbeeintraechtigende-medien.json #### Germany JuSchG §14a - Kennzeichnung bei Film- und Spielplattformen (Age Labeling on Film and Game Platforms) - **ID**: de-juschg-14a-film-game-platform-labeling - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 14a of the German Jugendschutzgesetz (JuSchG - Youth Protection Act of 23 July 2002 BGBl. I S. 2730, comprehensively reformed by the Zweites Gesetz zur Änderung des Jugendschutzgesetzes of 9 A... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-juschg-14a-film-game-platform-labeling.json #### Germany StGB Section 184a - Distribution of Violence and Bestiality Pornographic Content - **ID**: de-stgb-184a-gewalt-tierpornographische-inhalte - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 184a of the German Strafgesetzbuch (StGB; Criminal Code) prohibits the distribution, public dissemination and supply-chain handling of pornographic content depicting violence or sexual acts in... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-stgb-184a-gewalt-tierpornographische-inhalte.json #### Germany StGB Section 184b - Distribution, Acquisition and Possession of Child Sexual Abuse Material (Kinderpornographische Inhalte) - **ID**: de-stgb-184b-kinderpornographische-inhalte - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 184b of the German Strafgesetzbuch (StGB; Criminal Code) prohibits the distribution, public dissemination, manufacture, supply-chain handling, acquisition and possession of child sexual abuse ... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-stgb-184b-kinderpornographische-inhalte.json #### Germany StGB Section 184c - Distribution, Acquisition and Possession of Youth Pornographic Content (Persons Aged 14 to 18) - **ID**: de-stgb-184c-jugendpornographische-inhalte - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 184c of the German Strafgesetzbuch (StGB; Criminal Code) prohibits the distribution, public dissemination, manufacture, supply-chain handling, acquisition and possession of youth pornographic ... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-stgb-184c-jugendpornographische-inhalte.json #### Germany Strafgesetzbuch (StGB) Section 184b - Distribution, Acquisition, and Possession of Child Pornographic Content - **ID**: de-strafgesetzbuch-section-184b-distribution-csam - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 184b of the German Strafgesetzbuch (StGB - Criminal Code) criminalises the distribution, public availability, production, importation, exportation, acquisition, and possession of child pornogr... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-strafgesetzbuch-section-184b-distribution-csam.json #### EU Audiovisual Media Services Directive Article 28b - Video-Sharing Platform Obligations to Protect Minors and the Public - **ID**: eu-avmsd-article-28b-video-sharing-platform-obligations - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Article 28b of Directive 2010/13/EU (as inserted by Directive (EU) 2018/1808) requires Member States to ensure that video-sharing platform providers under their jurisdiction take appropriate measures ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-avmsd-article-28b-video-sharing-platform-obligations.json #### EU Directive 2011/93/EU Article 3 - Offences Concerning Sexual Abuse - **ID**: eu-directive-2011-93-article-3-sexual-abuse-offences - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Article 3 of Directive 2011/93/EU on combating the sexual abuse and sexual exploitation of children and child pornography requires EU Member States to criminalise specified intentional sexual abuse co... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2011-93-article-3-sexual-abuse-offences.json #### EU Directive 2011/93/EU Article 4 - Offences Concerning Sexual Exploitation - **ID**: eu-directive-2011-93-article-4-sexual-exploitation - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Article 4 of Directive 2011/93/EU on combating the sexual abuse and sexual exploitation of children requires EU Member States to criminalise intentional conduct concerning the sexual exploitation of c... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2011-93-article-4-sexual-exploitation.json #### EU Directive 2011/93/EU Article 5 - Offences Concerning Child Pornography - **ID**: eu-directive-2011-93-article-5-offences-concerning-child-pornography - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Article 5 of Directive 2011/93/EU requires EU Member States to criminalise intentional conduct concerning child pornography. Article 5(2)-(8) sets minimum maximum penalties: acquisition or possession ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2011-93-article-5-offences-concerning-child-pornography.json #### EU Directive 2011/93/EU Article 6 - Solicitation of Children for Sexual Purposes (Grooming) - **ID**: eu-directive-2011-93-article-6-solicitation-of-children-sexual-purposes - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Article 6 of Directive 2011/93/EU requires EU Member States to criminalise the solicitation of children for sexual purposes via information and communication technology. Article 6(1) covers the propos... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2011-93-article-6-solicitation-of-children-sexual-purposes.json #### EU Digital Services Act Article 28 - Online Protection of Minors (Regulation 2022/2065, Profiling-Based Advertising Ban, Appropriate Measures, No Additional Personal Data) - **ID**: eu-dsa-article-28-online-protection-of-minors - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Article 28 of Regulation (EU) 2022/2065 of the European Parliament and of the Council of 19 October 2022 on a Single Market for Digital Services (the Digital Services Act, DSA) imposes three operative... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dsa-article-28-online-protection-of-minors.json #### France Code Pénal Article 227-23 - Distribution, Recording, and Possession of Child Pornographic Imagery - **ID**: fr-code-penal-article-227-23-csam-distribution - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Article 227-23 of the French Code Pénal criminalises the recording, transmission, distribution, importation, exportation, offering, making available, acquisition, viewing, and possession of pornograph... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-code-penal-article-227-23-csam-distribution.json #### France LOI n° 2024-449 du 21 mai 2024 (Loi SREN) - Age Verification for Online Pornography (ARCOM Enforcement) - **ID**: fr-loi-sren-2024-449-age-verification-pornography - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Loi n° 2024-449 du 21 mai 2024 visant à sécuriser et à réguler l'espace numérique (Loi SREN; JORF n°0117 du 22 mai 2024; NOR: ECOI2309270L) overhauls the French regulatory regime for online services, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-loi-sren-2024-449-age-verification-pornography.json #### Ireland Online Safety and Media Regulation Act 2022 (No. 41 of 2022, Coimisiún na Meán, Online Safety Codes, Designated Online Services, Section 139A Harmful Online Content Categories) - **ID**: ie-online-safety-and-media-regulation-act-2022 - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: The Online Safety and Media Regulation Act 2022 (No. 41 of 2022) of Ireland establishes Coimisiún na Meán (the Media Commission) and confers on it powers to regulate broadcasting services, audiovisual... - **Discovery URL**: https://bidda.com/api/v1/nodes/ie-online-safety-and-media-regulation-act-2022.json #### India IT Rules 2021 - Rule 3 Intermediary Due Diligence and Rule 4 Significant Social Media Intermediary Obligations for Adult Content, Non-Consensual Intimate Imagery and Child Safety - **ID**: in-it-rules-2021-rule-3-rule-4-intermediary-due-diligence - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: The Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021 (commonly the IT Rules 2021) were notified by the Ministry of Electronics and Information Technology (Mei... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-it-rules-2021-rule-3-rule-4-intermediary-due-diligence.json #### India POCSO Act 2012 Section 3 - Penetrative Sexual Assault Against a Child - **ID**: in-pocso-act-2012-section-3-penetrative-sexual-assault - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 3 of the Protection of Children from Sexual Offences Act, 2012 (POCSO Act) of India defines penetrative sexual assault against a child (under 18). A person is said to commit penetrative sexual... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-pocso-act-2012-section-3-penetrative-sexual-assault.json #### New Zealand Films, Videos, and Publications Classification Act 1993 Section 3 - Meaning of Objectionable Publication - **ID**: nz-films-videos-publications-classification-act-1993-section-3-publication - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 3 of the New Zealand Films, Videos, and Publications Classification Act 1993 defines when a publication is 'objectionable' - the core trigger for criminal prohibition under Sections 123-131A. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-films-videos-publications-classification-act-1993-section-3-publication.json #### UK Coroners and Justice Act 2009 Section 62 - Possession of Prohibited Images of Children - **ID**: uk-coroners-and-justice-act-2009-section-62-prohibited-images-children - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 62 of the Coroners and Justice Act 2009 makes it an offence for a person to be in possession of a prohibited image of a child. A 'prohibited image of a child' must satisfy three criteria: it i... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-coroners-and-justice-act-2009-section-62-prohibited-images-children.json #### UK Criminal Justice Act 1988 Section 160 - Possession of Indecent Photograph of a Child - **ID**: uk-criminal-justice-act-1988-section-160-possession-indecent-photograph-child - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 160 of the Criminal Justice Act 1988 makes it an offence for a person to have any indecent photograph or pseudo-photograph of a child in their possession. Three statutory defences are availabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-criminal-justice-act-1988-section-160-possession-indecent-photograph-child.json #### UK Extreme Pornography Possession Offence - Criminal Justice and Immigration Act 2008 Section 63 - **ID**: uk-criminal-justice-immigration-act-2008-section-63-extreme-pornography - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 63 of the UK Criminal Justice and Immigration Act 2008 (c. 4) created a possession offence for extreme pornographic images in England, Wales, and Northern Ireland (Scotland addressed separatel... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-criminal-justice-immigration-act-2008-section-63-extreme-pornography.json #### UK Domestic Abuse Act 2021 Section 70 - Non-Fatal Strangulation or Suffocation - **ID**: uk-domestic-abuse-act-2021-section-70-non-fatal-strangulation - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 70 of the Domestic Abuse Act 2021 inserts Section 75A into the Serious Crime Act 2015, creating a standalone offence of non-fatal strangulation or suffocation. The offence is committed where a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-domestic-abuse-act-2021-section-70-non-fatal-strangulation.json #### UK Domestic Abuse Act 2021 Section 71 - Consent to Serious Harm for Sexual Gratification Not a Defence - **ID**: uk-domestic-abuse-act-2021-section-71-consent-to-serious-harm-sexual-gratification - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 71 of the Domestic Abuse Act 2021 codifies that a person ('D') cannot consent to the infliction of serious harm for the purposes of obtaining sexual gratification, and accordingly such purport... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-domestic-abuse-act-2021-section-71-consent-to-serious-harm-sexual-gratification.json #### UK Indecent Displays (Control) Act 1981 (c. 42) - Public Indecent Display Offence - **ID**: uk-indecent-displays-control-act-1981 - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: The UK Indecent Displays (Control) Act 1981 (c. 42) makes it an offence to publicly display indecent matter: Section 1(1) provides 'If any indecent matter is publicly displayed the person making the d... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-indecent-displays-control-act-1981.json #### UK Obscene Publications Act 1959 (c. 66) - Test of Obscenity and Prohibition of Publication - **ID**: uk-obscene-publications-act-1959 - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: The UK Obscene Publications Act 1959 (7 & 8 Eliz. 2, c. 66), as amended by the Obscene Publications Act 1964 and subsequent statutes, establishes the foundational test of obscenity in England, Wales, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-obscene-publications-act-1959.json #### UK Online Safety Act 2023 Part 3 - Illegal Content Risk Assessment, Safety Duties, and Children's Protection Duties (Sections 9-12) - **ID**: uk-online-safety-act-2023-part-3-illegal-content-children-duties - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Online Safety Act 2023 (c.50) Part 3 imposes duties of care on providers of regulated user-to-user services and regulated search services with respect to illegal content and content harmful to childre... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-part-3-illegal-content-children-duties.json #### UK Online Safety Act 2023 Part 5 - Duties on Internet Services Publishing Pornographic Content - **ID**: uk-online-safety-act-2023-part-5-pornographic-content-duties - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Part 5 of the UK Online Safety Act 2023 imposes a standalone regulatory regime on internet services that publish or display regulated provider pornographic content. Section 80 establishes scope: any i... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-part-5-pornographic-content-duties.json #### UK Online Safety Act 2023 Section 11 - Children's Risk Assessment Duties (User-to-User Services) - **ID**: uk-online-safety-act-2023-section-11-childrens-risk-assessment - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Providers of regulated user-to-user services that are likely to be accessed by children must carry out suitable and sufficient children's risk assessments at the times specified in Schedule 3 (initial... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-11-childrens-risk-assessment.json #### UK Online Safety Act 2023 Section 12 - Children's Safety Duties (Proportionate Measures, Primary Priority Content Encounter Prevention, Highly Effective Age Verification or Estimation) - **ID**: uk-online-safety-act-2023-section-12-childrens-safety-duties - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 12 of the Online Safety Act 2023 (c. 50) imposes the foundational children's safety duty on user-to-user services likely to be accessed by children - the downstream operational compliance obli... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-12-childrens-safety-duties.json #### UK Online Safety Act 2023 Section 66 - Mandatory CSEA Content Reporting to the NCA (UK Providers Full Reporting, Non-UK Providers UK-Linked Content Only, Search Service Coverage, Section 70 Definitions) - **ID**: uk-online-safety-act-2023-section-66-csea-reporting-nca - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 66 of the Online Safety Act 2023 (c. 50) creates a statutory CSEA (Child Sexual Exploitation and Abuse) reporting duty under which providers of regulated user-to-user services, search services... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-66-csea-reporting-nca.json #### UK Online Safety Act 2023 Section 81 - Duties about Regulated Provider Pornographic Content (Part 5 Services, Highly Effective Age Verification or Age Estimation, Written Records, Public Statement, 17 January 2025 Commencement) - **ID**: uk-online-safety-act-2023-section-81-pornographic-content-duties - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 81 of the Online Safety Act 2023 (c. 50) sets out the substantive duties about regulated provider pornographic content for internet services within section 80(2) (Part 5 services - providers o... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-81-pornographic-content-duties.json #### UK Protection from Harassment Act 1997 Section 1 - Prohibition of Harassment - **ID**: uk-protection-from-harassment-act-1997-section-1-prohibition-of-harassment - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 1 of the Protection from Harassment Act 1997 prohibits a person from pursuing a course of conduct (i) which amounts to harassment of another and (ii) which he knows or ought to know amounts to... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-protection-from-harassment-act-1997-section-1-prohibition-of-harassment.json #### UK Protection from Harassment Act 1997 Section 4 - Putting People in Fear of Violence - **ID**: uk-protection-from-harassment-act-1997-section-4-fear-of-violence - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 4 of the Protection from Harassment Act 1997 makes it an offence for a person whose course of conduct causes another to fear, on at least two occasions, that violence will be used against him,... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-protection-from-harassment-act-1997-section-4-fear-of-violence.json #### UK Protection of Children Act 1978 Section 1 - Indecent Photographs of Children - **ID**: uk-protection-of-children-act-1978-section-1-indecent-photographs-children - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 1 of the Protection of Children Act 1978 (PCA 1978) creates four offences related to indecent photographs or pseudo-photographs of children: (a) taking, permitting to be taken, or making such ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-protection-of-children-act-1978-section-1-indecent-photographs-children.json #### UK Serious Crime Act 2015 Section 69 - Possession of Paedophile Manual - **ID**: uk-serious-crime-act-2015-section-69-possession-paedophile-manual - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 69 of the Serious Crime Act 2015 makes it an offence to be in possession of any item that contains advice or guidance about abusing children sexually. Three statutory defences are available wh... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-serious-crime-act-2015-section-69-possession-paedophile-manual.json #### UK Sexual Offences Act 2003 Section 1 - Rape - **ID**: uk-sexual-offences-act-2003-section-1-rape - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: A person (A) commits rape if he intentionally penetrates the vagina, anus or mouth of another person (B) with his penis, B does not consent to the penetration, and A does not reasonably believe that B... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-1-rape.json #### UK Sexual Offences Act 2003 Section 10 - Causing or Inciting a Child to Engage in Sexual Activity - **ID**: uk-sexual-offences-act-2003-section-10-causing-inciting-child-sexual-activity - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: A person aged 18 or over (A) commits an offence under Section 10 if he intentionally causes or incites another person (B) to engage in an activity, the activity is sexual, and either B is under 16 and... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-10-causing-inciting-child-sexual-activity.json #### UK Sexual Offences Act 2003 Section 11 - Engaging in Sexual Activity in the Presence of a Child - **ID**: uk-sexual-offences-act-2003-section-11-engaging-sexual-activity-presence-child - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: A person aged 18 or over (A) commits an offence under Section 11 if he intentionally engages in an activity that is sexual, for the purpose of obtaining sexual gratification, and does so when another ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-11-engaging-sexual-activity-presence-child.json #### UK Sexual Offences Act 2003 Section 12 - Causing a Child to Watch a Sexual Act - **ID**: uk-sexual-offences-act-2003-section-12-causing-child-to-watch-sexual-act - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: A person aged 18 or over (A) commits an offence under Section 12 if, for the purpose of obtaining sexual gratification, he intentionally causes another person (B) to watch a third person engaging in a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-12-causing-child-to-watch-sexual-act.json #### UK Sexual Offences Act 2003 Section 13 - Child Sex Offences Committed by Children or Young Persons - **ID**: uk-sexual-offences-act-2003-section-13-child-sex-offences-by-under-18s - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 13 of the Sexual Offences Act 2003 provides that a person under 18 who does anything that would constitute an offence under any of Sections 9 to 12 (sexual activity with a child, causing or in... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-13-child-sex-offences-by-under-18s.json #### UK Sexual Offences Act 2003 Section 14 - Arranging or Facilitating Commission of a Child Sex Offence - **ID**: uk-sexual-offences-act-2003-section-14-arranging-facilitating-child-sex-offence - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: A person commits an offence under Section 14 if he intentionally arranges or facilitates something that he intends to do, intends another person to do, or believes that another person will do, in any ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-14-arranging-facilitating-child-sex-offence.json #### UK Sexual Offences Act 2003 Section 15 - Meeting a Child Following Sexual Grooming Etc (Adult Defendant Aged 18+, Prior Communication, Travel or Meeting With Intent, Child Under 16) - **ID**: uk-sexual-offences-act-2003-section-15-meeting-child-following-grooming - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 15 of the Sexual Offences Act 2003 (c. 42) creates the offence of meeting a child following sexual grooming. Under section 15(1), a person aged 18 or over (A) commits an offence if (a) A has m... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-15-meeting-child-following-grooming.json #### UK Sexual Offences Act 2003 Section 15A - Sexual Communication with a Child - **ID**: uk-sexual-offences-act-2003-section-15a-sexual-communication-with-child - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 15A SOA 2003 (inserted by the Serious Crime Act 2015 Section 67, in force 3 April 2017) makes it an offence for a person aged 18 or over (A) to communicate intentionally with another person (B... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-15a-sexual-communication-with-child.json #### UK Sexual Offences Act 2003 Section 16 - Abuse of Position of Trust: Sexual Activity with a Child - **ID**: uk-sexual-offences-act-2003-section-16-abuse-of-position-of-trust - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: A person aged 18 or over (A) commits an offence under Section 16 if he intentionally touches another person (B), the touching is sexual, A is in a position of trust in relation to B, A meets the knowl... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-16-abuse-of-position-of-trust.json #### UK Sexual Offences Act 2003 Section 17 - Abuse of Position of Trust: Causing or Inciting Sexual Activity - **ID**: uk-sexual-offences-act-2003-section-17-abuse-of-position-of-trust-causing-sexual-activity - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 17 of the Sexual Offences Act 2003 makes it an offence for a person aged 18 or over (A) intentionally to cause or incite another person (B) to engage in sexual activity, where B is under 18, A... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-17-abuse-of-position-of-trust-causing-sexual-activity.json #### UK Sexual Offences Act 2003 Section 18 - Abuse of Position of Trust: Sexual Activity in the Presence of a Child - **ID**: uk-sexual-offences-act-2003-section-18-sexual-activity-in-presence-of-child-position-of-trust - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 18 of the Sexual Offences Act 2003 makes it an offence for a person aged 18 or over (A) intentionally to engage in an activity, where the activity is sexual, A engages in it for the purpose of... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-18-sexual-activity-in-presence-of-child-position-of-trust.json #### UK Sexual Offences Act 2003 Section 19 - Abuse of Position of Trust: Causing a Child to Watch a Sexual Act - **ID**: uk-sexual-offences-act-2003-section-19-causing-child-watch-sexual-act-position-of-trust - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 19 of the Sexual Offences Act 2003 makes it an offence for a person aged 18 or over (A), for the purpose of obtaining sexual gratification, intentionally to cause another person (B) to watch a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-19-causing-child-watch-sexual-act-position-of-trust.json #### UK Sexual Offences Act 2003 Section 2 - Assault by Penetration - **ID**: uk-sexual-offences-act-2003-section-2-assault-by-penetration - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 2 of the Sexual Offences Act 2003 makes it an offence intentionally to penetrate the vagina or anus of another person (B) with a part of one's body or anything else, where the penetration is s... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-2-assault-by-penetration.json #### UK Sexual Offences Act 2003 Section 25 - Sexual Activity with a Child Family Member - **ID**: uk-sexual-offences-act-2003-section-25-sexual-activity-with-child-family-member - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 25 of the Sexual Offences Act 2003 makes it an offence intentionally to touch another person (B) who is under 18 and a family member, where the touching is sexual and A knows or could reasonab... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-25-sexual-activity-with-child-family-member.json #### UK Sexual Offences Act 2003 Section 30 - Sexual Activity with a Person with a Mental Disorder Impeding Choice - **ID**: uk-sexual-offences-act-2003-section-30-sexual-activity-mental-disorder-impeding-choice - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 30 of the Sexual Offences Act 2003 makes it an offence for a person (A) intentionally to touch another person (B) sexually where B is unable to refuse because of, or for a reason related to, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-30-sexual-activity-mental-disorder-impeding-choice.json #### UK Sexual Offences Act 2003 Section 4 - Causing a Person to Engage in Sexual Activity Without Consent - **ID**: uk-sexual-offences-act-2003-section-4-causing-sexual-activity-without-consent - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 4 of the Sexual Offences Act 2003 makes it an offence intentionally to cause another person (B) to engage in sexual activity where B does not consent and the defendant does not reasonably beli... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-4-causing-sexual-activity-without-consent.json #### UK Sexual Offences Act 2003 Section 47 - Paying for Sexual Services of a Child - **ID**: uk-sexual-offences-act-2003-section-47-paying-for-sexual-services-of-child - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 47 of the Sexual Offences Act 2003 makes it an offence intentionally to obtain, for oneself, the sexual services of a person under 18 in circumstances where one has, before obtaining those ser... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-47-paying-for-sexual-services-of-child.json #### UK Sexual Offences Act 2003 Section 5 - Rape of a Child Under 13 - **ID**: uk-sexual-offences-act-2003-section-5-rape-of-child-under-13 - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: A person commits the offence of rape of a child under 13 if he intentionally penetrates the vagina, anus or mouth of another person with his penis and the other person is under 13. The offence is stri... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-5-rape-of-child-under-13.json #### UK Sexual Offences Act 2003 Section 53A - Paying for Sexual Services of a Prostitute Subjected to Force - **ID**: uk-sexual-offences-act-2003-section-53a-paying-for-sexual-services-forced-prostitute - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 53A of the Sexual Offences Act 2003 (added by the Policing and Crime Act 2009) makes it a strict liability offence for a person (A) to make or promise payment for the sexual services of a pros... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-53a-paying-for-sexual-services-forced-prostitute.json #### UK Sexual Offences Act 2003 Section 6 - Assault by Penetration of a Child Under 13 - **ID**: uk-sexual-offences-act-2003-section-6-assault-by-penetration-child-under-13 - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 6 of the Sexual Offences Act 2003 makes it an offence for a person intentionally to penetrate the vagina or anus of a person under 13 with a part of his body or anything else, where the penetr... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-6-assault-by-penetration-child-under-13.json #### UK Sexual Offences Act 2003 Section 61 - Administering a Substance with Intent - **ID**: uk-sexual-offences-act-2003-section-61-administering-substance-with-intent - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 61 SOA 2003 makes it an offence to intentionally administer a substance to, or cause a substance to be taken by, another person (B), knowing that B does not consent, and with the intention of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-61-administering-substance-with-intent.json #### UK Sexual Offences Act 2003 Section 62 - Committing an Offence with Intent to Commit a Sexual Offence - **ID**: uk-sexual-offences-act-2003-section-62-committing-offence-with-intent-sexual-offence - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 62 SOA 2003 creates an aggravated offence where a person commits any offence with the intention of committing a relevant sexual offence under Part 1 SOA 2003. 'Relevant sexual offence' include... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-62-committing-offence-with-intent-sexual-offence.json #### UK Sexual Offences Act 2003 Section 63 - Trespass with Intent to Commit a Sexual Offence - **ID**: uk-sexual-offences-act-2003-section-63-trespass-with-intent-commit-sexual-offence - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 63 of the Sexual Offences Act 2003 makes it an offence to be on any premises as a trespasser, knowing or being reckless as to whether one is a trespasser, with intent to commit a relevant sexu... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-63-trespass-with-intent-commit-sexual-offence.json #### UK Sexual Offences Act 2003 Section 66 - Exposure - **ID**: uk-sexual-offences-act-2003-section-66-exposure - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 66 of the Sexual Offences Act 2003 makes it an offence for a person intentionally to expose their genitals where they intend that someone will see them and be caused alarm or distress. The off... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-66-exposure.json #### UK Sexual Offences Act 2003 Section 66A (Cyberflashing) and Section 66B (Sharing or Threatening to Share Intimate Photograph or Film) - As Inserted by the Online Safety Act 2023 - **ID**: uk-sexual-offences-act-2003-section-66a-66b-cyberflashing-intimate-image - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Sections 66A, 66B, 66C, and 66D of the Sexual Offences Act 2003 (c. 42) of the United Kingdom, as inserted by the Online Safety Act 2023 (c. 50), create new criminal offences targeting the non-consens... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-66a-66b-cyberflashing-intimate-image.json #### UK Sexual Offences Act 2003 Section 67 - Voyeurism (Observing Private Act for Sexual Gratification, Operating Equipment, Recording, Installing Equipment) - **ID**: uk-sexual-offences-act-2003-section-67-voyeurism - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 67 of the Sexual Offences Act 2003 (c. 42) creates four voyeurism offences. Under section 67(1), a person commits an offence if (a) for the purpose of obtaining sexual gratification he observe... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-67-voyeurism.json #### UK Sexual Offences Act 2003 Section 7 - Sexual Assault of a Child Under 13 - **ID**: uk-sexual-offences-act-2003-section-7-sexual-assault-of-child-under-13 - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 7 of the Sexual Offences Act 2003 makes it an offence for a person intentionally to touch another person sexually where that other person is under 13. Absolute liability applies - no reasonabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-7-sexual-assault-of-child-under-13.json #### UK Sexual Offences Act 2003 Section 72 - Offences Outside the United Kingdom - **ID**: uk-sexual-offences-act-2003-section-72-offences-outside-uk - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 72 of the Sexual Offences Act 2003 establishes extraterritorial jurisdiction for UK nationals or UK residents who commit specified sexual offences against children abroad. Where a UK national ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-72-offences-outside-uk.json #### UK Sexual Offences Act 2003 Section 8 - Causing or Inciting a Child Under 13 to Engage in Sexual Activity - **ID**: uk-sexual-offences-act-2003-section-8-causing-inciting-child-under-13-sexual-activity - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 8 of the Sexual Offences Act 2003 makes it an offence intentionally to cause or incite another person to engage in an activity, where that activity is sexual and the other person is under 13. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-8-causing-inciting-child-under-13-sexual-activity.json #### UK Sexual Offences Act 2003 Section 9 - Sexual Activity with a Child - **ID**: uk-sexual-offences-act-2003-section-9-sexual-activity-with-child - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: A person aged 18 or over (A) commits an offence if he intentionally touches another person (B), the touching is sexual, and either B is under 16 and A does not reasonably believe that B is 16 or over,... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sexual-offences-act-2003-section-9-sexual-activity-with-child.json #### UK Stalking Protection Act 2019 Section 2 - Stalking Protection Orders - **ID**: uk-stalking-protection-act-2019-section-2-stalking-protection-order - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 2 of the Stalking Protection Act 2019 empowers a magistrates' court, on application by a chief officer of police, to make a Stalking Protection Order (SPO) against a person where the court is ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-stalking-protection-act-2019-section-2-stalking-protection-order.json #### UK Voyeurism (Offences) Act 2019 Section 1 - Upskirting Offence (inserts Section 67A into SOA 2003) - **ID**: uk-voyeurism-offences-act-2019-section-1-upskirting-section-67a-soa - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Section 1 of the Voyeurism (Offences) Act 2019 inserts Section 67A into the Sexual Offences Act 2003, creating the offence of upskirting. A person commits an offence if, without consent and without re... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-voyeurism-offences-act-2019-section-1-upskirting-section-67a-soa.json #### 18 USC § 1462 - Importation or Transportation of Obscene Matters - **ID**: us-18-usc-1462-importation-transportation-obscene - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC § 1462 (originally enacted June 25, 1948, ch. 645, 62 Stat. 768; amended numerous times including Pub. L. 104-208 to add 'interactive computer service' language) makes it a federal offence for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1462-importation-transportation-obscene.json #### 18 USC § 1464 - Broadcasting Obscene, Indecent, or Profane Language - **ID**: us-18-usc-1464-broadcasting-obscene-language - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC § 1464 (originally enacted June 25, 1948, ch. 645, 62 Stat. 769) criminalizes the broadcast of obscene, indecent, or profane language by means of radio communication: 'Whoever utters any obscen... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1464-broadcasting-obscene-language.json #### 18 USC § 1465 - Production and Transportation of Obscene Matters for Sale or Distribution - **ID**: us-18-usc-1465-production-transportation-obscene-matter - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC § 1465 (originally enacted June 28, 1955, ch. 190, § 3, 69 Stat. 183; most recently amended by Pub. L. 109-248, July 27, 2006) makes it a federal offence for any person to knowingly produce wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1465-production-transportation-obscene-matter.json #### 18 USC § 1466 - Engaging in the Business of Selling or Transferring Obscene Matter - **ID**: us-18-usc-1466-engaging-business-selling-obscene - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC § 1466 (originally enacted by Pub. L. 100-690 the Anti-Drug Abuse Act of 1988, title VII, § 7521(a), 102 Stat. 4486) creates a federal offence specifically targeting commercial obscenity traffi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1466-engaging-business-selling-obscene.json #### 18 USC 1466A - Obscene Visual Representations of the Sexual Abuse of Children - **ID**: us-18-usc-1466a-obscene-visual-representations-csam - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC 1466A criminalises the knowing production, distribution, receipt, possession with intent to distribute, or possession of any visual depiction (including drawings, cartoons, sculptures and paint... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1466a-obscene-visual-representations-csam.json #### 18 USC § 1467 - Criminal Forfeiture of Property Related to Obscenity Offences - **ID**: us-18-usc-1467-criminal-forfeiture-obscenity - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC § 1467 (added by the Child Protection and Obscenity Enforcement Act of 1988, Pub. L. 100-690) provides for criminal forfeiture of property in connection with convictions under Chapter 71 (obsce... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1467-criminal-forfeiture-obscenity.json #### 18 USC § 1468 - Distributing Obscene Material by Cable or Subscription Television - **ID**: us-18-usc-1468-cable-obscene-distribution - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC § 1468 (added by the Child Protection and Obscenity Enforcement Act of 1988, Pub. L. 100-690, title VII, § 7525) criminalizes the knowing distribution of obscene material via cable or subscript... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1468-cable-obscene-distribution.json #### 18 USC § 1470 - Transfer of Obscene Material to Minors Under 16 - **ID**: us-18-usc-1470-transfer-obscene-material-minors - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC § 1470 (enacted by Pub. L. 105-314, the Protection of Children from Sexual Predators Act of 1998) makes it a federal offence for any person to knowingly use the mail or any facility or means of... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1470-transfer-obscene-material-minors.json #### 18 USC § 1591 - Sex Trafficking of Children or by Force, Fraud, or Coercion - **ID**: us-18-usc-1591-sex-trafficking-by-force-fraud-coercion - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC § 1591 (Trafficking Victims Protection Act of 2000 Pub. L. 106-386 § 112(a)(2) as amended by the Trafficking Victims Protection Reauthorization Acts of 2003, 2005, 2008, 2013, the Justice for V... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1591-sex-trafficking-by-force-fraud-coercion.json #### 18 USC § 1801 - Video Voyeurism Prevention Act of 2004 - **ID**: us-18-usc-1801-video-voyeurism-prevention-act - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC § 1801 (added by the Video Voyeurism Prevention Act of 2004, Pub. L. 108-495, signed 23 December 2004) criminalises the non-consensual capture of intimate visual recordings in federal jurisdict... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1801-video-voyeurism-prevention-act.json #### US 18 U.S.C. § 2241 - Aggravated Sexual Abuse - **ID**: us-18-usc-2241-aggravated-sexual-abuse - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2241 creates three principal aggravated sexual abuse offences. Subsection (a) by force or threat: knowingly causing another person to engage in a sexual act by using force or by threatenin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2241-aggravated-sexual-abuse.json #### US 18 U.S.C. § 2242 - Sexual Abuse - **ID**: us-18-usc-2242-sexual-abuse - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2242 criminalises sexual abuse occurring in the special maritime and territorial jurisdiction of the United States or in a Federal prison or contracted custodial facility. The statute proh... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2242-sexual-abuse.json #### US 18 U.S.C. § 2243 - Sexual Abuse of a Minor, Ward, or by Federal Law Enforcement Officer - **ID**: us-18-usc-2243-sexual-abuse-of-minor-or-ward - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2243 criminalises three categories of sexual abuse in federal jurisdiction: (a) sexual abuse of a minor between 12 and 16 years old where the offender is at least 4 years older - penalty u... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2243-sexual-abuse-of-minor-or-ward.json #### US 18 U.S.C. § 2244 - Abusive Sexual Contact - **ID**: us-18-usc-2244-abusive-sexual-contact - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2244 makes it an offence to knowingly engage in 'sexual contact' (touching of intimate body parts with sexual intent) in circumstances that would violate § 2241, § 2242, or § 2243 if the c... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2244-abusive-sexual-contact.json #### US 18 U.S.C. § 2245 - Offences Resulting in Death (Chapter 109A and 110 Sexual Offences) - **ID**: us-18-usc-2245-offences-resulting-in-death - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2245 provides that a person who, in the course of an offence under chapter 109A (federal sexual abuse §§ 2241-2244A) or under 18 U.S.C. §§ 1591 (sex trafficking by force/fraud/coercion), 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2245-offences-resulting-in-death.json #### US 18 U.S.C. § 2246 - Definitions for Chapter 109A (Sexual Abuse) - **ID**: us-18-usc-2246-definitions-chapter-109a - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2246 supplies the operative definitions for the chapter 109A federal sexual abuse offences (§§ 2241-2244). Seven defined terms: (1) prison; (2) sexual act - specified contact (penile-vulva... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2246-definitions-chapter-109a.json #### US 18 U.S.C. § 2247 - Repeat Offender Enhancement for Chapter 109A Sexual Abuse Offences - **ID**: us-18-usc-2247-repeat-offenders - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2247 provides a mandatory enhancement for federal chapter 109A sexual abuse offences (§§ 2241-2244A) where the defendant has a prior conviction for a similar federal, state, military, or f... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2247-repeat-offenders.json #### US 18 U.S.C. § 2248 - Mandatory Restitution for Chapter 109A Sexual Abuse Convictions - **ID**: us-18-usc-2248-mandatory-restitution-chapter-109a - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2248 makes restitution mandatory for federal convictions under chapter 109A (sexual abuse offences §§ 2241-2244A). The court must order the defendant to pay the victim the full amount of t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2248-mandatory-restitution-chapter-109a.json #### US 18 U.S.C. § 2250 - Failure to Register as a Sex Offender (SORNA Enforcement) - **ID**: us-18-usc-2250-failure-to-register-sex-offender - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2250 is the federal criminal enforcement provision for the Sex Offender Registration and Notification Act (SORNA, 34 U.S.C. § 20901 et seq.). Subsection (a) makes it an offence for a perso... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2250-failure-to-register-sex-offender.json #### US 18 U.S.C. 2251 - Sexual Exploitation of Children - **ID**: us-18-usc-2251-sexual-exploitation-of-children - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. 2251 criminalises the sexual exploitation of children for the production of visual depictions. Subsection (a) covers employing, using, persuading, inducing, enticing or coercing any minor to... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2251-sexual-exploitation-of-children.json #### US 18 U.S.C. 2252 - Certain Activities Relating to Material Involving Sexual Exploitation of Minors - **ID**: us-18-usc-2252-material-involving-sexual-exploitation-minors - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. 2252 criminalises four categories of conduct involving visual depictions of minors engaged in sexually explicit conduct: (1) knowing transportation or shipment using any means or facility of... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2252-material-involving-sexual-exploitation-minors.json #### US 18 U.S.C. 2252A - Material Constituting or Containing Child Pornography - **ID**: us-18-usc-2252a-child-pornography-material - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. 2252A is the principal federal statute targeting trafficking and possession of 'child pornography' as defined in 18 U.S.C. 2256(8). Subsection (a) creates seven categories of offence: (1) ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2252a-child-pornography-material.json #### 18 USC § 2256 - Definitions for Chapter 110 (Sexual Exploitation of Children) - **ID**: us-18-usc-2256-definitions-csam-chapter-110 - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC § 2256 provides the statutory definitions governing Chapter 110 of Title 18 (sexual exploitation and other abuse of children) and underpins all CSAM-related federal offences under §§ 2251-2260A... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2256-definitions-csam-chapter-110.json #### US 18 USC §2257 - Record Keeping Requirements for Producers of Sexually Explicit Visual Depictions - **ID**: us-18-usc-2257-record-keeping-explicit-content - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC §2257 imposes federal record-keeping obligations on every producer of any book, magazine, periodical, film, videotape, digital image, or picture that contains a visual depiction of actual sexua... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2257-record-keeping-explicit-content.json #### 18 USC § 2257A - Records Relating to Simulated Sexually Explicit Conduct - **ID**: us-18-usc-2257a-simulated-explicit-conduct-records - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC § 2257A (added by Pub. L. 109-248, the Adam Walsh Child Protection and Safety Act of 2006) imposes record-keeping requirements on producers of any book, magazine, periodical, film, videotape, d... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2257a-simulated-explicit-conduct-records.json #### US 18 U.S.C. § 2258A - Provider Reporting Requirements to the NCMEC CyberTipline - **ID**: us-18-usc-2258a-provider-cybertipline-reporting - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Providers of electronic communication services and remote computing services must, as soon as reasonably possible after obtaining actual knowledge, report apparent violations of 18 U.S.C. § 2251, § 22... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2258a-provider-cybertipline-reporting.json #### US 18 U.S.C. § 2258B - Limited Immunity for Electronic Service Providers Reporting to CyberTipline - **ID**: us-18-usc-2258b-provider-immunity-cybertipline - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2258B provides limited civil immunity for electronic service providers (and their officers, directors, employees, and agents) for performing the reporting and preservation obligations unde... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2258b-provider-immunity-cybertipline.json #### US 18 U.S.C. § 2259 - Mandatory Restitution for Sexual Exploitation Offences - **ID**: us-18-usc-2259-mandatory-restitution-sexual-exploitation - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2259 makes restitution mandatory for federal convictions under chapter 110 (sexual exploitation and other abuse of children) and chapter 117 (transportation for illegal sexual activity). T... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2259-mandatory-restitution-sexual-exploitation.json #### US 18 U.S.C. § 2260 - Production of Sexually Explicit Depictions of a Minor for Importation into the United States - **ID**: us-18-usc-2260-production-for-import-into-united-states - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2260 extends US criminal jurisdiction extraterritorially to two scenarios. Subsection (a) criminalises any person who, outside the United States, employs, uses, persuades, induces, entices... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2260-production-for-import-into-united-states.json #### US 18 U.S.C. § 2421 - Transportation Generally for Prostitution or Illegal Sexual Activity - **ID**: us-18-usc-2421-transportation-generally - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2421 makes it a federal offence to knowingly transport any individual in interstate or foreign commerce, or in any Territory or Possession of the United States, with intent that the indivi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2421-transportation-generally.json #### 18 USC 2421A - Promotion or Facilitation of Prostitution and Reckless Disregard of Sex Trafficking (FOSTA-SESTA) - **ID**: us-18-usc-2421a-fosta-promoting-prostitution-online - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC 2421A (added by the Allow States and Victims to Fight Online Sex Trafficking Act of 2017 / Stop Enabling Sex Traffickers Act, FOSTA-SESTA, Pub L 115-164) criminalises owning, managing or operat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2421a-fosta-promoting-prostitution-online.json #### 18 USC 2422 - Coercion and Enticement (Interstate or Foreign Commerce Inducement; Enhanced Minor Protection) - **ID**: us-18-usc-2422-coercion-enticement - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. Section 2422 is the federal criminal statute prohibiting interstate or foreign commerce coercion or enticement of an individual to engage in prostitution or any sexual activity for which a p... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2422-coercion-enticement.json #### US 18 U.S.C. § 2423 - Transportation of Minors for Illegal Sexual Activity - **ID**: us-18-usc-2423-transportation-of-minors - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2423 creates four distinct offences. Subsection (a) makes it an offence punishable by 10 years to life imprisonment to knowingly transport a person under 18 in interstate or foreign commer... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2423-transportation-of-minors.json #### 18 USC 2425 - Use of Interstate Facilities to Transmit Information About a Minor for Enticement to Criminal Sexual Activity - **ID**: us-18-usc-2425-transmit-minor-info-enticement - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 USC 2425, added by the Protection of Children from Sexual Predators Act of 1998 (Pub L 105-314), criminalises the knowing initiation of transmission of personally identifying information (name, add... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2425-transmit-minor-info-enticement.json #### US 18 U.S.C. § 2425 - Use of Interstate Facilities to Transmit Information About a Minor - **ID**: us-18-usc-2425-use-of-interstate-facilities-to-transmit-info-about-minor - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 2425 criminalises the use of any facility or means of interstate or foreign commerce, including the mail and any common carrier or interactive computer service, to knowingly initiate the t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2425-use-of-interstate-facilities-to-transmit-info-about-minor.json #### US 28 CFR Part 75 - Implementing Regulations for 18 USC §2257 and §2257A - **ID**: us-28-cfr-part-75-2257-implementing-regulations - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 28 CFR Part 75 is the US Attorney General's implementing regulation for 18 USC §2257 and §2257A record-keeping obligations. Part 75 contains nine sections defining who must keep records (§75.1 primary... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-28-cfr-part-75-2257-implementing-regulations.json #### US 47 U.S.C. 230(e)(5) - FOSTA Sex Trafficking Carve-Out to § 230 Immunity - **ID**: us-47-usc-230-e-5-fosta-sex-trafficking-carve-out - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: § 230(e)(5) of the Communications Decency Act, added by the Allow States and Victims to Fight Online Sex Trafficking Act of 2018 (Public Law 115-164, 'FOSTA'), carves out three categories of claims fr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-47-usc-230-e-5-fosta-sex-trafficking-carve-out.json #### US 47 U.S.C. § 254(h) - Children's Internet Protection Act (CIPA) Internet Safety Policy Requirements - **ID**: us-47-usc-254-h-cipa-internet-safety-policy - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: 47 U.S.C. § 254(h)(5)-(6) and 47 U.S.C. § 254(l) embody the Children's Internet Protection Act 2000 (CIPA, Public Law 106-554), which conditions federal universal service support and Library Services ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-47-usc-254-h-cipa-internet-safety-policy.json #### TAKE IT DOWN Act - 47 U.S.C. 223(h) and Notice-and-Removal Regime for Nonconsensual Intimate Visual Depictions (Pub. L. 119-12, May 2025) - **ID**: us-take-it-down-act-2025 - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.1 - **BLUF**: The Tools to Address Known Exploitation by Immobilizing Technological Deepfakes on Websites and Networks Act (TAKE IT DOWN Act, Pub. L. 119-12, signed 19 May 2025) amends Section 223 of the Communicat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-take-it-down-act-2025.json #### Texas HB 1181 (88R 2023) - Age Verification for Commercial Entities Publishing Sexual Material Harmful to Minors - **ID**: us-texas-hb-1181-2023-age-verification-explicit-content - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Texas HB 1181 (88th Legislature Regular Session 2023) added Civil Practice and Remedies Code Chapter 129B requiring any commercial entity that publishes or distributes material on an internet website ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-texas-hb-1181-2023-age-verification-explicit-content.json #### Virginia Code § 8.01-40.5 - Civil Action for Unlawful Dissemination of Material Harmful to Minors Online (2023 Chapter 811) - **ID**: us-virginia-code-8-01-40-5-age-verification-harmful-minors - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Virginia Code § 8.01-40.5 (enacted by 2023 Virginia Acts Chapter 811, effective 1 July 2023) creates a private civil cause of action against any commercial entity that knowingly publishes or distribut... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-virginia-code-8-01-40-5-age-verification-harmful-minors.json #### Virginia SB 1515 (2023) - Civil Liability for Commercial Internet Distribution of Material Harmful to Minors Without Age Verification (Va. Code Section 8.01-40.5) - **ID**: us-virginia-sb-1515-age-verification-material-harmful-minors - **Category**: Adult Industry & Sexual Content Compliance - **Version**: 1.0.0 - **BLUF**: Virginia Senate Bill 1515 (2023 Regular Session) enacted Chapter 811 of the Acts of Assembly, creating Virginia Code Section 8.01-40.5 effective 1 July 2023. The statute imposes civil liability on any... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-virginia-sb-1515-age-verification-material-harmful-minors.json ### Agriculture & Agritech (170 nodes) #### Argentina Ley 20.247 - Ley de Semillas y Creaciones Fitogeneticas - **ID**: ar-ley-20247-semillas-creaciones-fitogeneticas-1973 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Argentina Ley 20.247 (1973) establishes the legal framework for seed production commerce and plant breeders rights. The Act creates the Ministerio de Agricultura y Ganaderia as the competent authority... - **Discovery URL**: https://bidda.com/api/v1/nodes/ar-ley-20247-semillas-creaciones-fitogeneticas-1973.json #### Argentina SENASA Decree 1585/1996 - Agrifood Health, Quality and Phytosanitary Certification Framework - **ID**: argentina-senasa-decree-1585-1996-agricultural-sanitation - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Argentina's National Service for Agrifood Health and Quality (SENASA, Servicio Nacional de Sanidad y Calidad Agroalimentaria) was established by Decree 1585/1996. SENASA is Argentina's competent autho... - **Discovery URL**: https://bidda.com/api/v1/nodes/argentina-senasa-decree-1585-1996-agricultural-sanitation.json #### AU Biosecurity Act 2015 - **ID**: au-biosecurity-act-2015 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The AU Biosecurity Act 2015 (Cth) is the Commonwealth law governing biosecurity in Australia replacing the Quarantine Act 1908. It provides for management of risks of disease and pest incursions at th... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-biosecurity-act-2015.json #### Australia Export Control Act 2020 and Implementing Rules - **ID**: au-export-control-act-2020-daff - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Australia Export Control Act 2020 modernised the Australian export-control framework for prescribed agricultural goods, replacing 17 separate legacy statutes (including the Export Control Act 1982... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-export-control-act-2020-daff.json #### Australia Agricultural and Veterinary Chemicals Code Act 1994 - APVMA Registration and Product Approval Framework - **ID**: australia-agvet-code-1994-apvma - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural and Veterinary Chemicals Code Act 1994 (AgVet Code, Schedule 1 to the Agricultural and Veterinary Chemicals Code Act 1994) establishes the national scheme for regulating agricultural ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-agvet-code-1994-apvma.json #### Australia Biosecurity Act 2015 - DAFF Import, Biosecurity Risk Assessment, and Compliance Framework - **ID**: australia-biosecurity-act-2015-daff - **Category**: Agriculture & Agritech - **Version**: 2.0 - **BLUF**: The Biosecurity Act 2015 (Cth) replaced the Quarantine Act 1908 and established Australia's modern biosecurity regime. The Department of Agriculture, Fisheries and Forestry (DAFF) administers the Act,... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-biosecurity-act-2015-daff.json #### Brazil Biosafety Law 11105/2005 - CTNBio GMO and Agricultural Biotechnology Regulation - **ID**: brazil-lei-biosseguranca-11105-2005-ctnbio - **Category**: Agriculture & Agritech - **Version**: 2.0 - **BLUF**: Lei No. 11.105 de 24 de Marco de 2005 (Biosafety Law) is Brazil's primary law governing genetically modified organisms (GMOs) and agricultural biotechnology. The Comissao Tecnica Nacional de Biossegur... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-lei-biosseguranca-11105-2005-ctnbio.json #### Brazil Decreto 9.013/2017 - RIISPOA (Industrial and Sanitary Inspection of Animal-Origin Products) - **ID**: brazil-mapa-decreto-9013-2017-riispoa-animal-origin-products - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Decreto 9.013/2017 (RIISPOA, Regulamento da Inspeção Industrial e Sanitária de Produtos de Origem Animal) is Brazil's comprehensive regulation governing the industrial and sanitary inspection of produ... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-mapa-decreto-9013-2017-riispoa-animal-origin-products.json #### CA Pest Control Products Act 2002 - **ID**: ca-pest-control-products-act-2002 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Canadian Pest Control Products Act (PCPA) 2002 administered by Health Canada's Pest Management Regulatory Agency (PMRA) governs the import manufacture sale and use of pest control products (pestic... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-pest-control-products-act-2002.json #### Canada Canadian Agricultural Loans Act: Government Guarantee of Farm Loans and Farm Products Marketing Cooperative Loans - **ID**: canada-canadian-agricultural-loans-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Canadian Agricultural Loans Act (R.S.C. 1985, c. 25 (3rd Supp.)) establishes a federal loan-guarantee program that encourages lenders to extend credit to farmers and farm products marketing cooper... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-canadian-agricultural-loans-act.json #### Canada Canadian Dairy Commission Act: Supply Management of Milk, Support Prices, Pooling and Levies - **ID**: canada-canadian-dairy-commission-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Canadian Dairy Commission Act (R.S.C. 1985, c. C-15) establishes the federal Crown corporation that administers Canada's national supply management system for milk and cream, balancing producer re... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-canadian-dairy-commission-act.json #### Canada Farm Debt Mediation Act: Stay of Proceedings, Financial Review and Mediation for Insolvent Farmers - **ID**: canada-farm-debt-mediation-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Farm Debt Mediation Act (S.C. 1997, c. 21) provides a federal mediation process between insolvent farmers and their creditors, giving farmers in financial difficulty a structured opportunity to re... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-farm-debt-mediation-act.json #### Canada Farm Products Agencies Act: National Farm Products Council, Marketing and Promotion-Research Agencies - **ID**: canada-farm-products-agencies-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Farm Products Agencies Act (R.S.C., 1985, c. F-4) is the federal statute under which Canada regulates the orderly marketing and the promotion and research of farm products in interprovincial and e... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-farm-products-agencies-act.json #### Canada Feeds Act: Registration, Standards and Safety of Livestock Feeds - **ID**: canada-feeds-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Feeds Act (R.S.C. 1985, c. F-9) regulates the manufacture, sale and import of livestock feeds in Canada, administered by the Canadian Food Inspection Agency (CFIA). Section 2 defines 'feed' (a sub... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-feeds-act.json #### Canada Fertilizers Act: Standards, Safety and Labelling of Fertilizers and Supplements - **ID**: canada-fertilizers-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Fertilizers Act (R.S.C. 1985, c. F-10) regulates the sale and import of fertilizers and supplements in Canada, administered by the Canadian Food Inspection Agency (CFIA). Section 2 defines 'fertil... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-fertilizers-act.json #### Canada Food Inspection Agency Act: Establishment, Mandate and Enforcement of Federal Food, Animal and Plant Statutes - **ID**: canada-food-inspection-agency-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Canadian Food Inspection Agency Act (S.C. 1997, c. 6) establishes the Canadian Food Inspection Agency (CFIA) and makes it the federal body responsible for administering and enforcing Canada's food... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-food-inspection-agency-act.json #### Canada Grain Act: Grain Quality Standards, Elevator Licensing and Producer Protection - **ID**: canada-grain-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Canada Grain Act (R.S.C. 1985, c. G-10) establishes the Canadian Grain Commission and the framework for grain quality assurance and grain handling, operated in the interests of grain producers. Se... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-grain-act.json #### Canada Health of Animals Act: Disease Notification, Import/Export Controls and Quarantine Powers - **ID**: canada-health-of-animals-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Health of Animals Act (R.S.C. 1985, c. 21 (4th Supp.)) is Canada's primary federal statute for protecting animal health and preventing the spread of diseases and toxic substances that affect anima... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-health-of-animals-act.json #### Canada Pest Control Products Act: Registration, Risk Evaluation and Maximum Residue Limits - **ID**: canada-pest-control-products-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Pest Control Products Act (S.C. 2002, c. 28) is Canada's federal statute governing the regulation of pesticides, administered by Health Canada's Pest Management Regulatory Agency (PMRA). Section 4... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-pest-control-products-act.json #### Canada Plant Breeders' Rights Act: Variety Protection, Exclusive Rights and Farmers' Privilege - **ID**: canada-plant-breeders-rights-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Plant Breeders' Rights Act (S.C. 1990, c. 20) confers intellectual property protection on new plant varieties in Canada, administered by the Plant Breeders' Rights Office within the Canadian Food ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-plant-breeders-rights-act.json #### Canada Plant Protection Act: Preventing the Import, Export and Spread of Plant Pests - **ID**: canada-plant-protection-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Plant Protection Act (S.C. 1990, c. 22) is Canada's federal statute for protecting plant life and the agricultural and forestry sectors by preventing the importation, exportation and spread of pes... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-plant-protection-act.json #### Canada Safe Food for Canadians Act 2012 - CFIA Preventive Controls and Licensing Framework - **ID**: canada-safe-food-canadians-act-2012-cfia - **Category**: Agriculture & Agritech - **Version**: 2.1 - **BLUF**: The Safe Food for Canadians Act (SFCA, SC 2012, c. 24) and its implementing Safe Food for Canadians Regulations (SFCR, SOR/2018-108) consolidate and modernise Canada's food safety framework. The Canad... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-safe-food-canadians-act-2012-cfia.json #### Canada Safe Food for Canadians Act: Licensing, Traceability and Food Commodity Controls - **ID**: canada-safe-food-for-canadians-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Safe Food for Canadians Act (S.C. 2012, c. 24) is Canada's consolidated federal food-safety statute, administered by the Canadian Food Inspection Agency (CFIA), governing the import, export and in... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-safe-food-for-canadians-act.json #### Canada Seeds Act: Seed Standards, Variety Registration and Grade-Name Controls - **ID**: canada-seeds-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Seeds Act (R.S.C. 1985, c. S-8) is Canada's federal statute regulating the quality, labelling and sale of agricultural seed, administered by the Canadian Food Inspection Agency (CFIA). Section 2 d... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-seeds-act.json #### Canada Seeds Act (R.S.C. 1985, c. S-8) - CFIA Variety Registration and Plant Breeders Rights Framework - **ID**: canada-seeds-act-rsc-1985-c-s-8-cfia - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Canada's Seeds Act (R.S.C. 1985, c. S-8) governs the registration, quality, sale and import of seeds in Canada. The Canadian Food Inspection Agency (CFIA) administers the Act. Major field crops requir... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-seeds-act-rsc-1985-c-s-8-cfia.json #### Cartagena Protocol on Biosafety to the Convention on Biological Diversity (2003) - **ID**: cartagena-protocol-on-biosafety-2003 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Cartagena Protocol on Biosafety is the global legally binding treaty governing the transboundary movement of Living Modified Organisms (LMOs, commonly called GMOs) resulting from modern biotechnol... - **Discovery URL**: https://bidda.com/api/v1/nodes/cartagena-protocol-on-biosafety-2003.json #### Codex Alimentarius CXC 1-1969: General Principles of Food Hygiene (including HACCP Annex) - **ID**: codex-cxc-1-1969-general-principles-food-hygiene - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: CXC 1-1969, the General Principles of Food Hygiene, is the foundational Codex Code of Practice underpinning all national food safety regulation worldwide. It sets out general hygiene principles coveri... - **Discovery URL**: https://bidda.com/api/v1/nodes/codex-cxc-1-1969-general-principles-food-hygiene.json #### Codex Alimentarius CXS 1-1985: General Standard for the Labelling of Prepackaged Foods - **ID**: codex-cxs-1-1985-labelling-prepackaged-foods - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: CXS 1-1985 is the global Codex baseline standard for mandatory labelling of prepackaged foods, adopted by the Codex Alimentarius Commission and referenced by the WTO SPS and TBT Agreements as the inte... - **Discovery URL**: https://bidda.com/api/v1/nodes/codex-cxs-1-1985-labelling-prepackaged-foods.json #### Codex Alimentarius CXS 192-1995: General Standard for Food Additives (GSFA) - **ID**: codex-cxs-192-1995-food-additives-gsfa - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: CXS 192-1995, the General Standard for Food Additives (GSFA), is the global Codex framework setting maximum use levels for permitted food additives across all food categories. The standard categorises... - **Discovery URL**: https://bidda.com/api/v1/nodes/codex-cxs-192-1995-food-additives-gsfa.json #### Codex Alimentarius CXS 193-1995: General Standard for Contaminants and Toxins in Food and Feed - **ID**: codex-cxs-193-1995-contaminants-toxins-food-feed - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: CXS 193-1995 sets the global Codex Maximum Levels (MLs) for contaminants and natural toxins in food and feed, including heavy metals (lead, cadmium, mercury, arsenic, tin), mycotoxins (aflatoxins, och... - **Discovery URL**: https://bidda.com/api/v1/nodes/codex-cxs-193-1995-contaminants-toxins-food-feed.json #### EU Regulation 2016/429 on transmissible animal diseases, prevention and control, and traceability - **ID**: eu-animal-health-law-2016-429 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: This regulation establishes a comprehensive legal framework for the prevention and control of transmissible animal diseases across the European Union. It replaces numerous earlier acts with a single, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-animal-health-law-2016-429.json #### Rules on support for CAP strategic plans, direct payments, and rural development, repealing Regulations 1305/2013 and 1307/2013 - **ID**: eu-cap-strategic-plans-regulation-2021-2115 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2021/2115 establishes the legal framework for CAP Strategic Plans drawn up by Member States and financed by the European Agricultural Guarantee Fund (EAGF) and the European Agricultura... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cap-strategic-plans-regulation-2021-2115.json #### Commission Implementing Regulation (EU) 2017/1184 - Union Carcass Classification Scales and Market Price Reporting for Beef, Pig and Sheep - **ID**: eu-celex-32017r1184 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2017/1184 lays down rules for applying Regulation (EU) No 1308/2013 (the common organisation of agricultural markets) as regards the Union scales for the classi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32017r1184.json #### EU Common Agricultural Policy Strategic Plans Regulation (EU) 2021/2115 - **ID**: eu-common-agricultural-policy-2021-2115 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: EU Regulation 2021/2115 (the CAP Strategic Plans Regulation) is part of the post-2022 reform of the Common Agricultural Policy applicable from 1 January 2023 to 31 December 2027. Each Member State pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-common-agricultural-policy-2021-2115.json #### EU Common Agricultural Policy Regulation 2021/2115 - CAP Strategic Plans and Conditionality - **ID**: eu-common-agricultural-policy-regulation-2021-2115 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: EU Regulation 2021/2115 establishes the framework for CAP Strategic Plans 2023-2027, requiring Member States to define interventions meeting EU objectives through a new delivery model. AI-driven preci... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-common-agricultural-policy-regulation-2021-2115.json #### EU Directive 2001/18/EC on deliberate release into the environment of genetically modified organisms and repealing Directive 90/220/EEC - **ID**: eu-deliberate-release-of-gmos-directive-2001-18-ec - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Directive 2001/18/EC establishes a harmonised regulatory framework for the deliberate release into the environment of genetically modified organisms (GMOs) and the placing on the market of GMOs as or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-deliberate-release-of-gmos-directive-2001-18-ec.json #### EU Deforestation Regulation 2023/1115 (EUDR) - Deforestation-Free Supply Chain Due Diligence - **ID**: eu-eudr-deforestation-regulation-2023-1115 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: EU Regulation 2023/1115 prohibits placing on the EU market or exporting from the EU any products associated with deforestation or forest degradation after 31 December 2020. Covers 7 commodity groups: ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eudr-deforestation-regulation-2023-1115.json #### EU Fertilising Products Regulation 2019/1009: rules on making available on the market of EU fertilising products - **ID**: eu-fertilising-products-regulation-2019-1009 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2019/1009 lays down rules on the making available on the market of EU fertilising products. It applies to EU fertilising products, defined as fertilising products which are CE marked w... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-fertilising-products-regulation-2019-1009.json #### Regulation (EC) No 1829/2003 on genetically modified food and feed - authorisation and labelling - **ID**: eu-gm-food-and-feed-regulation-1829-2003 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Regulation (EC) No 1829/2003 establishes a harmonised Community procedure for the authorisation, supervision, and labelling of genetically modified (GM) food and feed. The regulation applies to GMOs f... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gm-food-and-feed-regulation-1829-2003.json #### Establishing maximum residue levels of pesticides in or on food and feed of plant and animal origin and amending Directive 91/414/EEC - **ID**: eu-maximum-residue-levels-regulation-396-2005 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Regulation (EC) No 396/2005 of the European Parliament and of the Council of 23 February 2005 establishes maximum residue levels (MRLs) for pesticides in or on food and feed of plant and animal origin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-maximum-residue-levels-regulation-396-2005.json #### Regulation (EU) 2018/848 on organic production and labelling of organic products and repealing Regulation (EC) No 834/2007 - **ID**: eu-organic-production-regulation-2018-848 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2018/848 establishes the legal framework for organic production and labelling of organic products within the European Union. It applies to products originating from agriculture, includ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-organic-production-regulation-2018-848.json #### EU Pesticides Regulation (EC) 1107/2009 - **ID**: eu-pesticides-regulation-1107-2009 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: EU Regulation (EC) 1107/2009 establishes the framework for the authorisation of active substances and the placing on the EU market of plant protection products (PPPs / pesticides). Active substances a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pesticides-regulation-1107-2009.json #### EU Plant Health Regulation 2016/2031 on protective measures against pests of plants - **ID**: eu-plant-health-regulation-2016-2031 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: This regulation establishes rules to determine phytosanitary risks posed by pests (including pathogenic agents, animals, or parasitic plants) and measures to reduce those risks to an acceptable level.... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-plant-health-regulation-2016-2031.json #### Regulation 1107/2009 concerning the placing of plant protection products on the market and repealing Directives 79/117/EEC and 91/414/EEC - **ID**: eu-plant-protection-products-regulation-1107-2009 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Regulation (EC) No 1107/2009 establishes a harmonised framework for the approval of active substances, safeners, synergists, and co-formulants, and for the authorisation, placing on the market, use, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-plant-protection-products-regulation-1107-2009.json #### EU Common Catalogue of Varieties of Agricultural Plant Species Directive 2002/53/EC - **ID**: eu-seeds-directive-2002-53-ec - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: EU Directive 2002/53/EC establishes the EU Common Catalogue of Varieties of Agricultural Plant Species which lists all varieties of agricultural plant species (cereals fodder plants oil and fibre plan... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-seeds-directive-2002-53-ec.json #### EU Single CMO Regulation 1308/2013 - Common organisation of agricultural product markets, including market intervention, marketing standards, wine and school schemes - **ID**: eu-single-cmo-regulation-1308-2013 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 1308/2013, adopted on 17 December 2013 by the European Parliament and the Council, establishes a replacement common organisation of the markets (CMO) for agricultural products liste... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-single-cmo-regulation-1308-2013.json #### India Food Safety and Standards Act 2006 (FSSAI Act) and Implementing Regulations - **ID**: india-fssai-food-safety-and-standards-act-2006 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Food Safety and Standards Act 2006 (FSS Act) consolidated multiple Indian food laws into a single integrated framework administered by the Food Safety and Standards Authority of India (FSSAI). The... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-fssai-food-safety-and-standards-act-2006.json #### India Seeds Act 1966 - DAC Seed Certification, Variety Registration, and Quality Control Framework - **ID**: india-seeds-act-1966-dac-ministry-agriculture - **Category**: Agriculture & Agritech - **Version**: 2.0 - **BLUF**: The Seeds Act 1966 (No. 54 of 1966) is India's primary legislation governing seed quality, variety testing, and the certification of seed for sale. The Department of Agriculture and Cooperation (DAC) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-seeds-act-1966-dac-ministry-agriculture.json #### IPPC ISPM 11: Pest Risk Analysis for Quarantine Pests - **ID**: ippc-ispm-11-pest-risk-analysis-quarantine-pests - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: IPPC ISPM 11 sets the methodology for Pest Risk Analysis (PRA) for quarantine pests, the scientific basis for any phytosanitary import measure under the WTO SPS Agreement. The standard prescribes a th... - **Discovery URL**: https://bidda.com/api/v1/nodes/ippc-ispm-11-pest-risk-analysis-quarantine-pests.json #### IPPC ISPM 15: Regulation of Wood Packaging Material in International Trade - **ID**: ippc-ispm-15-wood-packaging-international-trade - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: IPPC ISPM 15 prescribes the phytosanitary treatment and marking of wood packaging material (pallets, crates, dunnage, cable drums, spools) used in international trade to prevent the global spread of w... - **Discovery URL**: https://bidda.com/api/v1/nodes/ippc-ispm-15-wood-packaging-international-trade.json #### IPPC ISPM 5: Glossary of Phytosanitary Terms - **ID**: ippc-ispm-5-glossary-phytosanitary-terms - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: IPPC ISPM 5 is the authoritative international glossary of phytosanitary terminology used in all other ISPMs and in national plant health regulations transposing the International Plant Protection Con... - **Discovery URL**: https://bidda.com/api/v1/nodes/ippc-ispm-5-glossary-phytosanitary-terms.json #### IPPC ISPM 7: Phytosanitary Certification System - **ID**: ippc-ispm-7-phytosanitary-certification-system - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: IPPC ISPM 7 establishes the international framework for the issuance of phytosanitary certificates by exporting-country National Plant Protection Organizations (NPPOs). It defines NPPO responsibilitie... - **Discovery URL**: https://bidda.com/api/v1/nodes/ippc-ispm-7-phytosanitary-certification-system.json #### Ireland Animal Health and Welfare Act 2013 (No. 15): Welfare Duties, Cruelty Offences and Disease Control - **ID**: ireland-animal-health-welfare-act-2013 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Animal Health and Welfare Act 2013 (No. 15 of 2013) is the principal Irish statute on animal health and welfare, administered by the Minister for Agriculture, Food and the Marine. The Act consolid... - **Discovery URL**: https://bidda.com/api/v1/nodes/ireland-animal-health-welfare-act-2013.json #### Ireland Forestry Act 2014 (No. 31): Felling Licences, Replanting and Tree Preservation - **ID**: ireland-forestry-act-2014 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Forestry Act 2014 (No. 31 of 2014) is the principal modern Irish statute governing forestry and the felling of trees, administered by the Minister for Agriculture, Food and the Marine. Its long ti... - **Discovery URL**: https://bidda.com/api/v1/nodes/ireland-forestry-act-2014.json #### Mexico Ley de Desarrollo Rural Sustentable 2001 - SADER Agricultural Development and Food Sovereignty Framework - **ID**: mexico-ley-desarrollo-rural-sustentable-2001-sader - **Category**: Agriculture & Agritech - **Version**: 2.0 - **BLUF**: Mexico's Ley de Desarrollo Rural Sustentable (LDRS, Ley publicada el 7 de diciembre de 2001 en el Diario Oficial de la Federacion) establishes the legal framework for sustainable rural development, ag... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-ley-desarrollo-rural-sustentable-2001-sader.json #### New Zealand Biosecurity Act 1993 - MPI Border Clearance and Pest Management Framework - **ID**: new-zealand-biosecurity-act-1993-mpi - **Category**: Agriculture & Agritech - **Version**: 2.0 - **BLUF**: New Zealand's Biosecurity Act 1993 (No. 95 of 1993, as amended) is the primary statute governing the exclusion, eradication, and management of harmful organisms. The Ministry for Primary Industries (M... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-zealand-biosecurity-act-1993-mpi.json #### NZ Biosecurity Act 1993 - **ID**: nz-biosecurity-act-1993 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The NZ Biosecurity Act 1993 is the principal statute governing biosecurity in New Zealand covering border control management of new and established pests and diseases including the National Pest Plant... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-biosecurity-act-1993.json #### Singapore Food Agency Act 2019 (Act 11 of 2019) - **ID**: singapore-food-agency-act-2019 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Singapore Food Agency Act 2019 consolidated Singapore food safety regulation by establishing the Singapore Food Agency (SFA) on 1 April 2019, transferring functions from the Agri-Food and Veterina... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-food-agency-act-2019.json #### South Africa Conservation of Agricultural Resources Act 43 of 1983 - DALRRD Soil and Veld Management Framework - **ID**: south-africa-conservation-agricultural-resources-act-43-1983 - **Category**: Agriculture & Agritech - **Version**: 2.0 - **BLUF**: The Conservation of Agricultural Resources Act 43 of 1983 (CARA) is South Africa's primary legislation governing the conservation of soil, water resources in soil, vegetation, and the combat of weeds ... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-conservation-agricultural-resources-act-43-1983.json #### UK Agricultural Holdings Act 1986: Security of Tenure, Notices to Quit, Rent Arbitration, Succession and Tenant Compensation - **ID**: uk-agricultural-holdings-act-1986 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Holdings Act 1986 is the consolidating statute governing agricultural tenancies in England and Wales that were granted before 1 September 1995 (tenancies granted on or after that date... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-agricultural-holdings-act-1986.json #### UK Agricultural Marketing Act 1958 (c.47): Marketing Schemes and Producer Boards - **ID**: uk-agricultural-marketing-act-1958 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Marketing Act 1958 (c. 47) consolidates the law providing for the organised marketing of agricultural products through producer-controlled marketing schemes and boards, administered b... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-agricultural-marketing-act-1958.json #### UK Agricultural Tenancies Act 1995: Farm Business Tenancies, Notice to Quit, Rent Review and Tenant Compensation - **ID**: uk-agricultural-tenancies-act-1995 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Tenancies Act 1995 governs farm business tenancies in England and Wales, the regime that replaced the Agricultural Holdings Act 1986 security-of-tenure model for tenancies granted on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-agricultural-tenancies-act-1995.json #### UK Agriculture Act 1970 (c.40) Part IV: Fertilisers and Feeding Stuffs - **ID**: uk-agriculture-act-1970 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Part IV of the Agriculture Act 1970 (c. 40, sections 66 to 87) regulates the sale of fertilisers and feeding stuffs in Great Britain to protect purchasers, principally farmers, against misdescription ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-agriculture-act-1970.json #### UK Agriculture Act 1970 (Part IV, Fertilisers and Feeding Stuffs): Statutory Statement, Composition Controls, Sampling and Analysis - **ID**: uk-agriculture-act-1970-fertilisers-feeding-stuffs - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Part IV of the Agriculture Act 1970 regulates the sale of fertilisers and feeding stuffs in Great Britain, protecting purchasers by requiring sellers to declare composition and by providing a system o... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-agriculture-act-1970-fertilisers-feeding-stuffs.json #### UK Agriculture Act 1986 (c. 49): Environmentally Sensitive Areas, Conservation Duty and Milk Quota Compensation - **ID**: uk-agriculture-act-1986 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agriculture Act 1986 (c. 49) is a United Kingdom statute notable for introducing the first statutory agri-environment scheme and a conservation duty into agricultural policy, administered by the r... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-agriculture-act-1986.json #### UK Agriculture Act 1993 (c. 37): Reorganisation of the Milk and Potato Marketing Schemes - **ID**: uk-agriculture-act-1993 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agriculture Act 1993 (c. 37) reorganised the statutory agricultural marketing schemes of the United Kingdom, most significantly bringing about the end of the milk marketing schemes and the Milk Ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-agriculture-act-1993.json #### UK Agriculture Act 2020 Section 1 - Secretary of State's Powers to Give Financial Assistance - **ID**: uk-agriculture-act-2020-section-1-financial-assistance-powers - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Secretary of State may give financial assistance for or in connection with ten public-good purposes including environmental protection, public access to and enjoyment of the countryside, cultural/... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-agriculture-act-2020-section-1-financial-assistance-powers.json #### UK Agriculture and Horticulture Act 1964 (c.28): Grading and Marking of Produce - **ID**: uk-agriculture-horticulture-act-1964 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agriculture and Horticulture Act 1964 (c. 28) provides for the grading and marking of agricultural and horticultural produce and for the stability of prices of certain imported products, administe... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-agriculture-horticulture-act-1964.json #### UK Agriculture (Wales) Act 2023 (asc 4): Sustainable Land Management and Support - **ID**: uk-agriculture-wales-act-2023 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agriculture (Wales) Act 2023 (asc 4) is the post-Brexit framework for agricultural policy in Wales, made by Senedd Cymru and administered by the Welsh Ministers, establishing sustainable land mana... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-agriculture-wales-act-2023.json #### UK Animal Health Act 1981: Disease Control Orders, Slaughter, Movement Restrictions and Compensation - **ID**: uk-animal-health-act-1981 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Animal Health Act 1981 is the principal United Kingdom statute for the prevention and control of animal disease, conferring on the Ministers (now the Secretary of State and the devolved administra... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-animal-health-act-1981.json #### UK Animal Welfare Act 2006: Duty of Care, Unnecessary Suffering and the Five Welfare Needs - **ID**: uk-animal-welfare-act-2006 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Animal Welfare Act 2006 (c. 45) is the principal statute protecting vertebrate animals in England and Wales, enforced by local authorities, the police and (in practice) bodies such as the RSPCA, u... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-animal-welfare-act-2006.json #### UK Animal Welfare Act 2006 Section 4 - Unnecessary Suffering - **ID**: uk-animal-welfare-act-2006-section-4-unnecessary-suffering - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: A person commits an offence under Section 4 if an act or failure to act causes a protected animal to suffer, the person knew or ought reasonably to have known the act would cause suffering, and the su... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-animal-welfare-act-2006-section-4-unnecessary-suffering.json #### UK Animal Welfare Act 2006 Section 8 - Animal Fighting Offences - **ID**: uk-animal-welfare-act-2006-section-8-fighting - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Section 8 creates nine related offences targeting the animal fighting trade: causing or attempting to cause a fight, receiving admission money, publicising, providing information to enable attendance,... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-animal-welfare-act-2006-section-8-fighting.json #### UK Animal Welfare Act 2006 Section 9 - Duty of Person Responsible for Animal to Ensure Welfare - **ID**: uk-animal-welfare-act-2006-section-9-duty-person-responsible-ensure-welfare - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: A person commits an offence under Section 9 if they do not take such steps as are reasonable in all the circumstances to ensure that the needs of an animal for which they are responsible are met to th... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-animal-welfare-act-2006-section-9-duty-person-responsible-ensure-welfare.json #### UK Animal Welfare (Sentience) Act 2022 (c. 22): Animal Sentience Committee and Policy Scrutiny - **ID**: uk-animal-welfare-sentience-act-2022 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Animal Welfare (Sentience) Act 2022 (c. 22) recognises animals as sentient beings in United Kingdom law and creates a mechanism for scrutinising the effect of government policy on animal welfare, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-animal-welfare-sentience-act-2022.json #### UK Dangerous Wild Animals Act 1976 (c.38): Licensing the Keeping of Dangerous Wild Animals - **ID**: uk-dangerous-wild-animals-act-1976 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Dangerous Wild Animals Act 1976 (c. 38) regulates the private keeping of dangerous wild animals in Great Britain through a local authority licensing system, to protect the public and to safeguard ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-dangerous-wild-animals-act-1976.json #### UK Direct Payments to Farmers (Legislative Continuity) Act 2020 (c. 2): Domestic Continuity of CAP Direct Payments - **ID**: uk-direct-payments-to-farmers-act-2020 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Direct Payments to Farmers (Legislative Continuity) Act 2020 (c. 2) preserved the European Union Common Agricultural Policy direct payment schemes as domestic law of the United Kingdom for the 202... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-direct-payments-to-farmers-act-2020.json #### UK Forestry Act 1967 (c. 10): Forestry Commissioners, Felling Licences and Restocking - **ID**: uk-forestry-act-1967 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Forestry Act 1967 (c. 10) is the principal statute governing forestry and the control of tree felling in Great Britain, administered by the Forestry Commissioners and the devolved forestry authori... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-forestry-act-1967.json #### UK Genetic Technology (Precision Breeding) Act 2023 (c. 6): Regulation of Precision Bred Plants and Animals - **ID**: uk-genetic-technology-precision-breeding-act-2023 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Genetic Technology (Precision Breeding) Act 2023 (c. 6) creates a distinct regulatory regime in England for precision bred plants and animals, separating them from the regime for genetically modif... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-genetic-technology-precision-breeding-act-2023.json #### UK Plant Health Act 1967: Control of the Introduction and Spread of Plant Pests in Great Britain - **ID**: uk-plant-health-act-1967 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Plant Health Act 1967 is the enabling framework under which Great Britain controls the introduction and spread of plant pests, conferring order-making powers on the competent authorities to protec... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-plant-health-act-1967.json #### UK Plant Health Act 1967 Section 2 - Control of Introduction of Pests into Great Britain - **ID**: uk-plant-health-act-1967-section-2-control-introduction-pests - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: A competent authority may make orders for preventing the introduction of pests into Great Britain. Where landing in Great Britain of plants, trees, bushes or their parts or produce is likely to introd... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-plant-health-act-1967-section-2-control-introduction-pests.json #### UK Plant Varieties Act 1997: Plant Breeders' Rights, the DUS and Novelty Conditions, Exceptions and Compulsory Licences - **ID**: uk-plant-varieties-act-1997 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Plant Varieties Act 1997 governs the grant and protection of plant breeders' rights in the United Kingdom, the intellectual-property regime that gives the breeder of a new plant variety exclusive ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-plant-varieties-act-1997.json #### UK Plant Varieties and Seeds Act 1964 (c.14): Plant Breeders' Rights and Seeds Regulation - **ID**: uk-plant-varieties-seeds-act-1964 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Plant Varieties and Seeds Act 1964 (c. 14) establishes the regime of plant breeders' rights and the regulation of the sale of seeds in the United Kingdom, administered by the Department for Enviro... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-plant-varieties-seeds-act-1964.json #### UK Veterinary Surgeons Act 1966 (c.36): Registration and Restriction of Veterinary Practice - **ID**: uk-veterinary-surgeons-act-1966 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Veterinary Surgeons Act 1966 (c. 36) regulates the veterinary profession in the United Kingdom by establishing the Royal College of Veterinary Surgeons, maintaining the register of veterinary surg... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-veterinary-surgeons-act-1966.json #### US Agricultural Adjustment Act of 1938 (7 USC ch 35): Marketing Quotas, Parity and Acreage Allotments - **ID**: us-agricultural-adjustment-act-1938 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Adjustment Act of 1938 (7 U.S.C. ch. 35, sections 1281 to 1407) is a foundational United States farm program statute administered by the Secretary of Agriculture, establishing marketi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-agricultural-adjustment-act-1938.json #### US Agricultural Bioterrorism Protection Act of 2002 (7 USC ch 110): Select Agents Threatening Animal and Plant Health - **ID**: us-agricultural-bioterrorism-protection-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Bioterrorism Protection Act of 2002 (7 U.S.C. ch. 110, sections 8401 and 8411) regulates the possession, use, and transfer of biological agents and toxins that threaten animal or plan... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-agricultural-bioterrorism-protection-act.json #### US Agricultural Experiment Stations Act (Hatch Act of 1887, 7 USC ch 14): Federal Funding of State Agricultural Research - **ID**: us-agricultural-experiment-stations-hatch-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Experiment Stations Act, originating in the Hatch Act of 1887 (7 U.S.C. ch. 14, sections 361a to 390d, distinct from the political-activity Hatch Act), provides federal support for ag... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-agricultural-experiment-stations-hatch-act.json #### US Agricultural Fair Practices Act of 1967 (7 USC ch 56): Producer Association Rights and Prohibited Handler Practices - **ID**: us-agricultural-fair-practices-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Fair Practices Act of 1967 (7 U.S.C. ch. 56, sections 2301 to 2306) protects the right of agricultural producers to join together in associations and prohibits handlers from coercing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-agricultural-fair-practices-act.json #### US Agricultural Foreign Investment Disclosure Act of 1978 (7 USC ch 66): Foreign Holdings of Agricultural Land - **ID**: us-agricultural-foreign-investment-disclosure-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Foreign Investment Disclosure Act of 1978 (AFIDA, 7 U.S.C. ch. 66, sections 3501 to 3508) requires foreign persons who acquire, transfer, or hold interests in United States agricultur... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-agricultural-foreign-investment-disclosure-act.json #### US Agricultural Marketing Act of 1946 (7 USC ch 38): Voluntary Grading, Inspection and Market News Services - **ID**: us-agricultural-marketing-act-1946 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Marketing Act of 1946 (7 U.S.C. ch. 38, sections 1621 onward) authorizes the federal voluntary grading, inspection, standardization, and market news services for agricultural products... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-agricultural-marketing-act-1946.json #### US Agricultural Marketing Agreement Act / Marketing Orders (7 USC 608c): Handler Regulation and Milk Orders - **ID**: us-agricultural-marketing-agreement-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Marketing Agreement Act of 1937, building on the marketing-order provisions of the Agricultural Adjustment Act codified in 7 U.S.C. Chapter 26 (with section 674 supplying the 1937 Act... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-agricultural-marketing-agreement-act.json #### US Agricultural Subterminal Facilities Act (7 USC ch 68): Planning Grants for Bulk Commodity Handling - **ID**: us-agricultural-subterminal-facilities-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Subterminal Facilities Act (7 U.S.C. ch. 68, sections 3701 to 3703) supports the planning of agricultural subterminal facilities for the efficient bulk storage and movement of agricul... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-agricultural-subterminal-facilities-act.json #### US Agricultural Trade Act of 1978 (7 USC ch 87): Export Credit Guarantees and Market Development Programs - **ID**: us-agricultural-trade-act-1978 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Trade Act of 1978 (7 U.S.C. ch. 87, sections 5601 onward) is the principal United States statute for promoting commercial agricultural exports, administered by the Foreign Agricultura... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-agricultural-trade-act-1978.json #### US Food for Peace Act (Agricultural Trade Development and Assistance Act of 1954, 7 USC ch 41): International Food Aid - **ID**: us-agricultural-trade-development-assistance-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agricultural Trade Development and Assistance Act of 1954, known as the Food for Peace Act (7 U.S.C. ch. 41, sections 1691 onward, originally Public Law 480), is the principal United States intern... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-agricultural-trade-development-assistance-act.json #### US Warehouse Act (7 USC ch 10): Licensing of Agricultural Warehouses, Receipts and Penalties - **ID**: us-agricultural-warehouse-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The United States Warehouse Act, codified at 7 U.S.C. Chapter 10 (sections 241-256), provides for the federal licensing and regulation of warehouses that store agricultural products and for the integr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-agricultural-warehouse-act.json #### US Animal Health Protection Act (7 USC ch 109): Pest and Disease Controls, Quarantine and Penalties - **ID**: us-animal-health-protection-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Animal Health Protection Act (AHPA), codified at 7 U.S.C. Chapter 109 (sections 8301-8322), is the principal US statute authorizing the prevention, detection, control and eradication of pests and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-animal-health-protection-act.json #### US Animal Welfare Act: Licensing, Humane Standards, Research Facilities and Enforcement - **ID**: us-animal-welfare-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Animal Welfare Act (AWA), codified at 7 U.S.C. Chapter 54 (sections 2131-2159), is the principal US statute setting humane standards for the treatment of animals by dealers, research facilities, e... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-animal-welfare-act.json #### US Bankhead-Jones Farm Tenant Act (7 USC ch 33): Farm Tenancy, Land Conservation and Utilization - **ID**: us-bankhead-jones-farm-tenant-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Bankhead-Jones Farm Tenant Act (7 U.S.C. ch. 33, sections 1000 to 1040) is a United States statute addressing farm tenancy, rural credit, and the conservation and utilization of land, administered... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bankhead-jones-farm-tenant-act.json #### US Beef Research and Information Act (7 USC ch 62): The Beef Checkoff and Cattlemen's Beef Board - **ID**: us-beef-research-information-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Beef Research and Information Act (7 U.S.C. ch. 62, sections 2901 to 2911) authorizes the national beef promotion and research program, commonly known as the beef checkoff, administered by the Sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-beef-research-information-act.json #### US Capper-Volstead Act (7 USC ch 12): Antitrust Exemption for Agricultural Cooperative Associations - **ID**: us-capper-volstead-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Capper-Volstead Act of 1922 (7 U.S.C. ch. 12, sections 291 and 292) gives a limited antitrust exemption to associations of agricultural producers, administered by the Secretary of Agriculture. Sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-capper-volstead-act.json #### US Commodity Credit Corporation Charter Act (15 USC ch 15): Federal Financing of Agricultural Price Support - **ID**: us-commodity-credit-corporation-charter-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Commodity Credit Corporation Charter Act (15 U.S.C. ch. 15, subchapter II, sections 714 to 714p) charters the Commodity Credit Corporation, a federally owned corporation within the Department of A... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-commodity-credit-corporation-charter-act.json #### US Commodity Promotion, Research, and Information Act of 1996 (7 USC ch 101): Generic Commodity Order Authority - **ID**: us-commodity-promotion-research-information-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Commodity Promotion, Research, and Information Act of 1996 (7 U.S.C. ch. 101, sections 7411 to 7425) provides generic authority for the Secretary of Agriculture to issue orders establishing promot... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-commodity-promotion-research-information-act.json #### US Consolidated Farm and Rural Development Act (7 USC ch 50): Farm Real Estate, Operating and Emergency Loans - **ID**: us-consolidated-farm-and-rural-development-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Consolidated Farm and Rural Development Act (7 U.S.C. ch. 50, sections 1921 to 2009dd) is the principal federal statute authorizing direct and guaranteed agricultural credit and rural development ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-consolidated-farm-and-rural-development-act.json #### US Cooperative Forestry Assistance Act of 1978 (16 U.S.C. Chapter 41): Federal-State Forestry Assistance, Stewardship and Forest Health - **ID**: us-cooperative-forestry-assistance-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Cooperative Forestry Assistance Act of 1978, codified at 16 U.S.C. Chapter 41 (sections 2101 through 2114), authorizes the Secretary of Agriculture, through the Forest Service, to provide financia... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cooperative-forestry-assistance-act.json #### US Cotton Research and Promotion Act (7 USC ch 53): The Cotton Board and Per-Bale Assessment - **ID**: us-cotton-research-promotion-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Cotton Research and Promotion Act (7 U.S.C. ch. 53, sections 2101 to 2122) authorizes a coordinated program of research and promotion for cotton funded by assessments, administered by the Secretar... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cotton-research-promotion-act.json #### US Cotton Standards Act (7 USC ch 2): Official Cotton Standards and Classification - **ID**: us-cotton-standards-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The United States Cotton Standards Act (7 U.S.C. ch. 2, sections 51 to 65) establishes official standards for the classification of cotton and is administered by the Secretary of Agriculture through t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cotton-standards-act.json #### US Department of Agriculture Organic Act (7 USC ch 55): USDA Establishment and the Census of Agriculture - **ID**: us-department-of-agriculture-organic-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: Chapter 55 of Title 7 (7 U.S.C. ch. 55, sections 2201 to 2279f) is the Department of Agriculture Organic Act, the body of law establishing the Department of Agriculture, defining the Secretary's autho... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-department-of-agriculture-organic-act.json #### US Egg Products Inspection Act (21 USC ch 15): Inspection of Egg Products, Restricted Eggs and Prohibited Acts - **ID**: us-egg-products-inspection-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Egg Products Inspection Act (EPIA), codified at 21 U.S.C. Chapter 15 (sections 1031-1056), provides for the inspection of egg products, regulates the disposition of restricted eggs, and is adminis... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-egg-products-inspection-act.json #### US Egg Research and Consumer Information Act (7 USC ch 60): Egg Board, Assessments and Consumer Education - **ID**: us-egg-research-information-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Egg Research and Consumer Information Act (7 U.S.C. ch. 60, sections 2701 to 2718) authorizes a coordinated national program of research, promotion, and consumer information for eggs and egg produ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-egg-research-information-act.json #### US Export Apple Act (7 USC ch 25): Mandatory Export Certificate and Grade Standards for Apples - **ID**: us-export-apple-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Export Apple Act (7 U.S.C. ch. 25, sections 581 to 590a) requires that apples shipped from the United States to foreign destinations meet established grade standards and be accompanied by an expor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-export-apple-act.json #### US Farmer-to-Consumer Direct Marketing Act (7 USC ch 63): Direct Marketing and Farmers' Markets - **ID**: us-farmer-direct-marketing-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Farmer-to-Consumer Direct Marketing Act of 1976 (7 U.S.C. ch. 63, sections 3001 to 3007) promotes the development and expansion of direct marketing of agricultural commodities from farmers to cons... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-farmer-direct-marketing-act.json #### US Farmland Protection Policy Act (7 USC ch 73): Minimizing Federal Conversion of Farmland - **ID**: us-farmland-protection-policy-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Farmland Protection Policy Act (7 U.S.C. ch. 73, sections 4201 to 4209) is a United States statute whose purpose is to minimize the extent to which federal programs contribute to the unnecessary a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-farmland-protection-policy-act.json #### US Federal Agriculture Improvement and Reform Act of 1996 (7 USC ch 100): Production Flexibility Contracts and Marketing Loans - **ID**: us-federal-agriculture-improvement-reform-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Federal Agriculture Improvement and Reform Act of 1996 (7 U.S.C. ch. 100, sections 7201 to 7335) reformed federal farm income and commodity support by replacing target-price deficiency payments wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-agriculture-improvement-reform-act.json #### US Federal Crop Insurance Act (7 USC ch 36): Crop Insurance, Covered Causes and Program Integrity - **ID**: us-federal-crop-insurance-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Federal Crop Insurance Act, codified at 7 U.S.C. Chapter 36 (sections 1501-1524), establishes the federal crop insurance program that protects agricultural producers against crop losses, administe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-crop-insurance-act.json #### US Federal Insecticide, Fungicide, and Rodenticide Act (7 USC ch 6): Pesticide Registration and Unlawful Acts - **ID**: us-federal-insecticide-fungicide-rodenticide-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Federal Insecticide, Fungicide, and Rodenticide Act (FIFRA, 7 U.S.C. ch. 6, sections 136 to 136y) is the federal statute governing the registration, distribution, sale, and use of pesticides in th... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-insecticide-fungicide-rodenticide-act.json #### US Federal Insecticide, Fungicide and Rodenticide Act (FIFRA) - EPA Pesticide Registration Framework - **ID**: us-federal-insecticide-fungicide-rodenticide-act-fifra - **Category**: Agriculture & Agritech - **Version**: 2.0 - **BLUF**: The Federal Insecticide, Fungicide and Rodenticide Act (FIFRA, 7 U.S.C. ss. 136-136y) is the primary US federal law governing the registration, sale, distribution, and use of pesticides. The US Enviro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-insecticide-fungicide-rodenticide-act-fifra.json #### US Federal Meat Inspection Act: Mandatory Inspection, Adulteration, Labeling and Prohibited Acts - **ID**: us-federal-meat-inspection-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Federal Meat Inspection Act (FMIA), codified at 21 U.S.C. Chapter 12 (sections 601-695), is the principal US statute ensuring that meat and meat food products are wholesome, not adulterated, and p... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-meat-inspection-act.json #### US Federal Seed Act (7 USC ch 37): Truthful Seed Labeling, Import Controls and Penalties - **ID**: us-federal-seed-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Federal Seed Act, codified at 7 U.S.C. Chapter 37 (sections 1551-1611), regulates the labeling and advertising of agricultural and vegetable seeds in interstate commerce and the importation of see... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-seed-act.json #### US FIFRA (7 USC ch 6): Pesticide Registration, Labeling and Penalties - **ID**: us-fifra-pesticide-control - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Federal Insecticide, Fungicide, and Rodenticide Act (7 U.S.C. ch. 6) is the principal US statute governing the sale, distribution and use of pesticides, administered by the Environmental Protectio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fifra-pesticide-control.json #### US FIFRA: Pesticide Registration, Labeling, Restricted-Use Certification and Prohibited Acts - **ID**: us-fifra-pesticide-registration - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Federal Insecticide, Fungicide, and Rodenticide Act (FIFRA), codified at 7 U.S.C. Chapter 6, subchapter II (sections 136-136y), is the principal US statute regulating the sale, distribution and us... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fifra-pesticide-registration.json #### US Filled Milk Act (21 USC ch 3): Prohibition on Interstate Shipment of Filled Milk - **ID**: us-filled-milk-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Filled Milk Act (21 U.S.C. ch. 3, sections 61 to 64) prohibits the interstate and foreign shipment of filled milk, administered by the Secretary of Health and Human Services through the Food and D... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-filled-milk-act.json #### US Fluid Milk Promotion Act of 1990 (7 USC ch 93): National Processor Advertising and Promotion Board - **ID**: us-fluid-milk-promotion-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Fluid Milk Promotion Act of 1990 (7 U.S.C. ch. 93, sections 6401 to 6417) authorizes a coordinated program of advertising and promotion for fluid milk funded by assessments on fluid milk processor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fluid-milk-promotion-act.json #### US Food, Conservation, and Energy Act of 2008 (7 USC ch 113): Commodity Payments and Marketing Assistance Loans - **ID**: us-food-conservation-energy-act-2008 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The commodity title of the Food, Conservation, and Energy Act of 2008 (the 2008 Farm Bill, 7 U.S.C. ch. 113, sections 8702 to 8793) provides direct payments, counter-cyclical payments, and nonrecourse... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-food-conservation-energy-act-2008.json #### US Forest and Rangeland Renewable Resources Planning Act (16 U.S.C. Chapter 36): National Forest System Assessment, Programs and Land Management Plans - **ID**: us-forest-rangeland-renewable-resources-planning-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Forest and Rangeland Renewable Resources Planning Act of 1974, as amended by the National Forest Management Act of 1976, is codified at 16 U.S.C. Chapter 36 (sections 1600 through 1614) and establ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-forest-rangeland-renewable-resources-planning-act.json #### US Fresh Cut Flowers and Fresh Cut Greens Promotion and Information Act of 1993 (7 USC ch 97): Promotion Council and Assessments - **ID**: us-fresh-cut-flowers-greens-promotion-information-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Fresh Cut Flowers and Fresh Cut Greens Promotion and Information Act of 1993 (7 U.S.C. ch. 97, sections 6801 to 6814) authorizes a coordinated program of generic promotion and information for fres... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fresh-cut-flowers-greens-promotion-information-act.json #### US FSMA: 21 CFR Part 1 Subpart L Foreign Supplier Verification Programs (FSVP) for Importers of Food for Humans and Animals - **ID**: us-fsma-21-cfr-part-1-subpart-l-foreign-supplier-verification - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: 21 CFR the relevant part the relevant subpart (Foreign Supplier Verification Programs, FSVP) requires US importers of food for humans and animals to verify that their foreign suppliers produce food in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fsma-21-cfr-part-1-subpart-l-foreign-supplier-verification.json #### US FSMA: 21 CFR Part 1 Subpart O Sanitary Transportation of Human and Animal Food - **ID**: us-fsma-21-cfr-part-1-subpart-o-sanitary-transportation - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: 21 CFR the relevant part the relevant subpart implements FSMA the relevant section by setting requirements for the sanitary transportation of human and animal food in the United States to prevent food... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fsma-21-cfr-part-1-subpart-o-sanitary-transportation.json #### US FSMA: 21 CFR Part 112 Standards for the Growing, Harvesting, Packing, and Holding of Produce for Human Consumption (Produce Safety Rule) - **ID**: us-fsma-21-cfr-part-112-produce-safety-rule - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: the US FSMA produce safety rule (Produce Safety Rule) establishes minimum science-based standards for the safe growing, harvesting, packing, and holding of produce for human consumption on farms. the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fsma-21-cfr-part-112-produce-safety-rule.json #### US FSMA: 21 CFR Part 117 Current Good Manufacturing Practice, Hazard Analysis, and Risk-Based Preventive Controls for Human Food - **ID**: us-fsma-21-cfr-part-117-preventive-controls-human-food - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: the US FSMA preventive controls rule is the cornerstone FDA regulation implementing the Food Safety Modernization Act (FSMA) requirement that food facilities subject to registration under 21 USC 350d ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fsma-21-cfr-part-117-preventive-controls-human-food.json #### US FSMA: 21 CFR Part 121 Mitigation Strategies to Protect Food Against Intentional Adulteration - **ID**: us-fsma-21-cfr-part-121-intentional-adulteration - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: the US FSMA intentional adulteration rule implements FSMA the relevant section by requiring registered food facilities to prepare and implement a written Food Defense Plan to identify vulnerabilities ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fsma-21-cfr-part-121-intentional-adulteration.json #### US Grain Standards Act (7 USC ch 3): Official Grain Standards, Inspection and Weighing - **ID**: us-grain-standards-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The United States Grain Standards Act (7 U.S.C. ch. 3, sections 71 to 87k) establishes official United States standards for grain and provides for the official inspection and weighing of grain, admini... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-grain-standards-act.json #### US Hass Avocado Promotion, Research, and Information Act of 2000 (7 USC ch 105): Hass Avocado Board and Assessments - **ID**: us-hass-avocado-promotion-research-information-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Hass Avocado Promotion, Research, and Information Act of 2000 (7 U.S.C. ch. 105, sections 7801 to 7813) authorizes a national program of promotion, research, and information for Hass avocados fund... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hass-avocado-promotion-research-information-act.json #### US Honey Research, Promotion, and Consumer Information Act (7 USC ch 77): Honey Board and Assessments - **ID**: us-honey-research-promotion-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Honey Research, Promotion, and Consumer Information Act (7 U.S.C. ch. 77, sections 4601 to 4613) authorizes a coordinated national program of research, promotion, and consumer information for hone... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-honey-research-promotion-act.json #### US Honeybee Act (7 USC ch 11): Importation Restrictions on Honeybees and Honeybee Semen - **ID**: us-honeybee-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Honeybee Act (7 U.S.C. ch. 11, sections 281 to 286) regulates the importation of honeybees into the United States to prevent the introduction of diseases, parasites, undesirable species or subspec... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-honeybee-act.json #### US Horse Protection Act (15 USC ch 44): Prohibition on Soring, Show Duties and Penalties - **ID**: us-horse-protection-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Horse Protection Act (HPA), codified at 15 U.S.C. Chapter 44 (sections 1821-1831), prohibits the soring of horses and the showing, sale, auction, exhibition or transport of sored horses, and is ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-horse-protection-act.json #### US Humane Methods of Slaughter Act (7 USC ch 48): Humane Slaughter Standards and Ritual Exemption - **ID**: us-humane-methods-of-slaughter-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Humane Methods of Slaughter Act (HMSA), codified at 7 U.S.C. Chapter 48 (sections 1901-1907), establishes the federal policy and standards for the humane slaughter and handling of livestock and is... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-humane-methods-of-slaughter-act.json #### US Import Milk Act (21 USC ch 4): Permit Requirement for Importing Milk and Cream - **ID**: us-import-milk-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Import Milk Act (21 U.S.C. ch. 4, subchapter IV, sections 141 to 149) regulates the importation of milk and cream into the United States to protect public health, administered by the Secretary of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-import-milk-act.json #### US Lime Promotion, Research, and Consumer Information Act of 1990 (7 USC ch 91): Lime Board and Assessments - **ID**: us-lime-promotion-research-information-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Lime Promotion, Research, and Consumer Information Act of 1990 (7 U.S.C. ch. 91, sections 6201 to 6212) authorizes a coordinated program of research, promotion, and consumer information for limes ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-lime-promotion-research-information-act.json #### US Migrant and Seasonal Agricultural Worker Protection Act (29 USC ch 20): Farmworker Protections - **ID**: us-migrant-and-seasonal-agricultural-worker-protection-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Migrant and Seasonal Agricultural Worker Protection Act, MSPA (29 U.S.C. ch. 20), establishes employment standards and protections for migrant and seasonal agricultural workers and regulates farm ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-migrant-and-seasonal-agricultural-worker-protection-act.json #### US Mushroom Promotion, Research, and Consumer Information Act of 1990 (7 USC ch 90): Mushroom Council and Assessments - **ID**: us-mushroom-promotion-research-information-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Mushroom Promotion, Research, and Consumer Information Act of 1990 (7 U.S.C. ch. 90, sections 6101 to 6112) authorizes a coordinated program of promotion, research, and consumer information for mu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-mushroom-promotion-research-information-act.json #### US National Agricultural Research, Extension, and Teaching Policy Act of 1977 (7 USC ch 64): USDA Lead Agency for Agricultural Research - **ID**: us-national-agricultural-research-extension-teaching-policy-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The National Agricultural Research, Extension, and Teaching Policy Act of 1977 (7 U.S.C. ch. 64, sections 3101 onward) sets the federal policy framework for agricultural research, extension, and teach... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-agricultural-research-extension-teaching-policy-act.json #### US Naval Stores Act (7 USC ch 4): Federal Grade Standards for Turpentine and Rosin - **ID**: us-naval-stores-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Naval Stores Act (7 U.S.C. ch. 4, sections 91 to 99) establishes federal grade standards for naval stores, principally spirits of turpentine and rosin, and is administered by the Secretary of Agri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naval-stores-act.json #### US Organic Foods Production Act: National Organic Program, Certification, National List and Labeling - **ID**: us-organic-foods-production-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Organic Foods Production Act of 1990 (OFPA), codified at 7 U.S.C. Chapter 94 (sections 6501-6524), establishes national standards for the production, handling and labeling of organically produced ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-organic-foods-production-act.json #### US Packers and Stockyards Act (7 USC ch 9): Fair Competition, Registration, Statutory Trust and Prompt Payment - **ID**: us-packers-and-stockyards-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Packers and Stockyards Act, 1921, codified at 7 U.S.C. Chapter 9 (sections 181-229c), regulates competition and trade practices in the livestock, meatpacking and poultry industries and is administ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-packers-and-stockyards-act.json #### US Pecan Promotion and Research Act of 1990 (7 USC ch 89): Pecan Board, Plans and Assessments - **ID**: us-pecan-promotion-research-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Pecan Promotion and Research Act of 1990 (7 U.S.C. ch. 89, sections 6001 to 6013) authorizes coordinated programs of promotion and research for pecans funded by assessments and implemented through... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pecan-promotion-research-act.json #### US Perishable Agricultural Commodities Act (PACA, 7 USC ch 20A): Licensing, Fair Conduct and the Statutory Trust - **ID**: us-perishable-agricultural-commodities-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Perishable Agricultural Commodities Act, 1930 (PACA), codified at 7 U.S.C. Chapter 20A (sections 499a-499t), regulates the marketing of fresh and frozen fruits and vegetables in interstate and for... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-perishable-agricultural-commodities-act.json #### US Plant Protection Act: Plant Pests, Noxious Weeds, Quarantine and Emergency Authority - **ID**: us-plant-protection-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Plant Protection Act (PPA), codified at 7 U.S.C. Chapter 104 (sections 7701-7786), is the principal US statute for preventing the introduction and spread of plant pests and noxious weeds, administ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-plant-protection-act.json #### US Plant Variety Protection Act (7 USC ch 57): Breeder Rights, Certification, Infringement and Remedies - **ID**: us-plant-variety-protection-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Plant Variety Protection Act (PVPA), codified at 7 U.S.C. Chapter 57 (sections 2321-2583), grants intellectual property protection to breeders of new, sexually reproduced or tuber-propagated plant... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-plant-variety-protection-act.json #### US Plant Variety Protection Act 1970 - PVPO Certificate and Breeder Rights Framework - **ID**: us-plant-variety-protection-act-1970-usda-pvpo - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The US Plant Variety Protection Act (PVPA, 7 USC 2321 et seq., enacted 1970 as P.L. 91-577) provides intellectual property protection for sexually reproduced and tuber-propagated plant varieties. The ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-plant-variety-protection-act-1970-usda-pvpo.json #### US Pork Promotion, Research, and Consumer Information Act of 1985 (7 USC ch 79): National Pork Board and Assessments - **ID**: us-pork-promotion-research-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Pork Promotion, Research, and Consumer Information Act of 1985 (7 U.S.C. ch. 79, sections 4801 to 4819) authorizes a coordinated program of promotion, research, and consumer information for pork a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pork-promotion-research-act.json #### US Potato Research and Promotion Act (7 USC ch 58): National Potato Promotion Board and Assessments - **ID**: us-potato-research-promotion-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Potato Research and Promotion Act (7 U.S.C. ch. 58, sections 2611 to 2627) authorizes a coordinated program of research and promotion for potatoes funded by assessments and implemented through pla... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-potato-research-promotion-act.json #### US Poultry Products Inspection Act (21 USC ch 10): Mandatory Inspection, Labeling and Prohibited Acts - **ID**: us-poultry-products-inspection-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Poultry Products Inspection Act (PPIA), codified at 21 U.S.C. Chapter 10 (sections 451-473), requires federal inspection of poultry and poultry products intended for use as human food and is admin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-poultry-products-inspection-act.json #### US Rural Electrification Act of 1936 (7 USC ch 31): Rural Electric and Telephone Loan Authority - **ID**: us-rural-electrification-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Rural Electrification Act of 1936 (7 U.S.C. ch. 31, sections 901 to 950bb) authorizes federal lending to furnish and improve electric and telephone service in rural areas, administered by the Secr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-rural-electrification-act.json #### US Sheep Promotion, Research, and Information Act of 1994 (7 USC ch 99): Sheep and Wool Board and Assessments - **ID**: us-sheep-promotion-research-information-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Sheep Promotion, Research, and Information Act of 1994 (7 U.S.C. ch. 99, sections 7101 to 7111) authorizes a coordinated program of promotion, research, consumer information, education, and indust... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sheep-promotion-research-information-act.json #### US Smith-Lever Act (7 USC ch 13): Cooperative Agricultural Extension Work by Land-Grant Colleges - **ID**: us-smith-lever-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Smith-Lever Act (7 U.S.C. ch. 13, sections 341 onward) establishes the cooperative agricultural extension system of the United States, carried on by the land-grant colleges in cooperation with the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-smith-lever-act.json #### US Soil Conservation and Domestic Allotment Act (16 USC ch 3B): Soil Erosion Control and Conservation Payments - **ID**: us-soil-conservation-domestic-allotment-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Soil Conservation and Domestic Allotment Act (16 U.S.C. ch. 3B, sections 590a to 590q-3) authorizes the federal soil and water conservation program of the United States, administered by the Secret... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-soil-conservation-domestic-allotment-act.json #### US Soil and Water Resources Conservation Act of 1977 (16 U.S.C. Chapter 40): National Appraisal and Conservation Program - **ID**: us-soil-water-resources-conservation-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Soil and Water Resources Conservation Act of 1977, codified at 16 U.S.C. Chapter 40 (sections 2001 through 2009), directs the Secretary of Agriculture to appraise the soil, water, and related reso... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-soil-water-resources-conservation-act.json #### US Soybean Promotion, Research, and Consumer Information Act (7 USC ch 92): United Soybean Board and Assessments - **ID**: us-soybean-promotion-research-information-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Soybean Promotion, Research, and Consumer Information Act (7 U.S.C. ch. 92, sections 6301 to 6311) authorizes a coordinated program of promotion, research, and consumer information for soybeans fu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-soybean-promotion-research-information-act.json #### US Standard Barrel Acts (15 USC ch 6): Standard Barrels for Apples, Fruits and Dry Commodities - **ID**: us-standard-barrel-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Standard Barrel Acts (15 U.S.C. ch. 6, subchapter VI, sections 231 to 242) establish federal standard barrels for apples, other fruits, vegetables, and dry commodities, and for lime, administered ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-standard-barrel-act.json #### US Swine Health Protection Act (7 USC ch 69): Garbage Feeding Prohibition and Treatment Permits - **ID**: us-swine-health-protection-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Swine Health Protection Act (7 U.S.C. ch. 69, sections 3801 to 3813) regulates the feeding of garbage to swine to prevent the transmission of infectious and communicable diseases, administered by ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-swine-health-protection-act.json #### US Taylor Grazing Act (43 USC ch 8A): Grazing Districts and Permits on Public Lands - **ID**: us-taylor-grazing-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Taylor Grazing Act (43 U.S.C. ch. 8A, sections 315 to 316o) authorizes the regulation of livestock grazing on the federal public lands of the United States and is administered by the Secretary of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-taylor-grazing-act.json #### US Tobacco Statistics Act (7 USC ch 21): Mandatory Quarterly Reporting of Leaf Tobacco Stocks - **ID**: us-tobacco-statistics-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Tobacco Statistics Act (7 U.S.C. ch. 21, sections 501 to 509) requires the collection and publication of statistics on leaf tobacco held in the United States, administered by the Secretary of Agri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tobacco-statistics-act.json #### US United States Warehouse Act (7 USC ch 10): Licensing of Agricultural Warehouses and Warehouse Receipts - **ID**: us-united-states-warehouse-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The United States Warehouse Act (7 U.S.C. ch. 10, sections 241 to 256) authorizes the Secretary of Agriculture to license warehouse operators who store agricultural products for interstate or foreign ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-united-states-warehouse-act.json #### US EPA Pesticide Maximum Residue Limits - 40 CFR Part 180 Tolerances for Pesticide Residues - **ID**: us-usda-pesticide-mrl-tolerance-regulation-40-cfr-180 - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: 40 CFR Part 180 implements Federal Food, Drug, and Cosmetic Act (FFDCA) Section 408 tolerances, establishing maximum residue limits (MRLs) for pesticide residues on food commodities. EPA sets toleranc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-usda-pesticide-mrl-tolerance-regulation-40-cfr-180.json #### US Virus-Serum-Toxin Act (21 USC ch 5): Licensing of Veterinary Biological Products - **ID**: us-virus-serum-toxin-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Virus-Serum-Toxin Act (21 U.S.C. ch. 5, sections 151 to 159) regulates veterinary biological products, including viruses, serums, toxins, antitoxins, and analogous products intended for use in the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-virus-serum-toxin-act.json #### US Watermelon Research and Promotion Act (7 USC ch 80): The Watermelon Checkoff and National Promotion Board - **ID**: us-watermelon-research-promotion-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Watermelon Research and Promotion Act (7 U.S.C. ch. 80, sections 4901 to 4916) authorizes a national watermelon research and promotion program funded by assessments, administered by the Secretary ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-watermelon-research-promotion-act.json #### US Wheat and Wheat Foods Research and Nutrition Education Act (7 USC ch 65): Wheat Industry Council and Orders - **ID**: us-wheat-foods-research-nutrition-education-act - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Wheat and Wheat Foods Research and Nutrition Education Act (7 U.S.C. ch. 65, sections 3401 to 3417) authorizes orders for wheat and wheat foods research and nutrition education funded by assessmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wheat-foods-research-nutrition-education-act.json #### WOAH Aquatic Animal Health Code - **ID**: woah-aquatic-animal-health-code - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The WOAH Aquatic Animal Health Code complements the Terrestrial Code by setting global standards for the prevention, detection, and control of diseases of fish, molluscs, crustaceans, and amphibians, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/woah-aquatic-animal-health-code.json #### WOAH Terrestrial Animal Health Code - **ID**: woah-terrestrial-animal-health-code - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The WOAH Terrestrial Animal Health Code (the Code) is the global reference standard for the prevention, detection, and control of animal diseases affecting terrestrial mammals, birds, and bees, and fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/woah-terrestrial-animal-health-code.json #### WTO Agreement on Agriculture (1994): Market Access, Domestic Support and Export Competition - **ID**: wto-agreement-on-agriculture - **Category**: Agriculture & Agritech - **Version**: 1.0.0 - **BLUF**: The Agreement on Agriculture is a Uruguay Round multilateral trade agreement administered by the World Trade Organization that disciplines government support and protection in the agricultural sector ... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-agreement-on-agriculture.json ### Automotive & Mobility (105 nodes) #### Australia Motor Vehicle Standards Act 2018 (MVSA) - Type Approval and Road Vehicle Standards - **ID**: australia-motor-vehicle-standards-act-2018-mvsa - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Australia's Motor Vehicle Standards Act 2018 (MVSA, effective 1 July 2021, replacing the Motor Vehicle Standards Act 1989) establishes the Road Vehicle Standards Rules (RVSR) framework administered by... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-motor-vehicle-standards-act-2018-mvsa.json #### Australia National Automated Vehicle Policy Framework 2023 - Regulatory Principles, Safety Obligations, Data Sharing, Third-Party Testing and Insurance for Automated Vehicles on Public Roads - **ID**: australia-national-av-policy-framework-2023 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This framework establishes national regulatory principles for the safe deployment of automated vehicles (AVs) on public roads in Australia, requiring AV operators and manufacturers to comply with safe... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-national-av-policy-framework-2023.json #### Australia National Road Safety Strategy 2021-2030 - Safe System Principles, Speed Management, Vehicle Safety Standards and Fleet Modernisation Targets - **ID**: australia-national-road-safety-strategy-2021-2030 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This strategy mandates all Australian road authorities and vehicle fleet operators to implement Safe System principles by 2030, including speed management reforms, adoption of advanced vehicle safety ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-national-road-safety-strategy-2021-2030.json #### Automotive SPICE (ASPICE) PAM 3.1 - Process Assessment Model: SYS, SWE, SUP, MAN Process Areas, Capability Levels and Assessment Indicators for Automotive Software Engineering - **ID**: automotive-spice-pam-3-1 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Automotive SPICE PAM 3.1 defines a process reference and assessment model for evaluating the capability of software and systems engineering processes in the automotive industry. It applies to supplier... - **Discovery URL**: https://bidda.com/api/v1/nodes/automotive-spice-pam-3-1.json #### AUTOSAR Adaptive Platform 22-11 - Adaptive Application Architecture: Service-Oriented Communication, Execution Management, Update and Config Management and Cryptography APIs - **ID**: autosar-adaptive-platform-ara-standard - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This standard defines the architecture and interfaces of the AUTOSAR Adaptive Platform, including service-oriented communication, runtime execution, and cryptographic services for adaptive automotive ... - **Discovery URL**: https://bidda.com/api/v1/nodes/autosar-adaptive-platform-ara-standard.json #### Canada Motor Vehicle Safety Regulations CRC c 1038 - National Safety Mark Compliance Labels CMVSS Standards Recall and Importation - **ID**: ca-motor-vehicle-safety-regulations-crc-1038 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Canada Motor Vehicle Safety Regulations (CRC c 1038) implement the Motor Vehicle Safety Act and prescribe national safety mark requirements under Section 3 prescribed vehicle classes under Section 4 w... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-motor-vehicle-safety-regulations-crc-1038.json #### California CARB Advanced Clean Cars II (ACC II) - Zero-Emission Vehicle Mandate, PHEV Requirements, Battery Durability, Charging Standards and Data Tracking - **ID**: california-carb-advanced-clean-cars-ii - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The CARB ACC II regulations mandate that by 2035, 100% of new light-duty vehicles sold in California must be Zero-Emission Vehicles (ZEVs) or Plug-in Hybrid Electric Vehicles (PHEVs). - **Discovery URL**: https://bidda.com/api/v1/nodes/california-carb-advanced-clean-cars-ii.json #### California DMV Autonomous Vehicle Regulations - Testing Permits, Driverless Testing, Deployment Permits, Manufacturer Obligations, Incident Reporting and Public Use Requirements - **ID**: california-dmv-autonomous-vehicle-regulations - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: This regulation requires manufacturers to obtain permits from the California DMV to test or deploy autonomous vehicles on public roads, report disengagements annually, and file collision reports for a... - **Discovery URL**: https://bidda.com/api/v1/nodes/california-dmv-autonomous-vehicle-regulations.json #### Canada Motor Vehicle Safety Act: Standards Conformity, National Safety Mark and Recalls - **ID**: canada-motor-vehicle-safety-act - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The Motor Vehicle Safety Act (S.C. 1993, c. 16) regulates the manufacture and importation of motor vehicles and motor vehicle equipment to reduce the risk of death, injury and damage to property and t... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-motor-vehicle-safety-act.json #### Canada Motor Vehicle Safety Act 1985 - CMVSS Type Approval, Defect Investigation and Transport Canada Recall Obligations - **ID**: canada-motor-vehicle-safety-act-1985-cmvss - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: The Canada Motor Vehicle Safety Act R.S.C. 1985 c. M-10.01 (MVSA) and the Motor Vehicle Safety Regulations SOR/94-693 (MVSR) establish Canada's mandatory safety standards regime for motor vehicles and... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-motor-vehicle-safety-act-1985-cmvss.json #### China GB 18384-2020 - Electric Vehicle Safety Standard and GB Standards for New Energy Vehicles - **ID**: china-gb-18384-2020-electric-vehicle-safety-standard - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: China's GB 18384-2020 (Electric Vehicles Safety Requirements, effective 1 January 2021) is the mandatory national standard for battery electric vehicle (BEV) and fuel cell electric vehicle (FCEV) safe... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-gb-18384-2020-electric-vehicle-safety-standard.json #### Intelligent and Connected Vehicle Access Management, Safety Requirements, Functional Safety, and Over-the-Air Update Standards (SAC/TC 114, 2022) - **ID**: china-intelligent-connected-vehicle-regulations-2022 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This regulation establishes mandatory technical and safety requirements for intelligent and connected vehicles (ICVs) accessing the Chinese market, including functional safety, cybersecurity, over-the... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-intelligent-connected-vehicle-regulations-2022.json #### Germany Straßenverkehrs-Zulassungs-Ordnung (StVZO) - Vehicle Registration Type Approval Construction and Technical Inspection - **ID**: de-stvzo-strassenverkehrs-zulassungs-ordnung - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The Straßenverkehrs-Zulassungs-Ordnung (StVZO) is the German federal road vehicle registration ordinance issued under the Straßenverkehrsgesetz (StVG) covering registration of motor vehicles and trail... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-stvzo-strassenverkehrs-zulassungs-ordnung.json #### Spain Real Decreto 750/2010 - Reglamento de Homologación de Vehículos Sistemas Partes y Piezas y Conformidad de la Producción - **ID**: es-real-decreto-750-2010-homologacion-vehiculos - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Spain Real Decreto 750/2010 establishes the national homologation framework for vehicles systems parts and components through six Capítulos covering disposiciones generales in Articulos 1 to 3 homolog... - **Discovery URL**: https://bidda.com/api/v1/nodes/es-real-decreto-750-2010-homologacion-vehiculos.json #### ETSI ITS Standards - Cooperative Intelligent Transport Systems: ETSI EN 302 637-2 CAM, EN 302 637-3 DENM, EN 303 613 LTE-V2X and Security Standards for C-ITS - **ID**: etsi-its-cooperative-intelligent-transport - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This regulation establishes technical standards for Cooperative Intelligent Transport Systems (C-ITS) to enable secure, interoperable communication between vehicles and infrastructure using CAM and DE... - **Discovery URL**: https://bidda.com/api/v1/nodes/etsi-its-cooperative-intelligent-transport.json #### Regulation (EU) 2023/1804 on the deployment of alternative fuels infrastructure and amending Directive 2009/33/EC and Regulation (EU) No 1315/2013 - **ID**: eu-alternative-fuels-infrastructure-regulation - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The EU Alternative Fuels Infrastructure Regulation (AFIR) mandates Member States to ensure the deployment of minimum levels of publicly accessible EV charging and hydrogen refuelling infrastructure al... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-alternative-fuels-infrastructure-regulation.json #### Regulation (EU) 2023/1804 on the deployment of alternative fuels infrastructure - **ID**: eu-alternative-fuels-infrastructure-regulation-2023-1804 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Requires EU Member States to deploy minimum levels of publicly accessible electric vehicle (EV) charging and refuelling infrastructure along the Trans-European Transport Network (TEN-T), including hig... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-alternative-fuels-infrastructure-regulation-2023-1804.json #### Regulation (EU) 2023/1542 on Batteries and Waste Batteries, Repealing Directive 2006/66/EC and Amending Regulations (EU) No 2019/1020 and (EU) 2019/944 - Sustainability and Environmental Compliance for Electric Vehicle Batteries - **ID**: eu-batteries-regulation-2023-1542-ev - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This regulation imposes mandatory carbon footprint declaration, due diligence for critical raw materials, battery passport with digital product record, state-of-health reporting, second-life assessmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-batteries-regulation-2023-1542-ev.json #### Regulation (EU) 2023/1542 on Batteries and Waste Batteries, Amending Regulations (EU) 2019/1020 and (EU) 2018/848, and Repealing Directive 2006/66/EC - **ID**: eu-batteries-regulation-2023-1542-ev-batteries - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: This regulation imposes mandatory carbon footprint declaration and performance class rating for electric vehicle (EV) batteries placed on the EU market from 2027, requires minimum recycled content of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-batteries-regulation-2023-1542-ev-batteries.json #### Regulation (EU) 2023/851 of the European Parliament and of the Council of 12 April 2023 on CO₂ emission performance standards for new passenger cars and for new light commercial vehicles, and repealing Regulations (EC) No 443/2009 and (EU) No 510/2011 - **ID**: eu-co2-cars-vans-regulation-2023-851 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Requires 100% reduction in average CO₂ emissions from new passenger cars and light commercial vehicles by 31 December 2034, effectively mandating zero-emission vehicle sales from 2035, with interim ta... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-co2-cars-vans-regulation-2023-851.json #### Regulation (EU) 2024/1781 on the Digital Product Passport for Vehicles - Requirements for Battery Passport Integration, Recyclability Information and QR Code Accessibility - **ID**: eu-digital-product-passport-vehicles-2024 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This regulation mandates vehicle manufacturers placing electric vehicles on the EU market to integrate a Battery Passport into the Digital Product Passport (DPP), provide verified recyclability data, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-product-passport-vehicles-2024.json #### EU Directive 2014/45/EU - Periodic Roadworthiness Testing of Motor Vehicles - **ID**: eu-directive-2014-45-roadworthiness-testing - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Directive 2014/45/EU harmonises periodic roadworthiness testing across EU Member States, establishing minimum inspection standards, item lists, deficiency classification (minor, major, dangerous), tes... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2014-45-roadworthiness-testing.json #### EU eCall Regulation 2015/758 - In-Vehicle Emergency Call System Requirements - **ID**: eu-ecall-regulation-2015-758-in-vehicle-emergency-call - **Category**: Automotive & Mobility - **Version**: 2.0.0 - **BLUF**: EU Regulation 2015/758 mandates type-approval of pan-European eCall via 112 in all new M1/N1 passenger vehicles (≤3.5t) produced from 31 March 2018. On-board system must transmit Minimum Set of Data (... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecall-regulation-2015-758-in-vehicle-emergency-call.json #### Regulation (EU) 2020/740 of the European Parliament and of the Council of 18 May 2020 on energy labelling of tyres, amending Regulation (EU) 2017/1377 and repealing Regulation (EC) No 1222/2009 - **ID**: eu-ecodesign-tyre-labelling-regulation-2020-740 - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: This regulation mandates that all new tyres placed on the EU market must display standardized labels indicating performance in wet grip, rolling resistance, and external rolling noise. It applies to m... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecodesign-tyre-labelling-regulation-2020-740.json #### EU Electronic European Toll Service Directive 2019/520 - EETS Interoperability - **ID**: eu-eets-electronic-toll-service-directive-2019-520 - **Category**: Automotive & Mobility - **Version**: 2019-04 - **BLUF**: Directive 2019/520/EU on the interoperability of electronic road toll systems requires all new EETS service areas to be accessible to EETS providers by 2021, mandating a single contract and single in-... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eets-electronic-toll-service-directive-2019-520.json #### Regulation (EU) 2024/1257 - Emission Limits for Light and Heavy-Duty Vehicles, Real Driving Emissions, Tyre and Brake Particle Emission Limits and Battery Durability Requirements - **ID**: eu-emission-standards-euro-7 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1257 establishes stricter emission limits for light and heavy-duty vehicles, including real driving emissions (RDE) for NOx and particulate matter, introduces limits on non-exhaus... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-emission-standards-euro-7.json #### EU End-of-Life Vehicles Directive 2000/53/EC - **ID**: eu-end-of-life-vehicles-directive-2000-53-ec - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: EU Directive 2000/53/EC on End-of-Life Vehicles (ELV) implements producer responsibility for vehicles at the end of their useful life. Vehicle manufacturers must achieve minimum reuse/recovery and reu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-end-of-life-vehicles-directive-2000-53-ec.json #### Proposal for a Directive of the European Parliament and of the Council on end-of-life vehicles - Recycled Content Mandates, Dismantling Information, Collector Obligations and Depollution Standards - **ID**: eu-end-of-life-vehicles-directive-revision-2023 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This regulation establishes mandatory recycled content targets for new vehicles, requires manufacturers to provide standardized dismantling and depollution information, and imposes obligations on trea... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-end-of-life-vehicles-directive-revision-2023.json #### Commission Delegated Regulation (EU) 2019/945 on unmanned aircraft systems and on third-country operators of unmanned aircraft systems - **ID**: eu-eu-drone-regulation-uas-2019-945 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Establishes safety and environmental requirements for the design, production, and operation of unmanned aircraft systems (UAS) in the European Union, categorizing operations into Open, Specific, and C... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eu-drone-regulation-uas-2019-945.json #### Proposal for a Regulation of the European Parliament and of the Council on type-approval requirements for motor vehicles and engines with respect to emissions from light and heavy-duty vehicles (Euro 7) - **ID**: eu-euro-7-emission-regulation-proposal-2022 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Establishes unified Euro 7 emission limits for light- and heavy-duty vehicles, including brake and tyre particle emissions, and mandates enhanced on-board diagnostic (OBD) systems for real-world monit... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-euro-7-emission-regulation-proposal-2022.json #### EU General Safety Regulation 2019/2144 - Advanced Driver Assistance and Vehicle Type Approval - **ID**: eu-general-safety-regulation-2019-2144-automated-vehicles - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: EU Regulation 2019/2144 on General Safety Requirements for Motor Vehicles (GSR, applicable from July 2022 for new type approvals and July 2024 for all new vehicles) mandates fitment of advanced driver... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-safety-regulation-2019-2144-automated-vehicles.json #### EU General Safety Regulation 2019/2144 - Vehicle Type Approval Safety - **ID**: eu-general-safety-regulation-2019-2144-vehicle-type-approval - **Category**: Automotive & Mobility - **Version**: 2.0.0 - **BLUF**: Regulation (EU) 2019/2144 mandates advanced vehicle safety systems as type-approval requirements from 2022 (new types) and 2024 (all new vehicles), including Intelligent Speed Assistance (ISA), Emerge... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-safety-regulation-2019-2144-vehicle-type-approval.json #### Regulation (EU) 2019/2144 of the European Parliament and of the Council of 27 November 2019 on type-approval requirements for motor vehicles and their trailers, and systems, components and separate technical units intended for such vehicles, as regards their general safety and the protection of vehicle occupants and vulnerable road users - **ID**: eu-general-safety-regulation-2019-2144-vehicles - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Mandates the installation of advanced driver assistance systems (ADAS) including Automated Emergency Braking (AEB), Intelligent Speed Assistance (ISA), Driver Drowsiness and Attention Warning (DDAW), ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-safety-regulation-2019-2144-vehicles.json #### EU General Safety Regulation 2019/2144 Article 6 - Type-Approval Requirements for Automated and Fully Automated Road Vehicles - **ID**: eu-gsr-2019-2144-article-6-automated-driving-requirements - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Article 6 of Regulation (EU) 2019/2144 (General Safety Regulation, GSR) mandates that motor vehicles be equipped with Intelligent Speed Assistance (ISA), Emergency Lane Keeping Systems (ELKS), and oth... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gsr-2019-2144-article-6-automated-driving-requirements.json #### Regulation (EU) 2021/782 of the European Parliament and of the Council of 29 April 2021 on rail passengers’ rights and obligations (recast) (Text with EEA relevance) - **ID**: eu-hta-regulation-2021-782 - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: This regulation establishes enforceable rights for rail passengers within the European Union, including rights to information, assistance, compensation, and re-routing in cases of delay or cancellatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-hta-regulation-2021-782.json #### Directive 2010/40/EU of the European Parliament and of the Council of 7 July 2010 on the framework for the deployment of Intelligent Transport Systems in the field of road transport and for interfaces with other modes of transport - **ID**: eu-intelligent-transport-systems-directive-2010 - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: The EU ITS Directive 2010/40/EU mandates Member States to develop and implement National ITS Action Plans to ensure interoperable deployment of intelligent transport systems (ITS) across road transpor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-intelligent-transport-systems-directive-2010.json #### Directive 2010/40/EU of the European Parliament and of the Council of 7 July 2010 on the framework for the deployment of Intelligent Transport Systems in the field of road transport and for interfaces with other modes of transport - **ID**: eu-intelligent-transport-systems-directive-2010-40 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This Directive establishes a framework for the coordinated deployment of Intelligent Transport Systems (ITS) across the EU, mandating interoperability and common specifications in priority areas inclu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-intelligent-transport-systems-directive-2010-40.json #### Regulation (EU) 2019/1020 on market surveillance and compliance of products - Provisions for automotive components and related obligations for economic operators - **ID**: eu-market-surveillance-regulation-2019-1020-auto - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2019/1020 establishes binding obligations for economic operators (manufacturers, importers, authorised representatives, distributors) placing automotive components on the EU market, re... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-market-surveillance-regulation-2019-1020-auto.json #### Commission Regulation (EU) No 461/2010 of 27 May 2010 on the application of Article 101(3) of the Treaty on the Functioning of the European Union to categories of vertical agreements and concerted practices in the motor vehicle sector - **ID**: eu-motor-vehicle-block-exemption-regulation-461 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 461/2010 establishes competition rules for the EU motor vehicle aftermarket, ensuring independent operators have fair access to spare parts, technical information, and repair tools.... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-motor-vehicle-block-exemption-regulation-461.json #### EU Regulation 2022/1426 - Automated Driving System Type-Approval - **ID**: eu-regulation-2022-1426-ads-testing-provisions - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2022/1426 establishes uniform procedures and technical specifications for type-approval of automated driving systems (ADS) for fully automated vehicles under Ar... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-regulation-2022-1426-ads-testing-provisions.json #### Commission Delegated Regulation (EU) 2021/2139 of 4 June 2021 supplementing Regulation (EU) 2020/852 by establishing the detailed rules for determining the conditions under which an economic activity qualifies as environmentally sustainable for the purposes of the EU Taxonomy, in the sector of transport, including low-emission mobility thresholds for motor vehicles - **ID**: eu-regulation-2023-2631-eu-green-bonds-auto - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This regulation sets technical screening criteria for automotive manufacturers and fleet operators to classify vehicle production and sales as environmentally sustainable under the EU Taxonomy, requir... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-regulation-2023-2631-eu-green-bonds-auto.json #### Regulation (EU) 2018/858 of the European Parliament and of the Council of 30 May 2018 on the approval and market surveillance of motor vehicles and their trailers, and of systems, components and separate technical units intended for such vehicles, and repealing Directive 2007/46/EC - **ID**: eu-type-approval-framework-regulation-2018-858 - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: This regulation establishes the EU framework for whole vehicle type-approval ( WVTA ), requiring manufacturers to obtain certification before placing vehicles on the market, mandates ongoing market su... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-type-approval-framework-regulation-2018-858.json #### Regulation (EU) 2018/858 of the European Parliament and of the Council of 30 May 2018 on the approval and market surveillance of motor vehicles and their trailers, and of systems, components and separate technical units intended for such vehicles, and repealing Directive 2007/46/EC - **ID**: eu-type-approval-regulation-2018-858 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This regulation establishes a harmonized framework for whole vehicle type approval ( WVTA ), conformity of production (CoP), market surveillance, and post-market remedial measures for motor vehicles a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-type-approval-regulation-2018-858.json #### EU Type-Approval Regulation 2018/858 - Whole Vehicle Market Surveillance and Technical Requirements - **ID**: eu-type-approval-regulation-2018-858-whole-vehicle-technical-requirements - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2018/858 establishes the framework for type-approval and market surveillance of motor vehicles in the EU, requiring manufacturers to demonstrate conformity of production, provide on-bo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-type-approval-regulation-2018-858-whole-vehicle-technical-requirements.json #### UN Regulation No. 100 - Uniform Provisions Concerning the Approval of Battery Electric Vehicles with Regard to Specific Requirements for Electric Power Train Systems - **ID**: eu-un-r100-electric-vehicle-construction - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: UN Regulation No. 100 (Rev. 3, 2022) establishes mandatory safety requirements for battery electric vehicles (BEVs) regarding electrical safety, protection against electric shock, thermal management, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-un-r100-electric-vehicle-construction.json #### EU Vehicle Type Approval Regulation 2018/858 -- Whole Vehicle Type Approval and Market Surveillance - **ID**: eu-vehicle-type-approval-regulation-2018-858 - **Category**: Automotive & Mobility - **Version**: 2024.1.0 - **BLUF**: Regulation (EU) 2018/858 establishes the EU framework for whole vehicle type approval (WVTA), individual vehicle approval (IVA), and market surveillance of motor vehicles, trailers, and their systems ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-vehicle-type-approval-regulation-2018-858.json #### Euro NCAP Safety Assessment Protocol 2024 - Adult Occupant, Child Occupant, Vulnerable Road Users, Safety Assist Testing Methods and Rating Criteria for Vehicle Safety Assessment - **ID**: euro-ncap-safety-assessment-protocol-2024 - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: This protocol defines the testing and rating methodology used by Euro NCAP for assessing vehicle safety performance across adult occupant protection, child occupant protection, vulnerable road user pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/euro-ncap-safety-assessment-protocol-2024.json #### Act on the Amendment of the Road Traffic Act and Other Acts to Permit Highly Automated Driving in Regular Traffic (Automated Driving Act - StVÄndG) - **ID**: germany-autonomous-driving-law-2021-stvaendg - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: The Germany Autonomous Driving Act 2021 (StVÄndG) permits Level 4 autonomous driving systems to operate in defined operating domains (ODDs) without a human driver present, provided a technical supervi... - **Discovery URL**: https://bidda.com/api/v1/nodes/germany-autonomous-driving-law-2021-stvaendg.json #### IATF 16949:2016 - International Automotive Quality Management System Standard - **ID**: iatf-16949-2016-automotive-quality-management-system - **Category**: Automotive & Mobility - **Version**: 2016 - **BLUF**: IATF 16949:2016 (International Automotive Task Force) is the global quality management system standard for automotive production and service parts organisations; built on ISO 9001:2015, it adds automo... - **Discovery URL**: https://bidda.com/api/v1/nodes/iatf-16949-2016-automotive-quality-management-system.json #### IEC 61851:2017 - Electric Vehicle Conductive Charging System: Mode 1-4 Charging, Control Pilot Signal, PWM Duty Cycle, Safety Requirements and Connector Requirements - **ID**: iec-61851-ev-charging-system-standard - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: IEC 61851:2017 defines the conductive charging system for electric vehicles, specifying safety, control pilot signaling, and connector requirements for charging modes 1 to 4. It applies to EV manufact... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-61851-ev-charging-system-standard.json #### India Bharat NCAP Vehicle Safety Rating Programme - AIS-197:2023 Crash Test Protocol and MoRTH Type Approval Requirements - **ID**: india-bharat-ncap-vehicle-safety-rating-ais-197-2023 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: India's Bharat New Car Assessment Programme (Bharat NCAP) was launched by the Ministry of Road Transport and Highways (MoRTH) through Gazette Notification GSR 663(E) dated 18 September 2023, making In... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-bharat-ncap-vehicle-safety-rating-ais-197-2023.json #### The Motor Vehicles (Amendment) Act, 2019 - **ID**: india-motor-vehicles-act-1988-amendment-2019 - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: The Motor Vehicles (Amendment) Act, 2019 mandates enhanced third-party insurance coverage, establishes a framework for vehicle recalls, introduces automated testing standards for transport vehicles, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-motor-vehicles-act-1988-amendment-2019.json #### ISO 15118 - Vehicle-to-Grid (V2G) Communication Interface: Part 2 - Network and Application Protocol Requirements, Part 3 - Physical and Data Link Layer Requirements, Part 4 - Physical Layer and Data Link Layer Conformance Test - **ID**: iso-15118-vehicle-grid-communication-v2g - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: ISO 15118 defines the communication protocol between electric vehicles (EVs) and charging stations for secure, interoperable vehicle-to-grid (V2G) services including Plug-and-Charge, contract certific... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-15118-vehicle-grid-communication-v2g.json #### ISO 20077 - Extended Vehicle (ExVE) Standard: In-Vehicle Data Server Architecture, OEM Backend Connectivity, Remote Diagnostics, Data Governance and Third-Party Access Control - **ID**: iso-20077-extended-vehicle-standard-exve - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: ISO 20077 standardizes the 'Extended Vehicle' methodology, channeling all vehicle data through an OEM-controlled backend server to ensure safety, cybersecurity, and standardized data access for third ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20077-extended-vehicle-standard-exve.json #### ISO/SAE 21434:2021 - Road Vehicles - Cybersecurity Engineering - **ID**: iso-21434-automotive-cybersecurity-engineering-2021 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: ISO/SAE 21434:2021 establishes engineering requirements for managing cybersecurity risk in road vehicles throughout the vehicle lifecycle. It applies to manufacturers, suppliers, and developers involv... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-21434-automotive-cybersecurity-engineering-2021.json #### ISO 26262:2018 - Road Vehicles - Functional Safety - **ID**: iso-26262-functional-safety-road-vehicles-2018 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: ISO 26262:2018 establishes functional safety requirements for electrical and electronic systems in production passenger vehicles (up to 3,500 kg), defining hazard classification via Automotive Safety ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-26262-functional-safety-road-vehicles-2018.json #### ISO 39001:2012 - Road Traffic Safety Management Systems - Requirements with guidance for use - **ID**: iso-39001-road-traffic-safety-management - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This standard specifies requirements for a road traffic safety (RTS) management system to enable organizations to reduce or eliminate incidents involving road traffic injuries or fatalities. It applie... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-39001-road-traffic-safety-management.json #### ISO 6469 - Electric Vehicle Safety: On-Board Electrical Energy Storage, Functional Safety, Protection Against Electric Shock and Connecting to External Power Supply - **ID**: iso-6469-electric-vehicle-safety-standard - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: This regulation standard specifies safety requirements for electric vehicles concerning electrical energy storage, protection against electric shock, and connection to external power supplies. It appl... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-6469-electric-vehicle-safety-standard.json #### Road Vehicles - Communication Between Vehicle and External Test Equipment for Emissions-Related Diagnostics - OBD Protocol and Data Link Connector - **ID**: iso-iec-15031-on-board-diagnostic-obd-standards - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: ISO/IEC 15031 specifies the communication protocol and data link connector requirements for on-board diagnostic (OBD) systems in light- and heavy-duty vehicles to enable standardized access to emissio... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-15031-on-board-diagnostic-obd-standards.json #### Italy Decreto Legislativo 30 aprile 1992 n. 285 - Nuovo Codice della Strada Titolo III Veicoli Omologazione Immatricolazione e Revisione - **ID**: it-codice-della-strada-dlgs-285-1992-veicoli - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Italy Decreto Legislativo 30 aprile 1992 n. 285 establishes the Nuovo Codice della Strada with Titolo III Dei Veicoli covering Articoli 46 to 94 across four Capi including Capo I disposizioni generali... - **Discovery URL**: https://bidda.com/api/v1/nodes/it-codice-della-strada-dlgs-285-1992-veicoli.json #### Road Traffic Act Amendment (Act No. 32 of Reiwa 4) - Establishment of Licensing System for Specific Automated Driving at SAE Level 4 - **ID**: japan-road-traffic-act-autonomous-vehicles - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This regulation establishes a licensing framework for SAE Level 4 automated driving systems operating without a driver present, requiring operators to obtain permission from prefectural public safety ... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-road-traffic-act-autonomous-vehicles.json #### Japan Road Transport Vehicle Act 1951 - Type Approval, Vehicle Inspection (Shaken), and Recall Procedures - **ID**: japan-road-transport-vehicle-act-1951 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Japan's Road Transport Vehicle Act (Law No. 185 of 1951, as amended 2022) requires MLIT type approval for all vehicle models, biennial roadworthiness inspections (shaken) from year 3, mandatory recall... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-road-transport-vehicle-act-1951.json #### MISRA C:2023 - Motor Industry Software Reliability Association C Coding Guidelines: Mandatory and Advisory Rules for Safety-Critical Automotive Software Development - **ID**: misra-c-2023-automotive-coding-standard - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: MISRA C:2023 provides a comprehensive set of mandatory and advisory coding guidelines for the use of the C language in safety-critical automotive systems, extending support to C11 and C18 language sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/misra-c-2023-automotive-coding-standard.json #### Defect and Noncompliance Notification, Reporting, and Recall Procedures - 49 CFR Parts 573 and 577 - **ID**: nhtsa-recall-process-cfr-573-577 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Manufacturers must report safety-related defects or noncompliance with Federal Motor Vehicle Safety Standards (FMVSS) to NHTSA within five working days under 49 CFR § 573.6 and initiate owner notifica... - **Discovery URL**: https://bidda.com/api/v1/nodes/nhtsa-recall-process-cfr-573-577.json #### OECD International Transport Forum Regulatory Framework for Connected and Automated Vehicles - Liability Rules, Insurance, Data Sharing, Privacy and Cross-Border Recognition - **ID**: oecd-regulatory-framework-connected-automated-vehicles - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This framework establishes harmonized principles for liability, insurance, data governance, and cross-border recognition of automated driving systems in connected and automated vehicles (CAVs), applic... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-regulatory-framework-connected-automated-vehicles.json #### SAE J3016: Taxonomy and Definitions for Terms Related to Driving Automation Systems for On-Road Motor Vehicles (2021) - **ID**: sae-j3016-levels-driving-automation-2021 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Defines six levels (0-5) of driving automation for on-road motor vehicles, specifying the roles of the human driver and automated driving system (ADS), including requirements for OEDR (Object and Even... - **Discovery URL**: https://bidda.com/api/v1/nodes/sae-j3016-levels-driving-automation-2021.json #### Singapore LTA Autonomous Vehicle Regulatory Framework - Trial Permit System, Safety Assessment, Mandatory Incident Reporting, Operational Safety Case and AV Centre Requirements - **ID**: singapore-autonomous-vehicle-framework-lta - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: This regulation governs the testing and deployment of autonomous vehicles (AVs) on public roads and paths in Singapore. All AVs must undergo safety assessments at CETRAN, obtain insurance, and comply ... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-autonomous-vehicle-framework-lta.json #### Automated and Electric Vehicles Act 2018 - **ID**: uk-automated-electric-vehicles-act-2018 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The UK Automated and Electric Vehicles Act 2018 establishes a liability framework for automated vehicle accidents, requiring insurers to cover incidents involving automated driving systems (Section 2)... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-automated-electric-vehicles-act-2018.json #### UK Road Traffic Act 1988: Driving Offences, Drink and Drug Driving, Licensing and Compulsory Insurance - **ID**: uk-road-traffic-act-1988 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The Road Traffic Act 1988 is the principal statute governing the use of motor vehicles on roads in Great Britain, setting out the main driving offences, the drink and drug driving regime, driver licen... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-road-traffic-act-1988.json #### UK Road Traffic Act 1988: Driving Offences, Construction and Use, Licensing and Insurance - **ID**: uk-road-traffic-act-1988-construction-use-insurance - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The Road Traffic Act 1988 (c. 52) is the principal UK statute regulating the use of motor vehicles on roads, enforced by the police and the DVSA under the policy responsibility of the Department for T... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-road-traffic-act-1988-construction-use-insurance.json #### United Kingdom Road Vehicles (Approval) Regulations 2009 (SI 2009/717) - Type Approval Recall Technical Services and Individual Approval - **ID**: uk-road-vehicles-approval-regulations-2009-si-717 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The Road Vehicles (Approval) Regulations 2009 (SI 2009/717) implement the EC vehicle type approval framework in Great Britain through forty-two regulations across six parts covering scope, conditions ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-road-vehicles-approval-regulations-2009-si-717.json #### UK Vehicle Excise and Registration Act 1994: Vehicle Tax, Registration and Unlicensed-Vehicle Offences - **ID**: uk-vehicle-excise-and-registration-act-1994 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The Vehicle Excise and Registration Act 1994 (c. 22) governs vehicle excise duty (vehicle tax) and the registration of vehicles in the UK, administered by the DVLA. Section 1 charges vehicle excise du... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-vehicle-excise-and-registration-act-1994.json #### UN Global Technical Regulations (GTRs) - Harmonised Vehicle Safety Standards: GTR 9 Pedestrian Safety, GTR 13 Hydrogen Fuel Cell, GTR 20 EVS Phase 2 and GTR 24 ABS Motorcycles - **ID**: un-gtrs-global-technical-regulations-vehicles - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: The UN GTRs establish harmonized technical performance requirements for vehicle safety systems including pedestrian protection (GTR 9), hydrogen fuel cell vehicles (GTR 13), electric vehicle safety (G... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-gtrs-global-technical-regulations-vehicles.json #### UN Regulation No. 155 - Uniform Provisions Concerning the Approval of Vehicles with Regard to Cybersecurity and Cybersecurity Management - **ID**: un-regulation-155-vehicle-cybersecurity - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: UN Regulation No. 155 mandates that vehicle manufacturers implement a certified Cyber Security Management System (CSMS) to identify, protect against, detect, respond to, and recover from cybersecurity... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-regulation-155-vehicle-cybersecurity.json #### UN Regulation No. 156 - Uniform provisions concerning the approval of vehicles with regard to software update and software update management system (SUMS) - **ID**: un-regulation-156-software-updates-ota - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: UN Regulation No. 156 mandates that manufacturers implement a certified Software Update Management System (SUMS) to ensure the secure, reliable, and traceable over-the-air (OTA) updating of vehicle so... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-regulation-156-software-updates-ota.json #### UN Regulation No. 13 - Braking Systems for Heavy Vehicles (M, N, O Categories) - **ID**: un-regulation-r13-heavy-vehicle-braking-system - **Category**: Automotive & Mobility - **Version**: R13 (current series of amendments, 11th supplement to 11th series) - **BLUF**: UN Regulation No. 13 (UNECE WP.29) is the international uniform standard for braking systems on heavy-duty motor vehicles and trailers (Categories M2, M3 buses; N1-N3 trucks; O1-O4 trailers); it speci... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-regulation-r13-heavy-vehicle-braking-system.json #### UN Regulation No. 152 - Advanced Emergency Braking Systems (AEBS) for M1 and N1 Vehicles - **ID**: un-regulation-r152-aebs-advanced-emergency-braking - **Category**: Automotive & Mobility - **Version**: Supplement 3 (2022) - **BLUF**: UN Regulation No. 152 (adopted by UNECE WP.29 under the 1958 Agreement) mandates Advanced Emergency Braking Systems (AEBS) for M1 (passenger cars) and N1 (light goods vehicles up to 3.5 t GVW) capable... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-regulation-r152-aebs-advanced-emergency-braking.json #### UN Regulation No. 155 - Uniform provisions concerning the approval of vehicles with regard to cybersecurity and cybersecurity management - **ID**: un-regulation-r155-vehicle-cybersecurity-management - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: UN Regulation No. 155 mandates that automotive manufacturers implement a Cybersecurity Management System (CSMS) to identify, assess, and mitigate cybersecurity risks throughout the vehicle lifecycle. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-regulation-r155-vehicle-cybersecurity-management.json #### UN Regulation No. 156 - Uniform provisions concerning the approval of vehicles with regard to software update and software update management system (SUMS) - **ID**: un-regulation-r156-software-updates-ota - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: UN Regulation No. 156 mandates that manufacturers implement a certified Software Update Management System (SUMS) to ensure secure, traceable, and safe over-the-air (OTA) software updates for vehicles.... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-regulation-r156-software-updates-ota.json #### UN Regulation No. 157 on Automated Lane Keeping Systems (ALKS) for Motor Vehicles - **ID**: un-regulation-r157-automated-lane-keeping-alks - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: UN Regulation No. 157 establishes technical requirements and operational conditions for Automated Lane Keeping Systems (ALKS) operating at SAE Level 3, permitting automated driving up to 60 km/h under... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-regulation-r157-automated-lane-keeping-alks.json #### UNECE Regulation No. 116 - Protection of Motor Vehicles Against Unauthorized Use: Immobilizer and Alarm Standards - **ID**: unece-r116-protection-unauthorized-use-motor-vehicles-2014 - **Category**: Automotive & Mobility - **Version**: 2014-01 - **BLUF**: UNECE Regulation No. 116 (UN/R116) establishes uniform provisions for the approval of motor vehicle protection systems against unauthorized use, specifying technical requirements for immobilizer syste... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-r116-protection-unauthorized-use-motor-vehicles-2014.json #### UNECE Regulation No. 152 - Advanced Emergency Braking System (AEBS) for Passenger Cars and Light Vehicles - **ID**: unece-r152-advanced-emergency-braking-system-2021 - **Category**: Automotive & Mobility - **Version**: 2021-01 - **BLUF**: UNECE Regulation No. 152 (UN/R152), adopted by UNECE WP.29 in January 2021, establishes mandatory technical requirements for Advanced Emergency Braking Systems (AEBS) in M1 and M2 passenger cars and l... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-r152-advanced-emergency-braking-system-2021.json #### UNECE Regulation R157 - Automated Lane Keeping Systems (ALKS) 2021 - **ID**: unece-r157-automated-lane-keeping-systems-alks-2021 - **Category**: Automotive & Mobility - **Version**: 2021-01 - **BLUF**: UNECE Regulation No. 157 establishes type-approval requirements for Automated Lane Keeping Systems (ALKS) operating at speeds up to 60 km/h on motorways, requiring systems to detect driver incapacitat... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-r157-automated-lane-keeping-systems-alks-2021.json #### UNECE Regulation No. 48 - Installation of Lighting and Light-Signalling Devices on Vehicles - **ID**: unece-r48-installation-lighting-signalling-devices-2016 - **Category**: Automotive & Mobility - **Version**: 6.0.0 - **BLUF**: UNECE R48 prescribes mandatory and optional lighting equipment and its installation geometry for all motor vehicle categories (M, N, L, O), requiring daytime running lights (DRL) on new M1/N1 from 201... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-r48-installation-lighting-signalling-devices-2016.json #### UNECE Regulation No. 51.03 - Acoustic Noise Limits for Motor Vehicles - **ID**: unece-r51-03-acoustic-noise-motor-vehicles-2016 - **Category**: Automotive & Mobility - **Version**: 3.0.0 - **BLUF**: UNECE R51.03 sets declining noise emission limits for M1/N1 passenger and light commercial vehicles: 72 dB(A) from 2016, 70 dB(A) from 2020, 68 dB(A) from 2024 for M1, measured under ISO 362-1 acceler... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-r51-03-acoustic-noise-motor-vehicles-2016.json #### UNECE Regulation R79 - Steering Equipment Requirements 2018 - **ID**: unece-r79-steering-equipment-regulations-2018 - **Category**: Automotive & Mobility - **Version**: 2018-01 - **BLUF**: UNECE Regulation No. 79 (Revision 3, 2018) establishes type-approval requirements for steering equipment in motor vehicles, including corrective steering functions for advanced driver assistance and a... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-r79-steering-equipment-regulations-2018.json #### UN ECE Regulation 156 - Software Update Management System (SUMS) for Connected Vehicles - **ID**: unece-regulation-156-software-update-management-vehicles - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: UN ECE Regulation No. 156 on Software Update Management Systems (SUMS) for Vehicles (adopted by UNECE WP.29, entry into force January 2021, mandatory for EU type approval since July 2022) requires veh... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-regulation-156-software-update-management-vehicles.json #### UNECE WP.29 Framework Document on Automated and Connected Vehicles - Type Approval, Cyber Security, Software Updates and Functional Safety - **ID**: unece-wp29-framework-connected-automated-vehicles - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This framework establishes mandatory type approval requirements for connected and automated vehicles (CAVs) under UNECE regulations, requiring manufacturers to implement robust cyber security manageme... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-wp29-framework-connected-automated-vehicles.json #### 49 USC § 30111 - Federal Motor Vehicle Safety Standards (FMVSS) Authority - **ID**: us-49-usc-30111-fmvss-motor-vehicle-safety-standards - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: 49 USC § 30111 (originally enacted as the National Traffic and Motor Vehicle Safety Act of 1966, Pub. L. 89-563; recodified by Pub. L. 103-272) grants the Secretary of Transportation authority to pres... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-49-usc-30111-fmvss-motor-vehicle-safety-standards.json #### 49 USC § 30120 - Vehicle Recall Remedies (Defect and Noncompliance Remedies) - **ID**: us-49-usc-30120-vehicle-recall-remedies - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: 49 USC § 30120 (originally enacted as part of National Traffic and Motor Vehicle Safety Act 1966, recodified by Pub. L. 103-272 and amended numerous times including TREAD Act 2000 Pub. L. 106-414) est... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-49-usc-30120-vehicle-recall-remedies.json #### Automated Vehicles Comprehensive Plan 2021 - Policy Priorities: Safety Measurement, Proactive Safety and Collaboration for AV Deployment - **ID**: us-automated-vehicles-comprehensive-plan-2021 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The USDOT's Automated Vehicles Comprehensive Plan 2021 establishes a national framework to advance the safe deployment of automated vehicles (AVs) through voluntary safety self-assessments, data shari... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-automated-vehicles-comprehensive-plan-2021.json #### Corporate Average Fuel Economy (CAFE) Standards for Model Years 2024-2031 - Fleet Average Targets, Compliance Credits, Civil Penalties, Footprint-Based Standards and Manufacturer Compliance Flexibility - **ID**: us-cafe-fuel-economy-standards-2024 - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: This regulation establishes fleet-wide fuel economy targets for passenger cars and light trucks manufactured for sale in the United States from model years 2024 to 2031, calculated using a footprint-b... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cafe-fuel-economy-standards-2024.json #### US CAFE Standards 49 CFR Parts 531/533 - Corporate Average Fuel Economy Compliance - **ID**: us-cafe-standards-49-cfr-531-533-corporate-average-fuel-economy - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: NHTSA Corporate Average Fuel Economy standards (49 CFR Parts 531/533) require automobile manufacturers to meet fleet-average fuel economy targets (MPG) for passenger cars and light trucks, with civil ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cafe-standards-49-cfr-531-533-corporate-average-fuel-economy.json #### Clean Air Act Section 202 - Standards of Performance for New Motor Vehicles or New Motor Vehicle Engines - **ID**: us-clean-air-act-mobile-source-emission-standards - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: The US Clean Air Act Section 202 authorizes the EPA to establish federal emission standards for new light-duty vehicles, light-duty trucks, and medium-duty passenger vehicles to limit greenhouse gases... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-air-act-mobile-source-emission-standards.json #### Fixing America's Surface Transportation Act 2015 (FAST Act) - Public Law 114-94 - **ID**: us-fast-act-2015-pl-114-94 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The Fixing America's Surface Transportation Act of 2015 (FAST Act, Public Law 114-94, enacted 4 December 2015) was the first long-term surface-transportation authorisation in over a decade, providing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fast-act-2015-pl-114-94.json #### Federal Motor Vehicle Safety Standards (49 CFR Parts 500-599): Crash Avoidance, Crashworthiness, Post-Crash Standards, Brake Systems and Lighting Requirements - **ID**: us-fmvss-federal-motor-vehicle-safety-standards - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The Federal Motor Vehicle Safety Standards (FMVSS) establish mandatory safety performance requirements for motor vehicles and equipment to reduce crashes, injuries, and fatalities. Applies to all manu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmvss-federal-motor-vehicle-safety-standards.json #### US National Traffic and Motor Vehicle Safety Act 1966 - NHTSA Safety Standards - **ID**: us-national-traffic-motor-vehicle-safety-act-1966-nhtsa - **Category**: Automotive & Mobility - **Version**: 2.0.0 - **BLUF**: The National Traffic and Motor Vehicle Safety Act (49 U.S.C. Chapter 301) grants NHTSA authority to set Federal Motor Vehicle Safety Standards (FMVSS) for all motor vehicles and equipment sold in the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-traffic-motor-vehicle-safety-act-1966-nhtsa.json #### Ensuring American Leadership in Automated Vehicle Technologies: Automated Vehicles Comprehensive Plan, AV 4.0 - Safety Framework for Automated Driving Systems, Voluntary Guidance, Pre-Market Testing, Cybersecurity and Public Reporting - **ID**: us-nhtsa-automated-vehicles-guidance-2021 - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: The NHTSA AV 4.0 guidance establishes a voluntary safety framework for developers, manufacturers, and operators of Automated Driving Systems (ADS) to ensure pre-deployment safety validation, cybersecu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nhtsa-automated-vehicles-guidance-2021.json #### NHTSA Cybersecurity Best Practices for the Safety of Modern Vehicles 2022 - Risk Management, Supply Chain Security, OTA Updates and Incident Response - **ID**: us-nhtsa-connected-vehicle-cybersecurity-guidance-2022 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This guidance requires motor vehicle manufacturers, suppliers, and software developers to implement a comprehensive cybersecurity risk management framework covering design, supply chain, over-the-air ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nhtsa-connected-vehicle-cybersecurity-guidance-2022.json #### Federal Motor Vehicle Safety Standards (FMVSS) - Safety Performance Requirements for Occupant Protection, Lighting, Braking and Electronic Systems - **ID**: us-nhtsa-federal-motor-vehicle-safety-standards-fmvss - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: The FMVSS establishes mandatory safety performance requirements for motor vehicles and equipment related to occupant protection, braking, lighting, and electronic systems. It applies to all manufactur... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nhtsa-federal-motor-vehicle-safety-standards-fmvss.json #### US NHTSA FMVSS - Federal Motor Vehicle Safety Standards 49 CFR Part 571 Compliance - **ID**: us-nhtsa-fmvss-federal-motor-vehicle-safety-standards-49-cfr-571 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: NHTSA Federal Motor Vehicle Safety Standards (49 CFR Part 571) mandate that all vehicles sold in the US meet minimum safety performance requirements for crash protection, lighting, tires, brakes, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nhtsa-fmvss-federal-motor-vehicle-safety-standards-49-cfr-571.json #### NIST IR 8473 - Cybersecurity Framework Profile for Electric Vehicle Extreme Fast Charging Infrastructure - **ID**: us-nist-ir-8473-csf-profile-ev-extreme-fast-charging-2023 - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: Organizations operating in the Electric Vehicle Extreme Fast Charging (EV/XFC) ecosystem - covering the four domains of EVs, XFC/EVSE charging stations, Cloud/Third-Party service providers, and Utilit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nist-ir-8473-csf-profile-ev-extreme-fast-charging-2023.json #### Federal Framework for the Testing and Deployment of Highly Automated Vehicles - Principles from the SELF DRIVE Act and AV START Act, Including Federal Preemption, Cybersecurity, Privacy, and Exemption Authority - **ID**: us-self-drive-act-av-start-act-framework - **Category**: Automotive & Mobility - **Version**: 1.0.0 - **BLUF**: This framework establishes federal oversight of highly automated vehicle (HAV) safety standards, preempting state-level regulation of HAV design and performance. It mandates that manufacturers submit ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-self-drive-act-av-start-act-framework.json #### IEEE 1609 WAVE - Wireless Access in Vehicular Environments: DSRC, WSMP Protocol, Security Certificates, Certificate Revocation and Resource Manager for V2X Communications - **ID**: v2x-communication-ieee-1609-dsrc - **Category**: Automotive & Mobility - **Version**: 1.0.1 - **BLUF**: This standard defines the architecture and protocols for Wireless Access in Vehicular Environments (WAVE), enabling secure, low-latency communication between vehicles and infrastructure using DSRC and... - **Discovery URL**: https://bidda.com/api/v1/nodes/v2x-communication-ieee-1609-dsrc.json #### VDA 6.3:2023 - Process Audit Standard for Automotive Supply Chain - **ID**: vda-6-3-2023-process-audit-standard - **Category**: Automotive & Mobility - **Version**: 2023 (Edition 3) - **BLUF**: VDA 6.3:2023 (Verband der Automobilindustrie Process Audit, Edition 3, 2023) is the German automotive industry's process audit standard used by BMW, Mercedes-Benz, Volkswagen Group, Audi, and Porsche ... - **Discovery URL**: https://bidda.com/api/v1/nodes/vda-6-3-2023-process-audit-standard.json ### Aviation, Defense & Quantum (123 nodes) #### Antarctic Treaty 1959 - Peaceful Purposes, Scientific Cooperation and Territorial Claims Freeze (with 1991 Madrid Protocol) - **ID**: antarctic-treaty-1959-peaceful-purposes-territorial-claims - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Antarctic Treaty was signed in Washington DC on 1 December 1959 and entered into force on 23 June 1961. It is the foundational instrument of the Antarctic Treaty System (ATS) governing the area so... - **Discovery URL**: https://bidda.com/api/v1/nodes/antarctic-treaty-1959-peaceful-purposes-territorial-claims.json #### Aerospace Quality Management System (AS9100 Rev D) - **ID**: as9100-rev-d - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.0 - **BLUF**: The gold standard for quality management in the Aviation, Space, and Defense sectors, extending ISO 9001 with rigorous aerospace-specific safety and risk requirements. - **Discovery URL**: https://bidda.com/api/v1/nodes/as9100-rev-d.json #### AS9100 Rev D (Aviation QMS) - **ID**: as9100-rev-d-qms - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.1 - **BLUF**: AS9100 Rev D is the international Quality Management System (QMS) standard for the Aviation, Space, and Defense (AS&D) industry. It incorporates the entire ISO 9001:2015 standard while adding specific... - **Discovery URL**: https://bidda.com/api/v1/nodes/as9100-rev-d-qms.json #### AS9110 (Maintenance QMS) - **ID**: as9110-maintenance-qms - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.0 - **BLUF**: AS9110 is the international Quality Management System standard specifically designed for aviation maintenance, repair, and overhaul (MRO) organizations. It builds upon AS9100 requirements by incorpora... - **Discovery URL**: https://bidda.com/api/v1/nodes/as9110-maintenance-qms.json #### AS9120 (Distributor QMS) - **ID**: as9120-distributor-qms - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.1 - **BLUF**: AS9120 is the international Quality Management System standard for distributors and stockholders in the Aviation, Space, and Defense industry. It focuses on the chain of custody, traceability, and the... - **Discovery URL**: https://bidda.com/api/v1/nodes/as9120-distributor-qms.json #### Defence and Strategic Goods List (DSGL) and Export Controls - Defence Export Control Act 2012 - **ID**: australia-defence-export-controls-des-2012 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: The Defence Export Controls Act 2012 requires any person or entity exporting, brokering, or transferring defence and strategic goods or technology listed in the Defence and Strategic Goods List (DSGL)... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-defence-export-controls-des-2012.json #### Canada Aeronautics Act (R.S.C. 1985, c. A-2): Aviation Regulation, Certification and Administrative Penalties - **ID**: canada-aeronautics-act - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Aeronautics Act (R.S.C. 1985, c. A-2) is the principal federal statute governing civil aviation in Canada, administered by the Minister of Transport through Transport Canada, with military aviatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-aeronautics-act.json #### Defence Production Act - Controlled Goods Regulations: Registration, Security Assessments, Designated Official Responsibilities, Examination Rights, and Exemptions for Allied Governments - **ID**: canada-controlled-goods-program-cgp-2001 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Canada Controlled Goods Program (CGP) requires all companies and individuals in Canada that access, possess, or transfer controlled goods (as defined in the Defence Production Act and Schedule to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-controlled-goods-program-cgp-2001.json #### Cape Town Convention 2001 - International Interests in Mobile Equipment (Aircraft Protocol) - **ID**: cape-town-convention-2001-mobile-equipment - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Cape Town Convention on International Interests in Mobile Equipment (2001) and its Aircraft Protocol create a self-contained international legal framework for secured financing and leasing of airc... - **Discovery URL**: https://bidda.com/api/v1/nodes/cape-town-convention-2001-mobile-equipment.json #### Convention on Cluster Munitions - CCM 2008 (Oslo Convention) - **ID**: ccm-2008-cluster-munitions-convention - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: The CCM (112 State Parties as of April 2026) imposes a comprehensive ban on cluster munitions - their use, production, transfer, stockpiling, and assistance to others - enforced through Article 3 stoc... - **Discovery URL**: https://bidda.com/api/v1/nodes/ccm-2008-cluster-munitions-convention.json #### CMMC 2.0 Level 2 Cybersecurity (Advanced) - **ID**: cmmc-2-audit - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.0 - **BLUF**: A mandatory US Department of Defense (DoD) certification for contractors handling Controlled Unclassified Information (CUI), based on the 110 practices of NIST SP 800-171. - **Discovery URL**: https://bidda.com/api/v1/nodes/cmmc-2-audit.json #### RTCA DO-178C Software Considerations in Airborne Systems and Equipment Certification - **ID**: do-178c-airborne-software-2011 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: DO-178C provides guidance for determining that airborne system software has an acceptable level of safety and integrity. It requires applicants for certification to follow a rigorous set of process ob... - **Discovery URL**: https://bidda.com/api/v1/nodes/do-178c-airborne-software-2011.json #### Department of Defense Artificial Intelligence Ethics Principles 2020 - Responsible, Equitable, Traceable, Reliable, and Governable AI - **ID**: dod-ai-ethics-principles-2020-responsible-ai - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: The DoD AI Ethics Principles require all Department of Defense AI systems to adhere to five core ethical principles: responsible, equitable, traceable, reliable, and governable. These apply to all AI ... - **Discovery URL**: https://bidda.com/api/v1/nodes/dod-ai-ethics-principles-2020-responsible-ai.json #### EASA Artificial Intelligence Roadmap 2.0 - AI Application in Aviation Safety - **ID**: easa-ai-roadmap-2023 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This strategic roadmap outlines the European Union Aviation Safety Agency's approach to integrating Artificial Intelligence (AI) into aviation, establishing a learning-based framework to ensure safety... - **Discovery URL**: https://bidda.com/api/v1/nodes/easa-ai-roadmap-2023.json #### EASA Part 145 (Maintenance) - **ID**: easa-part-145-maintenance - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.1 - **BLUF**: EASA Part 145 is the European standard for the approval of maintenance organizations in civil aviation. It specifies the requirements for the organization, personnel, facility, and procedures to ensur... - **Discovery URL**: https://bidda.com/api/v1/nodes/easa-part-145-maintenance.json #### Regulation (EU) 2023/1804 of the European Parliament and of the Council of 13 September 2023 on the deployment of alternative fuels infrastructure, and repealing Directive 2014/94/EU (AFIR) - **ID**: eu-afir-alternative-fuels-2023-1804 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2023/1804 (AFIR) mandates that by 31 December 2025, EU Member States must deploy fast-charging pools for light-duty electric vehicles at least every 60 km along the TEN-T core network,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-afir-alternative-fuels-2023-1804.json #### Regulation (EU) 2023/1542 of the European Parliament and of the Council of 12 July 2023 concerning batteries and waste batteries, amending Directive 2008/98/EC and Regulation (EU) 2019/1020 and repealing Directive 2006/66/EC - **ID**: eu-battery-regulation-2023-1542-ev - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This regulation requires economic operators placing electric vehicle (EV) batteries on the EU market to establish supply chain due diligence policies (Article 48), declare a carbon footprint for each ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-battery-regulation-2023-1542-ev.json #### Directive (EU) 2019/1161 of the European Parliament and of the Council of 20 June 2019 amending Directive 2009/33/EC on the promotion of clean and energy-efficient road transport vehicles - **ID**: eu-clean-vehicles-directive-2019-1161 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This directive mandates that public authorities, contracting entities, and certain public service operators across EU Member States meet minimum national targets for the procurement of clean and zero-... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-clean-vehicles-directive-2019-1161.json #### Regulation (EU) 2023/851 of the European Parliament and of the Council of 19 April 2023 amending Regulation (EU) 2019/631 as regards the strengthening of the CO2 emission performance standards for new passenger cars and new light commercial vehicles in line with the Union’s increased climate ambition - **ID**: eu-co2-standards-cars-2023-851-zero-emission - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This regulation mandates EU fleet-wide CO2 emission reduction targets for new passenger cars and vans, requiring a 55% reduction for cars and 50% for vans by 2030, and a 100% reduction for both from 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-co2-standards-cars-2023-851-zero-emission.json #### European Defence Industrial Strategy (EDIS) - **ID**: eu-defense-industrial-strategy-2024-edip - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: The European Defence Industrial Strategy (EDIS) sets a vision for European defence industrial policy until 2035, requiring Member States to strengthen the European Defence Technological and Industrial... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-defense-industrial-strategy-2024-edip.json #### Commission Delegated Regulation (EU) 2019/947 of 12 March 2019 on the rules and procedures for the operation of unmanned aircraft - **ID**: eu-drone-operations-regulation-2019-947 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: This regulation establishes the operational framework for drone flights in the EU under three categories: Open, Specific, and Certified. It mandates remote pilot registration for drones over 250g, def... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-drone-operations-regulation-2019-947.json #### EU EASA Basic Regulation 2018/1139 - Common Rules for Civil Aviation Safety - **ID**: eu-easa-basic-regulation-2018-1139-common-rules-civil-aviation - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2018/1139 (EASA Basic Regulation) establishes the common rules for civil aviation safety in the EU and defines the role of the European Union Aviation Safety Agency (EASA). It covers a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-easa-basic-regulation-2018-1139-common-rules-civil-aviation.json #### EU EASA Regulation 2042/2003 Part-M - Continuing Airworthiness Management & Maintenance - **ID**: eu-easa-regulation-2042-2003-part-m-continuing-airworthiness - **Category**: Aviation, Defense & Quantum - **Version**: 2.0 - **BLUF**: EASA Regulation 2042/2003 Part-M (now Commission Regulation 1321/2014) establishes continuing airworthiness requirements for all EU-registered aircraft - covering maintenance programme approval, airwo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-easa-regulation-2042-2003-part-m-continuing-airworthiness.json #### Directive 2000/53/EC of the European Parliament and of the Council of 18 September 2000 on end-of life vehicles - **ID**: eu-end-of-life-vehicles-directive-2000-53 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This directive requires vehicle producers to establish systems for the take-back of end-of-life vehicles (ELVs) at no cost to the last owner, meet stringent reuse, recovery, and recycling targets (Art... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-end-of-life-vehicles-directive-2000-53.json #### Regulation (EU) 2019/2144 of the European Parliament and of the Council of 27 November 2019 on type-approval requirements for motor vehicles and their trailers, and systems, components and separate technical units intended for such vehicles, as regards their general safety and the protection of vehicle occupants and vulnerable road users, amending Regulation (EU) 2018/858 and repealing Regulations (EC) No 78/2009, (EC) No 79/2009 and (EC) No 661/2009 - **ID**: eu-general-safety-regulation-2019-2144 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This regulation mandates a suite of advanced vehicle safety features for all new motor vehicles type-approved in the European Union to reduce accidents and protect vehicle occupants and vulnerable roa... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-safety-regulation-2019-2144.json #### Directive 2010/40/EU on the framework for the deployment of Intelligent Transport Systems in the field of road transport and for interfaces with other modes of transport, and its associated Delegated Regulations - **ID**: eu-its-directive-2010-40-delegated-regulations - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This directive establishes a framework for the coordinated EU-wide deployment of Intelligent Transport Systems (ITS) for road transport. It mandates, via delegated regulations adopted under Article 6,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-its-directive-2010-40-delegated-regulations.json #### Regulation (EU) 2023/2418 establishing a short-term instrument for reinforcing the European defence industry through common procurement (EDIRPA) - **ID**: eu-reg-2023-2418-on-establishing-an-instrument-for-the-reinforcement-of-the-e - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2023/2418 establishes a short-term Instrument for the Reinforcement of the European Defence Industry through Common Procurement (EDIRPA) for the period from 27 October 2023 to 31 Decem... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2023-2418-on-establishing-an-instrument-for-the-reinforcement-of-the-e.json #### Regulation (EU) 2025/2643 establishing the European Defence Industry Programme and a framework of measures to ensure the timely availability and supply of defence products - **ID**: eu-reg-2025-2643-establishing-the-european-defence-industry-programme-and-a-f - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2025/2643, adopted on 16 December 2025, establishes the European Defence Industry Programme (EDIP) and a framework of measures to ensure the timely availability and supply of defence p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-2643-establishing-the-european-defence-industry-programme-and-a-f.json #### EU Road Safety Policy Framework 2021-2030 - Next steps towards 'Vision Zero' - **ID**: eu-road-safety-policy-framework-2021-2030 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This EU policy framework requires Member States to adopt a 'Safe System' approach and implement national strategies to achieve the 'Vision Zero' target of a 50% reduction in road deaths and serious in... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-road-safety-policy-framework-2021-2030.json #### Regulation (EU) 2018/858 of the European Parliament and of the Council of 30 May 2018 on the approval and market surveillance of motor vehicles and their trailers, and of systems, components and separate technical units intended for such vehicles, amending Regulations (EC) No 715/2007 and (EC) No 595/2009 and repealing Directive 2007/46/EC - **ID**: eu-type-approval-framework-2018-858 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This regulation establishes a comprehensive EU framework for the type-approval and market surveillance of motor vehicles, trailers, and their components. It mandates that manufacturers obtain an EU Wh... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-type-approval-framework-2018-858.json #### Commission Implementing Regulation (EU) 2021/664 of 7 April 2021 on the airworthiness and environmental certification of unmanned aircraft systems (UAS) and on common rules for the operation of UAS, laying down detailed rules for U-space and amending Regulations (EU) No 923/2012 and (EU) No 1321/2014 - **ID**: eu-u-space-regulation-2021-664-drone-atm - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: This regulation establishes the operational and technical requirements for U-space services in the European Union, including flight authorisation, network identification, geo-awareness, and traffic in... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-u-space-regulation-2021-664-drone-atm.json #### Title 14 CFR Part 107 - Small Unmanned Aircraft Systems (2021 Update) - **ID**: faa-part-107-uas-2021 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This regulation establishes the operational and certification rules for commercial use of small unmanned aircraft systems (sUAS) weighing less than 55 pounds within the U.S. National Airspace System. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/faa-part-107-uas-2021.json #### Operating Requirements: Commuter and on Demand Operations and Rules Governing Persons on Board Such Aircraft (FAR Part 135) - **ID**: faa-part-135-air-taxi-commuter-operations - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: This regulation establishes operating requirements for commuter and on-demand air carriers using small aircraft, including crew qualifications, aircraft equipment, flight operations, and emergency pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/faa-part-135-air-taxi-commuter-operations.json #### Pilot Schools (14 CFR Part 141) - **ID**: faa-part-141-pilot-school-certification - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This regulation establishes the requirements for certificating pilot schools under Title 14 of the Code of Federal Regulations, including curriculum approval, instructor qualifications, training facil... - **Discovery URL**: https://bidda.com/api/v1/nodes/faa-part-141-pilot-school-certification.json #### FAA Part 21 (Certification) - **ID**: faa-part-21-certification - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.0 - **BLUF**: FAA Part 21 (Certification Procedures for Products and Articles) is the primary U.S. regulation for the certification of aircraft, engines, propellers, and parts. it encompasses the entire life cycle ... - **Discovery URL**: https://bidda.com/api/v1/nodes/faa-part-21-certification.json #### Remote Identification of Unmanned Aircraft - **ID**: faa-remote-id-rule-2021 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This rule requires most unmanned aircraft (drones) operating in United States airspace to be equipped with Remote ID technology, which broadcasts identification and location information of the drone a... - **Discovery URL**: https://bidda.com/api/v1/nodes/faa-remote-id-rule-2021.json #### SECURITY REQUIREMENTS FOR CRYPTOGRAPHIC MODULES - **ID**: fips-140-3-cryptographic-modules - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This standard specifies the security requirements for a cryptographic module utilized within a security system protecting sensitive but unclassified information. It is applicable to all federal agenci... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-140-3-cryptographic-modules.json #### SHA-3 Standard: Permutation-Based Hash and Extendable-Output Functions - **ID**: fips-202-sha-3-standard - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This Standard specifies the Secure Hash Algorithm-3 (SHA-3) family of functions on binary data, based on the KECCAK algorithm selected by NIST. The SHA-3 family consists of four cryptographic hash fun... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-202-sha-3-standard.json #### Module-Lattice-Based Key-Encapsulation Mechanism Standard - **ID**: fips-203-ml-kem-standard - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This standard specifies a key-encapsulation mechanism (KEM) called ML-KEM, which is a set of algorithms that can be used by two parties to establish a shared secret key over a public channel. The secu... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-203-ml-kem-standard.json #### Module-Lattice-Based Digital Signature Standard - **ID**: fips-204-digital-signature-standard - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This standard specifies ML-DSA, a set of algorithms that can be used to generate and verify digital signatures. Digital signatures are used to detect unauthorized modifications to data and to authenti... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-204-digital-signature-standard.json #### FIPS 204 (ML-DSA Quantum) - **ID**: fips-204-ml-dsa-quantum - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.0 - **BLUF**: FIPS 204 (Module-Lattice-Based Digital Signature Algorithm) is the final NIST standard for quantum-resistant digital signatures. Based on the CRYSTALS-Dilithium algorithm, it is designed to ensure aut... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-204-ml-dsa-quantum.json #### Module-Lattice-Based Digital Signature Standard - **ID**: fips-204-ml-dsa-standard - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This standard specifies ML-DSA, a set of algorithms that can be used to generate and verify digital signatures which are used to detect unauthorized modifications to data and to authenticate the ident... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-204-ml-dsa-standard.json #### FIPS 205 (SLH-DSA Quantum) - **ID**: fips-205-slh-dsa-quantum - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.0 - **BLUF**: FIPS 205 (Stateless Hash-Based Digital Signature Algorithm) is a NIST-standardized quantum-resistant signature mechanism based on the SPHINCS+ construction. Unlike lattice-based schemes, it relies sol... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-205-slh-dsa-quantum.json #### ICAO Annex 19 Safety Management (Second Edition 2016) - State Safety Programme and Service Provider SMS - **ID**: icao-annex-19-safety-management-system-second-edition - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: ICAO Annex 19 to the Convention on International Civil Aviation 1944 (Chicago Convention) is the first ICAO Annex devoted entirely to safety management, adopted by the ICAO Council on 25 February 2013... - **Discovery URL**: https://bidda.com/api/v1/nodes/icao-annex-19-safety-management-system-second-edition.json #### Convention on International Civil Aviation (Chicago Convention 1944) - **ID**: icao-chicago-convention-1944-civil-aviation - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Convention on International Civil Aviation (ICAO Doc 7300), signed at Chicago on 7 December 1944 and in force since 4 April 1947, is the constitutional instrument of international civil aviation b... - **Discovery URL**: https://bidda.com/api/v1/nodes/icao-chicago-convention-1944-civil-aviation.json #### ICAO Doc 10084 Cybersecurity Action Plan for Civil Aviation 2022 - National Cybersecurity Strategies, CERT Coordination and AVSEC Integration - **ID**: icao-doc-10084-cybersecurity-action-plan-2022 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This ICAO action plan requires Member States to develop and implement a national civil aviation cybersecurity strategy and policy framework, as outlined in Goal 1. It mandates the establishment of des... - **Discovery URL**: https://bidda.com/api/v1/nodes/icao-doc-10084-cybersecurity-action-plan-2022.json #### ICAO Doc 9859 Safety Management Manual (SMM), 4th Edition - **ID**: icao-doc-9859-sms - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: ICAO Doc 9859 provides comprehensive guidance for States and aviation service providers on developing, implementing, and maintaining a Safety Management System (SMS) in compliance with ICAO Annex 19. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/icao-doc-9859-sms.json #### ICAO Annex 19 (Safety Management) - **ID**: icao-safety-annex-19 - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.0 - **BLUF**: ICAO Annex 19 establishes the international standard for Safety Management Systems (SMS) and State Safety Programmes (SSP) in civil aviation. It focuses on the proactive management of safety risks thr... - **Discovery URL**: https://bidda.com/api/v1/nodes/icao-safety-annex-19.json #### IETF Hybrid PQC Drafts - **ID**: ietf-hybrid-pqc-drafts - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.0 - **BLUF**: IETF Hybrid PQC Drafts define the mechanisms for combining 'Classical' cryptography (e.g., X25519, Ed25519) with 'Post-Quantum' algorithms (e.g., ML-KEM, ML-DSA). This 'Defense-in-Depth' approach ensu... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-hybrid-pqc-drafts.json #### ISO 21448:2022 Road vehicles - Safety of the intended functionality - **ID**: iso-21448-sotif-2022 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This standard provides a framework for ensuring the Safety of the Intended Functionality (SOTIF) in automated driving systems (SAE Levels 2-5), requiring manufacturers to identify, evaluate, and mitig... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-21448-sotif-2022.json #### ISO 26262:2018 Road vehicles - Functional safety - **ID**: iso-26262-functional-safety-vehicles-2018 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This standard mandates a risk-based approach to functional safety for electrical and electronic systems in production road vehicles. It requires organizations to perform a Hazard Analysis and Risk Ass... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-26262-functional-safety-vehicles-2018.json #### Cloud Security for Defense (ISO 27017) - **ID**: iso-27017-cloud-defence - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.1 - **BLUF**: ISO/IEC 27017:2015 is an international code of practice for information security controls applicable to cloud services, providing cloud-specific implementation guidance for 37 controls from ISO/IEC 27... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27017-cloud-defence.json #### ISO/SAE 21434:2021 Road Vehicles - Cybersecurity engineering - **ID**: iso-sae-21434-2021-road-vehicles-cybersecurity - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This standard requires automotive manufacturers and suppliers to implement a certified Cybersecurity Management System (CSMS) and apply a risk-based approach throughout the entire vehicle lifecycle, f... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-sae-21434-2021-road-vehicles-cybersecurity.json #### MIL-STD-882E Department of Defense Standard Practice - System Safety - **ID**: mil-std-882e-system-safety - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This standard mandates a systematic, risk-based approach for identifying, assessing, and mitigating hazards throughout the lifecycle of Department of Defense (DoD) systems. As outlined in Section 4, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mil-std-882e-system-safety.json #### UK Ministry of Defence (MoD) AI Safety Protocol - **ID**: mod-safe-ai - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.1 - **BLUF**: A mandatory safety assurance framework for AI systems deployed in British Armed Forces, requiring a structured Safety Case and human-in-the-loop gating for lethal force. - **Discovery URL**: https://bidda.com/api/v1/nodes/mod-safe-ai.json #### Montreal Convention 1999 - International Air Carriage Liability - **ID**: montreal-convention-1999-air-carriage - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Montreal Convention 1999 (Convention for the Unification of Certain Rules for International Carriage by Air) establishes a two-tier strict liability regime for international air carriage of passen... - **Discovery URL**: https://bidda.com/api/v1/nodes/montreal-convention-1999-air-carriage.json #### NATO Principles of Responsible Use of Artificial Intelligence in Defence - **ID**: nato-ai-principles-2021 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: NATO Allies must ensure that Artificial Intelligence applications in defence are developed and used in accordance with six core principles: Lawfulness, Responsibility and Accountability, Explainabilit... - **Discovery URL**: https://bidda.com/api/v1/nodes/nato-ai-principles-2021.json #### NATO Quality Assurance Requirements for Design, Development and Production: QMS Requirements for Defence Contractors, Configuration Management, First Article Inspection, Statistical Techniques, Government Quality Assurance (GQA) and AS9100 Relationship - **ID**: nato-aqap-2110-quality-assurance-defence - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: This regulation establishes quality management system requirements for NATO defence contractors involved in design, development, and production, with specific mandates for configuration management, fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nato-aqap-2110-quality-assurance-defence.json #### NATO Cyber Defence Policy 2023 - Collective Defence in Cyberspace and Attribution Framework - **ID**: nato-cyber-defence-policy-2023 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This policy establishes cyberspace as a military domain of operations and affirms that a significant malicious cyber activity could lead to the invocation of Article 5 of the North Atlantic Treaty. It... - **Discovery URL**: https://bidda.com/api/v1/nodes/nato-cyber-defence-policy-2023.json #### CUI Protection (NIST 800-171) - **ID**: nist-800-171-cui - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.0 - **BLUF**: NIST Special Publication 800-171 Revision 3 (published May 2024) defines 17 control families containing 110 security requirements for protecting Controlled Unclassified Information (CUI) in non-federa... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-800-171-cui.json #### NIST SP 800-171 Rev 3 (CUI) - **ID**: nist-800-171-rev-3 - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.1 - **BLUF**: NIST SP 800-171 Rev 3 provides the requirements for protecting the confidentiality of Controlled Unclassified Information (CUI) in nonfederal systems and organizations. It is the foundational standard... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-800-171-rev-3.json #### Status Report on the Third Round of the NIST Post-Quantum Cryptography Standardization Process - **ID**: nist-ir-8413-pqc-third-round - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The National Institute of Standards and Technology is in the process of selecting public-key cryptographic algorithms through a public, competition-like process. The new public-key cryptography standa... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8413-pqc-third-round.json #### Transition to Post-Quantum Cryptography Standards - **ID**: nist-ir-8547-pqc-transition - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This report describes NIST’s expected approach to transitioning from quantum-vulnerable cryptographic algorithms to post-quantum digital signature algorithms and key-establishment schemes. It identifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8547-pqc-transition.json #### Status Report on the Third Round of the NIST Post-Quantum Cryptography Standardization Process - **ID**: nist-pqc-third-round-report - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The National Institute of Standards and Technology (NIST) is in the process of selecting public-key cryptographic algorithms through a public, competition-like process to protect sensitive information... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-pqc-third-round-report.json #### High-Performance Computing Security: Architecture, Threat Analysis, and Security Posture - **ID**: nist-sp-800-223-hpc-security - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This NIST Special Publication aims to standardize and facilitate the sharing of High-Performance Computing (HPC) security information and knowledge through the development of an HPC system reference a... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-223-hpc-security.json #### NSA CNSA 2.0 - Commercial National Security Algorithm Suite 2022: Quantum-Resistant Algorithm Requirements for National Security Systems - **ID**: nsa-cnsa-2-0-quantum-resistant-algorithms-2022 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: Mandates the transition of National Security Systems (NSS) to quantum-resistant cryptographic algorithms including CRYSTALS-Kyber (ML-KEM) for key encapsulation and CRYSTALS-Dilithium (ML-DSA) for dig... - **Discovery URL**: https://bidda.com/api/v1/nodes/nsa-cnsa-2-0-quantum-resistant-algorithms-2022.json #### CWC 1993 - Chemical Weapons Convention (OPCW) - **ID**: opcw-cwc-1993-chemical-weapons-convention - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: The Convention on the Prohibition of the Development, Production, Stockpiling and Use of Chemical Weapons and on their Destruction (CWC), opened for signature 13 January 1993 and entering into force 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/opcw-cwc-1993-chemical-weapons-convention.json #### Anti-Personnel Mine Ban Treaty - Ottawa Treaty 1997 - **ID**: ottawa-treaty-1997-anti-personnel-mines - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: The Ottawa Treaty (164 State Parties as of April 2026) comprehensively bans the use, production, transfer, and stockpiling of anti-personnel mines (APMs) under Article 1, with Article 4 requiring dest... - **Discovery URL**: https://bidda.com/api/v1/nodes/ottawa-treaty-1997-anti-personnel-mines.json #### PQC Migration Workflow - **ID**: pqc-migration-logic - **Category**: Aviation, Defense & Quantum - **Version**: 1.2.0 - **BLUF**: The PQC Migration Workflow (based on NSA CNSA 2.0 and NIST PQC timelines) provides the strategic five-step transition from 'Classical' cryptography to 'Post-Quantum' (PQC) standards. It focuses on mit... - **Discovery URL**: https://bidda.com/api/v1/nodes/pqc-migration-logic.json #### Quantum Readiness Checklist - **ID**: quantum-readiness-checklist - **Category**: Aviation, Defense & Quantum - **Version**: 1.1.1 - **BLUF**: The Quantum Readiness Checklist is based on OMB M-23-02, CISA's Quantum Strategy, and NIST PQC migration guidance. It provides an actionable framework for organizations to identify cryptographic asset... - **Discovery URL**: https://bidda.com/api/v1/nodes/quantum-readiness-checklist.json #### NISTIR 8105 Report on Post-Quantum Cryptography - **ID**: report-post-quantum-cryptography - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: If large-scale quantum computers are ever built, they will be able to break many of the public-key cryptosystems currently in use, seriously compromising the confidentiality and integrity of digital c... - **Discovery URL**: https://bidda.com/api/v1/nodes/report-post-quantum-cryptography.json #### SAE J3016 2021 Taxonomy of Driving Automation Levels 0-5 for On-Road Vehicles - Definitions, Operational Design Domains, Dynamic Driving Task and Shared Responsibility Framework - **ID**: sae-j3016-driving-automation-levels-2021 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This standard establishes a globally recognized taxonomy for on-road motor vehicle automated driving systems, defining six levels (0-5) based on which entity-the human driver or the automated system-i... - **Discovery URL**: https://bidda.com/api/v1/nodes/sae-j3016-driving-automation-levels-2021.json #### Tokyo Convention 1963 - Offences and Acts Aboard Aircraft and Jurisdictional Framework (with Montreal Protocol 2014) - **ID**: tokyo-convention-1963-offences-aboard-aircraft - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Convention on Offences and Certain Other Acts Committed on Board Aircraft (Tokyo Convention) was adopted in Tokyo on 14 September 1963 and entered into force on 4 December 1969. It is the foundati... - **Discovery URL**: https://bidda.com/api/v1/nodes/tokyo-convention-1963-offences-aboard-aircraft.json #### Automated Vehicles Act 2024 - **ID**: uk-automated-vehicles-act-2024 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This Act establishes a regulatory framework for automated vehicles in Great Britain, creating the 'Authorised Self-Driving Entity' (ASDE) which is legally liable for a vehicle's actions when its self-... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-automated-vehicles-act-2024.json #### UK Civil Aviation Act 1982: The CAA, Air Navigation Regulation, Licensing and Aircraft Liability - **ID**: uk-civil-aviation-act-1982 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Civil Aviation Act 1982 is the principal UK statute consolidating the law on civil aviation and the constitution and functions of the Civil Aviation Authority (CAA). Section 3 sets out the functio... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-civil-aviation-act-1982.json #### National Quantum Strategy: A 10-year vision and strategy missions for the UK to be a leading quantum-enabled economy - **ID**: uk-national-quantum-strategy-2023 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This strategy outlines the UK’s 10-year plan to become a leading quantum-enabled economy, focusing on quantum computing, sensing, and secure communications. It applies to government agencies, research... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-national-quantum-strategy-2023.json #### National Security and Investment Act 2021 - **ID**: uk-national-security-investment-act-2021-aerospace - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: The National Security and Investment Act 2021 requires mandatory notification of notifiable acquisitions in 17 sensitive sectors, including aerospace, where a person acquires 25% or more of shares or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-national-security-investment-act-2021-aerospace.json #### UK National Security and Investment Act 2021 - Mandatory Notification and Screening for Sensitive Sectors - **ID**: uk-nsia-2021 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The UK National Security and Investment Act 2021 requires mandatory notification to the UK Government's Investment Security Unit for certain acquisitions of entities active in 17 sensitive areas of th... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-nsia-2021.json #### UN Arms Trade Treaty - ATT 2013 - **ID**: un-arms-trade-treaty-2013 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: The ATT (113 State Parties as of April 2026) prohibits arms transfers where the exporting state has knowledge they will be used for genocide, crimes against humanity, or grave breaches of the Geneva C... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-arms-trade-treaty-2013.json #### NPT 1968 - Treaty on the Non-Proliferation of Nuclear Weapons - **ID**: un-npt-1968-nuclear-non-proliferation - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: The Treaty on the Non-Proliferation of Nuclear Weapons (NPT), opened for signature 1 July 1968 and entering into force 5 March 1970, has 191 States Parties - the most widely adhered to arms control tr... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-npt-1968-nuclear-non-proliferation.json #### UNECE Regulation No. 100: Uniform provisions concerning the approval of vehicles with regard to specific requirements for the electric power train - **ID**: unece-r100-electric-vehicle-battery-safety - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This regulation establishes safety requirements for electric vehicle powertrains, mandating protection against direct and indirect contact with high-voltage parts and ensuring the safety of the Rechar... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-r100-electric-vehicle-battery-safety.json #### UN Regulation No. 155 - Uniform provisions concerning the approval of vehicles with regard to cyber security and cyber security management system - **ID**: unece-r155-automotive-cybersecurity-2021 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This regulation mandates that vehicle manufacturers (OEMs) establish, implement, and maintain a certified Cyber Security Management System (CSMS) to secure vehicles from cyber threats throughout their... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-r155-automotive-cybersecurity-2021.json #### Uniform provisions concerning the approval of vehicles with regard to software update and software update management system - **ID**: unece-r156-software-update-management-2021 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This regulation requires vehicle manufacturers to implement a certified Software Update Management System (SUMS) to ensure the safety, security, and integrity of over-the-air (OTA) software updates. M... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-r156-software-update-management-2021.json #### UNECE GTR No. 15 Worldwide Harmonised Light Vehicles Test Procedure (WLTP) - Drive Cycle Design, Boundary Conditions, CO2 and Fuel Consumption Measurement for New Vehicle Type Approval - **ID**: unece-wltp-gtr-15-worldwide-harmonized-test - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This regulation establishes a globally harmonized standard for determining the levels of criteria pollutants, CO2 emissions, fuel/energy consumption, and electric range from light-duty vehicles under ... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-wltp-gtr-15-worldwide-harmonized-test.json #### UNECE WP.29 World Forum for Harmonization of Vehicle Regulations - 1958, 1997 and 1998 Agreements, Type Approval Mutual Recognition and GRSP/GRVA/GRPE Technical Committee Mandates - **ID**: unece-wp29-vehicle-type-approval-framework - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This framework establishes a system of mutual recognition for vehicle type approvals among contracting parties, allowing a vehicle or component approved in one member country to be accepted for sale i... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-wp29-vehicle-type-approval-framework.json #### UN Security Council Resolution 1540 (2004) - Non-Proliferation of WMD to Non-State Actors - **ID**: unscr-1540-2004-wmd-non-proliferation-non-state-actors - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: UN Security Council Resolution 1540 was adopted unanimously on 28 April 2004 under Chapter VII of the UN Charter to address the proliferation of nuclear, chemical, and biological weapons and their mea... - **Discovery URL**: https://bidda.com/api/v1/nodes/unscr-1540-2004-wmd-non-proliferation-non-state-actors.json #### US 14 CFR Part 121: Operating Requirements: Domestic, Flag, and Supplemental Operations - **ID**: us-14-cfr-part-121-operating-requirements-air-carriers - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: US 14 CFR Part 121 prescribes the operating requirements for certificate holders conducting domestic, flag, and supplemental operations using turbojet-powered airplanes or airplanes with 10 or more pa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-14-cfr-part-121-operating-requirements-air-carriers.json #### US 14 CFR Part 135: Operating Requirements: Commuter and On Demand Operations - **ID**: us-14-cfr-part-135-commuter-on-demand-operations - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: US 14 CFR Part 135 prescribes the operating requirements for certificate holders conducting commuter or on-demand operations including air taxi, charter, and scheduled passenger operations using aircr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-14-cfr-part-135-commuter-on-demand-operations.json #### US 14 CFR Part 25: Airworthiness Standards - Transport Category Airplanes - **ID**: us-14-cfr-part-25-airworthiness-transport-category - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: US 14 CFR Part 25 sets airworthiness standards for transport category airplanes used in scheduled passenger and cargo air transportation. The standards cover flight performance, structures, design and... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-14-cfr-part-25-airworthiness-transport-category.json #### US 14 CFR Part 33: Airworthiness Standards - Aircraft Engines - **ID**: us-14-cfr-part-33-airworthiness-aircraft-engines - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: US 14 CFR Part 33 sets airworthiness standards for aircraft engines including reciprocating and turbine engines used in transport and other categories of aircraft. The standards cover engine design an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-14-cfr-part-33-airworthiness-aircraft-engines.json #### US 14 CFR Part 39: Airworthiness Directives - **ID**: us-14-cfr-part-39-faa-airworthiness-directives - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: US 14 CFR Part 39 establishes the framework under which the FAA issues Airworthiness Directives (ADs) to correct unsafe conditions in aircraft, aircraft engines, propellers, or appliances. ADs are leg... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-14-cfr-part-39-faa-airworthiness-directives.json #### US 14 CFR Part 43: Maintenance, Preventive Maintenance, Rebuilding, and Alteration - **ID**: us-14-cfr-part-43-faa-maintenance-preventive-maintenance - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: US 14 CFR Part 43 establishes the regulations governing maintenance preventive maintenance rebuilding and alteration of US-registered aircraft and aviation products. Part 43 specifies persons authoriz... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-14-cfr-part-43-faa-maintenance-preventive-maintenance.json #### US 14 CFR Part 91: General Operating and Flight Rules - **ID**: us-14-cfr-part-91-general-operating-flight-rules - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: US 14 CFR Part 91 prescribes the general rules governing the operation of aircraft within the US including airspace classes, visual and instrument flight rules, equipment requirements, maintenance pre... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-14-cfr-part-91-general-operating-flight-rules.json #### US Aviation and Transportation Security Act of 2001 (Public Law 107-71) - Transportation Security Administration Establishment - **ID**: us-atsa-2001-aviation-transportation-security-pl-107-71 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Aviation and Transportation Security Act of 2001 created the Transportation Security Administration within the Department of Transportation and later transferred to the Department of Homeland Secu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-atsa-2001-aviation-transportation-security-pl-107-71.json #### US BIS Framework for Artificial Intelligence Diffusion - Interim Final Rule (15 CFR 740, 742, 744, 748) - **ID**: us-bis-ai-diffusion-framework-2025 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: BIS published the Framework for Artificial Intelligence Diffusion as an interim final rule on 15 January 2025 (effective 13 January 2025; compliance generally required by 15 May 2025; supplement no. 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bis-ai-diffusion-framework-2025.json #### Corporate Average Fuel Economy (CAFE) Standards for Passenger Cars and Light Trucks - **ID**: us-cafe-standards-light-duty-vehicles - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Corporate Average Fuel Economy (CAFE) standards, administered by the National Highway Traffic Safety Administration (NHTSA) under 49 U.S.C. Chapter 329, require automotive manufacturers to meet fl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cafe-standards-light-duty-vehicles.json #### CFIUS - 50 USC 4565 Defense Production Act Section 721 Foreign Investment Review - **ID**: us-cfius-defense-production-act-50-usc-4565 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: Section 4565 of title 50 of the United States Code codifies section 721 of the Defense Production Act of 1950 as substantially amended by the Foreign Investment and National Security Act of 2007 (FINS... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfius-defense-production-act-50-usc-4565.json #### Defense Production Act 1950 - 50 USC 4501 National Defense Industrial Authority - **ID**: us-defense-production-act-50-usc-4501 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: Section 4501 of title 50 of the United States Code provides that chapter 55 may be cited as the Defense Production Act of 1950 (Public Law 81-774, enacted 8 September 1950, 64 Statutes at Large 798). ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-defense-production-act-50-usc-4501.json #### Cybersecurity Maturity Model Certification (CMMC) 2.0: Three-Level Model for Protecting Controlled Unclassified Information (CUI) and Reducing Cyber Risk in the Defense Industrial Base - **ID**: us-dod-cybersecurity-maturity-model-cmmc-2-2021 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The CMMC 2.0 framework requires defense contractors and subcontractors to implement cybersecurity practices aligned with NIST SP 800-171 for Level 2 to protect Controlled Unclassified Information (CUI... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dod-cybersecurity-maturity-model-cmmc-2-2021.json #### US DoD Instruction 5000.02 - Operation of the Defense Acquisition System - **ID**: us-dod-instruction-5000-02-acquisition-defense - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This instruction establishes policy and assigns responsibilities for the operation of the Defense Acquisition System using the Adaptive Acquisition Framework (AAF) pathways. It applies to all DoD comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dod-instruction-5000-02-acquisition-defense.json #### US DoD Instruction 5000.85 - Major Capability Acquisition Defense Programs - **ID**: us-dod-instruction-5000-85-major-capability-acquisition-defense-programs - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: DoDI 5000.85 establishes policy and responsibilities for Major Capability Acquisition (MCA) programs - the DoD's primary acquisition pathway for developing and procuring military platforms, weapons sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dod-instruction-5000-85-major-capability-acquisition-defense-programs.json #### DoD Instruction 8510.01 - Risk Management Framework (RMF) for DoD Information Technology (IT) - **ID**: us-dod-rmf-8510-01 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This instruction establishes the DoD Risk Management Framework (RMF), mandating a six-step lifecycle process for all DoD information systems to manage cybersecurity risk and achieve an Authorization t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dod-rmf-8510-01.json #### US DOT Connected Vehicles V2X Infrastructure Deployment Strategy - DSRC to C-V2X Technology Transition, RSU Deployment Standards and FHWA Safety Application Requirements - **ID**: us-dot-v2x-connected-vehicles-policy - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This US Department of Transportation (DOT) policy mandates that state and local agencies using federal funds for new Vehicle-to-Everything (V2X) infrastructure deployments must use Cellular V2X (C-V2X... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dot-v2x-connected-vehicles-policy.json #### Multi-Pollutant Emissions Standards for Model Years 2027 and Later Light-Duty and Medium-Duty Vehicles - **ID**: us-epa-multi-pollutant-vehicle-standards-2024 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This final rule establishes progressively stringent, performance-based fleet-average emissions standards for greenhouse gases (GHG) and criteria pollutants for light-duty and medium-duty vehicle manuf... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-multi-pollutant-vehicle-standards-2024.json #### US FAA Small Unmanned Aircraft Systems (Drones) - 14 CFR Part 107 Operating Rules, Remote Pilot Certification, Remote Identification and Waiver Provisions - **ID**: us-faa-14-cfr-107-small-unmanned-aircraft-systems-suas - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: 14 CFR Part 107 (Small Unmanned Aircraft Systems) is the FAA's operating rule for civil small unmanned aircraft systems (sUAS) weighing less than 55 pounds, including the unmanned aircraft and its ass... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-14-cfr-107-small-unmanned-aircraft-systems-suas.json #### US FAA 14 CFR Part 121 - Air Carrier Operating Certificate, SMS & Safety Management - **ID**: us-faa-14-cfr-121-air-carrier-operations-certification-safety - **Category**: Aviation, Defense & Quantum - **Version**: 2.0 - **BLUF**: 14 CFR Part 121 establishes US FAA certification and operating standards for scheduled air carriers - including Safety Management System requirements (mandatory from March 2025 for Part 121 carriers),... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-14-cfr-121-air-carrier-operations-certification-safety.json #### US FAA Commuter and On-Demand Air Carrier Operations - 14 CFR Part 135 Operating Certificate, Crew Qualification, Maintenance and Operational Control Requirements - **ID**: us-faa-14-cfr-135-commuter-and-on-demand-operations - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: 14 CFR Part 135 (Operating Requirements: Commuter and On-Demand Operations and Rules Governing Persons On Board Such Aircraft) sets the operating rules for commuter and on-demand operations, which gen... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-14-cfr-135-commuter-and-on-demand-operations.json #### US FAA Airport Operating Certificate - 14 CFR Part 139 Certification of Airports Serving Scheduled Air Carrier Operations With More Than Nine Passenger Seats - **ID**: us-faa-14-cfr-139-certification-of-airports - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: 14 CFR Part 139 (Certification of Airports) is the FAA's regulation requiring airports serving scheduled and unscheduled air carrier operations with aircraft having more than nine passenger seats to h... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-14-cfr-139-certification-of-airports.json #### US FAA Repair Station Certification - 14 CFR Part 145 Domestic and Foreign Repair Station Certificate, Quality Control and Recordkeeping Requirements - **ID**: us-faa-14-cfr-145-repair-stations - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: 14 CFR Part 145 (Repair Stations) is the FAA's regulation governing the certification and operation of repair stations performing maintenance, preventive maintenance, or alterations on articles (aircr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-14-cfr-145-repair-stations.json #### 14 CFR Part 61 - Certification of Pilots, Flight Instructors and Ground Instructors - **ID**: us-faa-14-cfr-61-certification-pilots-flight-instructors - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: 14 CFR Part 61 prescribes the FAA requirements for issuing pilot, flight instructor and ground instructor certificates and ratings, the conditions under which those certificates and ratings are necess... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-14-cfr-61-certification-pilots-flight-instructors.json #### US FAA General Operating and Flight Rules - 14 CFR Part 91 Operating Rules, Right-of-Way, Airspace Restrictions, Maintenance and Pilot Operational Limits for All Civil Aircraft - **ID**: us-faa-14-cfr-91-general-operating-and-flight-rules - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: 14 CFR Part 91 (General Operating and Flight Rules) is the FAA's baseline operating regulation for the operation of all civil aircraft in the United States, including private operations, business avia... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-14-cfr-91-general-operating-and-flight-rules.json #### FAR Part 91 - General Operating and Flight Rules (14 CFR Part 91) - **ID**: us-faa-far-part-91-general-aviation-14-cfr - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.1 - **BLUF**: Title 14 of the Code of Federal Regulations (CFR) Part 91 - General Operating and Flight Rules - is the foundational Federal Aviation Regulation governing the operation of all civil aircraft within th... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-far-part-91-general-aviation-14-cfr.json #### United States Foreign Intelligence Surveillance Act (Title 50 USC Chapter 36): Electronic Surveillance Definitions, FISA Court, Applications, Issuance of Orders, Section 702 Targeting, and Criminal Sanctions - **ID**: us-fisa-50-usc-ch36 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Foreign Intelligence Surveillance Act of 1978, codified at Title 50 of the United States Code, Chapter 36, is the principal federal statute governing the acquisition of foreign intelligence inform... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fisa-50-usc-ch36.json #### Federal Motor Vehicle Safety Standards (FMVSS) - **ID**: us-fmvss-49-cfr-571-safety-standards - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The Federal Motor Vehicle Safety Standards (FMVSS) under 49 CFR Part 571 establish minimum safety performance requirements for motor vehicles and related equipment sold in the United States. This regu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmvss-49-cfr-571-safety-standards.json #### Goldwater-Nichols DoD Reorganization Act 1986 - 10 USC 111 - **ID**: us-goldwater-nichols-dod-reorganization-10-usc-111 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: Section 111 of title 10 of the United States Code, as substantially amended by the Goldwater-Nichols Department of Defense Reorganization Act of 1986 (Public Law 99-433, enacted 1 October 1986), defin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-goldwater-nichols-dod-reorganization-10-usc-111.json #### US National Quantum Initiative Act 2018 Public Law 115-368 Federal Coordination of Quantum Information Science Research Workforce and Standards - **ID**: us-national-quantum-initiative-act-2018-pl-115-368 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The National Quantum Initiative Act Public Law 115-368 enacted on 21 December 2018 establishes a coordinated US federal programme to accelerate quantum information science and technology organised in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-quantum-initiative-act-2018-pl-115-368.json #### National Security Act 1947 - 50 USC 3001 Intelligence and National Security Architecture - **ID**: us-national-security-act-1947-50-usc-3001 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: Section 3001 of title 50 of the United States Code provides the short title of the National Security Act of 1947 (Public Law 80-253, enacted 26 July 1947). The Act fundamentally reorganised US nationa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-security-act-1947-50-usc-3001.json #### National Defense Authorization Act for Fiscal Year 2024 - Artificial Intelligence Provisions Relating to Department of Defense Strategy, Algorithmic Warfare, Testing and Evaluation, Responsible AI Governance, and Incident Reporting - **ID**: us-ndaa-2024-artificial-intelligence-defense - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: The NDAA 2024 mandates the Department of Defense to update its AI strategy, establish AI testing and evaluation centers, formalize the Algorithmic Warfare Cross-Functional Team, create a Responsible A... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ndaa-2024-artificial-intelligence-defense.json #### Automated Driving Systems 2.0: A Vision for Safety - **ID**: us-nhtsa-automated-driving-systems-guidance - **Category**: Aviation, Defense & Quantum - **Version**: 2.0.0 - **BLUF**: This voluntary guidance from the US National Highway Traffic Safety Administration (NHTSA) encourages developers of Automated Driving Systems (ADS) to submit a Voluntary Safety Self-Assessment (VSSA) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nhtsa-automated-driving-systems-guidance.json #### Automated Vehicle Transparency and Engagement for Safe Testing (AV TEST) Initiative: Reporting Framework, Safety Self-Assessment Format and Incident Reporting to NHTSA - **ID**: us-nhtsa-av-test-initiative-reporting - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: This voluntary initiative by the US National Highway Traffic Safety Administration (NHTSA) encourages participants testing Automated Driving Systems (ADS) on public roads to publicly report safety sel... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nhtsa-av-test-initiative-reporting.json #### CNSS Policy No. 15: National Policy on the Use of Cryptographic Algorithms and Key Sizes for National Security Systems - **ID**: us-nsa-cnss-policy-15-quantum-resistant-2022 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: Mandates the transition of National Security Systems (NSS) to quantum-resistant cryptography by 2030, requiring the use of approved post-quantum algorithms (CRYSTALS-Kyber, CRYSTALS-Dilithium, SPHINCS... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nsa-cnss-policy-15-quantum-resistant-2022.json #### Posse Comitatus Act 1878 - 18 USC 1385 Military in Civilian Law Enforcement - **ID**: us-posse-comitatus-act-18-usc-1385 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: Section 1385 of title 18 of the United States Code, the Posse Comitatus Act originally enacted in 1878 and amended subsequently to cover all uniformed services, makes it a federal crime for any person... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-posse-comitatus-act-18-usc-1385.json #### Quantum Computing Cybersecurity Preparedness Act of 2022 - **ID**: us-quantum-computing-cybersecurity-preparedness-2022 - **Category**: Aviation, Defense & Quantum - **Version**: 1.0.0 - **BLUF**: Requires all federal agencies to inventory cryptographic systems vulnerable to quantum computing attacks, develop a migration plan to NIST Post-Quantum Cryptography (PQC) standards, and submit annual ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-quantum-computing-cybersecurity-preparedness-2022.json ### Banking & Global Finance (584 nodes) #### AI Model Valuation (IAS 38) - **ID**: accounting-ias-38 - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: IAS 38 Intangible Assets, issued by the IASB, governs the recognition, measurement, and disclosure of intangible assets including internally developed AI models, training datasets, and software. An in... - **Discovery URL**: https://bidda.com/api/v1/nodes/accounting-ias-38.json #### Digital Asset Fair Value (IFRS 13) - **ID**: accounting-ifr-13 - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: IFRS 13 Fair Value Measurement establishes a single framework for measuring fair value across all IFRS standards that require or permit fair value measurement, including digital assets, AI-tokenized i... - **Discovery URL**: https://bidda.com/api/v1/nodes/accounting-ifr-13.json #### APRA CPS 230 (Resilience) - **ID**: apra-cps-230-resilience - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: APRA CPS 230 (Operational Risk Management) is the new cross-industry standard for the Australian financial sector. it replaces several legacy standards (CPS 231, CPS 232) with a unified framework for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/apra-cps-230-resilience.json #### APRA Prudential Standard CPS 234 Information Security - **ID**: apra-cps-234 - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: A mandatory Australian regulatory standard ensuring that APRA-regulated entities maintain robust information security capabilities, with ultimate accountability residing at the Board level. - **Discovery URL**: https://bidda.com/api/v1/nodes/apra-cps-234.json #### Australia APRA Prudential Standard APS 110 - Capital Adequacy for Authorised Deposit-taking Institutions - **ID**: au-apra-prudential-standard-aps-110-adi - **Category**: Banking & Global Finance - **Version**: 2025.1.0 - **BLUF**: APS 110 sets minimum capital ratios for Australian ADIs (banks, credit unions, building societies): CET1 ≥4.5%, Tier 1 ≥6%, Total Capital ≥8%, plus Capital Conservation Buffer 2.5% (effectively 10.5% ... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-apra-prudential-standard-aps-110-adi.json #### Australia APRA Prudential Standard CPS 220 - Risk Management Framework - **ID**: au-apra-prudential-standard-cps-220 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: APRA Prudential Standard CPS 220 Risk Management (updated January 2023) requires all APRA-regulated entities - authorised deposit-taking institutions (ADIs), general insurers, life insurers, private h... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-apra-prudential-standard-cps-220.json #### Australia Securities and Investments Commission Act 2001 - ASIC Powers Consumer Protection and Financial Services Conduct - **ID**: au-asic-act-2001 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Australian Securities and Investments Commission Act 2001 establishes ASIC as Australia's corporate, markets, and financial services regulator, sets out ASIC functions and powers including investi... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-asic-act-2001.json #### Australia Corporations Act 2001 - AFSL Holder Obligations Under Chapter 7 Financial Services - **ID**: au-asic-corporations-act-2001-financial-services-licence-obligations - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Corporations Act 2001 (Cth) Chapter 7, administered by ASIC, requires holders of an Australian Financial Services Licence (AFSL) to comply with general obligations including acting efficiently, ho... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-asic-corporations-act-2001-financial-services-licence-obligations.json #### Australia Banking Act 1959 - Authorisation Supervision and Resolution of Authorised Deposit-Taking Institutions - **ID**: au-banking-act-1959 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Banking Act 1959 authorises the Australian Prudential Regulation Authority to grant and revoke authorisation to carry on banking business in Australia, requires authorised deposit-taking instituti... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-banking-act-1959.json #### Australia National Consumer Credit Protection Act 2009 (NCCP Act) - **ID**: au-nccp-act-2009-consumer-credit - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The National Consumer Credit Protection Act 2009 (NCCP Act) regulates the provision of consumer credit and consumer leases in Australia, establishing a national licensing regime for credit activities ... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-nccp-act-2009-consumer-credit.json #### Prudential Standard GPS 110 Capital Adequacy - **ID**: australia-apra-gps-110-capital-adequacy-general - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This standard requires Australian general insurers to maintain a capital base that exceeds their Prescribed Capital Amount (PCA) at all times, ensuring sufficient capital is held to absorb unexpected ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-apra-gps-110-capital-adequacy-general.json #### Moving in tandem: bank provisioning in emerging market economies - **ID**: bank-provisioning-emerging-market-economies - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This study analyzes the determinants of loan loss provisions and delinquency ratios based on the balance sheets of 554 banks from emerging market economies (EMEs). The results show that provisions in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bank-provisioning-emerging-market-economies.json #### Moving in tandem: bank provisioning in emerging market economies - **ID**: bank-provisioning-emerging-markets - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This study analyzes the determinants of loan loss provisions and delinquency ratios using balance sheet data from 554 banks in 18 emerging market economies (EMEs). The results show that provisions in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bank-provisioning-emerging-markets.json #### The Basel Committee’s response to the financial crisis: report to the G20 - **ID**: basel-committee-financial-crisis-response - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Basel Committee on Banking Supervision developed a reform programme, referred to as “Basel III”, to address the lessons of the financial crisis and strengthen the resilience of banks and the globa... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-committee-financial-crisis-response.json #### The Basel Committee’s response to the financial crisis: report to the G20 - **ID**: basel-committee-response-financial-crisis - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: In response to the financial crisis, the Basel Committee on Banking Supervision developed a reform programme, collectively referred to as “Basel III”, to address weaknesses in the banking sector such ... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-committee-response-financial-crisis.json #### International Convergence of Capital Measurement and Capital Standards A Revised Framework Comprehensive Version - **ID**: basel-ii-capital-framework - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This framework presents the Basel Committee on Banking Supervision’s revisions to supervisory regulations governing the capital adequacy of internationally active banks. Its fundamental objective is t... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-ii-capital-framework.json #### Basel III Capital Requirements - **ID**: basel-iii-capital - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: Basel III's framework, established by the Basel Committee on Banking Supervision's global regulatory framework and implemented through regulations such as the European Union's CRR and the US Federal R... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-iii-capital.json #### Basel III: A global regulatory framework for more resilient banks and banking systems - **ID**: basel-iii-global-regulatory-framework - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This document presents the Basel Committee’s reforms to strengthen global capital and liquidity rules with the goal of promoting a more resilient banking sector. The objective of the reforms is to imp... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-iii-global-regulatory-framework.json #### Basel III Liquidity (LCR) - **ID**: basel-iii-liquidity-lcr - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The Liquidity Coverage Ratio (LCR) is a core component of the Basel III post-crisis reform. it ensures that banks maintain an adequate level of unencumbered high-quality liquid assets (HQLA) that can ... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-iii-liquidity-lcr.json #### Basel III: Finalising post-crisis reforms - Standardised approach to credit risk (SA-CR) - **ID**: basel-iv-credit-risk-standardised-approach - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes a more granular and risk-sensitive standardised approach (SA-CR) for calculating credit risk capital requirements for internationally active banks. As outlined in Section I... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-iv-credit-risk-standardised-approach.json #### Regulation (EU) 2024/1623 (CRR3/Basel IV) - Revised Capital Requirements: Output Floor 72.5% from 2030, Revised Credit Risk Standardised Approach, Operational Risk New Standardised Approach, Fundamental Review of the Trading Book (FRTB) and SA-CCR Counterparty Credit Risk - **ID**: basel-iv-crr3-eu-capital-requirements-2025 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2024/1623 of 19 June 2024 (CRR3) amends Regulation (EU) No 575/2013 (CRR) to implement the final Basel IV capital standards in the EU, phased in from 1 January 2025; the cornerstone of... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-iv-crr3-eu-capital-requirements-2025.json #### Basel IV: Capital Floor & Liquidity - **ID**: basel-iv-liquidity - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: The Basel IV framework (the final Basel III reforms) introduces a standardized output floor to prevent banks from using internal models to underestimate risk. It significantly tightens capital require... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-iv-liquidity.json #### Basel III: Finalising post-crisis reforms - Operational risk framework (Revised Standardised Approach) - **ID**: basel-iv-operational-risk-sa - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes a single, non-model-based method, the Standardised Approach (SA), for calculating operational risk capital requirements for all internationally active banks. As outlined in... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-iv-operational-risk-sa.json #### Basel IV Output Floor - **ID**: basel-iv-output-floor - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The Basel IV Output Floor is the centerpiece of the 2017 Basel III 'completion' reforms. It limits the reduction in risk-weighted assets (RWA) that can result from a bank's use of internal models by m... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-iv-output-floor.json #### BCBS 239 Principles for Effective Risk Data Aggregation and Risk Reporting - **ID**: bcbs-239-principles-risk-data-aggregation-reporting - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Basel Committee on Banking Supervision Principles No. 239, published January 2013, establishes 14 principles for effective risk data aggregation and risk reporting applicable to global systemically im... - **Discovery URL**: https://bidda.com/api/v1/nodes/bcbs-239-principles-risk-data-aggregation-reporting.json #### BCBS 248 - Monitoring tools for intraday liquidity management (Basel Committee, April 2013, Consolidated Basel Framework) - **ID**: bcbs-248-monitoring-tools-intraday-liquidity-management-2013 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: BCBS 248 was published by the Basel Committee on Banking Supervision in April 2013 and has been integrated into the consolidated Basel Framework. It develops seven quantitative monitoring tools, desig... - **Discovery URL**: https://bidda.com/api/v1/nodes/bcbs-248-monitoring-tools-intraday-liquidity-management-2013.json #### Principles for the effective management and supervision of climate-related financial risks - **ID**: bcbs-climate-related-financial-risks - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Climate change may result in physical and transition risks that could affect the safety and soundness of individual banking institutions and have broader financial stability implications for the banki... - **Discovery URL**: https://bidda.com/api/v1/nodes/bcbs-climate-related-financial-risks.json #### Sound Practices: Implications of fintech developments for banks and bank supervisors - **ID**: bcbs-fintech-sound-practices - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Interest is growing in financial technology, or 'fintech'. In response, the Basel Committee on Banking Supervision (BCBS) has analyzed the implications for supervisors and banks’ business models. As f... - **Discovery URL**: https://bidda.com/api/v1/nodes/bcbs-fintech-sound-practices.json #### Supervisory framework for measuring and controlling large exposures - **ID**: bcbs-large-exposures-framework - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This framework was developed to limit the maximum loss a bank could face in the event of a sudden counterparty failure to a level that does not endanger the bank’s solvency. It complements the Committ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bcbs-large-exposures-framework.json #### Principles for Operational Resilience - **ID**: bcbs-principles-operational-resilience - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Basel Committee on Banking Supervision promotes a principles-based approach to improving operational resilience, defined as the ability of a bank to deliver critical operations through disruption.... - **Discovery URL**: https://bidda.com/api/v1/nodes/bcbs-principles-operational-resilience.json #### Principles for the Sound Management of Operational Risk - **ID**: bcbs-principles-sound-management-operational-risk - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This document details eleven principles of sound operational risk management covering governance, the risk management environment, and the role of disclosure. It replaces the 2003 Sound Practices for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bcbs-principles-sound-management-operational-risk.json #### Principles for Sound Liquidity Risk Management and Supervision - **ID**: bcbs-sound-liquidity-risk-management - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Liquidity is the ability of a bank to fund increases in assets and meet obligations as they come due, without incurring unacceptable losses. The fundamental role of banks in the maturity transformatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/bcbs-sound-liquidity-risk-management.json #### Principles for sound stress testing practices and supervision - **ID**: bcbs-sound-stress-testing-practices - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Stress testing is an important risk management tool used by banks as part of their internal risk management and, through the Basel II capital adequacy framework, is promoted by supervisors. It alerts ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bcbs-sound-stress-testing-practices.json #### Bermuda Monetary Authority Insurance Prudential Standards (Enhanced Capital Requirement, BSCR, and Group Supervision Rules) - **ID**: bermuda-monetary-authority-insurance-prudential - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation requires Bermuda-based commercial insurers (primarily Class 3B, 4, and insurance groups) to maintain available statutory capital and surplus at or above the Enhanced Capital Requiremen... - **Discovery URL**: https://bidda.com/api/v1/nodes/bermuda-monetary-authority-insurance-prudential.json #### Artificial intelligence and machine learning in financial services - **ID**: bis-ai-financial-services-2023 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This joint BIS and FSB report outlines key considerations for financial institutions and supervisors regarding the use of AI and ML, emphasizing the need for robust governance, data quality, and model... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-ai-financial-services-2023.json #### Principles for the Sound Management of Operational Risk - **ID**: bis-bcbs-195-operational-risk-management - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Organizations must implement sound operational risk management that reflects the effectiveness of the board and senior management, covering the core areas of governance, the risk management environmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-bcbs-195-operational-risk-management.json #### Principles for operational resilience - **ID**: bis-bcbs-operational-resilience-2021 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This standard establishes a principles-based approach for banks to strengthen their operational resilience against events like pandemics, cyber incidents, and technology failures that could cause sign... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-bcbs-operational-resilience-2021.json #### III. CBDCs: an opportunity for the monetary system - **ID**: bis-cbdcs-monetary-system - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This chapter examines how central bank digital currencies (CBDCs) can contribute to an open, safe and competitive monetary system that supports innovation and serves the public interest. CBDCs are a f... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-cbdcs-monetary-system.json #### Principles for Financial Market Infrastructures - **ID**: bis-cpmi-principles-financial-market-infra-2012 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This standard establishes key principles for the design and operation of financial market infrastructures to promote safety, efficiency, and stability in the global financial system. - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-cpmi-principles-financial-market-infra-2012.json #### Key Attributes of Effective Resolution Regimes for Financial Institutions (2014 revised version) - **ID**: bis-fsb-key-attributes-resolution-regimes-2014 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This standard establishes the core attributes for effective resolution regimes for financial institutions, incorporating specific guidance for insurers, financial market infrastructures (FMIs), inform... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-fsb-key-attributes-resolution-regimes-2014.json #### Principles for Financial Market Infrastructures - **ID**: bis-pfmi-financial-market-infrastructure-2012 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Principles for Financial Market Infrastructures (PFMI) establish 24 principles for systemically important financial market infrastructures (FMIs), including central counterparties (CCPs), central ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-pfmi-financial-market-infrastructure-2012.json #### BIS Principles (FMI) - **ID**: bis-principles-fmi-2012 - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The Principles for Financial Market Infrastructures (PFMI) are the international standards for the infrastructure that facilitates the clearing, settlement, and recording of monetary and other financi... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-principles-fmi-2012.json #### BIS Sound Practices for the Use of AI in Financial Services - Compliance Obligations for AI Model Risk Management, Financial Stability AI Controls, and Supervisory Expectations for Bank AI Governance Frameworks - **ID**: bis-sound-practices-ai-financial-stability-2023 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for AI model risk management, financial stability controls, and governance frameworks for banks as per BIS Sound Practices; it aligns with EU AI Act (Regulati... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-sound-practices-ai-financial-stability-2023.json #### Brazil CMN Resolution 4,966/2021 - Credit Risk Classification and Provisioning (BACEN) - **ID**: br-bacen-resolution-4966-credit-risk-2021 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: CMN Resolution No. 4,966 of 25 November 2021 (Conselho Monetário Nacional / Banco Central do Brasil) consolidated and replaced CMN Resolution 2,682/1999 as Brazil's primary credit risk classification ... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-bacen-resolution-4966-credit-risk-2021.json #### Brazil Central Bank Resolution No. 4,658, of 2018 - Cybersecurity Policy for Financial Institutions - **ID**: brazil-bacen-resolution-4658-2018-cybersecurity - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Mandates financial institutions operating in Brazil to establish a comprehensive cybersecurity policy, designate a Chief Information Security Officer (CISO), implement incident response and business c... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-bacen-resolution-4658-2018-cybersecurity.json #### Brazil PIX Instant Payment System 2020 (BACEN) - **ID**: brazil-pix-bacen-payment-system-2020 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Mandates participation in the PIX instant payment system for financial institutions with 500+ active accounts, requiring 24/7/365 transaction clearing, adherence to QR code and PIX alias standards (CP... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-pix-bacen-payment-system-2020.json #### Bank Act (S.C. 1991, c. 46) - Part VI, Corporate Governance - Requisitioned and Court-Ordered Meetings - **ID**: ca-bank-act-part-vii-consumer-provisions-banking - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: This regulation outlines the obligations for a bank's directors to call a meeting upon requisition by shareholders or members, the procedures for such meetings, and the recourse available through the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-bank-act-part-vii-consumer-provisions-banking.json #### Canada Bankruptcy and Insolvency Act - Personal and Commercial Insolvency Framework - **ID**: ca-bankruptcy-insolvency-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Bankruptcy and Insolvency Act establishes Canada's general personal and commercial insolvency framework providing for assignments in bankruptcy, proposals to creditors as a reorganisation alternat... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-bankruptcy-insolvency-act.json #### Canada OSFI Guideline B-13 - Technology and Cyber Risk Management for Federally Regulated Financial Institutions - **ID**: ca-osfi-b-13-guideline-technology-cyber-risk-management - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: OSFI Guideline B-13 (effective January 2024) establishes technology and cyber risk management expectations for all federally regulated financial institutions (FRFIs) including banks, insurance compani... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-osfi-b-13-guideline-technology-cyber-risk-management.json #### Canada OSFI Capital Adequacy Requirements (CAR) Guideline - D-SIB Framework and Domestic Stability Buffer - **ID**: ca-osfi-capital-adequacy-requirements-car-2023 - **Category**: Banking & Global Finance - **Version**: 2023.1.0 - **BLUF**: OSFI's Capital Adequacy Requirements (CAR) Guideline implements Basel III for Canadian federally regulated deposit-taking institutions: minimum CET1 ≥7.0% (including 2.5% Capital Conservation Buffer);... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-osfi-capital-adequacy-requirements-car-2023.json #### Canada OSFI Guideline B-20 - Residential Mortgage Underwriting Practices - **ID**: ca-osfi-guideline-b-20-mortgage-underwriting - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: OSFI (Office of the Superintendent of Financial Institutions) Guideline B-20 (Residential Mortgage Underwriting Practices and Procedures, updated January 2018 and revised 2023) establishes supervisory... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-osfi-guideline-b-20-mortgage-underwriting.json #### Canada OSFI Liquidity Adequacy Requirements (LAR) Guideline 2023 - **ID**: ca-osfi-liquidity-adequacy-requirements-lar-2023 - **Category**: Banking & Global Finance - **Version**: 2026.1.1 - **BLUF**: OSFI's Liquidity Adequacy Requirements (LAR) Guideline implements Basel III Liquidity Coverage Ratio (LCR) and Net Stable Funding Ratio (NSFR) for Canadian deposit-taking institutions (DTIs), requirin... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-osfi-liquidity-adequacy-requirements-lar-2023.json #### Canada Investment Canada Act: Net Benefit to Canada Review of Foreign Investment, Reviewable Investments, Notification, Section 25.1 National Security Review, and Offences - **ID**: canada-investment-canada-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Investment Canada Act, R.S.C. 1985, c. 28 (1st Supp.), is the principal Canadian statute governing the review of significant foreign investments in Canada and is administered by the Minister of In... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-investment-canada-act.json #### CFTC Part 49 (Swaps) - **ID**: cftc-part-49-swap-reporting - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: Compliance with CFTC Part 49 is predicated on maintaining an active registration as a Swap Data Repository (SDR) pursuant to procedures outlined in 17 CFR § 49.3. A designated Chief Compliance Officer... - **Discovery URL**: https://bidda.com/api/v1/nodes/cftc-part-49-swap-reporting.json #### Switzerland Anti-Money Laundering Act 1997 (GwG/AMLA) - SR 955.0 - **ID**: ch-amla-geldwaeschereigesetz-1997 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Swiss Anti-Money Laundering Act (Geldwäschereigesetz, GwG; SR 955.0) establishes the due diligence and reporting obligations for financial intermediaries in Switzerland, administered jointly by FI... - **Discovery URL**: https://bidda.com/api/v1/nodes/ch-amla-geldwaeschereigesetz-1997.json #### Switzerland Banking Act (Bankengesetz) - SR 952.0 - FINMA Licensing and TBTF Requirements - **ID**: ch-finma-banking-act-bankengesetz-1934 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: Switzerland's Banking Act (SR 952.0) requires FINMA authorisation for all banking activities in Switzerland (Art 3: CHF 10M minimum paid-up capital), mandates depositor protection via esisuisse (CHF 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/ch-finma-banking-act-bankengesetz-1934.json #### Switzerland Financial Services Act 2019 (FinSA) - Client Protection and Market Conduct - **ID**: ch-finsa-financial-services-act-2019 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Swiss Financial Services Act (FinSA - Finanzdienstleistungsgesetz, SR 950.1), in force January 2020, establishes harmonised conduct rules for all financial service providers in Switzerland, regard... - **Discovery URL**: https://bidda.com/api/v1/nodes/ch-finsa-financial-services-act-2019.json #### Switzerland Financial Market Infrastructure Act 2015 (FinfraG/FMIA) - SR 958.1 - **ID**: ch-fmia-finfrastrukturgesetz-2015 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Swiss Financial Market Infrastructure Act (Finanzmarktinfrastrukturgesetz, FinfraG; SR 958.1) regulates the operation of financial market infrastructures and market conduct in securities and deriv... - **Discovery URL**: https://bidda.com/api/v1/nodes/ch-fmia-finfrastrukturgesetz-2015.json #### CHAPS RTGS (Payments) - **ID**: chaps-rtgs-high-val-london - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: CHAPS (Clearing House Automated Payment System) is the UK's high-value, real-time gross settlement (RTGS) payment system. it is used for critical financial transactions, such as the interbank house pu... - **Discovery URL**: https://bidda.com/api/v1/nodes/chaps-rtgs-high-val-london.json #### Guidance on cyber resilience for financial market infrastructures - **ID**: cpmi-iosco-cyber-resilience-fmi - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The purpose of this document is to provide guidance for Financial Market Infrastructures (FMIs) to enhance their cyber resilience. It provides supplemental guidance to the CPMI-IOSCO Principles for Fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/cpmi-iosco-cyber-resilience-fmi.json #### Regulation (EU) 2024/1623 of the European Parliament and of the Council of 14 May 2024 amending Regulation (EU) No 575/2013 as regards requirements for credit risk, credit valuation adjustment risk, operational risk, market risk and the output floor - **ID**: crr-iii-eu-implementation-2024 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation implements the final Basel III reforms (often called 'Basel IV') in the European Union, establishing a harmonised 'output floor' to limit the reduction in capital requirements for bank... - **Discovery URL**: https://bidda.com/api/v1/nodes/crr-iii-eu-implementation-2024.json #### OECD CRS (Tax Exchange) - **ID**: crs-oecd-tax-automatic - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The Common Reporting Standard (CRS) is the global benchmark for the automatic exchange of financial account information (AEOI) to combat tax evasion. Developed by the OECD, it requires financial insti... - **Discovery URL**: https://bidda.com/api/v1/nodes/crs-oecd-tax-automatic.json #### Volcker Rule (Prop Trading) - **ID**: dodd-frank-volcker-rule - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The Volcker Rule (Section 619 of the Dodd-Frank Act) prohibits U.S. banking entities from engaging in proprietary trading or acquiring/sponsoring 'Covered Funds' (Hedge Funds or Private Equity). it is... - **Discovery URL**: https://bidda.com/api/v1/nodes/dodd-frank-volcker-rule.json #### DORA ICT Risk Management Requirements Applied to AI Systems in Financial Entities - Compliance Obligations for EU Financial Sector AI Resilience, AI ICT Incident Reporting, and AI Third-Party Risk Under DORA Article 28 - **ID**: dora-ai-ict-risk-management-2025 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This node outlines ICT risk management requirements for AI systems in EU financial entities under DORA Article 28, focusing on resilience, incident reporting, and third-party risk management. Key comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-ai-ict-risk-management-2025.json #### DORA - EU Digital Operational Resilience Act - **ID**: dora-ict-risk - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: Regulation (EU) 2022/2554 (DORA - Digital Operational Resilience Act), published December 27, 2022 and directly applicable (no national transposition required) across all EU member states from January... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-ict-risk.json #### Digital Operational Resilience Act (DORA) - Chapter II: ICT Risk Management (Articles 5-16) - **ID**: dora-ict-risk-management-articles-5-16 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Requires EU financial entities to establish and maintain a comprehensive, well-documented ICT risk management framework, as mandated by Article 6. This framework, overseen by the management body (Arti... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-ict-risk-management-articles-5-16.json #### Regulation (EU) 2022/2554 (DORA) - ICT-Related Incident Management and Reporting (Articles 17-23) - **ID**: dora-incident-reporting-articles-17-23 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2022/2554 (DORA) requires financial entities to establish a comprehensive ICT-related incident management process, including detection, classification, and response. Per Articles 18 an... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-incident-reporting-articles-17-23.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 10: Detection - **ID**: dora-regulation-article-10-detection - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must establish and maintain mechanisms to promptly detect anomalous activities, ICT-related incidents, and potential single points of failure, supported by multiple layers of contro... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-10-detection.json #### Digital Operational Resilience Act (DORA) - Article 11: Response and recovery - **ID**: dora-regulation-article-11-response-recovery - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must establish and implement a comprehensive ICT business continuity policy and associated plans to ensure the continuity of critical functions and effectively respond to and recove... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-11-response-recovery.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 12 - **ID**: dora-regulation-article-12-backup-policies-recovery-procedures - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the official definitions for key financial entities such as payment institutions, central counterparties, and trading venues, which must be used for classification and complia... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-12-backup-policies-recovery-procedures.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector, Article 13: Learning and evolving - **ID**: dora-regulation-article-13-learning-evolving - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires financial entities to establish mechanisms for continuous learning from ICT incidents and technological developments, monitor their resilience strategy, conduct annual self-asses... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-13-learning-evolving.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 14: Communication - **ID**: dora-regulation-article-14-communication - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must establish and implement crisis communication plans and policies for disclosing major ICT-related incidents and vulnerabilities to clients, counterparts, the public, and interna... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-14-communication.json #### Digital Operational Resilience Act (DORA) - Article 17: ICT-related incident management process - **ID**: dora-regulation-article-17-ict-related-incident-management-process - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must define, establish, and implement a comprehensive ICT-related incident management process to detect, manage, notify, record, and analyze all incidents and significant cyber thre... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-17-ict-related-incident-management-process.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 18: Classification of ICT-related incidents and cyber threats - **ID**: dora-regulation-article-18-classification-ict-related-incidents - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires financial entities to establish procedures for managing ICT-related incidents and to classify these incidents and cyber threats based on specific criteria such as impact on clien... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-18-classification-ict-related-incidents.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 19: Reporting of major ICT-related incidents and voluntary notification of significant cyber threats - **ID**: dora-regulation-article-19-reporting-major-ict-incidents - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires financial entities to report major ICT-related incidents to their designated competent authority using specified templates and procedures. - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-19-reporting-major-ict-incidents.json #### Digital Operational Resilience Act (DORA) - Article 20: Harmonisation of reporting content and templates - **ID**: dora-regulation-article-20-harmonisation-reporting-content-formats - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article mandates European Supervisory Authorities (ESAs) to develop and submit harmonized technical standards establishing the content, templates, and procedures for financial entities to report ... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-20-harmonisation-reporting-content-formats.json #### REGULATION (EU) 2022/2554 on digital operational resilience for the financial sector - Article 28: Key principles for ICT third-party risk management - **ID**: dora-regulation-article-28-third-party-ict-risk-management - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires financial entities to manage ICT third-party risk as an integral part of their overall ICT risk framework, including maintaining a register of information, adopting a risk strate... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-28-third-party-ict-risk-management.json #### REGULATION (EU) 2022/2554 on digital operational resilience for the financial sector - Article 29: Assessment of ICT concentration risk at Union level - **ID**: dora-regulation-article-29-preliminary-assessment-ict-concentration-risk - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires the designated Lead Overseer to conduct and coordinate a preliminary assessment of ICT concentration risk at the Union level for each critical ICT third-party service provider. - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-29-preliminary-assessment-ict-concentration-risk.json #### REGULATION (EU) 2022/2554 on digital operational resilience for the financial sector - Article 30, Key contractual provisions - **ID**: dora-regulation-article-30-key-contractual-provisions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article mandates that financial entities ensure their contractual arrangements for the use of ICT services contain specific provisions to manage ICT third-party risk, including clear descriptions... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-30-key-contractual-provisions.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 5: Governance and organisation - **ID**: dora-regulation-article-5-ict-risk-management-framework - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must establish, implement, and maintain an internal governance and control framework to ensure the effective and prudent management of ICT risk. - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-5-ict-risk-management-framework.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 6 - **ID**: dora-regulation-article-6-ict-risk-management-framework-simplified - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes mandatory and voluntary reporting requirements for financial entities concerning major ICT-related incidents and significant cyber threats to competent authorities and clients... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-6-ict-risk-management-framework-simplified.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 8: Identification - **ID**: dora-regulation-article-8-identification-classification-ict-assets - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must identify, classify, document, and continuously review all ICT-supported business functions, assets, and related risks as part of their ICT risk management framework. - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-8-identification-classification-ict-assets.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 9 - **ID**: dora-regulation-article-9-protection-prevention - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires financial entities to implement security measures to protect networks and data, and to develop detailed access management controls and human resource policies for monitoring ICT ... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-regulation-article-9-protection-prevention.json #### Digital Operational Resilience Testing Programme (Articles 24-27) - Regulation (EU) 2022/2554 (DORA) - **ID**: dora-resilience-testing-articles-24-27 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation requires EU financial entities to establish and maintain a comprehensive, risk-based digital operational resilience testing programme to assess preparedness, identify vulnerabilities, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-resilience-testing-articles-24-27.json #### DORA ICT Third-Party Risk Management and Oversight - Articles 28-44 (Regulation 2022/2554) - **ID**: dora-third-party-risk-articles-28-44 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation requires EU financial entities to manage risks associated with ICT third-party service providers by maintaining a register of information, conducting due diligence, and ensuring specif... - **Discovery URL**: https://bidda.com/api/v1/nodes/dora-third-party-risk-articles-28-44.json #### EBA Guidelines on the Use of Machine Learning for Internal Ratings-Based Models - Compliance Obligations for AI Model Risk Management, ML Validation Controls, and AI Governance for EU Banking Institutions - **ID**: eba-ai-machine-learning-risk-guidelines-2023 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for EU banking institutions under the EBA Guidelines for using machine learning in Internal Ratings-Based (IRB) models, focusing on AI model risk management, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eba-ai-machine-learning-risk-guidelines-2023.json #### EBA Guidelines on ICT and Security Risk Management (EBA/GL/2019/04) - **ID**: eba-guidelines-ict-risk-2019 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: These guidelines require EU financial institutions, including credit institutions, investment firms, and payment service providers, to establish a comprehensive and documented ICT and security risk ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/eba-guidelines-ict-risk-2019.json #### EBA Outsourcing Guidelines - **ID**: eba-outsourcing-guide - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The EBA Guidelines on Outsourcing Arrangements (EBA/GL/2019/02) apply a unified framework for the financial sector across the EU. it specifies the governance and the pre-outsourcing due diligence requ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eba-outsourcing-guide.json #### ECB Guide (Internal Models) - **ID**: ecb-guide-internal-models - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The ECB Guide to Internal Models (EGIM) provides the foundational standard for the supervised banks in the Eurozone to the use of the 'Internal Ratings Based' (IRB) approach for calculating the regula... - **Discovery URL**: https://bidda.com/api/v1/nodes/ecb-guide-internal-models.json #### ECB Guide to Internal Models (TRIM) and SREP Pillar 2 Capital Requirements 2023 - **ID**: ecb-srep-2023-supervisory-guide - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This guide outlines the European Central Bank's supervisory expectations for banks using internal models to calculate risk-weighted assets (RWAs), specifying how model deficiencies identified during t... - **Discovery URL**: https://bidda.com/api/v1/nodes/ecb-srep-2023-supervisory-guide.json #### Egmont Group Financial Intelligence Unit (FIU) Standards - Information Exchange Requirements, Operational Guidelines, Egmont Secure Web (ESW) SAR Sharing Protocols and FIU Membership Criteria - **ID**: egmont-group-financial-intelligence-unit-standards - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Egmont Group establishes standards for its member Financial Intelligence Units (FIUs) to facilitate secure, timely, and effective international cooperation in combating money laundering and terror... - **Discovery URL**: https://bidda.com/api/v1/nodes/egmont-group-financial-intelligence-unit-standards.json #### Egypt Central Bank Law No. 194 of 2020 on Financial Technology and Innovation Regulation - **ID**: egypt-central-bank-fintech-law-194-2020 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: This law establishes the regulatory framework for financial technology activities in Egypt, including the operation of a fintech regulatory sandbox, licensing of electronic payment service providers, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/egypt-central-bank-fintech-law-194-2020.json #### ESMA AI and Machine Learning in Financial Markets - Supervisory Convergence and Compliance Obligations for AI Model Risk in Capital Markets, Algorithmic Trading Governance, and AI Disclosure Requirements - **ID**: esma-ai-machine-learning-supervisory-convergence-2023 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This node outlines ESMA's supervisory convergence framework for AI and machine learning in financial markets, focusing on AI model risk management, algorithmic trading governance under MiFID II, and d... - **Discovery URL**: https://bidda.com/api/v1/nodes/esma-ai-machine-learning-supervisory-convergence-2023.json #### EU Accounting Directive 2013/34/EU - Annual Financial Statements and Consolidated Accounts Framework - **ID**: eu-accounting-directive-2013-34 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Directive 2013/34/EU of the European Parliament and of the Council of 26 June 2013 on the annual financial statements, consolidated financial statements and related reports of certain types of underta... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-accounting-directive-2013-34.json #### EU AIFMD2 Directive 2024/927 - Loan-Originating Funds & Delegation Rules - **ID**: eu-aifmd-2-directive-2024-927 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Directive 2024/927 (AIFMD2, amending AIFMD 2011/61/EU and UCITS Directive 2009/65/EC) introduces a harmonised EU framework for loan-originating Alternative Investment Funds (LO-AIFs): a 20% diversific... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aifmd-2-directive-2024-927.json #### EU Alternative Investment Fund Managers Directive (AIFMD) 2011/61/EU & AIFMD II 2024/927 - **ID**: eu-aifmd-directive-2011-61 - **Category**: Banking & Global Finance - **Version**: 2.0.1 - **BLUF**: Directive 2011/61/EU governs EU Alternative Investment Fund Managers (AIFMs) - managers of hedge funds, private equity, real estate, and other non-UCITS funds. Sub-threshold exemption: AIFMs with AUM ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aifmd-directive-2011-61.json #### Alternative Investment Fund Managers Directive (AIFMD) 2011/61/EU - Article 12: General principles - **ID**: eu-aifmd-directive-article-12-general-principles-and-operating-conditions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: AIFMs must at all times act honestly, with due skill, care, and diligence, and fairly in the conduct of their activities. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aifmd-directive-article-12-general-principles-and-operating-conditions.json #### Alternative Investment Fund Managers Directive (AIFMD) 2011/61/EU Article 13: Remuneration - **ID**: eu-aifmd-directive-article-13-remuneration-policies-and-practices - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: AIFMs must establish and maintain remuneration policies and practices for key staff that promote sound risk management and do not encourage excessive risk-taking inconsistent with the AIF's profile. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aifmd-directive-article-13-remuneration-policies-and-practices.json #### Alternative Investment Fund Managers Directive (AIFMD) 2011/61/EU Article 14: Conflicts of interest - **ID**: eu-aifmd-directive-article-14-conflicts-of-interest-prevention-management - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: AIFMs must take all reasonable steps to identify, prevent, manage, and monitor conflicts of interest, and where these measures are insufficient, they must disclose the conflicts to investors. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aifmd-directive-article-14-conflicts-of-interest-prevention-management.json #### Alternative Investment Fund Managers Directive (AIFMD) 2011/61/EU Article 17: Investment in securitisation positions - **ID**: eu-aifmd-directive-article-17-liquidity-management-aif - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Mandates the European Commission to adopt delegated acts establishing requirements for AIFM investments in securitisation positions to ensure consistency and align the interests of originators and inv... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aifmd-directive-article-17-liquidity-management-aif.json #### Alternative Investment Fund Managers Directive (AIFMD) 2011/61/EU - Article 19: Valuation - **ID**: eu-aifmd-directive-article-19-valuation-of-aif-assets - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: AIFMs must establish and maintain appropriate, consistent procedures for each AIF they manage to ensure a proper and independent valuation of the AIF's assets, compliant with AIFMD, national law, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aifmd-directive-article-19-valuation-of-aif-assets.json #### Alternative Investment Fund Managers Directive (AIFMD) 2011/61/EU Article 22: Annual report - **ID**: eu-aifmd-directive-article-22-annual-report-aif-obligations - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: AIFMs must prepare and make available an annual report for each managed EU AIF and each marketed AIF within 6 months of the financial year-end, providing it to investors on request and to competent au... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aifmd-directive-article-22-annual-report-aif-obligations.json #### Alternative Investment Fund Managers Directive (AIFMD) 2011/61/EU Article 23: Disclosure to investors - **ID**: eu-aifmd-directive-article-23-disclosure-to-investors-requirements - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: AIFMs must provide specific information to potential investors before they invest in an AIF and disclose any material changes to that information. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aifmd-directive-article-23-disclosure-to-investors-requirements.json #### Alternative Investment Fund Managers Directive (AIFMD) 2011/61/EU - Article 7: Application for authorisation - **ID**: eu-aifmd-directive-article-7-conditions-for-authorisation-aifms - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires Alternative Investment Fund Managers (AIFMs) to apply for and obtain authorisation from the competent authorities of their home Member State before commencing operations. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aifmd-directive-article-7-conditions-for-authorisation-aifms.json #### Alternative Investment Fund Managers Directive (AIFMD) 2011/61/EU - Article 8: Conditions for granting authorisation - **ID**: eu-aifmd-directive-article-8-application-for-authorisation-procedure - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the mandatory conditions that an Alternative Investment Fund Manager (AIFM) must meet for competent authorities to grant authorisation, including requirements for shareholder ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aifmd-directive-article-8-application-for-authorisation-procedure.json #### Directive (EU) 2024/1640 (AMLD6) - Mechanisms for the Prevention of Money Laundering and Terrorist Financing: FIUs, Beneficial Ownership Registers, Supervision and Cooperation - **ID**: eu-aml-directive-2024-1640-amld6-fius-beneficial-ownership-supervision - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2024/1640 of the European Parliament and of the Council of 31 May 2024 - the Sixth Anti-Money Laundering Directive (AMLD6) - is the directive component of the 2024 EU AML/CFT package al... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aml-directive-2024-1640-amld6-fius-beneficial-ownership-supervision.json #### Council Directive (EU) 2016/1164 of 12 July 2016 laying down rules against tax avoidance practices that directly affect the functioning of the internal market (ATAD1) - **ID**: eu-atad1-directive-2016-1164 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This directive establishes minimum standards for EU Member States to counter corporate tax avoidance by implementing five legally binding anti-abuse measures: an interest limitation rule (Article 4), ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-atad1-directive-2016-1164.json #### Council Directive (EU) 2017/952 of 29 May 2017 amending Directive (EU) 2016/1164 as regards hybrid mismatches with third countries - **ID**: eu-atad2-directive-2017-952-hybrids - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This directive (ATAD2) extends the EU's anti-tax avoidance rules to neutralize hybrid mismatch arrangements involving non-EU countries (third countries). It requires EU Member States to deny tax deduc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-atad2-directive-2017-952-hybrids.json #### EU Bank Recovery and Resolution Directive 2014/59 -- Bail-In, MREL, and Resolution Planning - **ID**: eu-bank-recovery-resolution-directive-2014-59 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: Directive 2014/59/EU (BRRD) establishes the EU framework for the recovery and resolution of credit institutions and investment firms. Institutions must prepare recovery plans with indicators and optio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-bank-recovery-resolution-directive-2014-59.json #### EU Benchmarks Regulation (BMR) 2016/1011 - EURIBOR, IBOR Transition, Critical Benchmark Framework - **ID**: eu-benchmark-regulation-2016-1011 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2016/1011 (BMR) governs the provision of, contribution to, and use of financial benchmarks in the EU. Critical benchmarks (EURIBOR, formerly LIBOR) require NCA authorisation of the adm... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-benchmark-regulation-2016-1011.json #### EU Benchmarks Regulation 2016/1011 (BMR) - Index Administration and IBOR Reform - **ID**: eu-benchmarks-regulation-bmr-2016-1011 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: EU Regulation 2016/1011 (BMR) establishes the regulatory framework for benchmark administrators and users in the EU. It requires administrators of critical benchmarks (EURIBOR, ESTR, SONIA) and signif... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-benchmarks-regulation-bmr-2016-1011.json #### EU BRRD2 Directive 2019/879 - MREL, Subordination & Resolution Planning - **ID**: eu-brrd-amending-directive-2019-879-brrd2 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Directive 2019/879 (BRRD2) amends the Bank Recovery and Resolution Directive (BRRD 2014/59/EU) to implement the FSB Total Loss-Absorbing Capacity (TLAC) standard for G-SIIs and introduce a new Minimum... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-brrd-amending-directive-2019-879-brrd2.json #### EU BRRD - Bank Recovery and Resolution Directive 2014/59/EU - **ID**: eu-brrd-bank-recovery-resolution-directive-2014-59 - **Category**: Banking & Global Finance - **Version**: 2.0.0 - **BLUF**: Directive 2014/59/EU (BRRD) establishes an EU-wide framework enabling competent authorities to resolve failing credit institutions and investment firms without taxpayer bailout - through bail-in, sale... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-brrd-bank-recovery-resolution-directive-2014-59.json #### CRD IV - EU Capital Requirements Directive 2013/36/EU (Basel III Implementation) - **ID**: eu-capital-requirements-directive-iv-2013-36-crd4 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Directive 2013/36/EU (CRD IV), which entered into force 17 July 2013 and applied from 1 January 2014, implements the Basel III accord within the European Union alongside the Capital Requirements Regul... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-capital-requirements-directive-iv-2013-36-crd4.json #### EU Capital Requirements Regulation (CRR) -- Basel III Prudential Standards for Credit Institutions - **ID**: eu-capital-requirements-regulation-2013-575 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: Regulation (EU) 575/2013 (CRR) implements Basel III prudential requirements for EU credit institutions and investment firms. Minimum capital ratios under Article 92 are: Common Equity Tier 1 (CET1) 4.... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-capital-requirements-regulation-2013-575.json #### EU CCP Recovery and Resolution Regulation 2021/23 - CCP R&R Framework - **ID**: eu-ccp-recovery-resolution-regulation-2021-23 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2021/23 establishes a framework for the recovery and resolution of central counterparties (CCPs). It requires CCPs to maintain recovery plans with loss allocation tools (variation marg... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ccp-recovery-resolution-regulation-2021-23.json #### Directive 2014/91/EU (UCITS V) - Depositary Functions, Remuneration Policies and Sanctions - **ID**: eu-celex-32014l0091 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Directive 2014/91/EU (UCITS V) amends the UCITS Directive 2009/65/EC to strengthen the depositary regime, introduce remuneration rules for management companies, and harmonise administrative sanctions.... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014l0091.json #### EU Consumer Credit Directive 2023/2225 - BNPL Coverage, AI Scoring Transparency, 14-Day Withdrawal - **ID**: eu-consumer-credit-directive-2023-2225 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Directive (EU) 2023/2225 of 18 October 2023 repeals and replaces Directive 2008/48/EC (Consumer Credit Directive). Key changes: scope extended to cover credit agreements from EUR 200 to EUR 100,000 (d... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-consumer-credit-directive-2023-2225.json #### EU Covered Bonds Directive 2019/2162 - European Covered Bond Framework - **ID**: eu-covered-bonds-directive-2019-2162 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2019/2162 harmonises the legal framework for covered bonds across the EU - defining covered bond structural requirements (dual recourse, dynamic cover pool, special public supervision) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-covered-bonds-directive-2019-2162.json #### Directive (EU) 2024/1619 of the European Parliament and of the Council of 31 May 2024 amending Directive 2013/36/EU as regards supervisory powers, sanctions, third-country branches, and environmental, social and governance risks, and amending Directive 2014/59/EU - **ID**: eu-crd-vi-2024 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This directive, part of the EU's Basel IV implementation, strengthens bank resilience by refining supervisory powers and introducing explicit requirements for institutions to identify, manage, and dis... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-crd-vi-2024.json #### EU CRA Regulation - Credit Rating Agencies Regulation 1060/2009 - **ID**: eu-credit-rating-agencies-regulation-1060-2009 - **Category**: Banking & Global Finance - **Version**: 2.1.0 - **BLUF**: Regulation (EC) No 1060/2009 (CRA Regulation) establishes binding rules for credit rating agencies operating in the EU - requiring registration with ESMA, mandatory disclosure of methodologies, manage... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-credit-rating-agencies-regulation-1060-2009.json #### EU European Crowdfunding Service Providers Regulation (ECSPR) 2020/1503 - EUR 5M Threshold, KIIS, EU Passport - **ID**: eu-crowdfunding-regulation-2020-1503 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2020/1503 (ECSPR) creates a harmonised EU framework for crowdfunding platforms facilitating business financing. Crowdfunding Service Providers (CSPs) must be authorised by their home N... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-crowdfunding-regulation-2020-1503.json #### EU CRR3 Capital Requirements Regulation 2024/1623 - Basel IV / Output Floor 72.5% - **ID**: eu-crr3-capital-requirements-regulation-2024-1623 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2024/1623 (CRR3) implements the Basel IV reforms in the EU. It introduces a 72.5% output floor limiting the benefit of internal models for capital calculation, revises standardised app... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-crr3-capital-requirements-regulation-2024-1623.json #### EU CSDR - Central Securities Depositories Regulation 909/2014 - **ID**: eu-csdr-regulation-909-2014 - **Category**: Banking & Global Finance - **Version**: 2.1.0 - **BLUF**: Regulation (EU) No 909/2014 (CSDR) harmonises rules for central securities depositories (CSDs) in the EU - requiring ESMA authorisation, T+2 settlement discipline, mandatory buy-in and cash penalties ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csdr-regulation-909-2014.json #### Council Directive (EU) 2021/514 of 22 March 2021 amending Directive 2011/16/EU on administrative cooperation in the field of taxation - **ID**: eu-dac7-platform-economy-reporting-2021-514 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Requires digital platform operators to collect, verify, and report information on income earned by sellers for relevant activities to EU Member State tax authorities for automatic exchange. Key due di... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dac7-platform-economy-reporting-2021-514.json #### EU Deposit Guarantee Schemes Directive 2014/49/EU (DGSD) - **ID**: eu-deposit-guarantee-schemes-directive-2014-49 - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: Directive 2014/49/EU (DGSD) harmonises deposit guarantee schemes (DGS) across the EU - mandating €100,000 per depositor per institution coverage, 7-business-day payout deadlines (phased to 2024), targ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-deposit-guarantee-schemes-directive-2014-49.json #### Council Directive (EU) 2017/1852 of 10 October 2017 on tax dispute resolution mechanisms in the European Union - **ID**: eu-dispute-resolution-directive-2017-1852 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This directive establishes a mandatory and binding dispute resolution mechanism for tax disputes between EU Member States arising from double taxation agreements. It requires that if a Mutual Agreemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dispute-resolution-directive-2017-1852.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 10: Detection - **ID**: eu-dora-2022-2554-article-10-detection-anomalous-activities - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must establish and maintain mechanisms to promptly detect anomalous activities, including ICT network performance issues and incidents, and to identify potential material single poi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-2022-2554-article-10-detection-anomalous-activities.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 15 Further harmonisation of ICT risk management tools, methods, processes and policies - **ID**: eu-dora-2022-2554-article-15-ict-business-continuity-policy - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article mandates the European Supervisory Authorities (ESAs) to develop common draft regulatory technical standards to further harmonise ICT risk management tools, methods, processes, and policie... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-2022-2554-article-15-ict-business-continuity-policy.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 17: ICT-related incident management process - **ID**: eu-dora-2022-2554-article-17-ict-related-incident-classification - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must define, establish, and implement a comprehensive ICT-related incident management process designed to detect, manage, and notify ICT-related incidents. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-2022-2554-article-17-ict-related-incident-classification.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 19: Reporting of major ICT-related incidents and voluntary notification of significant cyber threats - **ID**: eu-dora-2022-2554-article-19-incident-reporting-competent-authorities - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities are required to report all major ICT-related incidents to their designated competent authority. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-2022-2554-article-19-incident-reporting-competent-authorities.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 26: Advanced testing of ICT tools, systems and processes based on TLPT - **ID**: eu-dora-2022-2554-article-26-digital-operational-resilience-testing - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Mandates that specific financial entities conduct advanced Threat Led Penetration Testing (TLPT) at least every three years, with the frequency subject to adjustment by the competent authority based o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-2022-2554-article-26-digital-operational-resilience-testing.json #### REGULATION (EU) 2022/2554 on digital operational resilience for the financial sector - Article 28: Principle of sound management of ICT third-party risk - **ID**: eu-dora-2022-2554-article-28-ict-third-party-risk-management - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must manage ICT third-party risk as an integral part of their overall ICT risk framework, including maintaining a register of all ICT service contracts, performing due diligence bef... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-2022-2554-article-28-ict-third-party-risk-management.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 30: Key contractual provisions - **ID**: eu-dora-2022-2554-article-30-key-contractual-provisions-ict-third-party - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must ensure that contractual arrangements for the use of ICT services include specific, detailed provisions covering service descriptions, data management, security, incident respon... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-2022-2554-article-30-key-contractual-provisions-ict-third-party.json #### Regulation (EU) 2022/2554 on digital operational resilience for the financial sector - Article 5: Governance and organisation - **ID**: eu-dora-2022-2554-article-5-governance-arrangements-ict-risk - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must establish and maintain an internal governance and control framework to effectively and prudently manage all ICT risk, ensuring a high level of digital operational resilience. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-2022-2554-article-5-governance-arrangements-ict-risk.json #### Regulation (EU) 2022/2554 (DORA) Article 8: Identification and Classification of ICT Supported Business Functions and Assets - **ID**: eu-dora-2022-2554-article-8-identification-classification-ict-assets - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial entities must identify, classify, document, and annually review all ICT-supported business functions, information assets, and ICT assets as part of their ICT risk management framework. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-2022-2554-article-8-identification-classification-ict-assets.json #### Regulation (EU) 2022/2554 on digital operational resilience for financial entities (DORA) - ICT Third-Party Risk in Automated Workflows: Contractual Requirements, Concentration Risk and Oversight of Critical Providers - **ID**: eu-dora-ict-third-party-workflow-outsourcing - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: DORA mandates financial entities to establish robust governance, risk assessment, and oversight mechanisms for ICT third-party service providers, particularly those supporting critical or important fu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-ict-third-party-workflow-outsourcing.json #### EU DORA Regulation 2022/2554 - Digital Operational Resilience for Financial Sector Entities - **ID**: eu-dora-regulation-2022-2554-digital-operational-resilience-financial-sector - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2022/2554 (Digital Operational Resilience Act, DORA) became applicable on 17 January 2025. It imposes ICT risk management, incident reporting, digital operational resilience testing, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-regulation-2022-2554-digital-operational-resilience-financial-sector.json #### Commission Delegated Regulation (EU) 2024/1774 - Regulatory Technical Standards Specifying ICT Risk Management Tools, Methods, Processes, and Policies and the Simplified ICT Risk Management Framework (DORA Level 2 RTS, Articles 15 and 16(3)) - **ID**: eu-dora-rts-ict-risk-management-framework-2024-1774 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation (EU) 2024/1774 of 13 March 2024 supplements DORA (Regulation (EU) 2022/2554) by setting out regulatory technical standards on the harmonised ICT risk management framewo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-rts-ict-risk-management-framework-2024-1774.json #### Commission Delegated Regulation (EU) 2024/1773 - Regulatory Technical Standards on the Detailed Content of the Policy Regarding Contractual Arrangements on the Use of ICT Services Supporting Critical or Important Functions Provided by ICT Third-Party Service Providers (DORA Level 2 RTS, Article 28(10)) - **ID**: eu-dora-rts-ict-third-party-policy-2024-1773 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation (EU) 2024/1773 of 13 March 2024 supplements DORA (Regulation (EU) 2022/2554) by setting out regulatory technical standards on the detailed content of the policy that fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-rts-ict-third-party-policy-2024-1773.json #### Commission Delegated Regulation (EU) 2024/1772 - Regulatory Technical Standards Specifying the Criteria for the Classification of ICT-Related Incidents and Cyber Threats, Setting Out Materiality Thresholds and Specifying the Details of Reports of Major Incidents (DORA Level 2 RTS, Article 18(4)) - **ID**: eu-dora-rts-incident-classification-2024-1772 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation (EU) 2024/1772 of 13 March 2024 supplements DORA (Regulation (EU) 2022/2554) by setting out regulatory technical standards specifying the criteria for the classificatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-rts-incident-classification-2024-1772.json #### EU E-Money Directive 2009/110/EC - Second E-Money Directive (EMD2) Electronic Money Institution Framework - **ID**: eu-e-money-directive-2009-110 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Directive 2009/110/EC of the European Parliament and of the Council of 16 September 2009 on the taking up, pursuit and prudential supervision of the business of electronic money institutions (the Seco... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-e-money-directive-2009-110.json #### EU EBA SREP Guidelines 2018 (EBA/GL/2018/03) - Supervisory Review and Evaluation Process - **ID**: eu-eba-srep-guidelines-2018 - **Category**: Banking & Global Finance - **Version**: 2023.1.1 - **BLUF**: The European Banking Authority's SREP Guidelines (EBA/GL/2018/03, updated 2023) establish a common EU-wide methodology for competent authorities to assess banks' business model viability, internal gov... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eba-srep-guidelines-2018.json #### EU Electronic Money Directive 2009/110 (EMD2) - **ID**: eu-electronic-money-directive-2009-110 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Directive 2009/110/EC of the European Parliament and of the Council, in force 30 October 2009 with Member State transposition required by 30 April 2011, establishes the authorisation regime for electr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electronic-money-directive-2009-110.json #### Regulation (EU) 2019/834 of the European Parliament and of the Council of 20 May 2019 amending Regulation (EU) No 648/2012 as regards the clearing obligation, the suspension of the clearing obligation, the reporting requirements, the risk-mitigation techniques for OTC derivative contracts not cleared by a central counterparty, the registration and supervision of trade repositories and the requirements for trade repositories (Text with EEA relevance) - **ID**: eu-emir-refit-2019-834-derivatives-reporting - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation amends EMIR to refine the clearing obligation, reporting requirements, and risk-mitigation techniques for OTC derivatives, particularly focusing on small financial counterparties and t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-emir-refit-2019-834-derivatives-reporting.json #### EU EMIR Refit Regulation 2019/834 - Streamlined Derivatives Reporting & Pension Exemption - **ID**: eu-emir-refit-regulation-2019-834 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation 2019/834 (EMIR Refit) amends EMIR 648/2012 to reduce disproportionate compliance burdens. Key changes: small financial counterparties (SFCs, below EMIR clearing thresholds) are exempt from ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-emir-refit-regulation-2019-834.json #### EU EMIR - European Market Infrastructure Regulation 648/2012 - **ID**: eu-emir-regulation-648-2012 - **Category**: Banking & Global Finance - **Version**: 2.1.0 - **BLUF**: Regulation (EU) No 648/2012 (EMIR) mandates central clearing of standardised OTC derivatives through authorised CCPs, bilateral risk mitigation for non-cleared trades, and trade reporting to registere... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-emir-regulation-648-2012.json #### EU EMIR Regulation 648/2012 - OTC Derivatives Clearing, Reporting & Risk Mitigation - **ID**: eu-emir-regulation-648-2012-otc-derivatives-clearing-reporting - **Category**: Banking & Global Finance - **Version**: 2.0 - **BLUF**: EMIR Regulation 648/2012 requires central clearing of standardised OTC derivatives by CCPs, bilateral risk mitigation for non-cleared derivatives, and reporting of all derivative contracts to trade re... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-emir-regulation-648-2012-otc-derivatives-clearing-reporting.json #### EU ESMA Regulation 1095/2010 - European Securities and Markets Authority Powers & Supervisory Convergence - **ID**: eu-esma-regulation-1095-2010 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation 1095/2010 established the European Securities and Markets Authority (ESMA) as the EU supervisory authority for securities and capital markets. ESMA has binding direct supervisory authority ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esma-regulation-1095-2010.json #### EU ESRB Regulation 1092/2010 - European Systemic Risk Board Macro-Prudential Framework - **ID**: eu-esrb-regulation-1092-2010 - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: Regulation (EU) 1092/2010 establishes the European Systemic Risk Board (ESRB) responsible for macro-prudential oversight of the EU financial system. The ESRB monitors systemic risk, issues risk warnin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrb-regulation-1092-2010.json #### EU Financial Conglomerates Directive 2002/87 (FICOD) - Supplementary Supervision - **ID**: eu-financial-conglomerates-directive-2002-87 - **Category**: Banking & Global Finance - **Version**: 1.2.1 - **BLUF**: Directive 2002/87/EC (FICOD) establishes supplementary supervision of credit institutions, insurance undertakings, and investment firms that form part of a financial conglomerate - a group with signif... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-financial-conglomerates-directive-2002-87.json #### Council Directive (EU) 2022/2523 of 14 December 2022 on ensuring a global minimum level of taxation for multinational enterprise groups and large-scale domestic groups in the Union - **ID**: eu-global-minimum-tax-directive-2022-2523 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This directive implements the OECD's Pillar Two rules, requiring multinational enterprise (MNE) and large-scale domestic groups with annual consolidated revenues of EUR 750 million or more to pay a mi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-global-minimum-tax-directive-2022-2523.json #### Regulation (EU) 2024/886 of the European Parliament and of the Council of 13 March 2024 amending Regulations (EU) No 260/2012 and (EU) 2021/1230 and Directives 98/26/EC and (EU) 2015/2366 as regards instant credit transfers in euro - **ID**: eu-instant-payments-regulation-2024 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation mandates that Payment Service Providers (PSPs) in the SEPA area offering standard euro credit transfers must also offer the service of sending and receiving instant credit transfers 24... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-instant-payments-regulation-2024.json #### EU Instant Payments Regulation 2024/886 - Mandatory SCT Inst, 10-Second Execution - **ID**: eu-instant-payments-regulation-2024-886 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2024/886 amends the SEPA Regulation (260/2012) to make instant credit transfers in euros mandatory for all EU PSPs. PSPs must be able to send and receive instant payments within 10 sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-instant-payments-regulation-2024-886.json #### Judgment of the Court (Grand Chamber) of 1 March 2011 in Case C-236/09, Association belge des Consommateurs Test-Achats ASBL and Others v Conseil des ministres (Test-Achats Ruling) - **ID**: eu-insurance-anti-discrimination-gender-test-achats - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This European Court of Justice ruling invalidates the derogation in Article 5(2) of Directive 2004/113/EC, prohibiting insurers from using an individual's gender as a risk factor in calculating premiu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-insurance-anti-discrimination-gender-test-achats.json #### Directive (EU) 2016/97 of the European Parliament and of the Council of 20 January 2016 on insurance distribution (recast) - **ID**: eu-insurance-distribution-directive-2016-97-idd - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The EU Insurance Distribution Directive (IDD) mandates that all distributors of insurance products, including insurers and intermediaries, must act in the customer's best interests (Article 17), imple... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-insurance-distribution-directive-2016-97-idd.json #### EU Interchange Fees Regulation 2015/751 - 0.2%/0.3% Interchange Fee Caps - **ID**: eu-interchange-fees-regulation-2015-751 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2015/751 caps interchange fees for consumer card-based payment transactions: 0.2% of transaction value for debit cards and 0.3% for credit cards. It prohibits unilateral limitations on... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-interchange-fees-regulation-2015-751.json #### EU Investment Firm Regulation (IFR) 2019/2033 - K-Factor Capital Requirements - **ID**: eu-investment-firm-regulation-2019-2033 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2019/2033 establishes a bespoke prudential regime for EU investment firms, replacing CRR/CRD IV for most investment firms. It introduces three firm classes, K-factor capital requiremen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-investment-firm-regulation-2019-2033.json #### Directive (EU) 2016/2341 of the European Parliament and of the Council of 14 December 2016 on the activities and supervision of institutions for occupational retirement provision (IORPs) - **ID**: eu-iorp-ii-directive-2016-2341-occupational-pensions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This directive establishes a risk-based supervisory framework for Institutions for Occupational Retirement Provision (IORPs) in the EU, mandating robust governance systems, effective risk management, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-iorp-ii-directive-2016-2341-occupational-pensions.json #### EU Interest Rate Risk in the Banking Book (IRRBB) - BCBS Standards 368 and EBA Guidelines - **ID**: eu-irrbb-bcbs-standards-2016 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: IRRBB standards (BCBS April 2016 and EBA/GL/2018/02) require banks to measure, manage, and report interest rate risk in the banking book using Economic Value of Equity (EVE) and Net Interest Income (N... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-irrbb-bcbs-standards-2016.json #### EU Large Exposures Framework - CRR Articles 387-403 - **ID**: eu-large-exposures-crr-article-395 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: EU CRR Articles 387-403 cap a credit institution's exposure to any single client or connected clients group at 25% of eligible capital (15% for G-SIIs and O-SIIs on an intra-financial-sector basis); l... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-large-exposures-crr-article-395.json #### Market Abuse Regulation (EU) No 596/2014 (MAR) - Article 10: Unlawful disclosure of inside information - **ID**: eu-mar-regulation-article-10-unlawful-disclosure-inside-information - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article prohibits any person possessing inside information from unlawfully disclosing it to any other person, except when such disclosure is a normal part of their employment, profession, or duti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mar-regulation-article-10-unlawful-disclosure-inside-information.json #### Market Abuse Regulation (EU) No 596/2014 - Article 14: Prohibition of insider dealing and of unlawful disclosure of inside information - **ID**: eu-mar-regulation-article-14-prohibition-insider-dealing-market-manipulation - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article prohibits any person from engaging in or attempting to engage in insider dealing, recommending or inducing others to engage in insider dealing, and unlawfully disclosing inside informatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mar-regulation-article-14-prohibition-insider-dealing-market-manipulation.json #### Regulation (EU) No 596/2014 on market abuse (market abuse regulation) - Article 15: Prohibition of market manipulation - **ID**: eu-mar-regulation-article-15-market-soundings-obligations - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes a strict and absolute prohibition for any person to engage in, or attempt to engage in, market manipulation. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mar-regulation-article-15-market-soundings-obligations.json #### Market Abuse Regulation (EU) No 596/2014 (MAR) Article 17: Public disclosure of inside information - **ID**: eu-mar-regulation-article-17-public-disclosure-of-inside-information - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Issuers must publicly disclose inside information that directly concerns them as soon as possible. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mar-regulation-article-17-public-disclosure-of-inside-information.json #### Market Abuse Regulation (EU) No 596/2014 (MAR) Article 18: Insider lists - **ID**: eu-mar-regulation-article-18-insider-lists-maintenance-obligations - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Issuers and their agents must create and maintain a list of all individuals who have access to inside information, known as an insider list. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mar-regulation-article-18-insider-lists-maintenance-obligations.json #### Market Abuse Regulation (EU) No 596/2014 - Article 19: Managers’ transactions - **ID**: eu-mar-regulation-article-19-managers-transactions-disclosure - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires persons discharging managerial responsibilities (PDMRs) and their closely associated persons (PCAs) to notify both the issuer or emission allowance market participant and the com... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mar-regulation-article-19-managers-transactions-disclosure.json #### Regulation (EU) No 596/2014 on market abuse (market abuse regulation) - Article 20: Investment recommendations and statistics - **ID**: eu-mar-regulation-article-20-investment-recommendations-fair-presentation - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Organizations producing or disseminating investment recommendations must ensure objective presentation and disclose any interests or conflicts of interest related to the financial instruments involved... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mar-regulation-article-20-investment-recommendations-fair-presentation.json #### Market Abuse Regulation (EU) No 596/2014 (MAR) Article 7: Inside information - **ID**: eu-mar-regulation-article-7-definition-inside-information - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the comprehensive definition of 'inside information' for financial instruments, commodity derivatives, and emission allowances, specifying the criteria of precision, non-publi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mar-regulation-article-7-definition-inside-information.json #### Market Abuse Regulation (EU) No 596/2014 (MAR) Article 8: Insider dealing - **ID**: eu-mar-regulation-article-8-insider-dealing-prohibition - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article prohibits persons who possess inside information from using it to acquire or dispose of related financial instruments, cancel or amend prior orders, or submit, modify, or withdraw bids in... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mar-regulation-article-8-insider-dealing-prohibition.json #### Regulation (EU) 596/2014 - Market Abuse Regulation (MAR): Insider Dealing Prohibition, Market Manipulation Ban, Article 17 Inside Information Disclosure Delay, EUR 20,000 PDMR Notification Threshold (as amended by Listing Act 2024/2809), Insider Lists, and Suspicious Transaction Reporting - **ID**: eu-market-abuse-regulation-596-2014 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 596/2014 (Market Abuse Regulation, MAR), applicable from 3 July 2016, is the primary EU instrument prohibiting market abuse and ensuring market integrity; it prohibits: (i) insider dea... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-market-abuse-regulation-596-2014.json #### EU Mortgage Credit Directive 2014/17/EU (MCD) - Responsible Mortgage Lending - **ID**: eu-mcd-mortgage-credit-directive-2014-17 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Directive 2014/17/EU (MCD) harmonises EU standards for residential mortgage credit. It mandates a European Standardised Information Sheet (ESIS) for pre-contractual disclosure, creditworthiness assess... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mcd-mortgage-credit-directive-2014-17.json #### Regulation (EU) 2023/1114 on markets in crypto-assets (MiCA) - Article 16: Authorisation - **ID**: eu-mica-2023-1114-article-16-obligations-issuers-asset-referenced-tokens - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article prohibits any person from offering an asset-referenced token to the public or seeking its admission to trading within the EU unless they are the authorized issuer of that token. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-2023-1114-article-16-obligations-issuers-asset-referenced-tokens.json #### REGULATION (EU) 2023/1114 on markets in crypto-assets - Article 35: Governance arrangements - **ID**: eu-mica-2023-1114-article-35-issuers-e-money-tokens-obligations - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires issuers of e-money tokens to establish and maintain robust governance arrangements, including a clear organizational structure, risk management processes, internal controls, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-2023-1114-article-35-issuers-e-money-tokens-obligations.json #### REGULATION (EU) 2023/1114 on markets in crypto-assets - Article 45: General obligations for crypto-asset service providers - **ID**: eu-mica-2023-1114-article-45-obligations-crypto-asset-service-providers - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the general obligations for crypto-asset service providers to act honestly, fairly, and professionally in the best interests of their clients, and to maintain effective organi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-2023-1114-article-45-obligations-crypto-asset-service-providers.json #### REGULATION (EU) 2023/1114 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 31 May 2023 on markets in crypto-assets - Article 70: Prevention and detection of market abuse - **ID**: eu-mica-2023-1114-article-70-market-abuse-crypto-assets - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires any person professionally arranging or executing transactions in crypto-assets to establish, maintain, and apply effective arrangements, systems, and procedures to prevent, detec... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-2023-1114-article-70-market-abuse-crypto-assets.json #### EU MiFID II Directive 2014/65 - Investment Firm Conduct of Business and Client Protection Obligations - **ID**: eu-mifid-ii-directive-2014-65-investment-firm-conduct-obligations - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Directive 2014/65/EU (MiFID II) and Regulation (EU) 600/2014 (MiFIR) establish the regulatory framework for investment firms providing investment services in the EU. Key obligations include client cat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mifid-ii-directive-2014-65-investment-firm-conduct-obligations.json #### Directive 2014/65/EU on markets in financial instruments (MiFID II) Article 16: Organisational requirements - **ID**: eu-mifid2-2014-65-article-16-organisational-requirements-investment-firms - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires investment firms to establish and maintain robust organisational, administrative, and governance arrangements to ensure compliance with regulations, manage conflicts of interest,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mifid2-2014-65-article-16-organisational-requirements-investment-firms.json #### DIRECTIVE 2014/65/EU on markets in financial instruments, Article 24: General principles and information to clients - **ID**: eu-mifid2-2014-65-article-24-general-principles-client-protection - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires investment firms to act honestly, fairly, and professionally in accordance with the best interests of their clients, ensuring all information provided is fair, clear, and not mis... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mifid2-2014-65-article-24-general-principles-client-protection.json #### Directive 2014/65/EU on markets in financial instruments (MiFID II), Article 25: Assessment of suitability and appropriateness and reporting to clients - **ID**: eu-mifid2-2014-65-article-25-assessment-suitability-appropriateness - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires investment firms to assess the suitability or appropriateness of financial instruments and services for their clients, based on the client's knowledge, experience, financial situ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mifid2-2014-65-article-25-assessment-suitability-appropriateness.json #### Directive 2014/65/EU on markets in financial instruments (MiFID II), Article 27: Obligation to execute orders on terms most favourable to the client - **ID**: eu-mifid2-2014-65-article-27-best-execution-client-orders - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Investment firms must take all sufficient steps to obtain the best possible result for their clients when executing orders, considering factors like price, costs, speed, and likelihood of execution. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mifid2-2014-65-article-27-best-execution-client-orders.json #### Directive 2014/65/EU of the European Parliament and of the Council of 15 May 2014 on markets in financial instruments, Article 17: Algorithmic trading - **ID**: eu-mifid2-directive-article-17-algorithmic-trading-requirements - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Investment firms engaging in algorithmic trading must implement effective systems, risk controls, and business continuity arrangements to ensure system resilience, prevent disorderly markets, and comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mifid2-directive-article-17-algorithmic-trading-requirements.json #### Directive 2014/65/EU of the European Parliament and of the Council of 15 May 2014 on markets in financial instruments (MiFID II), Article 23: Conflicts of interest - **ID**: eu-mifid2-directive-article-23-conflicts-of-interest-investment-firms - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Investment firms must take all appropriate steps to identify, prevent, or manage conflicts of interest, and where these measures are insufficient, they must disclose the nature and sources of such con... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mifid2-directive-article-23-conflicts-of-interest-investment-firms.json #### Directive 2014/65/EU of the European Parliament and of the Council of 15 May 2014 on markets in financial instruments (MiFID II), Article 24: General principles and information to clients - **ID**: eu-mifid2-directive-article-24-conduct-of-business-obligations-clients - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires investment firms to act honestly, fairly, and professionally in the best interests of their clients, providing clear information on services, instruments, costs, and risks, and a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mifid2-directive-article-24-conduct-of-business-obligations-clients.json #### Directive 2014/65/EU of the European Parliament and of the Council of 15 May 2014 on markets in financial instruments - Article 28: Obligation for systematic internalisers to make public firm quotes - **ID**: eu-mifid2-directive-article-28-systematic-internalisers-quoting-obligations - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires investment firms acting as systematic internalisers to make public firm quotes for liquid shares up to a standard market size and to execute client orders at those quoted prices ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mifid2-directive-article-28-systematic-internalisers-quoting-obligations.json #### Directive 2014/65/EU of the European Parliament and of the Council of 15 May 2014 on markets in financial instruments, Article 36: Authorisation - **ID**: eu-mifid2-directive-article-36-authorisation-regulated-markets - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the core requirements for obtaining and maintaining authorisation as a regulated market, focusing on the legal status, organisational structure, risk management, and fitness o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mifid2-directive-article-36-authorisation-regulated-markets.json #### EU Money Market Funds Regulation 2017/1131/EU (MMFR) - **ID**: eu-money-market-funds-regulation-2017-1131 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2017/1131 (MMFR) establishes a harmonised EU framework for money market funds (MMFs) - prescribing four authorised MMF types (VNAV, LVNAV, Public Debt CNAV, Standard VNAV), portfolio m... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-money-market-funds-regulation-2017-1131.json #### Directive 2009/103/EC of the European Parliament and of the Council of 16 September 2009 relating to insurance against civil liability in respect of the use of motor vehicles, and the enforcement of the obligation to insure against such liability, as amended by Directive (EU) 2021/2118 - **ID**: eu-motor-insurance-directive-2009-103-revised - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Directive mandates compulsory third-party liability insurance for all motor vehicles based in the EU, ensuring minimum coverage amounts and establishing mechanisms to protect victims in cases of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-motor-insurance-directive-2009-103-revised.json #### EU NPL Credit Servicers Directive 2021/2167 - Non-Performing Loan Secondary Market - **ID**: eu-npl-credit-servicers-regulation-2021-2167 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Directive (EU) 2021/2167 creates a harmonised EU framework for credit servicers and credit purchasers of non-performing loans (NPLs) issued by EU credit institutions. Credit servicers must be authoris... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-npl-credit-servicers-regulation-2021-2167.json #### EU Net Stable Funding Ratio (NSFR) - CRR2 Articles 428b-428at - **ID**: eu-nsfr-net-stable-funding-ratio-crr2-2019 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: The EU NSFR (CRR2 Articles 428b-428at, applicable from 28 June 2021) requires credit institutions and investment firms to maintain a ratio of Available Stable Funding (ASF) to Required Stable Funding ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nsfr-net-stable-funding-ratio-crr2-2019.json #### EU Payment Accounts Directive 2014/92/EU (PAD) - Basic Bank Account Right & Fee Transparency - **ID**: eu-payment-accounts-directive-2014-92 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Directive 2014/92/EU (PAD) guarantees EU residents the right to open a basic payment account at a credit institution regardless of nationality, residence status, or financial situation. It mandates an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-payment-accounts-directive-2014-92.json #### EU Payment Services Directive 2 (PSD2) -- Open Banking and Strong Customer Authentication - **ID**: eu-payment-services-directive-2-2015-2366 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: Directive (EU) 2015/2366 (PSD2) governs payment services in the EU, replacing PSD1 (2007/64/EC). It introduces mandatory open banking access-to-account (XS2A) for licensed Payment Initiation Service P... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-payment-services-directive-2-2015-2366.json #### EU PEPP Regulation 2019/1238 - Pan-European Personal Pension Product - **ID**: eu-pepp-regulation-2019-1238 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2019/1238 creates a standardised pan-European personal pension product (PEPP) with a 1% annual cost cap on the Basic PEPP, portability across EU member states without loss of tax treat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pepp-regulation-2019-1238.json #### Regulation (EU) No 1286/2014 of the European Parliament and of the Council of 26 November 2014 on key information documents for packaged retail and insurance-based investment products (PRIIPs) - **ID**: eu-priips-regulation-1286-2014-kid - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation requires manufacturers of Packaged Retail and Insurance-based Investment Products (PRIIPs) to produce a standardized, pre-contractual Key Information Document (KID) for retail investor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-priips-regulation-1286-2014-kid.json #### EU Prospectus Regulation 2017/1129 - Securities Offering and Admission to Trading Disclosure Framework - **ID**: eu-prospectus-regulation-2017-1129 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2017/1129 of the European Parliament and of the Council of 14 June 2017 on the prospectus to be published when securities are offered to the public or admitted to trading on a regulate... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-prospectus-regulation-2017-1129.json #### Directive (EU) 2015/2366 of the European Parliament and of the Council of 25 November 2015 on payment services in the internal market, amending Directives 2002/65/EC, 2009/110/EC and 2013/36/EU and Regulation (EU) No 1093/2010, and repealing Directive 2007/64/EC (Text with EEA relevance) - **ID**: eu-psd2-api-open-banking-workflow-2015-2366 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The EU PSD2 Directive mandates strong customer authentication (SCA) for electronic payments, grants third-party providers (AISPs and PISPs) access to bank account data and payment initiation via APIs ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-psd2-api-open-banking-workflow-2015-2366.json #### EU PSD2 Open Banking API Access Standards - XS2A Framework and Berlin Group NextGenPSD2 - **ID**: eu-psd2-open-banking-api-standards - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Berlin Group NextGenPSD2 framework provides a standardized API specification for European banks (ASPSPs) to grant Third-Party Providers (TPPs) secure access to customer accounts for information an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-psd2-open-banking-api-standards.json #### Commission Delegated Regulation (EU) 2018/389 of 27 November 2017 supplementing Directive (EU) 2015/2366 with regard to regulatory technical standards for strong customer authentication and common and secure open standards of communication - **ID**: eu-psd2-rts-strong-customer-auth-2018 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The regulation mandates that every remote electronic payment must be protected by strong customer authentication (SCA) that dynamically links the authentication code to the transaction amount and paye... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-psd2-rts-strong-customer-auth-2018.json #### Commission Delegated Regulation (EU) 2018/389 of 27 November 2017 supplementing Directive (EU) 2015/2366 of the European Parliament and of the Council with regard to regulatory technical standards for strong customer authentication and common and secure open standards of communication - **ID**: eu-psd2-strong-customer-authentication - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation requires Payment Service Providers (PSPs) in the EU to apply Strong Customer Authentication (SCA) when a customer initiates an electronic payment, accesses their payment account online... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-psd2-strong-customer-authentication.json #### Proposal for a Regulation on payment services in the internal market (PSR) and a Directive on payment services and electronic money services in the Internal Market (PSD3) - **ID**: eu-psd3-proposal-2023 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This proposal evolves PSD2 to enhance consumer protection, improve open banking competition, and strengthen enforcement by introducing stricter Strong Customer Authentication (SCA) rules, expanding da... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-psd3-proposal-2023.json #### Proposal for a Regulation of the European Parliament and of the Council on payment services in the internal market and amending Regulation (EU) No 1093/2010 - **ID**: eu-psr-2023 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes directly applicable rules for payment service providers (PSPs) in the EU, replacing PSD2 to combat payment fraud through enhanced Strong Customer Authentication (SCA) and n... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-psr-2023.json #### Directive (EU) 2021/2101 of the European Parliament and of the Council of 24 November 2021 amending Directive 2013/34/EU as regards disclosure of income tax information by certain undertakings and branches - **ID**: eu-public-cbcr-directive-2021-2101 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This directive mandates public country-by-country reporting (CbCR) of income tax information for multinational enterprises (MNEs) and standalone undertakings with total consolidated revenue exceeding ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-public-cbcr-directive-2021-2101.json #### Regulation (EU) 2022/585 amending Regulations (EU) No 514/2014, (EU) No 516/2014 and (EU) 2021/1147 on Asylum, Migration and Integration Fund - **ID**: eu-reg-2022-0585-amending-regulations-eu-no-514-2014-laying-down-general-prov - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2022/585 of the European Parliament and of the Council, adopted on 6 April 2022, amends Regulations (EU) No 514/2014, (EU) No 516/2014, and (EU) 2021/1147 to address urgent migration, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2022-0585-amending-regulations-eu-no-514-2014-laying-down-general-prov.json #### Regulation (EU) 2022/2463 establishing an instrument for providing support to Ukraine for 2023 (macro-financial assistance +) - **ID**: eu-reg-2022-2463-establishing-an-instrument-for-providing-support-to-ukraine - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Regulation establishes the Instrument for providing Union support to Ukraine (macro-financial assistance +) for 2023, in the form of loans up to EUR 18 billion for the period from 1 January 2023 ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2022-2463-establishing-an-instrument-for-providing-support-to-ukraine.json #### Regulation (EU) 2023/2859 establishing a European single access point providing centralised access to publicly available information of relevance to financial services, capital markets and sustainability - **ID**: eu-reg-2023-2859-establishing-a-european-single-access-point-providing-centra - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Regulation establishes a European single access point (ESAP) to provide centralised electronic access to publicly available information of relevance to financial services, capital markets and sus... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2023-2859-establishing-a-european-single-access-point-providing-centra.json #### Regulation (EU) 2024/2773 establishing the Ukraine Loan Cooperation Mechanism and providing exceptional macro-financial assistance to Ukraine - **ID**: eu-reg-2024-2773-establishing-the-ukraine-loan-cooperation-mechanism-and-prov - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Regulation establishes the Ukraine Loan Cooperation Mechanism (the Mechanism) to provide Ukraine with non-repayable financial support to assist it in repaying the principal, interest, and any oth... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2024-2773-establishing-the-ukraine-loan-cooperation-mechanism-and-prov.json #### Commission Implementing Regulation (EU) 2025/216 of 6 February 2025 laying down technical information for the calculation of technical provisions and basic own funds for reporting with reference dates from 31 December 2024 until 30 March 2025 in accordance with Directive 2009/138/EC - **ID**: eu-reg-2025-0216-implementing-regulation-eu-2025-216-of-6-february-2025-layin - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Commission Implementing Regulation (EU) 2025/216, adopted on 6 February 2025, provides technical information for the calculation of technical provisions and basic own funds by insurance and reins... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0216-implementing-regulation-eu-2025-216-of-6-february-2025-layin.json #### Commission Implementing Regulation (EU) 2025/302 of 23 October 2024 laying down implementing technical standards for standard forms, templates and procedures for financial entities to report major ICT-related incidents and notify significant cyber threats - **ID**: eu-reg-2025-0302-implementing-regulation-eu-2025-302-of-23-october-2024-layin - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/302 of 23 October 2024 lays down implementing technical standards for the application of Regulation (EU) 2022/2554 (DORA). It specifies the standard forms,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0302-implementing-regulation-eu-2025-302-of-23-october-2024-layin.json #### Commission Implementing Regulation (EU) 2025/304 laying down standard forms templates and procedures for notification by financial entities of intention to provide crypto-asset services - **ID**: eu-reg-2025-0304-implementing-regulation-eu-2025-304-of-31-october-2024-layin - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/304, adopted on 31 October 2024 and published on 20 February 2025, lays down implementing technical standards for the application of Regulation (EU) 2023/1... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0304-implementing-regulation-eu-2025-304-of-31-october-2024-layin.json #### Directive 2005/68/EC of the European Parliament and of the Council of 16 November 2005 on reinsurance and amending Council Directives 73/239/EEC, 92/49/EEC as well as Directives 98/78/EC and 2002/83/EC - **ID**: eu-reinsurance-directive-2005-68-framework - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This directive establishes a harmonised prudential framework for reinsurance undertakings within the European Union, requiring them to obtain a single official authorisation from their home Member Sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reinsurance-directive-2005-68-framework.json #### EU Securitisation Regulation 2017/2402 - STS Framework, 5% Risk Retention, ESMA Repository - **ID**: eu-securitisation-regulation-2017-2402 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2017/2402 establishes a common EU securitisation framework and creates the Simple, Transparent and Standardised (STS) label. Key requirements: Article 6 - mandatory 5% risk retention b... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-securitisation-regulation-2017-2402.json #### EU SEPA Regulation 260/2012 - Single Euro Payments Area Credit Transfers and Direct Debits - **ID**: eu-sepa-regulation-260-2012 - **Category**: Banking & Global Finance - **Version**: 1.2.1 - **BLUF**: Regulation (EU) 260/2012 establishes technical and business requirements for SEPA credit transfers (SCT) and SEPA direct debits (SDD) in euros, mandating IBAN as the sole account identifier, ISO 20022... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sepa-regulation-260-2012.json #### EU SFDR (Sustainable Finance Disclosure Regulation) 2019/2088 - ESG Disclosure Obligations for Financial Market Participants and Financial Advisers - **ID**: eu-sfdr-regulation-2019-2088-sustainable-finance-disclosure - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: SFDR (Regulation EU 2019/2088) requires financial market participants (investment managers, insurance companies, pension funds, banks with portfolio management) and financial advisers to make standard... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sfdr-regulation-2019-2088-sustainable-finance-disclosure.json #### EU SFTR - Securities Financing Transactions Regulation 2015/2365 - **ID**: eu-sftr-2015-2365 - **Category**: Banking & Global Finance - **Version**: 2.0.0 - **BLUF**: Regulation (EU) 2015/2365 (SFTR) introduces mandatory reporting of all securities financing transactions (repos, securities lending, buy-sell backs, total return swaps) to registered trade repositorie... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sftr-2015-2365.json #### EU Securities Financing Transactions Regulation 2015/2365 (SFTR) - Transparency and Reporting - **ID**: eu-sftr-securities-financing-transactions-2015-2365 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: EU Regulation 2015/2365 (SFTR) requires counterparties to securities financing transactions (SFTs) - including repos, reverse repos, securities lending, securities borrowing, buy-sell-backs, sell-buy-... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sftr-securities-financing-transactions-2015-2365.json #### EU Short Selling Regulation 236/2012 - Short Selling and CDS Restrictions - **ID**: eu-short-selling-regulation-236-2012 - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: Regulation (EU) No 236/2012 (SSR) imposes transparency obligations on significant short positions in EU-listed shares (0.2%/0.5% thresholds), net short positions in EU sovereign debt, restrictions on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-short-selling-regulation-236-2012.json #### EU Single Resolution Mechanism Regulation 806/2014 (SRMR) - **ID**: eu-single-resolution-mechanism-regulation-806-2014 - **Category**: Banking & Global Finance - **Version**: 2.0.0 - **BLUF**: Regulation (EU) No 806/2014 (SRMR) establishes the Single Resolution Mechanism (SRM) - the second pillar of the EU Banking Union - creating the Single Resolution Board (SRB) as the central resolution ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-single-resolution-mechanism-regulation-806-2014.json #### EU Single Supervisory Mechanism Regulation 1024/2013 (SSMR) - ECB Banking Supervision - **ID**: eu-single-supervisory-mechanism-regulation-1024-2013 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation 1024/2013 confers on the ECB specific tasks concerning prudential supervision of credit institutions in the euro area and participating non-euro Member States. The ECB directly supervises S... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-single-supervisory-mechanism-regulation-1024-2013.json #### Directive of the European Parliament and of the Council amending Directive 2009/138/EC as regards proportionality, quality of supervision, reporting, long-term guarantee measures, macro-prudential tools, sustainability risks, group and cross-border supervision - **ID**: eu-solvency-ii-2023-review-omnibus-ii-amend - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This directive amends Solvency II (2009/138/EC) to refine capital requirements and risk management for EU insurers, notably by recalibrating the Volatility Adjustment (VA) to better absorb market shoc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-2023-review-omnibus-ii-amend.json #### Directive 2009/138/EC of the European Parliament and of the Council of 25 November 2009 on the taking-up and pursuit of the business of Insurance and Reinsurance (Solvency II) - **ID**: eu-solvency-ii-directive-2009-138 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This directive establishes a risk-based capital and governance framework for EU insurance and reinsurance undertakings, requiring them to maintain a Solvency Capital Requirement (SCR) and a Minimum Ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-directive-2009-138.json #### Solvency II: Governance System, Risk Management, and Own Risk and Solvency Assessment (ORSA) - **ID**: eu-solvency-ii-pillar-2-orsa-governance - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Under Article 45 of the Solvency II Directive, all EU insurance and reinsurance undertakings must conduct and document an Own Risk and Solvency Assessment (ORSA) as part of an effective risk-managemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-pillar-2-orsa-governance.json #### Solvency II Directive 2009/138/EC: Pillar 3 - Public Disclosure and Supervisory Reporting (SFCR, RSR, QRTs) - **ID**: eu-solvency-ii-pillar-3-reporting-sfcr - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Mandates European (re)insurance undertakings to publicly disclose an annual Solvency and Financial Condition Report (SFCR) and submit a Regular Supervisory Report (RSR) with Quantitative Reporting Tem... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-pillar-3-reporting-sfcr.json #### EU Statutory Audit Regulation 537/2014 - Specific Requirements for Statutory Audit of Public-Interest Entities - **ID**: eu-statutory-audit-regulation-537-2014 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 537/2014 of the European Parliament and of the Council of 16 April 2014, applicable from 17 June 2016, establishes specific requirements for statutory audits of public-interest enti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-statutory-audit-regulation-537-2014.json #### EU Transparency Directive 2013/50/EU - Listed Company Disclosure - **ID**: eu-transparency-directive-2013-50 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Directive 2013/50/EU (amending TD 2004/109/EC) harmonises periodic financial reporting and major shareholding disclosure requirements for companies admitted to trading on EU regulated markets - requir... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-transparency-directive-2013-50.json #### EU Undertakings for Collective Investment in Transferable Securities Directive (UCITS) 2009/65/EC - **ID**: eu-ucits-directive-2009-65 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Directive 2009/65/EC (UCITS IV, consolidated) establishes the EU framework for retail collective investment schemes. UCITS may be marketed to retail investors across the EU via a passport: the managem... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ucits-directive-2009-65.json #### Council Directive 2006/112/EC of 28 November 2006 on the common system of value added tax - **ID**: eu-vat-directive-2006-112-consolidated - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This directive establishes the common system of value added tax (VAT) for EU Member States, defining who is a taxable person, what constitutes a taxable transaction (supply of goods/services), the pla... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-vat-directive-2006-112-consolidated.json #### EU VAT Modernisation for Cross-Border B2C E-Commerce: One Stop Shop (OSS) and Import One Stop Shop (IOSS) Schemes, Abolition of Distance Selling Thresholds, and Deemed Supplier Rules for Online Platforms - **ID**: eu-vat-oss-ioss-digital-services-2021 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Effective July 1, 2021, this EU VAT package simplifies compliance for B2C e-commerce by abolishing previous national distance selling thresholds and introducing a single EU-wide €10,000 threshold for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-vat-oss-ioss-digital-services-2021.json #### EU Wire Transfer Regulation 2015/847 - Funds Transfer Information Requirements (Travel Rule) - **ID**: eu-wire-transfer-regulation-2015-847 - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: Regulation (EU) 2015/847 requires payment service providers to transmit complete originator and beneficiary information with every transfer of funds, implementing FATF Recommendation 16 ('Travel Rule'... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-wire-transfer-regulation-2015-847.json #### EU Transfer of Funds Regulation 2023/1113 (TFR2) - Travel Rule & Crypto-Asset Transfers - **ID**: eu-wire-transfer-regulation-2023-1113 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation 2023/1113 (TFR2, in force 30 December 2024) extends the EU Travel Rule to crypto-asset transfers, requiring payment service providers (PSPs) and crypto-asset service providers (CASPs) to tr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-wire-transfer-regulation-2023-1113.json #### FATCA IGA (Tax Compliance) - **ID**: fatca-iga-compliance - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The Foreign Account Tax Compliance Act (FATCA) is a U.S. federal law requiring foreign financial institutions (FFIs) to report the assets of U.S. account holders. The legislation is primarily implemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatca-iga-compliance.json #### FCA Artificial Intelligence in Financial Services - Compliance Obligations for UK Firms Using AI, AI Model Risk Governance, and Consumer Protection Requirements for AI-Driven Financial Products - **ID**: fca-ai-model-risk-financial-services-2023 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This node outlines FCA compliance obligations for UK financial firms using AI, focusing on AI model risk governance and consumer protection for AI-driven products. It aligns with EU AI Act (Regulation... - **Discovery URL**: https://bidda.com/api/v1/nodes/fca-ai-model-risk-financial-services-2023.json #### FCA Consumer Duty (2023) - **ID**: fca-consumer-duty-2023 - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: The FCA Consumer Duty (PS22/9) is a major U.S.-style 'fiduciary' reform for the UK retail financial sector. It introduces a new 'Consumer Principle' (Principle 12), requiring firms to act to deliver g... - **Discovery URL**: https://bidda.com/api/v1/nodes/fca-consumer-duty-2023.json #### FDIC Part 370 (Records) - **ID**: fdic-part-370-recordkeep - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: FDIC Part 370 (Recordkeeping for Timely Deposit Insurance Determination) is a critical compliance standard for large U.S. banks (over 2 million deposit accounts). it requires institutions to maintain ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fdic-part-370-recordkeep.json #### Cross-Border VAT/GST Calculation Logic - **ID**: finance-tax-logic - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: Cross-border VAT/GST calculation logic for services and intangibles operates strictly under the destination principle for business-to-consumer (B2C) supplies, aligning with Chapter 3 of the OECD Inter... - **Discovery URL**: https://bidda.com/api/v1/nodes/finance-tax-logic.json #### FINRA Rule 3110 (Supervision) - **ID**: finra-3110-supervision - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: FINRA Rule 3110 is the foundational U.S. standard for the supervision of the registered representatives and the offices of broker-dealers. it requires firms to establish and maintain a system of the s... - **Discovery URL**: https://bidda.com/api/v1/nodes/finra-3110-supervision.json #### The Federal Reserve reminds firms of safe and sound practices for counterparty credit risk management in light of the Archegos Capital Management default - **ID**: frb-sr-21-19-counterparty-credit-risk - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: In light of the Archegos Capital Management default, which caused over $10 billion in losses across several large banks, the Federal Reserve is issuing guidance to remind firms of supervisory expectat... - **Discovery URL**: https://bidda.com/api/v1/nodes/frb-sr-21-19-counterparty-credit-risk.json #### FSB Artificial Intelligence and Machine Learning in Financial Services - Compliance Obligations for Systemic Risk from AI Adoption, AI Concentration Risk, and Financial Stability AI Governance for Global Systemically Important Institutions - **ID**: fsb-ai-machine-learning-financial-services-2017 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for financial institutions adopting AI and machine learning, focusing on systemic risk mitigation, concentration risk management, and governance as per FSB gu... - **Discovery URL**: https://bidda.com/api/v1/nodes/fsb-ai-machine-learning-financial-services-2017.json #### FSB Key Attributes (Resolution) - **ID**: fsb-key-attributes-res - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The FSB Key Attributes of Effective Resolution Regimes for Financial Institutions are the international standards for the orderly resolution of failing systemically important financial institutions (S... - **Discovery URL**: https://bidda.com/api/v1/nodes/fsb-key-attributes-res.json #### FSB TCFD (Banking) - **ID**: fsb-tcfd-banking-disc - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: The TCFD (Task Force on Climate-related Financial Disclosures) Banking Sector Disclosures provide a specific framework for banks to report on the financial implications of the climate change. it requi... - **Discovery URL**: https://bidda.com/api/v1/nodes/fsb-tcfd-banking-disc.json #### Fundamental review of the trading book - **ID**: fundamental-review-of-the-trading-book - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This consultative document presents the initial policy proposals emerging from the Basel Committee’s fundamental review of trading book capital requirements, intended to strengthen capital standards f... - **Discovery URL**: https://bidda.com/api/v1/nodes/fundamental-review-of-the-trading-book.json #### Guidance on Model Risk Management - **ID**: guidance-on-model-risk-management - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This supervisory guidance, issued by the Federal Reserve and the Office of the Comptroller of the Currency (OCC), is intended for use by banking organizations and supervisors to assess the management ... - **Discovery URL**: https://bidda.com/api/v1/nodes/guidance-on-model-risk-management.json #### Hong Kong Banking Ordinance (Cap. 155) - HKMA Authorisation and Prudential Supervision - **ID**: hk-hkma-banking-ordinance-cap-155 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: Hong Kong's Banking Ordinance (Cap. 155) establishes the three-tier authorisation system (licensed banks, restricted licence banks, deposit-taking companies) supervised by the Hong Kong Monetary Autho... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-hkma-banking-ordinance-cap-155.json #### Hong Kong Securities and Futures Ordinance (Cap 571) - **ID**: hk-securities-and-futures-ordinance-cap-571 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Securities and Futures Ordinance (Cap 571, Ordinance No. 5 of 2002) is Hong Kong's principal securities and derivatives regulatory statute. The Ordinance was in force from 1 April 2003 and has con... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-securities-and-futures-ordinance-cap-571.json #### Hong Kong Securities and Futures Ordinance (SFO) Cap. 571 - Licensing and Market Conduct - **ID**: hk-sfc-securities-futures-ordinance-2003 - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: The Hong Kong Securities and Futures Ordinance (SFO, Cap. 571) is the primary statute governing securities and futures markets in Hong Kong. It requires intermediaries to be licensed under one of ten ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-sfc-securities-futures-ordinance-2003.json #### HKMA Supervisory Policy on AI Use in Banking - Compliance Obligations for Hong Kong AI Banking Governance, AI Model Validation Requirements, and AI Risk Management for Authorised Institutions - **ID**: hkma-ai-banking-supervisory-policy-2023 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for AI governance, model validation, and risk management in banking under HKMA guidelines, with overlapping requirements from the EU AI Act (Regulation 2024/1... - **Discovery URL**: https://bidda.com/api/v1/nodes/hkma-ai-banking-supervisory-policy-2023.json #### HKMA TM-G-1 (Tech Risk) - **ID**: hkma-tm-g-1-tech-risk - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: HKMA TM-G-1 (General Principles for Technology Risk Management) is a Supervisory Policy Manual (SPM) issued by the Hong Kong Monetary Authority. it provides minimum standards for the management of the... - **Discovery URL**: https://bidda.com/api/v1/nodes/hkma-tm-g-1-tech-risk.json #### IAIS ComFrame for Internationally Active Insurance Groups (IAIGs) - Supervisory Cooperation, ICS 2.0 Capital Standard and Liquidity - **ID**: iais-comframe-internationally-active-groups - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Common Framework (ComFrame) establishes a comprehensive set of international supervisory requirements for Internationally Active Insurance Groups (IAIGs) to facilitate effective group-wide supervi... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-comframe-internationally-active-groups.json #### IAIS Insurance Core Principles (ICPs) 2019 - Supervisory Framework, Governance, Capital Adequacy and Market Conduct - **ID**: iais-insurance-core-principles-2019 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The IAIS Insurance Core Principles (ICPs) establish a globally accepted framework for the supervision of the insurance sector, requiring supervisors to ensure insurers implement robust corporate gover... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-insurance-core-principles-2019.json #### IAIS Insurance Core Principle 19: Conduct of Business - Disclosure, Complaints, Anti-Mis-Selling and Claims Settlement - **ID**: icp-19-conduct-business-insurance-iais - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This principle requires insurance supervisors to establish standards for insurers and intermediaries to treat customers fairly before, during, and after the point of sale. As per ICP 19.1, this includ... - **Discovery URL**: https://bidda.com/api/v1/nodes/icp-19-conduct-business-insurance-iais.json #### IFRS 15 Revenue from Contracts with Customers - Five-Step Recognition Model (2014) - **ID**: ifrs-15-revenue-contracts - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: IFRS 15 establishes a comprehensive five-step model for all entities to account for revenue arising from contracts with customers. The core principle, per IFRS 15:IN7, requires an entity to recognize ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-15-revenue-contracts.json #### IFRS 16 Leases - Single Lessee Accounting Model and Right-of-Use Asset Recognition (2016) - **ID**: ifrs-16-leases - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: IFRS 16 requires lessees to recognize most leases on their balance sheets by recording a right-of-use (ROU) asset and a corresponding lease liability, effectively eliminating the distinction between o... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-16-leases.json #### IFRS 17: Insurance Contracts - **ID**: ifrs-17-contracts - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: IFRS 17 is the first truly international accounting standard for insurance contracts, replacing IFRS 4. It provides a consistent framework for recognizing profit and measuring insurance liabilities, u... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-17-contracts.json #### IFRS 9 Financial Instruments - Classification, Measurement, Impairment and Hedge Accounting (2014) - **ID**: ifrs-9-financial-instruments - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: IFRS 9 establishes principles for the financial reporting of financial assets and financial liabilities, requiring entities to classify assets based on their business model and contractual cash flow c... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-9-financial-instruments.json #### IFRS 9: Expected Credit Loss (ECL) - **ID**: ifrs-9-impairment - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: IFRS 9 introduces the Expected Credit Loss (ECL) model for financial instruments, replacing the older 'Incurred Loss' model. It requires organizations to recognize impairments based on forward-looking... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-9-impairment.json #### Sustainability (IFRS S1) - **ID**: ifrs-s1-general - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: IFRS S1 General Requirements for Disclosure of Sustainability-related Financial Information, issued by the ISSB (International Sustainability Standards Board) in June 2023 and effective for reporting ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-s1-general.json #### Climate Disclosures (IFRS S2) - **ID**: ifrs-s2-climate - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: Entities must provide comprehensive disclosures concerning significant climate-related risks and opportunities to meet investor information needs under IFRS S2. This mandate requires a detailed exposi... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-s2-climate.json #### India Prevention of Money Laundering Act 2002 (PMLA, Act No. 15 of 2003) - **ID**: in-pmla-2002 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Prevention of Money Laundering Act 2002 (PMLA, Act No. 15 of 2003) is India's primary anti-money laundering statute, receiving Presidential assent on 17 January 2003 and coming into force on 1 Jul... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-pmla-2002.json #### India Reserve Bank of India Act 1934 - Central Bank Constitution Functions and Monetary Policy - **ID**: in-rbi-act-1934 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Reserve Bank of India Act 1934 constitutes the Reserve Bank of India as the central bank of India, sets out its functions including the issue of bank notes, formulation and operation of monetary p... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-rbi-act-1934.json #### India RBI Master Direction on KYC 2016 - Customer Due Diligence & Risk Classification - **ID**: in-rbi-master-direction-kyc-2016 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Reserve Bank of India Master Direction - Know Your Customer (KYC) Direction 2016 (updated through 2023) prescribes a four-tier customer risk classification (Low, Medium, High, Very High), document... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-rbi-master-direction-kyc-2016.json #### India RBI NBFC Master Direction - Scale Based Regulation (SBR) Prudential Norms 2023 - **ID**: in-rbi-nbfc-master-direction-prudential-2023 - **Category**: Banking & Global Finance - **Version**: 2023.1.0 - **BLUF**: RBI's Scale Based Regulation (SBR) framework (effective October 2022) classifies NBFCs into four layers (Base/Middle/Upper/Top) with escalating prudential requirements: NBFC-BL minimum NOF ₹10 Cr; NBF... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-rbi-nbfc-master-direction-prudential-2023.json #### India RBI Prompt Corrective Action (PCA) Framework for Banks 2022 - **ID**: in-rbi-prompt-corrective-action-framework-2022 - **Category**: Banking & Global Finance - **Version**: 2022.1.1 - **BLUF**: The Reserve Bank of India's revised Prompt Corrective Action (PCA) Framework (November 2022) establishes early intervention triggers based on Capital to Risk-Weighted Assets Ratio (CRAR), Tier 1 Lever... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-rbi-prompt-corrective-action-framework-2022.json #### India SEBI 2025 AI/ML and Algorithmic Trading Framework - Governance, Disclosure, White Box/Black Box Classification, Retail Investor Safer Participation - **ID**: in-sebi-ai-ml-algo-trading-framework-2025 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Market participants regulated by the Securities and Exchange Board of India (SEBI) using AI and ML in algorithmic trading, asset management, portfolio management, or advisory services must disclose AI... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-sebi-ai-ml-algo-trading-framework-2025.json #### India SEBI LODR 2015 - Listing Obligations and Disclosure Requirements - **ID**: in-sebi-listing-obligations-disclosure - **Category**: Banking & Global Finance - **Version**: 1.2.1 - **BLUF**: SEBI (Listing Obligations and Disclosure Requirements) Regulations 2015 govern disclosure obligations for companies listed on Indian stock exchanges (NSE/BSE). Listed entities must disclose price-sens... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-sebi-listing-obligations-disclosure.json #### Insolvency and Bankruptcy Code, 2016 - Corporate Insolvency Resolution Process (CIRP), Liquidation, and Pre-Packaged Insolvency Framework - **ID**: india-ibc-insolvency-bankruptcy-code-2016 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Insolvency and Bankruptcy Code, 2016 establishes a time-bound corporate insolvency resolution process (CIRP) of 180 days, extendable by 90 days under Section 12, for resolving insolvency of corpor... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-ibc-insolvency-bankruptcy-code-2016.json #### Master Direction - Know Your Customer (KYC) Direction, 2016 (Updated as on August 14, 2025) - **ID**: india-rbi-master-directions-kyc-2016 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation mandates all Reserve Bank of India (RBI)-regulated entities to implement customer identification, due diligence, risk categorization, and ongoing monitoring procedures in compliance wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-rbi-master-directions-kyc-2016.json #### Third-Party Relationships: Interagency Guidance on Risk Management - **ID**: interagency-guidance-third-party-risk-management - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Office of the Comptroller of the Currency (OCC), the Board of Governors of the Federal Reserve System, and the Federal Deposit Insurance Corporation issued the "Interagency Guidance on Third-Party... - **Discovery URL**: https://bidda.com/api/v1/nodes/interagency-guidance-third-party-risk-management.json #### IOSCO AI and Machine Learning in Asset Management - Compliance Obligations for AI Governance in Fund Management, Algorithmic Portfolio Controls, and AI Risk Disclosure for Investment Managers - **ID**: iosco-ai-machine-learning-asset-management-2021 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for AI governance in asset management under IOSCO guidelines, focusing on algorithmic portfolio controls, risk disclosure, and fund management oversight. It a... - **Discovery URL**: https://bidda.com/api/v1/nodes/iosco-ai-machine-learning-asset-management-2021.json #### IOSCO Principles (Benchmarks) - **ID**: iosco-bench-interest-rate - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The IOSCO Principles for Financial Benchmarks (2013) are the global standards for the governance, quality, and integrity of the benchmarks used in financial markets (e.g., LIBOR transition rates, indi... - **Discovery URL**: https://bidda.com/api/v1/nodes/iosco-bench-interest-rate.json #### ISO 20022 - Universal Financial Industry Message Scheme: XML-Based Messaging Standard for Payments, Securities, Trade Finance and Compliance Workflows - **ID**: iso-20022-financial-messaging-workflow-standard - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: ISO 20022 defines a standardized, XML-based message format for financial transactions across payments, securities, trade finance, and regulatory reporting. It applies to financial institutions, market... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20022-financial-messaging-workflow-standard.json #### ISO 20022 MX Messaging - **ID**: iso-20022-mx-messaging - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: ISO 20022 is the universal standard for financial industry messaging. It provides a platform-independent model for financial business processes and is the standard for modern high-value payment system... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20022-mx-messaging.json #### ISO 31000:2018 Risk management - Guidelines - **ID**: iso-31000-risk-management-principles-2018 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: ISO 31000:2018 provides universal guidelines for any organization to integrate risk-based decision making through a structured framework and process. It requires establishing a risk management framewo... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-31000-risk-management-principles-2018.json #### Japan Banking Act (Act 59 of 1981) - Licensing Supervision and Resolution of Banks - **ID**: jp-banking-act-1981 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Banking Act of Japan requires entities carrying on banking business in Japan to obtain a license from the Prime Minister with the function delegated to the Financial Services Agency, imposes prude... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-banking-act-1981.json #### Japan Financial Instruments and Exchange Act 2006 (FIEA) - Securities Regulation - **ID**: jp-financial-instruments-exchange-act-2006 - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: Japan's Financial Instruments and Exchange Act 2006 (FIEA, Act No. 25 of 1948 as comprehensively amended in 2006) is the primary securities regulatory framework. It requires registration of securities... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-financial-instruments-exchange-act-2006.json #### Japan Banking Act 1981 (Act No. 59) - Prudential Licensing & Supervision - **ID**: jp-fsa-banking-act-1981 - **Category**: Banking & Global Finance - **Version**: 2024.1.1 - **BLUF**: Japan's foundational banking law (Act No. 59 of 1981) establishes licensing requirements for banks, sets prudential standards including capital adequacy and liquidity obligations, and grants the Finan... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-fsa-banking-act-1981.json #### Korea Financial Investment Services and Capital Markets Act (FSCMA) - Act No. 8635 - **ID**: kr-fscma-financial-investment-services-capital-markets-act-2009 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: Korea's FSCMA (Act No. 8635, effective February 2009) is the primary capital markets law governing financial investment business entities (FIBEs): six licensed activities (dealing, brokerage, collecti... - **Discovery URL**: https://bidda.com/api/v1/nodes/kr-fscma-financial-investment-services-capital-markets-act-2009.json #### Kuwait Capital Markets Authority Law No. 7 of 2010 - Securities Market Regulation, Public Offering Prospectus Requirements, Market Conduct Rules, Insider Trading Prohibition and CMA Enforcement Powers - **ID**: kuwait-capital-markets-authority-law-7-2010 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Law No. 7 of 2010 establishes the Kuwait Capital Markets Authority (CMA) to regulate securities markets, mandating strict requirements for public offerings, licensing, and market conduct, and explicit... - **Discovery URL**: https://bidda.com/api/v1/nodes/kuwait-capital-markets-authority-law-7-2010.json #### Liquidity coverage ratio disclosure standards - **ID**: lcr-disclosure-standards - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This disclosure framework sets out requirements for the Liquidity Coverage Ratio (LCR) to improve transparency, reinforce the Sound Principles for sound liquidity risk management, enhance market disci... - **Discovery URL**: https://bidda.com/api/v1/nodes/lcr-disclosure-standards.json #### Lloyd's Market Bulletin Y5258 Delegated Authority Cyber Requirements - Binding Authorities, Coverholder Obligations and Cyber Sub-Limits - **ID**: lloyds-delegated-authority-cyber-y5258 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This bulletin mandates that managing agents must include specific minimum cyber security requirements in all binding authorities that grant coverholders the ability to bind cyber policies. It also req... - **Discovery URL**: https://bidda.com/api/v1/nodes/lloyds-delegated-authority-cyber-y5258.json #### Lloyd's of London Governance Framework 2023 - Syndicate Oversight, Managing Agent Obligations and Market Reform Blueprint - **ID**: lloyds-governance-framework-2023-market-reform - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This framework mandates that all Lloyd's managing agents establish and maintain robust governance, risk management, and internal control systems to ensure effective syndicate oversight and protect pol... - **Discovery URL**: https://bidda.com/api/v1/nodes/lloyds-governance-framework-2023-market-reform.json #### MAS Notice 637 - Risk Based Capital Adequacy Requirements for Banks Incorporated in Singapore - **ID**: mas-notice-637-risk-based-capital-singapore - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation sets out the risk-based capital adequacy and leverage ratio requirements for locally-incorporated banks in Singapore, including the methodology for calculating capital ratios, internal... - **Discovery URL**: https://bidda.com/api/v1/nodes/mas-notice-637-risk-based-capital-singapore.json #### MAS TRM Guidelines (Singapore) - **ID**: mas-tr-management-sg - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The Monetary Authority of Singapore (MAS) Technology Risk Management (TRM) Guidelines are the gold standard for financial technology governance in Asia-Pacific. it provides a comprehensive framework f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mas-tr-management-sg.json #### Circular 1/2019 by the National Banking and Securities Commission (CNBV) - Cybersecurity Framework for Financial Institutions, Technology Risk Management, Vulnerability Assessment, Business Continuity Plans, Incident Reporting to CNBV (within 24 hours for Critical Incidents) and Third-Party Technology Risk - **ID**: mexico-cnbv-circular-2019-cybersecurity-financial - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: This regulation establishes mandatory cybersecurity requirements for Mexican financial institutions, including risk management frameworks, incident reporting within 24 hours for critical events, busin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-cnbv-circular-2019-cybersecurity-financial.json #### Ley para Regular las Instituciones de Tecnología Financiera - **ID**: mexico-fintech-law-2018-ley-para-regular-instituciones - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: This law establishes the regulatory framework for Electronic Payment Institutions (IPEs) and Collective Financing Institutions (IFCs) in Mexico, mandating compliance with anti-money laundering protoco... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-fintech-law-2018-ley-para-regular-instituciones.json #### MiCA (Stablecoin Reserve) - **ID**: mica-stablecoin-reserve - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: MiCA (Markets in Crypto-Assets Regulation, EU 2023/1114) is the first comprehensive framework for the crypto-asset market. it introduces strict reserve requirements for 'Asset-Referenced Tokens' (ARTs... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-stablecoin-reserve.json #### Markets in Financial Instruments Directive II (MiFID II) - **ID**: mifid-ii - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: Markets in Financial Instruments Directive II (MiFID II) establishes a comprehensive regulatory framework designed to enhance transparency, investor protection, and market efficiency across European U... - **Discovery URL**: https://bidda.com/api/v1/nodes/mifid-ii.json #### MiFID II Best Execution - **ID**: mifid-ii-best-execution - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: MiFID II Best Execution (Markets in Financial Instruments Directive II) requires investment firms to take all sufficient steps to obtain the best possible result for their clients when executing order... - **Discovery URL**: https://bidda.com/api/v1/nodes/mifid-ii-best-execution.json #### MiFIR Transaction (Reporting) - **ID**: mifir-transaction-report - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: MiFIR Transaction Reporting (Markets in Financial Instruments Regulation, Article 26) is the mandatory standard for reporting the details of the financial trades to the EU regulators. it requires the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mifir-transaction-report.json #### NAIC Insurance Data Security Model Law (#668) - **ID**: naic-model-data-security-law-668-insurance - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This model law requires insurance licensees to develop, implement, and maintain a comprehensive written information security program based on an ongoing risk assessment, as mandated by Section 4. It a... - **Discovery URL**: https://bidda.com/api/v1/nodes/naic-model-data-security-law-668-insurance.json #### Nigeria Banks and Other Financial Institutions Act (BOFIA) 2020 - **ID**: ng-cbn-banks-other-financial-institutions-act-bofia-2020 - **Category**: Banking & Global Finance - **Version**: 2020.1.1 - **BLUF**: Nigeria's Banks and Other Financial Institutions Act (BOFIA) 2020 (repealing BOFIA 1991) consolidates the Central Bank of Nigeria's licensing, supervisory, and resolution powers over banks and special... - **Discovery URL**: https://bidda.com/api/v1/nodes/ng-cbn-banks-other-financial-institutions-act-bofia-2020.json #### Netherlands Financial Supervision Act 2006 (Wet op het financieel toezicht - Wft) - **ID**: nl-wft-financial-supervision-act-2006 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Wft (Wet op het financieel toezicht - Financial Supervision Act) is the Netherlands' comprehensive financial services regulatory framework, enacted by Act of 28 September 2006 (Staatsblad 2006, 47... - **Discovery URL**: https://bidda.com/api/v1/nodes/nl-wft-financial-supervision-act-2006.json #### New Zealand Credit Contracts and Consumer Finance Act 2003 (CCCFA) - **ID**: nz-cccfa-2003-credit-contracts - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Credit Contracts and Consumer Finance Act 2003 (CCCFA) governs consumer credit contracts, consumer leases, and buy-back transactions in New Zealand, establishing disclosure requirements for credit... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-cccfa-2003-credit-contracts.json #### New Zealand Financial Markets Conduct Act 2013 (FMCA) - **ID**: nz-fmca-2013-financial-markets-conduct - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Financial Markets Conduct Act 2013 (FMCA) is New Zealand's principal financial markets legislation, establishing a unified regulatory framework for fair dealing in financial products and services,... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-fmca-2013-financial-markets-conduct.json #### Comptroller’s Handbook Asset Management - **ID**: occ-asset-management-handbook - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Office of the Comptroller of the Currency (OCC) defines asset management as the business of providing financial products or services to a third party for a fee or commission. This guidance applies... - **Discovery URL**: https://bidda.com/api/v1/nodes/occ-asset-management-handbook.json #### Comptroller’s Handbook Examination Process Bank Supervision Process - **ID**: occ-bank-supervision-process - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This booklet is the central reference for the Office of the Comptroller of the Currency (OCC)’s bank supervision policy, explains the OCC’s risk-based bank supervision approach, and discusses the gene... - **Discovery URL**: https://bidda.com/api/v1/nodes/occ-bank-supervision-process.json #### OCC 2023-17 (Third-Party) - **ID**: occ-bulletin-2023-17-risk - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: OCC Bulletin 2023-17 (Interagency Guidance on Third-Party Relationships: Risk Management) provides a unified U.S. standard for managing the risks of the third-party providers. it specifies a life-cycl... - **Discovery URL**: https://bidda.com/api/v1/nodes/occ-bulletin-2023-17-risk.json #### Addressing the Tax Challenges of the Digital Economy, Action 1 - 2015 Final Report - **ID**: oecd-beps-action-1-digital-economy-2015 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This OECD/G20 report analyzes tax challenges from digitalization and proposes options to adapt international tax rules, focusing on nexus, withholding taxes, and VAT/GST. Its most widely adopted recom... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-1-digital-economy-2015.json #### OECD/G20 Base Erosion and Profit Shifting (BEPS) Project Action 13: Transfer Pricing Documentation and Country-by-Country Reporting - **ID**: oecd-beps-action-13-cbc-reporting - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation requires multinational enterprise (MNE) groups with annual consolidated revenue of €750 million or more to file a Country-by-Country (CbC) Report, providing a detailed breakdown of rev... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-13-cbc-reporting.json #### OECD/G20 BEPS Action 14 - Making Dispute Resolution More Effective: Mutual Agreement Procedure (MAP) Minimum Standard, Peer Review Process and Arbitration Provisions Under MLI - **ID**: oecd-beps-action-14-map-peer-review - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes a minimum standard for resolving tax treaty-related disputes via the Mutual Agreement Procedure (MAP) for all committed jurisdictions. It mandates timely and effective disp... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-14-map-peer-review.json #### Multilateral Convention to Implement Tax Treaty Related Measures to Prevent Base Erosion and Profit Shifting (MLI) - **ID**: oecd-beps-action-15-mli - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The OECD Multilateral Instrument (MLI) enables jurisdictions to swiftly modify their bilateral tax treaties to implement measures against Base Erosion and Profit Shifting (BEPS), such as preventing tr... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-15-mli.json #### OECD/G20 BEPS Action 2 (2015) - Neutralising Effects of Hybrid Mismatch Arrangements: Recommendations for Domestic Law Changes and Treaty Provisions - **ID**: oecd-beps-action-2-hybrid-mismatch-2015 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This OECD report provides recommendations for domestic law and tax treaty provisions to neutralize the tax effects of hybrid mismatch arrangements, which exploit differences in the tax treatment of an... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-2-hybrid-mismatch-2015.json #### Designing Effective Controlled Foreign Company (CFC) Rules, Action 3 - 2015 Final Report - **ID**: oecd-beps-action-3-cfc-rules-2015 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This OECD/G20 BEPS report provides recommendations for jurisdictions to implement effective Controlled Foreign Company (CFC) rules to prevent the artificial shifting of profits to low-tax jurisdiction... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-3-cfc-rules-2015.json #### Limiting Base Erosion Involving Interest Deductions and Other Financial Payments, Action 4 - 2016 Update - **ID**: oecd-beps-action-4-interest-deductions-2016 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This OECD/G20 BEPS recommendation requires jurisdictions to limit a multinational group's net interest deductions to a fixed percentage of its EBITDA, typically between 10-30%, to combat base erosion ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-4-interest-deductions-2016.json #### Countering Harmful Tax Practices More Effectively, Taking into Account Transparency and Substance, Action 5 - 2019 Progress Report on Preferential Regimes - **ID**: oecd-beps-action-5-preferential-regimes-2019 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This OECD/G20 BEPS initiative requires jurisdictions to ensure preferential tax regimes, especially for Intellectual Property (IP), are linked to substantial economic activity via the 'nexus approach'... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-5-preferential-regimes-2019.json #### Preventing the Granting of Treaty Benefits in Inappropriate Circumstances, Action 6 - 2015 Final Report - **ID**: oecd-beps-action-6-treaty-abuse-2015 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This OECD/G20 BEPS standard requires jurisdictions to implement measures in their bilateral tax treaties to prevent treaty shopping and other abuse strategies. As a minimum standard, treaties must inc... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-6-treaty-abuse-2015.json #### Preventing the Artificial Avoidance of Permanent Establishment Status, Action 7 - 2015 Final Report - **ID**: oecd-beps-action-7-pe-avoidance-2015 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This OECD/G20 BEPS report modifies Article 5 of the OECD Model Tax Convention to prevent multinational enterprises from artificially avoiding a taxable presence (Permanent Establishment) in a country.... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-7-pe-avoidance-2015.json #### Crypto-Asset Reporting Framework (CARF) and Amendments to the Common Reporting Standard - **ID**: oecd-carf-crypto-asset-reporting-framework-2022 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The OECD CARF requires entities and individuals providing services that effectuate exchange transactions in Crypto-Assets (Reporting Crypto-Asset Service Providers or RCASPs) to conduct due diligence ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-carf-crypto-asset-reporting-framework-2022.json #### OECD Common Reporting Standard (CRS) - Automatic Exchange of Financial Account Information - **ID**: oecd-common-reporting-standard-crs-2014 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: The OECD CRS (adopted 2014, first exchanges 2017) is the global standard for automatic exchange of financial account information (AEOI): financial institutions in 100+ jurisdictions identify non-resid... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-common-reporting-standard-crs-2014.json #### Standard for Automatic Exchange of Financial Account Information in Tax Matters (Common Reporting Standard) - **ID**: oecd-crs-automatic-exchange - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The OECD Common Reporting Standard (CRS) requires financial institutions in participating jurisdictions to perform due diligence to identify financial accounts held by non-resident individuals and ent... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-crs-automatic-exchange.json #### Tax Challenges Arising from the Digitalisation of the Economy - Global Anti-Base Erosion Model Rules (Pillar Two): Income Inclusion Rule - **ID**: oecd-globe-income-inclusion-rule-2021 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The OECD GloBE Income Inclusion Rule (IIR) imposes a top-up tax on the Ultimate Parent Entity (UPE) of a Multinational Enterprise (MNE) Group with annual consolidated revenue of €750 million or more, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-globe-income-inclusion-rule-2021.json #### OECD GloBE Undertaxed Profits Rule (UTPR) (2022) - Backstop to IIR: Allocation Mechanism Between Constituent Entities, Ordering Rules and QDMTT Interaction for MNEs - **ID**: oecd-globe-undertaxed-profits-rule-utpr - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Undertaxed Profits Rule (UTPR) is a backstop component of the OECD's Pillar Two GloBE rules, imposing a top-up tax on a multinational enterprise (MNE) group's constituent entities when the low-tax... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-globe-undertaxed-profits-rule-utpr.json #### OECD Model Tax Convention on Income and Capital 2017 - Permanent Establishment (Article 5), Business Profits (Article 7), Royalties (Article 12) and Capital Gains (Article 13) - **ID**: oecd-model-tax-convention-2017-pe-royalties - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The OECD Model Tax Convention provides a template for bilateral tax treaties to prevent double taxation by defining when an enterprise has a taxable presence (Permanent Establishment, Article 5) in an... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-model-tax-convention-2017-pe-royalties.json #### Multilateral Convention to Implement Amount A of Pillar One - **ID**: oecd-pillar-one-amount-a-multilateral-convention - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This multilateral convention reallocates 25% of residual profits from multinational enterprises (MNEs) with global turnover above €20 billion and profitability above 10% to the market jurisdictions wh... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar-one-amount-a-multilateral-convention.json #### Global Minimum Tax (Pillar Two) - **ID**: oecd-pillar2-minimum - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: OECD Pillar Two (Global Anti-Base Erosion Rules - GloBE) establishes a global minimum corporate tax rate of 15% for multinational enterprises (MNEs) with annual revenue exceeding €750 million. Finaliz... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar2-minimum.json #### Transfer Pricing Guidance on Financial Transactions: Inclusive Framework on BEPS: Actions 4, 8-10 - **ID**: oecd-tp-financial-transactions-guidance-2020 - **Category**: Banking & Global Finance - **Version**: 2020.02.11 - **BLUF**: This OECD guidance requires multinational enterprises (MNEs) to apply the arm's length principle to intra-group financial transactions by accurately delineating the actual transaction and pricing it b... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-tp-financial-transactions-guidance-2020.json #### OECD Transfer Pricing Guidelines for Multinational Enterprises and Tax Administrations 2022 - **ID**: oecd-tp-guidelines-2022 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: These guidelines provide the international consensus on valuing cross-border transactions between associated enterprises within a Multinational Enterprise (MNE) group for tax purposes. They mandate th... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-tp-guidelines-2022.json #### OECD Transfer Pricing Guidance on Profit Splits (2018) - Delineation of Transaction, Contribution Analysis, Residual Analysis and Appropriate Split Factors for Integrated Transactions - **ID**: oecd-tp-profit-split-guidance-2018 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This guidance clarifies when and how to apply the transactional profit split method for multinational enterprises, requiring its use for highly integrated cross-border transactions where both parties ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-tp-profit-split-guidance-2018.json #### OECD International VAT/GST Guidelines 2017 - Destination Principle, Place of Supply Rules for B2B and B2C Services, Tax Neutrality for Cross-Border Trade and Reverse Charge Mechanism - **ID**: oecd-vat-gst-guidelines-2017-international - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: These OECD guidelines establish the Destination Principle for the cross-border trade of services and intangibles, requiring VAT/GST to be levied in the jurisdiction of consumption. For business-to-bus... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-vat-gst-guidelines-2017-international.json #### PCI DSS v4.0 - Payment Card Data Security - **ID**: pci-dss-v4 - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: PCI DSS v4.0, published March 2022 by the PCI Security Standards Council (PCI SSC), is the mandatory security standard for all entities that store, process, or transmit payment card data (cardholder d... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4.json #### Implementation monitoring of PFMI: Assessment report for Switzerland - **ID**: pfmi-assessment-report-switzerland - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: In April 2012, the Committee on Payments and Market Infrastructures (CPMI) and the International Organization of Securities Commissions (IOSCO) issued the Principles for financial market infrastructur... - **Discovery URL**: https://bidda.com/api/v1/nodes/pfmi-assessment-report-switzerland.json #### PRA SS1/21 (Resilience) - **ID**: pra-ss1-21-resilience - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: PRA SS1/21 (Operational Resilience: Impact tolerances for important business services) is the UK's cornerstone standard for bank and insurer resilience. it shifts focus from traditional disaster recov... - **Discovery URL**: https://bidda.com/api/v1/nodes/pra-ss1-21-resilience.json #### Principles for effective risk data aggregation and risk reporting - **ID**: principles-effective-risk-data-aggregation - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: One of the most significant lessons learned from the global financial crisis that began in 2007 was that banks’ information technology (IT) and data architectures were inadequate to support the broad ... - **Discovery URL**: https://bidda.com/api/v1/nodes/principles-effective-risk-data-aggregation.json #### Principles for financial market infrastructures - **ID**: principles-financial-market-infrastructures - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: These principles establish international standards for financial market infrastructures (FMIs) that facilitate the clearing, settlement, and recording of monetary and other financial transactions. The... - **Discovery URL**: https://bidda.com/api/v1/nodes/principles-financial-market-infrastructures.json #### Principles for Operational Resilience - **ID**: principles-for-operational-resilience - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This document promotes a principles-based approach to improving operational resilience for banks, building upon the Basel Committee's Principles for the Sound Management of Operational Risk (PSMOR). I... - **Discovery URL**: https://bidda.com/api/v1/nodes/principles-for-operational-resilience.json #### Private Fund Advisers; Documentation of Registered Investment Adviser Compliance Reviews - **ID**: private-fund-advisers-compliance-reviews - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Securities and Exchange Commission is adopting new rules under the Investment Advisers Act of 1940 designed to protect investors who directly or indirectly invest in private funds. The rules aim t... - **Discovery URL**: https://bidda.com/api/v1/nodes/private-fund-advisers-compliance-reviews.json #### Prudential treatment of cryptoasset exposures - **ID**: prudential-treatment-cryptoasset-exposures - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This consultative document from the Basel Committee on Banking Supervision proposes a prudential framework for banks' exposures to cryptoassets, addressing potential financial stability concerns and i... - **Discovery URL**: https://bidda.com/api/v1/nodes/prudential-treatment-cryptoasset-exposures.json #### Directive (EU) 2015/2366 (PSD2) Article 4: Definitions - **ID**: psd2-directive-article-4-definitions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes key definitions for capital requirements, payment brands, and co-badging used within the directive, requiring organizations to classify their capital structure and payment ins... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-4-definitions.json #### DIRECTIVE (EU) 2015/2366 on payment services in the internal market - Article 63 - **ID**: psd2-directive-article-63-strong-customer-authentication-scope - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the requirement for payment service providers to apply strong customer authentication measures to enhance the security of electronic payments and protect consumers from fraud. - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-63-strong-customer-authentication-scope.json #### DIRECTIVE (EU) 2015/2366 on payment services in the internal market - Article 64: Liability for unauthorised payment transactions - **ID**: psd2-directive-article-64-liability-unauthorized-transactions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the liability framework for payment service providers and users concerning unauthorized payment transactions, mandating provider refunds unless payer fraud or gross negligence... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-64-liability-unauthorized-transactions.json #### DIRECTIVE (EU) 2015/2366 on payment services in the internal market - Article 65: Liability for Unauthorised Transactions - **ID**: psd2-directive-article-65-payers-liability - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the payer's limited liability for unauthorised payment transactions, capping it at a specified amount unless the payer acted fraudulently or with gross negligence, and outline... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-65-payers-liability.json #### DIRECTIVE (EU) 2015/2366 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 25 November 2015 on payment services in the internal market - Article 66: Non-execution or defective or late execution of payment transactions - **ID**: psd2-directive-article-66-liability-of-payment-service-providers - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the liability of a payer's payment service provider (PSP) for non-executed, defective, or late payment transactions, mandating a refund and account restoration, and outlines t... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-66-liability-of-payment-service-providers.json #### Directive (EU) 2015/2366 on payment services in the internal market - Article 67: Rules on access to payment account in the case of payment initiation services - **ID**: psd2-directive-article-67-conditions-for-payment-initiation - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the rules for payment initiation service providers (PISPs), including the prohibition of holding payer funds, requirements for secure communication and data handling, and obli... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-67-conditions-for-payment-initiation.json #### DIRECTIVE (EU) 2015/2366 on payment services in the internal market - Article 68: Rules on access to payment account in the case of payment initiation services - **ID**: psd2-directive-article-68-liability-of-account-servicing-providers - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires account servicing payment service providers to grant access to payment initiation service providers when a payer gives explicit consent, and it establishes specific security, dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-68-liability-of-account-servicing-providers.json #### Directive (EU) 2015/2366 on payment services in the internal market - Article 72: Refusal of payment orders - **ID**: psd2-directive-article-72-charges-for-payment-transactions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires payment service providers to notify users of any refusal to execute a payment order, including the reasons and correction procedures, and prohibits refusal of authorized orders i... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-72-charges-for-payment-transactions.json #### DIRECTIVE (EU) 2015/2366 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 25 November 2015 on payment services in the internal market - Article 73: Value Date and Availability of Funds - **ID**: psd2-directive-article-73-value-date-and-availability-of-funds - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article mandates that payment service providers apply specific value dates for crediting and debiting accounts and ensure funds are made available to the payee immediately after being credited to... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-73-value-date-and-availability-of-funds.json #### DIRECTIVE (EU) 2015/2366 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 25 November 2015 on payment services in the internal market - Article 74: Evidence on authentication and execution of payment transactions - **ID**: psd2-directive-article-74-execution-time - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires payment service providers to bear the burden of proof when a user denies authorizing a transaction, mandating they demonstrate proper authentication, recording, and system integr... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-74-execution-time.json #### DIRECTIVE (EU) 2015/2366 on payment services in the internal market - Article 83: Consent and withdrawal of consent - **ID**: psd2-directive-article-83-security-requirements - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires payment service providers to obtain explicit consent from the payer before executing a payment transaction, to treat transactions without consent as unauthorised, and to provide ... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-83-security-requirements.json #### Directive (EU) 2015/2366 on payment services in the internal market - Article 89: Access to payment accounts in the case of payment initiation services - **ID**: psd2-directive-article-89-access-to-payment-accounts - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires account servicing payment service providers to grant access to payment initiation service providers when a payer gives explicit consent, and outlines the specific security, data ... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-89-access-to-payment-accounts.json #### DIRECTIVE (EU) 2015/2366 on payment services in the internal market - Article 94 - **ID**: psd2-directive-article-94-general-security-measures - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires payment service providers to establish, implement, and maintain a comprehensive security framework to manage risks associated with electronic payments and adequately protect user... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-94-general-security-measures.json #### DIRECTIVE (EU) 2015/2366 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 25 November 2015 on payment services in the internal market - Article 95 - **ID**: psd2-directive-article-95-major-incident-reporting - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Payment service providers must establish and maintain an incident management process to detect, manage, and report major operational or security incidents to their competent authority without undue de... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-95-major-incident-reporting.json #### Directive (EU) 2015/2366 on payment services in the internal market, Article 96: Management of operational and security risks - **ID**: psd2-directive-article-96-authentication-and-communication - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires payment service providers to establish, maintain, and annually report on a comprehensive risk management framework, including incident management procedures and regular, independ... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-96-authentication-and-communication.json #### DIRECTIVE (EU) 2015/2366 on payment services in the internal market - Article 97: Security measures - **ID**: psd2-directive-article-97-secure-communications - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article requires payment service providers to apply strong customer authentication (SCA) for online account access, electronic payment initiation, and other remote actions that carry a risk of fr... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-directive-article-97-secure-communications.json #### PSD2 SCA (Payments) - **ID**: psd2-sc-authentication - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: PSD2 Strong Customer Authentication (SCA) (Directive 2015/2366) is the mandatory security standard for electronic payments in Europe. it requires a multifactor authentication process based on 'Knowled... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-sc-authentication.json #### RBI Guidelines on Digital Lending 2022 - Regulated Entity (RE) Accountability, Loan Service Provider (LSP) Rules, Data Privacy and Consumer Protection Requirements - **ID**: rbi-digital-lending-guidelines-2022 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: This regulation establishes accountability for Regulated Entities (REs) in digital lending ecosystems, mandates oversight of Loan Service Providers (LSPs), and enforces strict data privacy and consume... - **Discovery URL**: https://bidda.com/api/v1/nodes/rbi-digital-lending-guidelines-2022.json #### Safeguarding Advisory Client Assets - **ID**: safeguarding-advisory-client-assets - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Securities and Exchange Commission (SEC) is proposing a new rule, designated as rule 223-1 under the Investment Advisers Act of 1940, to strengthen how investment advisers safeguard client assets.... - **Discovery URL**: https://bidda.com/api/v1/nodes/safeguarding-advisory-client-assets.json #### Capital Market Law, Royal Decree No. M/30 of 2 June 2003 - **ID**: saudi-cma-capital-market-law-regulations - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This law establishes the Saudi Capital Market Authority (CMA) and provides the comprehensive legal framework for the Saudi Arabian capital market, mandating strict prospectus disclosure for securities... - **Discovery URL**: https://bidda.com/api/v1/nodes/saudi-cma-capital-market-law-regulations.json #### Saudi SAMA Open Banking Policy 2022 - Third-Party Provider (TPP) Framework, Open Banking API Technical Standards, Customer Consent Management Architecture and SAMA Oversight for Saudi Open Banking Ecosystem - **ID**: saudi-sama-open-banking-policy-2022 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This policy mandates that banks in the Kingdom of Saudi Arabia provide Third-Party Providers (TPPs) with secure access to customer financial data via standardized APIs, subject to explicit customer co... - **Discovery URL**: https://bidda.com/api/v1/nodes/saudi-sama-open-banking-policy-2022.json #### SEC Regulation S-K Item 106 (Cybersecurity) - **ID**: sec-reg-s-k-106 - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: Regulation S-K Item 106 mandates a comprehensive framework for cybersecurity disclosure, encompassing both incident reporting and governance oversight. Registrants must report material cybersecurity i... - **Discovery URL**: https://bidda.com/api/v1/nodes/sec-reg-s-k-106.json #### Regulation Best Interest: The Broker-Dealer Standard of Conduct - **ID**: sec-regulation-best-interest - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Securities and Exchange Commission (SEC) is adopting Regulation Best Interest, a new rule under the Securities Exchange Act of 1934 that establishes a standard of conduct for broker-dealers and th... - **Discovery URL**: https://bidda.com/api/v1/nodes/sec-regulation-best-interest.json #### Banking Act 1970 - Part VII: Powers of Control Over Banks, Etc. - **ID**: sg-banking-act-part-vii-bank-customer-confidentiality - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This article mandates that banks must comply with Authority directives on interest rates and investments, facilitate inspections, report adverse developments and potential insolvency, maintain strict ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-banking-act-part-vii-bank-customer-confidentiality.json #### Singapore MAS Notice 610 - Submission of Statistics and Returns by Banks - **ID**: sg-mas-notice-610-credit-risk-capital-requirements - **Category**: Banking & Global Finance - **Version**: 2023.1.1 - **BLUF**: MAS Notice 610 mandates banks in Singapore to submit periodic prudential statistics and regulatory returns to the Monetary Authority of Singapore covering balance sheet data, capital adequacy, credit ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-mas-notice-610-credit-risk-capital-requirements.json #### Singapore MAS Notice 610 - Banking Act Regulatory Reporting Requirements - **ID**: sg-mas-notice-610-regulatory-reporting - **Category**: Banking & Global Finance - **Version**: 1.1.1 - **BLUF**: MAS Notice 610 (Banking Act Cap 19) requires Singapore-licensed banks to submit detailed statutory returns to the Monetary Authority of Singapore (MAS) on capital adequacy (MAS 637), liquidity (MAS 64... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-mas-notice-610-regulatory-reporting.json #### Singapore MAS Notice 637 - Risk-Based Capital Framework for Banks - **ID**: sg-mas-notice-637-risk-based-capital - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: MAS Notice 637 implements the Basel III capital framework for banks licensed under the Banking Act 1970 (Cap 19) in Singapore. Banks must maintain: CET1 Capital Adequacy Ratio (CAR) ≥6.5%, Tier 1 CAR ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-mas-notice-637-risk-based-capital.json #### Singapore MAS Technology Risk Management Guidelines - Technology Risk Management for Banks - **ID**: sg-mas-notice-637-technology-risk-management-banks - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: MAS Technology Risk Management Guidelines (revised 2023) imposes technology risk management requirements on banks in Singapore, including board and senior management accountability, IT audit, incident... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-mas-notice-637-technology-risk-management-banks.json #### MAS Technology Risk Management Guidelines 2021 - **ID**: sg-mas-trmg-2021 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: These guidelines require financial institutions in Singapore to establish a robust technology risk management framework, governance, and oversight to ensure the security and resilience of their IT sys... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-mas-trmg-2021.json #### Singapore Monetary Authority of Singapore Act 1970 - Central Bank and Financial Regulator Authority - **ID**: sg-monetary-authority-of-singapore-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Monetary Authority of Singapore Act 1970 establishes the Monetary Authority of Singapore as the central bank of Singapore and integrated financial regulator with statutory functions covering monet... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-monetary-authority-of-singapore-act.json #### Singapore Payment Services Act 2019 - **ID**: sg-payment-services-act-2019 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Payment Services Act 2019 (Singapore, No. 2 of 2019), in force 28 January 2020 and significantly amended in 2021 and 2023, establishes a single licensing regime for seven categories of payment ser... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-payment-services-act-2019.json #### Payment Services Act 2019 - Part 2 Licensing of Payment Service Providers - **ID**: sg-payment-services-act-2019-part-2-licensing - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation mandates that any entity providing payment services in Singapore must obtain a licence, maintain a local place of business, notify the Authority of specific events, submit periodic rep... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-payment-services-act-2019-part-2-licensing.json #### Singapore Securities and Futures Act 2001 (Cap. 289) - Market Conduct and Investor Protection - **ID**: sg-securities-futures-act-2001 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Securities and Futures Act 2001 (SFA, Cap. 289) is Singapore's principal legislation governing the securities and futures market, administered by the Monetary Authority of Singapore (MAS). The SFA... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-securities-futures-act-2001.json #### Securities and Futures Act 2001 - Part 2 Division 2 Regulation of Approved Exchanges - **ID**: sg-securities-futures-act-part-xii-market-offences - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Approved exchanges must comply with a range of operational obligations, including prudent risk management, record-keeping, periodic reporting, assisting the Authority, and seeking approval for key app... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-securities-futures-act-part-xii-market-offences.json #### Insurance Act 1966 (Cap. 142) - **ID**: singapore-mas-insurance-act-cap-142 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Act establishes the regulatory framework for the insurance industry in Singapore, mandating that all insurers must be licensed by the Monetary Authority of Singapore (MAS) under Section 8. It imp... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-mas-insurance-act-cap-142.json #### SOX IT Controls - Sarbanes-Oxley IT Compliance - **ID**: sox-it-controls - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The Sarbanes-Oxley Act of 2002 (SOX) - enacted in response to Enron, WorldCom, and other financial scandals - imposes mandatory internal controls over financial reporting (ICFR) requirements on all US... - **Discovery URL**: https://bidda.com/api/v1/nodes/sox-it-controls.json #### Guidance on Model Risk Management - **ID**: sr-11-7-model-risk-management - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This supervisory guidance, issued by the Federal Reserve and the Office of the Comptroller of the Currency (OCC), is intended for use by all banking organizations supervised by the Federal Reserve. It... - **Discovery URL**: https://bidda.com/api/v1/nodes/sr-11-7-model-risk-management.json #### US Federal Reserve and OCC SR 11-7 Model Risk Management Applied to AI Systems - Compliance Obligations for US Bank AI Model Validation, Challenger Model Requirements, and AI Model Governance Documentation - **ID**: sr-11-7-model-risk-management-ai-2023 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations under SR 11-7 for AI model risk management in US banks, focusing on model validation, challenger model requirements, and governance documentation, with overla... - **Discovery URL**: https://bidda.com/api/v1/nodes/sr-11-7-model-risk-management-ai-2023.json #### SUPERVISORY GUIDANCE ON MODEL RISK MANAGEMENT - **ID**: supervisory-guidance-model-risk-management - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This guidance describes the key aspects of effective model risk management for banks, which rely heavily on quantitative analysis and models in most aspects of financial decision making. It applies to... - **Discovery URL**: https://bidda.com/api/v1/nodes/supervisory-guidance-model-risk-management.json #### SWIFT Customer Security Controls Framework v2024 - Mandatory and Advisory Controls for SWIFT Network Participants - **ID**: swift-cscf-v2024 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The SWIFT Customer Security Controls Framework (CSCF) mandates that all SWIFT network participants annually attest their compliance with a set of mandatory security controls to secure their local SWIF... - **Discovery URL**: https://bidda.com/api/v1/nodes/swift-cscf-v2024.json #### SWIFT CSP (Quality) - **ID**: swift-csp-quality - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The SWIFT Customer Security Programme (CSP) is the mandatory security framework for all SWIFT users. It consists of the Customer Security Controls Framework (CSCF) with 32 controls (25 mandatory, 7 ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/swift-csp-quality.json #### Abu Dhabi Global Market (ADGM) FSRA Financial Services and Markets Regulations 2015 - Regulated Activity Authorisation, Conduct of Business Rules, Market Abuse Provisions and Recognition of Overseas Financial Institutions - **ID**: uae-adgm-fsra-financial-services-framework - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This framework establishes the comprehensive legal and regulatory regime for financial services within the Abu Dhabi Global Market (ADGM), requiring any person carrying on a Regulated Activity by way ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-adgm-fsra-financial-services-framework.json #### UAE ADGM Financial Services Regulatory Authority (FSRA) Rulebook - Market Conduct Rules, Capital Adequacy Requirements, FSRA Digital Assets Framework, Passporting Arrangements, Virtual Asset Brokerage Licence and ADGM Courts Jurisdiction over Financial Disputes - **ID**: uae-adgm-fsra-financial-services-regulations - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: This regulation establishes the licensing, conduct, capital, and governance requirements for financial services firms operating in the Abu Dhabi Global Market (ADGM), including specific obligations fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-adgm-fsra-financial-services-regulations.json #### Retail Payment Services and Card Schemes Regulation 2021 - **ID**: uae-cbuae-retail-payment-services-regulation-2021 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes a comprehensive licensing and supervisory framework for retail payment service providers (PSPs) and card schemes operating in the UAE, mandating specific capital, governanc... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-cbuae-retail-payment-services-regulation-2021.json #### UK Banking Act 2009 - Special Resolution Regime and Bank Insolvency - **ID**: uk-banking-act-2009 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Banking Act 2009 (2009 chapter 1, Royal Assent 12 February 2009) is the United Kingdom's principal post-crisis statutory framework for the prevention, management, and resolution of bank failures. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-banking-act-2009.json #### UK Consumer Credit Act 1974 - **ID**: uk-consumer-credit-act-1974 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The UK Consumer Credit Act 1974 (CCA) regulates the provision of consumer credit and consumer hire agreements including credit cards personal loans hire purchase store credit and conditional sale. The... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-consumer-credit-act-1974.json #### UK FCA Discussion Paper DP5/22 - Artificial Intelligence and Machine Learning in Financial Services - **ID**: uk-fca-ai-guidance-2023 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This discussion paper outlines the UK Financial Conduct Authority's (FCA) perspective on applying existing financial regulations to AI/ML, emphasizing that firms remain accountable for governance, ris... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fca-ai-guidance-2023.json #### UK FCA Consumer Duty (PS22/9) 2023 - Outcome-Based Consumer Protection Standard for Financial Services - **ID**: uk-fca-consumer-duty-2023 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The UK FCA Consumer Duty requires FCA-regulated firms to act to deliver good outcomes for retail customers, as mandated by the new Consumer Principle (Principle 12). This is a shift to outcomes-based ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fca-consumer-duty-2023.json #### UK FCA Consumer Duty PS22/9 - Consumer Protection: Fair Value and Good Outcomes for Retail Financial Customers - **ID**: uk-fca-consumer-duty-ps22-9-fair-value-outcomes-retail - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: FCA Policy Statement PS22/9 and the Consumer Duty Rules (PRIN 2A) require firms to deliver four consumer outcomes: products and services, price and value, consumer understanding, and consumer support.... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fca-consumer-duty-ps22-9-fair-value-outcomes-retail.json #### UK FCA Insurance Conduct of Business Sourcebook (ICOBS) - **ID**: uk-fca-icobs-insurance-conduct-sourcebook - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The UK FCA's ICOBS mandates that insurance firms act honestly, fairly, and professionally in the best interests of their customers (ICOBS 2.5.-1R). This includes providing clear product information, e... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fca-icobs-insurance-conduct-sourcebook.json #### UK Financial Services Act 2012 - **ID**: uk-financial-services-act-2012 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The UK Financial Services Act 2012 (FSA 2012) restructured UK financial regulation by replacing the Financial Services Authority (FSA) with the twin peaks Financial Conduct Authority (FCA) and Prudent... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-financial-services-act-2012.json #### UK Financial Services (Banking Reform) Act 2013 - Ring-Fencing Senior Managers Regime and Resolution - **ID**: uk-financial-services-banking-reform-act-2013 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Financial Services (Banking Reform) Act 2013 implemented core recommendations of the Independent Commission on Banking and the Parliamentary Commission on Banking Standards by requiring large UK r... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-financial-services-banking-reform-act-2013.json #### UK Financial Services and Markets Act 2000 (FSMA) -- Regulatory Framework for UK Financial Services - **ID**: uk-financial-services-markets-act-2000 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: The Financial Services and Markets Act 2000 (FSMA 2000) establishes the UK's financial regulatory framework. The general prohibition in Section 19 makes it a criminal offence to carry on a regulated a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-financial-services-markets-act-2000.json #### United Kingdom Financial Services and Markets Act 2000 (FSMA): FCA and PRA Regulators, General Prohibition on Unauthorised Regulated Activity, Permission Threshold Conditions, Approval of Persons, FCA Rule-Making, and Restitution - **ID**: uk-financial-services-markets-act-2000-fsma - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The United Kingdom Financial Services and Markets Act 2000, chapter 8 of 2000 and commonly cited as FSMA 2000, is the principal United Kingdom statute establishing the framework for financial services... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-financial-services-markets-act-2000-fsma.json #### Financial Services and Markets Act 2000, Section 137A: The FCA's general rule-making power - **ID**: uk-financial-services-markets-act-2000-section-137a-general-rule-making - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This section grants the Financial Conduct Authority (FCA) the general power to make rules applying to authorised persons as necessary for advancing its statutory objectives. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-financial-services-markets-act-2000-section-137a-general-rule-making.json #### Financial Services and Markets Act 2000, Section 1C: The competition objective - **ID**: uk-financial-services-markets-act-2000-section-1c-fca-competition-objective - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Organizations must operate in a manner that promotes effective competition in the interests of consumers, aligning with the FCA's statutory competition objective. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-financial-services-markets-act-2000-section-1c-fca-competition-objective.json #### Financial Services and Markets Act 2000, Section 55B: Application for permission - **ID**: uk-financial-services-markets-act-2000-section-55b-threshold-conditions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This section requires any person seeking to carry on a regulated activity in the UK to apply to the appropriate regulator for permission, providing all necessary information to demonstrate that they w... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-financial-services-markets-act-2000-section-55b-threshold-conditions.json #### Financial Services and Markets Act 2000 Section 64A: Rules of conduct - **ID**: uk-financial-services-markets-act-2000-section-64a-conduct-rules-accountability - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This section empowers the Financial Conduct Authority (FCA) and the Prudential Regulation Authority (PRA) to create 'rules of conduct' for approved persons performing controlled functions, requiring f... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-financial-services-markets-act-2000-section-64a-conduct-rules-accountability.json #### UK Financial Services and Markets Act 2023 - Critical Third Party Regime, Edinburgh Reforms, and Digital Settlement Assets - **ID**: uk-financial-services-markets-act-2023-critical-third-parties - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: FSMA 2023 delivers the Edinburgh Reforms, onshoring UK financial regulation post-Brexit with a Smarter Regulatory Framework (SRF). Key innovations: a Critical Third Parties (CTP) regime subjecting des... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-financial-services-markets-act-2023-critical-third-parties.json #### Financial Services and Markets Act 2023, Section 9: Rules relating to central counterparties and central securities depositories - **ID**: uk-financial-services-markets-act-2023-section-9-fca-objectives - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Financial Market Infrastructure (FMI) entities, including central counterparties and central securities depositories, must comply with rules made by the Bank of England concerning their regulated and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-financial-services-markets-act-2023-section-9-fca-objectives.json #### UK Insolvency Act 1986 Section 213 — Fraudulent Trading (Civil Liability) - **ID**: uk-insolvency-act-1986-section-213-fraudulent-trading - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: If in the course of the winding-up of a company it appears that any business of the company has been carried on with intent to defraud creditors of the company or of any other person, or for any fraud... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-insolvency-act-1986-section-213-fraudulent-trading.json #### UK Insolvency Act 1986 Section 214 - Wrongful Trading (Director Personal Liability for Insufficient Steps to Minimise Creditor Loss, Reasonably Diligent Person Test, Shadow Director Inclusion) - **ID**: uk-insolvency-act-1986-section-214-wrongful-trading-director-liability - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Section 214 of the Insolvency Act 1986 (c. 45) creates the foundational UK wrongful trading provision - the principal civil mechanism for directors' personal liability where they continue trading beyo... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-insolvency-act-1986-section-214-wrongful-trading-director-liability.json #### Insurance Act 2015: The Insured's Duty of Fair Presentation - **ID**: uk-insurance-act-2015-fair-presentation - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The UK Insurance Act 2015 requires non-consumer insureds to make a 'fair presentation of the risk' to insurers before a contract is entered into, as defined in Section 3. This involves disclosing ever... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-insurance-act-2015-fair-presentation.json #### UK PRA Supervisory Statement SS1/23 - Model Risk Management Principles for Banks - **ID**: uk-pra-supervisory-statement-ss1-23 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Supervisory Statement (SS) from the UK's Prudential Regulation Authority (PRA) establishes five core principles for the effective management of model risk, applicable to all UK-incorporated banks... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-pra-supervisory-statement-ss1-23.json #### UK Financial Services (Banking Reform) Act 2013 - Ring-Fencing of Retail Banking - **ID**: uk-ring-fencing-banking-reform-act-2013 - **Category**: Banking & Global Finance - **Version**: 2024.1.1 - **BLUF**: The UK Financial Services (Banking Reform) Act 2013 mandates structural separation (ring-fencing) of core retail banking services from investment banking activities for banks with more than £25 billio... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ring-fencing-banking-reform-act-2013.json #### Senior Managers and Certification Regime (SMCR) - **ID**: uk-smcr-senior-manager-certification - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The UK's Senior Managers and Certification Regime (SMCR) establishes a framework for individual accountability in regulated financial services firms, requiring firms to clearly allocate responsibiliti... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-smcr-senior-manager-certification.json #### UK Senior Managers and Certification Regime (SMCR) - Individual Accountability in Financial Services - **ID**: uk-smcr-senior-managers-certification-regime-2016 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The UK Senior Managers and Certification Regime (SMCR), established under the Financial Services (Banking Reform) Act 2013 and extended to all FCA/PRA-authorised firms by December 2019, replaces the A... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-smcr-senior-managers-certification-regime-2016.json #### Terrorism Act 2000, Section 19: Disclosure of information: duty - **ID**: uk-terrorism-act-2000-section-19-failure-disclose - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This section mandates that a person must disclose information they know or believe could help prevent a terrorist act or lead to the prosecution of a terrorist, as soon as reasonably practicable, to a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-terrorism-act-2000-section-19-failure-disclose.json #### UK Financial Services and Markets Act 2000 - **ID**: uk-ukpga-2000-8 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Financial Services and Markets Act 2000 is an Act of the Parliament of the United Kingdom that regulates financial services and markets. It provides for the transfer of certain statutory functions... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukpga-2000-8.json #### UK Financial Services and Markets Act 2000 Part 8B Cash Access Services - **ID**: uk-ukpga-2000-8-part-8b-cash-access-services - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Part 8B of the UK Financial Services and Markets Act 2000 establishes a framework for cash access services in the United Kingdom. The Treasury is required to prepare a cash access policy statement out... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukpga-2000-8-part-8b-cash-access-services.json #### United Nations Model Double Taxation Convention between Developed and Developing Countries 2021 - **ID**: un-model-double-taxation-convention-2021 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The UN Model Convention 2021 introduces Article 12A, granting source States taxing rights over fees for technical services paid to a resident of another contracting State, even without a permanent est... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-model-double-taxation-convention-2021.json #### UN Security Council Resolution 1373 (2001) - Suppression of Financing and Support of Terrorism - **ID**: unscr-1373-2001-counter-terrorism-financing-suppression - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: UN Security Council Resolution 1373 was adopted unanimously on 28 September 2001 under Chapter VII of the UN Charter and imposes legally binding obligations on all UN Member States to prevent and supp... - **Discovery URL**: https://bidda.com/api/v1/nodes/unscr-1373-2001-counter-terrorism-financing-suppression.json #### US 12 CFR Part 1003: Home Mortgage Disclosure (Regulation C) - **ID**: us-12-cfr-part-1003-hmda-regulation-c - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: US 12 CFR Part 1003 (Regulation C) implements the Home Mortgage Disclosure Act (HMDA) requiring depository and non-depository financial institutions to collect record and report data about residential... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-12-cfr-part-1003-hmda-regulation-c.json #### US 12 CFR Part 1005: Electronic Fund Transfers (Regulation E) - **ID**: us-12-cfr-part-1005-regulation-e-electronic-fund-transfers - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: US 12 CFR Part 1005 (Regulation E) implements the Electronic Fund Transfer Act (EFTA) of 1978 establishing rights liabilities and responsibilities for participants in electronic fund transfer (EFT) sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-12-cfr-part-1005-regulation-e-electronic-fund-transfers.json #### US 12 CFR Part 1026: Truth in Lending (Regulation Z) - CFPB - **ID**: us-12-cfr-part-1026-regulation-z-truth-in-lending - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: US 12 CFR Part 1026 (Regulation Z) implements the Truth in Lending Act (TILA) and other related statutes including the Home Ownership and Equity Protection Act (HOEPA), the Mortgage Disclosure Improve... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-12-cfr-part-1026-regulation-z-truth-in-lending.json #### US 12 CFR Part 217: Regulatory Capital, Capital Adequacy of Bank Holding Companies, Savings and Loan Holding Companies, and State Member Banks (Regulation Q) - **ID**: us-12-cfr-part-217-regulation-q-regulatory-capital - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: US 12 CFR Part 217 (Regulation Q) implements the Basel III framework for the Federal Reserve including risk-based and leverage capital requirements for bank holding companies, covered savings and loan... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-12-cfr-part-217-regulation-q-regulatory-capital.json #### US 12 CFR Part 225: Bank Holding Companies and Change in Bank Control (Regulation Y) - **ID**: us-12-cfr-part-225-regulation-y-bank-holding-companies - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: US 12 CFR Part 225 (Regulation Y) governs the formation, activities, and acquisitions of bank holding companies (BHCs) under the Bank Holding Company Act of 1956 and the supervision of nonbank subsidi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-12-cfr-part-225-regulation-y-bank-holding-companies.json #### 12 CFR Part 249 - Federal Reserve Liquidity Risk Measurement Standards (Regulation WW): Liquidity Coverage Ratio (LCR), Net Stable Funding Ratio (NSFR), and HQLA Requirements for Board-Regulated Institutions - **ID**: us-12-cfr-part-249-federal-reserve-lcr-regulation-ww - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 CFR Part 249 is the Federal Reserve's Regulation WW implementing the Basel III Liquidity Coverage Ratio (LCR) and Net Stable Funding Ratio (NSFR) for Board-regulated institutions on a consolidated ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-12-cfr-part-249-federal-reserve-lcr-regulation-ww.json #### US 12 CFR Part 30: Safety and Soundness Standards (OCC) - **ID**: us-12-cfr-part-30-occ-safety-soundness-standards - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: US 12 CFR Part 30 prescribes the standards for safety and soundness for OCC-supervised national banks, federal savings associations, and federal branches and agencies of foreign banks, as well as heig... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-12-cfr-part-30-occ-safety-soundness-standards.json #### US Real Estate Settlement Procedures Act - 12 USC 2605 Servicing of Mortgage Loans, Notice of Transfer, and Qualified Written Requests - **ID**: us-12-usc-2605-respa-servicing-mortgage-loans-qualified-written-requests - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 USC 2605 titled 'Servicing of mortgage loans and administration of escrow accounts' is the RESPA Section 6 provision governing notice of transfer of mortgage loan servicing, response to qualified w... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-12-usc-2605-respa-servicing-mortgage-loans-qualified-written-requests.json #### US Real Estate Settlement Procedures Act - 12 USC 2607 Prohibition against Kickbacks and Unearned Fees (RESPA Section 8) - **ID**: us-12-usc-2607-respa-prohibition-kickbacks-unearned-fees - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 USC 2607 titled 'Prohibition against kickbacks and unearned fees' is the Real Estate Settlement Procedures Act (RESPA) Section 8 provision banning compensated business referrals and unearned-fee sp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-12-usc-2607-respa-prohibition-kickbacks-unearned-fees.json #### US Truth in Lending Act - 15 USC 1635 Right of Rescission as to Certain Transactions - **ID**: us-15-usc-1635-tila-right-of-rescission-principal-dwelling - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1635 titled 'Right of rescission as to certain transactions' is the Truth in Lending Act (TILA) provision granting consumers the right to rescind certain consumer credit transactions secured by... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1635-tila-right-of-rescission-principal-dwelling.json #### US Truth in Lending Act - 15 USC 1666 Correction of Billing Errors on Open-End Consumer Credit Plans - **ID**: us-15-usc-1666-tila-correction-of-billing-errors - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1666 titled 'Correction of billing errors' is the Truth in Lending Act provision governing the consumer's right to dispute alleged billing errors on open-end consumer credit plans and the credi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1666-tila-correction-of-billing-errors.json #### US Fair Credit Reporting Act - 15 USC 1681b Permissible Purposes of Consumer Reports - **ID**: us-15-usc-1681b-fcra-permissible-purposes-consumer-reports - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1681b titled 'Permissible purposes of consumer reports' is the FCRA gating provision that limits the circumstances under which a consumer reporting agency may furnish a consumer report. Subsect... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1681b-fcra-permissible-purposes-consumer-reports.json #### US Fair Credit Reporting Act - 15 USC 1681c-1 Identity Theft Prevention; Fraud Alerts and Active Duty Alerts - **ID**: us-15-usc-1681c-1-fcra-fraud-alerts-active-duty-alerts - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1681c-1 titled 'Identity theft prevention; fraud alerts and active duty alerts' is the FCRA provision that establishes consumer-initiated fraud alerts and active duty alerts on consumer files h... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1681c-1-fcra-fraud-alerts-active-duty-alerts.json #### US Fair Credit Reporting Act - 15 USC 1681c Requirements Relating to Information Contained in Consumer Reports (Obsolescence Periods) - **ID**: us-15-usc-1681c-fcra-information-excluded-from-consumer-reports - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1681c titled 'Requirements relating to information contained in consumer reports' is the FCRA provision that establishes the maximum reporting periods (obsolescence rules) for adverse informati... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1681c-fcra-information-excluded-from-consumer-reports.json #### US Fair Credit Reporting Act - 15 USC 1681e Compliance Procedures and Maximum Possible Accuracy - **ID**: us-15-usc-1681e-fcra-compliance-procedures-maximum-accuracy - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1681e titled 'Compliance procedures' establishes two foundational FCRA duties on consumer reporting agencies. Subsection (a) requires every consumer reporting agency to maintain reasonable proc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1681e-fcra-compliance-procedures-maximum-accuracy.json #### US Fair Credit Reporting Act - 15 USC 1681g Disclosures to Consumers (File Disclosure, Summary of Rights, Credit Score Disclosure) - **ID**: us-15-usc-1681g-fcra-disclosures-to-consumers - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1681g titled 'Disclosures to consumers' is the FCRA provision that requires consumer reporting agencies to disclose to the consumer the contents of the consumer's file, a summary of consumer ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1681g-fcra-disclosures-to-consumers.json #### US Fair Credit Reporting Act - 15 USC 1681i Procedure in Case of Disputed Accuracy - **ID**: us-15-usc-1681i-fcra-reinvestigation-disputed-information - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1681i titled 'Procedure in case of disputed accuracy' governs the consumer reporting agency reinvestigation process when a consumer disputes the accuracy or completeness of any item of informat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1681i-fcra-reinvestigation-disputed-information.json #### US Fair Credit Reporting Act - 15 USC 1681j Charges for Certain Disclosures (Free Annual Report, Post-Adverse-Action Free Report) - **ID**: us-15-usc-1681j-fcra-charges-for-certain-disclosures - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1681j titled 'Charges for certain disclosures' is the FCRA provision that establishes the consumer's right to free consumer reports under specified conditions and caps the price a nationwide co... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1681j-fcra-charges-for-certain-disclosures.json #### US Fair Credit Reporting Act - 15 USC 1681m Requirements on Users of Consumer Reports and Adverse Action Notices - **ID**: us-15-usc-1681m-fcra-requirements-on-users-adverse-action - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1681m titled 'Requirements on users of consumer reports' imposes the FCRA notification duties on any person who takes adverse action with respect to a consumer that is based in whole or in part... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1681m-fcra-requirements-on-users-adverse-action.json #### US Fair Credit Reporting Act - 15 USC 1681n Civil Liability for Willful Noncompliance - **ID**: us-15-usc-1681n-fcra-civil-liability-willful-noncompliance - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1681n titled 'Civil liability for willful noncompliance' is the FCRA provision that creates a private right of action against any person who willfully fails to comply with any requirement impos... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1681n-fcra-civil-liability-willful-noncompliance.json #### US Fair Credit Reporting Act - 15 USC 1681o Civil Liability for Negligent Noncompliance - **ID**: us-15-usc-1681o-fcra-civil-liability-negligent-noncompliance - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1681o titled 'Civil liability for negligent noncompliance' is the FCRA provision that creates a private right of action against any person who is negligent in failing to comply with any require... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1681o-fcra-civil-liability-negligent-noncompliance.json #### US Fair Credit Reporting Act - 15 USC 1681s-2 Responsibilities of Furnishers of Information to Consumer Reporting Agencies - **ID**: us-15-usc-1681s-2-fcra-furnisher-responsibilities - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1681s-2 titled 'Responsibilities of furnishers of information to consumer reporting agencies' imposes the FCRA accuracy and dispute-handling duties on furnishers. Subsection (a)(1) prohibits a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1681s-2-fcra-furnisher-responsibilities.json #### US Fair Debt Collection Practices Act - 15 USC 1692e False or Misleading Representations - **ID**: us-15-usc-1692e-fdcpa-false-misleading-representations-debt-collection - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1692e is the Fair Debt Collection Practices Act provision that prohibits false, deceptive, or misleading representations or means by debt collectors in connection with the collection of any deb... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1692e-fdcpa-false-misleading-representations-debt-collection.json #### US Fair Debt Collection Practices Act - 15 USC 1692g Validation of Debts - **ID**: us-15-usc-1692g-fdcpa-validation-of-debts - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1692g is the Fair Debt Collection Practices Act provision that requires debt collectors to provide consumers with written validation of debts and to honor the consumer's right to dispute the de... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1692g-fdcpa-validation-of-debts.json #### US Electronic Fund Transfer Act - 15 USC 1693e Preauthorized Transfers and Stop-Payment Rights - **ID**: us-15-usc-1693e-efta-preauthorized-transfers-stop-payment - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1693e titled 'Preauthorized transfers' is the Electronic Fund Transfer Act (EFTA) provision that governs recurring electronic debits from a consumer's account and the consumer's stop-payment ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1693e-efta-preauthorized-transfers-stop-payment.json #### US Electronic Fund Transfer Act - 15 USC 1693f Error Resolution - **ID**: us-15-usc-1693f-efta-error-resolution-procedures - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1693f titled 'Error resolution' is the Electronic Fund Transfer Act (EFTA) provision that governs how financial institutions must investigate and resolve consumer error notices on electronic fu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1693f-efta-error-resolution-procedures.json #### US Electronic Fund Transfer Act - 15 USC 1693g Consumer Liability for Unauthorized Electronic Fund Transfers - **ID**: us-15-usc-1693g-efta-consumer-liability-unauthorized-electronic-fund-transfers - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 1693g titled 'Consumer liability' is the Electronic Fund Transfer Act (EFTA) provision that caps consumer liability for unauthorized electronic fund transfers and allocates the burden of proof ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-1693g-efta-consumer-liability-unauthorized-electronic-fund-transfers.json #### US Securities Act of 1933 - 15 USC 77q Fraudulent Interstate Transactions - **ID**: us-15-usc-77q-securities-act-fraudulent-interstate-transactions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 77q is the Securities Act of 1933 section 17 antifraud provision applicable to the offer or sale of securities. It complements 15 USC 78j (Exchange Act section 10) by reaching offers as well as... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-77q-securities-act-fraudulent-interstate-transactions.json #### US Securities Exchange Act of 1934 - 15 USC 78j Manipulative and Deceptive Devices - **ID**: us-15-usc-78j-exchange-act-manipulative-deceptive-devices - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 15 USC 78j is the Securities Exchange Act of 1934 section 10 prohibition on manipulative and deceptive devices in connection with the purchase or sale of securities. It is the statutory basis for SEC ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-78j-exchange-act-manipulative-deceptive-devices.json #### US 16 CFR Part 314: Standards for Safeguarding Customer Information (FTC Safeguards Rule) - **ID**: us-16-cfr-part-314-ftc-safeguards-rule - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: US 16 CFR Part 314 (the FTC Safeguards Rule) implements Section 501(b) of the Gramm-Leach-Bliley Act (GLBA) by requiring covered financial institutions under FTC jurisdiction to develop, implement, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-16-cfr-part-314-ftc-safeguards-rule.json #### US SEC - 17 CFR 230.144 Persons Deemed Not to be Engaged in a Distribution (Rule 144 Resale of Restricted and Control Securities) - **ID**: us-17-cfr-230-144-resale-of-restricted-and-control-securities - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR 230.144 titled 'Persons deemed not to be engaged in a distribution and therefore not underwriters' is the principal SEC safe harbor under section 4(a)(1) of the Securities Act of 1933 permittin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-230-144-resale-of-restricted-and-control-securities.json #### US SEC - 17 CFR 230.501 Regulation D Rule 501 Definitions and Terms Used in Regulation D (Including Accredited Investor) - **ID**: us-17-cfr-230-501-regulation-d-accredited-investor-definitions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR 230.501 titled 'Definitions and terms used in Regulation D' is the SEC rule defining the term 'accredited investor' (along with other key terms used in the Regulation D private placement safe h... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-230-501-regulation-d-accredited-investor-definitions.json #### US SEC - 17 CFR 230.506 Regulation D Rule 506 Exemption for Limited Offers and Sales Without Regard to Dollar Amount of Offering - **ID**: us-17-cfr-230-506-regulation-d-private-placement-safe-harbors - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR 230.506 titled 'Exemption for limited offers and sales without regard to dollar amount of offering' is the central Regulation D private-placement safe harbor under section 4(a)(2) of the Securi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-230-506-regulation-d-private-placement-safe-harbors.json #### US SEC - 17 CFR 240.10b5-1 Trading on the Basis of Material Nonpublic Information in Insider Trading Cases - **ID**: us-17-cfr-240-10b5-1-trading-on-the-basis-of-material-nonpublic-information - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR 240.10b5-1 titled 'Trading on the basis of material nonpublic information in insider trading cases' is the SEC rule that defines when a purchase or sale of a security constitutes trading on the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-240-10b5-1-trading-on-the-basis-of-material-nonpublic-information.json #### US SEC - 17 CFR 240.13d-1 Filing of Schedules 13D and 13G for Beneficial Ownership Reporting - **ID**: us-17-cfr-240-13d-1-filing-schedules-13d-and-13g-beneficial-ownership - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR 240.13d-1 titled 'Filing of Schedules 13D and 13G' is the SEC beneficial-ownership reporting rule under section 13(d) of the Exchange Act. Paragraph (a) provides that any person who, after acqu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-240-13d-1-filing-schedules-13d-and-13g-beneficial-ownership.json #### US SEC - 17 CFR 240.13e-3 Going Private Transactions by Certain Issuers or their Affiliates - **ID**: us-17-cfr-240-13e-3-going-private-transactions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR 240.13e-3 titled 'Going private transactions by certain issuers or their affiliates' is the SEC anti-fraud and disclosure rule governing 'Rule 13e-3 transactions' under section 13(e) of the Exc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-240-13e-3-going-private-transactions.json #### US SEC - 17 CFR 240.14a-9 False or Misleading Statements in Proxy Solicitation - **ID**: us-17-cfr-240-14a-9-false-or-misleading-statements-proxy-solicitation - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR 240.14a-9 titled 'False or misleading statements' is the SEC anti-fraud rule under section 14(a) of the Exchange Act that prohibits material misstatements and omissions in proxy solicitations o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-240-14a-9-false-or-misleading-statements-proxy-solicitation.json #### US SEC - 17 CFR 240.16a-3 Section 16 Reporting of Transactions and Holdings (Forms 3, 4, 5) - **ID**: us-17-cfr-240-16a-3-section-16-reporting-transactions-holdings - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR 240.16a-3 titled 'Reporting transactions and holdings' is the SEC rule implementing section 16(a) of the Exchange Act by specifying the Forms 3, 4, and 5 filing requirements for officers, direc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-240-16a-3-section-16-reporting-transactions-holdings.json #### US SEC - 17 CFR 240.17a-4 Records to be Preserved by Certain Exchange Members, Brokers and Dealers - **ID**: us-17-cfr-240-17a-4-broker-dealer-records-preservation - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR 240.17a-4 titled 'Records to be preserved by certain exchange members, brokers and dealers' is the SEC books-and-records preservation rule under section 17 of the Exchange Act, defining retenti... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-240-17a-4-broker-dealer-records-preservation.json #### US SEC - 17 CFR 242.203 Regulation SHO Borrowing and Delivery Requirements (Locate and Close-Out) - **ID**: us-17-cfr-242-203-regulation-sho-locate-and-close-out - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR 242.203 titled 'Borrowing and delivery requirements' is the Regulation SHO rule that imposes locate and close-out obligations on broker-dealers in connection with short sales and certain long-s... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-242-203-regulation-sho-locate-and-close-out.json #### US 17 CFR Part 230: General Rules and Regulations, Securities Act of 1933 - **ID**: us-17-cfr-part-230-sec-securities-act-rules - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: US 17 CFR Part 230 contains the SEC rules under the Securities Act of 1933 governing offers and sales of securities. The Securities Act requires that every offer or sale of a security be registered wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-part-230-sec-securities-act-rules.json #### US 17 CFR Part 240: General Rules and Regulations, Securities Exchange Act of 1934 - **ID**: us-17-cfr-part-240-sec-exchange-act-rules - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: US 17 CFR Part 240 contains the rules adopted by the SEC under the Securities Exchange Act of 1934 covering registration of securities and exchanges, periodic reporting (Forms 10-K, 10-Q, 8-K), tender... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-part-240-sec-exchange-act-rules.json #### US 17 CFR Part 270: Rules and Regulations, Investment Company Act of 1940 - **ID**: us-17-cfr-part-270-investment-company-act-rules - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: US 17 CFR Part 270 contains the SEC rules under the Investment Company Act of 1940 governing registered investment companies including open-end funds (mutual funds), closed-end funds, and exchange-tra... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-part-270-investment-company-act-rules.json #### US 17 CFR Part 275: Rules and Regulations, Investment Advisers Act of 1940 - **ID**: us-17-cfr-part-275-investment-advisers-act-rules - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: US 17 CFR Part 275 contains the SEC rules under the Investment Advisers Act of 1940 governing investment advisers registered with the SEC (over $110M assets under management or required by state law t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-cfr-part-275-investment-advisers-act-rules.json #### US Bank Holding Company Act (12 USC ch 17): Bank Holding Company Acquisitions and Activities - **ID**: us-bank-holding-company-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Bank Holding Company Act (12 U.S.C. ch. 17) regulates the formation, acquisitions and permissible activities of companies that control banks, administered by the Board of Governors of the Federal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bank-holding-company-act.json #### US Bank Holding Company Act 1956 (BHCA) - BHC Supervision & Permissible Activities - **ID**: us-bank-holding-company-act-1956 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Bank Holding Company Act of 1956 (12 USC §1841 et seq.) requires companies that own or control one or more banks to register as Bank Holding Companies (BHCs) with the Federal Reserve and subjects ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bank-holding-company-act-1956.json #### Banking Act 1933 Section 21 (Glass-Steagall) - 12 USC 378 - **ID**: us-banking-act-1933-section-21-12-usc-378 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Section 378 of title 12 of the United States Code, section 21 of the Banking Act of 1933 (Public Law 73-66, enacted 16 June 1933 - the Glass-Steagall Act), criminalises the simultaneous conduct of sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-banking-act-1933-section-21-12-usc-378.json #### US Bankruptcy Abuse Prevention and Consumer Protection Act of 2005 (Public Law 109-8) - Chapter 7 Means Test and Credit Counseling - **ID**: us-bapcpa-2005-bankruptcy-abuse-prevention-pl-109-8 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Bankruptcy Abuse Prevention and Consumer Protection Act of 2005 amended Title 11 of the United States Code to require individual debtors above state median income to satisfy a means test before fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bapcpa-2005-bankruptcy-abuse-prevention-pl-109-8.json #### US Internal Revenue Code Section 59A - Base Erosion and Anti-Abuse Tax (BEAT): Base Erosion Percentage Test, Applicable Taxpayers (>$500M Revenue) and Modified Taxable Income Calculation - **ID**: us-beat-code-59a-base-erosion-anti-abuse - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Under IRC § 59A, U.S. corporations and foreign corporations with U.S. branches that are part of a group with average annual gross receipts of at least $500 million must pay a minimum tax if their 'bas... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-beat-code-59a-base-erosion-anti-abuse.json #### CFPB Personal Financial Data Rights Final Rule - 12 CFR Part 1033 (Section 1033 of CFPA) - **ID**: us-cfpb-1033-personal-financial-data-rights-2024 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The CFPB's Personal Financial Data Rights final rule (12 CFR Part 1033) implements Section 1033 of the Consumer Financial Protection Act and obliges depository and nondepository data providers to make... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-1033-personal-financial-data-rights-2024.json #### 12 CFR Part 1002 - Equal Credit Opportunity Act (Regulation B) - **ID**: us-cfpb-12-cfr-1002-regulation-b-equal-credit-opportunity - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: CFPB Regulation B implements the Equal Credit Opportunity Act, prohibiting creditors from discriminating against an applicant on a prohibited basis in any aspect of a credit transaction, restricting t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-12-cfr-1002-regulation-b-equal-credit-opportunity.json #### US CFPB Regulation E - 12 CFR Part 1005 Electronic Fund Transfer Act Disclosure, Error Resolution, Unauthorized Transfer Liability and Remittance Transfer Obligations - **ID**: us-cfpb-12-cfr-1005-reg-e-electronic-fund-transfers - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation E at 12 CFR Part 1005 is issued by the CFPB to implement the Electronic Fund Transfer Act (EFTA), 15 U.S.C. 1693 et seq. The regulation protects individual consumers engaging in electronic ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-12-cfr-1005-reg-e-electronic-fund-transfers.json #### US CFPB Regulation F - 12 CFR Part 1006 Fair Debt Collection Practices Act Communication, Validation Notice and Time-Barred Debt Obligations - **ID**: us-cfpb-12-cfr-1006-reg-f-fair-debt-collection-practices - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation F at 12 CFR Part 1006 is issued by the CFPB to implement the Fair Debt Collection Practices Act (FDCPA), 15 U.S.C. 1692 et seq. The rule applies to debt collectors as defined in §1006.2(i),... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-12-cfr-1006-reg-f-fair-debt-collection-practices.json #### US CFPB Regulation M - 12 CFR Part 1013 Consumer Leasing Act Lease Disclosure, Advertising and Record Retention Obligations for Lessors - **ID**: us-cfpb-12-cfr-1013-reg-m-consumer-leasing - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation M at 12 CFR Part 1013 is issued by the CFPB to implement the Consumer Leasing Act, which is Chapter 5 of the Truth in Lending Act (15 U.S.C. 1667 et seq.). The regulation applies to consume... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-12-cfr-1013-reg-m-consumer-leasing.json #### 12 CFR Part 1016 - Privacy of Consumer Financial Information (Regulation P) (CFPB) - **ID**: us-cfpb-12-cfr-1016-regulation-p-financial-privacy - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: CFPB 12 CFR Part 1016 (Regulation P) implements the privacy provisions of the Gramm-Leach-Bliley Act, requiring a financial institution to provide an initial privacy notice to consumers and an annual ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-12-cfr-1016-regulation-p-financial-privacy.json #### 12 CFR Part 1024 (Regulation X) - RESPA Settlement, Escrow and Mortgage Servicing Rules - **ID**: us-cfpb-12-cfr-1024-respa-regulation-x-mortgage-servicing - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation X (12 CFR Part 1024) implements the Real Estate Settlement Procedures Act (RESPA) and is administered by the Consumer Financial Protection Bureau. It applies to federally related mortgage l... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-12-cfr-1024-respa-regulation-x-mortgage-servicing.json #### US CFPB Regulation DD - 12 CFR Part 1030 Truth in Savings Act Disclosure, Periodic Statement and Advertising Obligations for Depository Institutions - **ID**: us-cfpb-12-cfr-1030-reg-dd-truth-in-savings - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation DD, codified at 12 CFR Part 1030, is issued by the Consumer Financial Protection Bureau to implement the Truth in Savings Act of 1991 (12 U.S.C. 4301 et seq., contained in the Federal Depos... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-12-cfr-1030-reg-dd-truth-in-savings.json #### US CFPB Payday Lending Rule - 12 CFR Part 1041 Payment Withdrawal Restrictions, Consumer Notice Obligations and Compliance Program for Covered Short-Term and Vehicle-Title Loans - **ID**: us-cfpb-12-cfr-1041-payday-vehicle-title-high-cost-installment-loans - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Payday, Vehicle Title, and Certain High-Cost Installment Loans rule at 12 CFR Part 1041 is issued by the CFPB under Title X of the Dodd-Frank Wall Street Reform and Consumer Protection Act (12 U.S... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-12-cfr-1041-payday-vehicle-title-high-cost-installment-loans.json #### US CFPB Larger Participant Rules - 12 CFR Part 1090 Supervisory Jurisdiction Over Nonbank Larger Participants in Defined Consumer Financial Markets - **ID**: us-cfpb-12-cfr-1090-larger-participants-of-consumer-financial-product-or-service-markets - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 CFR Part 1090 defines nonbank covered persons that qualify as larger participants of certain markets for consumer financial products or services pursuant to 12 U.S.C. 5514(a)(1)(B) and (a)(2). A la... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-12-cfr-1090-larger-participants-of-consumer-financial-product-or-service-markets.json #### 12 CFR Part 1005 - Electronic Fund Transfers (Regulation E) - **ID**: us-cfpb-cfr-12-part-1005-regulation-e-electronic-fund - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes the rights, liabilities, and responsibilities of participants in electronic fund transfer systems, mandating disclosures, error resolution procedures, and limitations on co... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-cfr-12-part-1005-regulation-e-electronic-fund.json #### 12 CFR Part 1026 - Truth in Lending (Regulation Z) - **ID**: us-cfpb-cfr-12-part-1026-regulation-z-truth-lending - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Organizations must follow specified procedures for accessing, interpreting, and providing feedback on regulatory text published on the eCFR website. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-cfr-12-part-1026-regulation-z-truth-lending.json #### US CFPB Circular 2022-03 - Adverse Action Notification Requirements in Connection with Credit Decisions Based on Complex Algorithms (May 26, 2022) - **ID**: us-cfpb-circular-2022-03-adverse-action-ai-credit - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Consumer Financial Protection Bureau Circular 2022-03 (published May 26, 2022) confirms that creditors using complex algorithms - including artificial intelligence and machine learning models - to mak... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-circular-2022-03-adverse-action-ai-credit.json #### US Consumer Financial Protection Bureau - Consumer Financial Protection Circular 2023-03 (September 19, 2023): Adverse Action Notification Requirements and the Proper Use of the CFPB's Sample Forms Provided in Regulation B; AI/Algorithmic Credit Decisioning Has No Special Exemption - **ID**: us-cfpb-circular-2023-03-adverse-action-ai - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Consumer Financial Protection Circular 2023-03, 'Adverse action notification requirements and the proper use of the CFPB's sample forms provided in Regulation B', was issued on September 19, 2023 by t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-circular-2023-03-adverse-action-ai.json #### US CFPB Dodd-Frank Title X - Consumer Financial Protection Bureau & UDAAP - **ID**: us-cfpb-dodd-frank-title-x-consumer-financial-protection - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Dodd-Frank Title X (12 USC §§5481-5603) established the Consumer Financial Protection Bureau (CFPB) with broad authority to regulate consumer financial products and services. The CFPB's primary enforc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-dodd-frank-title-x-consumer-financial-protection.json #### US CFPB Personal Financial Data Rights Rule 12 CFR Part 1033 - Open Banking Implementation Under Dodd-Frank Section 1033, Final Rule 22 October 2024 - **ID**: us-cfpb-rule-1033-personal-financial-data-rights-2024 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Data providers that are depository institutions, credit card issuers, prepaid account issuers, and digital wallet providers (and similar) covered under the Consumer Financial Protection Bureau's Perso... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfpb-rule-1033-personal-financial-data-rights-2024.json #### 12 CFR Part 30 - Safety and Soundness Standards - **ID**: us-cfr-12-part-30-safety-soundness-standards - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes a framework for the Office of the Comptroller of the Currency to identify failures to meet safety and soundness standards, require the submission of compliance plans, and i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfr-12-part-30-safety-soundness-standards.json #### 12 CFR Part 364 - Standards for Safety and Soundness - **ID**: us-cfr-12-part-364-safety-soundness-fdic - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes interagency standards for safety, soundness, and information security that insured depository institutions must implement and maintain. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfr-12-part-364-safety-soundness-fdic.json #### 17 CFR Part 30 - Foreign Futures and Foreign Options Transactions - **ID**: us-cftc-17-cfr-30-foreign-futures-and-options-transactions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR Part 30 governs the offer and sale in the United States of foreign futures and foreign options products, that is, contracts made or to be made on or subject to the rules of a foreign board of t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cftc-17-cfr-30-foreign-futures-and-options-transactions.json #### 17 CFR Part 38 - Designated Contract Markets (CFTC Core Principles) - **ID**: us-cftc-17-cfr-38-designated-contract-markets - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR Part 38 implements the core principles that a board of trade must satisfy to obtain and maintain designation as a contract market (DCM) with the Commodity Futures Trading Commission under secti... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cftc-17-cfr-38-designated-contract-markets.json #### 17 CFR Part 41 - Security Futures Products - **ID**: us-cftc-17-cfr-41-security-futures-products - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR Part 41 sets out the requirements for security futures products, which are jointly regulated by the Commodity Futures Trading Commission and the Securities and Exchange Commission. It governs t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cftc-17-cfr-41-security-futures-products.json #### 17 CFR Part 23 - Swap Dealers and Major Swap Participants - **ID**: us-cftc-cfr-17-part-23-swap-dealers - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes registration, capital, margin, recordkeeping, and reporting requirements for swap dealers and major swap participants to ensure financial stability and market integrity. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cftc-cfr-17-part-23-swap-dealers.json #### 17 CFR Part 39 - Derivatives Clearing Organizations - **ID**: us-cftc-cfr-17-part-39-derivatives-clearing-organizations - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes core principles and compliance obligations for Derivatives Clearing Organizations (DCOs) concerning financial resources, risk management, settlement procedures, default rul... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cftc-cfr-17-part-39-derivatives-clearing-organizations.json #### US Commodity Exchange Act (7 USC ch 1): CFTC Jurisdiction, Contract Markets, Fraud and Manipulation - **ID**: us-commodity-exchange-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Commodity Exchange Act (7 U.S.C. ch. 1) is the federal statute regulating the trading of commodity futures, options and swaps in the United States, administered by the Commodity Futures Trading Co... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-commodity-exchange-act.json #### US Community Reinvestment Act (12 USC ch 30): Meeting Community Credit Needs - **ID**: us-community-reinvestment-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Community Reinvestment Act (12 U.S.C. ch. 30) requires that insured depository institutions help meet the credit needs of the communities in which they operate, including low- and moderate-income ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-community-reinvestment-act.json #### US Community Reinvestment Act (CRA) - 12 USC 2901 - **ID**: us-community-reinvestment-act-cra-1977 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: CRA requires federally insured depository institutions to help meet credit needs of their entire communities, including low- and moderate-income (LMI) neighbourhoods, with performance evaluated under ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-community-reinvestment-act-cra-1977.json #### US Credit Card Accountability Responsibility and Disclosure Act of 2009 (Public Law 111-24) - Consumer Credit Card Protections - **ID**: us-credit-card-act-2009-pl-111-24 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Credit Card Accountability Responsibility and Disclosure Act of 2009 amended the Truth in Lending Act to limit retroactive interest rate increases on existing balances, require 45 days advance wri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-credit-card-act-2009-pl-111-24.json #### US Credit Repair Organizations Act (15 USC 1679) - Consumer Protection for Credit Repair Services - **ID**: us-credit-repair-organizations-act-15-usc-1679 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Credit Repair Organizations Act prohibits credit repair organizations from making untrue or misleading statements about consumer credit standing or capacity to creditors or consumer reporting agen... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-credit-repair-organizations-act-15-usc-1679.json #### US Dodd-Frank Wall Street Reform and Consumer Protection Act 2010 -- Volcker Rule, OTC Derivatives, and CFPB - **ID**: us-dodd-frank-act-2010 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: The Dodd-Frank Wall Street Reform and Consumer Protection Act 2010 (Pub. L. 111-203) is the primary US post-financial-crisis regulatory reform legislation. Title I establishes the Financial Stability ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dodd-frank-act-2010.json #### US Dodd-Frank Wall Street Reform and Consumer Protection Act 2010 - Titles I, II, VII, X (Key Provisions) - **ID**: us-dodd-frank-key-provisions - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Dodd-Frank Act establishes a comprehensive regulatory framework to reduce systemic risk in the U.S. financial system, primarily affecting banks, financial institutions, and market participants. Ke... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dodd-frank-key-provisions.json #### US Dodd-Frank Act Section 13F - Large Institutional Investment Manager Reporting (Form 13F) - **ID**: us-dodd-frank-sec-13f - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Under Section 13(f) of the Securities Exchange Act of 1934, institutional investment managers exercising investment discretion over $100 million or more in specified equity securities must file Form 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dodd-frank-sec-13f.json #### US Dodd-Frank Act Section 922 - SEC Whistleblower Program Protections and Awards - **ID**: us-dodd-frank-section-922-sec-whistleblower-program - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Section 922 of the Dodd-Frank Wall Street Reform and Consumer Protection Act (2010) establishes the SEC Whistleblower Program: awarding whistleblowers 10-30% of sanctions above $1M for original inform... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dodd-frank-section-922-sec-whistleblower-program.json #### US Dodd-Frank Act Stress Testing (DFAST) and CCAR - 12 USC 5365(i) - **ID**: us-dodd-frank-stress-testing-dfast-2010 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: Dodd-Frank stress testing (DFAST) and the Comprehensive Capital Analysis and Review (CCAR) require bank holding companies with ≥$100B in total consolidated assets to submit annual capital plans and st... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dodd-frank-stress-testing-dfast-2010.json #### US Dodd-Frank Act Title VII - OTC Derivatives and Swap Dealer Regulation - **ID**: us-dodd-frank-title-vii-otc-derivatives-2010 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Title VII of the Dodd-Frank Wall Street Reform and Consumer Protection Act (Pub. L. 111-203, 21 July 2010) established the comprehensive US regulatory framework for over-the-counter (OTC) derivatives.... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dodd-frank-title-vii-otc-derivatives-2010.json #### Dodd-Frank Volcker Rule 12 CFR Part 248 - Proprietary Trading Prohibition for Banking Entities - **ID**: us-dodd-frank-volcker-rule-12-cfr-248-proprietary-trading-prohibition - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Section 619 of the Dodd-Frank Act (12 U.S.C. § 1851), implemented by 12 C.F.R. Part 248, prohibits banking entities from engaging in proprietary trading and from acquiring or retaining ownership inter... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dodd-frank-volcker-rule-12-cfr-248-proprietary-trading-prohibition.json #### 29 CFR Part 2550 - Rules and Regulations for Fiduciary Responsibility - **ID**: us-dol-cfr-29-part-2550-erisa-fiduciary-rules - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes rules for fiduciary responsibility under the Employee Retirement Income Security Act of 1974 (ERISA), covering the establishment of trusts, investment duties, disclosures, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dol-cfr-29-part-2550-erisa-fiduciary-rules.json #### United States Emergency Economic Stabilization Act of 2008 (EESA) Establishing the Troubled Asset Relief Program (TARP) (Public Law 110-343): Authority to Purchase Troubled Assets, Financial Stability Oversight Board, Reports to Congress, Executive Compensation and Corporate Governance, Minimization of Long-Term Costs, Graduated Authorization, Oversight and Audits, and Special Inspector General for TARP - **ID**: us-eesa-tarp-2008-pl-110-343 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Emergency Economic Stabilization Act of 2008 (EESA), Public Law 110-343 of 3 October 2008, is the principal federal statute authorizing the Department of the Treasury to establish the Troubled Ass... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eesa-tarp-2008-pl-110-343.json #### US Electronic Fund Transfer Act (15 USC ch 41 subch VI): Consumer EFT Rights, Error Resolution and Liability Caps - **ID**: us-electronic-fund-transfer-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Electronic Fund Transfer Act (EFTA, 15 U.S.C. ch. 41, subchapter VI) establishes the rights, liabilities and responsibilities of consumers and financial institutions in electronic fund transfers, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-electronic-fund-transfer-act.json #### US Equal Credit Opportunity Act (15 USC ch 41): Prohibition of Credit Discrimination - **ID**: us-equal-credit-opportunity-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Equal Credit Opportunity Act (15 U.S.C. ch. 41, subchapter IV) prohibits discrimination in credit transactions, enforced principally by the Consumer Financial Protection Bureau, with other agencie... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-equal-credit-opportunity-act.json #### US Equal Credit Opportunity Act (ECOA) - Regulation B - 15 USC 1691 - **ID**: us-equal-credit-opportunity-act-ecoa-1974 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: ECOA (implemented by Regulation B, 12 CFR Part 1002) prohibits credit discrimination on the basis of race, color, religion, national origin, sex, marital status, age, or receipt of public assistance; ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-equal-credit-opportunity-act-ecoa-1974.json #### 29 U.S. Code § 1132 - Civil enforcement - **ID**: us-erisa-29-usc-1132-civil-enforcement-beneficiary-rights - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This section empowers participants, beneficiaries, fiduciaries, and the Secretary of Labor to bring civil actions to recover benefits, enforce plan terms, or seek equitable relief for violations of ER... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-erisa-29-usc-1132-civil-enforcement-beneficiary-rights.json #### Employee Retirement Income Security Act of 1974 (ERISA) - Fiduciary Duties, Prohibited Transactions, and Reporting Requirements - **ID**: us-erisa-employee-benefit-plan-regulation - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Employee Retirement Income Security Act of 1974 (ERISA) establishes minimum standards for most private industry retirement and health plans, requiring fiduciaries under Title I, Part 4 to act prud... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-erisa-employee-benefit-plan-regulation.json #### US Fair Credit Reporting Act (15 USC ch 41 subch III): Consumer Reports, Permissible Purposes and Disputes - **ID**: us-fair-credit-reporting-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Fair Credit Reporting Act (FCRA, 15 U.S.C. ch. 41, subchapter III) regulates the collection, use and disclosure of consumer credit information by consumer reporting agencies, enforced by the Consu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fair-credit-reporting-act.json #### US Fair Credit Reporting Act (FCRA) - 15 USC 1681 - **ID**: us-fair-credit-reporting-act-fcra-1970 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: FCRA governs consumer credit reporting: maximum 7-year (10-year bankruptcy) reporting periods, 30-day dispute investigation, permissible-purpose requirement, adverse-action notice within 30 days, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fair-credit-reporting-act-fcra-1970.json #### US Fair Debt Collection Practices Act (15 USC ch 41 subch V): Debt Collector Conduct and Civil Liability - **ID**: us-fair-debt-collection-practices-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Fair Debt Collection Practices Act (FDCPA, 15 U.S.C. ch. 41, subchapter V, sections 1692 to 1692p) regulates the conduct of third-party debt collectors and is enforced by the Consumer Financial Pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fair-debt-collection-practices-act.json #### Foreign Account Tax Compliance Act (FATCA) and Intergovernmental Agreements (IGAs) - **ID**: us-fatca-iga-2010 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Foreign Account Tax Compliance Act (FATCA), under U.S. Internal Revenue Code §§ 1471-1474, requires foreign financial institutions (FFIs) to report information about financial accounts held by U.S... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fatca-iga-2010.json #### US Fair Credit Reporting Act (FCRA) - Consumer Report Accuracy, Access Rights, and Adverse Action - **ID**: us-fcra-15-usc-1681-consumer-credit-report-accuracy-access - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Fair Credit Reporting Act (15 U.S.C. § 1681) governs consumer reporting agencies (CRAs), furnishers of credit information, and users of consumer reports: mandating accuracy, limiting permissible p... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcra-15-usc-1681-consumer-credit-report-accuracy-access.json #### 12 CFR Part 337 - Unsafe and Unsound Banking Practices (Brokered Deposits, Rate Caps, Insider Credit) - **ID**: us-fdic-12-cfr-337-unsafe-and-unsound-banking-practices - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 CFR Part 337 sets out FDIC rules that address unsafe and unsound banking practices for FDIC-supervised institutions. Standby letters of credit must be combined with other guarantees and extensions ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fdic-12-cfr-337-unsafe-and-unsound-banking-practices.json #### 12 CFR Part 348 - Management Official Interlocks - **ID**: us-fdic-12-cfr-348-management-official-interlocks - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 CFR Part 348 implements the Depository Institution Management Interlocks Act and restricts a person from serving as a management official of two unaffiliated depository organizations at the same ti... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fdic-12-cfr-348-management-official-interlocks.json #### 12 CFR Part 362 - Activities and Investments of Insured State Banks and Savings Associations - **ID**: us-fdic-12-cfr-362-activities-of-insured-state-banks - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 CFR Part 362 implements section 24 of the Federal Deposit Insurance Act and limits the activities and equity investments that insured State banks, their subsidiaries, and insured State savings asso... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fdic-12-cfr-362-activities-of-insured-state-banks.json #### 12 CFR Part 329 - FDIC Liquidity Risk Measurement Standards (LCR and NSFR for FDIC-Supervised Institutions) - **ID**: us-fdic-12-cfr-part-329-liquidity-risk-measurement-standards - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 CFR Part 329 is the Federal Deposit Insurance Corporation (FDIC) liquidity risk measurement rule implementing the Basel III Liquidity Coverage Ratio (LCR) and Net Stable Funding Ratio (NSFR) for FD... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fdic-12-cfr-part-329-liquidity-risk-measurement-standards.json #### US FDIC Improvement Act 1991 (FDICIA) - Prompt Corrective Action & Least-Cost Resolution - **ID**: us-fdic-improvement-act-fdicia-1991 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The FDIC Improvement Act of 1991 (Pub. L. 102-242) established Prompt Corrective Action (PCA) - a mandatory five-tier capital classification system for insured depository institutions with escalating ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fdic-improvement-act-fdicia-1991.json #### US Internal Revenue Code Section 250 - Foreign-Derived Intangible Income (FDII) Deduction: Eligible Income, Foreign-Derived Ratio, Documentation Requirements and TCJA Interaction - **ID**: us-fdii-irc-250-foreign-derived-intangible-income - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Under IRC § 250, U.S. C-corporations can claim a deduction equal to 37.5% of their foreign-derived intangible income (FDII), which is designed to incentivize holding intellectual property in the Unite... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fdii-irc-250-foreign-derived-intangible-income.json #### 12 CFR Part 208 (Regulation H) - Membership and Requirements of State Member Banks - **ID**: us-fed-12-cfr-208-regulation-h-state-member-banks - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation H (12 CFR Part 208) governs the membership of State-chartered banks in the Federal Reserve System and the prudential, securities, real-estate-lending and security requirements that apply to... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fed-12-cfr-208-regulation-h-state-member-banks.json #### US Federal Reserve Regulation Q - 12 CFR Part 217 Capital Adequacy of Bank Holding Companies, Savings and Loan Holding Companies, and State Member Banks (Basel III Implementation) - **ID**: us-fed-12-cfr-217-reg-q-capital-adequacy-of-bank-holding-companies - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 CFR Part 217 (Regulation Q) establishes minimum capital requirements and overall capital adequacy standards for entities including state member banks, bank holding companies, savings and loan holdi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fed-12-cfr-217-reg-q-capital-adequacy-of-bank-holding-companies.json #### 12 CFR Part 225 (Regulation Y) - Bank Holding Companies and Change in Bank Control - **ID**: us-fed-12-cfr-225-regulation-y-bank-holding-companies - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation Y (12 CFR Part 225) implements the Bank Holding Company Act and the Change in Bank Control Act and governs the formation, activities and control of bank holding companies (BHCs) and financi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fed-12-cfr-225-regulation-y-bank-holding-companies.json #### US Federal Reserve Regulation YY - 12 CFR Part 252 Enhanced Prudential Standards for Large Bank Holding Companies, IHCs of Foreign Banks, and Nonbank Financial Companies - **ID**: us-fed-12-cfr-252-reg-yy-enhanced-prudential-standards - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 CFR Part 252 (Regulation YY) is issued by the Board of Governors of the Federal Reserve System under sections 162, 165, 167, and 168 of Title I of the Dodd-Frank Wall Street Reform and Consumer Pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fed-12-cfr-252-reg-yy-enhanced-prudential-standards.json #### US Federal Deposit Insurance Act (12 USC ch 16): Deposit Insurance and Bank Enforcement - **ID**: us-federal-deposit-insurance-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Federal Deposit Insurance Act (12 U.S.C. ch. 16) establishes Federal deposit insurance and the supervisory and enforcement framework for insured depository institutions, administered by the Federa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-deposit-insurance-act.json #### US Federal Home Loan Bank Act (FHLB Act) - 12 USC 1421 - FHFA Oversight - **ID**: us-federal-home-loan-bank-act-fhlb-1932 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: The Federal Home Loan Bank Act establishes the 11-bank FHLB System, a government-sponsored enterprise providing secured advances (loans) to member institutions (commercial banks, savings institutions,... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-home-loan-bank-act-fhlb-1932.json #### 12 CFR Part 211 - Federal Reserve Regulation K: International Banking Operations (Foreign Branches of U.S. Member Banks, Edge and Agreement Corporations, Foreign Bank Offices in the United States) - **ID**: us-federal-reserve-12-cfr-part-211-regulation-k-international-banking - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 CFR Part 211 is the Federal Reserve Regulation K governing the international banking operations of U.S. banking organisations and the U.S. operations of foreign banks. Section 211.1 sets the author... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-reserve-12-cfr-part-211-regulation-k-international-banking.json #### Federal Reserve Act 1913 - 12 USC 226 Establishment of the Federal Reserve System - **ID**: us-federal-reserve-act-1913-12-usc-226 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Section 226 of title 12 of the United States Code provides that the short title of the Act of 23 December 1913 (chapter 6, 38 Statutes at Large 251) shall be the Federal Reserve Act. The Federal Reser... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-reserve-act-1913-12-usc-226.json #### US Federal Reserve CCAR - Comprehensive Capital Analysis and Review Framework - **ID**: us-federal-reserve-ccar-comprehensive-capital-analysis-review - **Category**: Banking & Global Finance - **Version**: 2024.1.1 - **BLUF**: The Federal Reserve's Comprehensive Capital Analysis and Review (CCAR) framework requires large bank holding companies (BHCs) with $100+ billion in assets to submit annual capital plans and demonstrat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-reserve-ccar-comprehensive-capital-analysis-review.json #### US Federal Reserve Regulation W - Affiliate Transactions (§§23A & 23B) - **ID**: us-federal-reserve-regulation-w-affiliate-transactions - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation W (12 CFR Part 223) implements Sections 23A and 23B of the Federal Reserve Act, governing transactions between insured depository institutions (IDIs) and their affiliates. Section 23A limit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-reserve-regulation-w-affiliate-transactions.json #### FFIEC SR 11-7 - Supervisory Guidance on Model Risk Management - **ID**: us-ffiec-model-risk-management - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This guidance requires U.S. banking organizations to implement a comprehensive Model Risk Management (MRM) framework covering the entire model lifecycle, from development and implementation to use and... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ffiec-model-risk-management.json #### FINRA Regulatory Notice 24-09 (June 27, 2024) - FINRA Reminds Members of Regulatory Obligations When Using Generative Artificial Intelligence and Large Language Models - **ID**: us-finra-reg-notice-24-09-ai-2024 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: FINRA Regulatory Notice 24-09, issued on June 27, 2024 and titled 'FINRA Reminds Members of Regulatory Obligations When Using Generative Artificial Intelligence and Large Language Models', is the Fina... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-finra-reg-notice-24-09-ai-2024.json #### US GAAP ASC 606 Revenue from Contracts with Customers - FASB Revenue Recognition Standard - **ID**: us-gaap-asc-606-revenue - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This standard establishes a comprehensive, five-step model for all entities to recognize revenue from contracts with customers, superseding most previous industry-specific guidance. The core principle... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-gaap-asc-606-revenue.json #### US GAAP ASC 842 Leases - FASB Lessee and Lessor Accounting Model (2016) - **ID**: us-gaap-asc-842-leases - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This standard requires lessees to recognize assets and liabilities for most leases with terms longer than 12 months on their balance sheets. Under ASC 842-20-25-1, a lessee must recognize a right-of-u... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-gaap-asc-842-leases.json #### US Internal Revenue Code Section 951A - Global Intangible Low-Taxed Income (GILTI): Net CFC Tested Income Calculation, 10% QBAI Deduction, High-Tax Exception and Section 250 Deduction - **ID**: us-gilti-code-951a-global-intangible-income - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Under IRC § 951A, U.S. shareholders of Controlled Foreign Corporations (CFCs) must include their pro rata share of Global Intangible Low-Taxed Income (GILTI) in their gross income annually. This regim... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-gilti-code-951a-global-intangible-income.json #### US Gramm-Leach-Bliley Act 1999 (GLBA) - Financial Privacy and Data Protection - **ID**: us-glba-gramm-leach-bliley-act-1999 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Gramm-Leach-Bliley Act 1999 (GLBA, Pub.L. 106-102) requires financial institutions to protect consumers' nonpublic personal information (NPI). The Financial Privacy Rule (16 CFR Part 313) mandates... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-glba-gramm-leach-bliley-act-1999.json #### US GLBA Safeguards Rule (16 CFR Part 314) - Information Security Program Requirements for FTC-Regulated Financial Institutions - **ID**: us-glba-safeguards-rule-16-cfr-314-financial-data-security - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The FTC's Gramm-Leach-Bliley Act (GLBA) Safeguards Rule (16 CFR Part 314, amended 2023) requires FTC-regulated financial institutions - including fintechs, mortgage lenders, payday lenders, tax prepar... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-glba-safeguards-rule-16-cfr-314-financial-data-security.json #### US Gramm-Leach-Bliley Act (15 USC ch 94): Financial Privacy and Safeguarding of Customer Information - **ID**: us-gramm-leach-bliley-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Gramm-Leach-Bliley Act, in its privacy provisions (15 U.S.C. ch. 94), governs how financial institutions handle the nonpublic personal information of their customers, enforced by the Federal Trade... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-gramm-leach-bliley-act.json #### US Home Mortgage Disclosure Act (12 USC ch 29): Mortgage Lending Data Reporting - **ID**: us-home-mortgage-disclosure-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Home Mortgage Disclosure Act (12 U.S.C. ch. 29) requires depository institutions and other mortgage lenders to compile, maintain and disclose data about their home mortgage lending, administered b... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-home-mortgage-disclosure-act.json #### US Home Mortgage Disclosure Act (HMDA) - Regulation C - 12 CFR Part 1003 - **ID**: us-home-mortgage-disclosure-act-hmda-regulation-c - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: HMDA (implemented by Regulation C, 12 CFR Part 1003) requires covered financial institutions to collect, record, and submit 48 data points on home mortgage applications and originations; institutional... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-home-mortgage-disclosure-act-hmda-regulation-c.json #### US Housing and Economic Recovery Act of 2008 (Public Law 110-289) - Federal Housing Finance Agency and GSE Conservatorship Authority - **ID**: us-housing-economic-recovery-act-2008-pl-110-289 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Housing and Economic Recovery Act of 2008 created the Federal Housing Finance Agency as the unified safety and soundness regulator for Fannie Mae, Freddie Mac, and the twelve Federal Home Loan Ban... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-housing-economic-recovery-act-2008-pl-110-289.json #### US Investment Advisers Act of 1940 - SEC Registration, Fiduciary Duty, Form ADV, Custody Rule - **ID**: us-investment-advisers-act-1940 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Investment Advisers Act of 1940 (15 U.S.C. §§ 80b-1 et seq.) imposes a federal fiduciary duty on registered investment advisers and governs their registration with the SEC. SEC registration thresh... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-investment-advisers-act-1940.json #### US Investment Company Act of 1940 - Section 3(c)(1)/(c)(7) Exemptions, Leverage Limits, Affiliated Transaction Restrictions - **ID**: us-investment-company-act-1940 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Investment Company Act of 1940 (15 U.S.C. §§ 80a-1 et seq.) regulates US investment companies - mutual funds, ETFs, closed-end funds, and money market funds. The two primary exemptions used by pri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-investment-company-act-1940.json #### US Treasury Regulations 26 CFR Section 1.482 Transfer Pricing Rules - Arm's Length Standard, Comparable Uncontrolled Price (CUP), Cost Plus, Resale Price and Profit Split Methods - **ID**: us-irc-482-transfer-pricing-regulations - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Under 26 CFR § 1.482-1(b), the U.S. Internal Revenue Service (IRS) requires that transactions between commonly controlled entities must adhere to the 'arm's length standard,' meaning the results of th... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-irc-482-transfer-pricing-regulations.json #### JOBS Act 2012 - Public Law 112-106 Jumpstart Our Business Startups - **ID**: us-jobs-act-2012-pl-112-106 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Jumpstart Our Business Startups Act of 2012 (JOBS Act, Public Law 112-106, enacted 5 April 2012) restructured the US securities-offering regime to lower compliance burdens on small and emerging is... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-jobs-act-2012-pl-112-106.json #### US NAIC Cyber Insurance Model Bulletin 2022 - Market Conduct, Data Calls, Coverage Clarity and Systemic Risk Monitoring - **ID**: us-naic-cyber-insurance-model-bulletin-2022 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This model bulletin provides guidance for state insurance regulators to enhance oversight of the cyber insurance market, requiring insurers to improve data reporting for solvency and market conduct an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naic-cyber-insurance-model-bulletin-2022.json #### US NAIC Market Conduct Annual Statement (MCAS) - Data Submission Requirements for P&C and Life Insurers - **ID**: us-naic-mcas-market-conduct-annual-statement - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Market Conduct Annual Statement (MCAS) requires participating property & casualty and life/annuity insurers to annually submit standardized, company-level data on their market conduct activities, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naic-mcas-market-conduct-annual-statement.json #### Insurance Holding Company System Model Act (#440) with Annual Financial Reporting Model Regulation (#205) - **ID**: us-naic-model-holding-company-act-440 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This model act requires insurance holding company systems to register with the state insurance commissioner, file an annual Own Risk and Solvency Assessment (ORSA) Summary Report, and provide prior no... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naic-model-holding-company-act-440.json #### US NAIC Risk-Based Capital (RBC) Framework - Life, P&C and Health RBC Formulas and Company Action Level Triggers - **ID**: us-naic-risk-based-capital-framework-insurers - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The NAIC Risk-Based Capital (RBC) Framework requires U.S. insurers (Life, P&C, Health) to maintain capital levels commensurate with their specific risk profiles, calculated via prescribed formulas. As... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naic-risk-based-capital-framework-insurers.json #### Unfair Trade Practices Act (Model #880) - **ID**: us-naic-unfair-trade-practices-act-model-880 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This model act prohibits insurers and their agents from engaging in unfair methods of competition or deceptive acts, including misrepresentation, false advertising, rebating, and unfair discrimination... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naic-unfair-trade-practices-act-model-880.json #### US NFIP National Flood Insurance Program - Policy Coverage, Mandatory Purchase Requirements and Community Rating System - **ID**: us-nfip-national-flood-insurance-program-rules - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The National Flood Insurance Program (NFIP) requires the mandatory purchase of flood insurance for properties located in Special Flood Hazard Areas (SFHAs) that have federally backed mortgages, as man... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nfip-national-flood-insurance-program-rules.json #### NY DFS Insurance Circular Letter No. 7 (2024) - AI Systems and External Consumer Data in Underwriting and Pricing - **ID**: us-ny-dfs-insurance-circular-letter-7-ai-2024 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: NY DFS Insurance Circular Letter No. 7 (2024), issued 11 July 2024, sets supervisory expectations for the use of Artificial Intelligence Systems (AIS) and External Consumer Data and Information Source... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ny-dfs-insurance-circular-letter-7-ai-2024.json #### 12 CFR Part 50 - OCC Liquidity Risk Measurement Standards (Liquidity Coverage Ratio and Net Stable Funding Ratio for National Banks and Federal Savings Associations) - **ID**: us-occ-12-cfr-part-50-liquidity-risk-measurement-standards - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 12 CFR Part 50 is the Office of the Comptroller of the Currency (OCC) liquidity risk measurement rule implementing the Basel III Liquidity Coverage Ratio (LCR) and Net Stable Funding Ratio (NSFR) for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-occ-12-cfr-part-50-liquidity-risk-measurement-standards.json #### OCC Special Purpose National Bank Charter for Fintech Companies - Licensing Framework and Requirements - **ID**: us-occ-fintech-charter - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Office of the Comptroller of the Currency (OCC) provides a framework for financial technology (fintech) companies to apply for a special purpose national bank charter, subjecting them to federal b... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-occ-fintech-charter.json #### OCC Model Risk Management Guidance 2021 - Supervisory Guidance on Model Risk Management for National Banks - **ID**: us-occ-model-risk-guidance-2021 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This guidance supplements SR 11-7, requiring national banks and federal savings associations to maintain a robust model risk management (MRM) framework, including effective governance, policies, and c... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-occ-model-risk-guidance-2021.json #### US Private Securities Litigation Reform Act of 1995 (Public Law 104-67) - Pleading Standards and Safe Harbor for Forward-Looking Statements - **ID**: us-pslra-1995-private-securities-litigation-reform-pl-104-67 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Private Securities Litigation Reform Act of 1995 amended the Securities Act of 1933 and the Securities Exchange Act of 1934 to impose heightened pleading requirements in private securities fraud a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pslra-1995-private-securities-litigation-reform-pl-104-67.json #### Regulation E: Electronic Fund Transfers (12 CFR Part 1005) - **ID**: us-reg-e-electronic-funds-transfer - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation E, implementing the Electronic Fund Transfer Act (EFTA), establishes the rights, liabilities, and responsibilities of consumers and financial institutions in electronic fund transfers (EFTs... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-reg-e-electronic-funds-transfer.json #### US Regulation D - Private Placement Securities Exemptions (Rules 504, 506(b), 506(c)) - **ID**: us-regulation-d-private-placement - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Regulation D (17 CFR §§230.501-230.508) provides three safe-harbour exemptions from Securities Act registration for private capital raises: Rule 504 (up to $10M from any investors in 12 months), Rule ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-regulation-d-private-placement.json #### Riegle-Neal Interstate Banking and Branching Efficiency Act 1994 - 12 USC 1831u Interstate Bank Mergers - **ID**: us-riegle-neal-interstate-banking-act-12-usc-1831u - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Section 1831u of title 12 of the United States Code, enacted as part of the Riegle-Neal Interstate Banking and Branching Efficiency Act of 1994 (Public Law 103-328), authorises the appropriate federal... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-riegle-neal-interstate-banking-act-12-usc-1831u.json #### US Sarbanes-Oxley Act (15 USC ch 98): Corporate Responsibility, Internal Controls and Audit Oversight - **ID**: us-sarbanes-oxley-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Sarbanes-Oxley Act of 2002 (15 U.S.C. ch. 98) reformed the governance, financial reporting and audit of US public companies, administered by the Securities and Exchange Commission with the Public ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sarbanes-oxley-act.json #### US Sarbanes-Oxley Act Sections 302 and 404 - Corporate Responsibility for Financial Reports and Internal Controls - **ID**: us-sarbanes-oxley-section-302-404 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Sarbanes-Oxley Act (SOX) requires principal officers (typically CEO and CFO) of public companies to personally certify the accuracy of financial reports and the effectiveness of disclosure control... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sarbanes-oxley-section-302-404.json #### 17 CFR Part 210 - Regulation S-X: Form and Content of and Requirements for Financial Statements (SEC) - **ID**: us-sec-17-cfr-210-regulation-sx-financial-statements - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: SEC 17 CFR Part 210 (Regulation S-X) governs the form and content of and requirements for financial statements filed under the federal securities laws, requiring that financial statements be examined ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-17-cfr-210-regulation-sx-financial-statements.json #### 17 CFR Part 229 - Regulation S-K (Standard Instructions for Filing Forms Under the Securities Acts) - **ID**: us-sec-17-cfr-229-regulation-s-k - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: SEC Regulation S-K sets the standard non-financial disclosure items that registrants must provide in registration statements and periodic reports under the Securities Act and the Securities Exchange A... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-17-cfr-229-regulation-s-k.json #### US SEC Securities Act Rules - 17 CFR Part 230 Registration Exemptions Including Regulation D (Private Placements), Regulation S (Offshore Offerings) and Regulation A+ (Tier 1 and Tier 2) - **ID**: us-sec-17-cfr-230-securities-act-rules-reg-d-reg-s-reg-a - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR Part 230 is the SEC's General Rules and Regulations under the Securities Act of 1933 (15 U.S.C. 77a et seq.). Part 230 contains over 200 sections implementing the registration, exemption, and i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-17-cfr-230-securities-act-rules-reg-d-reg-s-reg-a.json #### US SEC Regulation S-T - 17 CFR Part 232 EDGAR Electronic Filing System General Rules, Inline XBRL Requirements and Form/Submission Type Tagging Obligations - **ID**: us-sec-17-cfr-232-reg-st-edgar-electronic-filing - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR Part 232 (Regulation S-T) sets the SEC's general rules for electronic filings on the Electronic Data Gathering, Analysis, and Retrieval (EDGAR) system. Part 232 applies to all electronic filers... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-17-cfr-232-reg-st-edgar-electronic-filing.json #### US SEC Securities Exchange Act Rules - 17 CFR Part 240 Anti-Fraud (Rule 10b-5), Broker-Dealer Net Capital, Recordkeeping (17a-3/17a-4) and Reporting Obligations - **ID**: us-sec-17-cfr-240-securities-exchange-act-rules - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR Part 240 is the SEC's General Rules and Regulations under the Securities Exchange Act of 1934 (15 U.S.C. 78a et seq.). Part 240 contains over 500 sections implementing the operational, anti-fra... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-17-cfr-240-securities-exchange-act-rules.json #### 17 CFR Part 242 - Regulations M, SHO, ATS, AC, NMS, and SBSR; Securities Market Regulation (SEC) - **ID**: us-sec-17-cfr-242-regulations-sho-ats-nms - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: SEC 17 CFR Part 242 sets the securities market structure rules, requiring short sales to be marked and to meet the circuit breaker, borrowing, delivery, and close-out requirements under Regulation SHO... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-17-cfr-242-regulations-sho-ats-nms.json #### 17 CFR Part 243 (Regulation FD) - Fair Disclosure of Material Nonpublic Information - **ID**: us-sec-17-cfr-243-regulation-fd-fair-disclosure - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Regulation FD (17 CFR Part 243) prohibits the selective disclosure of material nonpublic information by SEC-reporting issuers. Whenever an issuer, or a person acting on its behalf, discloses material ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-17-cfr-243-regulation-fd-fair-disclosure.json #### US SEC Regulation S-P - 17 CFR Part 248 Privacy of Consumer Financial Information, Safeguards Rule, Disposal Rule and Customer Notification Obligations for SEC-Regulated Entities - **ID**: us-sec-17-cfr-248-reg-sp-privacy-of-consumer-financial-information - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR Part 248 (Regulation S-P) is the SEC's implementation of Title V of the Gramm-Leach-Bliley Act (15 U.S.C. 6801-6809) and the disposal rule under the Fair and Accurate Credit Transactions Act (F... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-17-cfr-248-reg-sp-privacy-of-consumer-financial-information.json #### US SEC Investment Company Act Rules - 17 CFR Part 270 Mutual Fund Pricing, Custody, Liquidity Risk Management and Affiliated Transaction Restrictions - **ID**: us-sec-17-cfr-270-investment-company-act-rules - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR Part 270 is the SEC's Rules and Regulations under the Investment Company Act of 1940 (15 U.S.C. 80a-1 et seq.). Part 270 contains the operational, exemptive, and protective rules applicable to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-17-cfr-270-investment-company-act-rules.json #### 17 CFR Part 275 - Rules and Regulations under the Investment Advisers Act of 1940 - **ID**: us-sec-17-cfr-275-investment-advisers-act-rules - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: 17 CFR Part 275 contains the SEC rules implementing the Investment Advisers Act of 1940 and governs the registration and conduct of investment advisers. To register with the Commission, an adviser mus... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-17-cfr-275-investment-advisers-act-rules.json #### 17 CFR Part 230 - General Rules and Regulations, Securities Act of 1933 - **ID**: us-sec-cfr-17-part-230-regulation-a-exemption - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes general rules under the Securities Act of 1933, detailing requirements for definitions, filing fees, communications, and various offering-related notices and publications. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-cfr-17-part-230-regulation-a-exemption.json #### General Rules and Regulations, Securities Exchange Act of 1934 (17 CFR Part 240) - **ID**: us-sec-cfr-17-part-240-general-rules-exchange-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes the statutory authority for the General Rules and Regulations under the Securities Exchange Act of 1934, requiring compliance with various provisions of U.S. Code. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-cfr-17-part-240-general-rules-exchange-act.json #### US SEC Regulation Best Interest 2019 - Broker-Dealer Standard of Care - **ID**: us-sec-regulation-best-interest-2019 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: SEC Regulation Best Interest (Reg BI, 17 CFR §240.15l-1) requires broker-dealers to act in the best interest of retail customers when making investment recommendations, without placing the broker-deal... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-regulation-best-interest-2019.json #### Regulation S-P: Privacy of Consumer Financial Information and Safeguarding Customer Information (2024 Amendment) - **ID**: us-sec-regulation-sp-2024 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This amendment to SEC Regulation S-P mandates that broker-dealers, investment companies, and registered investment advisers establish a comprehensive incident response program to address unauthorized ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-regulation-sp-2024.json #### US SEC Rule 10b-5 - Securities Fraud and Anti-Manipulation - **ID**: us-sec-rule-10b-5-anti-fraud - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: Rule 10b-5 (17 CFR §240.10b-5) under Securities Exchange Act §10(b) is the primary US anti-fraud provision for securities trading. It prohibits any person from employing a scheme to defraud, making ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-rule-10b-5-anti-fraud.json #### US Securities Act 1933 - Registration, Disclosure, and Anti-Fraud for Securities Offerings - **ID**: us-securities-act-1933 - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Securities Act of 1933 (15 USC §77a et seq.) requires that securities offerings to the public be registered with the SEC via a prospectus disclosing material information, unless an exemption appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-securities-act-1933.json #### US Securities Exchange Act of 1934 - Registration, Periodic Reporting, and Market Integrity - **ID**: us-securities-exchange-act-1934 - **Category**: Banking & Global Finance - **Version**: 2024.1.0 - **BLUF**: The Securities Exchange Act of 1934 (SEA) requires public companies with ≥$10M assets and ≥2,000 shareholders (or ≥500 non-accredited) to register with the SEC (Section 12), file periodic reports (10-... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-securities-exchange-act-1934.json #### US Securities Investor Protection Act (15 USC ch 2B-1): Customer Protection in Broker-Dealer Failures - **ID**: us-securities-investor-protection-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Securities Investor Protection Act (15 U.S.C. ch. 2B-1) protects customers of failed broker-dealers by establishing the Securities Investor Protection Corporation and a liquidation procedure, over... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-securities-investor-protection-act.json #### Securities Investor Protection Act 1970 - 15 USC Chapter 2B-1 - **ID**: us-sipa-securities-investor-protection-act-15-usc-ch2b-1 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Chapter 2B-1 of title 15 of the United States Code codifies the Securities Investor Protection Act of 1970 (Public Law 91-598), establishing the Securities Investor Protection Corporation (SIPC) as a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sipa-securities-investor-protection-act-15-usc-ch2b-1.json #### Small Business Act - 15 USC 631 Federal Small Business Policy - **ID**: us-small-business-act-15-usc-631 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Section 631 of title 15 of the United States Code, the Declaration of Policy of the Small Business Act (Public Law 85-536, enacted 18 July 1958, as substantially amended), establishes the foundational... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-small-business-act-15-usc-631.json #### South Dakota v. Wayfair Inc. Supreme Court Decision (2018) - Economic Nexus Standard for Remote Sellers: $100,000 Sales or 200 Transactions Threshold and State Sales Tax Collection Obligations - **ID**: us-south-dakota-v-wayfair-economic-nexus-2018 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Supreme Court's decision in South Dakota v. Wayfair, Inc., 585 U. S. ___ (2018), overturned the physical presence rule, allowing states to require remote sellers to collect and remit sales tax bas... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-south-dakota-v-wayfair-economic-nexus-2018.json #### 15 U.S. Code § 7241 - Corporate responsibility for financial reports - **ID**: us-sox-15-usc-7241-section-302-ceo-cfo-certifications - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Requires principal executive and financial officers of public companies to personally certify the accuracy of financial reports and the effectiveness of internal controls in each annual or quarterly f... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sox-15-usc-7241-section-302-ceo-cfo-certifications.json #### 15 U.S. Code § 7262 - Management assessment of internal controls - **ID**: us-sox-15-usc-7262-section-404-internal-control-assessment - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Requires management of public companies to establish, maintain, and assess the effectiveness of internal controls for financial reporting in their annual report, which must be attested to by an extern... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sox-15-usc-7262-section-404-internal-control-assessment.json #### 18 U.S. Code § 1350 - Failure of corporate officers to certify financial reports - **ID**: us-sox-18-usc-1350-section-906-criminal-penalties-certifications - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Requires the CEO and CFO of an issuer to provide a written certification with each periodic financial report filed with the SEC, attesting to the report's compliance and fair presentation of financial... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sox-18-usc-1350-section-906-criminal-penalties-certifications.json #### Terrorism Risk Insurance Act of 2002 (TRIA): Federal Backstop, Mandatory Offer Requirements and Programme Trigger Thresholds - **ID**: us-terrorism-risk-insurance-act-tria-2002 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This U.S. federal law requires commercial property and casualty insurers to offer terrorism risk insurance to their policyholders and establishes a federal backstop program to share losses from certif... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-terrorism-risk-insurance-act-tria-2002.json #### United States Title 15 USC Chapter 41 - Federal Credit Disclosure Framework: Truth in Lending Act, Equal Credit Opportunity Act, Fair Debt Collection Practices Act, Electronic Fund Transfer Act, and CFPB Rule-Making - **ID**: us-tila-fdcpa-ecoa-15-usc-ch41 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: Title 15 of the United States Code, Chapter 41, is the principal federal credit and debt collection statute consolidating the Truth in Lending Act, the Fair Credit Reporting Act, the Equal Credit Oppo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tila-fdcpa-ecoa-15-usc-ch41.json #### US Truth in Lending Act (15 USC ch 41 subch I): Credit Cost Disclosure, APR and the Right of Rescission - **ID**: us-truth-in-lending-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Truth in Lending Act (TILA, 15 U.S.C. ch. 41, subchapter I) requires the meaningful disclosure of credit terms so that consumers can compare the cost of credit, administered chiefly by the Consume... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-truth-in-lending-act.json #### US Truth in Lending Act (TILA) Regulation Z - Credit Disclosure & APR Requirements - **ID**: us-truth-in-lending-act-regulation-z - **Category**: Banking & Global Finance - **Version**: 1.0.1 - **BLUF**: The Truth in Lending Act (15 USC §1601 et seq.) and its implementing Regulation Z (12 CFR Part 1026, CFPB) require creditors to disclose credit terms in standardised form before extending consumer cre... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-truth-in-lending-act-regulation-z.json #### US Truth in Savings Act (12 USC ch 44): Deposit Account Rate and Fee Disclosure - **ID**: us-truth-in-savings-act - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Truth in Savings Act (12 U.S.C. ch. 44) requires depository institutions to disclose the rates, fees and terms of deposit accounts in a uniform manner so that consumers can compare accounts, imple... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-truth-in-savings-act.json #### US Volcker Rule - Section 619 of Dodd-Frank: Prohibition on Proprietary Trading and Fund Sponsorship - **ID**: us-volcker-rule - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Volcker Rule, implemented as Section 619 of the Dodd-Frank Act, prohibits insured depository institutions and their affiliates ('banking entities') from engaging in short-term proprietary trading ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-volcker-rule.json #### Wolfsberg Principles (KYC) - **ID**: wolfsberg-corresp-bank - **Category**: Banking & Global Finance - **Version**: 1.1.0 - **BLUF**: The Wolfsberg Anti-Money Laundering (AML) Principles for Correspondent Banking (2022) provide a global standard for the risk-based identification and assessment of correspondent banking clients. it is... - **Discovery URL**: https://bidda.com/api/v1/nodes/wolfsberg-corresp-bank.json #### Wolfsberg Group KYC Questionnaire (WKQF) 2022 - Standardised Due Diligence Information Framework for Financial Institutions Onboarding Correspondent Banks: Ownership, Controls, Products and AML Governance - **ID**: wolfsberg-group-kyc-questionnaire-2022 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The Wolfsberg Group Correspondent Banking Due Diligence Questionnaire (CBDDQ) provides a standardized framework for Financial Institutions to collect essential information for conducting due diligence... - **Discovery URL**: https://bidda.com/api/v1/nodes/wolfsberg-group-kyc-questionnaire-2022.json #### Banks Act 94 of 1990 - **ID**: za-banks-act-1990 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Act provides the legal framework for the regulation and supervision of the business of public companies taking deposits from the public in South Africa. It mandates that no person shall conduct t... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-banks-act-1990.json #### Collective Investment Schemes Control Act 45 of 2002 - **ID**: za-collective-investment-schemes-control-act-2002 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Act establishes the legal framework for collective investment schemes (CIS) in South Africa, requiring all schemes to be registered with the Financial Sector Conduct Authority (FSCA) and mandatin... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-collective-investment-schemes-control-act-2002.json #### Companies Act 71 of 2008 - **ID**: za-companies-act-2008 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Act modernizes and codifies company law in South Africa, governing the incorporation, management, and dissolution of companies, and establishing the duties and liabilities of directors. It applie... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-companies-act-2008.json #### Financial Advisory and Intermediary Services Act, 2002 (Act No. 37 of 2002) - **ID**: za-fais-2002 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This South African act regulates the conduct of all financial services providers (FSPs) by requiring them to obtain a license from the Financial Sector Conduct Authority (FSCA) and adhere to a strict ... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-fais-2002.json #### Financial Sector Regulation Act 9 of 2017 - **ID**: za-financial-sector-regulation-act-2017 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Act establishes South Africa's 'Twin Peaks' model of financial regulation, creating the Prudential Authority (PA) within the South African Reserve Bank for prudential supervision and the Financia... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-financial-sector-regulation-act-2017.json #### Insurance Act 18 of 2017 - **ID**: za-insurance-act-18-2017 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Act establishes a comprehensive legal framework for the prudential regulation and supervision of insurers and insurance groups in South Africa, replacing the previous Long-term and Short-term Ins... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-insurance-act-18-2017.json #### National Payment System Act, 1998 (Act No. 78 of 1998) - **ID**: za-national-payment-system-act-1998 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Act establishes the South African Reserve Bank (SARB) as the overseer of the national payment system, granting it powers to recognize a Payment System Management Body (PSMB) and to approve rules ... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-national-payment-system-act-1998.json #### National Credit Act 34 of 2005 - **ID**: za-nca-2005 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: The National Credit Act (NCA) promotes a fair, transparent, and responsible credit market in South Africa by regulating all credit agreements and requiring credit providers to register with the Nation... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-nca-2005.json #### National Credit Act 34 of 2005, section 81: Prevention of reckless credit - **ID**: za-nca-section-81-reckless-credit - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This section requires credit providers to conduct a thorough affordability assessment before entering into a credit agreement to prevent granting reckless credit to consumers. - **Discovery URL**: https://bidda.com/api/v1/nodes/za-nca-section-81-reckless-credit.json #### Pension Funds Act 24 of 1956 - Fund Registration, Board of Trustees Fiduciary Duties, Pension Funds Adjudicator Dispute Resolution and Pension Benefit Preservation Rules - **ID**: za-pension-funds-act-24-1956 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Act governs the registration, management, and operation of pension funds in South Africa, mandating registration with the Financial Sector Conduct Authority (FSCA) under Section 4. It imposes str... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-pension-funds-act-24-1956.json #### South Africa Banks Act 94 of 1990 - Prudential Regulation & SARB Supervision - **ID**: za-sarb-banks-act-94-1990 - **Category**: Banking & Global Finance - **Version**: 2024.1.1 - **BLUF**: South Africa's Banks Act 94 of 1990, administered by the Prudential Authority within the South African Reserve Bank (SARB), establishes the licensing framework for deposit-taking institutions, prescri... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-sarb-banks-act-94-1990.json #### Tax Administration Act, 2011 (Act No. 28 of 2011) - **ID**: za-tax-administration-act-28-2011 - **Category**: Banking & Global Finance - **Version**: 1.0.0 - **BLUF**: This Act governs the administration of tax laws in South Africa, mandating taxpayers to keep relevant records for a minimum of five years (Section 29), granting the South African Revenue Service (SARS... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-tax-administration-act-28-2011.json ### Biotech & Genomics (105 nodes) #### Gene Technology Act 2000 - Regulation of Dealings with GMOs, Licensing, and Environmental Risk Management - **ID**: australia-gene-technology-act-2000 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Gene Technology Act 2000 establishes a national framework for regulating dealings with genetically modified organisms (GMOs), requiring all such dealings to be licensed unless exempted, with stric... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-gene-technology-act-2000.json #### Gene Technology Act 2000 (Cth) - **ID**: australia-gene-technology-act-2000-ogtr - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Act requires any person dealing with a genetically modified organism (GMO) to obtain a licence (Section 32) and to comply with licence conditions, including preparation of a risk assessment and ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-gene-technology-act-2000-ogtr.json #### Australia NHMRC Biobanks Information Paper and National Statement on Ethical Conduct in Human Research - **ID**: australia-nhmrc-biobanks-information-paper-2010 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The National Health and Medical Research Council (NHMRC) Biobanks Information Paper (2010) and the National Statement on Ethical Conduct in Human Research (issued jointly with the Australian Research ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-nhmrc-biobanks-information-paper-2010.json #### Regulation of Biologicals under the Therapeutic Goods Administration (TGA) - Classification, Manufacturing, and Clinical Evidence Requirements for Class 1-4 Biologicals - **ID**: australia-tga-biologicals-framework - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The TGA Biologicals Framework requires all biologicals (Class 1-4) to be classified based on risk, manufactured under Good Manufacturing Practice (GMP), supported by clinical evidence appropriate to c... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-tga-biologicals-framework.json #### Brazil Biosafety Law 11105/2005 - CTNBio GMO and Human Embryo Research Regulation - **ID**: brazil-ctnbio-biosafety-law-11105-2005 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Brazil's National Biosafety Law (Law 11105/2005) establishes CTNBio (National Technical Biosafety Commission) as the sole authority for risk assessment and commercial release approvals of genetically ... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-ctnbio-biosafety-law-11105-2005.json #### Brazil Fiocruz Biodiversity Biobank and Genomic Resources Governance under Law 13,123/2015 (CGen) - **ID**: brazil-fiocruz-biodiversity-biobank-cgen-genomics - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Brazil's principal biobank and genomic resources governance framework is established by Law 13,123/2015 (Lei da Biodiversidade), which regulates access to Brazilian genetic heritage and traditional kn... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-fiocruz-biodiversity-biobank-cgen-genomics.json #### Assisted Human Reproduction Act - **ID**: canada-assisted-human-reproduction-act-2004 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Assisted Human Reproduction Act prohibits specific reproductive technologies and activities involving human cloning, chimeras, hybrids, and genetic modifications that can be transmitted to descend... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-assisted-human-reproduction-act-2004.json #### Canada CEPA 1999 New Substances Notification - Biotechnology Living Organisms, ECCC Dual Assessment and Risk Management - **ID**: canada-cepa-1999-new-substances-biotechnology-notification - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Canadian Environmental Protection Act 1999 (CEPA 1999, S.C. 1999, c. 33) Part 6 (New Substances) requires notification to the Government of Canada before manufacturing or importing any substance (... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-cepa-1999-new-substances-biotechnology-notification.json #### Canada TCPS 2 (2018) - Tri-Council Policy Statement on Research Ethics - **ID**: canada-tcps2-research-ethics-policy-2018 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Tri-Council Policy Statement: Ethical Conduct for Research Involving Humans (TCPS 2, 2018 edition) is the joint policy of Canada's three federal research agencies (CIHR, NSERC, SSHRC). It mandates... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-tcps2-research-ethics-policy-2018.json #### Cartagena Protocol on Biosafety 2000 - Living Modified Organisms (LMO) Transboundary Movement, Risk Assessment and Advance Informed Agreement Procedure - **ID**: cartagena-protocol-biosafety-2000 - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: The Cartagena Protocol on Biosafety regulates the transboundary movement of living modified organisms (LMOs) to protect biological diversity, requiring advance informed agreement (AIA) procedures unde... - **Discovery URL**: https://bidda.com/api/v1/nodes/cartagena-protocol-biosafety-2000.json #### Convention on Biological Diversity (CBD) 1992 - Sovereign Rights over Genetic Resources, Access and Benefit-Sharing (ABS) and Conservation Obligations - **ID**: cbd-convention-biological-diversity-1992 - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: The Convention on Biological Diversity (CBD) requires sovereign states to conserve biological diversity, ensure sustainable use of its components, and promote fair and equitable sharing of benefits ar... - **Discovery URL**: https://bidda.com/api/v1/nodes/cbd-convention-biological-diversity-1992.json #### China Regulations on the Management of Human Genetic Resources (State Council Order No. 717, 2019) - **ID**: china-hgrac-2019-state-council-order-717 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: China's Regulations on the Management of Human Genetic Resources were promulgated by the State Council as Order No. 717 on 28 May 2019 and entered into force on 1 July 2019. The Regulations are admini... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-hgrac-2019-state-council-order-717.json #### China Regulations on Management of Human Genetic Resources State Council Order No. 717 2019 Collection Preservation International Use and Cross-Border Sharing Approval Regime - **ID**: cn-regulations-management-human-genetic-resources-2019-state-council-717 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The People's Republic of China Regulations on the Management of Human Genetic Resources promulgated by State Council Order No. 717 effective 1 July 2019 administered by the Ministry of Science and Tec... - **Discovery URL**: https://bidda.com/api/v1/nodes/cn-regulations-management-human-genetic-resources-2019-state-council-717.json #### EBRC Engineering Biology Safety Guidelines 2023 - Biosafety by Design: Synthetic Biology Containment Strategies, Genetic Use Restriction, Horizontal Gene Transfer Risk Assessment, Dual-Use Research of Concern (DURC) Review and Institutional Biosafety Committee Obligations - **ID**: ebrc-engineering-biology-safety-guidelines-2023 - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: This guidance establishes biosafety and biosecurity best practices for engineering biology research, focusing on synthetic biology containment, genetic use restriction technologies (GURT), horizontal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ebrc-engineering-biology-safety-guidelines-2023.json #### Guideline on Quality, Non-Clinical and Clinical Requirements for Marketing Authorisation of Advanced Therapy Medicinal Products - **ID**: ema-guidelines-advanced-therapy-quality-2019 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This guideline sets out the quality, non-clinical, and clinical requirements for marketing authorisation of advanced therapy medicinal products (ATMPs) in the European Union, including gene therapy, s... - **Discovery URL**: https://bidda.com/api/v1/nodes/ema-guidelines-advanced-therapy-quality-2019.json #### EMA Good Pharmacovigilance Practices Module V - Risk Management Systems 2014 - **ID**: ema-gvp-module-v-risk-management-systems-2014 - **Category**: Biotech & Genomics - **Version**: 2017-11 - **BLUF**: EMA Good Pharmacovigilance Practices (GVP) Module V (Revision 2, 2017) requires marketing authorisation holders of EU medicinal products to maintain a Risk Management System throughout the product lif... - **Discovery URL**: https://bidda.com/api/v1/nodes/ema-gvp-module-v-risk-management-systems-2014.json #### EU Advanced Therapy Medicinal Products Regulation 1394/2007 - Gene Therapy, Cell Therapy, and Tissue Engineering Authorisation - **ID**: eu-advanced-therapy-medicinal-products-regulation-1394-2007 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Regulation (EC) No 1394/2007 of 13 November 2007 establishes the EU regulatory framework for advanced therapy medicinal products (ATMPs). ATMPs are defined in Article 2 as gene therapy medicinal produ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-advanced-therapy-medicinal-products-regulation-1394-2007.json #### EU Advanced Therapy Medicinal Products Regulation 1394/2007 - Cell, Gene, and Tissue Therapies - **ID**: eu-advanced-therapy-medicinal-products-regulation-1394-2007-atmp - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Regulation (EC) No 1394/2007 establishes the regulatory framework for Advanced Therapy Medicinal Products (ATMPs) in the EU, covering gene therapy, somatic cell therapy, tissue-engineered products, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-advanced-therapy-medicinal-products-regulation-1394-2007-atmp.json #### Regulation (EC) No 1394/2007 of the European Parliament and of the Council of 13 November 2007 on Advanced Therapy Medicinal Products and amending Directive 2001/83/EC and Regulation (EC) No 726/2004 - **ID**: eu-atmp-regulation-1394-2007 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This regulation establishes a centralized authorization procedure for advanced therapy medicinal products (ATMPs), including gene therapy, somatic cell therapy, and tissue-engineered products, within ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-atmp-regulation-1394-2007.json #### Directive 2009/41/EC of the European Parliament and of the Council of 6 May 2009 on the contained use of genetically modified micro-organisms (Recast) (Text with EEA relevance) - **ID**: eu-biosafety-contained-use-directive-2009-41 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This Directive establishes a framework for the safe contained use of genetically modified micro-organisms (GMMs) in the EU, requiring risk classification, containment measures, and notification to com... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-biosafety-contained-use-directive-2009-41.json #### Directive 98/44/EC of the European Parliament and of the Council of 6 July 1998 on the legal protection of biotechnological inventions - **ID**: eu-biotech-directive-98-44-ec-patents - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This directive establishes the conditions under which biotechnological inventions are patentable in the European Union, including isolated gene sequences, provided they meet novelty, inventive step, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-biotech-directive-98-44-ec-patents.json #### EU Clinical Trials Regulation 2014/536 - Clinical Trial Authorisation, CTIS, and Informed Consent - **ID**: eu-clinical-trials-regulation-2014-536 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 536/2014 of the European Parliament and of the Council on clinical trials on medicinal products for human use replaced Directive 2001/20/EC and became applicable from 31 January 202... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-clinical-trials-regulation-2014-536.json #### Regulation (EU) No 536/2014 on clinical trials on medicinal products for human use - Article 10: Specific considerations for vulnerable populations - **ID**: eu-ctr-regulation-article-10-authorisation-clinical-trial - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Organizations must give specific consideration to the assessment of clinical trial authorisation applications involving vulnerable populations such as minors, incapacitated subjects, pregnant or breas... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-10-authorisation-clinical-trial.json #### Regulation (EU) No 536/2014 on clinical trials on medicinal products for human use - Article 2: Definitions - **ID**: eu-ctr-regulation-article-2-definitions - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Organizations must apply the specific definitions for key terms such as 'medicinal product' and 'adverse reaction' from Directive 2001/83/EC when complying with this regulation. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-2-definitions.json #### Regulation (EU) No 536/2014 of the European Parliament and of the Council on clinical trials on medicinal products for human use - Article 28: General rules - **ID**: eu-ctr-regulation-article-28-informed-consent - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Organizations must ensure that for any clinical trial, the anticipated benefits justify the foreseeable risks, this balance is constantly monitored, and subjects or their legally designated representa... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-28-informed-consent.json #### Regulation (EU) No 536/2014 of the European Parliament and of the Council on clinical trials on medicinal products for human use - Article 35: Clinical trials in emergency situations - **ID**: eu-ctr-regulation-article-35-safety-of-subjects - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This article establishes the specific conditions under which informed consent for a clinical trial may be obtained after the first intervention in an emergency situation, derogating from standard cons... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-35-safety-of-subjects.json #### Regulation (EU) No 536/2014 of the European Parliament and of the Council on clinical trials on medicinal products for human use - Article 38: Temporary halt or early termination by the sponsor for reasons of subject safety - **ID**: eu-ctr-regulation-article-38-serious-breach - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Sponsors must notify Member States concerned via the EU portal without undue delay, and no later than 15 days, of any temporary halt or early termination of a clinical trial due to a change in the ben... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-38-serious-breach.json #### Regulation (EU) No 536/2014 on clinical trials on medicinal products for human use - Article 41: Reporting of adverse events and serious adverse events by the investigator to the sponsor - **ID**: eu-ctr-regulation-article-41-unexpected-serious-adverse-reactions - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This article mandates that clinical trial investigators must record, document, and report adverse events and serious adverse events to the sponsor within specified timeframes, and that sponsors must m... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-41-unexpected-serious-adverse-reactions.json #### Regulation (EU) No 536/2014 of the European Parliament and of the Council on clinical trials on medicinal products for human use - Article 44: Assessment by Member States - **ID**: eu-ctr-regulation-article-44-annual-safety-reporting - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This article requires Member States to cooperate in assessing safety information received from the Agency and to involve responsible ethics committees in this assessment where mandated by national law... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-44-annual-safety-reporting.json #### Regulation (EU) No 536/2014 on clinical trials on medicinal products for human use - Article 5: Submission of an application - **ID**: eu-ctr-regulation-article-5-rules-for-submission-of-application - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Sponsors seeking authorisation for a clinical trial must submit a complete application dossier to the relevant Member States via the central EU portal. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-5-rules-for-submission-of-application.json #### Regulation (EU) No 536/2014 of the European Parliament and of the Council on clinical trials on medicinal products for human use - Article 58: Archiving of the clinical trial master file - **ID**: eu-ctr-regulation-article-58-traceability - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The sponsor and investigator must archive the clinical trial master file for at least 25 years after the trial's end, ensuring it is accessible, legible, secure, and that all alterations are traceable... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-58-traceability.json #### REGULATION (EU) No 536/2014 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 16 April 2014 on clinical trials on medicinal products for human use, and repealing Directive 2001/20/EC - Article 6: Validation of Application - **ID**: eu-ctr-regulation-article-6-validation-of-application - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This article outlines the mandatory procedures and timelines for a Member State to validate a clinical trial application dossier submitted via the single submission portal, ensuring its completeness b... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-6-validation-of-application.json #### Regulation (EU) No 536/2014 on clinical trials on medicinal products for human use - Article 79 - **ID**: eu-ctr-regulation-article-79-eu-portal-and-database - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This article establishes the European Commission's authority to conduct controls to verify Member State supervision and the compliance of non-EU clinical trial regulatory systems, requiring cooperatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-79-eu-portal-and-database.json #### Regulation (EU) No 536/2014 on clinical trials on medicinal products for human use - Article 8: Decision on the clinical trial - **ID**: eu-ctr-regulation-article-8-assessment-by-reporting-member-state - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Organizations sponsoring a clinical trial must receive and process the decision notification from each Member State concerned, delivered via the EU portal, which will state whether the trial is author... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-regulation-article-8-assessment-by-reporting-member-state.json #### Directive 2001/18/EC of the European Parliament and of the Council of 12 March 2001 on the deliberate release into the environment of genetically modified organisms and repealing Council Directive 90/220/EEC - **ID**: eu-directive-2001-18-deliberate-release-gmo - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This directive establishes a harmonized framework for the deliberate release of genetically modified organisms (GMOs) into the environment for research, field trials, or market authorization within th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2001-18-deliberate-release-gmo.json #### Directive 2004/23/EC of the European Parliament and of the Council of 31 March 2004 on setting standards of quality and safety for the donation, procurement, testing, processing, preservation, storage and distribution of human tissues and cells - **ID**: eu-directive-2004-23-human-tissues-cells - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This Directive establishes binding quality and safety standards for all stages of the human tissues and cells lifecycle across EU Member States, including donation, procurement, testing, processing, s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2004-23-human-tissues-cells.json #### Directive 2009/41/EC of the European Parliament and of the Council of 6 May 2009 on the contained use of genetically modified micro-organisms (recast) - **ID**: eu-directive-2009-41-contained-use-gmo - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This Directive requires all EU member states to ensure that genetically modified microorganisms (GMMs) are used only under contained conditions that prevent adverse effects on human health and the env... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2009-41-contained-use-gmo.json #### EMA Reflection Paper on CRISPR Genome Editing - Quality Considerations, Off-Target Analysis, Manufacturing Controls, Non-Clinical Studies and Regulatory Classification for Gene-Edited Products - **ID**: eu-ema-crispr-genome-editing-reflection-paper - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: This reflection paper provides scientific considerations for the development of CRISPR-based gene-edited medicinal products, focusing on quality, off-target analysis, manufacturing controls, and non-c... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ema-crispr-genome-editing-reflection-paper.json #### EU European Health Data Space Regulation (Regulation (EU) 2025/327) - **ID**: eu-european-health-data-space-regulation-2025-327 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2025/327 of the European Parliament and of the Council establishes the European Health Data Space (EHDS). It was published in the Official Journal of the European Union on 5 March 2025... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-european-health-data-space-regulation-2025-327.json #### EU GMO Deliberate Release Directive 2001/18/EC - Environmental Risk Assessment and Market Authorisation - **ID**: eu-gmo-deliberate-release-directive-2001-18 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Directive 2001/18/EC of the European Parliament and of the Council on the deliberate release into the environment of genetically modified organisms (GMOs) establishes the regulatory framework for the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmo-deliberate-release-directive-2001-18.json #### Directive 2001/18/EC on the deliberate release into the environment of genetically modified organisms - Article 13: Notification procedure - **ID**: eu-gmo-directive-2001-18-article-13-notification-for-placing-on-market - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Organizations must submit a detailed notification to the competent authority of the first Member State where a genetically modified organism (GMO) product is to be placed on the market. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmo-directive-2001-18-article-13-notification-for-placing-on-market.json #### Directive 2001/18/EC of the European Parliament and of the Council on the deliberate release into the environment of genetically modified organisms - Article 15 - **ID**: eu-gmo-directive-2001-18-article-15-consent-for-placing-on-market - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This article outlines the standard procedure for competent authorities and the Commission to review, object to, or grant consent for placing Genetically Modified Organisms (GMOs) on the market, includ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmo-directive-2001-18-article-15-consent-for-placing-on-market.json #### Directive 2001/18/EC on the deliberate release into the environment of genetically modified organisms - Article 2 Definitions - **ID**: eu-gmo-directive-2001-18-article-2-definitions - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This article requires organizations to classify their biological entities, genetic modification techniques, and market activities according to the specific legal definitions provided for 'GMO', 'delib... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmo-directive-2001-18-article-2-definitions.json #### Directive 2001/18/EC of the European Parliament and of the Council on the deliberate release into the environment of genetically modified organisms - Article 20: Monitoring and handling of new information - **ID**: eu-gmo-directive-2001-18-article-20-monitoring-plan - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Notifiers must ensure post-market monitoring and reporting for GMOs are conducted according to the conditions specified in the consent, submitting reports to the Commission and Member State competent ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmo-directive-2001-18-article-20-monitoring-plan.json #### Directive 2001/18/EC on the deliberate release into the environment of genetically modified organisms - Article 23: Safeguard clause - **ID**: eu-gmo-directive-2001-18-article-23-safeguard-clause - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This article outlines the safeguard clause allowing a Member State to provisionally restrict or prohibit a consented GMO product if new information indicates a risk to human health or the environment,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmo-directive-2001-18-article-23-safeguard-clause.json #### Directive 2001/18/EC on the deliberate release into the environment of genetically modified organisms - Article 26: Labelling of GMOs referred to in Article 2(4), second subparagraph - **ID**: eu-gmo-directive-2001-18-article-26-labelling - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Organizations must ensure that GMOs intended for specific operations are clearly labelled with the words 'This product contains genetically modified organisms' on a label or in an accompanying documen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmo-directive-2001-18-article-26-labelling.json #### Directive 2001/18/EC on the deliberate release into the environment of genetically modified organisms - Article 4: General obligations - **ID**: eu-gmo-directive-2001-18-article-4-general-obligations - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Organizations must conduct a comprehensive environmental risk assessment before notifying authorities for the deliberate release or marketing of GMOs, with specific requirements for phasing out certai... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmo-directive-2001-18-article-4-general-obligations.json #### Directive 2001/18/EC of the European Parliament and of the Council on the deliberate release into the environment of genetically modified organisms - Article 6 - **ID**: eu-gmo-directive-2001-18-article-6-experimental-releases - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This article establishes the procedural requirements for Member States and the Commission regarding the notification, summary forwarding, observation period, and final decision reporting for the exper... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmo-directive-2001-18-article-6-experimental-releases.json #### Regulation (EC) No 1829/2003 of the European Parliament and of the Council of 22 September 2003 on genetically modified food and feed - **ID**: eu-gmo-regulation-1829-2003 - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: This regulation establishes a centralized authorization procedure for placing genetically modified food and feed on the EU market, requiring pre-market risk assessment by EFSA, traceability, and manda... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmo-regulation-1829-2003.json #### EU GMO Regulation 1829/2003 - Authorisation, Labelling & Traceability of GM Food and Feed - **ID**: eu-gmo-regulation-1829-2003-genetically-modified-food-feed - **Category**: Biotech & Genomics - **Version**: 2.0 - **BLUF**: Regulation 1829/2003 establishes a centralised EU authorisation procedure for genetically modified food and feed, mandatory labelling above 0.9% GMO threshold, and a 10-year renewable authorisation wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmo-regulation-1829-2003-genetically-modified-food-feed.json #### Regulation (EU) 2017/746 of the European Parliament and of the Council of 5 April 2017 on in vitro diagnostic medical devices and repealing Directive 98/79/EC and Commission Decision 2010/227/EU - Genomic Diagnostics: Class D High-Risk Devices, Performance Studies, Companion Diagnostics, Notified Body Review and EUDAMED Registration - **ID**: eu-ivd-regulation-2017-746-genomic-diagnostics - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2017/746 establishes stringent requirements for high-risk in vitro diagnostic devices, including genomic diagnostics classified as Class D, mandating Notified Body involvement, perform... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ivd-regulation-2017-746-genomic-diagnostics.json #### Regulation (EC) No 141/2000 of the European Parliament and of the Council of 16 December 1999 on Orphan Medicinal Products - **ID**: eu-orphan-regulation-141-2000-rare-diseases - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: This regulation establishes the framework for the designation of orphan medicinal products in the EU for the diagnosis, prevention, or treatment of life-threatening or chronically debilitating conditi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-orphan-regulation-141-2000-rare-diseases.json #### Regulation (EC) No 1829/2003 - Authorisation and Labelling of Genetically Modified Food and Feed - **ID**: eu-regulation-1829-2003-gmo-food-feed-authorisation - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Regulation (EC) No 1829/2003 requires that all genetically modified food and feed placed on the EU market receive a centralised authorisation from the European Commission, preceded by a scientific ris... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-regulation-1829-2003-gmo-food-feed-authorisation.json #### Regulation (EC) No 1830/2003 - Traceability and Labelling of Genetically Modified Organisms - **ID**: eu-regulation-1830-2003-gmo-traceability-labelling - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Regulation (EC) No 1830/2003 establishes a mandatory traceability and labelling system for GMOs and food and feed produced from GMOs throughout the EU supply chain. Operators must transmit and retain ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-regulation-1830-2003-gmo-traceability-labelling.json #### EU Regulation 726/2004 - EMA Centralised Procedure for Marketing Authorisation of Medicinal Products - **ID**: eu-regulation-2004-726-ema-centralised-procedure-marketing-authorisation - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Regulation (EC) No 726/2004 establishes the centralised procedure for European Medicines Agency (EMA) marketing authorisation (MA) of medicines for human and veterinary use. Centralised MAs grant simu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-regulation-2004-726-ema-centralised-procedure-marketing-authorisation.json #### Guidance for Human Gene Therapy Investigational New Drug Applications (INDs): CMC, Preclinical, and Clinical Considerations - **ID**: fda-guidance-human-gene-therapy-2020 - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: This FDA guidance outlines chemistry, manufacturing, and controls (CMC), preclinical, and clinical requirements for gene therapy INDs under 21 CFR Part 312. It applies to sponsors developing human gen... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-guidance-human-gene-therapy-2020.json #### FDA Process Validation Guidance - Lifecycle Approach 2011 - **ID**: fda-guidance-process-validation-lifecycle-approach-2011 - **Category**: Biotech & Genomics - **Version**: 2011-01 - **BLUF**: FDA's 2011 Process Validation guidance establishes a lifecycle approach in three stages - process design, process qualification, and continued process verification - requiring manufacturers to collect... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-guidance-process-validation-lifecycle-approach-2011.json #### GA4GH Framework for Responsible Sharing of Genomic and Health-Related Data (Version 2) - **ID**: ga4gh-framework-v2-genomics-standards - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Global Alliance for Genomics and Health (GA4GH) is an international, non-profit standards body that produces technical and policy standards for the responsible sharing of genomic and health-relate... - **Discovery URL**: https://bidda.com/api/v1/nodes/ga4gh-framework-v2-genomics-standards.json #### ICH Q5A(R2) Viral Safety Evaluation of Biotechnology-Derived Products 2024 - Viral Clearance Studies, Testing Strategy and Risk Assessment Framework - **ID**: ich-q5a-r2-viral-safety-biotech-2024 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This regulation requires manufacturers of biotechnology-derived products to conduct viral clearance studies using validated methods to demonstrate removal or inactivation of potential viral contaminan... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q5a-r2-viral-safety-biotech-2024.json #### ICH Q5D - Derivation and Characterisation of Cell Substrates for Biological Products - **ID**: ich-q5d-cell-substrates-biological-products - **Category**: Biotech & Genomics - **Version**: Q5D (1998, current) - **BLUF**: ICH Q5D (adopted by ICH Step 4 in November 1997, implemented globally in 1998) establishes the international standard for derivation, characterisation, and ongoing management of cell substrates (Maste... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q5d-cell-substrates-biological-products.json #### ICH S10: Photosafety Evaluation of Pharmaceuticals - **ID**: ich-s10-photosafety-evaluation-pharmaceuticals-2013 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: ICH S10 provides a tiered approach to photosafety assessment for pharmaceuticals: starting with photochemical characterisation (molar absorption coefficient, quantum yield, photodegradation), proceedi... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-s10-photosafety-evaluation-pharmaceuticals-2013.json #### ICH S12 - Nonclinical Biodistribution Considerations for Gene Therapy Products (2023) - **ID**: ich-s12-nonclinical-biodistribution-gene-therapy-2023 - **Category**: Biotech & Genomics - **Version**: 2023-09 - **BLUF**: ICH Guideline S12 (finalized September 2023, Step 4) establishes the nonclinical biodistribution study design principles for gene therapy products, specifying when biodistribution studies are required... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-s12-nonclinical-biodistribution-gene-therapy-2023.json #### ICH S5(R3): Detection of Reproductive and Developmental Toxicity for Human Pharmaceuticals - **ID**: ich-s5-r3-reproductive-developmental-toxicity-2020 - **Category**: Biotech & Genomics - **Version**: 3.0.0 - **BLUF**: ICH S5(R3) mandates species-specific DART study designs for all new human pharmaceuticals, requiring fertility, embryo-fetal development, and pre/postnatal development studies, with extended one-gener... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-s5-r3-reproductive-developmental-toxicity-2020.json #### ICH S6(R1): Preclinical Safety Evaluation of Biotechnology-Derived Pharmaceuticals - **ID**: ich-s6-r1-preclinical-safety-biotech-pharmaceuticals-2011 - **Category**: Biotech & Genomics - **Version**: 1.1.0 - **BLUF**: ICH S6(R1) establishes the framework for preclinical safety assessment of biologics including monoclonal antibodies, recombinant proteins, and gene therapies, requiring pharmacologically relevant spec... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-s6-r1-preclinical-safety-biotech-pharmaceuticals-2011.json #### ICH S7A: Safety Pharmacology Studies for Human Pharmaceuticals - **ID**: ich-s7a-safety-pharmacology-human-pharmaceuticals-2001 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: ICH S7A mandates a core safety pharmacology battery assessing cardiovascular (hERG, telemetry), CNS (Irwin/FOB), and respiratory function for all new pharmaceutical candidates before first human dosin... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-s7a-safety-pharmacology-human-pharmaceuticals-2001.json #### ICH S8 - Immunotoxicity Studies for Human Pharmaceuticals: Non-Clinical Safety Assessment Guideline - **ID**: ich-s8-immunotoxicity-studies-human-medicines-2005 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: ICH S8 (November 2005, adopted by EMA, FDA, PMDA) provides guidance for non-clinical evaluation of immunotoxic potential of new human pharmaceuticals using a tiered testing approach; the standard batt... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-s8-immunotoxicity-studies-human-medicines-2005.json #### India Biological Diversity Act 2002 - Access to Biological Resources and Benefit Sharing - **ID**: india-biological-diversity-act-2002-access-benefit-sharing - **Category**: Biotech & Genomics - **Version**: Act No. 18 of 2003 (amended 2023) - **BLUF**: India's Biological Diversity Act 2002 (Act 18 of 2003) implements the Convention on Biological Diversity's access and benefit-sharing (ABS) framework: foreign nationals and companies require prior Nat... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-biological-diversity-act-2002-access-benefit-sharing.json #### ISBER Best Practices for Repositories: Collection, Storage, Retrieval, Release and Disposal of Biospecimens, 4th Edition (2018) - **ID**: isber-best-practices-biorepositories-2018 - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: This standard establishes comprehensive requirements for the ethical, safe, and scientifically valid management of human and non-human biospecimens throughout their lifecycle, including collection, pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/isber-best-practices-biorepositories-2018.json #### ISO 20387:2018 Biotechnology - Biobanking - General Requirements for Biobanking - **ID**: iso-iec-20387-2018-biobanking-general-requirements - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: ISO 20387:2018 Biotechnology - Biobanking - General Requirements for Biobanking is the international standard specifying the management and technical requirements for biobanks to enable them to demons... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-20387-2018-biobanking-general-requirements.json #### ISSCR Guidelines for Stem Cell Research and Clinical Translation (2021) - **ID**: isscr-guidelines-stem-cell-research-2021 - **Category**: Biotech & Genomics - **Version**: 2021 - **BLUF**: The International Society for Stem Cell Research (ISSCR) 2021 Guidelines for Stem Cell Research and Clinical Translation represent the international consensus framework governing embryonic stem cell r... - **Discovery URL**: https://bidda.com/api/v1/nodes/isscr-guidelines-stem-cell-research-2021.json #### Japan Cartagena Act 2003 - Law on Conservation of Biological Diversity through LMO Regulation - **ID**: japan-cartagena-act-2003-lmo-regulation - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Japan's Act on the Conservation and Sustainable Use of Biological Diversity through Regulations on the Use of Living Modified Organisms (Act No. 97 of 2003, amended 2022) implements the Cartagena Prot... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-cartagena-act-2003-lmo-regulation.json #### Nagoya Protocol on Access to Genetic Resources and the Fair and Equitable Sharing of Benefits Arising from their Utilization to the Convention on Biological Diversity - **ID**: nagoya-protocol-genetic-resources-2010 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Nagoya Protocol requires users of genetic resources to obtain prior informed consent (PIC) from provider countries and establish mutually agreed terms (MAT) for benefit-sharing. It applies to all ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nagoya-protocol-genetic-resources-2010.json #### OECD Guidelines on Safety Considerations for Biotechnology 2000 - Contained Use Risk Assessment, Scale-Up Considerations, Worker Health Monitoring and Environmental Release Controls - **ID**: oecd-guidelines-biotechnology-safety-2000 - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: These OECD Guidelines establish a risk-based framework for the safe handling of genetically modified organisms (GMOs) during contained use, scale-up, and environmental release, with specific requireme... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-guidelines-biotechnology-safety-2000.json #### OECD Guidelines on Human Biobanks and Genetic Research Databases 2009 - Consent, Data Governance, Sample Access and Benefit-Sharing Principles - **ID**: oecd-guidelines-human-biobanks-2009 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: These guidelines establish international standards for the governance of human biobanks and genetic research databases, requiring informed consent, data protection, equitable access to samples, and be... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-guidelines-human-biobanks-2009.json #### Singapore Biosafety Guidelines for Research on Genetically Modified Organisms (GMOs) and for Release of Agriculture-Related GMOs - **ID**: singapore-genetic-modification-advisory-gmac - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The GMAC guidelines establish biosafety requirements for research involving GMOs and for the commercial release of agriculture-related GMOs in Singapore. These apply to researchers, institutions, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-genetic-modification-advisory-gmac.json #### Regulatory overview of therapeutic products in Singapore under the Health Products Act (HPA) and Health Products (Therapeutic Products) Regulations 2016 - **ID**: singapore-hsa-therapeutic-products-regulations - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Therapeutic products must be registered and dealers must hold a valid licence before manufacturing, importing, or supplying such products in Singapore. Registration, licensing, and post-market vigilan... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-hsa-therapeutic-products-regulations.json #### South Africa NHREC Ethics in Health Research Guidelines 2024 - Biobanking and Genomics - **ID**: south-africa-nhrec-ethics-health-research-2024 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The South African Ethics in Health Research: Principles, Processes and Structures Guidelines (4th edition, 2024) are issued by the National Health Research Ethics Council (NHREC) under the National He... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-nhrec-ethics-health-research-2024.json #### UK Animals (Scientific Procedures) Act 1986 (c.14): Licensing of Animal Research - **ID**: uk-animals-scientific-procedures-act-1986 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Animals (Scientific Procedures) Act 1986 (c. 14) regulates the use of protected animals in scientific procedures in the United Kingdom through a three-licence system, administered by the Secretary... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-animals-scientific-procedures-act-1986.json #### UK Genome UK Strategy 2020 The Future of Healthcare Genomics England Whole Genome Sequencing Data Sharing Industrial Growth and Public Trust Framework - **ID**: uk-genome-uk-strategy-2020-genomics-england - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The United Kingdom Genome UK strategy published by the Department of Health and Social Care on 26 September 2020 establishes the national genomics strategy across diagnosis personalised medicine popul... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-genome-uk-strategy-2020-genomics-england.json #### UK Genetically Modified Organisms (Contained Use) Regulations 2014 - HSE Consent, Risk Classification and Biosafety - **ID**: uk-gmo-contained-use-regulations-2014-hse - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Genetically Modified Organisms (Contained Use) Regulations 2014 (SI 2014/1663) implement EU Directive 2009/41/EC on the contained use of genetically modified micro-organisms (GMMs) in the United K... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gmo-contained-use-regulations-2014-hse.json #### Human Tissue Act 2004 - Consent Requirements, Licensed Activities for Human Biological Material and Human Tissue Authority (HTA) Oversight - **ID**: uk-human-tissue-act-2004 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Human Tissue Act 2004 establishes a legal framework for the removal, storage, and use of human tissue in England, Wales, and Northern Ireland, requiring appropriate consent for scheduled purposes ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-human-tissue-act-2004.json #### Human Tissue Act 2004 - **ID**: uk-human-tissue-act-2004-biobanks - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: The Human Tissue Act 2004 requires that any removal, storage or use of human tissue for scheduled purposes-including biobanking-must be performed only with appropriate consent (Section 3 for adults, S... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-human-tissue-act-2004-biobanks.json #### Convention on the Prohibition of the Development, Production and Stockpiling of Bacteriological (Biological) and Toxin Weapons and on Their Destruction - **ID**: un-biological-weapons-convention-1972 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The BWC prohibits state parties from developing, producing, stockpiling, acquiring, or retaining biological agents or toxins of types and in quantities that have no justification for peaceful purposes... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-biological-weapons-convention-1972.json #### UN Convention on Biological Diversity 1992 - Sovereign Rights over Genetic Resources, Access and Benefit-Sharing Obligations, Conservation In Situ/Ex Situ and Technology Transfer Provisions - **ID**: un-convention-biological-diversity-cbd-1992 - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: The Convention on Biological Diversity establishes sovereign rights over genetic resources, requiring states to ensure fair and equitable benefit-sharing from their utilization and to conserve biodive... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-convention-biological-diversity-cbd-1992.json #### 7 USC § 2131 - Animal Welfare Act (Congressional Statement of Policy) - **ID**: us-7-usc-2131-animal-welfare-act - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: 7 USC § 2131 (Animal Welfare Act of 1966, originally enacted as Pub. L. 89-544 / Laboratory Animal Welfare Act, amended substantially by Pub. L. 91-579 (1970), Pub. L. 94-279 (1976), Pub. L. 99-198 (1... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-7-usc-2131-animal-welfare-act.json #### 35 U.S. Code Chapter 18 Part II - Patent Rights in Inventions Made with Federal Assistance - **ID**: us-bayh-dole-act-university-technology-transfer - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This regulation governs the ownership, reporting, and licensing of inventions made with federal funding, allowing contractors (e.g., universities) to elect title to inventions under § 202, subject to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bayh-dole-act-university-technology-transfer.json #### CDC/NIH Biosafety in Microbiological and Biomedical Laboratories (BMBL) - 6th Edition (2025) - **ID**: us-cdc-nih-bmbl-6th-edition-biosafety-microbiological-biomedical-laboratories-2025 - **Category**: Biotech & Genomics - **Version**: 6.0.0 - **BLUF**: Laboratory operators handling potentially hazardous biological agents and toxins should run a comprehensive, continually-updated biosafety risk assessment under Section II of BMBL, select the appropri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cdc-nih-bmbl-6th-edition-biosafety-microbiological-biomedical-laboratories-2025.json #### Coordinated Framework for the Regulation of Biotechnology - **ID**: us-coordinated-framework-biotechnology-1986 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Establishes the jurisdictional roles of the FDA, EPA, and USDA in regulating genetically modified organisms (GMOs) based on product type and intended use, pursuant to existing statutory authorities in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-coordinated-framework-biotechnology-1986.json #### US GINA - Genetic Information Nondiscrimination Act 2008 - Employment and Health Insurance Protections - **ID**: us-dna-testing-privacy-genetic-information-nondiscrimination-act-gina - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Genetic Information Nondiscrimination Act of 2008 (GINA) prohibits discrimination based on genetic information in health insurance (Title I) and employment (Title II). Title I prohibits health ins... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dna-testing-privacy-genetic-information-nondiscrimination-act-gina.json #### 40 CFR Part 725 - Reporting Requirements for Microbial Products of Biotechnology (TSCA) - **ID**: us-epa-40-cfr-725-microbial-products-biotechnology-tsca - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 725 sets the TSCA reporting requirements for microbial products of biotechnology, requiring submitters to identify intergeneric microorganisms, file a Microbial Commercial Activity Not... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-725-microbial-products-biotechnology-tsca.json #### US FDA 21 CFR Part 312 - Investigational New Drug (IND) Application for Clinical Trials - **ID**: us-fda-21-cfr-312-investigational-new-drug-ind-application - **Category**: Biotech & Genomics - **Version**: 2.0 - **BLUF**: 21 CFR Part 312 requires sponsors to file an Investigational New Drug Application with FDA before initiating Phase I, II, or III clinical trials in the US - covering investigational biologics, gene th... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-312-investigational-new-drug-ind-application.json #### 21 CFR Part 58 - Good Laboratory Practice for Nonclinical Laboratory Studies - **ID**: us-fda-21-cfr-58-glp-nonclinical-studies - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Part 58 mandates that any nonclinical laboratory study supporting FDA product applications must follow Good Laboratory Practice, including qualified personnel (§ 58.29), a designated study director (§... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-58-glp-nonclinical-studies.json #### Biologics License Applications (BLA) Process (CBER) - Request for Permission to Introduce a Biologic Product into Interstate Commerce under 21 CFR 601.2 - **ID**: us-fda-biologics-bla-351-phsa - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: This regulation governs the submission and approval of Biologics License Applications (BLAs) for introducing biologic products into interstate commerce, as required under 21 CFR 601.2. It applies to a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-biologics-bla-351-phsa.json #### Genetic Information Nondiscrimination Act of 2008 - Prohibiting Employment Discrimination on the Basis of Genetic Information - **ID**: us-gina-genetic-information-nondiscrimination - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: The Genetic Information Nondiscrimination Act (GINA) of 2008 prohibits employers with 15 or more employees from using genetic information in employment decisions, including hiring, firing, and promoti... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-gina-genetic-information-nondiscrimination.json #### Code of Federal Regulations, Title 45, Part 46 - Protection of Human Subjects - **ID**: us-hhs-45-cfr-46-common-rule-research - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The Common Rule (45 CFR Part 46) establishes federal policy for the protection of human subjects in research, requiring Institutional Review Board (IRB) review, informed consent, and additional safegu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hhs-45-cfr-46-common-rule-research.json #### US NIH Recombinant DNA Research Guidelines - Institutional Biosafety Committee Requirements - **ID**: us-national-institutes-health-nih-recombinant-dna-guidelines-research - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The NIH Guidelines for Research Involving Recombinant or Synthetic Nucleic Acid Molecules (NIH Guidelines) govern laboratory research with recombinant DNA and synthetic nucleic acids at institutions r... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-institutes-health-nih-recombinant-dna-guidelines-research.json #### US NIH Genomic Data Sharing (GDS) Policy (2014, updated) - **ID**: us-nih-genomic-data-sharing-policy-2014-2024-update - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The National Institutes of Health (NIH) Genomic Data Sharing (GDS) Policy establishes the expectation that human and non-human genomic data generated from NIH-funded research will be broadly shared in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nih-genomic-data-sharing-policy-2014-2024-update.json #### NIH Guidelines for Research Involving Recombinant or Synthetic Nucleic Acid Molecules (2019) - **ID**: us-nih-guidelines-rdna-research-2019 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: Institutions conducting recombinant or synthetic nucleic acid research in the U.S. must register with the NIH Office of Science Policy and establish an Institutional Biosafety Committee (IBC) to revie... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nih-guidelines-rdna-research-2019.json #### NIH Guidelines for Research Involving Recombinant or Synthetic Nucleic Acid Molecules (2019 Revision) - **ID**: us-nih-guidelines-recombinant-dna-research - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: These guidelines establish biosafety levels, containment practices, and Institutional Biosafety Committee (IBC) review requirements for all research involving recombinant or synthetic nucleic acid mol... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nih-guidelines-recombinant-dna-research.json #### Possession, Use and Transfer of Biological Select Agents and Toxins (42 CFR Part 73 and 9 CFR Part 121) - **ID**: us-select-agent-program-42-cfr-73 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: This regulation establishes requirements for entities possessing, using, or transferring biological select agents and toxins (BSAT) that have the potential to pose a severe threat to public, animal, o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-select-agent-program-42-cfr-73.json #### USA FDA 21 CFR Part 1271 - Human Cells, Tissues, and Cellular and Tissue-Based Products (HCT/Ps) - **ID**: usa-21-cfr-part-1271-human-cells-tissues-ctps - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: FDA 21 CFR Part 1271 (Human Cells, Tissues, and Cellular and Tissue-Based Products - HCT/Ps) establishes the regulatory framework for human-derived biological materials used in transplantation, therap... - **Discovery URL**: https://bidda.com/api/v1/nodes/usa-21-cfr-part-1271-human-cells-tissues-ctps.json #### USA NIH Guidelines for Research Involving Recombinant or Synthetic Nucleic Acid Molecules (2019) - **ID**: usa-nih-guidelines-recombinant-dna-research-2019 - **Category**: Biotech & Genomics - **Version**: 1.0.0 - **BLUF**: The NIH Guidelines for Research Involving Recombinant or Synthetic Nucleic Acid Molecules (NIH Guidelines, first published 1976, comprehensively revised 2019, administered by the NIH Office of Science... - **Discovery URL**: https://bidda.com/api/v1/nodes/usa-nih-guidelines-recombinant-dna-research-2019.json #### WHO Laboratory Biosafety Manual 4th Edition 2020 - Risk Assessment, Biosafety Levels 1-4, Containment Requirements, Personal Protective Equipment, Inactivation and Waste Management - **ID**: who-laboratory-biosafety-manual-4th-edition - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: This manual establishes a risk-based framework for laboratory biosafety, requiring all laboratories handling biological agents to conduct evidence-based risk assessments prior to activities and implem... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-laboratory-biosafety-manual-4th-edition.json #### WHO Advisory Committee Human Genome Editing Governance Framework 2021 - Oversight Mechanisms, Registry Requirements and Ethical Principles - **ID**: who-somatic-genome-editing-guidelines-2021 - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: This framework establishes global governance standards for human genome editing, including somatic applications, requiring institutional oversight, registration of research, and adherence to ethical p... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-somatic-genome-editing-guidelines-2021.json #### WIPO Patent Protection for Biotechnology Inventions - Patentability Requirements, Morality Exceptions and Sequence Listing Standards - **ID**: wipo-patents-biotechnology-guidelines-2022 - **Category**: Biotech & Genomics - **Version**: 1.0.1 - **BLUF**: This WIPO guidance establishes international standards for the patentability of biotechnology inventions, including requirements for industrial applicability, sufficient disclosure, and compliance wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-patents-biotechnology-guidelines-2022.json ### Cloud & SaaS (108 nodes) #### Appian Intelligent Automation - Platform Governance: Process Modeller, Records Architecture, Security Groups, Environment Promotion and Compliance Reporting - **ID**: appian-intelligent-automation-governance - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: This regulation establishes mandatory governance controls for Appian Intelligent Automation deployments, requiring documented process modeling standards, role-based access via Security Groups, auditab... - **Discovery URL**: https://bidda.com/api/v1/nodes/appian-intelligent-automation-governance.json #### Australia IRAP — Information Security Registered Assessors Program (ASD ACSC) - **ID**: au-irap-information-security-registered-assessors-program - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The Information Security Registered Assessors Program (IRAP) is the Australian government cybersecurity assessment programme administered by the Australian Signals Directorate (ASD) through the Austra... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-irap-information-security-registered-assessors-program.json #### Information Security Registered Assessors Program: Cloud Service Assessment Methodology, PROTECTED/SECRET Level Controls, ISM Control Mapping, Continuous Monitoring Plan and ASD Endorsed Cloud Services List - **ID**: australia-irap-cloud-assessment-2023 - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: This regulation requires cloud service providers (CSPs) handling Australian Government data at PROTECTED or SECRET levels to undergo a formal security assessment by an ASD-accredited IRAP assessor. Co... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-irap-cloud-assessment-2023.json #### AWS Shared Responsibility Model - Customer Workload Obligations: Security IN the Cloud (OS Patching, Network Configuration, Application Security, Data Encryption), AWS Security OF the Cloud (Hypervisor, Physical Data Centres, Global Network) and Managed Service Boundary Variations - **ID**: aws-shared-responsibility-model-workloads - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: This regulation outlines the division of security responsibilities between AWS and its customers, where AWS is responsible for Security 'of' the Cloud (infrastructure, hardware, facilities), and custo... - **Discovery URL**: https://bidda.com/api/v1/nodes/aws-shared-responsibility-model-workloads.json #### ISO/IEC 19770-1:2017 IT Asset Management - Software Asset Management Processes and Requirements - **ID**: bsa-software-asset-management-iso-19770 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This standard specifies a tiered process framework for Software Asset Management (SAM) to enable organizations to prove they are performing SAM to a standard sufficient to satisfy corporate governance... - **Discovery URL**: https://bidda.com/api/v1/nodes/bsa-software-asset-management-iso-19770.json #### Canada CCCS Protected B Cloud Security Profile - ITSP.50.105 Government Cloud Authorization and Security Control Assessment - **ID**: canada-protected-b-cloud-security-profile-cccs-itsp-50-105 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The Government of Canada Security Control Profile for Cloud-Based IT Services (GC Cloud Security Control Profile), also referenced as ITSP.50.105 and published by the Canadian Centre for Cyber Securit... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-protected-b-cloud-security-profile-cccs-itsp-50-105.json #### CISA Secure by Design Guidance 2024 - Software Manufacturer Obligations: Shift Liability from Customers to Vendors, Memory-Safe Languages, Default-Secure Configurations, Eliminate Default Passwords, Vulnerability Disclosure Programmes and CVE Remediation Commitments - **ID**: cisa-secure-by-design-guidance-2024 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This guidance requires software manufacturers to implement Secure by Design principles by prioritizing customer security as a core business requirement, ensuring out-of-the-box secure configurations, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/cisa-secure-by-design-guidance-2024.json #### COBIT 2019: A Business Framework for the Governance and Management of Enterprise Information and Technology (I&T) - **ID**: cobit-2019-governance-framework - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: COBIT 2019 provides a comprehensive framework for governing and managing enterprise information and technology (I&T) to align with business goals. It establishes 40 core governance and management obje... - **Discovery URL**: https://bidda.com/api/v1/nodes/cobit-2019-governance-framework.json #### CSA Cloud Controls Matrix (CCM) v4.0 - **ID**: csa-ccm-v4-cloud-controls - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The Cloud Controls Matrix (CCM) is a cybersecurity control framework for cloud computing, providing a comprehensive set of 197 security controls across 17 domains. It is designed for both cloud servic... - **Discovery URL**: https://bidda.com/api/v1/nodes/csa-ccm-v4-cloud-controls.json #### CSA STAR Certification Level 2 - Cloud Controls Matrix + ISO/IEC 27001: Third-Party Audit Combining CCM v4 Assessment with ISO 27001 Certification, STAR Registry Publication, Annual Surveillance Audits and Cloud-Specific Control Augmentation - **ID**: csa-star-certification-level-2-iso-27001 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: CSA STAR Certification Level 2 requires cloud service providers to undergo a third-party audit that combines ISO/IEC 27001 certification with the CSA Cloud Controls Matrix (CCM) to validate cloud-spec... - **Discovery URL**: https://bidda.com/api/v1/nodes/csa-star-certification-level-2-iso-27001.json #### Cyber Essentials Plus (UK) - **ID**: cyber-essentials-plus-uk - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: Cyber Essentials Plus (UK) certification establishes a high-assurance cybersecurity posture, validated through a mandatory independent technical audit as specified in the NCSC Cyber Essentials Plus: I... - **Discovery URL**: https://bidda.com/api/v1/nodes/cyber-essentials-plus-uk.json #### Germany BSI C5 — Cloud Computing Compliance Criteria Catalogue (C5:2026) - **ID**: de-bsi-c5-cloud-computing-compliance-criteria-catalogue - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The Cloud Computing Compliance Criteria Catalogue (C5) is the German federal cloud assurance standard issued by the Federal Office for Information Security (Bundesamt fuer Sicherheit in der Informatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-bsi-c5-cloud-computing-compliance-criteria-catalogue.json #### ENISA Good Practices for Security of Cloud Services - **ID**: enisa-cloud-security-guidelines-2023 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This ENISA publication provides a comprehensive set of 263 good practice security measures across 11 domains for Cloud Service Providers (CSPs) and their customers to secure cloud services. It serves ... - **Discovery URL**: https://bidda.com/api/v1/nodes/enisa-cloud-security-guidelines-2023.json #### Regulation (EU) 2023/1781 of the European Parliament and of the Council of 13 September 2023 establishing a framework of measures for strengthening Europe’s semiconductor ecosystem and amending Regulation (EU) 2021/694 (Chips Act) - **ID**: eu-chips-act-2023-regulation-1781 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The EU Chips Act establishes a framework to strengthen Europe’s semiconductor ecosystem through public-private investment, crisis response mechanisms, and support for Integrated Production Facilities ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-2023-regulation-1781.json #### ENISA European Cybersecurity Certification Scheme for Cloud Services (EUCS) - **ID**: eu-cloud-certification-scheme-eucs - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The EUCS establishes a voluntary, EU-wide cybersecurity certification framework for Cloud Service Providers (CSPs), defining three assurance levels (Basic, Substantial, High) to verify security and en... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cloud-certification-scheme-eucs.json #### European Cybersecurity Certification Scheme for Cloud Services (EUCS) - **ID**: eu-cloud-certification-scheme-eucs-2024 - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: This draft certification scheme establishes cybersecurity requirements for cloud service providers seeking European Union cybersecurity certification under ENISA’s EUCS framework, with three defined a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cloud-certification-scheme-eucs-2024.json #### ENISA European Cybersecurity Certification Scheme for Cloud Services (EUCS) - **ID**: eu-cloud-rulebook-2021 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The European Cybersecurity Certification Scheme for Cloud Services (EUCS) establishes a voluntary, EU-wide certification framework for Cloud Service Providers (CSPs) to demonstrate cybersecurity assur... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cloud-rulebook-2021.json #### EU Cloud Switching and Porting (SWIPO) Codes of Conduct 2021 - Customer Portability: Infrastructure-as-a-Service and Software-as-a-Service Codes, Data Export Formats, Functional Portability Requirements, Transition Assistance Obligations and Data Act 2023 Legal Reinforcement - **ID**: eu-cloud-rulebook-2021-swipo-portability - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: This regulation establishes binding codes of conduct for cloud service providers to ensure customer data portability, functional interoperability, and transition assistance during switching between Ia... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cloud-rulebook-2021-swipo-portability.json #### Regulation (EU) 2023/2854 of the European Parliament and of the Council of 13 December 2023 on harmonised rules on fair access to and use of data and amending Regulation (EU) 2017/2394 and Directive (EU) 2020/1828 (Data Act) - **ID**: eu-data-act-2023 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The EU Data Act requires manufacturers of connected products and providers of related services to make product- and service-generated data accessible to users and designated third parties under fair, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023.json #### EU Data Act 2023/2854 - IoT Data Sharing, Cloud Switching Rights, and B2B Data Access - **ID**: eu-data-act-2023-1257-data-sharing-iot-switching - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2023/2854 (Data Act, applicable from September 2025) establishes rules for data generated by connected products (IoT) and related services: users have a right to access and share their... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-1257-data-sharing-iot-switching.json #### EU Data Act 2023/2854 - Cloud Switching, Data Sharing and Smart Contracts - **ID**: eu-data-act-2023-2854-cloud-switching-data-sharing - **Category**: Cloud & SaaS - **Version**: 2.0.0 - **BLUF**: Regulation (EU) 2023/2854 (Data Act) creates rights to share and access data generated by connected products and services; establishes cloud switching portability requirements with maximum 30-day noti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-2854-cloud-switching-data-sharing.json #### Regulation (EU) 2023/2854 of the European Parliament and of the Council of 14 December 2023 on harmonised rules on fair access to and use of data and amending Regulation (EU) 2017/2394 and Directive (EU) 2019/770 - **ID**: eu-data-act-2023-2854-machine-generated-data - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: The EU Data Act establishes rights and obligations regarding access to and use of machine-generated data, particularly in business-to-business (B2B) and business-to-government (B2G) contexts. It appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-2854-machine-generated-data.json #### Regulation (EU) 2023/2854 of the European Parliament and of the Council of 13 December 2023 on harmonised rules on fair access to and use of data and amending Regulation (EU) 2017/2394 and Directive (EU) 2020/1828 (Data Act) - **ID**: eu-data-act-2023-regulation-2854 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The EU Data Act 2023 establishes harmonised rules for fair access to and use of data generated by connected devices, requiring manufacturers and service providers to enable users to access and share d... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-regulation-2854.json #### Regulation (EU) 2022/868 of the European Parliament and of the Council of 30 May 2022 on European data governance and amending Regulation (EU) 2018/1724 (Data Governance Act) - **ID**: eu-data-governance-act-2022 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The EU Data Governance Act (DGA) establishes a framework to increase data availability by regulating the reuse of public sector data, creating a new business category of neutral data intermediation se... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-governance-act-2022.json #### Regulation (EU) 2022/868 of the European Parliament and of the Council of 30 May 2022 on European data governance and amending Regulation (EU) 2018/1724 (Data Governance Act) - **ID**: eu-data-governance-act-2022-cloud-data-sharing - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The EU Data Governance Act 2022 establishes a framework for cloud-based data intermediaries to facilitate secure, neutral, and transparent data sharing across sectors, requiring registration with nati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-governance-act-2022-cloud-data-sharing.json #### Regulation (EU) 2022/2554 of the European Parliament and of the Council of 16 November 2022 on digital operational resilience for the financial sector and amending Regulations (EC) No 1060/2009, (EU) No 648/2012, (EU) No 600/2014, (EU) No 909/2014 and (EU) 2018/286 - **ID**: eu-dora-cloud-third-party-ict-2022-2554 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: EU DORA mandates financial entities to manage risks from ICT third-party providers, particularly cloud services, by implementing contractual safeguards, exit strategies, multi-vendor policies, and sub... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-cloud-third-party-ict-2022-2554.json #### EU DORA Subcontracting Chain Provisions - ICT Third-Party Risk for Cloud and Managed Service Providers in Financial Services - **ID**: eu-dora-ict-third-party-cloud - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: Under Article 30(3) of EU DORA, financial entities must ensure their contractual arrangements with ICT third-party service providers, such as cloud providers, explicitly govern the entire subcontracti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-ict-third-party-cloud.json #### EU EBA Guidelines on Cloud Outsourcing 2019 - Banking Cloud Procurement: Critical vs Non-Critical Function Classification, SLA Minimum Requirements, Right of Access for Competent Authorities, Exit Strategy, Sub-Outsourcing Approval and Register of Outsourcing Arrangements - **ID**: eu-eba-cloud-outsourcing-guidelines-2019 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: These EBA Guidelines apply to credit institutions, investment firms under CRD, and payment/e-money institutions, requiring robust governance of outsourcing arrangements, including cloud services. Key ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eba-cloud-outsourcing-guidelines-2019.json #### eIDAS 2 Regulation 2024/1183 - EU Digital Identity Wallet & Electronic Attestation Framework - **ID**: eu-eidas-2-digital-identity-wallet-2024-1183 - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2024/1183 amending eIDAS (Regulation 910/2014) establishes the EU Digital Identity Wallet (EUDI Wallet) framework. Every EU Member State must provide at least one EUDI Wallet to all ci... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eidas-2-digital-identity-wallet-2024-1183.json #### EU Data Act 2023/2854 - Cloud Data Portability, Vendor Lock-in Prevention, and Switching Obligations - **ID**: eu-european-cloud-computing-strategy-gaia-x-data-portability - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: EU Data Act (Regulation 2023/2854) imposes on cloud service providers obligations to enable customers to switch to alternative providers within maximum 30 days, eliminate switching charges by 2027, en... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-european-cloud-computing-strategy-gaia-x-data-portability.json #### Regulation (EU) 2024/903 - EU Interoperable Europe Act: Mandatory Interoperability Assessments for Cross-Border Public Services, European Interoperability Framework, Interoperable Europe Board, GovTech Sandbox, Open Source Preference, and Reusable Interoperability Solutions - **ID**: eu-interoperable-europe-act-2024-903 - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2024/903 (Interoperable Europe Act), entered into force 11 April 2024 and applicable from 12 July 2024, establishes the first EU-wide legally binding framework for public sector digita... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-interoperable-europe-act-2024-903.json #### Regulation (EU) 2023/1230 of the European Parliament and of the Council of 14 June 2023 on machinery and repealing Directive 2006/42/EC of the European Parliament and of the Council and Council Directive 73/361/EEC - **ID**: eu-machinery-regulation-2023 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This regulation establishes harmonised safety requirements for machinery and related products placed on the EU market, addressing new risks from digital technologies like AI and collaborative robots. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-machinery-regulation-2023.json #### Directive (EU) 2022/2555 of the European Parliament and of the Council of 16 November 2022 on measures for a high common level of cybersecurity across the Union, amending and repealing Directive (EU) 2016/1148 (NIS2 Directive) - **ID**: eu-nis2-cloud-essential-services-2022-2555 - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: The NIS2 Directive imposes mandatory risk management and incident reporting obligations on Cloud Service Providers (CSPs) classified as Essential or Important Entities under Articles 21 and 23. These ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-cloud-essential-services-2022-2555.json #### FedRAMP Moderate (NIST) - **ID**: fedramp-moderate-baseline - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: Adherence to the FedRAMP Moderate authorization baseline ensures cloud service offerings meet the stringent security and privacy controls defined in NIST Special Publication 800-53, Revision 5, for pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/fedramp-moderate-baseline.json #### France ANSSI SecNumCloud — Qualification for Cloud Service Providers (Sovereign Cloud Reference) - **ID**: fr-anssi-secnumcloud-qualification-cloud-service-providers - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: SecNumCloud is the French national qualification scheme administered by the Agence Nationale de la Securite des Systemes d'Information (ANSSI) under which qualified cloud service providers (IaaS, PaaS... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-anssi-secnumcloud-qualification-cloud-service-providers.json #### Google Cloud Compliance and Security Offerings 2024 - Assured Workloads for Regulatory Requirements, Sovereignty Controls (EU/US Data Residency), BeyondCorp Enterprise Zero Trust, VPC Service Controls, Access Transparency Logs and Compliance Reports Manager - **ID**: google-cloud-compliance-offerings-2024 - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: This regulation outlines Google Cloud’s compliance posture and technical capabilities supporting customer adherence to global standards, laws, and frameworks. It applies to organizations leveraging Go... - **Discovery URL**: https://bidda.com/api/v1/nodes/google-cloud-compliance-offerings-2024.json #### HITRUST Common Security Framework (CSF) r2 2023 - Healthcare Cloud: 19 Control Categories, 75 Control Objectives, 156 Control Specifications, Implemented 1-Year and Certified 2-Year Assessments, HIPAA, NIST and ISO 27001 Control Mapping - **ID**: hitrust-csf-r2-cloud-healthcare - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The HITRUST CSF provides a comprehensive, integrated control framework for managing cybersecurity and compliance risk in cloud-based healthcare environments, harmonizing over 60 authoritative sources ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hitrust-csf-r2-cloud-healthcare.json #### India MeitY Cloud Security Framework 2020 - GI Cloud Meghraj Empanelment, STQC Certification and Government Cloud Adoption - **ID**: india-meity-cloud-security-framework-2020 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: India's Ministry of Electronics and Information Technology (MeitY) published the Cloud Service Centre Security Framework (CSCF) and the Government Cloud (GI Cloud 'Meghraj') empanelment policy establi... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-meity-cloud-security-framework-2020.json #### India Semiconductor Mission 2021 - INR 76,000 Crore Incentive Scheme for Semiconductor and Display Manufacturing - **ID**: india-semiconductor-mission-2021-chips - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: The India Semiconductor Mission (ISM) 2021 establishes a framework to incentivize domestic semiconductor, display, and compound semiconductor manufacturing through financial support of up to 50% of ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-semiconductor-mission-2021-chips.json #### ISO/IEC/IEEE 12207:2017 - Systems and software engineering - Software life cycle processes - **ID**: iso-12207-2017-software-lifecycle-processes - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This standard defines a comprehensive set of software lifecycle processes for acquisition, supply, development, operation, maintenance, and supporting workflows. It applies to all organizations involv... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-12207-2017-software-lifecycle-processes.json #### ISO 20000-1 (Service Mgt) - **ID**: iso-20000-service-mgt - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: Compliance with ISO 20000-1 mandates the establishment and operation of a comprehensive Service Management System (SMS) to plan, design, transition, deliver, and improve services. Foundational require... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20000-service-mgt.json #### ISO 22301:2019 - Security and Resilience: Business Continuity Management Systems Requirements - **ID**: iso-22301-bcm-2019 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This international standard specifies requirements for establishing, implementing, maintaining, and continually improving a documented business continuity management system (BCMS) to protect against, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-22301-bcm-2019.json #### ISO 22301 (Business Cont) - **ID**: iso-22301-business-cont - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: ISO 22301:2019 is the premier international standard for Business Continuity Management Systems (BCMS). it specifies requirements for the organization to the 'Plan, Do, Check, Act' for the business re... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-22301-business-cont.json #### ISO/IEC 27017:2015 - Code of Practice for Information Security Controls for Cloud Services - **ID**: iso-27017-2015-cloud-controls - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This standard provides guidelines for information security controls applicable to the provision and use of cloud services, supplementing the guidance in ISO/IEC 27002. It introduces cloud-specific con... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27017-2015-cloud-controls.json #### ISO/IEC 27017 (Cloud Controls) - **ID**: iso-27017-cloud-controls - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: The organizational posture concerning ISO/IEC 27017 establishes a comprehensive framework for cloud security controls, yet presents a material deviation regarding data jurisdiction. Adherence to contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27017-cloud-controls.json #### ISO/IEC 27017:2015 Code of Practice for Information Security Controls Based on ISO/IEC 27002 for Cloud Services - **ID**: iso-27017-cloud-security-2015 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This standard provides guidelines for information security controls applicable to the provision and use of cloud services, offering implementation guidance for both cloud service providers and custome... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27017-cloud-security-2015.json #### ISO/IEC 27018:2019 - Code of Practice for Protection of PII in Public Clouds Acting as PII Processors - **ID**: iso-27018-2019-pii-cloud - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This standard establishes control objectives and guidelines for protecting Personally Identifiable Information (PII) for public cloud service providers acting as PII processors. It extends the control... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27018-2019-pii-cloud.json #### ISO/IEC 27018:2019 Code of Practice for PII Protection in Public Cloud Services Acting as PII Processors - **ID**: iso-27018-cloud-privacy-2019 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This standard establishes a code of practice for public cloud service providers acting as PII processors, providing specific controls and guidance to protect Personally Identifiable Information (PII).... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27018-cloud-privacy-2019.json #### ISO/IEC 27018 (PII Cloud) - **ID**: iso-27018-pii-cloud - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: ISO/IEC 27018 establishes a comprehensive code of practice for protecting Personally Identifiable Information (PII) within public cloud computing environments, acting as a guide for PII processors. Th... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27018-pii-cloud.json #### ISO/IEC 27031 (ICT Readiness) - **ID**: iso-27031-dr-readiness - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: ISO/IEC 27031:2011 (superseded by modern resilience standards but still foundational) provides the guidelines for Information and Communication Technology Readiness for Business Continuity (IRBC). it ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27031-dr-readiness.json #### ISO/IEC 15408: Information security, cybersecurity and privacy protection - Evaluation criteria for IT security - **ID**: iso-iec-15408-common-criteria-telecom-evaluation - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: ISO/IEC 15408, the Common Criteria, establishes a standardized framework for evaluating and certifying the security of IT products, including telecom equipment. It requires that a product's security f... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-15408-common-criteria-telecom-evaluation.json #### ISO/IEC 27017:2015 - Cloud-Specific Information Security Controls for Cloud Service Providers and Customers - **ID**: iso-iec-27017-cloud-security-controls-service-providers - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: ISO/IEC 27017 provides cloud-specific security control guidance extending ISO/IEC 27002 for cloud environments, addressing shared responsibilities between cloud service providers and customers, virtua... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-27017-cloud-security-controls-service-providers.json #### ITIL 4 Service Value System - Service Management Framework for IT Service Delivery, Value Creation and Continual Improvement - **ID**: itil-4-service-value-system - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: ITIL 4 provides a flexible framework for technology and digital service management, centered on the Service Value System (SVS) which describes how organizational components and activities work togethe... - **Discovery URL**: https://bidda.com/api/v1/nodes/itil-4-service-value-system.json #### Microsoft Azure Compliance Framework 2024 - Azure Policy, Microsoft Purview Compliance Manager, Regulatory Compliance Dashboard, Built-In Policies for NIST/ISO/SOC2, Customer Lockbox, Confidential Computing Enclaves and Sovereign Cloud (Azure Government/China) - **ID**: microsoft-azure-compliance-framework-2024 - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: This framework outlines Microsoft Azure's compliance posture for global regulatory standards, including built-in controls for NIST, ISO, SOC2, and sovereign cloud offerings. It applies to organization... - **Discovery URL**: https://bidda.com/api/v1/nodes/microsoft-azure-compliance-framework-2024.json #### NIST SP 800-190 (Containers) - **ID**: nist-800-190-container - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: Compliance with NIST SP 800-190 guidance for application container security necessitates a multi-layered control framework that addresses risks across the entire lifecycle. This node enforces critical... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-800-190-container.json #### NIST SP 800-204 (Microservices) - **ID**: nist-800-204-microservices - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: NIST SP 800-204 establishes stringent security strategies for microservice-based applications, mandating a defense-in-depth architecture. Compliance requires the deployment and configuration of an API... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-800-204-microservices.json #### NIST SP 800-61 (Incidents) - **ID**: nist-800-61-incident-resp - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: NIST SP 800-61 Rev 2 (Computer Security Incident Handling Guide) is the definitive U.S. standard for managing the lifecycle of the cyber incidents. it provides an operational framework for the establi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-800-61-incident-resp.json #### NIST SP 800-88 (Sanitization) - **ID**: nist-800-88-sanitization - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: NIST SP 800-88 Rev 1 (Guidelines for Media Sanitization) is the definitive U.S. standard for the secure destruction and the disposal of the information. it provides a systematic framework for the 'San... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-800-88-sanitization.json #### Implementation of DevSecOps for a Microservices-based Application with Service Mesh - **ID**: nist-devsecops-microservices-service-mesh - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: Cloud-native applications have evolved into a standardized architecture consisting of multiple loosely coupled components called microservices, often implemented as containers, supported by an infrast... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-devsecops-microservices-service-mesh.json #### NIST SP 800-144 - Guidelines on Security and Privacy in Public Cloud Computing - **ID**: nist-sp-800-144-public-cloud-security - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This publication provides guidelines for federal agencies to manage security and privacy risks when selecting and using public cloud computing services, focusing on the entire lifecycle from selection... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-144-public-cloud-security.json #### The NIST Definition of Cloud Computing - **ID**: nist-sp-800-145-cloud-computing - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and servi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-145-cloud-computing.json #### The NIST Definition of Cloud Computing (SP 800-145) - **ID**: nist-sp-800-145-cloud-definition - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This foundational U.S. federal standard establishes the official definition of cloud computing, mandating that any service classified as 'cloud' must exhibit five essential characteristics (e.g., on-d... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-145-cloud-definition.json #### Cloud Computing Synopsis and Recommendations - **ID**: nist-sp-800-146-cloud-recommendations - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This document reprises the NIST-established definition of cloud computing, describes cloud computing benefits and open issues, presents an overview of major classes of cloud technology, and provides g... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-146-cloud-recommendations.json #### Attribute-based Access Control for Microservices-based Applications Using a Service Mesh - **ID**: nist-sp-800-204b-abac - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This document provides deployment guidance for building an authentication and authorization framework within a service mesh for microservices-based applications. In modern cloud-native architectures f... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-204b-abac.json #### Attribute-based Access Control for Microservices-based Applications Using a Service Mesh - **ID**: nist-sp-800-204b-abac-microservices - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: With the disappearance of a network perimeter due to the need to provide ubiquitous access to applications from multiple remote locations using different types of devices, it is necessary to build the... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-204b-abac-microservices.json #### Implementation of DevSecOps for a Microservices-based Application with Service Mesh - **ID**: nist-sp-800-204c-devsecops-microservices - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: Cloud-native applications have evolved into a standardized architecture consisting of multiple loosely coupled components called microservices that are supported by an infrastructure for providing app... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-204c-devsecops-microservices.json #### Strategies for the Integration of Software Supply Chain Security in DevSecOps CI/CD pipelines - **ID**: nist-sp-800-204d-cicd-pipeline-security - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This NIST Special Publication provides actionable strategies to integrate software supply chain (SSC) security into DevSecOps CI/CD pipelines for cloud-native applications, focusing on source code int... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-204d-cicd-pipeline-security.json #### NIST SP 800-207A Zero Trust Architecture Multi-Cloud Environments - Implementation Guidance - **ID**: nist-sp-800-207a-zta-multi-cloud - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This guidance provides federal agencies and other organizations with a roadmap for implementing a Zero Trust Architecture (ZTA) across multi-cloud environments. It addresses key challenges such as inc... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-207a-zta-multi-cloud.json #### NIST Special Publication 800-210 General Access Control Guidance for Cloud Systems - **ID**: nist-sp-800-210-cloud-access - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This document presents cloud access control (AC) characteristics and a set of general access control guidance for cloud service models-IaaS (Infrastructure as a Service), PaaS (Platform as a Service),... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-210-cloud-access.json #### General Access Control Guidance for Cloud Systems - **ID**: nist-sp-800-210-cloud-access-control - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This document presents cloud access control (AC) characteristics and a set of general access control guidance for cloud service models: IaaS (Infrastructure as a Service), PaaS (Platform as a Service)... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-210-cloud-access-control.json #### NIST Cloud Computing Forensic Science Challenges - **ID**: nistir-8006-cloud-forensic-challenges - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This document summarizes research performed by the members of the NIST Cloud Computing Forensic Science Working Group and aggregates, categorizes, and discusses the forensics challenges faced by exper... - **Discovery URL**: https://bidda.com/api/v1/nodes/nistir-8006-cloud-forensic-challenges.json #### OpenAPI Specification 3.1 - API Governance for Workflow Automation: Paths, Operations, Parameters, Request Bodies, Responses and Security Schemes for Workflow APIs - **ID**: openapi-3-1-workflow-api-governance - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This regulation defines the structural and semantic requirements for describing HTTP APIs in a standard, language-agnostic format to enable automated discovery, interaction, and governance of workflow... - **Discovery URL**: https://bidda.com/api/v1/nodes/openapi-3-1-workflow-api-governance.json #### OpenAPI Specification 3.1.0 - REST API Documentation Standard: Paths, Components, Request/Response Schemas and OAuth/Security Scheme Definitions - **ID**: openapi-specification-3-1-0-rest-api-standard - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This standard defines a consistent, machine-readable format for describing RESTful APIs, requiring the use of specific schema structures for paths, operations, parameters, request/response bodies, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/openapi-specification-3-1-0-rest-api-standard.json #### OWASP ASVS L1 (App Sec) - **ID**: owasp-asvs-l1 - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: The OWASP Application Security Verification Standard (ASVS) Level 1 (Opportunistic) is the baseline requirement for all web applications. it focuses on the vulnerabilities that are the easy to the fin... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-l1.json #### OWASP ASVS L2 (Standard) - **ID**: owasp-asvs-l2 - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: Conformance with the OWASP ASVS L2 (Standard) establishes a requisite security posture for applications verified to handle sensitive data. This framework mandates a comprehensive, defense-in-depth str... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-l2.json #### OWASP ASVS L3 (Advanced) - **ID**: owasp-asvs-l3 - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: OWASP Application Security Verification Standard (ASVS) Level 3 establishes the highest assurance benchmark, designed for applications processing high-value transactions, containing sensitive data, or... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-l3.json #### OWASP SAMM (Governance) - **ID**: owasp-samm-governance - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: The OWASP Software Assurance Maturity Model (SAMM) v2.0 is the premier framework for the analyzing and the improving the software security posture. it provides a measurable way for the organizations t... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-governance.json #### PCI DSS v4.0 Cloud Shared Responsibility - Payment Card Industry Requirements for Cloud Workloads: Responsibility Matrix by Service Model (IaaS/PaaS/SaaS), Compensating Controls for Multi-Tenant Environments, Tokenisation, P2PE and Cloud Service Provider PCI Compliance Reports - **ID**: pci-dss-v4-cloud-shared-responsibility-matrix - **Category**: Cloud & SaaS - **Version**: 1.0.1 - **BLUF**: This regulation defines the shared responsibility model for PCI DSS compliance in cloud environments, specifying which security controls are the obligation of the cloud service provider versus the cus... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-cloud-shared-responsibility-matrix.json #### PCI DSS v4 Req 1 (NSC) - **ID**: pci-dss-v4-requirement-1 - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: PCI DSS v4 Requirement 1 (Install and Maintain Network Security Controls) mandates the use of the 'Network Security Controls' (NSCs) (historically Firewalls) to the protect the Cardholder Data Environ... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-requirement-1.json #### PCI DSS v4 Req 2 (Hardening) - **ID**: pci-dss-v4-requirement-2 - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: Requirement 2 mandates the application of secure configuration standards across all system components within the Cardholder Data Environment, explicitly prohibiting reliance on vendor-supplied default... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-requirement-2.json #### PCI DSS v4 Req 3 (Stored Data) - **ID**: pci-dss-v4-requirement-3 - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: PCI DSS v4 Requirement 3 (Protect Stored Account Data) focuses on the security of the cardholder information residing on the persistent storage. it mandates the prohibition of the 'Sensitive Authentic... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-requirement-3.json #### PCI DSS v4 Req 4 (Transmission) - **ID**: pci-dss-v4-requirement-4 - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: PCI DSS v4 Requirement 4 (Protect Cardholder Data with Strong Cryptography During Transmission) revolves around the security of the clear-text card data as it travels across the any 'Open, Public' net... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-requirement-4.json #### PCI DSS v4 Req 5 (Malware) - **ID**: pci-dss-v4-requirement-5 - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: PCI DSS v4 Requirement 5 (Protect All Systems and Networks from Malicious Software) mandates the implementation of the active malware protection across the all system components. it focuses on the con... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-requirement-5.json #### PCI DSS v4 Req 6 (Software) - **ID**: pci-dss-v4-requirement-6 - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: PCI DSS v4 Requirement 6 (Develop and Maintain Secure Systems and Software) specifies the requirements for the secure software development lifecycle (SDLC) and the vulnerability management. it mandate... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-requirement-6.json #### PCI DSS v4 Req 7 (Access Control) - **ID**: pci-dss-v4-requirement-7 - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: Payment Card Industry Data Security Standard v4 Requirement 7 mandates a stringent framework for restricting access to system components and cardholder data based on an explicit business need-to-know.... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-requirement-7.json #### PCI DSS v4 Req 8 (Identity) - **ID**: pci-dss-v4-requirement-8 - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: PCI DSS v4 Requirement 8 (Identify Users and Authenticate Access to System Components) specifies the authentication standards for the payment environments. it mandates the 'Unique ID' per individual a... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-requirement-8.json #### IEEE/ISO/IEC 14515-1-2000 -- Information Technology -- Portable Operating System Interface (POSIX) -- Test methods for measuring conformance to POSIX -- Part 1: System interfaces - **ID**: process-mining-pm4py-ieee-standard - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This standard defines the requirements for test methods used to verify conformance to POSIX.1 (ISO/IEC 9945-1:1990), specifying a POSIX.1-ordered list of assertions and associated test methods that mu... - **Discovery URL**: https://bidda.com/api/v1/nodes/process-mining-pm4py-ieee-standard.json #### Saudi Arabia CST/CITC Cloud Computing Regulatory Framework (CCRF) - **ID**: sa-cst-citc-cloud-computing-regulatory-framework-ccrf - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The Cloud Computing Regulatory Framework (CCRF) is Saudi Arabia's national cloud regulation administered by the Communications, Space and Technology Commission (CST, formerly the Communications and In... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-cst-citc-cloud-computing-regulatory-framework-ccrf.json #### Singapore IMDA Multi-Tier Cloud Security Standard (MTCS, SS 584:2020) - **ID**: sg-imda-mtcs-multi-tier-cloud-security-standard-ss-584 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The Multi-Tier Cloud Security Standard (MTCS, SS 584) is Singapore's national cloud security standard administered by the Infocomm Media Development Authority (IMDA) under the Singapore Standards Coun... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-imda-mtcs-multi-tier-cloud-security-standard-ss-584.json #### Shared Responsibility Model - **ID**: shared-responsibility-model - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: A clearly articulated Shared Responsibility Model delineates the distinct security and compliance obligations between the service provider and the customer, a principle established by foundational clo... - **Discovery URL**: https://bidda.com/api/v1/nodes/shared-responsibility-model.json #### Cloud Shared Responsibility Model - AWS, Azure and GCP Security Responsibility Boundaries for IaaS, PaaS and SaaS - **ID**: shared-responsibility-model-aws-azure-gcp - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The Shared Responsibility Model delineates security and compliance obligations between a cloud service provider (CSP) and its customers. The CSP (AWS, Azure, GCP) is responsible for the security 'of' ... - **Discovery URL**: https://bidda.com/api/v1/nodes/shared-responsibility-model-aws-azure-gcp.json #### Multi-Tier Cloud Security (MTCS) Certification - Tier 3 for High-Sensitivity Government Data - **ID**: singapore-mtcs-tier-3-cloud-security-standard - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This standard establishes mandatory security requirements for cloud service providers handling high-sensitivity government data in Singapore. Compliance with Tier 3 of the MTCS framework, as administe... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-mtcs-tier-3-cloud-security-standard.json #### Supply-chain Levels for Software Artifacts (SLSA) v1.0 - **ID**: slsa-supply-chain-security-levels - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The SLSA framework establishes four levels of software security assurance to protect against supply chain threats by requiring verifiable provenance for software artifacts. Compliance, as detailed in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/slsa-supply-chain-security-levels.json #### AICPA Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (2017 Edition, Updated for 2024 Applicability) - **ID**: soc-2-type-ii-trust-services-criteria-2024 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This standard defines the Trust Services Criteria (TSC) used in SOC 2 Type II audits to evaluate controls over security, availability, processing integrity, confidentiality, and privacy in service org... - **Discovery URL**: https://bidda.com/api/v1/nodes/soc-2-type-ii-trust-services-criteria-2024.json #### SOC 2 (Availability) - **ID**: soc2-availability-criteria - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: Compliance with governing availability principles is demonstrated through a comprehensive framework of controls and procedural enforcement. The entity maintains robust system performance monitoring ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/soc2-availability-criteria.json #### SOC 2 (Confidentiality) - **ID**: soc2-confidentiality-crit - **Category**: Cloud & SaaS - **Version**: 1.1.1 - **BLUF**: System and Organization Controls (SOC) 2 criteria for Confidentiality mandate the protection of information designated as confidential to meet organizational objectives. Compliance necessitates a comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/soc2-confidentiality-crit.json #### SOC 2 (Privacy Criteria) - **ID**: soc2-privacy-criteria - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: The SOC 2 Trust Services Criteria (TSC) for Privacy is the specialized audit framework for assessing how personal information is collected, used, retained, disclosed, and disposed of to meet the syste... - **Discovery URL**: https://bidda.com/api/v1/nodes/soc2-privacy-criteria.json #### SOC 2 (Processing Integrity) - **ID**: soc2-processing-integrity - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: Compliance with SOC 2 Processing Integrity criteria necessitates system processing that is complete, valid, accurate, timely, and authorized. This configuration enforces these principles through a com... - **Discovery URL**: https://bidda.com/api/v1/nodes/soc2-processing-integrity.json #### StateRAMP Authorization - **ID**: state-ramp-authorization - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: The cloud service offering's compliance posture demonstrates substantial progress toward full StateRAMP Authorization but currently fails to meet the final requirement for listing on the Authorized Pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/state-ramp-authorization.json #### TISAX (Automotive Cyber) - **ID**: tisaq-auto-cyber - **Category**: Cloud & SaaS - **Version**: 1.1.0 - **BLUF**: TISAX (Trusted Information Security Assessment Exchange) is the definitive maturity-based security standard for the global automotive industry. Based on the VDA Information Security Assessment (ISA), ... - **Discovery URL**: https://bidda.com/api/v1/nodes/tisaq-auto-cyber.json #### UK NCSC 14 Cloud Security Principles 2023 - Guidance for Cloud Consumers: Data in Transit Protection, Asset Protection, Separation Between Customers, Governance Framework, Operational Security, Personnel Security, Secure Development, Supply Chain Security and Identity/Authentication - **ID**: uk-ncsc-cloud-security-principles-2023 - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This guidance outlines 14 security principles that cloud service providers should meet to ensure secure delivery of cloud platforms and Software-as-a-Service. It applies to organisations evaluating cl... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ncsc-cloud-security-principles-2023.json #### 44 USC § 3551 - Federal Information Security Modernization Act (FISMA) Purposes - **ID**: us-44-usc-3551-fisma-purposes - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: 44 USC § 3551 (Federal Information Security Modernization Act of 2014, Pub. L. 113-283 - replacing the Federal Information Security Management Act of 2002) establishes the purposes of FISMA Subchapter... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-44-usc-3551-fisma-purposes.json #### 44 USC § 3614 - Federal Risk and Authorization Management Program (FedRAMP) - **ID**: us-44-usc-3614-fedramp-authorization-program - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: 44 USC § 3614 (enacted by the FedRAMP Authorization Act of 2022, Pub. L. 117-263 Title LIX) codifies the Federal Risk and Authorization Management Program (FedRAMP) as the government-wide standardized... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-44-usc-3614-fedramp-authorization-program.json #### US CLOUD Act 2018 - Government Access to Data Stored Overseas and Provider Obligations - **ID**: us-cloud-act-2018-clarifying-lawful-overseas-use-of-data - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The Clarifying Lawful Overseas Use of Data (CLOUD) Act (18 U.S.C. § 2713) requires US providers to disclose customer data in response to lawful US law enforcement process regardless of where the data ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cloud-act-2018-clarifying-lawful-overseas-use-of-data.json #### US FedRAMP Authorization Framework 2023 - Federal Risk and Authorization Management Program for Cloud - **ID**: us-fedramp-authorization-framework - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: The Federal Risk and Authorization Management Program (FedRAMP) is a U.S. government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fedramp-authorization-framework.json #### US FedRAMP - Federal Risk and Authorization Management Program Cloud Security Authorization - **ID**: us-fedramp-federal-risk-authorization-management-program-cloud - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: FedRAMP establishes standardized security requirements for cloud services used by US federal agencies, requiring cloud service providers to obtain agency sponsorship, complete security assessment agai... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fedramp-federal-risk-authorization-management-program-cloud.json #### US FedRAMP - NIST SP 800-37 Cloud Service Authorization for Federal Use - **ID**: us-fedramp-nist-sp-800-37-cloud-authorization - **Category**: Cloud & SaaS - **Version**: 2.0.0 - **BLUF**: The Federal Risk and Authorization Management Program (FedRAMP) provides a standardised approach for federal agencies to assess, authorise, and monitor cloud services using NIST SP 800-37 Risk Managem... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fedramp-nist-sp-800-37-cloud-authorization.json #### W3C JSON-LD 1.1 - Linked Data Format for Machine-Readable Compliance Workflows: Context Definitions, Compact IRIs and Graph Serialisation - **ID**: w3c-json-ld-1-1-linked-data-workflow-standard - **Category**: Cloud & SaaS - **Version**: 1.0.0 - **BLUF**: This standard defines a JSON-based serialization format for Linked Data, enabling interoperable data exchange in machine-readable compliance workflows. It requires the use of context definitions ("@co... - **Discovery URL**: https://bidda.com/api/v1/nodes/w3c-json-ld-1-1-linked-data-workflow-standard.json ### Competition & Antitrust (130 nodes) #### Competition and Consumer Act 2010 - **ID**: au-competition-consumer-act-2010-part-iv-anti-competitive - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This legislation prohibits anti-competitive practices including cartel conduct, misuse of market power, anti-competitive mergers, and other arrangements that substantially lessen competition in the Au... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-competition-consumer-act-2010-part-iv-anti-competitive.json #### AU Competition and Consumer Act 2010 - Section 46 Misuse of Market Power and Concerted Practices - **ID**: au-competition-consumer-act-2010-section-46-misuse-market-power - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Section 46 of Australia's Competition and Consumer Act 2010 (as amended by the Competition and Consumer Amendment Act 2017) prohibits corporations with substantial market power from engaging in conduc... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-competition-consumer-act-2010-section-46-misuse-market-power.json #### Australia ACCC Informal Merger Review Guidelines 2023 - Market Concentration, Entry Barriers, Counterfactual Analysis and Coordinated Effects Assessment - **ID**: australia-accc-merger-review-guidelines-2023 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: These guidelines outline the Australian Competition and Consumer Commission’s (ACCC) informal process for assessing proposed mergers under the Competition and Consumer Act 2010 (Cth), focusing on whet... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-accc-merger-review-guidelines-2023.json #### Australia Competition and Consumer Act 2010 - ACCC Part IV Cartel Conduct & Merger Control - **ID**: australia-competition-consumer-act-2010-accc-part-iv - **Category**: Competition & Antitrust - **Version**: 2.0 - **BLUF**: Australia's Competition and Consumer Act 2010 Part IV criminalises cartel conduct (price-fixing, bid-rigging) and requires ACCC merger review for acquisitions that would substantially lessen competiti... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-competition-consumer-act-2010-accc-part-iv.json #### Competition and Consumer Act 2010 - Part IV Competition Provisions: Cartel Conduct, Misuse of Market Power, Mergers, Exclusive Dealing and ACCC Authorisation and Notification - **ID**: australia-competition-consumer-act-2010-cca - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: This regulation prohibits anti-competitive conduct including cartels, misuse of market power, and exclusive dealing arrangements that substantially lessen competition. It applies to corporations and i... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-competition-consumer-act-2010-cca.json #### Competition and Consumer Act 2010 (Cth) Part IV - Provisions Relating to Cartels, Misuse of Market Power, Exclusive Dealing, Resale Price Maintenance and Mergers - **ID**: australia-competition-consumer-act-2010-part-iv - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: Prohibits anti-competitive conduct including cartel conduct (Section 45AA), misuse of substantial market power (Section 46), exclusive dealing (Section 47), and resale price maintenance (Section 48). ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-competition-consumer-act-2010-part-iv.json #### Brazil Competition Defense Law 2011 (Lei No. 12,529 of 30 November 2011 - Lei de Defesa da Concorrência) - **ID**: br-cade-competition-act-2011 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Lei de Defesa da Concorrência (Competition Defense Law - Law No. 12,529 of 30 November 2011) is Brazil's principal antitrust statute, which restructured Brazil's competition law framework and esta... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-cade-competition-act-2011.json #### Lei n° 12.529, de 30 de Novembro de 2011 - Estrutura o Sistema Brasileiro de Defesa da Concorrência; dispõe sobre a prevenção e repressão às infrações contra a ordem econômica - **ID**: brazil-competition-law-12529-2011-cade - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: This law establishes the Brazilian Competition Defense System (SBDC), defining the structure and powers of the Administrative Council for Economic Defense (CADE), and governs the prevention and repres... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-competition-law-12529-2011-cade.json #### Canada Competition Act 1985 (R.S.C. 1985, c. C-34) - Antitrust and Consumer Protection - **ID**: ca-competition-act-1985 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The Canada Competition Act (R.S.C. 1985, c. C-34) promotes and maintains competitive markets in Canada, prohibits anti-competitive practices, and protects consumers from misleading conduct, administer... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-competition-act-1985.json #### Canada Competition Act - Abuse of Dominance in Digital Markets (Sections 78-79) - **ID**: ca-competition-act-abuse-dominance-digital-markets-section-78 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Sections 78-79 of the Canada Competition Act (R.S.C. 1985, c. C-34) prohibit abuse of dominant position by one or more persons substantially or completely controlling a market. The Competition Bureau ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-competition-act-abuse-dominance-digital-markets-section-78.json #### Competition Act (R.S.C., 1985, c. C-34) - Section 78: Definition of anti-competitive act - **ID**: ca-competition-act-section-78-abuse-dominant-position - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Organizations must refrain from engaging in any act intended to have a predatory, exclusionary, or disciplinary negative effect on a competitor, or to adversely affect competition, as defined within t... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-competition-act-section-78-abuse-dominant-position.json #### Competition Act, R.S.C. 1985, c. C-34 - Abuse of Dominance Provisions as Amended by Bill C-56, 2024 - **ID**: canada-competition-act-2024-amendment-abuse-dominance - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: Prohibits dominant firms from engaging in anti-competitive acts that prevent or lessen competition substantially in a market, with administrative monetary penalties of up to $35 million per violation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-competition-act-2024-amendment-abuse-dominance.json #### Switzerland Cartel Act 1995 (KG/LCart) - SR 251 Competition Law - **ID**: ch-kartellgesetz-wettbewerbsrecht-1995 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The Swiss Cartel Act (Kartellgesetz, KG; SR 251) prohibits anti-competitive agreements, abuse of dominant market positions, and regulates mergers that significantly impede effective competition in Swi... - **Discovery URL**: https://bidda.com/api/v1/nodes/ch-kartellgesetz-wettbewerbsrecht-1995.json #### Germany Act against Restraints of Competition (Gesetz gegen Wettbewerbsbeschränkungen, GWB, as amended by 11th Amendment 2023) - **ID**: de-gwb-competition-act - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The Act against Restraints of Competition (Gesetz gegen Wettbewerbsbeschränkungen, GWB) is Germany's principal competition law statute, originally enacted in 1957 and substantially modernised through ... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-gwb-competition-act.json #### Regulation (EU) 2022/1925 of the European Parliament and of the Council - Article 10: Exemption for grounds of public health and public security - **ID**: dma-regulation-article-10-notification-and-designation-procedure - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article establishes a procedure for gatekeepers to request, or for the Commission to grant on its own initiative, a temporary exemption from specific obligations on the grounds of public health o... - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-10-notification-and-designation-procedure.json #### Regulation (EU) 2022/1925 of the European Parliament and of the Council - Article 13: Anti-circumvention - **ID**: dma-regulation-article-13-obligations-potential-gatekeepers - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article requires gatekeepers to prevent circumvention of their obligations under Articles 5, 6, and 7, prohibiting practices like service fragmentation, undermining compliance through design, or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-13-obligations-potential-gatekeepers.json #### Regulation (EU) 2022/1925 - Digital Markets Act - Article 14: Obligation to inform about concentrations - **ID**: dma-regulation-article-14-market-investigations - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Gatekeepers must inform the European Commission of any intended concentration where the involved entities provide core platform services or other digital sector services, regardless of standard notifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-14-market-investigations.json #### Regulation (EU) 2022/1925 of the European Parliament and of the Council - Article 17: Market investigation for designating gatekeepers - **ID**: dma-regulation-article-17-non-compliance-decisions - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article outlines the process, timelines, and procedures for the Commission to conduct a market investigation to determine if an undertaking should be designated as a gatekeeper. - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-17-non-compliance-decisions.json #### Regulation (EU) 2022/1925 (Digital Markets Act) - Article 2: Definitions - **ID**: dma-regulation-article-2-definitions - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article defines the term 'gatekeeper' and clarifies the regulation's scope in relation to other EU directives, national competition laws, and the powers of Member States and national authorities. - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-2-definitions.json #### REGULATION (EU) 2022/1925 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019/1937 and (EU) 2020/1828 (Digital Markets Act) - Article 22: Interim measures - **ID**: dma-regulation-article-22-interim-measures - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article empowers the Commission to order interim measures against a gatekeeper in urgent cases to prevent serious and irreparable damage to users, and outlines the procedural requirements for suc... - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-22-interim-measures.json #### REGULATION (EU) 2022/1925 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019/1937 and (EU) 2020/1828 (Digital Markets Act) - Article 26 - **ID**: dma-regulation-article-26-access-to-data-evidence - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article empowers the Commission to request information and access to data, algorithms, and premises from undertakings to verify compliance with the regulation. - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-26-access-to-data-evidence.json #### REGULATION (EU) 2022/1925 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019/1937 and (EU) 2020/1828 (Digital Markets Act) - Article 28 - **ID**: dma-regulation-article-28-compliance-officer-function - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The provided regulatory text does not contain Article 28, so the specific obligations for the compliance officer function could not be extracted and are represented as processing failures. - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-28-compliance-officer-function.json #### Regulation (EU) 2022/1925 on contestable and fair markets in the digital sector (Digital Markets Act) - Article 3 - **ID**: dma-regulation-article-3-designation-as-gatekeeper - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Organizations must determine if their services qualify as 'core platform services' by assessing them against the specific definitions provided for services such as online search engines, social networ... - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-3-designation-as-gatekeeper.json #### REGULATION (EU) 2022/1925 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019/1937 and (EU) 2020/1828 (Digital Markets Act) - Article 30 - **ID**: dma-regulation-article-30-fines - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This regulation addresses unfair practices and weak contestability of core platform services provided by large undertakings designated as gatekeepers to ensure fair economic outcomes in the digital se... - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-30-fines.json #### REGULATION (EU) 2022/1925 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019/1937 and (EU) 2020/1828 (Digital Markets Act) - Article 33 - **ID**: dma-regulation-article-33-periodic-penalty-payments - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article's core compliance obligation concerning the imposition and calculation of periodic penalty payments for non-compliance cannot be extracted as the provided regulatory text does not contain... - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-33-periodic-penalty-payments.json #### REGULATION (EU) 2022/1925 on contestable and fair markets in the digital sector (Digital Markets Act) - Article 35: Remedies for failure to comply with certain obligations for gatekeepers - **ID**: dma-regulation-article-35-remedies-effective-competition - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article outlines the European Commission's authority to impose behavioural or structural remedies on a gatekeeper for non-compliance with specific obligations, detailing the conditions and proced... - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-35-remedies-effective-competition.json #### REGULATION (EU) 2022/1925 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 14 September 2022 on contestable and fair markets in the digital sector (Digital Markets Act) - Article 38 - **ID**: dma-regulation-article-38-cooperation-member-state-authorities - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article mandates the Commission and national competent authorities to cooperate closely and exchange information for the purpose of applying this Regulation effectively. - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-38-cooperation-member-state-authorities.json #### Regulation (EU) 2022/1925 on contestable and fair markets in the digital sector (Digital Markets Act) - Article 5: Obligations for gatekeepers - **ID**: dma-regulation-article-5-obligations-gatekeepers-article5 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article prohibits gatekeepers from processing, combining, or cross-using end-user personal data across different services without obtaining explicit, GDPR-compliant user consent, and limits re-re... - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-5-obligations-gatekeepers-article5.json #### Regulation (EU) 2022/1925 on contestable and fair markets in the digital sector (Digital Markets Act) - Article 6: Obligations for gatekeepers susceptible of being further specified under Article 8 - **ID**: dma-regulation-article-6-obligations-gatekeepers-article6 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article requires designated gatekeepers to comply with a specific set of obligations for each of their core platform services as listed in their designation decision. - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-6-obligations-gatekeepers-article6.json #### REGULATION (EU) 2022/1925 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019/1937 and (EU) 2020/1828 (Digital Markets Act) - Article 7 - **ID**: dma-regulation-article-7-updateable-gatekeeper-obligations - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article mandates that designated gatekeepers must provide business users with access to data they generate, ensure interoperability with third-party services, and maintain transparency in adverti... - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-7-updateable-gatekeeper-obligations.json #### REGULATION (EU) 2022/1925 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019/1937 and (EU) 2020/1828 (Digital Markets Act) - Article 8 - **ID**: dma-regulation-article-8-suspension-exemption-gatekeeper - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article establishes the procedure for a gatekeeper to request a temporary suspension of specific obligations where its economic viability is threatened by exceptional circumstances, or an exempti... - **Discovery URL**: https://bidda.com/api/v1/nodes/dma-regulation-article-8-suspension-exemption-gatekeeper.json #### EU Commission Best Practice on Antitrust Compliance Programmes - Commitment of Senior Management, Risk Assessment, Training, Communication, Monitoring and Reporting for Competition Compliance - **ID**: eu-antitrust-compliance-programme-best-practice - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This regulation outlines best practices for EU antitrust compliance programmes, emphasizing senior management commitment, risk assessment, training, and reporting mechanisms to prevent violations of A... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-antitrust-compliance-programme-best-practice.json #### EU Chips Act 2023/1781 - Semiconductor Supply Chain Resilience & Crisis Response - **ID**: eu-chips-act-2023-1781 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2023/1781 (European Chips Act) establishes a framework to strengthen Europe's semiconductor ecosystem, targeting 20% global chip production share by 2030 (from ~8% in 2022) through EUR... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-2023-1781.json #### EU Commission Regulation 773/2004 - Antitrust Enforcement Procedures - **ID**: eu-commission-regulation-773-2004-antitrust-procedures - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EC) No 773/2004 sets out the procedural rules governing how the European Commission conducts antitrust enforcement proceedings under Articles 101 and 102 TFEU. It governs the ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-commission-regulation-773-2004-antitrust-procedures.json #### EU Article 102 TFEU - Abuse of Dominant Position in Digital Markets - **ID**: eu-competition-article-102-tfeu-abuse-dominant-position-digital - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Article 102 TFEU prohibits undertakings holding a dominant position in the EU from abusing that position to restrict competition. The European Commission has applied Art. 102 to digital platform marke... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-competition-article-102-tfeu-abuse-dominant-position-digital.json #### Council Regulation (EC) No 1/2003 on the Implementation of the Rules on Competition (Articles 101 and 102 TFEU): NCA Powers, Commission Investigation Authority, 10% Worldwide Turnover Fines, European Competition Network, and Burden of Proof for Exemption Claims - **ID**: eu-competition-regulation-1-2003 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: Council Regulation (EC) No 1/2003 (OJ L 1, 4.1.2003, p. 1), effective 1 May 2004, is the cornerstone of EU competition enforcement, replacing Regulation 17/62; it decentralises enforcement of Articles... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-competition-regulation-1-2003.json #### Directive 2014/104/EU of the European Parliament and of the Council of 26 November 2014 on certain rules governing actions for damages under national law for infringements of the competition law provisions of the Member States and of the European Union - **ID**: eu-damages-directive-2014-104-private-enforcement - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This Directive establishes a harmonized framework across EU Member States for private enforcement of competition law, requiring national courts to ensure full compensation for harm caused by infringem... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-damages-directive-2014-104-private-enforcement.json #### Regulation (EU) 2023/2854 of the European Parliament and of the Council of 14 December 2023 on harmonised rules on fair access to and use of data and amending Regulation (EU) 2017/2394 and Directive (EU) 2019/771 (Data Act) - **ID**: eu-data-act-2023-competition-data-access - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The EU Data Act 2023 establishes mandatory data-sharing obligations for manufacturers and service providers of IoT-connected products and related services, requiring them to provide users and third pa... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-competition-data-access.json #### Regulation (EU) 2022/1925 on Contestable and Fair Markets in the Digital Sector (Digital Markets Act) - **ID**: eu-digital-markets-act-2022-1925-gatekeeper-obligations - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Digital Markets Act imposes specific obligations on designated 'gatekeepers' - large digital platforms with entrenched and durable market power - to ensure fair and contestable markets in the digi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-markets-act-2022-1925-gatekeeper-obligations.json #### Regulation (EU) 2022/1925 on Contestable and Fair Markets in the Digital Sector (Digital Markets Act) - **ID**: eu-digital-markets-act-gatekeeper-obligations - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The EU Digital Markets Act (DMA) imposes specific obligations and prohibitions on designated 'gatekeepers' - large digital platforms with entrenched and durable market power - to ensure fair and conte... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-markets-act-gatekeeper-obligations.json #### Regulation (EU) 2022/1925 on contestable and fair markets in the digital sector (Digital Markets Act) - Article 5: Obligations for gatekeepers - **ID**: eu-dma-article-5-obligations-gatekeepers-core-platform - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: A designated gatekeeper must comply with all obligations outlined in Article 5 for each of its core platform services identified in its designation decision. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dma-article-5-obligations-gatekeepers-core-platform.json #### Regulation (EU) 2022/1925 (Digital Markets Act) Article 6: Obligations for gatekeepers susceptible of being further specified under Article 8 - **ID**: eu-dma-article-6-obligations-gatekeepers-susceptible-specification - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Gatekeepers must comply with all obligations specified in Article 6 for each of their core platform services that are listed in the designation decision under Article 3(9). - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dma-article-6-obligations-gatekeepers-susceptible-specification.json #### Regulation (EU) 2022/1925 on contestable and fair markets in the digital sector (Digital Markets Act) - Article 8: Compliance with obligations for gatekeepers - **ID**: eu-dma-article-8-compliance-enforcement-gatekeepers - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Gatekeepers must ensure, demonstrate, and implement effective measures to comply with the obligations in Articles 5, 6, and 7, while also ensuring these measures adhere to other applicable laws like G... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dma-article-8-compliance-enforcement-gatekeepers.json #### Council Regulation (EC) No 139/2004 - Article 2: Appraisal of concentrations - **ID**: eu-ec-merger-regulation-139-2004-article-2-concentrations-appraisal - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Organizations must appraise concentrations falling within the scope of this Regulation to establish their compatibility with the common market, in accordance with the Regulation's objectives and provi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ec-merger-regulation-139-2004-article-2-concentrations-appraisal.json #### EU ECN+ Directive 2019/1 - Empowering National Competition Authorities - **ID**: eu-ecn-plus-directive-2019-nca-powers - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2019/1 (ECN+ Directive) requires EU Member States to equip their national competition authorities (NCAs) with the independence, resources, and enforcement tools necessary to apply Artic... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecn-plus-directive-2019-nca-powers.json #### Directive (EU) 2018/1972 establishing the European Electronic Communications Code - **ID**: eu-electronic-communications-code-2018-competition - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The European Electronic Communications Code (EECC) establishes a harmonized regulatory framework across EU member states for electronic communications markets, requiring national regulatory authoritie... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electronic-communications-code-2018-competition.json #### Regulation (EU) 2019/452 - EU FDI Screening Framework: Critical Infrastructure and Technology Protection, Member State Cooperation Mechanism, Security and Public Order Grounds, and Mandatory Screening Requirements Under Revised 2024 Regulation - **ID**: eu-fdi-screening-regulation-2019-452 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2019/452 (EU FDI Screening Regulation), applicable from 11 October 2020, establishes the first EU-wide framework for Member States to screen foreign direct investments (FDI) on grounds... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-fdi-screening-regulation-2019-452.json #### Regulation (EU) 2022/2560 of the European Parliament and of the Council of 14 December 2022 on foreign subsidies distorting the internal market in the context of concentrations and public procurement - **ID**: eu-foreign-subsidies-regulation-2022-2560-competition - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The EU Foreign Subsidies Regulation (FSR) requires undertakings receiving foreign financial contributions exceeding €4 million over three years from non-EU governments to notify the European Commissio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-foreign-subsidies-regulation-2022-2560-competition.json #### Commission Regulation (EU) 2023/1315 of 18 July 2023 on the application of Articles 107 and 108 of the Treaty on the Functioning of the European Union to certain categories of horizontal cooperation agreements - **ID**: eu-general-block-exemption-regulation-gber-2023 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This regulation establishes a block exemption for certain categories of horizontal cooperation agreements between undertakings that meet specific conditions, ensuring they do not violate Article 101(1... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-block-exemption-regulation-gber-2023.json #### Regulation (EU) 2018/302 of the European Parliament and of the Council of 28 February 2018 on addressing unjustified geo-blocking and other forms of discrimination based on customers’ nationality, place of residence or place of establishment within the internal market - **ID**: eu-geo-blocking-regulation-2018-302-competition - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Prohibits unjustified geo-blocking and other forms of discrimination based on customers’ nationality, place of residence, or place of establishment when selling goods or providing services within the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-geo-blocking-regulation-2018-302-competition.json #### Council Regulation (EC) No 139/2004 on the control of concentrations between undertakings - **ID**: eu-merger-regulation-139-2004 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: This regulation establishes the EU-wide merger control regime requiring mandatory pre-notification of concentrations that meet specified turnover thresholds under Article 4. The European Commission as... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-merger-regulation-139-2004.json #### EU Merger Regulation 139/2004/EC - European Commission Competition Review - **ID**: eu-merger-regulation-139-2004-ec-european-commission - **Category**: Competition & Antitrust - **Version**: 2.0.0 - **BLUF**: Council Regulation (EC) No 139/2004 (EU Merger Regulation, EUMR) requires mandatory pre-merger notification to the European Commission for concentrations with EU dimension (combined worldwide turnover... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-merger-regulation-139-2004-ec-european-commission.json #### Council Regulation (EC) No 139/2004 on the control of concentrations between undertakings - **ID**: eu-merger-regulation-139-2004-ec-thresholds - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: This regulation establishes the EU-wide merger control regime requiring mandatory pre-notification to the European Commission for concentrations exceeding specified turnover thresholds under Article 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-merger-regulation-139-2004-ec-thresholds.json #### EU Merger Regulation 139/2004 - Notification Thresholds, Phase I/II Procedure, and Remedies - **ID**: eu-merger-regulation-139-2004-filing-thresholds-procedure - **Category**: Competition & Antitrust - **Version**: 2.0.0 - **BLUF**: EU Council Regulation 139/2004 (ECMR) establishes the one-stop-shop EU merger control regime: concentrations with EU dimension must be notified to the European Commission before completion. EU dimensi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-merger-regulation-139-2004-filing-thresholds-procedure.json #### Commission Regulation (EU) 2023/822 of 21 March 2023 on the application of Article 101(3) of the Treaty on the Functioning of the European Union to categories of vertical agreements and concerted practices in the motor vehicle sector - **ID**: eu-motor-vehicle-block-exemption-regulation-2023 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: This regulation establishes a block exemption for vertical agreements in the motor vehicle aftermarket, ensuring independent repairers and spare parts manufacturers have fair access to technical infor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-motor-vehicle-block-exemption-regulation-2023.json #### Commission Regulation (EU) 2023/1080 of 21 May 2023 on the Application of Article 101(3) of the Treaty on the Functioning of the European Union to Certain Categories of Vertical Agreements and Concerted Practices in the Motor Vehicle Sector - **ID**: eu-motor-vehicle-block-exemption-regulation-2023-1080 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This regulation establishes a block exemption for vertical agreements in the motor vehicle sector, including selective distribution and repair & maintenance networks, provided they do not contain hard... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-motor-vehicle-block-exemption-regulation-2023-1080.json #### EU Platform-to-Business (P2B) Regulation 2019/1150 - Terms, Ranking, and Mediation Obligations for Online Intermediation Services - **ID**: eu-p2b-platform-to-business-regulation-2019-1150-transparency - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2019/1150 requires online intermediation services (app stores, marketplaces, price comparison sites, social media with commercial functions) and online search engines to provide busine... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-p2b-platform-to-business-regulation-2019-1150-transparency.json #### Regulation (EU) 2019/1150 on promoting fairness and transparency for business users of online intermediation services and online search engines - **ID**: eu-platform-to-business-regulation-2019-1150-p2b - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The EU P2B Regulation 2019/1150 requires online platforms and search engines to provide clear, transparent, and non-discriminatory terms to business users, including disclosure of ranking parameters (... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-platform-to-business-regulation-2019-1150-p2b.json #### Treaty on the Functioning of the European Union - Articles 107 and 108: Prohibition of State Aid and Procedural Obligations for Notification and Commission Review - **ID**: eu-state-aid-articles-107-108-tfeu-framework - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: Articles 107-108 of the Treaty on the Functioning of the European Union (TFEU) prohibit member states from granting selective state aid that distorts competition and affects trade between EU countries... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-state-aid-articles-107-108-tfeu-framework.json #### Treaty on the Functioning of the European Union - Article 107: Prohibition of State Aid - **ID**: eu-state-aid-rules-article-107-tfeu - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: Article 107 of the Treaty on the Functioning of the European Union (TFEU) prohibits state aid granted by EU Member States that distorts or threatens to distort competition by favoring certain undertak... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-state-aid-rules-article-107-tfeu.json #### Commission Regulation (EU) No 316/2014 on the application of Article 101(3) of the Treaty on the Functioning of the European Union to categories of technology transfer agreements - Article 3 - **ID**: eu-technology-transfer-block-exemption-2014-316-article-3-safe-harbour - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: For competing undertakings, a technology transfer agreement exemption applies only if their combined market share on the relevant market(s) does not exceed 20%. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-technology-transfer-block-exemption-2014-316-article-3-safe-harbour.json #### Commission Regulation (EU) 2022/316 of 15 February 2022 on the Application of Article 101(3) of the Treaty on the Functioning of the European Union to Categories of Technology Transfer Agreements - **ID**: eu-technology-transfer-block-exemption-2022-316 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This regulation establishes a safe harbor for technology transfer agreements between competing and non-competing undertakings under EU competition law, provided that the combined market share of the p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-technology-transfer-block-exemption-2022-316.json #### Treaty on the Functioning of the European Union - Article 101: Prohibition of Anti-Competitive Agreements, Decisions and Concerted Practices - **ID**: eu-tfeu-article-101-cartels-prohibition - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Article 101 of the Treaty on the Functioning of the European Union (TFEU) prohibits agreements between undertakings, decisions by associations of undertakings, and concerted practices that prevent, re... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-tfeu-article-101-cartels-prohibition.json #### Treaty on the Functioning of the European Union - Article 102: Abuse of Dominant Position - **ID**: eu-tfeu-article-102-abuse-dominance - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: Prohibits undertakings in a dominant position within the EU internal market from abusing that position through exploitative or exclusionary practices that distort competition, as defined under Article... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-tfeu-article-102-abuse-dominance.json #### Commission Regulation (EU) 2022/720 on the application of Article 101(3) of the Treaty on the Functioning of the European Union to categories of vertical agreements and concerted practices - Article 2: Exemption - **ID**: eu-vber-2022-330-vertical-agreements-block-exemption - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This article establishes a block exemption declaring that the prohibition on anti-competitive agreements under Article 101(1) of the TFEU does not apply to vertical agreements, provided they contain v... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-vber-2022-330-vertical-agreements-block-exemption.json #### Commission Regulation (EU) 2022/720 of 31 March 2022 on the application of Article 101(3) of the Treaty on the Functioning of the European Union to categories of vertical agreements and concerted practices - **ID**: eu-vertical-block-exemption-regulation-2022 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This regulation establishes a safe harbour for vertical agreements between suppliers and distributors where the combined market share of the parties does not exceed 30% in the relevant market, provide... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-vertical-block-exemption-regulation-2022.json #### Commission Regulation (EU) 2022/720 of 8 April 2022 on the Application of Article 101(3) of the Treaty on the Functioning of the European Union to Categories of Vertical Agreements and Concerted Practices - **ID**: eu-vertical-block-exemption-regulation-2022-720-vaber - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This regulation establishes a safe harbour for vertical agreements between non-competing undertakings if their combined market share does not exceed 30% at both the supplier and buyer level, under Art... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-vertical-block-exemption-regulation-2022-720-vaber.json #### Hong Kong Competition Ordinance (Cap 619) - **ID**: hk-competition-ordinance-cap-619 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Competition Ordinance (Cap 619, Ordinance No. 14 of 2012) is Hong Kong's first cross-sector competition statute. The substantive Conduct Rules came into force on 14 December 2015 (the Competition ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-competition-ordinance-cap-619.json #### Hungary Act LVII of 1996 on the Prohibition of Unfair and Restrictive Market Practices (Versenytörvény, Tpvt.) - **ID**: hu-act-lvii-1996-competition-act - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Act LVII of 1996 on the Prohibition of Unfair and Restrictive Market Practices (Versenytörvény, Tpvt.) is Hungary's principal competition law statute, in force from 1 January 1997 and amended to align... - **Discovery URL**: https://bidda.com/api/v1/nodes/hu-act-lvii-1996-competition-act.json #### ICN Merger Working Group - Recommended Practices for Merger Notification and Review: Notification Triggers, Timing, Substantive Test, Remedies and Coordination Between Jurisdictions - **ID**: icn-merger-guidelines-framework - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: This framework outlines recommended practices for merger notification and review procedures to enhance effectiveness, promote procedural convergence, and reduce costs in multijurisdictional reviews. I... - **Discovery URL**: https://bidda.com/api/v1/nodes/icn-merger-guidelines-framework.json #### ICN Recommended Practices for Merger Notification and Review 2023 - Jurisdictional Triggers, Pre-Notification Contacts and Procedure Convergence - **ID**: icn-recommended-practices-merger-notification-2023 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: This guidance establishes best practices for merger notification and review processes across jurisdictions, focusing on jurisdictional thresholds, pre-notification consultations, procedural transparen... - **Discovery URL**: https://bidda.com/api/v1/nodes/icn-recommended-practices-merger-notification-2023.json #### Ireland Competition Act 2002 (No. 14 of 2002, as amended by Competition (Amendment) Acts 2012 and 2022) - **ID**: ie-competition-act-2002 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Competition Act 2002 (No. 14 of 2002) is Ireland's principal competition statute. The Act was in force from 1 July 2002 (commencement order SI 199/2002) and has been materially amended by the Comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/ie-competition-act-2002.json #### India Competition Act 2002 (Act No. 12 of 2003, as amended by Competition Amendment Act 2023) - **ID**: in-competition-act-2002 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The Competition Act 2002 (Act No. 12 of 2003) is India's principal competition law statute, receiving Presidential assent on 13 January 2003 and administered by the Competition Commission of India (CC... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-competition-act-2002.json #### The Competition (Amendment) Act, 2023 - Amendments to The Competition Act, 2002 relating to Deal Value Threshold, Gun-Jumping, Leniency, Settlement, Commitment, and Market Study Powers - **ID**: india-competition-act-2002-amendment-2023 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The Competition (Amendment) Act, 2023 introduces a deal value threshold for merger control, strengthens enforcement against gun-jumping, enhances the leniency programme for cartel members, and establi... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-competition-act-2002-amendment-2023.json #### The Competition Act, 2002 - Section 3: Anti-Competitive Agreements and Section 4: Abuse of Dominant Position - **ID**: india-competition-act-2002-sections-3-4 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Prohibits anti-competitive agreements under Section 3 and abuse of dominant position under Section 4 of the Competition Act, 2002. Applies to enterprises, associations of enterprises, and persons enga... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-competition-act-2002-sections-3-4.json #### Competition (Amendment) Act, 2023 - Deal Value Threshold, Settlement Mechanism, Commitment Process and Leniency Programme Enhancement - **ID**: india-competition-amendment-act-2023-hsrc-threshold - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The Competition (Amendment) Act, 2023 introduces a deal value threshold for merger control requiring notification to the Competition Commission of India (CCI) when the transaction value exceeds INR 2,... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-competition-amendment-act-2023-hsrc-threshold.json #### Italy Legge 287/1990 - Norme per la tutela della concorrenza e del mercato (Italian Antitrust Law) - **ID**: it-legge-287-1990-antitrust - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Legge 10 ottobre 1990 n. 287 (Norme per la tutela della concorrenza e del mercato) is Italy's principal national antitrust statute. The Law is structured in four Titoli: Titolo I covers restrictive ag... - **Discovery URL**: https://bidda.com/api/v1/nodes/it-legge-287-1990-antitrust.json #### Act on Prohibition of Private Monopolization and Maintenance of Fair Trade (Amended by Act No. 54 of 2019) - Surcharge Calculation, Leniency and Japan Fair Trade Commission Procedures - **ID**: japan-antimonopoly-act-2019-amendment-jftc - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The 2019 amendment to Japan’s Antimonopoly Act (AMA) strengthens the Japan Fair Trade Commission’s (JFTC) authority to calculate surcharges for anticompetitive conduct, enhances leniency program trans... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-antimonopoly-act-2019-amendment-jftc.json #### Japan Act on Prohibition of Private Monopolization and Maintenance of Fair Trade 1947 (Antimonopoly Act, Act No. 54) - **ID**: jp-antimonopoly-act-1947 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The Act on Prohibition of Private Monopolization and Maintenance of Fair Trade 1947 (Dokusen Kinshi-hō, Act No. 54 of 1947, commonly referred to as the Antimonopoly Act or AMA) is Japan's principal co... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-antimonopoly-act-1947.json #### Monopoly Regulation and Fair Trade Act, Act No. 17386, as Amended by Act No. 17386 on December 4, 2020 - Partial Amendment Relating to Fair Competition in the Digital Market and Strengthening of Remedies for Unfair Practices - **ID**: korea-fair-trade-act-revisions-2020-monopoly - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The 2020 revision to Korea’s Monopoly Regulation and Fair Trade Act (MRFTA) strengthens oversight of dominant online platforms and conglomerates (chaebols), prohibits self-preferencing and unfair acce... - **Discovery URL**: https://bidda.com/api/v1/nodes/korea-fair-trade-act-revisions-2020-monopoly.json #### Monopoly Regulation and Fair Trade Act, Act No. 17386, as Amended by Act No. 17386 on December 4, 2020 - **ID**: korea-monopoly-regulation-fair-trade-act - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Monopoly Regulation and Fair Trade Act (MRFTA) prohibits abuse of a market-dominant position, unfair trade practices, and anti-competitive mergers in South Korea. It applies to all enterprises ope... - **Discovery URL**: https://bidda.com/api/v1/nodes/korea-monopoly-regulation-fair-trade-act.json #### South Korea Monopoly Regulation and Fair Trade Act (MRFTA - 독점규제 및 공정거래에 관한 법률, Act No. 18661 of 4 January 2022) - **ID**: kr-mrfta-fair-trade-act - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Monopoly Regulation and Fair Trade Act (MRFTA - 독점규제 및 공정거래에 관한 법률) is South Korea's principal competition statute, originally enacted as Act No. 3320 on 31 December 1980 and comprehensively refor... - **Discovery URL**: https://bidda.com/api/v1/nodes/kr-mrfta-fair-trade-act.json #### Mexico Federal Economic Competition Law (Ley Federal de Competencia Económica - LFCE) 2014 - **ID**: mx-lfce-competition-act-2014 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Ley Federal de Competencia Económica (LFCE - Federal Economic Competition Law) was published in the Diario Oficial de la Federación (DOF) on 23 May 2014, replacing the 1992 LFCE. The law establish... - **Discovery URL**: https://bidda.com/api/v1/nodes/mx-lfce-competition-act-2014.json #### Federal Competition and Consumer Protection Act, 2018 - **ID**: nigeria-fccpc-fair-competition-consumer-protection-2019 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Federal Competition and Consumer Protection Act, 2018 empowers the FCCPC to prohibit abuse of dominant market position, anti-competitive agreements, and unfair consumer practices in Nigeria. It ap... - **Discovery URL**: https://bidda.com/api/v1/nodes/nigeria-fccpc-fair-competition-consumer-protection-2019.json #### Norway Konkurranseloven (Competition Act) LOV-2004-03-05-12 - **ID**: no-konkurranseloven-2004 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Lov 5. mars 2004 nr. 12 om konkurranse mellom foretak og kontroll med foretakssammenslutninger (Konkurranseloven) is Norway's principal competition statute, in force from 1 May 2004 and modelled on TF... - **Discovery URL**: https://bidda.com/api/v1/nodes/no-konkurranseloven-2004.json #### New Zealand Commerce Act 1986 - Competition Law and Commerce Commission Enforcement - **ID**: nz-commerce-act-1986 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Commerce Act 1986 prohibits contracts, arrangements, or understandings that substantially lessen competition in a New Zealand market, cartel conduct, and misuse of market power. The Commerce Commi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-commerce-act-1986.json #### New Zealand Fair Trading Act 1986 - Misleading Conduct and Consumer Information Standards - **ID**: nz-fair-trading-act-1986 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Fair Trading Act 1986 prohibits misleading or deceptive conduct in trade, false or misleading representations about goods or services or land or employment, unsubstantiated representations, unfair... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-fair-trading-act-1986.json #### OECD Policy Note on Algorithmic Collusion 2023 - Autonomous Pricing Algorithms, Hub-and-Spoke Arrangements, Tacit Collusion Detection, Antitrust Liability and Regulatory Responses - **ID**: oecd-algorithmic-collusion-policy-note-2023 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: This policy note provides guidance for competition authorities on detecting and addressing anticompetitive outcomes arising from autonomous pricing algorithms, including hub-and-spoke liability and ta... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-algorithmic-collusion-policy-note-2023.json #### OECD Competition Assessment Toolkit 2019 - Identifying and Evaluating Competition Restrictions in Laws and Regulations: ROGIL Test, Sectoral Assessments and Policy Recommendations - **ID**: oecd-competition-assessment-toolkit-2019 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This toolkit provides a structured methodology for reviewing laws and regulations to identify and assess competition restrictions using the ROGIL framework (Regulatory Objectives, Goals, Impacts, Less... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-competition-assessment-toolkit-2019.json #### OECD Competition Assessment Toolkit Volume 3 2023 - Screening Regulations for Undue Restrictions to Competition in Product and Service Markets - **ID**: oecd-competition-assessment-toolkit-v3-2023 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: This toolkit provides a structured methodology for governments and competition authorities to identify, assess, and recommend the removal of legal and regulatory barriers that unduly restrict competit... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-competition-assessment-toolkit-v3-2023.json #### OECD Roundtable on Competition in the Digital Economy: Self-Preferencing, Interoperability Remedies, Data Access Orders and Multi-Homing Restrictions - **ID**: oecd-competition-digital-economy-roundtable-2023 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This OECD roundtable synthesizes emerging competition policy approaches for digital markets, focusing on self-preferencing by dominant platforms, interoperability as a structural remedy, data access o... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-competition-digital-economy-roundtable-2023.json #### OECD Recommendation on Fighting Hard Core Cartels 2019 Revision - Effective Cartel Detection, Leniency Programmes, Sanctions and International Cooperation - **ID**: oecd-recommendation-hard-core-cartels-2019 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This OECD Recommendation requires competition authorities to implement robust enforcement mechanisms against hard-core cartels, including effective leniency programmes, deterrent sanctions, and proact... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-recommendation-hard-core-cartels-2019.json #### Singapore Competition Act 2004 (Cap. 50B) - Antitrust and Market Competition - **ID**: sg-competition-act-2004 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The Competition Act 2004 (Cap. 50B) promotes and maintains competitive markets in Singapore, prohibiting anti-competitive agreements and abuses of dominant position, and administered by the Competitio... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-competition-act-2004.json #### SG Competition Act 2004 - Anticompetitive Agreements, Abuse of Dominance, and Merger Notifications - **ID**: sg-competition-act-2004-cap-50b-anticompetitive-agreements-dominance - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Singapore's Competition Act 2004 (Cap. 50B) prohibits agreements that significantly prevent, restrict, or distort competition (Section 34), abuse of dominant position (Section 47), and mergers that su... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-competition-act-2004-cap-50b-anticompetitive-agreements-dominance.json #### Competition Act 2004 - Section 34: Agreements, etc., preventing, restricting or distorting competition - **ID**: sg-competition-act-2004-section-34-prohibition-anti-competitive-agreements - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Organizations are prohibited from making or giving effect to agreements, decisions by associations of undertakings, or concerted practices which have as their object or effect the prevention, restrict... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-competition-act-2004-section-34-prohibition-anti-competitive-agreements.json #### Competition Act 2004, Part 2: Competition and Consumer Commission of Singapore - **ID**: sg-competition-act-part-ii-prohibited-agreements-sg - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Organizations must recognize the authority of the Competition and Consumer Commission of Singapore, comply with its operational and informational requirements, and adhere to prohibitions regarding the... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-competition-act-part-ii-prohibited-agreements-sg.json #### United Kingdom Competition and Markets Authority - AI Foundation Models: Initial Review (Launched 4 May 2023; Initial Report 18 September 2023; Update Paper 11 April 2024; Technical Update Report 16 April 2024) - Competition and Consumer Protection Principles for the AI Foundation Model Sector - **ID**: uk-cma-ai-foundation-models-report-2024 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The UK Competition and Markets Authority (CMA) AI Foundation Models initial review is the United Kingdom's foundational competition-and-consumer-protection assessment of the foundation-model market. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-cma-ai-foundation-models-report-2024.json #### Merger Assessment Guidelines 2021 - Guidance from the Competition and Markets Authority on the Substantial Lessening of Competition Test and Related Analytical Frameworks - **ID**: uk-cma-merger-assessment-guidelines-2021 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: These guidelines set out the UK Competition and Markets Authority’s (CMA) analytical framework for assessing whether a merger results in a substantial lessening of competition (SLC) in any market in t... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-cma-merger-assessment-guidelines-2021.json #### UK Competition Act 1998 - Chapter I Prohibition, Chapter II Prohibition, and CMA Enforcement - **ID**: uk-competition-act-1998 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Competition Act 1998 (c. 41) is the principal UK legislation prohibiting anti-competitive conduct and abuse of dominant market position. Chapter I (Section 2) prohibits agreements between undertak... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-competition-act-1998.json #### Competition Act 1998 - Chapter I: Prohibition of Agreements, Decisions and Concerted Practices; Chapter II: Prohibition of Abuse of Dominant Position - **ID**: uk-competition-act-1998-chapter-1-2-prohibitions - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The UK Competition Act 1998, Sections 2(1) and 2(2), prohibits agreements between undertakings, decisions by associations of undertakings, and concerted practices that prevent, restrict, or distort co... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-competition-act-1998-chapter-1-2-prohibitions.json #### UK Competition Act 1998 - Chapter 1 Anticompetitive Agreements, Chapter 2 Abuse of Dominance, and CMA Enforcement - **ID**: uk-competition-act-1998-chapter-1-chapter-2-prohibitions-cma - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: UK Competition Act 1998 prohibits agreements that prevent, restrict, or distort competition (Chapter 1) and abuse of dominant position in UK markets (Chapter 2), enforced by the CMA with financial pen... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-competition-act-1998-chapter-1-chapter-2-prohibitions-cma.json #### Competition Act 1998 - Chapter I: Agreements Preventing, Restricting or Distorting Competition; Chapter II: Abuse of Dominant Position - **ID**: uk-competition-act-1998-chapters-i-ii - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Competition Act 1998 prohibits anti-competitive agreements under Chapter I (Section 2) and abuse of a dominant position under Chapter II (Section 18). It applies to all undertakings operating in t... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-competition-act-1998-chapters-i-ii.json #### UK Competition Act 1998 - CMA Chapter I & II Prohibitions on Anti-competitive Agreements and Dominance - **ID**: uk-competition-act-1998-cma-chapter-i-ii-prohibitions - **Category**: Competition & Antitrust - **Version**: 2.0 - **BLUF**: The UK Competition Act 1998 prohibits anti-competitive agreements between undertakings (Chapter I) and abuse of dominant market position (Chapter II) - enforced by the CMA with fines up to 10% of glob... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-competition-act-1998-cma-chapter-i-ii-prohibitions.json #### Digital Markets, Competition and Consumers Act 2024 - **ID**: uk-digital-markets-competition-consumers-act-2024-dmcc - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The UK Digital Markets, Competition and Consumers Act 2024 establishes a new pro-competition regime for digital markets by designating firms with Strategic Market Status (SMS) and imposing tailored co... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-digital-markets-competition-consumers-act-2024-dmcc.json #### Digital Markets, Competition and Consumers Act 2024, Part 1, Chapter 1, Section 1: Overview - **ID**: uk-digital-markets-competition-consumers-act-2024-part-1 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This Part of the Act confers functions on the Competition and Markets Authority (CMA) to regulate competition in digital markets, including designating undertakings, imposing conduct requirements, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-digital-markets-competition-consumers-act-2024-part-1.json #### Digital Markets, Competition and Consumers Act 2024 Part 1: Digital Markets - **ID**: uk-digital-markets-competition-consumers-act-2024-part-1-strategic-market-status - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This Part establishes a regulatory framework for digital markets, conferring functions on the Competition and Markets Authority (CMA) to designate undertakings with strategic market status and impose ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-digital-markets-competition-consumers-act-2024-part-1-strategic-market-status.json #### UK Digital Markets, Competition and Consumers Act 2024, DMCC - Strategic Market Status Regime and Pro-Competition Interventions, Effective 1 January 2025 - **ID**: uk-dmcc-act-2024-digital-markets-regime - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Undertakings carrying on digital activities in connection with the United Kingdom may be designated as having Strategic Market Status (SMS) by the Competition and Markets Authority (CMA) Digital Marke... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-dmcc-act-2024-digital-markets-regime.json #### Enterprise Act 2002 - Merger Control: Substantial Lessening of Competition Test, CMA Phase 1 and 2 Reviews, Remedies and Public Interest Cases - **ID**: uk-enterprise-act-2002-merger-cma-control - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The UK Enterprise Act 2002 requires parties to notify the Competition and Markets Authority (CMA) of qualifying mergers that may result in a substantial lessening of competition (SLC) in any market in... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-enterprise-act-2002-merger-cma-control.json #### Enterprise Act 2002 Part 4: Market Studies and Market Investigations - **ID**: uk-enterprise-act-2002-part-4-market-investigations-cma - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This regulation establishes the framework for conducting market studies and market investigations in the UK, and notes that this framework is subject to modifications from various other legislative in... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-enterprise-act-2002-part-4-market-investigations-cma.json #### UK Subsidy Control Act 2022 - Seven Principles and CMA Subsidy Advice Unit - **ID**: uk-subsidy-control-act-2022 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Subsidy Control Act 2022 (2022 chapter 23) establishes the United Kingdom's post-Brexit domestic subsidy control regime, replacing the application of EU State aid rules with a UK-specific framewor... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-subsidy-control-act-2022.json #### US Clayton Act (15 USC ch 1): Price Discrimination, Tying, Mergers and Treble Damages - **ID**: us-clayton-act - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Clayton Act of 1914 (15 U.S.C. ch. 1, sections 12 onward) supplements the Sherman Act by prohibiting specific practices whose effect may be substantially to lessen competition or tend to create a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clayton-act.json #### An Act to Amend the Provisions of the Anti-Trust Act Approved July Two, Nineteen Hundred and One, and to Provide for the Enforcement of the Anti-Trust Laws, and for Other Purposes - Section 7: Acquisition of Stock or Assets; Interlocking Directorates - **ID**: us-clayton-act-1914-merger-enforcement - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: Prohibits mergers and acquisitions where the effect may be substantially to lessen competition or tend to create a monopoly, as defined under Section 7 of the Clayton Act (15 U.S.C. § 18). Applies to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clayton-act-1914-merger-enforcement.json #### US Clayton Act 1914 - Section 7 Mergers, Section 3 Tying Arrangements, Section 8 Interlocking Directorates, Private Rights of Action and Treble Damages for Antitrust Violations - **ID**: us-clayton-act-1914-mergers-tying - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The Clayton Act prohibits mergers and acquisitions that may substantially lessen competition under §7, bans tying arrangements that restrain trade under §3, and forbids interlocking directorates under... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clayton-act-1914-mergers-tying.json #### 15 U.S. Code § 18 - Acquisition by one corporation of stock of another - **ID**: us-clayton-act-1914-section-7-mergers-acquisitions-prohibition - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Organizations are prohibited from acquiring the stock or assets of another entity where the effect of such an acquisition may be to substantially lessen competition or tend to create a monopoly. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clayton-act-1914-section-7-mergers-acquisitions-prohibition.json #### US DOJ Corporate Leniency Policy - Amnesty for First-In Cartel Participants: Automatic and Non-Automatic Amnesty, Individual Leniency and Proffer Process - **ID**: us-doj-corporate-leniency-policy-2017-revision - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The US Department of Justice Antitrust Division grants full corporate amnesty to the first cartel participant that voluntarily discloses illegal anticompetitive conduct, reports it before an investiga... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-doj-corporate-leniency-policy-2017-revision.json #### 2023 Merger Guidelines - **ID**: us-doj-ftc-horizontal-merger-guidelines-2023 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The 2023 DOJ/FTC Horizontal Merger Guidelines establish a framework for identifying mergers that may substantially lessen competition or tend to create a monopoly under Section 7 of the Clayton Act (1... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-doj-ftc-horizontal-merger-guidelines-2023.json #### US Federal Trade Commission Act (15 USC ch 2): Unfair Methods of Competition and Unfair or Deceptive Acts - **ID**: us-federal-trade-commission-act - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Federal Trade Commission Act (15 U.S.C. ch. 2, subchapter I) creates the Federal Trade Commission (FTC) and prohibits unfair methods of competition and unfair or deceptive acts or practices in or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-trade-commission-act.json #### United States Federal Trade Commission Act of 1914 (Title 15 USC Chapter 2 Subchapter I): Federal Trade Commission Established, Section 5 Unfair Methods of Competition and Unfair or Deceptive Acts or Practices, Additional Powers, False Advertisements, Consumer Review Protection, Online Marketplace Transparency, and Rulemaking - **ID**: us-ftc-act-15-usc-ch2-subch-i - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Federal Trade Commission Act of 1914, codified at Title 15 of the United States Code, Chapter 2, Subchapter I, is the principal federal statute establishing the Federal Trade Commission and prohib... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-act-15-usc-ch2-subch-i.json #### Federal Trade Commission Act Section 5 - Unfair Methods of Competition in or Affecting Commerce - **ID**: us-ftc-act-section-5-unfair-competition-antitrust - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: Prohibits unfair methods of competition in or affecting commerce, granting the FTC standalone authority to challenge anticompetitive conduct beyond the scope of the Sherman Act. Applies to all persons... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-act-section-5-unfair-competition-antitrust.json #### US Robinson-Patman Act 1936 - Price Discrimination Prohibition: Commodities of Like Grade and Quality, Price Differentials Justification, Brokerage Payments, Promotional Services and Buyer Liability - **ID**: us-ftc-robinson-patman-price-discrimination - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: This regulation prohibits price discrimination between purchasers of commodities of like grade and quality in commerce where the effect may substantially lessen competition or create a monopoly, as de... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-robinson-patman-price-discrimination.json #### US FTC Section 5 - Unfair or Deceptive Acts in AI-Powered Digital Advertising and Commerce - **ID**: us-ftc-section-5-unfair-deceptive-acts-ai-digital-advertising - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Section 5 of the Federal Trade Commission Act (15 U.S.C. § 45) prohibits unfair or deceptive acts or practices in commerce. The FTC has issued specific guidance on AI use in advertising (FTC Guidance ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-section-5-unfair-deceptive-acts-ai-digital-advertising.json #### US Hart-Scott-Rodino Antitrust Improvements Act 1976 - FTC/DOJ Pre-Merger Notification - **ID**: us-hart-scott-rodino-antitrust-improvements-act-1976-ftc-doj - **Category**: Competition & Antitrust - **Version**: 2.0.0 - **BLUF**: The Hart-Scott-Rodino (HSR) Act (15 U.S.C. 18a) requires parties to reportable acquisitions to file pre-merger notification with the FTC and DOJ Antitrust Division and observe a waiting period before ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hart-scott-rodino-antitrust-improvements-act-1976-ftc-doj.json #### Hart-Scott-Rodino Antitrust Improvements Act of 1976 - Pre-Merger Notification Requirements for Mergers and Acquisitions - **ID**: us-hart-scott-rodino-merger-notification - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: The Hart-Scott-Rodino (HSR) Act requires parties to certain large mergers and acquisitions to file premerger notifications with the FTC and DOJ and observe a mandatory waiting period before closing, u... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hart-scott-rodino-merger-notification.json #### Hart-Scott-Rodino Antitrust Improvements Act of 1976 - Premerger Notification and Waiting Period Requirements - **ID**: us-hart-scott-rodino-premerger-notification-1976 - **Category**: Competition & Antitrust - **Version**: 1.0.1 - **BLUF**: Requires parties to certain mergers, acquisitions, and tender offers to file premerger notifications with the FTC and DOJ and observe a mandatory waiting period before closing, if transaction size and... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hart-scott-rodino-premerger-notification-1976.json #### US Robinson-Patman Act of 1936 (15 USC 13) - Price Discrimination Prohibition - **ID**: us-robinson-patman-act-1936-15-usc-13 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Robinson-Patman Act of 1936 amended Section 2 of the Clayton Act to prohibit sellers from discriminating in price between different purchasers of commodities of like grade and quality where the ef... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-robinson-patman-act-1936-15-usc-13.json #### 15 U.S. Code § 1 - Trusts, etc., in restraint of trade illegal; penalty - **ID**: us-sherman-act-1890-section-1-restraint-trade-combinations - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: Organizations must not enter into any contract, combination, or conspiracy that restrains trade or commerce among the several States or with foreign nations. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sherman-act-1890-section-1-restraint-trade-combinations.json #### US Sherman Antitrust Act (15 USC ch 1): Restraint of Trade, Monopolization and Criminal Penalties - **ID**: us-sherman-antitrust-act - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Sherman Antitrust Act of 1890 (15 U.S.C. ch. 1, sections 1 to 7) is the foundational US antitrust statute, enforced by the Department of Justice Antitrust Division and, civilly, through private an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sherman-antitrust-act.json #### United States Sherman Antitrust Act (Title 15 USC Chapter 1): Restraint of Trade Prohibition (Section 1), Monopolization Felony (Section 2), Territorial Reach, Court Jurisdiction, Forfeiture of Property in Transit, and Definitions - **ID**: us-sherman-antitrust-act-15-usc-ch1 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Sherman Antitrust Act, codified at Title 15 of the United States Code, Chapter 1 (Monopolies and Combinations in Restraint of Trade), is the foundational federal antitrust statute in the United St... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sherman-antitrust-act-15-usc-ch1.json #### An Act to protect trade and commerce against unlawful restraints and monopolies - **ID**: us-sherman-antitrust-act-1890-sections-1-2 - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: The Sherman Antitrust Act of 1890, Sections 1 and 2, prohibits agreements in restraint of trade and monopolization or attempts to monopolize any part of interstate or foreign commerce. It applies to a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sherman-antitrust-act-1890-sections-1-2.json #### Competition Act 89 of 1998: Purpose and Scope - **ID**: za-competition-act-89-1998-section-4-prohibited-practices - **Category**: Competition & Antitrust - **Version**: 1.0.0 - **BLUF**: This Act establishes the Competition Commission, Tribunal, and Appeal Court to investigate, control, evaluate, and adjudicate on matters concerning restrictive practices, abuse of a dominant position,... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-competition-act-89-1998-section-4-prohibited-practices.json ### Construction & Real Estate (105 nodes) #### ASCE 7-22 Minimum Design Loads and Associated Criteria for Buildings and Other Structures - Seismic, Wind, Snow and Flood Load Requirements - **ID**: asce-7-22-minimum-design-loads-buildings - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: This regulation requires that buildings and other structures be designed to withstand minimum loads due to seismic, wind, snow, and flood hazards, as specified in Section 1.4 of ASCE 7-22. It applies ... - **Discovery URL**: https://bidda.com/api/v1/nodes/asce-7-22-minimum-design-loads-buildings.json #### National Construction Code 2022 - Technical Design and Construction Provisions for Safety, Health, Amenity, Accessibility and Sustainability of Buildings - **ID**: australia-national-construction-code-2022 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The National Construction Code 2022 sets minimum technical requirements for the design, construction and performance of buildings in Australia, including safety, accessibility and energy efficiency. I... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-national-construction-code-2022.json #### Australian National Construction Code 2022 (NCC/BCA) - Performance Requirements, Deemed-to-Satisfy Provisions and Energy Efficiency Standards for Buildings - **ID**: australia-national-construction-code-2022-ncc - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The Australian National Construction Code 2022 (NCC) requires that all building work in Australia complies with its Performance Requirements, as outlined in Section 1 of the NCC, and applies to all bu... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-national-construction-code-2022-ncc.json #### Australia Work Health and Safety Act 2011 - PCBU Primary Duty of Care & Safe Work Method Statements - **ID**: australia-whs-act-2011-model-work-health-safety-pcbu-duties - **Category**: Construction & Real Estate - **Version**: 2.0 - **BLUF**: Australia's model Work Health and Safety Act 2011 (adopted by most jurisdictions) imposes a primary duty of care on Persons Conducting a Business or Undertaking (PCBUs) to ensure worker health and saf... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-whs-act-2011-model-work-health-safety-pcbu-duties.json #### Brazil Lei 4591/1964 - Real Estate Incorporation and Condominium Registration Framework - **ID**: brazil-lei-4591-1964-incorporacoes-imobiliarias - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Brazil's Lei 4591 of 16 December 1964 (Incorporacoes Imobiliarias e Condominios) regulates off-plan real estate sales (incorporacao imobiliaria) by requiring the incorporador (developer) to register a... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-lei-4591-1964-incorporacoes-imobiliarias.json #### BREEAM 2018 - Building Research Establishment Environmental Assessment Method: Management, Health and Wellbeing, Energy, Transport, Water, Materials, Waste, Land Use and Ecology Credits - **ID**: breeam-2018-building-assessment-method - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: BREEAM New Construction Version 7 provides a science-driven framework for assessing the sustainability performance of newly designed and constructed buildings and new-build extensions, with emphasis o... - **Discovery URL**: https://bidda.com/api/v1/nodes/breeam-2018-building-assessment-method.json #### National Building Code of Canada 2020 (NBC 2020) - **ID**: canada-national-building-code-2020 - **Category**: Construction & Real Estate - **Version**: 2020 (6th Edition) - **BLUF**: The National Building Code of Canada 2020 (NBC 2020) is the model building code developed by the National Research Council Canada (NRC) that sets minimum technical requirements for the design, constru... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-national-building-code-2020.json #### China Construction Law 1997 (2019 Amendment) - Jianzhufazhi - **ID**: china-construction-law-1997-amendment-2019 - **Category**: Construction & Real Estate - **Version**: 2019 Amendment (effective April 23, 2019) - **BLUF**: China's Construction Law (Zhonghua Renmin Gongheguo Jianzhu Fa, enacted 1997, most recently amended 2019) is the primary PRC legislation governing construction activities; it establishes mandatory qua... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-construction-law-1997-amendment-2019.json #### EU Circular Economy Action Plan 2020 - Construction and Demolition Waste: Recycling Targets, Pre-Demolition Audits and Material Passports - **ID**: eu-circular-economy-construction-demolition-waste-2020 - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The EU Circular Economy Action Plan 2020 requires construction and demolition waste to be recycled, with a minimum of 70% of non-hazardous waste to be recycled by 2025, as stated in Article 11 of the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-circular-economy-construction-demolition-waste-2020.json #### EU Construction Products Regulation 2011/305 - **ID**: eu-construction-products-regulation-2011-305 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 305/2011 establishes harmonised conditions for the marketing of construction products in the EU, requiring manufacturers to draw up a Declaration of Performance and affix CE marking... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-construction-products-regulation-2011-305.json #### EU Construction Products Regulation 305/2011/EU - CE Marking and Declaration of Performance Requirements - **ID**: eu-construction-products-regulation-2011-305-ce-marking - **Category**: Construction & Real Estate - **Version**: 2.0.0 - **BLUF**: EU Construction Products Regulation (CPR) 305/2011/EU requires manufacturers to affix the CE marking to construction products covered by a harmonised European standard (hEN) or European Technical Asse... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-construction-products-regulation-2011-305-ce-marking.json #### EU Construction Products Regulation 2011/305 - CE Marking, Declaration of Performance, and Essential Requirements - **ID**: eu-construction-products-regulation-2011-305-ce-marking-performance - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 305/2011 requires construction product manufacturers to produce a Declaration of Performance (DoP) and affix CE marking when a harmonised European standard (hEN) covers their product, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-construction-products-regulation-2011-305-ce-marking-performance.json #### Regulation (EU) 2024/3110 of the European Parliament and of the Council of 27 November 2024 laying down harmonised rules for the marketing of construction products and repealing Regulation (EU) No 305/2011 - **ID**: eu-construction-products-regulation-2024-3110 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/3110 is the new EU Construction Products Regulation (CPR), adopted on 27 November 2024 and published in the Official Journal on 18 December 2024, repealing the predecessor Regulat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-construction-products-regulation-2024-3110.json #### Regulation (EU) No 305/2011 of the European Parliament and of the Council of 9 March 2011 laying down harmonised conditions for the marketing of construction products - **ID**: eu-construction-products-regulation-305-2011 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This regulation establishes a common framework for the marketing of construction products in the EU, requiring manufacturers to affix CE marking and issue a Declaration of Performance (DoP) based on h... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-construction-products-regulation-305-2011.json #### Council Directive 92/57/EEC of 24 June 1992 on the minimum safety and health requirements for the temporary or mobile construction sites - **ID**: eu-construction-safety-temporary-mobile-sites - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This Directive requires all Member States to ensure that minimum safety and health requirements are implemented on temporary or mobile construction sites, including the appointment of a competent coor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-construction-safety-temporary-mobile-sites.json #### EU Buildings and Construction Sector Decarbonisation 2050 - Long-Term Renovation Strategies, Minimum Energy Performance Standards and Social Housing Finance - **ID**: eu-construction-sector-emissions-buildings-renovation - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: This regulation requires EU member states to establish long-term renovation strategies to reduce greenhouse gas emissions from buildings, as outlined in Article 2a of the Energy Efficiency Directive. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-construction-sector-emissions-buildings-renovation.json #### Directive (EU) 2020/2184 of the European Parliament and of the Council of 16 December 2020 on the quality of water intended for human consumption - **ID**: eu-drinking-water-directive-2020-2184-construction - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This directive establishes requirements for materials and products in contact with drinking water, including mandatory positive lists, migration testing, and installation standards to prevent contamin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-drinking-water-directive-2020-2184-construction.json #### Directive 2014/52/EU of the European Parliament and of the Council of 16 April 2014 amending Directive 2011/92/EU on the assessment of the effects of certain public and private projects on the environment - **ID**: eu-eia-directive-2014-52-environmental-assessment - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: This directive requires Member States to ensure that certain construction and development projects undergo an Environmental Impact Assessment (EIA) before consent is granted, based on screening and sc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eia-directive-2014-52-environmental-assessment.json #### Directive 2011/92/EU of the European Parliament and of the Council of 13 December 2011 on the assessment of the effects of certain public and private projects on the environment - **ID**: eu-eia-directive-construction-2011-92 - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: This directive requires Member States to ensure that projects listed in Annex I and II undergo an Environmental Impact Assessment (EIA) before consent is granted, including scoping, public consultatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eia-directive-construction-2011-92.json #### Directive (EU) 2024/1275 of the European Parliament and of the Council of 17 April 2024 on the energy performance of buildings - **ID**: eu-energy-performance-buildings-directive-2024 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This Directive establishes minimum energy performance standards for buildings, mandates the development of renovation passports, and introduces a Smart Readiness Indicator (SRI) to promote nearly zero... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-performance-buildings-directive-2024.json #### Directive (EU) 2024/1275 of the European Parliament and of the Council of 13 March 2024 on the energy performance of buildings - **ID**: eu-energy-performance-buildings-directive-2024-recast - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The recast EPBD 2024 mandates that all new buildings must be zero-emission as of 2028, with public buildings leading by 2026. It requires Member States to establish renovation passports, enforce Minim... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-performance-buildings-directive-2024-recast.json #### EU Energy Performance of Buildings Directive 2024/1275 - Energy Performance Certificates and NZEB Standards - **ID**: eu-epbd-2024-energy-performance-certificates-nzeb - **Category**: Construction & Real Estate - **Version**: 2.0.0 - **BLUF**: EU Energy Performance of Buildings Directive (EPBD) recast 2024/1275 mandates energy performance certificates (EPCs) for all buildings sold, rented, or undergoing major renovation; requires all new bu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-epbd-2024-energy-performance-certificates-nzeb.json #### EU Energy Performance of Buildings Directive (EU) 2024/1275 (EPBD recast) - **ID**: eu-epbd-energy-performance-buildings-2024-1275 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: EU Directive (EU) 2024/1275 (the Energy Performance of Buildings Directive EPBD recast) sets out the EU framework for reducing greenhouse gas emissions and final energy consumption in the building sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-epbd-energy-performance-buildings-2024-1275.json #### Directive 2010/31/EU of the European Parliament and of the Council on the energy performance of buildings (recast) - Articles 9-11: Nearly Zero-Energy Buildings, Cost-Optimal Methodology and Requirements for New Buildings - **ID**: eu-epbd-nearly-zero-energy-buildings-definition - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: EU Member States must define and implement national standards for nearly zero-energy buildings (NZEBs) for all new buildings by 31 December 2020, and for new public buildings by 31 December 2018, in a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-epbd-nearly-zero-energy-buildings-definition.json #### EU Renovation Wave Strategy 2020 - Minimum Energy Performance Standards for Existing Buildings: Worst Performing Buildings Phase-Out, National Renovation Plans and Financing Mechanisms - **ID**: eu-habitability-directive-renovation-wave - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The Renovation Wave Strategy aims to renovate 35 million buildings in the EU by 2030, at least doubling the annual rate of energy renovations, with a focus on improving energy efficiency, reducing ene... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-habitability-directive-renovation-wave.json #### Council Directive 92/43/EEC on the Conservation of Natural Habitats and of Wild Fauna and Flora - Article 6: Assessment of Plans and Projects Likely to Affect Natura 2000 Sites - **ID**: eu-habitat-directive-construction-biodiversity - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: Construction projects likely to significantly affect Natura 2000 sites must undergo an Appropriate Assessment under Article 6(3) of the EU Habitats Directive. If adverse effects are identified, the pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-habitat-directive-construction-biodiversity.json #### Directive 2010/75/EU of the European Parliament and of the Council of 24 November 2010 on industrial emissions (integrated pollution prevention and control) - **ID**: eu-industrial-emissions-directive-2010-75-construction - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This Directive establishes emission limit values (ELVs) and mandates the use of Best Available Techniques (BAT) for industrial installations, including cement kilns, lime and glass production faciliti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-industrial-emissions-directive-2010-75-construction.json #### Directive 2006/42/EC of the European Parliament and of the Council of 17 May 2006 on machinery, and amending Directive 95/16/EC - **ID**: eu-machinery-directive-2006-42-construction - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: This directive establishes essential health and safety requirements (EHSRs) for machinery placed on the EU market, including construction equipment. It mandates CE marking, technical file creation, De... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-machinery-directive-2006-42-construction.json #### Directive 2014/17/EU of the European Parliament and of the Council of 4 February 2014 on credit agreements for consumers relating to residential immovable property and amending Directives 2008/48/EC and 2013/36/EU and Regulation (EU) No 1093/2010 - **ID**: eu-mortgage-credit-directive-2014-17-real-estate - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This directive establishes harmonised rules for creditworthiness assessment, pre-contractual information (ESIS), early repayment rights, and arrears management for consumer mortgage credit agreements ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mortgage-credit-directive-2014-17-real-estate.json #### Directive 2002/49/EC of the European Parliament and of the Council of 25 June 2002 relating to the assessment and management of environmental noise - **ID**: eu-noise-directive-construction-2002-49 - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: This directive requires EU Member States to produce strategic noise maps for major urban agglomerations, major roads, railways, airports, and major construction projects, and to develop action plans t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-noise-directive-construction-2002-49.json #### Commission Delegated Regulation (EU) 2021/2139 of 4 June 2021 supplementing Directive 2014/95/EU and Regulation (EU) 2020/852 by establishing the technical screening criteria for climate change mitigation and adaptation - **ID**: eu-taxonomy-construction-activities-2022-criteria - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This regulation establishes technical screening criteria under the EU Taxonomy for determining when construction and renovation activities in the real estate sector qualify as environmentally sustaina... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-construction-activities-2022-criteria.json #### Commission Delegated Regulation (EU) 2021/2139 of 4 June 2021 supplementing Directive 2014/89/EU and Regulation (EU) 2020/852 by establishing the content and presentation of information in the European Union Taxonomy for environmentally sustainable economic activities in the field of climate change mitigation and adaptation - **ID**: eu-taxonomy-construction-green-finance-2021 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This regulation establishes technical screening criteria for construction and renovation activities to qualify as environmentally sustainable under the EU Taxonomy, requiring new buildings to meet nea... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-construction-green-finance-2021.json #### Regulation (EU) No 995/2010 of the European Parliament and of the Council of 20 October 2010 laying down the obligations of operators who place timber and timber products on the market - **ID**: eu-timber-regulation-995-2010-construction-wood - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Operators placing timber or timber products on the EU market, including in construction projects, must implement a due diligence system to minimize the risk of illegal logging. This includes risk asse... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-timber-regulation-995-2010-construction-wood.json #### Council Directive 91/271/EEC concerning urban wastewater treatment, as recast in 2024 - **ID**: eu-urban-wastewater-treatment-directive-construction - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This directive requires EU Member States to ensure the collection, treatment, and discharge of urban wastewater in accordance with specified capacity thresholds and nutrient removal standards, particu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-urban-wastewater-treatment-directive-construction.json #### Directive 2008/98/EC of the European Parliament and of the Council of 19 November 2008 on waste and repealing certain Directives (Text with EEA relevance) - **ID**: eu-waste-construction-demolition-directive - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: This directive establishes a mandatory 70% by weight recovery target for construction and demolition waste (CDW) by 2020, requires adherence to the waste hierarchy (Article 4), mandates pre-demolition... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-waste-construction-demolition-directive.json #### France Code de la Construction et de l'Habitation (CCH) - Building Regulation - **ID**: france-code-construction-habitation-building-regulation - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: France's Code de la Construction et de l'Habitation (CCH) consolidates all building, housing, and construction regulations. It governs building permits (permis de construire) through the Code de l'Urb... - **Discovery URL**: https://bidda.com/api/v1/nodes/france-code-construction-habitation-building-regulation.json #### Germany Federal Building Code (Baugesetzbuch - BauGB) 2023 Consolidated Version - **ID**: germany-federal-building-code-baugesetzbuch - **Category**: Construction & Real Estate - **Version**: BauGB 2023 (last amended May 3, 2021 via BauLandmobilisierungsgesetz; 2023 consolidated text) - **BLUF**: Germany's Federal Building Code (Baugesetzbuch - BauGB, 2023 consolidated version) is the primary federal law governing spatial planning, land use, and building permit eligibility in Germany; it estab... - **Discovery URL**: https://bidda.com/api/v1/nodes/germany-federal-building-code-baugesetzbuch.json #### Hong Kong Buildings Ordinance Cap. 123 - Building Approval, Registered Contractor Requirements and Minor Works Control - **ID**: hong-kong-buildings-ordinance-cap-123-bda - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Hong Kong's Buildings Ordinance (Cap. 123, enacted 1955, substantially revised to 2024) administered by the Buildings Department (BD) requires approved building plans (BP) and Consent to Commence Work... - **Discovery URL**: https://bidda.com/api/v1/nodes/hong-kong-buildings-ordinance-cap-123-bda.json #### Employment Conditions in Construction Convention, 1988 (No. 167) - **ID**: ilo-employment-construction-workers-convention-1988 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This ILO Convention requires member states to ensure safe and fair employment conditions for construction workers, particularly concerning temporary works, subcontracting accountability, timely wage p... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-employment-construction-workers-convention-1988.json #### Safety and Health in Construction Convention, 1988 (No. 167) - **ID**: ilo-safety-health-construction-convention-167-1988 - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: This convention requires that employers ensure the safety and health of workers in the construction industry, as outlined in Article 6, and that national laws and regulations are established to implem... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-safety-health-construction-convention-167-1988.json #### India Building and Other Construction Workers Act 1996 - Welfare Board and Cess Framework - **ID**: india-bocw-act-1996-construction-worker-welfare - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: India's Building and Other Construction Workers (Regulation of Employment and Conditions of Service) Act 1996 and the BOCW Cess Act 1996 require construction establishments employing 10 or more worker... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-bocw-act-1996-construction-worker-welfare.json #### The Real Estate (Regulation and Development) Act, 2016 - **ID**: india-real-estate-regulatory-authority-rera-2016 - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: Mandates registration of real estate projects exceeding 500 square meters or 8 units with RERA, requires promoters to disclose project details and maintain 70% of collected funds in an escrow account,... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-real-estate-regulatory-authority-rera-2016.json #### ISO 19650-1:2018 Information management using building information modelling (BIM) - Part 1: Concepts and principles - **ID**: iso-19650-bim-information-management-construction - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: ISO 19650 requires construction projects to implement a Common Data Environment (CDE) as outlined in Clause 5.1, and to establish an information management process in accordance with Clause 6.1. - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-19650-bim-information-management-construction.json #### ISO 21500:2021 - Project, Programme and Portfolio Management: Guidance on Project Management for Construction and Infrastructure Delivery - **ID**: iso-21500-project-management-construction-guidance - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Provides guidance on project management processes and principles specifically tailored for construction and infrastructure projects, applicable to all organizations involved in delivering built assets... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-21500-project-management-construction-guidance.json #### ISO 9001:2015 - Quality Management Systems - Requirements - **ID**: iso-9001-2015-quality-management-construction - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: ISO 9001:2015 requires construction organizations to establish, implement, maintain, and continually improve a quality management system (QMS) based on risk-based thinking, with documented processes f... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-9001-2015-quality-management-construction.json #### Japan Building Standards Act 1950 (Kenchiku Kijun-ho) - Construction Permit and Safety Framework - **ID**: japan-building-standards-act-1950 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Japan's Building Standards Act (Kenchiku Kijun-ho, Act No. 201 of 1950, most recently amended 2024) establishes the mandatory technical standards for building design and construction in Japan, requiri... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-building-standards-act-1950.json #### Japan Building Standards Law 1950 - Structural Safety, Seismic Design, and Building Permit - **ID**: japan-building-standards-law-1950-structural-safety - **Category**: Construction & Real Estate - **Version**: 2.0.0 - **BLUF**: Japan's Building Standards Law (建築基準法, Law No. 201 of 1950, extensively amended) sets minimum national standards for structural safety, fire prevention, and public health for all buildings in Japan. K... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-building-standards-law-1950-structural-safety.json #### Kenya Land Act 2012 - National Land Commission and Compulsory Acquisition Framework - **ID**: kenya-land-act-2012-national-land-commission - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Kenya's Land Act No. 6 of 2012 (in force 2 May 2012) implements Article 68 of the Constitution; establishes the National Land Commission (NLC) as manager of public land; provides for compulsory acquis... - **Discovery URL**: https://bidda.com/api/v1/nodes/kenya-land-act-2012-national-land-commission.json #### LEED v4.1 - Leadership in Energy and Environmental Design: Location and Transport, Sustainable Sites, Water Efficiency, Energy and Atmosphere, Materials and Resources, Indoor Environmental Quality - **ID**: leed-v4-1-building-certification-usgbc - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: LEED v4.1 establishes a framework for certifying sustainable buildings across design, construction, and operations phases, requiring projects to meet all prerequisites and earn points through credit c... - **Discovery URL**: https://bidda.com/api/v1/nodes/leed-v4-1-building-certification-usgbc.json #### Mexico INFONAVIT Housing Fund Law 1972 - Employer Contributions, Housing Credit and Subrogation - **ID**: mexico-infonavit-housing-fund-law-1972 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Mexico's Law of the Institute of the National Housing Fund for Workers (Ley del INFONAVIT, 24 April 1972, last reformed 2023) requires all private sector employers to contribute 5% of each worker's da... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-infonavit-housing-fund-law-1972.json #### NABERS Energy Rating - Australian Commercial Building Performance: Base Building, Tenancy, Whole Building Rating Methodology, Commitment Agreements and Disclosure Requirements - **ID**: nabers-energy-rating-australia-commercial - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The NABERS Energy Rating system requires commercial building owners, managers, and tenants to measure and publicly disclose verified energy performance using a nationally consistent 1-6 star scale, ba... - **Discovery URL**: https://bidda.com/api/v1/nodes/nabers-energy-rating-australia-commercial.json #### New Zealand Building Act 2004 - Building Consents, Code Compliance and Earthquake-Prone Buildings - **ID**: new-zealand-building-act-2004 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Building Act 2004 (Public Act 2004 No 72) establishes the framework for regulating building work in New Zealand. All building work must comply with the New Zealand Building Code. A building consen... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-zealand-building-act-2004.json #### NFPA 13 Standard for the Installation of Sprinkler Systems 2022 - **ID**: nfpa-13-installation-sprinkler-systems-2022 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This regulation requires the installation of sprinkler systems in accordance with Section 8.3 of NFPA 13, which applies to new and existing buildings, and Section 10.2, which outlines the requirements... - **Discovery URL**: https://bidda.com/api/v1/nodes/nfpa-13-installation-sprinkler-systems-2022.json #### Nigeria Land Use Act 1978 - Certificate of Occupancy, Governor's Consent and Urban Land Administration - **ID**: nigeria-land-use-act-1978-certificate-of-occupancy - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Nigeria's Land Use Act 1978 (LUA, Cap. L5, Laws of the Federation of Nigeria 2004), vested all land in each state in the Governor who holds it in trust for the benefit of all Nigerians; requires holde... - **Discovery URL**: https://bidda.com/api/v1/nodes/nigeria-land-use-act-1978-certificate-of-occupancy.json #### Saudi Arabia Real Estate General Authority (REGA) - Licensing and Vision 2030 Framework - **ID**: saudi-rega-real-estate-general-authority-2021 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Saudi Arabia's Real Estate General Authority (REGA), established by Royal Decree M/3 of 18 Safar 1443H (September 2021), is the unified regulator for real estate brokerage, development, facilities man... - **Discovery URL**: https://bidda.com/api/v1/nodes/saudi-rega-real-estate-general-authority-2021.json #### Building Control Act (Cap. 29) - **ID**: singapore-building-control-act-cap-29 - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The Building Control Act (Cap. 29) requires building owners and developers to obtain approval from the Commissioner of Building Control before commencing construction, as stated in Section 5(1) of the... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-building-control-act-cap-29.json #### Singapore Building Control Act (Cap. 29) - BCA Regulatory Framework - **ID**: singapore-building-control-act-cap-29-bca - **Category**: Construction & Real Estate - **Version**: 2.0.0 - **BLUF**: Singapore's Building Control Act (Cap. 29, 1989, revised 2000) administered by the Building and Construction Authority (BCA) requires building plan approval, a Qualified Person (QP) to supervise all s... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-building-control-act-cap-29-bca.json #### South Africa NHBRC Housing Consumer Protection Measures Act 95 of 1998 - Home Builder Registration and Warranty - **ID**: south-africa-nhbrc-housing-consumer-protection-act-95-1998 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: South Africa's Housing Consumer Protection Measures Act 95 of 1998 (NHBRC Act) establishes the National Home Builders Registration Council (NHBRC) as the statutory body responsible for protecting hous... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-nhbrc-housing-consumer-protection-act-95-1998.json #### UAE Law No. 7 of 2007 - Dubai Real Estate Regulatory Authority (RERA) and DLD Framework - **ID**: uae-rera-law-7-2007-real-estate-dubai - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Dubai Law No. 7 of 2007 established the Real Estate Regulatory Authority (RERA) within the Dubai Land Department (DLD) as the regulator of Dubai's real estate market; mandates developer registration, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-rera-law-7-2007-real-estate-dubai.json #### UK Building Act 1984: Building Regulations, Plans Approval, Enforcement and Dangerous Buildings - **ID**: uk-building-act-1984 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Building Act 1984 is the principal enabling statute for building control in England and Wales, providing the power to make building regulations and the local-authority enforcement machinery, now o... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-building-act-1984.json #### UK Building Regulations 2010 - Approved Documents, Building Control, and Structural Requirements - **ID**: uk-building-regulations-2010 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Building Regulations 2010 (SI 2010/2214) made under the Building Act 1984 set out the minimum functional standards for building work in England. The Regulations apply to building work as defined i... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-building-regulations-2010.json #### UK Building Safety Act 2022 - Higher-Risk Buildings Gateway Process and Building Safety Manager Obligations - **ID**: uk-building-safety-act-2022-higher-risk-buildings - **Category**: Construction & Real Estate - **Version**: 2.0.0 - **BLUF**: UK Building Safety Act 2022 (BSA 2022) establishes a mandatory three-gateway approval process for the design, construction, and completion of higher-risk buildings (HRBs) - defined as buildings with a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-building-safety-act-2022-higher-risk-buildings.json #### UK Building Safety Act 2022 - Higher-Risk Buildings Duty Holders, Safety Case, and Building Safety Regulator - **ID**: uk-building-safety-act-2022-higher-risk-buildings-duty-holders - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The UK Building Safety Act 2022 establishes a new regulatory regime for higher-risk buildings (18m+ or 7+ storeys with residential use), requiring duty holders (accountable persons and principal accou... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-building-safety-act-2022-higher-risk-buildings-duty-holders.json #### UK Building Safety Act 2022 - HSE Higher-Risk Building Registration and Safety Case - **ID**: uk-building-safety-act-2022-hse-higher-risk-buildings - **Category**: Construction & Real Estate - **Version**: 2.0.0 - **BLUF**: The Building Safety Act 2022 (c.30) creates a new regulatory regime for higher-risk buildings (HRBs) in England: buildings 18 metres or more or 7 storeys or more with at least 2 residential units; the... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-building-safety-act-2022-hse-higher-risk-buildings.json #### The Construction (Design and Management) Regulations 2015 - **ID**: uk-cdm-regulations-2015-construction - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The Construction (Design and Management) Regulations 2015 impose legal duties on clients, designers, contractors and other dutyholders to manage health, safety and welfare risks in construction projec... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-cdm-regulations-2015-construction.json #### UK Construction Design and Management Regulations 2015 - Client, Designer, and Contractor Duties - **ID**: uk-construction-design-management-regulations-2015 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Construction (Design and Management) Regulations 2015 (SI 2015/51) came into force on 6 April 2015 and replaced the CDM Regulations 2007. CDM 2015 applies to all construction projects in Great Bri... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-construction-design-management-regulations-2015.json #### UK Construction (Design and Management) Regulations 2015 (CDM 2015) - **ID**: uk-construction-design-management-regulations-2015-cdm - **Category**: Construction & Real Estate - **Version**: 2.0.0 - **BLUF**: The UK Construction (Design and Management) Regulations 2015 (SI 2015/51) impose health and safety duties on all parties in construction projects - Clients, Principal Designers, Principal Contractors,... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-construction-design-management-regulations-2015-cdm.json #### UK Defective Premises Act 1972: Duty to Build Dwellings Properly and Landlord and Builder Duties of Care - **ID**: uk-defective-premises-act-1972 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Defective Premises Act 1972 imposes statutory duties of care in connection with the construction and condition of dwellings in England and Wales, and is a central route to liability for defective ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-defective-premises-act-1972.json #### UK Housing Act 2004 - HHSRS Standards and HMO Licensing - **ID**: uk-housing-act-2004-hhsrs-hmo - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Housing Act 2004 introduces the Housing Health and Safety Rating System (HHSRS) as the statutory standard for assessing health and safety hazards in residential properties in England and Wales. Lo... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-housing-act-2004-hhsrs-hmo.json #### UK Housing Grants, Construction and Regeneration Act 1996 (Part II): Construction Contract Adjudication and Payment - **ID**: uk-housing-grants-construction-and-regeneration-act-1996 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Part II of the Housing Grants, Construction and Regeneration Act 1996 (commonly the Construction Act) governs construction contracts in the United Kingdom, giving parties a statutory right to adjudica... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-housing-grants-construction-and-regeneration-act-1996.json #### Infrastructure Act 2015 - Road Investment Strategy: Strategic Road Network, Highways England Licence, User Scheme and Cycling Requirements - **ID**: uk-infrastructure-act-2015-roads-investment - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Infrastructure Act 2015 requires the Secretary of State to direct Highways England to prepare and implement a Road Investment Strategy (RIS) for the strategic road network in England, covering per... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-infrastructure-act-2015-roads-investment.json #### UK Landlord and Tenant Act 1985 - Implied Repairing Covenants and Service Charge Restrictions - **ID**: uk-landlord-tenant-act-1985-repairing - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Landlord and Tenant Act 1985 (c.70) implies repairing covenants into residential tenancy agreements under 7 years and restricts service charges in leasehold property. Section 11 implies a landlord... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-landlord-tenant-act-1985-repairing.json #### UK Leasehold and Freehold Reform Act 2024 - Ban on New Leasehold Houses, Lease Extension Reform, and Service Charge Transparency, Royal Assent 24 May 2024 - **ID**: uk-leasehold-and-freehold-reform-act-2024 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Landlords, freeholders, leasehold managers, and developers of residential property in England and Wales must, following the Royal Assent of the Leasehold and Freehold Reform Act 2024 (LFRA 2024, Royal... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-leasehold-and-freehold-reform-act-2024.json #### Planning Act 2008 - **ID**: uk-planning-act-2008-nationally-significant-infrastructure - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The Planning Act 2008 requires developers of Nationally Significant Infrastructure Projects (NSIPs) to obtain a Development Consent Order (DCO) from the Secretary of State, as outlined in Section 114 ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-planning-act-2008-nationally-significant-infrastructure.json #### Town and Country Planning Act 1990 - Development Permission: Planning Applications, Conditions, Enforcement Notices, Listed Building Consent and Development Plan Policies - **ID**: uk-planning-permission-tcpa-1990 - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The Town and Country Planning Act 1990 establishes the legal framework for development control in England and Wales, requiring planning permission for most forms of development under Section 57(1), an... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-planning-permission-tcpa-1990.json #### UK SI 2015/51 - Construction (Design and Management) Regulations 2015 (CDM 2015) - **ID**: uk-si-2015-51-construction-design-management-regulations - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Construction (Design and Management) Regulations 2015 (UK SI 2015/51) implement EU Directive 92/57/EEC on minimum safety and health requirements at temporary or mobile construction sites and place... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-si-2015-51-construction-design-management-regulations.json #### US 12 CFR Part 1024: Real Estate Settlement Procedures Act (Regulation X) - **ID**: us-12-cfr-part-1024-regulation-x-respa - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: US 12 CFR Part 1024 (Regulation X) implements the Real Estate Settlement Procedures Act (RESPA) of 1974 governing residential mortgage loan transactions involving 1-4 family properties. Reg X covers S... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-12-cfr-part-1024-regulation-x-respa.json #### 24 CFR Part 35 - HUD Lead-Based Paint Poisoning Prevention in Certain Residential Structures (Lead Safe Housing Rule) - **ID**: us-24-cfr-part-35-hud-lead-based-paint-poisoning-prevention - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Sellers, lessors, and managers of target housing - any housing constructed prior to 1978 other than the narrow exceptions in 24 CFR 35.110 - must provide each purchaser or lessee with an EPA-approved ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-24-cfr-part-35-hud-lead-based-paint-poisoning-prevention.json #### US 24 CFR Part 982: Section 8 Tenant-Based Assistance Housing Choice Voucher Program - **ID**: us-24-cfr-part-982-section-8-housing-choice-voucher - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: US 24 CFR Part 982 implements the Section 8 Housing Choice Voucher (HCV) program through which Public Housing Agencies (PHAs) assist very low-income families to afford decent safe sanitary housing in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-24-cfr-part-982-section-8-housing-choice-voucher.json #### 40 USC § 3131 - Miller Act (Bonds for Federal Construction Contracts) - **ID**: us-40-usc-3131-miller-act-federal-construction-bonds - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: 40 USC § 3131 (Miller Act, originally enacted in 1935 as the Heard Act successor, Pub. L. 74-321; recodified by Pub. L. 107-217) requires every contractor awarded a federal construction contract excee... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-40-usc-3131-miller-act-federal-construction-bonds.json #### US ADA Standards for Accessible Design 2010 - Architectural and Transportation Barriers Compliance Board (ABA): Space Allowances, Accessible Routes and Facilities - **ID**: us-ada-accessibility-guidelines-2010-aba - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The US ADA Standards for Accessible Design 2010 require that all new construction and alterations of buildings and facilities comply with specific accessibility standards, as outlined in Section 504 o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ada-accessibility-guidelines-2010-aba.json #### US ADA Standards for Accessible Design 2010 - Accessible Routes, Parking, Ramps, Doors, Toilet Rooms, Hearing Loop, Signage and Technical Provisions for Construction Accessibility - **ID**: us-ada-standards-accessible-design-2010 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The 2010 ADA Standards for Accessible Design establish technical and scoping requirements for accessible buildings and facilities, including newly constructed and altered structures, to ensure access ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ada-standards-accessible-design-2010.json #### US CERCLA Brownfields Programme - Contaminated Land Redevelopment: Innocent Landowner Defence, Bona Fide Prospective Purchaser Protections, Assessment and Cleanup Grant Requirements - **ID**: us-cercla-brownfields-construction - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: This regulation enables communities, states, tribes, and other entities to assess, clean up, and sustainably reuse contaminated or potentially contaminated properties through EPA Brownfields grants an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cercla-brownfields-construction.json #### US Clean Water Act - Construction Site Stormwater: NPDES Construction General Permit, SWPPP Requirements, Best Management Practices, Discharge Authorisation and Notice of Termination - **ID**: us-clean-water-act-construction-stormwater - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: This regulation requires operators of construction activities that disturb one acre or more, or part of a larger common plan of development, to obtain an NPDES permit before discharging stormwater. Co... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-water-act-construction-stormwater.json #### Clean Water Act Section 404 - Discharge of Fill Material into Waters: Corps of Engineers Permit Programme, Wetland Delineation and Mitigation Banking - **ID**: us-clean-water-act-section-404-construction - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The US Clean Water Act Section 404 requires that any discharge of fill material into waters of the United States, including wetlands, must obtain a permit from the US Army Corps of Engineers, as state... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-water-act-section-404-construction.json #### Contract Disputes Act of 1978, 41 U.S.C. §§ 7101-7109 - **ID**: us-contract-disputes-act-1978-federal-construction - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The Contract Disputes Act of 1978 governs the resolution of disputes arising under U.S. federal construction contracts, requiring contractors to submit claims exceeding $100,000 in writing to the Cont... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-contract-disputes-act-1978-federal-construction.json #### US Davis-Bacon Act (40 USC ch 31 subch IV): Prevailing Wages on Federal Construction Contracts - **ID**: us-davis-bacon-act - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Davis-Bacon Act (40 U.S.C. ch. 31, subchapter IV, sections 3141 to 3148) requires that laborers and mechanics employed on federal and federally assisted construction contracts be paid no less than... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-davis-bacon-act.json #### Davis-Bacon Act of 1931 - **ID**: us-davis-bacon-act-prevailing-wage-construction - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Davis-Bacon Act requires contractors and subcontractors to pay prevailing wages to laborers and mechanics on federal construction contracts, as stated in 40 U.S.C. §3142. This applies to all contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-davis-bacon-act-prevailing-wage-construction.json #### US ENERGY STAR Portfolio Manager - Commercial Building Energy Benchmarking: 1-100 Score, Median Source EUI, Certification Eligibility, State Benchmarking Law Compliance and Reporting - **ID**: us-energy-star-commercial-buildings-portfolio - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This regulation standard requires commercial building owners and operators to benchmark energy performance using ENERGY STAR Portfolio Manager, enabling comparison to national medians and similar buil... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-energy-star-commercial-buildings-portfolio.json #### 40 CFR Part 763 - Asbestos (AHERA, Worker Protection, and TSCA Prohibitions) - **ID**: us-epa-40-cfr-763-asbestos-ahera - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 763 implements the asbestos provisions of the Toxic Substances Control Act, including the Asbestos Hazard Emergency Response Act (AHERA) requirements for local education agencies to in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-763-asbestos-ahera.json #### US Fair Housing Act (42 USC ch 45): Prohibition of Housing Discrimination - **ID**: us-fair-housing-act - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Fair Housing Act (42 U.S.C. ch. 45, subchapter I) prohibits discrimination in housing and residential real estate transactions, administered by the Department of Housing and Urban Development with... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fair-housing-act.json #### United States Fair Housing Act, Title VIII of the Civil Rights Act of 1968 (Title 42 USC Chapter 45): Declaration of Policy, Definitions, Discrimination in Sale or Rental of Housing, Discrimination in Residential Real Estate Transactions, Discrimination in Provision of Brokerage Services, HUD Administration, Enforcement by Private Persons, and Enforcement by the Attorney General - **ID**: us-fair-housing-act-42-usc-ch45 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Fair Housing Act, Title VIII of the Civil Rights Act of 1968 (Public Law 90-284), codified at Title 42 of the United States Code, Chapter 45, is the principal federal statute prohibiting discrimin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fair-housing-act-42-usc-ch45.json #### US HUD Fair Housing Act 1968 - Prohibited Discrimination, Affirmatively Furthering Fair Housing and Enforcement - **ID**: us-hud-fair-housing-act-1968-enforcement - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Fair Housing Act (FHA, Title VIII of the Civil Rights Act of 1968, 42 U.S.C. Sections 3601-3619) enforced by the US Department of Housing and Urban Development (HUD) Office of Fair Housing and Equ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hud-fair-housing-act-1968-enforcement.json #### Infrastructure Investment and Jobs Act of 2021 (IIJA, Pub.L. 117-58) - $1.2 Trillion Bipartisan Infrastructure Law: Buy American Domestic Content Requirements, Davis-Bacon Prevailing Wage, $65B Broadband, $66B Rail, $55B Water, $47.2B Resilience, and Federal Grant Compliance Framework - **ID**: us-infrastructure-investment-jobs-act-2021 - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The Infrastructure Investment and Jobs Act (IIJA, Bipartisan Infrastructure Law, Pub.L. 117-58, enacted 15 November 2021) provides $1.2 trillion in total infrastructure investment ($550 billion in new... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-infrastructure-investment-jobs-act-2021.json #### US Interstate Land Sales Full Disclosure Act (15 USC ch 42): Subdivision Registration, Disclosure and Penalties - **ID**: us-interstate-land-sales-full-disclosure-act - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Interstate Land Sales Full Disclosure Act (15 U.S.C. ch. 42) protects purchasers of subdivided land by requiring registration and disclosure for covered interstate land sales, administered by the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-interstate-land-sales-full-disclosure-act.json #### Lead Renovation, Repair and Painting Rule (40 CFR Part 745, Subpart E) - Requirements for Firms, Renovators, and Dust Sampling Technicians in Target Housing and Child-Occupied Facilities - **ID**: us-lead-paint-renovation-epa-40-cfr-745 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The EPA's Lead Renovation, Repair and Painting Rule (40 CFR Part 745, Subpart E) requires that all renovation, repair, and painting activities disturbing lead-based paint in pre-1978 housing and child... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-lead-paint-renovation-epa-40-cfr-745.json #### LEED Arc Performance Platform - Ongoing Building Performance Measurement: Energy, Water, Waste, Transport, Human Experience Data Scoring and Re-Certification Requirements - **ID**: us-leed-arc-performance-platform-construction - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This regulation requires building operators to measure, score, and report operational performance across energy, water, waste, transportation, and human experience using the Arc platform to support LE... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-leed-arc-performance-platform-construction.json #### US Manufactured Housing Construction and Safety Standards Act (42 USC ch 70): Federal HUD Code and Penalties - **ID**: us-manufactured-housing-construction-and-safety-standards-act - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The National Manufactured Housing Construction and Safety Standards Act of 1974 (42 U.S.C. ch. 70) establishes federal construction and safety standards for manufactured homes, administered by the Dep... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-manufactured-housing-construction-and-safety-standards-act.json #### Miller Act of 1935 (40 U.S.C. §§3131-3134) - Mandatory Payment and Performance Bonds on Federal Construction Contracts Above $150,000 - **ID**: us-miller-act-1935-payment-performance-bonds - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The Miller Act of 1935 requires contractors to provide payment and performance bonds for federal construction contracts exceeding $150,000, as stated in 40 U.S.C. §3131. This applies to all contractor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-miller-act-1935-payment-performance-bonds.json #### National Environmental Policy Act of 1969, as amended (42 U.S.C. § 4321 et seq.) - **ID**: us-nepa-1970-environmental-impact-assessment - **Category**: Construction & Real Estate - **Version**: 1.0.1 - **BLUF**: The National Environmental Policy Act (NEPA) of 1969 requires federal agencies to prepare an Environmental Impact Statement (EIS) for major federal actions that significantly affect the environment, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nepa-1970-environmental-impact-assessment.json #### US OSHA 29 CFR Part 1926 - Construction Industry Safety Standards: Falls, Electrical & PPE - **ID**: us-osha-29-cfr-1926-construction-safety-fall-hazard-electrical - **Category**: Construction & Real Estate - **Version**: 2.0 - **BLUF**: 29 CFR Part 1926 establishes OSHA's comprehensive construction industry safety standards - covering fall protection (leading cause of construction fatalities), electrical safety, scaffolding, personal... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-osha-29-cfr-1926-construction-safety-fall-hazard-electrical.json #### 29 CFR Part 1926 - Safety and Health Regulations for Construction - **ID**: us-osha-cfr-29-part-1926-construction-safety-standards - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: Organizations must implement and maintain comprehensive safety and health programs for construction work, covering general provisions, training, first aid, fire protection, personal protective equipme... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-osha-cfr-29-part-1926-construction-safety-standards.json #### US OSHA Construction Safety Standards 29 CFR Part 1926 - Fall Protection, Scaffolding, Excavations, Electrical, Cranes, Personal Protective Equipment and Hazard Communication - **ID**: us-osha-construction-safety-29-cfr-1926 - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: This regulation establishes safety and health standards for construction work under the Occupational Safety and Health Act, applying to all employers and employees engaged in construction activities. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-osha-construction-safety-29-cfr-1926.json #### US Real Estate Settlement Procedures Act (12 USC ch 27): Settlement Disclosures and Kickback Prohibition - **ID**: us-real-estate-settlement-procedures-act - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The Real Estate Settlement Procedures Act (12 U.S.C. ch. 27) governs the settlement process for federally related mortgage loans, requiring disclosure of settlement costs and prohibiting practices tha... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-real-estate-settlement-procedures-act.json #### USA IECC 2021 - International Energy Conservation Code for Commercial and Residential Buildings - **ID**: usa-iecc-2021-international-energy-conservation-code - **Category**: Construction & Real Estate - **Version**: 1.0.0 - **BLUF**: The International Energy Conservation Code (IECC) 2021, published by the International Code Council (ICC), establishes minimum energy efficiency requirements for residential (IRC Chapter 11 equivalent... - **Discovery URL**: https://bidda.com/api/v1/nodes/usa-iecc-2021-international-energy-conservation-code.json ### Creative, Content & Media IP (110 nodes) #### Australia Broadcasting Services Act 1992: Categories of Broadcasting Services, Planning of the Broadcasting Services Bands, Commercial Television and Radio Licences, Control Rules, and Community Broadcasting - **ID**: au-broadcasting-services-act-1992 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Australian Broadcasting Services Act 1992, Act No. 110 of 1992, is the principal Commonwealth statute governing the regulation of broadcasting services in Australia and is administered by the Aust... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-broadcasting-services-act-1992.json #### Australia Copyright Act 1968 - Digital Amendments: Safe Harbour Scheme Extension (2018), Online Blocking Injunctions, Text and Data Mining Exception, Educational Statutory Licence Digital Delivery, Retransmission and Technological Measures Protection - **ID**: australia-copyright-act-1968-digital-amendments - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This regulation amends the Copyright Act 1968 to extend the safe harbour scheme to carriage service providers, enable online copyright infringement blocking injunctions, introduce exceptions for text ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-copyright-act-1968-digital-amendments.json #### News Media and Digital Platforms Mandatory Bargaining Code 2021 - **ID**: australia-news-media-bargaining-code-2021 - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: The Code requires designated digital platforms to negotiate in good faith with Australian news businesses for payment for the inclusion of news content on their platforms, or face compulsory arbitrati... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-news-media-bargaining-code-2021.json #### Berne Convention for the Protection of Literary and Artistic Works (as amended up to the Paris Act of 1971 and incorporating subsequent developments through 2024) - **ID**: berne-convention-1886-2024-literary-artistic-works - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Berne Convention mandates automatic protection of literary and artistic works upon creation, without formalities, and grants national treatment to foreign authors from member states. It establishe... - **Discovery URL**: https://bidda.com/api/v1/nodes/berne-convention-1886-2024-literary-artistic-works.json #### C2PA (Provenance) - **ID**: c2pa-content-provenance - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Compliance with this node mandates the immutable attachment of a C2PA manifest to all digital assets, establishing verifiable provenance and aligning with transparency obligations for AI-generated con... - **Discovery URL**: https://bidda.com/api/v1/nodes/c2pa-content-provenance.json #### Canada Broadcasting Act 2023 Online Streaming - **ID**: ca-broadcasting-act-2023-online-streaming - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Online Streaming Act (S.C. 2023, c. 8), in force 27 April 2023, amends the Broadcasting Act (S.C. 1991, c. 11) to bring online streaming services directed at Canadians within CRTC jurisdiction, re... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-broadcasting-act-2023-online-streaming.json #### Canada Copyright Act 1985 - **ID**: ca-copyright-act-1985 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Copyright Act (R.S.C. 1985, c. C-42), last significantly amended by the Copyright Modernization Act 2012 and the Budget Implementation Act 2022, protects the original expression of literary, artis... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-copyright-act-1985.json #### Canada Broadcasting Act (S.C. 1991, c. 11): Canadian Broadcasting Policy, CRTC Objects and Licensing, Regulations and Fees, Broadcasting Contrary to Act, and Continuation of the CBC - **ID**: canada-broadcasting-act-1991 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Canada Broadcasting Act, S.C. 1991, c. 11, is the principal Canadian statute governing the Canadian broadcasting system and is administered by the Canadian Radio-television and Telecommunications ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-broadcasting-act-1991.json #### Canada Broadcasting Act (as amended by the Online Streaming Act): Online Undertakings, Canadian Content and Discoverability - **ID**: canada-broadcasting-act-online-streaming - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Broadcasting Act (S.C. 1991, c. 11), as substantially amended by the Online Streaming Act (S.C. 2023, c. 8), governs the Canadian broadcasting system and, following the 2023 amendments, brings onl... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-broadcasting-act-online-streaming.json #### Copyright Modernization Act: Internet Service Provider Safe Harbours, Notice-and-Notice Regime, Technological Protection Measures, New Fair Dealing Categories (Education, Parody, Satire) and Private Copying Exemption - **ID**: canada-copyright-act-2012-digital-amendments - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This regulation establishes a notice-and-notice regime for Internet Service Providers (ISPs) regarding alleged copyright infringement, provides safe harbours for ISPs, prohibits circumvention of techn... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-copyright-act-2012-digital-amendments.json #### Canada Trademarks Act: Registrability, Confusion, Exclusive Rights and Infringement - **ID**: canada-trademarks-act - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Trademarks Act (R.S.C. 1985, c. T-13) governs the registration and protection of trademarks in Canada, administered by the Canadian Intellectual Property Office (CIPO) and the Registrar of Tradema... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-trademarks-act.json #### Amendment to the Copyright Law of the People's Republic of China (2021) - **ID**: china-copyright-law-2021-amendment - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: The 2021 amendment to China's Copyright Law strengthens protection for digital and AI-generated works, increases statutory damages from 500,000 RMB to 5 million RMB, introduces punitive damages up to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-copyright-law-2021-amendment.json #### Fair Use (U.S. Copyright) - **ID**: copyright-fair-use-us - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: A proposed use of copyrighted material under these parameters presents a compelling case for the fair use affirmative defense, as delineated within 17 U.S.C. § 107, thereby not requiring mandatory leg... - **Discovery URL**: https://bidda.com/api/v1/nodes/copyright-fair-use-us.json #### DICOM (Medical Imaging) - **ID**: dicom-medical-imaging - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Compliance with the ISO 12052:2017 standard for medical imaging necessitates a robust security posture, mandating specific technical controls for handling DICOM objects. This configuration enforces se... - **Discovery URL**: https://bidda.com/api/v1/nodes/dicom-medical-imaging.json #### DMCA (Safe Harbor) - **ID**: dmca-safe-harbor - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Qualification for liability limitations under the Digital Millennium Copyright Act safe harbor for information residing on systems at the direction of users necessitates strict adherence to several st... - **Discovery URL**: https://bidda.com/api/v1/nodes/dmca-safe-harbor.json #### DOI (Object ID) - **ID**: doi-digital-object-id - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Digital Object Identifier (DOI) validation enforces strict adherence to international standards for persistent and actionable identification of digital assets. Compliance with ISO 26324:2012 is mandat... - **Discovery URL**: https://bidda.com/api/v1/nodes/doi-digital-object-id.json #### EBU R128 (Loudness) - **ID**: ebu-r128-audio-loudness - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: Compliance with the EBU R 128 recommendation mandates rigorous audio loudness normalization to ensure content uniformity across broadcast platforms. The primary objective is achieving a Target Program... - **Discovery URL**: https://bidda.com/api/v1/nodes/ebu-r128-audio-loudness.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 February 2024 on harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 53: Transparency obligations for general-purpose AI models - **ID**: eu-ai-act-article-53-general-purpose-ai-transparency - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: Article 53 of the EU AI Act requires providers of general-purpose AI (GPAI) models to publish detailed summaries of training data, comply with EU copyright law, respect opt-out signals from rights hol... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-53-general-purpose-ai-transparency.json #### Directive (EU) 2018/1808 of the European Parliament and of the Council of 14 November 2018 amending Directive 2010/13/EU on the coordination of certain provisions laid down by law, regulation or administrative action in Member States concerning the provision of audiovisual media services (Audiovisual Media Services Directive) - **ID**: eu-audiovisual-media-services-directive-2018-1808 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The EU Audiovisual Media Services Directive 2018/1808 imposes obligations on video-on-demand (VOD) providers and video sharing platforms (VSPs) to protect minors from harmful content, ensure transpare... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-audiovisual-media-services-directive-2018-1808.json #### Directive (EU) 2018/1808 Article 6a - Protection of Minors from Harmful Audiovisual Content - **ID**: eu-avmsd-2018-1808-article-6a-minors-protection - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: Article 6a of the amended Audiovisual Media Services Directive (Directive 2010/13/EU as amended by Directive (EU) 2018/1808) requires EU Member States to ensure audiovisual media services that may imp... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-avmsd-2018-1808-article-6a-minors-protection.json #### Directive (EU) 2019/790 of the European Parliament and of the Council on Copyright and Related Rights in the Digital Single Market, Article 17 - Obligations for Online Content Sharing Service Providers - **ID**: eu-copyright-article-17-upload-filters-implementation - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: Online Content Sharing Service Providers (OCSSPs) must make best efforts to obtain authorisation from rightsholders and prevent the availability of unauthorised content on their platforms, including t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-copyright-article-17-upload-filters-implementation.json #### Directive 2014/26/EU of the European Parliament and of the Council of 26 February 2014 on collective management of copyright and related rights and multi-territorial licensing of rights in musical works for online use in the internal market - **ID**: eu-copyright-collective-management-directive-2014-26 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: This directive establishes binding governance, transparency, and financial management standards for Collective Management Organizations (CMOs) in the EU, mandates multi-territorial licensing for onlin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-copyright-collective-management-directive-2014-26.json #### EU Digital Single Market Copyright Directive 2019/790 -- Online Platform Obligations and Creator Rights - **ID**: eu-copyright-directive-2019-790 - **Category**: Creative, Content & Media IP - **Version**: 2024.1.0 - **BLUF**: Directive (EU) 2019/790 (DSM Copyright Directive) modernises EU copyright law for the digital environment. Member States were required to implement it by 7 June 2021. Article 3 introduces a mandatory ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-copyright-directive-2019-790.json #### EU Copyright (Art 17) - **ID**: eu-copyright-directive-art-17 - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Article 17 of Directive (EU) 2019/790 establishes a specific liability regime for platforms classified as Online Content-Sharing Service Providers (OCSSPs), which perform an act of communication to th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-copyright-directive-art-17.json #### Directive 2011/77/EU of the European Parliament and of the Council of 25 October 2011 amending Directive 2006/116/EC on the term of protection of copyright and certain related rights - **ID**: eu-copyright-term-directive-2011-77-eu - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: Extends the term of protection for phonogram producers and performers from 50 to 70 years from first publication or performance. Requires member states to ensure session musicians receive equitable re... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-copyright-term-directive-2011-77-eu.json #### Directive (EU) 2019/790 of the European Parliament and of the Council of 17 April 2019 on copyright and related rights in the Digital Single Market and amending Directives 96/9/EC and 2001/29/EC - Articles 3 and 4: Text and Data Mining Exceptions - **ID**: eu-copyright-text-data-mining-article-3-4-dsmcd - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: Articles 3 and 4 of the EU Copyright Directive (DSMCD) establish a mandatory exception to copyright for text and data mining (TDM) by research organisations for scientific research (Article 3), and a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-copyright-text-data-mining-article-3-4-dsmcd.json #### EU Digital Services Act 2022/2065 - Illegal Content Notice-and-Action, Transparency & VLOP Obligations - **ID**: eu-digital-services-act-2022-2065-illegal-content-notice-action - **Category**: Creative, Content & Media IP - **Version**: 2.0 - **BLUF**: EU DSA Regulation 2022/2065 imposes tiered obligations on digital service providers - all providers must handle illegal content notices expeditiously; Very Large Online Platforms (VLOPs) with 45M+ EU ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-services-act-2022-2065-illegal-content-notice-action.json #### Regulation (EU) 2017/1128 of the European Parliament and of the Council of 14 June 2017 on cross-border portability of online content services in the internal market - **ID**: eu-digital-single-market-copyright-cross-border-portability - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: Online content service providers must enable subscribers to access their subscribed content when temporarily present in another EU Member State. This obligation applies to both audiovisual and audio c... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-single-market-copyright-cross-border-portability.json #### Regulation (EU) 2022/2065 of the European Parliament and of the Council of 19 October 2022 on a Single Market For Digital Services and Amending Directive 2000/31/EC (Digital Services Act) - **ID**: eu-dsa-illegal-content-trusted-flaggers - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: Online platforms must establish a transparent, accessible notice and action mechanism for reporting illegal content under Article 16, prioritize notices from trusted flaggers designated under Article ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dsa-illegal-content-trusted-flaggers.json #### Regulation (EU) 2018/302 of the European Parliament and of the Council of 28 February 2018 on addressing unjustified geo-blocking and other forms of discrimination based on customers’ nationality, place of residence or place of establishment within the internal market, and on amending Regulations (EC) No 2006/2004 and (EU) 2017/2394 and Directive 2009/22/EC - 2023 Review: Audiovisual Services Exclusion Assessment, Electronically Supplied Services Passive Sale Rules, Price Transparency, Prohibited Country Discrimination and Recommendations for Copyright Licensing Reforms - **ID**: eu-geo-blocking-regulation-review-2023 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The EU Geo-Blocking Regulation 2018/302 prohibits unjustified discrimination against customers based on nationality, residence, or establishment when accessing or purchasing goods and services, includ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-geo-blocking-regulation-review-2023.json #### Regulation (EU) 2024/1083 of the European Parliament and of the Council of 14 May 2024 on the protection, safety and independence of the media and journalists, and on media pluralism and transparency of media ownership - **ID**: eu-media-freedom-act-2024 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The EU Media Freedom Act 2024 establishes binding safeguards for media independence, including transparency of state advertising, protection of editorial independence, mandatory media pluralism monito... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-media-freedom-act-2024.json #### EU Audiovisual Media Services Directive 2018/1808 -- Streaming Quotas, VSP Obligations, and Broadcaster Rules - **ID**: eu-media-services-directive-2018-1808 - **Category**: Creative, Content & Media IP - **Version**: 2024.1.0 - **BLUF**: Directive (EU) 2018/1808 (AVMSD) amends Directive 2010/13/EU and modernises EU audiovisual regulation for streaming, on-demand, and video-sharing platforms. Member States were required to transpose AV... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-media-services-directive-2018-1808.json #### Directive 2012/28/EU of the European Parliament and of the Council of 25 October 2012 on certain permitted uses of orphan works - **ID**: eu-orphan-works-directive-2012-28-eu - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: Requires cultural heritage institutions to conduct a 'diligent search' in accordance with Article 3 to determine if a work's rightholder is unlocatable before digitizing and making it available online... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-orphan-works-directive-2012-28-eu.json #### Directive (EU) 2019/790 of the European Parliament and of the Council of 17 April 2019 on copyright and related rights in the Digital Single Market and amending Directives 96/9/EC and 2001/29/EC - Article 15: Use of Protected Press Publications by Online Service Providers - **ID**: eu-press-publishers-right-directive-article-15 - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: Article 15 of the EU Copyright Directive grants press publishers a two-year neighbouring right to authorize or prohibit online use of their press publications by information society service providers ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-press-publishers-right-directive-article-15.json #### Directive 2006/115/EC of the European Parliament and of the Council of 12 December 2006 on the rental and lending right and on certain rights related to copyright in the field of intellectual property - **ID**: eu-rental-lending-directive-2006-115-ec - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: This directive grants authors and performers exclusive rights to authorize or prohibit the rental and lending of their works and phonograms. It mandates equitable remuneration for lending of phonogram... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-rental-lending-directive-2006-115-ec.json #### Directive 2001/84/EC of the European Parliament and of the Council of 27 September 2001 on the resale right for the benefit of the author of an original work of art - **ID**: eu-resale-right-directive-2001-84-droit-de-suite - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: Establishes a mandatory droit de suite, allowing visual artists or their heirs to receive a royalty on the resale of original works of art when the sale is conducted by a professional art market actor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-resale-right-directive-2001-84-droit-de-suite.json #### Council Directive 93/83/EEC of 27 September 1993 on the coordination of certain rules concerning copyright and rights related to copyright applicable to satellite broadcasting and cable retransmission - **ID**: eu-satellite-cable-directive-1993-83-ec - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This directive establishes the 'country of origin' principle for satellite broadcasting, meaning that authorization for transmission is governed solely by the law of the Member State from which the br... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-satellite-cable-directive-1993-83-ec.json #### EU Sports Data Rights and Audiovisual Transmission 2024 - Clip Rights, Venue Operator Restrictions, Short News Reporting Exceptions and OTT Licensing - **ID**: eu-sports-data-rights-framework-media-2024 - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This regulation establishes exclusive rights for sports event organizers over real-time data and audiovisual content captured at venues, restricts venue operators from granting third-party transmissio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sports-data-rights-framework-media-2024.json #### EXIF Standard (Metadata) - **ID**: exif-standard-metadata - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Compliance with the Exchangeable image file format standard is rigorously enforced to ensure data integrity and interoperability for all digital still-camera image assets. This validation mandates str... - **Discovery URL**: https://bidda.com/api/v1/nodes/exif-standard-metadata.json #### Hague System (Designs) - **ID**: hague-system-designs - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: Compliance with the Hague System for international design registration necessitates strict adherence to the Geneva Act of the Hague Agreement (1999), mandating the filing of a WIPO international appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-system-designs.json #### ICC Model Contracts for Advertising and Marketing Communications 2022 - Creative Agency/Client Agreement - **ID**: icc-model-contract-creative-agency-client-2022 - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This ICC model contract governs intellectual property assignment, usage rights duration, territory, approval workflows, talent residuals, confidentiality, and termination in creative agency-client rel... - **Discovery URL**: https://bidda.com/api/v1/nodes/icc-model-contract-creative-agency-client-2022.json #### IFRS 3 Business Combinations - Media Content Rights Recognition: Identifiable Intangible Assets (Film Libraries, Music Catalogues, Broadcasting Licences), Fair Value Measurement, Amortisation under IAS 38, Impairment Testing and Disclosure Requirements - **ID**: ifrs-3-intangible-assets-media-content-rights - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: IFRS 3 requires an acquirer in a business combination to recognise and measure identifiable intangible assets such as media content rights (e.g., film libraries, music catalogues, broadcasting licence... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-3-intangible-assets-media-content-rights.json #### The Copyright Act, 1957 (as amended by the Copyright (Amendment) Act, 2012) - **ID**: india-copyright-act-1957-amendment-2012 - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: The 2012 amendment to India's Copyright Act establishes unwaivable royalty rights for authors and performers, grants broadcast reproduction rights, defines ISP safe harbors under Section 79 of the IT ... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-copyright-act-1957-amendment-2012.json #### IPTC Photo Metadata - **ID**: iptc-photo-metadata - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Verification of IPTC photo metadata ensures digital assets comply with international intellectual property conventions and mitigate significant legal risks. This compliance framework mandates that spe... - **Discovery URL**: https://bidda.com/api/v1/nodes/iptc-photo-metadata.json #### IPTC Video Meta - **ID**: iptc-video-metadata - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: Regulatory compliance for video assets under this control requires stringent adherence to established IPTC metadata protocols and digital rights frameworks. Each asset is mandated to contain a complet... - **Discovery URL**: https://bidda.com/api/v1/nodes/iptc-video-metadata.json #### ISAN (Audiovisual) - **ID**: isan-audiovisual-number - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: Compliance with this node dictates that all qualifying `is_audiovisual_content` must be uniquely identified with a valid International Standard Audiovisual Number. As stipulated by governing internati... - **Discovery URL**: https://bidda.com/api/v1/nodes/isan-audiovisual-number.json #### ISBN (Book Standard) - **ID**: isbn-book-standard - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Compliance with the International Standard Book Number (ISBN) system mandates a multi-faceted validation process to ensure data integrity and interoperability across the global publishing supply chain... - **Discovery URL**: https://bidda.com/api/v1/nodes/isbn-book-standard.json #### ISO 12639 (TIFF/IT) - **ID**: iso-12639-tiff-it - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Compliance with ISO 12639, governing the Tag Image File Format for Image Technology (TIFF/IT), mandates strict adherence to a specific set of structural and content-based rules for digital graphic art... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-12639-tiff-it.json #### ISO 14721 (OAIS) - **ID**: iso-14721-oais-archival - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: Compliance with the ISO 14721 reference model mandates the establishment of a comprehensive framework for long-term digital preservation and access. An organization must first fulfill the `requiresDes... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14721-oais-archival.json #### ISO 15930 (PDF/X) - **ID**: iso-15930-pdf-x - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: ISO 15930 establishes the compliance framework for graphic content exchange, ensuring predictable and reliable print reproduction. Conformance mandates that documents explicitly declare their status v... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-15930-pdf-x.json #### ISO 16363 (Trust Repo) - **ID**: iso-16363-trusted-digital-repo - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Adherence to ISO 16363 certifies a digital repository’s trustworthiness across its organizational infrastructure, digital object management, and technology frameworks. The audited entity demonstrates ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-16363-trusted-digital-repo.json #### ISO 16684 (XMP) - **ID**: iso-16684-xmp-metadata - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: ISO 16684 establishes the framework for embedding extensible metadata within digital assets using the Extensible Metadata Platform (XMP) specification. Compliance mandates a strict structural and sema... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-16684-xmp-metadata.json #### ISRC (Recording Code) - **ID**: isrc-recording-code - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: International Standard Recording Code (ISRC) compliance necessitates rigorous validation against its established global standard for identifying sound recordings and music videos. For accurate automat... - **Discovery URL**: https://bidda.com/api/v1/nodes/isrc-recording-code.json #### ISSN (Serial Standard) - **ID**: issn-serial-standard - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: International Standard Serial Number (ISSN) compliance mandates stringent data integrity and structural validation for all applicable serial publications. A designated 'issn' field must be present and... - **Discovery URL**: https://bidda.com/api/v1/nodes/issn-serial-standard.json #### ITU-R BT.2020 (UHD) - **ID**: itu-r-bt-2020-uhdtv - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: Regulatory conformance with the ITU-R BT.2020 standard for Ultra High Definition (UHD) video mandates strict adherence to a comprehensive set of technical specifications. An asset’s spatial resolution... - **Discovery URL**: https://bidda.com/api/v1/nodes/itu-r-bt-2020-uhdtv.json #### ITU-R BT.709 (HDTV) - **ID**: itu-r-bt-709-hdtv - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Compliance with the foundational ITU-R Recommendation BT.709 mandates strict adherence to several key colorimetry and signal format parameters for high-definition television systems. Verification proc... - **Discovery URL**: https://bidda.com/api/v1/nodes/itu-r-bt-709-hdtv.json #### Copyright Act of Japan - Amendment Relating to Text and Data Mining for Artificial Intelligence Development (Act No. 57 of 2023), Article 30-4 - **ID**: japan-copyright-act-2023-ai-amendment - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: The Japan Copyright Act 2023 AI Amendment (Article 30-4) permits text and data mining (TDM) of copyrighted works for AI training without rights holder permission, provided the use is for non-enjoyment... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-copyright-act-2023-ai-amendment.json #### Marrakesh Treaty to Facilitate Access to Published Works for Persons Who Are Blind, Visually Impaired or Otherwise Print Disabled (2013) - **ID**: marrakesh-treaty-2013-print-disabilities - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: The Marrakesh Treaty requires contracting parties to implement limitations and exceptions in copyright law to permit the creation and cross-border exchange of accessible format copies of published wor... - **Discovery URL**: https://bidda.com/api/v1/nodes/marrakesh-treaty-2013-print-disabilities.json #### Copyright Act 1987 (Chapter 63) - Modernised Provisions on Permitted Uses, Rights in User-Generated Content, and Assignment of Rights (as amended by Act 27 of 2021) - **ID**: singapore-copyright-act-2021-creator-rights - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Singapore Copyright Act 2021 grants creators exclusive rights over their works while permitting certain uses for data analytics, text and data mining, and user-generated content under specific con... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-copyright-act-2021-creator-rights.json #### Content Code for Over-the-Top (OTT) Video Services - **ID**: singapore-media-development-authority-content-code - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: This regulation establishes age classification (G/PG/PG13/NC16/M18/R21) and content standards for violence, sex, and racial/religious sensitivity for OTT video services in Singapore. It applies to pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-media-development-authority-content-code.json #### SMPTE ST 2110 - **ID**: smpte-st-2110-media - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: Compliance with the SMPTE ST 2110 suite of standards for professional media over managed IP networks mandates a stringent set of technical and operational configurations. Foundational specifications d... - **Discovery URL**: https://bidda.com/api/v1/nodes/smpte-st-2110-media.json #### Agreement on Trade-Related Aspects of Intellectual Property Rights (TRIPS), Part II - Standards Concerning the Availability, Scope and Use of Intellectual Property Rights - **ID**: trips-agreement-wto-copyright-patents-ip-1994 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The TRIPS Agreement establishes minimum standards for copyright, patents, trademarks, and related intellectual property rights that all WTO member states must implement in their national laws. Key obl... - **Discovery URL**: https://bidda.com/api/v1/nodes/trips-agreement-wto-copyright-patents-ip-1994.json #### UK ASA Influencer Marketing Guide (Third Edition, March 2023) - **ID**: uk-asa-influencer-marketing-guide-2023 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The UK Advertising Standards Authority (ASA) and Committee of Advertising Practice (CAP) Influencer Marketing Guide (Third Edition, March 2023) applies the CAP Code to influencer marketing content on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-asa-influencer-marketing-guide-2023.json #### UK Broadcasting Act 1990 (Part I): Licensing of Independent Television, Programme Standards and Sanctions - **ID**: uk-broadcasting-act-1990 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Broadcasting Act 1990 reformed the regulation of independent (commercial) television and radio in the United Kingdom, introducing competitive licensing and a statutory regime of programme standard... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-broadcasting-act-1990.json #### UK Broadcasting Act 1996: Digital Broadcasting Multiplexes, Listed Events and Standards - **ID**: uk-broadcasting-act-1996 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Broadcasting Act 1996 introduced the framework for digital terrestrial broadcasting in the United Kingdom and the protection of nationally important sporting and other events on free-to-air televi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-broadcasting-act-1996.json #### Broadcasting Act 1996 - Digital Terrestrial Television Licensing, Regional Licence Conditions, Ownership Rules, Content Standards (Fairness, Privacy, Due Impartiality), OFCOM Enforcement and Sanctions including Broadcast Licence Revocation - **ID**: uk-broadcasting-act-1996-spectrum-content - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: This regulation establishes the legal framework for digital terrestrial television broadcasting in the UK, including licensing of multiplex and digital programme services, ownership restrictions, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-broadcasting-act-1996-spectrum-content.json #### UK Copyright, Designs and Patents Act 1988: Subsistence, Restricted Acts and Permitted Acts - **ID**: uk-copyright-designs-and-patents-act-1988-copyright - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Copyright, Designs and Patents Act 1988 (c. 48) is the principal UK statute governing copyright, administered through the courts with policy oversight by the Intellectual Property Office (IPO). Se... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-copyright-designs-and-patents-act-1988-copyright.json #### UK Copyright, Designs and Patents Act 1988 -- Copyright Duration, Permitted Acts, and Design Rights - **ID**: uk-copyright-designs-patents-act-1988 - **Category**: Creative, Content & Media IP - **Version**: 2024.1.0 - **BLUF**: The Copyright, Designs and Patents Act 1988 (CDPA) is the primary UK statute governing copyright, design rights, and performers' rights. Copyright subsists automatically without registration in origin... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-copyright-designs-patents-act-1988.json #### Online Safety Act 2023 - Regulation of User-Generated Content Services and Safety Duties for Providers - **ID**: uk-online-safety-act-2023-content-regulation - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Online Safety Act 2023 imposes mandatory safety duties on providers of user-generated content (UGC) services in the UK to prevent and mitigate the spread of priority illegal content, including ter... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-content-regulation.json #### UK Online Safety Act 2023 - Ofcom Illegal Harms & Children's Safety Duties - **ID**: uk-online-safety-act-2023-ofcom-illegal-harmful-content - **Category**: Creative, Content & Media IP - **Version**: 2.0 - **BLUF**: UK Online Safety Act 2023 imposes safety duties on user-to-user services and search engines to identify, mitigate, and manage risks of illegal content and harms to children - enforced by Ofcom with fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-ofcom-illegal-harmful-content.json #### Copyright, Designs and Patents Act 1988, Part II: Rights in Performances - **ID**: uk-performers-rights-cdpa-1988-part-ii - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This regulation establishes economic and moral rights for performers and persons with recording rights in live performances, requiring consent for exploitation under sections 181 to 184 and protection... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-performers-rights-cdpa-1988-part-ii.json #### UK Trade Marks Act 1994: Registrability, Rights, Duration, Revocation and Remedies - **ID**: uk-trade-marks-act-1994 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Trade Marks Act 1994 (c. 26) is the principal UK statute governing registered trade marks, administered by the Intellectual Property Office (IPO). Section 1 defines a trade mark as any sign capabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-trade-marks-act-1994.json #### UK Video Recordings Act 1984: Classification of Video Works and Supply Offences - **ID**: uk-video-recordings-act-1984 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Video Recordings Act 1984 establishes the system for the classification of video works supplied in the United Kingdom and the offences relating to their supply, with classification carried out by ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-video-recordings-act-1984.json #### UNESCO Cultural Diversity - **ID**: unesco-cultural-diversity - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Adherence to the UNESCO framework for cultural diversity mandates a multifaceted compliance posture for all digital platforms. This requires the establishment and public disclosure of a formal cultura... - **Discovery URL**: https://bidda.com/api/v1/nodes/unesco-cultural-diversity.json #### UNESCO Convention for the Safeguarding of Intangible Cultural Heritage 2003 - Representative and Urgent Safeguarding Lists - **ID**: unesco-intangible-cultural-heritage-2003 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Convention for the Safeguarding of the Intangible Cultural Heritage was adopted by UNESCO General Conference on 17 October 2003 and entered into force on 20 April 2006. The Convention complements ... - **Discovery URL**: https://bidda.com/api/v1/nodes/unesco-intangible-cultural-heritage-2003.json #### 17 U.S.C. § 1201 - DMCA Anti-Circumvention of Copyright Protection Systems - **ID**: us-17-usc-1201-dmca-anti-circumvention-of-copyright-protection-systems - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: No person may circumvent a technological measure that effectively controls access to a work protected under the Copyright Act, and no person may manufacture, import, offer to the public, provide, or o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-17-usc-1201-dmca-anti-circumvention-of-copyright-protection-systems.json #### US 47 CFR Part 73: Radio Broadcast Services - **ID**: us-47-cfr-part-73-fcc-radio-broadcast-services - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: US 47 CFR Part 73 governs licensing operation and technical standards for AM FM and TV broadcast stations licensed by the FCC. Subparts cover AM (Subpart A) FM (Subpart B) noncommercial educational FM... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-47-cfr-part-73-fcc-radio-broadcast-services.json #### US 47 CFR Part 76: Multichannel Video and Cable Television Service - **ID**: us-47-cfr-part-76-fcc-cable-television-multichannel-video - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: US 47 CFR Part 76 governs cable television and multichannel video programming distributors (MVPDs) under FCC jurisdiction. Subparts cover cable system registration (Subpart A) signal carriage (must-ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-47-cfr-part-76-fcc-cable-television-multichannel-video.json #### Digital Audio Recording Devices and Media - **ID**: us-audio-home-recording-act-1992-ahra - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Audio Home Recording Act of 1992 establishes requirements for digital audio recording devices and media, including implementation of the Serial Copy Management System (SCMS) to prevent unauthorize... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-audio-home-recording-act-1992-ahra.json #### US Communications Decency Act Section 230 (47 USC 230): Platform Liability Shield and Good Samaritan Moderation - **ID**: us-communications-decency-act-section-230 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: Section 230 of the Communications Act (47 U.S.C. 230), enacted as part of the Communications Decency Act of 1996, governs the liability of online intermediaries for third-party content and is the foun... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-communications-decency-act-section-230.json #### US Copyright Act (17 USC ch 1): Subject Matter, Exclusive Rights, Fair Use and Infringement - **ID**: us-copyright-act - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Copyright Act of 1976 (17 U.S.C.) is the federal statute governing copyright in the United States, administered for registration and deposit by the United States Copyright Office. Section 101 supp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-copyright-act.json #### Title 17 United States Code Section 107 - Limitations on Exclusive Rights: Fair Use - **ID**: us-copyright-act-1976-section-107-fair-use - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This regulation establishes the statutory framework for the fair use of copyrighted works for purposes such as criticism, comment, news reporting, teaching, scholarship, or research. It applies to any... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-copyright-act-1976-section-107-fair-use.json #### Scope of exclusive rights in nondramatic musical works: Compulsory license for making and distributing phonorecords - **ID**: us-copyright-act-section-115-mechanical-licensing - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This regulation establishes a compulsory licensing framework under 17 U.S. Code § 115 for the reproduction and distribution of nondramatic musical works via physical phonorecords or digital phonorecor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-copyright-act-section-115-mechanical-licensing.json #### Copyright Registration Guidance: Works Containing AI-Generated Material - **ID**: us-copyright-office-ai-registration-guidance-2023 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The U.S. Copyright Office requires human authorship for copyright protection; AI-generated content lacking human creative control is not protectable. Applicants must disclose AI-generated content in s... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-copyright-office-ai-registration-guidance-2023.json #### US Copyright Office AI Works Registration Policy 2024 - Human Authorship Requirement: AI-Assisted Works with Sufficient Human Creative Control are Registrable, Disclosure Requirements for AI Use, Prompt Engineering as Non-Copyrightable, Consistent with Thaler v. Vidal - **ID**: us-copyright-registration-ai-works-policy-2024 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: AI-assisted works may be registered with the U.S. Copyright Office only if they contain sufficient human creative control; full disclosure of AI-generated content is required. Prompt engineering alone... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-copyright-registration-ai-works-policy-2024.json #### Defend Trade Secrets Act of 2016 (18 U.S.C. § 1836) - Federal Private Civil Action for Trade Secret Misappropriation, Ex Parte Seizure, and Exemplary Damages - **ID**: us-defend-trade-secrets-act-2016-dtsa - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: The Defend Trade Secrets Act (DTSA) of 2016 enables private parties to bring federal civil actions for misappropriation of trade secrets related to products or services in interstate or foreign commer... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-defend-trade-secrets-act-2016-dtsa.json #### US Digital Millennium Copyright Act (17 USC 512 and ch 12): Safe Harbors, Notice-and-Takedown and Anti-Circumvention - **ID**: us-digital-millennium-copyright-act - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Digital Millennium Copyright Act of 1998 (DMCA) added two pillars to US copyright law: the online service provider safe harbors in 17 U.S.C. 512 and the anti-circumvention regime in 17 U.S.C. ch. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-digital-millennium-copyright-act.json #### Rulemaking Proceedings Under Section 1201 of Title 17 - Prohibited Circumvention of Technological Protection Measures, Triennial Review Process, and Temporary Exemptions - **ID**: us-dmca-1201-anti-circumvention-triennial-review - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This regulation implements Section 1201 of Title 17 of the U.S. Code, which prohibits the circumvention of technological protection measures (TPMs) that control access to copyrighted works. Every thre... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dmca-1201-anti-circumvention-triennial-review.json #### Digital Millennium Copyright Act of 1998, Section 512 - Limitations on Liability for Copyright Infringement by Online Service Providers - **ID**: us-dmca-1998-section-512-safe-harbour - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: This regulation establishes safe harbor protections for online service providers (OSPs) against copyright infringement liability, provided they comply with notice-and-takedown procedures, designate a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dmca-1998-section-512-safe-harbour.json #### 17 U.S. Code § 1201 - Circumvention of copyright protection systems - **ID**: us-family-entertainment-copyright-act-2005 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: Prohibits circumvention of technological measures that control access to copyrighted works and bans trafficking in circumvention technologies. Applies to individuals, organizations, and technology pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-family-entertainment-copyright-act-2005.json #### 47 CFR Part 73 - Radio Broadcast Services (FCC) - **ID**: us-fcc-47-cfr-73-radio-broadcast-services - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: FCC 47 CFR Part 73 governs radio broadcast services and the rules applicable to all broadcast stations, requiring station identification, sponsorship identification, fair conduct of licensee contests,... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-47-cfr-73-radio-broadcast-services.json #### Lanham Act Section 43(a) - False Designation of Origin, False Advertising, and Trade Dress Protection - **ID**: us-lanham-act-1946-trademark-section-43a - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: Prohibits false or misleading representations of fact in commercial advertising or promotion that misidentify the source of goods or services or misrepresent their nature, characteristics, or qualitie... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-lanham-act-1946-trademark-section-43a.json #### 17 U.S. Code Chapter 8 - PROCEEDINGS BY COPYRIGHT ROYALTY JUDGES - **ID**: us-music-modernization-act-2018-mma - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This regulation establishes the procedures and authority for Copyright Royalty Judges to determine royalty rates and terms for compulsory licenses under U.S. copyright law, particularly in disputes in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-music-modernization-act-2018-mma.json #### NO FAKES Act of 2023 - Preventing Explicit Digital Replication of Individuals Without Consent - **ID**: us-no-fakes-act-2023-digital-replicas-ai - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The NO FAKES Act of 2023 prohibits the creation or distribution of digital replicas of an individual’s voice or likeness using generative AI without their consent, with exceptions for expressive, jour... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-no-fakes-act-2023-digital-replicas-ai.json #### Indian Arts and Crafts Board; creation and composition; per diem payments - **ID**: us-protecting-right-indigenous-sacred-expression-act - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This regulation establishes the Indian Arts and Crafts Board within the Department of the Interior, composed of five commissioners appointed by the Secretary of the Interior, serving four-year terms (... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-protecting-right-indigenous-sacred-expression-act.json #### Limitations on exclusive rights: Secondary transmissions of distant television programming by satellite - **ID**: us-satellite-home-viewer-extension-reauthorization - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: This regulation establishes a statutory license for satellite carriers to retransmit distant television signals for private home or commercial viewing, subject to compliance with FCC rules, royalty pa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-satellite-home-viewer-extension-reauthorization.json #### United States Section 230 of the Communications Decency Act of 1996 (47 USC 230): Findings, Policy, Treatment of Publisher or Speaker, Good Samaritan Civil Liability Protection, Obligations of Interactive Computer Service, Effect on Other Laws, and Definitions - **ID**: us-section-230-communications-decency-act-47-usc-230 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: Section 230 of the Communications Decency Act of 1996, codified at 47 of the United States Code Section 230 within Title V of the Telecommunications Act of 1996, is the principal federal statute provi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-section-230-communications-decency-act-47-usc-230.json #### Tennessee Ensuring Likeness, Voice, and Image Security Act 2024, ELVIS Act HB 2091 / SB 2096 - Right of Publicity for Voice and AI Replicas, Effective 1 July 2024 - **ID**: us-tn-elvis-act-2024 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: Persons publishing, performing, distributing, transmitting, or otherwise making available to the public an individual's voice or likeness in Tennessee without authorization, or distributing, transmitt... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tn-elvis-act-2024.json #### US Video Privacy Protection Act (18 USC 2710): Privacy of Video Viewing Records - **ID**: us-video-privacy-protection-act - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The Video Privacy Protection Act (18 U.S.C. 2710) protects the privacy of records that identify what video materials a consumer has rented, purchased or requested, and is widely applied to streaming a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-video-privacy-protection-act.json #### WIPO Copyright Treaty - **ID**: wipo-copyright-treaty - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: Organizational alignment with the WIPO Copyright Treaty is achieved through a comprehensive framework addressing digital works, technological safeguards, and rights management integrity. The governing... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-copyright-treaty.json #### WIPO Copyright Treaty (WCT), adopted on December 20, 1996 - **ID**: wipo-copyright-treaty-wct-1996 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The WIPO Copyright Treaty (WCT) establishes international standards for digital copyright protection, requiring contracting parties to provide authors with the exclusive right of communication to the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-copyright-treaty-wct-1996.json #### WIPO Domain (UDRP) - **ID**: wipo-domain-dispute-udrp - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: This compliance assessment evaluates disputes under the Uniform Domain Name Dispute Resolution Policy (UDRP), which mandates a complainant satisfy a conjunctive three-part test for a successful domain... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-domain-dispute-udrp.json #### WIPO Standing Committee on Copyright and Related Rights (SCCR) - Agenda on Artificial Intelligence and Intellectual Property: Member State Positions and Deliberations on AI Training, Authorship, Liability, and Treaty Development - **ID**: wipo-ict-treaty-standing-committee-sccr-ai-agenda - **Category**: Creative, Content & Media IP - **Version**: 1.0.1 - **BLUF**: This regulatory agenda governs international deliberations within WIPO SCCR on the intersection of AI systems and copyright law, focusing on whether AI-generated works qualify for authorship, exceptio... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-ict-treaty-standing-committee-sccr-ai-agenda.json #### WIPO Industrial Designs - **ID**: wipo-industrial-designs - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: Compliance with international regulations for industrial designs requires strict adherence to procedural and data formatting standards established under governing treaties and administrative instructi... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-industrial-designs.json #### WIPO Patent (PCT) - **ID**: wipo-patent-cooperation-pct - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: This international patent application's compliance posture indicates successful completion of initial filing requirements pursuant to the governing legal framework. The application has secured an inte... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-patent-cooperation-pct.json #### WIPO WPPT (Performances) - **ID**: wipo-performances-phonograms - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: Compliance with the WIPO Performances and Phonograms Treaty necessitates stringent verification of fundamental rights and obligations concerning performers and phonogram producers. The framework confi... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-performances-phonograms.json #### WIPO Performances and Phonograms Treaty (WPPT) (1996) - **ID**: wipo-performances-phonograms-treaty-wppt-1996 - **Category**: Creative, Content & Media IP - **Version**: 1.0.0 - **BLUF**: The WIPO Performances and Phonograms Treaty (WPPT) establishes minimum rights for performers and producers of phonograms in the digital environment, including rights to authorize broadcasting, fixatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-performances-phonograms-treaty-wppt-1996.json #### WIPO Trade Secrets - **ID**: wipo-trade-secret-stds - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: An organizational asset qualifies for robust protection as a trade secret under governing international intellectual property conventions. The information satisfies the fundamental criteria for secrec... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-trade-secret-stds.json #### WIPO Trademark Stds - **ID**: wipo-trademark-stds - **Category**: Creative, Content & Media IP - **Version**: 1.1.1 - **BLUF**: Compliance with World Intellectual Property Organization trademark standards mandates strict adherence to data formatting and content protocols for international filings. All transactional data must b... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-trademark-stds.json #### WIPO Traditional Knowledge - **ID**: wipo-traditional-knowledge - **Category**: Creative, Content & Media IP - **Version**: 1.1.0 - **BLUF**: A `usage_compliance_score` of `0` reflects a complete failure to meet established international norms for the use of traditional knowledge, as articulated within frameworks deliberated by the World In... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-traditional-knowledge.json ### Crypto & Sovereign Finance (108 nodes) #### UAE Central Bank Payment Token Services Regulation 2024, PTSR - Stablecoin Issuance, Conversion, Custody, and Transfer Licensing - **ID**: ae-cbuae-payment-token-services-regulation-2024 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Entities providing Payment Token Services in or from the United Arab Emirates must obtain the relevant Central Bank of the UAE licence or registration under the Payment Token Services Regulation (issu... - **Discovery URL**: https://bidda.com/api/v1/nodes/ae-cbuae-payment-token-services-regulation-2024.json #### Bahamas Digital Assets and Registered Exchanges (DARE) Act, 2020 - **ID**: bahamas-dare-act-2020-digital-assets - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This Act establishes a comprehensive regulatory framework for digital asset businesses operating in or from The Bahamas, requiring mandatory registration with the Securities Commission for conducting ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bahamas-dare-act-2020-digital-assets.json #### Considerations for the use of stablecoin arrangements in cross-border payments - **ID**: bis-cpmi-cross-border-payments-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This report outlines key considerations and challenges regarding the use of stablecoin arrangements in cross-border payments, emphasizing that no existing stablecoin arrangement is currently deemed fu... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-cpmi-cross-border-payments-2023.json #### Prudential treatment of cryptoasset exposures (Standard SCO60) - **ID**: bis-crypto-asset-prudential-standards - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This standard requires internationally active banks to classify their cryptoasset exposures into two groups (Group 1 and Group 2) and apply specific, conservative capital requirements, risk management... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-crypto-asset-prudential-standards.json #### ETFs, illiquid assets, and fire sales - **ID**: bis-etfs-illiquid-assets-fire-sales - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This paper documents several novel facts about exchange-traded funds (ETFs) holding corporate bonds. Its main empirical finding is that the portfolio of bonds exchanged for new or existing ETF shares,... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-etfs-illiquid-assets-fire-sales.json #### ETFs, illiquid assets, and fire sales - **ID**: bis-etfs-illiquid-assets-firesales - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This paper documents several facts about exchange-traded funds (ETFs) holding corporate bonds. The main empirical finding is that bond ETF baskets contain a small fraction of holdings, a fact referred... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-etfs-illiquid-assets-firesales.json #### Application of the Principles for financial market infrastructures to stablecoin arrangements - **ID**: bis-iosco-pfmi-applied-to-dlt-systems - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This guidance clarifies that systemically important stablecoin arrangements (SAs) performing financial market infrastructure (FMI) functions must observe all relevant Principles for Financial Market I... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-iosco-pfmi-applied-to-dlt-systems.json #### Application of the Principles for Financial Market Infrastructures to Stablecoin Arrangements - **ID**: bis-iosco-stablecoin-guidance-pfmi-2022 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: This guidance requires systemically important stablecoin arrangements (SAs) that perform transfer functions to comply with the Principles for Financial Market Infrastructures (PFMI), particularly rega... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-iosco-stablecoin-guidance-pfmi-2022.json #### BIS Project Mariana - Wholesale CBDC Cross-Border FX Settlement: Automated Market Maker (AMM) Design, DeFi Protocol Adaptation for Central Banks and Multi-CBDC Settlement Architecture - **ID**: bis-project-mariana-cbdc-wholesale-fx-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This BIS Innovation Hub project, in collaboration with the central banks of France, Singapore, and Switzerland, successfully tested a proof-of-concept for cross-border wholesale CBDC (wCBDC) foreign e... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-project-mariana-cbdc-wholesale-fx-2023.json #### BIS Project mBridge 2024 - Multi-CBDC Platform: Participating Central Banks (PBOC, HKMA, BOT, CBUAE), Minimum Viable Product Launch, Governance Model, Settlement Finality, Privacy Tiers and Potential Expansion to BIS Innovation Hub Members - **ID**: bis-project-mbridge-cbdc-multi-central-bank-2024 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: This regulation outlines the operational and governance framework for the mBridge multi-central bank digital currency (CBDC) platform, which enables real-time, peer-to-peer cross-border payments and f... - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-project-mbridge-cbdc-multi-central-bank-2024.json #### Bitcoin Lightning L402 - **ID**: bitcoin-lightning-l402 - **Category**: Crypto & Sovereign Finance - **Version**: 1.1.1 - **BLUF**: L402 (formerly LSAT - Lightning Service Authentication Token) is a protocol standard developed by Lightning Labs that enables HTTP 402 Payment Required responses to be resolved via Bitcoin Lightning N... - **Discovery URL**: https://bidda.com/api/v1/nodes/bitcoin-lightning-l402.json #### Regulamenta a Lei n° 14.478, de 21 de dezembro de 2022, para estabelecer competências ao Banco Central do Brasil - **ID**: brazil-crypto-regulatory-framework-law-14478-2022 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Este decreto regulamenta a Lei n° 14.478/2022, atribuindo ao Banco Central do Brasil competência para regular, autorizar e supervisionar prestadoras de serviços de ativos virtuais, conforme estabeleci... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-crypto-regulatory-framework-law-14478-2022.json #### Account Abstraction (EIP-4337) - **ID**: ethereum-eip-4337 - **Category**: Crypto & Sovereign Finance - **Version**: 1.1.0 - **BLUF**: EIP-4337 (Account Abstraction Using Alt Mempool) is an Ethereum Improvement Proposal finalized in March 2023 that enables programmable smart contract wallets to replace externally owned accounts (EOAs... - **Discovery URL**: https://bidda.com/api/v1/nodes/ethereum-eip-4337.json #### Proposal for a Regulation of the European Parliament and of the Council on the establishment of the digital euro (COM/2023/0369) - **ID**: eu-cbdc-digital-euro-legislative-proposal-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This legislative proposal establishes a framework for the digital euro as a central bank digital currency (CBDC), granting it legal tender status within the euro area (Article 7). It mandates acceptan... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cbdc-digital-euro-legislative-proposal-2023.json #### Regulation (EU) 2022/858 of the European Parliament and of the Council of 30 May 2022 on a pilot regime for market infrastructures based on distributed ledger technology, and amending Regulations (EU) No 600/2014 and (EU) No 909/2014 and Directive 2014/65/EU - **ID**: eu-dlt-pilot-regime-2022-858 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes a temporary EU-wide 'sandbox' (pilot regime) for market infrastructures using distributed ledger technology (DLT) to trade and settle crypto-assets classified as financial ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dlt-pilot-regime-2022-858.json #### Regulation (EU) 2022/858 of the European Parliament and of the Council of 30 May 2022 on a pilot regime for market infrastructures based on distributed ledger technology, and amending Regulations (EU) No 600/2014 and (EU) No 909/2014 and Directive 2014/65/EU - **ID**: eu-dlt-pilot-regime-2022-858-live-operations - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: This regulation establishes a temporary pilot regime allowing eligible firms to operate DLT-based market infrastructures-specifically DLT Multilateral Trading Facilities (MTFs), DLT Settlement Systems... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dlt-pilot-regime-2022-858-live-operations.json #### EBA Guidelines on Authorisation Under MiCA for Asset-Referenced and E-Money Token Issuers - Governance Arrangements, Own Funds Composition, Recovery and Redemption Plans and Supervisory Disclosure - **ID**: eu-eba-mica-guidelines-art-emt-authorisation - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: These guidelines specify the detailed information and documentation that issuers of Asset-Referenced Tokens (ARTs) and E-Money Tokens (EMTs) must provide to competent authorities when applying for aut... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eba-mica-guidelines-art-emt-authorisation.json #### ECB Digital Euro Investigation Phase 2024 - Design Decisions: Offline Functionality, Privacy by Design (Anonymity for Low-Value), Holding Limits, Waterfall Mechanism to Bank Accounts, EPI Distribution Role and ECB Regulation Proposal - **ID**: eu-ecb-digital-euro-investigation-phase-2024 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: The digital euro would be a central bank-issued digital currency, available free of charge and accessible to all in the euro area, designed to complement cash and coexist with private payment solution... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecb-digital-euro-investigation-phase-2024.json #### ESMA Final Report: Draft Regulatory Technical Standards under Markets in Crypto-Assets Regulation (MiCA) specifying requirements for CASP supervisory college composition, crypto-asset whitepaper templates, reverse solicitation, and conflicts of interest management - **ID**: eu-esma-mica-rts-technical-standards-2024 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This package of Regulatory Technical Standards (RTS) under MiCA specifies detailed operational requirements for Crypto-Asset Service Providers (CASPs), including the precise format and content for cry... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esma-mica-rts-technical-standards-2024.json #### EU Markets in Crypto-Assets Regulation (MiCA) 2023/1114 -- Crypto-Asset Authorisation and Consumer Protection - **ID**: eu-markets-crypto-assets-regulation-2023-1114 - **Category**: Crypto & Sovereign Finance - **Version**: 2024.1.0 - **BLUF**: Regulation (EU) 2023/1114 (MiCA) establishes the first comprehensive EU regulatory framework for crypto-assets. Title III (Asset-Referenced Tokens, ARTs) and Title IV (E-Money Tokens, EMTs) applied fr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-markets-crypto-assets-regulation-2023-1114.json #### EU MiCA Regulation 2023/1114 - Asset-Referenced Tokens and E-Money Tokens (Titles II and III) - **ID**: eu-markets-crypto-assets-regulation-mica-title-ii-iii-asset-referenced-e-money - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2023/1114 on Markets in Crypto-Assets (MiCA) Titles II and III, applicable from 30 June 2024, establish the regulatory framework for issuers of asset-referenced tokens (ARTs) and e-mon... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-markets-crypto-assets-regulation-mica-title-ii-iii-asset-referenced-e-money.json #### EU Markets in Crypto-Assets Regulation (MiCA) 2023/1114 - ESMA/EBA - **ID**: eu-markets-in-crypto-assets-regulation-mica-2023-1114 - **Category**: Crypto & Sovereign Finance - **Version**: 2.0.0 - **BLUF**: Regulation (EU) 2023/1114 (MiCA) establishes a harmonised EU framework for crypto-asset markets, covering issuers of asset-referenced tokens (ARTs) and e-money tokens (EMTs), and crypto-asset service ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-markets-in-crypto-assets-regulation-mica-2023-1114.json #### EU MiCA Title III - Asset-Referenced Token (ART) Issuance and Supervision (Regulation 2023/1114) - **ID**: eu-mica-asset-referenced-tokens - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation requires issuers of Asset-Referenced Tokens (ARTs) offered to the public or seeking admission to trading in the EU to be an authorized legal entity, publish a crypto-asset white paper ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-asset-referenced-tokens.json #### EU MiCA Title V: Authorisation and Operating Conditions for Crypto-Asset Service Providers (CASPs) - **ID**: eu-mica-casp-obligations - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Title V of EU Regulation 2023/1114 (MiCA) mandates that any entity providing crypto-asset services in the EU must obtain authorization as a Crypto-Asset Service Provider (CASP) and comply with stringe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-casp-obligations.json #### Regulation (EU) on Markets in Crypto-Assets (MiCA) - Third-Country Crypto-Asset Service Providers (CASP) Equivalence Framework: Reverse Solicitation, ESMA Equivalence Register, and Prohibition on Passporting Rights for Non-EU CASPs - **ID**: eu-mica-casp-third-country-equivalence-2025 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes the conditions under which third-country Crypto-Asset Service Providers (CASP) may provide services in the EU solely on the initiative of professional clients or eligible c... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-casp-third-country-equivalence-2025.json #### Regulation (EU) 2023/1114 Title IV - Electronic Money Tokens (EMT) - **ID**: eu-mica-e-money-tokens - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Title IV of the EU's Markets in Crypto-Assets (MiCA) regulation mandates that issuers of e-money tokens (EMTs) must be authorized as a credit institution or an electronic money institution. Per Articl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-e-money-tokens.json #### Regulation (EU) 2023/1114 of the European Parliament and of the Council of 31 May 2023 on markets in crypto-assets, and amending Regulations (EU) No 1093/2010 and (EU) No 1095/2010 and Directives 2013/36/EU and (EU) 2019/1937 - **ID**: eu-mica-regulation-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The EU Markets in Crypto-Assets Regulation (MiCA) establishes a harmonized framework for crypto-asset issuers and service providers (CASPs) in the EU, requiring authorization, transparency, and consum... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-regulation-2023.json #### Regulation (EU) 2023/1114 of the European Parliament and of the Council of 31 May 2023 on markets in crypto-assets - Titles I & II: Subject Matter, Scope, Definitions, and Public Offerings of Non-ART/EMT Crypto-Assets - **ID**: eu-mica-title-i-ii-crypto-asset-categories - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation defines categories of crypto-assets and establishes rules for their public offering within the EU. It mandates that issuers of crypto-assets (other than asset-referenced or e-money tok... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-title-i-ii-crypto-asset-categories.json #### Regulation (EU) 2023/1114 Title III - Authorisation and Operating Conditions of Issuers of Asset-Referenced Tokens - **ID**: eu-mica-title-iii-asset-referenced-tokens - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Title III of the EU's Markets in Crypto-Assets (MiCA) regulation requires issuers of Asset-Referenced Tokens (ARTs) to be authorized legal entities within the EU, publish a compliant crypto-asset whit... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-title-iii-asset-referenced-tokens.json #### Regulation (EU) 2023/1114 Title IV - Electronic Money Tokens (EMT) - **ID**: eu-mica-title-iv-e-money-tokens - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Under Title IV of the EU's Markets in Crypto-Assets (MiCA) Regulation, issuers of e-money tokens (EMTs) must be authorized as either a credit institution or an electronic money institution. EMTs must ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-title-iv-e-money-tokens.json #### Regulation (EU) 2023/1114 Title V: Authorisation and Operating Conditions for Crypto-Asset Service Providers (CASPs) - **ID**: eu-mica-title-v-crypto-asset-service-providers - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation requires any entity providing crypto-asset services (CASPs) in the EU to obtain authorization from a national competent authority (NCA). As per Articles 67 and 68, CASPs must implement... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-title-v-crypto-asset-service-providers.json #### Regulation (EU) 2023/1114 Title VI: Prevention and Prohibition of Market Abuse Involving Crypto-Assets - **ID**: eu-mica-title-vi-market-abuse-crypto - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes a framework to prevent and prohibit market abuse in crypto-asset markets within the EU, specifically targeting insider dealing, unlawful disclosure of inside information, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mica-title-vi-market-abuse-crypto.json #### Regulation (EU) 2023/1114 on Markets in Crypto-Assets (MiCA), Title VI - Market Abuse for Crypto Assets - **ID**: eu-regulation-markets-crypto-2023-title-vi-market-abuse - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Prohibits insider trading and market manipulation in crypto assets and mandates suspicious transaction reporting by Crypto Asset Service Providers (CASPs). Applies to all CASPs operating in the EU und... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-regulation-markets-crypto-2023-title-vi-market-abuse.json #### Regulation (EU) 2023/1113 of the European Parliament and of the Council of 31 May 2023 on information accompanying transfers of funds and certain crypto-assets and amending Directive (EU) 2015/849 - **ID**: eu-tfer-regulation-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation extends the financial 'travel rule' to crypto-asset transfers, requiring Crypto Asset Service Providers (CASPs) to collect, verify, and exchange comprehensive originator and beneficiar... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-tfer-regulation-2023.json #### Regulation (EU) 2023/1113 on information accompanying transfers of funds and certain crypto-assets (Recast TFR) - **ID**: eu-transfer-funds-regulation-2023-1113-crypto - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation extends the Financial Action Task Force (FATF) 'Travel Rule' to crypto-asset transfers within the EU, requiring Crypto Asset Service Providers (CASPs) to collect, verify, and exchange ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-transfer-funds-regulation-2023-1113-crypto.json #### Regulation (EU) 2023/1113 on information accompanying transfers of crypto-assets and amending Regulation (EU) No 2015/847 - **ID**: eu-transfer-of-funds-regulation-2023-1113-travel-rule - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Crypto-Asset Service Providers (CASPs) must collect, verify, and transmit originator and beneficiary information for all crypto-asset transfers, including those to self-hosted wallets, with no de mini... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-transfer-of-funds-regulation-2023-1113-travel-rule.json #### FATF Recommendation 15 Virtual Asset Service Provider Travel Rule - 2025 Targeted Update and Best Practices Guidance - **ID**: fatf-recommendation-15-vasps-travel-rule-2025 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Virtual Asset Service Providers (VASPs) operating in any of the 85 jurisdictions (of 117 surveyed in the 2025 FATF targeted update, up from 65 in 2024) that have passed legislation implementing the FA... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-recommendation-15-vasps-travel-rule-2025.json #### France PSAN Digital Asset Service Provider Registration 2023 - AMF-Enforced: Mandatory Registration for AML/CFT, Optional Licence for Full Activities, Travel Rule Compliance, Consumer Warnings, MiCA Transition Plan and Grandfathering Arrangements - **ID**: france-psan-crypto-registration-amf-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: Digital Asset Service Providers (DASPs) providing custody, trading, or exchange services involving legal tender or operating a trading platform must mandatorily register with the AMF under Article L. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/france-psan-crypto-registration-amf-2023.json #### Assessment of Risks to Financial Stability from Crypto-assets - **ID**: fsb-cross-border-payments-roadmap-g20-crypto - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: This regulation assesses risks to global financial stability arising from crypto-asset markets and outlines the Financial Stability Board's framework for monitoring and supervising such risks, particu... - **Discovery URL**: https://bidda.com/api/v1/nodes/fsb-cross-border-payments-roadmap-g20-crypto.json #### FSB High-Level Recommendations for the Regulation, Supervision, and Oversight of Crypto-Asset Activities and Markets (2023) - **ID**: fsb-crypto-asset-framework-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: This regulation establishes a global framework for the prudential regulation and oversight of crypto-asset activities, particularly targeting global stablecoins (GSCs), requiring comprehensive supervi... - **Discovery URL**: https://bidda.com/api/v1/nodes/fsb-crypto-asset-framework-2023.json #### FSB Global Regulatory Framework for Crypto-Asset Activities: High-Level Recommendations - **ID**: fsb-crypto-asset-regulatory-framework-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This framework establishes nine high-level recommendations for the regulation, supervision, and oversight of crypto-asset activities and markets, applying the principle of 'same activity, same risk, s... - **Discovery URL**: https://bidda.com/api/v1/nodes/fsb-crypto-asset-regulatory-framework-2023.json #### FSB Global Regulatory Framework for Crypto-Asset Activities 2023 - High-Level Recommendations for Crypto-Asset Markets, Activities and Global Stablecoin Arrangements - **ID**: fsb-crypto-regulatory-framework-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes a global framework for the regulation, supervision, and oversight of crypto-asset activities and global stablecoin arrangements, based on the principle of 'same activity, s... - **Discovery URL**: https://bidda.com/api/v1/nodes/fsb-crypto-regulatory-framework-2023.json #### Global Financial Stability Report, October 2021: COVID-19, Crypto, and Climate - **ID**: gfsr-crypto-financial-stability-challenges - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This report assesses global financial stability, noting that while risks have been contained due to ongoing policy support and economic rebound, vulnerabilities remain elevated in several sectors. Opt... - **Discovery URL**: https://bidda.com/api/v1/nodes/gfsr-crypto-financial-stability-challenges.json #### Financial Services (Distributed Ledger Technology Providers) Regulations 2018 - **ID**: gibraltar-vasp-dlt-regulatory-framework-2018 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: This regulation establishes a licensing regime for Distributed Ledger Technology (DLT) providers operating in Gibraltar, requiring compliance with nine regulatory principles including systems integrit... - **Discovery URL**: https://bidda.com/api/v1/nodes/gibraltar-vasp-dlt-regulatory-framework-2018.json #### HK SFC Virtual Asset Trading Platform (VATP) Licensing - Securities and Futures Ordinance - **ID**: hk-sfc-virtual-asset-trading-platform-vatps-licensing-requirements - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Hong Kong's Securities and Futures Commission (SFC) introduced a mandatory licensing regime for Virtual Asset Trading Platforms (VATPs) under the Anti-Money Laundering and Counter-Terrorist Financing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-sfc-virtual-asset-trading-platform-vatps-licensing-requirements.json #### Hong Kong Stablecoins Ordinance - Fiat-Referenced Stablecoin (FRS) Licensing Regime (May 2025) - **ID**: hk-stablecoins-ordinance-2025 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: The Hong Kong Stablecoins Ordinance was passed by the Legislative Council on 21 May 2025 and establishes a Hong Kong Monetary Authority (HKMA) licensing regime for issuers of fiat-referenced stablecoi... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-stablecoins-ordinance-2025.json #### HKMA Consultation Conclusions on Regulatory Regime for Stablecoin Issuers 2023 - Licensing Requirements, Reserve Assets and Redemption Rights for HKD-pegged Stablecoins - **ID**: hkma-stablecoin-consultation-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This consultation outlines a proposed licensing regime for fiat-referenced stablecoin (FRS) issuers in Hong Kong, requiring licensing by the Monetary Authority (MA) for entities issuing FRS in Hong Ko... - **Discovery URL**: https://bidda.com/api/v1/nodes/hkma-stablecoin-consultation-2023.json #### Hong Kong VASP Licensing Regime: Guidelines for Virtual Asset Trading Platform Operators under the Anti-Money Laundering and Counter-Terrorist Financing Ordinance (Cap. 615) - **ID**: hong-kong-vasp-licensing-sfc-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regime requires centralized virtual asset trading platforms (VATPs) operating in or marketing to Hong Kong to be licensed by the Securities and Futures Commission (SFC). Mandated by Part 5B of th... - **Discovery URL**: https://bidda.com/api/v1/nodes/hong-kong-vasp-licensing-sfc-2023.json #### IMF Staff Papers on CBDC Policy Design 2023 - Retail CBDC Considerations: Financial Inclusion vs Disintermediation Risk, Privacy Architecture, Cross-Border CBDC Interoperability (Project mBridge), Legal Tender Status and Offline Payment Capability - **ID**: imf-staff-papers-cbdc-policy-design-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: This staff paper outlines policy considerations for central bank digital currency (CBDC) design, focusing on balancing financial inclusion with risks of financial disintermediation, privacy architectu... - **Discovery URL**: https://bidda.com/api/v1/nodes/imf-staff-papers-cbdc-policy-design-2023.json #### Income Tax Act, 1961 - Section 115BBH: Taxation of Income from Transfer of Virtual Digital Assets, and Section 194S: TDS on Transactions in Virtual Digital Assets - **ID**: india-virtual-digital-assets-tax-income-tax-act-2022 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: Indian tax law imposes a flat 30% tax on gains from transfers of Virtual Digital Assets (VDAs) under Section 115BBH of the Income Tax Act, with no set-off of losses against other income. Additionally,... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-virtual-digital-assets-tax-income-tax-act-2022.json #### Financial Services Authority Regulation Number 3 of 2024 concerning the Implementation of Financial Sector Technology Innovation (POJK 3/2024) - **ID**: indonesia-ojk-crypto-asset-regulation-2024 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation transfers supervisory authority over crypto-assets from Bappebti to Indonesia's Financial Services Authority (OJK), establishing a comprehensive framework for licensing, operating, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/indonesia-ojk-crypto-asset-regulation-2024.json #### IOSCO DeFi Policy Recommendations 2023 - Same Activity Same Risk Same Rules Principle, Responsible Persons Identification in Decentralised Protocols, AMM Governance Token Holder Liability, DEX Licensing Framework, Cross-Border DeFi Activity and IOSCO Crypto-Asset Roadmap - **ID**: iosco-defi-policy-recommendations-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: This regulation establishes the 'Same Activity Same Risk Same Rules' principle for DeFi protocols, requiring identification of responsible persons in decentralized systems and imposing liability on go... - **Discovery URL**: https://bidda.com/api/v1/nodes/iosco-defi-policy-recommendations-2023.json #### ISO 20022 Messaging - **ID**: iso-20022-messaging - **Category**: Crypto & Sovereign Finance - **Version**: 1.1.0 - **BLUF**: ISO 20022 is the global standard for financial messaging, providing a methodology and XML/JSON-based message catalog for financial communication between financial institutions, central banks, payment ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20022-messaging.json #### Japan Payment Services Act Chapter III-2 - Crypto-Asset Exchange Service Provider Registration and Supervision - **ID**: jp-payment-services-act-chapter-iii-2-crypto-asset-exchange-service-provider - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Chapter III-2 of Japan's Payment Services Act (Shikin Kessai Ni Kansuru Houritsu, Act No. 59 of 2009) establishes the world's first comprehensive national licensing regime for crypto-asset exchange se... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-payment-services-act-chapter-iii-2-crypto-asset-exchange-service-provider.json #### Token and Trusted Technology Service Provider Act (TVTG) of 17 May 2019 - **ID**: liechtenstein-tvtg-blockchain-act-2019 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The Liechtenstein TVTG establishes a legal framework for tokens as containers of rights and mandates licensing for Trusted Technology Service Providers (TTSPs). It applies to token issuers and service... - **Discovery URL**: https://bidda.com/api/v1/nodes/liechtenstein-tvtg-blockchain-act-2019.json #### Markets in Crypto-Assets Regulation (MiCA) - Article 14: Obligations of offerors and persons seeking admission to trading of crypto-assets other than asset-referenced tokens or e-money tokens - **ID**: mica-regulation-article-14-marketing-communications-requirements - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article mandates that offerors of non-ART/EMT crypto-assets act honestly, manage conflicts of interest, maintain secure systems, treat holders equally, and return funds promptly if an offer is ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-14-marketing-communications-requirements.json #### Markets in Crypto-Assets Regulation (MiCA) - Article 16: Authorisation - **ID**: mica-regulation-article-16-authorisation-casp - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Prohibits any person from offering an asset-referenced token to the public or seeking its admission to trading within the EU unless they are the issuer and have been properly authorised as either a le... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-16-authorisation-casp.json #### Markets in Crypto-Assets Regulation (MiCA) - Article 19: Assessment of the application for authorisation - **ID**: mica-regulation-article-19-withdrawal-authorisation-casp - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article outlines the procedural steps for competent authorities in assessing an application for authorisation, including timelines for information requests, mandatory consultation with EBA, ESMA,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-19-withdrawal-authorisation-casp.json #### REGULATION (EU) 2023/1114 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 31 May 2023 on markets in crypto-assets - Article 22 - **ID**: mica-regulation-article-22-ongoing-disclosure-obligations-casp - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article mandates that issuers of asset-referenced tokens continuously and publicly disclose all material information that may have a significant effect on the value of their tokens or the offer t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-22-ongoing-disclosure-obligations-casp.json #### Regulation (EU) 2023/1114 on markets in crypto-assets - Article 3 Definitions - **ID**: mica-regulation-article-3-definitions - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the legal definitions for key terms such as 'crypto-asset', 'issuer', and 'offer to the public', which must be used to classify all relevant assets, entities, and activities u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-3-definitions.json #### REGULATION (EU) 2023/1114 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 31 May 2023 on markets in crypto-assets, and amending Regulations (EU) No 1093/2010 and (EU) No 1095/2010 and Directives 2013/36/EU and (EU) 2019/1937 - Article 45 - **ID**: mica-regulation-article-45-insider-dealing-prohibition - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article's core compliance obligations cannot be determined as the text for Article 45 was not provided in the source material. - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-45-insider-dealing-prohibition.json #### REGULATION (EU) 2023/1114 on markets in crypto-assets - Article 46: Unlawful disclosure of inside information - **ID**: mica-regulation-article-46-unlawful-disclosure-inside-information - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article prohibits any person possessing inside information from unlawfully disclosing that information to any other person, except where the disclosure is made in the normal exercise of an employ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-46-unlawful-disclosure-inside-information.json #### REGULATION (EU) 2023/1114 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 31 May 2023 on markets in crypto-assets - Article 47: Prohibition of market manipulation - **ID**: mica-regulation-article-47-market-manipulation-prohibition - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article establishes a prohibition against engaging in or attempting to engage in market manipulation involving crypto-assets, aiming to address substantial risks to market integrity and user conf... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-47-market-manipulation-prohibition.json #### REGULATION (EU) 2023/1114 on markets in crypto-assets - Article 59 - Authorisation of issuers of asset-referenced tokens - **ID**: mica-regulation-article-59-authorisation-art-issuers - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the mandatory authorisation requirements for legal persons seeking to offer asset-referenced tokens to the public or seek their admission to trading within the EU. - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-59-authorisation-art-issuers.json #### Markets in Crypto-Assets Regulation (MiCA) - Article 6 - Prohibition of offering to the public or seeking admission to trading of crypto-assets other than asset-referenced tokens or e-money tokens - **ID**: mica-regulation-article-6-prohibition-on-offering-without-whitepaper - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Organizations are prohibited from offering crypto-assets to the public or seeking their admission to trading unless a compliant crypto-asset white paper has been notified and published, and any associ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-6-prohibition-on-offering-without-whitepaper.json #### REGULATION (EU) 2023/1114 on markets in crypto-assets - Article 68 - Authorisation of issuers of e-money tokens - **ID**: mica-regulation-article-68-authorisation-emt-issuers - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the authorisation requirements and procedures for legal persons seeking to issue e-money tokens (EMTs) within the European Union. - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-68-authorisation-emt-issuers.json #### Markets in Crypto-Assets Regulation (MiCA) - Article 7: Marketing communications - **ID**: mica-regulation-article-7-content-of-crypto-asset-whitepaper - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article mandates that all marketing communications for crypto-assets must be clearly identifiable, fair, consistent with the white paper, and include specific disclosures and a prominent disclaim... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-7-content-of-crypto-asset-whitepaper.json #### REGULATION (EU) 2023/1114 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 31 May 2023 on markets in crypto-assets - Article 76: Content and form of the crypto-asset white paper - **ID**: mica-regulation-article-76-crypto-asset-whitepaper-other-tokens - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article mandates that any offeror of a crypto-asset, other than an asset-referenced or e-money token, must create, notify, and publish a detailed crypto-asset white paper containing specific info... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-76-crypto-asset-whitepaper-other-tokens.json #### REGULATION (EU) 2023/1114 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 31 May 2023 on markets in crypto-assets, and amending Regulations (EU) No 1093/2010 and (EU) No 1095/2010 and Directives 2013/36/EU and (EU) 2019/1937 - Article 88 - **ID**: mica-regulation-article-88-administrative-sanctions-measures - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article empowers competent authorities to impose a range of administrative sanctions and measures on natural and legal persons for infringements of the Markets in Crypto-Assets Regulation (MiCA). - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-88-administrative-sanctions-measures.json #### REGULATION (EU) 2023/1114 on markets in crypto-assets - Article 90 Criminal sanctions - **ID**: mica-regulation-article-90-criminal-sanctions - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article requires EU Member States to establish effective, proportionate, and dissuasive criminal sanctions for specific infringements of the MiCA regulation, creating a significant compliance ris... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-90-criminal-sanctions.json #### REGULATION (EU) 2023/1114 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 31 May 2023 on markets in crypto-assets, and amending Regulations (EU) No 1093/2010 and (EU) No 1095/2010 and Directives 2013/36/EU and (EU) 2019/1937 - Article 93 - **ID**: mica-regulation-article-93-reporting-to-esma - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This article establishes the obligations for crypto-asset service providers to report specific information and data to the European Securities and Markets Authority (ESMA) to ensure market integrity a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mica-regulation-article-93-reporting-to-esma.json #### OECD Crypto-Asset Reporting Framework (CARF) 2023 - Standard for Automatic Exchange of Information on Crypto-Asset Transactions - **ID**: oecd-crypto-asset-reporting-framework-carf-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: The CARF requires Crypto-Asset Service Providers (CASPs) to report annual transactional data on crypto-asset holdings and transfers for users in participating jurisdictions, under the Standard for Aut... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-crypto-asset-reporting-framework-carf-2023.json #### Project Aurum A Prototype for Two-tier Central Bank Digital Currency (CBDC) - **ID**: project-aurum-cbdc-prototype - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Project Aurum, a joint project by the Bank for International Settlements (BIS) Innovation Hub Hong Kong Centre and the Hong Kong Monetary Authority (HKMA), details the creation of a full-stack central... - **Discovery URL**: https://bidda.com/api/v1/nodes/project-aurum-cbdc-prototype.json #### Singapore FSMA 2022 Part 9 - Digital Token Service Providers (DTSP) Licensing Regime - **ID**: sg-fsma-part-9-dtsp-2025 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: Part 9 of Singapore's Financial Services and Markets Act 2022 (Act 18 of 2022) commenced on 30 June 2025 and creates a Monetary Authority of Singapore (MAS) licensing regime for Digital Token Service ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-fsma-part-9-dtsp-2025.json #### SG MAS Payment Services Act 2019 (PSA) - Digital Payment Token Services and Major Payment Institution Licence - **ID**: sg-mas-payment-services-act-2019-digital-payment-token-licensing - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Singapore's Payment Services Act 2019 (PSA), administered by the Monetary Authority of Singapore (MAS), regulates providers of digital payment token (DPT) services, money-changing, and payment service... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-mas-payment-services-act-2019-digital-payment-token-licensing.json #### Singapore Payment Services Act 2019 (No. 2 of 2019) - Digital Payment Token (DPT) Service Licensing, AML/CFT Obligations, and Capital Requirements - **ID**: singapore-mas-payment-services-act-2019-dpt - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The Singapore Payment Services Act 2019 (PSA) requires any entity providing digital payment token (DPT) services to be licensed by the Monetary Authority of Singapore (MAS) and comply with stringent A... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-mas-payment-services-act-2019-dpt.json #### Payment Services (Amendment) Act 2021 - **ID**: singapore-mas-payment-services-amendment-act-2021 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The Singapore Payment Services (Amendment) Act 2021 expands the regulatory scope of the Monetary Authority of Singapore (MAS) over Digital Payment Token (DPT) services, bringing activities such as DPT... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-mas-payment-services-amendment-act-2021.json #### MAS Finalises Stablecoin Regulatory Framework for Single-Currency Stablecoins (SCS) Pegged to the Singapore Dollar or G10 Currencies - **ID**: singapore-mas-stablecoin-regulatory-framework-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation applies to issuers of single-currency stablecoins (SCS) pegged to the Singapore Dollar or any G10 currency and issued in Singapore. It mandates requirements for value stability via res... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-mas-stablecoin-regulatory-framework-2023.json #### Singapore Payment Services Act 2019 - MAS Digital Payment Token Licensing - **ID**: singapore-payment-services-act-2019-mas-crypto-licensing - **Category**: Crypto & Sovereign Finance - **Version**: 2.0.0 - **BLUF**: Singapore's Payment Services Act 2019 (No. 2 of 2019) requires Digital Payment Token (DPT) service providers - including crypto exchanges and custodians - to hold a Standard or Major Payment Instituti... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-payment-services-act-2019-mas-crypto-licensing.json #### Financial Intelligence Centre Act 38 of 2001 - Amendment Act 2022 (Crypto Asset Service Provider Registration and Enhanced AML/CFT Obligations) - **ID**: south-africa-fic-act-amendments-2022 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: The 2022 amendment to South Africa's FIC Act mandates that all Crypto Asset Service Providers (CASPs) register with the Financial Intelligence Centre, implement enhanced AML/CFT controls, conduct risk... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-fic-act-amendments-2022.json #### FINMA Crypto Asset Guidance 2018-2024 - ICO/Token Classification: Payment, Utility and Asset Tokens, No-Action Letters, DLT Act Integration, Anti-Money Laundering Obligations for VASPs, FINMA Sandbox and Risk-Based Supervision Framework - **ID**: switzerland-finma-crypto-guidance-2018-2024 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: This guidance sets out how FINMA applies financial market legislation to initial coin offerings (ICOs) based on the economic function and transferability of tokens. It requires compliance with anti-mo... - **Discovery URL**: https://bidda.com/api/v1/nodes/switzerland-finma-crypto-guidance-2018-2024.json #### Securities and Exchange Commission (SEC) Thailand - Digital Asset Exchange, Broker, and Dealer Licensing Regulations, Investor Qualification, Stablecoin Payment Ban, and Social Media Advertising Restrictions (2022) - **ID**: thailand-sec-crypto-exchange-regulations-2022 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: This regulation establishes licensing requirements for digital asset exchanges, brokers, and dealers in Thailand under the Securities and Exchange Act, mandates investor qualification and suitability ... - **Discovery URL**: https://bidda.com/api/v1/nodes/thailand-sec-crypto-exchange-regulations-2022.json #### ADGM FSRA Guidance on Regulation of Cryptoasset Activities (Updated 2023) - **ID**: uae-adgm-fsra-crypto-guidance-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This guidance establishes the Abu Dhabi Global Market (ADGM) Financial Services Regulatory Authority's (FSRA) comprehensive framework for firms conducting crypto asset activities, requiring a Financia... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-adgm-fsra-crypto-guidance-2023.json #### Virtual Assets and Related Activities Regulations 2023 - **ID**: uae-vara-virtual-assets-regulations-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This regulation establishes a comprehensive framework requiring any entity performing Virtual Asset (VA) activities in or from the Emirate of Dubai (excluding the DIFC) to obtain a license from the Vi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-vara-virtual-assets-regulations-2023.json #### UK FCA Cryptoasset Financial Promotion Rules - COBS 4.12A (PS23/6, effective 8 October 2023) - **ID**: uk-fca-cobs-4-12a-cryptoasset-promotions-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: FCA Policy Statement PS23/6 introduced cryptoassets into the UK financial promotion regime through Conduct of Business Sourcebook chapter COBS 4.12A, effective 8 October 2023. Qualifying cryptoassets ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fca-cobs-4-12a-cryptoasset-promotions-2023.json #### Financial Promotion Rules for Cryptoassets (PS22/10 & FCA 2023/32) - **ID**: uk-fca-crypto-promotion-rules-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Effective October 8, 2023, all firms marketing cryptoassets to UK consumers must ensure promotions are clear, fair, not misleading, and approved by an FCA-authorised firm. The rules, outlined in COBS ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fca-crypto-promotion-rules-2023.json #### UK FCA Electronic Money Institutions (EMIs) and Payment Institutions - Payment Services Regulations 2017 - **ID**: uk-fca-electronic-money-institutions-emis-payment-institutions-fca-psr2017 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The UK Payment Services Regulations 2017 (PSR 2017) and Electronic Money Regulations 2011 (EMR 2011) implement PSD2 and EMD2 in UK law, requiring payment institutions and e-money institutions to be au... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fca-electronic-money-institutions-emis-payment-institutions-fca-psr2017.json #### Financial Services and Markets Act 2023 - Crypto-Asset Regulation Provisions - **ID**: uk-financial-services-markets-act-2023-crypto - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The UK Financial Services and Markets Act 2023 amends existing financial legislation to bring certain crypto-assets and related activities within the UK regulatory perimeter, granting HM Treasury powe... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-financial-services-markets-act-2023-crypto.json #### UK FSMA 2000 (Cryptoassets) Regulations 2026, SI 2026/102 - Qualifying Cryptoasset Public Offers and Market Abuse - **ID**: uk-fsma-cryptoassets-regulations-2026-si-102 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Persons offering qualifying cryptoassets to the public in the United Kingdom must obtain Financial Conduct Authority authorisation, publish a disclosure document, and refrain from insider dealing, unl... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fsma-cryptoassets-regulations-2026-si-102.json #### United Kingdom - The Money Laundering and Terrorist Financing (Amendment) Regulations 2019 (SI 2019/1511): Inclusion of Cryptoasset Exchange Providers and Custodian Wallet Providers Within the UK AML Regime; FCA as Supervisory Authority and Maintainer of the Cryptoasset Register - **ID**: uk-mlr-2019-1511-cryptoasset-amendment - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The Money Laundering and Terrorist Financing (Amendment) Regulations 2019 (SI 2019/1511) amend the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mlr-2019-1511-cryptoasset-amendment.json #### UK Property (Digital Assets etc) Act 2025 - Third Category of Personal Property for Crypto-Tokens and Digital Things - **ID**: uk-property-digital-assets-act-2025 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: Crypto-tokens and other digital things in the United Kingdom are not prevented from being the object of personal property rights merely because they are neither things in possession nor things in acti... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-property-digital-assets-act-2025.json #### CFTC Virtual Currency Derivatives and Digital Asset Regulatory Framework - Guidance and Enforcement Approach - **ID**: us-cftc-digital-asset-guidance - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This framework clarifies that virtual currencies are commodities under the Commodity Exchange Act (CEA), subjecting derivatives on these assets (futures, swaps, options) and certain leveraged retail t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cftc-digital-asset-guidance.json #### US CFTC Jurisdiction Over Digital Commodities Under the Commodity Exchange Act (CEA) - **ID**: us-cftc-digital-commodities-cea-jurisdiction - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The U.S. Commodity Futures Trading Commission (CFTC) asserts jurisdiction over digital assets such as Bitcoin and Ether as "commodities" under the Commodity Exchange Act (CEA), granting it authority t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cftc-digital-commodities-cea-jurisdiction.json #### US Commodity Exchange Act - CFTC Crypto Derivatives Regulation - **ID**: us-commodity-exchange-act-cftc-crypto-derivatives-regulation - **Category**: Crypto & Sovereign Finance - **Version**: 2.0.0 - **BLUF**: The Commodity Exchange Act (7 U.S.C. 1 et seq.) grants CFTC jurisdiction over crypto commodity derivatives including Bitcoin and Ether futures; the CFTC asserts that Bitcoin and Ether are commodities;... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-commodity-exchange-act-cftc-crypto-derivatives-regulation.json #### US Executive Order 14178 - Strengthening American Leadership in Digital Financial Technology - **ID**: us-eo-14178-digital-financial-tech-2025 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: EO 14178 of 23 January 2025 sets US federal policy on digital assets and blockchain. Section 1 declares it US policy to protect citizens' ability to access open public blockchains for lawful purposes,... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-14178-digital-financial-tech-2025.json #### FinCEN 31 CFR Part 1022 - Money Services Business AML Program, BSA Recordkeeping and Reporting (including Virtual Currency MSBs) - **ID**: us-fincen-31-cfr-part-1022-msb-aml-program-bsa-recordkeeping-reporting - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 1022 contains the rules applicable to Money Services Businesses (MSBs) under the Bank Secrecy Act, including registered convertible virtual currency administrators and exchangers classifie... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fincen-31-cfr-part-1022-msb-aml-program-bsa-recordkeeping-reporting.json #### Financial Innovation and Technology for the 21st Century Act (FIT21) - **ID**: us-fit21-financial-innovation-technology-act-2024 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The FIT21 Act establishes a comprehensive U.S. regulatory framework for digital assets, creating a test under Section 101 to classify them as either 'digital commodities' under CFTC jurisdiction or 'r... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fit21-financial-innovation-technology-act-2024.json #### US GENIUS Act 2025 - Stablecoin Regulatory Framework: Payment Stablecoin Issuer Authorisation (Federal/State), 1:1 Reserve Requirement, Permitted Reserve Assets, AML/BSA Obligations, Foreign Stablecoin Registration and Federal Reserve Emergency Powers - **ID**: us-genius-act-stablecoin-2025-framework - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The US GENIUS Act 2025 requires all payment stablecoin issuers to obtain federal or state-level authorization, maintain 1:1 reserves in permitted assets (Section 4(a)), comply with AML/BSA obligations... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-genius-act-stablecoin-2025-framework.json #### US GENIUS Act Stablecoin Regulation (2025) - Payment Stablecoin Issuer Registration (Fed/OCC/State), 1:1 Reserve Requirements in US Treasuries/USD, Redemption Rights Within 1 Business Day and OFR Systemic Risk Oversight - **ID**: us-genius-act-stablecoin-regulation-2025 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This act requires US payment stablecoin issuers to register with a federal or state banking authority (Section 101), maintain 1:1 reserves consisting solely of US dollars or short-term US Treasuries (... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-genius-act-stablecoin-regulation-2025.json #### IRS Final Regulations on Digital Asset Broker Reporting - 26 CFR Section 1.6045-1 (effective 9 September 2024) - **ID**: us-irs-digital-asset-broker-1-6045-2024 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.1 - **BLUF**: The Treasury Department and IRS published final regulations under Internal Revenue Code Section 6045 (89 FR 56480, 9 July 2024, effective 9 September 2024) implementing Section 80603 of the Infrastruc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-irs-digital-asset-broker-1-6045-2024.json #### US IRS Virtual Currency Guidance and FAQ 2023 - Cryptocurrency as Property: Capital Gains/Losses, Mining Income Ordinary Treatment, Staking Rewards, Airdrops, Hard Forks and Form 1099-DA Broker Reporting - **ID**: us-irs-virtual-currency-reporting-guidance-2023 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The U.S. Internal Revenue Service (IRS) treats virtual currencies as property for federal tax purposes, requiring taxpayers to report capital gains or losses on dispositions and recognize ordinary inc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-irs-virtual-currency-reporting-guidance-2023.json #### New York State Department of Financial Services - Virtual Currency Business Licensing (BitLicense) under 23 NYCRR Part 200 (Issued June 2015 under the New York Financial Services Law); Plus Alternative Limited Purpose Trust Company Charter Pathway under New York Banking Law - **ID**: us-ny-dfs-bitlicense-23-nycrr-part-200 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The New York State Department of Financial Services (DFS) administers the foundational US state-level virtual currency business licensing regime under 23 NYCRR Part 200 (the BitLicense regulation), wh... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ny-dfs-bitlicense-23-nycrr-part-200.json #### US OCC National Bank Charter - 12 CFR Part 1 and Permissible Activities for National Banks - **ID**: us-occ-bank-charter-national-banks-12-cfr-1-permissible-activities - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The Office of the Comptroller of the Currency (OCC) charters, regulates, and supervises national banks and federal savings associations under the National Bank Act (12 USC 1 et seq.) and Home Owners L... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-occ-bank-charter-national-banks-12-cfr-1-permissible-activities.json #### Framework for 'Investment Contract' Analysis of Digital Assets - **ID**: us-sec-digital-asset-framework - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This SEC framework provides guidance on applying the Howey Test to determine if a digital asset is an 'investment contract' and thus a security under U.S. law. It applies to issuers and promoters, foc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-digital-asset-framework.json #### Framework for 'Investment Contract' Analysis of Digital Assets - **ID**: us-sec-digital-assets-securities-framework - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: This U.S. SEC staff guidance provides a framework for analyzing whether a digital asset is an investment contract and therefore a security under federal law, applying the four-prong test established i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-digital-assets-securities-framework.json #### US SEC Regulation Best Interest (Reg BI) - Broker-Dealer Conduct Standard 17 CFR 240.15l-1 - **ID**: us-sec-regulation-best-interest-reg-bi-broker-dealer-conduct-standard - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: SEC Regulation Best Interest (Reg BI) at 17 CFR 240.15l-1, effective June 30, 2020, establishes a "best interest" conduct standard for broker-dealers when recommending securities transactions or inves... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-regulation-best-interest-reg-bi-broker-dealer-conduct-standard.json #### Wyoming Decentralized Autonomous Organization Supplement (W.S. 17-31-101 through 17-31-116) - **ID**: us-wyoming-w-s-17-31-decentralized-autonomous-organization-supplement-2021 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: A limited liability company that elects to operate as a Wyoming Decentralized Autonomous Organization under W.S. 17-31-101 et seq. must include the statutory Notice of Restrictions on Duties and Trans... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wyoming-w-s-17-31-decentralized-autonomous-organization-supplement-2021.json #### Republic of South Africa - Draft Capital Flow Management Regulations, 2026 (Government Notice No. 54520, Government Gazette No. 7375 of 17 April 2026; Made under Section 9(1) of the Currency and Exchanges Act 9 of 1933; Repealing the Exchange Control Regulations of 1 December 1961; Public Comment Deadline 18 May 2026) - **ID**: za-treasury-capital-flow-mgmt-regs-2026 - **Category**: Crypto & Sovereign Finance - **Version**: 1.0.0 - **BLUF**: The Draft Capital Flow Management Regulations, 2026, were published for public comment by the Minister of Finance under section 9(1) of the Currency and Exchanges Act 9 of 1933, in Government Notice N... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-treasury-capital-flow-mgmt-regs-2026.json ### Cybersecurity (2762 nodes) #### Andorra Qualified Law No. 29/2021 on Personal Data Protection - AAPD - **ID**: ad-pdp-law-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Andorra's Qualified Law No. 29/2021 on Personal Data Protection (Llei qualificada de protecció de dades personals), adopted by the General Council (Consell General) of Andorra and entered into force i... - **Discovery URL**: https://bidda.com/api/v1/nodes/ad-pdp-law-2021.json #### United Arab Emirates Federal Decree-Law No. 34 of 2021 on Combating Rumours and Cybercrimes - **ID**: ae-cybercrime-law-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Federal Decree-Law No. 34 of 2021 Concerning Combating Rumours and Cybercrimes (the UAE Cybercrime Law) was issued on 26 September 2021 and entered into force on 2 January 2022, replacing Federal Law ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ae-cybercrime-law-2021.json #### UAE DIFC Data Protection Law 2020 - DIFC Law No. 5 of 2020 and Commissioner of Data Protection - **ID**: ae-difc-dp-2020 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Dubai International Financial Centre (DIFC) Data Protection Law 2020 (DIFC Law No. 5 of 2020), enacted on 1 July 2020 and commencing on 1 October 2020, is the data protection framework governing p... - **Discovery URL**: https://bidda.com/api/v1/nodes/ae-difc-dp-2020.json #### UAE Federal Decree-Law No. 34 of 2021 on Combatting Rumours and Cybercrimes - In Force 2 January 2022 - **ID**: ae-federal-decree-law-34-2021-cybercrimes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Individuals and organisations in the United Arab Emirates must comply with Federal Decree-Law No. 34 of 2021 on Countering Rumours and Cybercrimes (in force 2 January 2022), which provides a comprehen... - **Discovery URL**: https://bidda.com/api/v1/nodes/ae-federal-decree-law-34-2021-cybercrimes.json #### Afghanistan ATRA Framework - Constitutional Privacy Obligations and ICT Regulatory Personal Data Provisions - **ID**: af-atra-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Afghanistan's telecommunications and ICT sector is regulated by the Afghanistan Telecom Regulatory Authority (ATRA). The Afghan Constitution of 2004 (which was in force under the Islamic Republic of A... - **Discovery URL**: https://bidda.com/api/v1/nodes/af-atra-framework.json #### Antigua and Barbuda Data Protection Act 2013 - **ID**: ag-dpa-2013 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Antigua and Barbuda enacted the Data Protection Act 2013, establishing a comprehensive framework for the protection of personal data held by public and private bodies. The Act is administered by the D... - **Discovery URL**: https://bidda.com/api/v1/nodes/ag-dpa-2013.json #### Anguilla Data Protection Act 2018 - **ID**: ai-dpa-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Anguilla, a British Overseas Territory, enacted the Data Protection Act 2018 aligned with UK and EU data protection standards. Administered by the Anguilla Information Commissioner, the Act establishe... - **Discovery URL**: https://bidda.com/api/v1/nodes/ai-dpa-2018.json #### AICPA SOC 2 Trust Services Criteria - Availability Category (CC9.1-CC9.2 and Availability Criteria) - **ID**: aicpa-soc2-cc-availability - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The AICPA SOC 2 Availability Trust Services Category requires an entity to maintain controls ensuring its information and systems are available for operation and use to meet its objectives, as committ... - **Discovery URL**: https://bidda.com/api/v1/nodes/aicpa-soc2-cc-availability.json #### AICPA SOC 2 Trust Services Criteria - Confidentiality Category (CC6.1-CC6.7) - **ID**: aicpa-soc2-cc-confidentiality - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The AICPA SOC 2 Confidentiality principle requires entities to protect information designated as confidential throughout its lifecycle, from creation to destruction, as committed or agreed. This invol... - **Discovery URL**: https://bidda.com/api/v1/nodes/aicpa-soc2-cc-confidentiality.json #### AICPA SOC 2 Trust Services Criteria - Privacy Category (P1.0-P8.0 Privacy Notice and Choice) - **ID**: aicpa-soc2-cc-privacy - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The AICPA SOC 2 Privacy Category requires service organizations to provide a clear privacy notice detailing their personal information practices (P1.0) and to offer choices to individuals regarding th... - **Discovery URL**: https://bidda.com/api/v1/nodes/aicpa-soc2-cc-privacy.json #### AICPA SOC 2 Trust Services Criteria - Processing Integrity Category (PI1.1-PI1.5) - **ID**: aicpa-soc2-cc-processing-integrity - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation requires service organizations to implement controls ensuring that system processing is complete, valid, accurate, timely, and authorized to meet the entity's objectives. The core crit... - **Discovery URL**: https://bidda.com/api/v1/nodes/aicpa-soc2-cc-processing-integrity.json #### Armenia Law on Protection of Personal Data 2015 - Data Protection Agency - **ID**: am-pdp-law-2015 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Armenia's Law on Protection of Personal Data (Հայաստանի Հանրապետության «Անձնական տվյալների պաշտպանության մասին» օրենք) - adopted by the National Assembly of the Republic of Armenia on 8 October 2015 a... - **Discovery URL**: https://bidda.com/api/v1/nodes/am-pdp-law-2015.json #### Angola Law No. 22/11 on Personal Data Protection - **ID**: ao-pdp-law-2011 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Angola enacted Law No. 22/11 of 17 June 2011 on Personal Data Protection (Lei da Protecção de Dados Pessoais), establishing a comprehensive framework modelled on the Portuguese data protection regime ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ao-pdp-law-2011.json #### Argentina Personal Data Protection Act - Ley 25.326 de Protección de los Datos Personales - **ID**: ar-pdp-25326-2000 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Argentina's Personal Data Protection Act (Ley 25.326 de Protección de los Datos Personales), enacted 4 October 2000 (promulgated 30 October 2000, published in the Official Gazette 2 November 2000), is... - **Discovery URL**: https://bidda.com/api/v1/nodes/ar-pdp-25326-2000.json #### American Samoa - Territorial Privacy Rights and Federal Data Protection Framework - **ID**: as-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: American Samoa is an unincorporated unorganised territory of the United States located in the South Pacific Ocean. Unlike other US territories such as Puerto Rico, Guam, and the US Virgin Islands, Ame... - **Discovery URL**: https://bidda.com/api/v1/nodes/as-framework.json #### Assessing Security and Privacy Controls in Information Systems and Organizations - **ID**: assessing-security-privacy-controls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides a methodology and a set of procedures for conducting assessments of security and privacy controls employed within systems and organizations as part of an effective risk manag... - **Discovery URL**: https://bidda.com/api/v1/nodes/assessing-security-privacy-controls.json #### Austria Data Protection Act 2018 (Datenschutzgesetz - DSG) - GDPR National Implementation - **ID**: at-datenschutzgesetz-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Austria's Data Protection Act (Datenschutzgesetz - DSG, Federal Act on the Protection of Natural Persons with Regard to the Processing of Personal Data), as amended by the Datenschutz-Anpassungsgesetz... - **Discovery URL**: https://bidda.com/api/v1/nodes/at-datenschutzgesetz-2018.json #### Australian Signals Directorate Essential Eight Maturity Model 2023 - **ID**: au-asd-essential-eight-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The ASD Essential Eight Maturity Model updated November 2023 defines eight prioritised cybersecurity mitigation strategies across four maturity levels - application control, patch applications, macro ... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-asd-essential-eight-2023.json #### Security of Critical Infrastructure Act 2018 - Part 2A - Critical Infrastructure Risk Management Program - **ID**: au-critical-infrastructure-act-2018-part-2a-risk-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The provided text does not contain the specific compliance obligations for Part 2A, which pertains to risk management programs for critical infrastructure assets. - **Discovery URL**: https://bidda.com/api/v1/nodes/au-critical-infrastructure-act-2018-part-2a-risk-management.json #### Australia Cyber Security Act 2024 - **ID**: au-cyber-security-act-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Australia's Cyber Security Act 2024, which received Royal Assent on November 29, 2024, mandates ransomware payment reporting to ASD within 72 hours for businesses with annual turnover of AUD 3 million... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-cyber-security-act-2024.json #### Australia Digital ID Act 2024 - **ID**: au-digital-id-act-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Australia's Digital ID Act 2024, which received Royal Assent on May 30, 2024, establishes a voluntary economy-wide digital identity accreditation framework administered by the Australian Competition a... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-digital-id-act-2024.json #### Australia Digital ID Act 2024 (Cth) and Australian Government Digital ID System Trust Framework - **ID**: au-digital-id-act-2024-agdis-trust-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Digital ID Act 2024 (Cth) is Australia's primary digital identity statute, replacing the prior administrative Trusted Digital Identity Framework (TDIF) with a binding legislative regime. The Act e... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-digital-id-act-2024-agdis-trust-framework.json #### Australia Online Safety Act 2021 (Cth) - **ID**: au-online-safety-act-2021 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: The Online Safety Act 2021 (Cth) establishes Australia's comprehensive framework for online safety, replacing the Enhancing Online Safety Act 2015. The Act empowers the eSafety Commissioner to adminis... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-online-safety-act-2021.json #### Australia Online Safety Amendment (Social Media Minimum Age) Act 2024 - Prohibition of Under-16 Social Media Accounts, Effective 10 December 2025 - **ID**: au-online-safety-social-media-minimum-age-act-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Designated social media platforms operating in Australia (initially Facebook, Instagram, Reddit, Snapchat, TikTok, Twitter, Threads, Twitch, Kick, and YouTube as of 10 December 2025, with more potenti... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-online-safety-social-media-minimum-age-act-2024.json #### Australia Online Safety Act 2021 Phase 2 Industry Codes 2025 - Class 1C and Class 2 Material Age Assurance and Reporting - **ID**: au-osa-phase-2-industry-codes-2025 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Online service providers in scope of the Australian Online Safety Act 2021 must, from 27 December 2025 (hosting services, internet carriage services, internet search engine services) and from 9 March ... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-osa-phase-2-industry-codes-2025.json #### Australia Privacy and Other Legislation Amendment Act 2024 - **ID**: au-privacy-amendment-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Australia's Privacy and Other Legislation Amendment Act 2024 introduces a statutory tort for serious invasions of privacy, strengthens children's online privacy protections, enhances OAIC enforcement ... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-privacy-amendment-2024.json #### Security Legislation Amendment (Critical Infrastructure) Act 2021 - Part 2A - **ID**: au-security-legislation-amendment-critical-infrastructure-act-2021-part-2a - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Act amends security legislation for critical infrastructure; however, the provided source text is a legislative landing page and does not contain the specific compliance obligations of Part 2A. - **Discovery URL**: https://bidda.com/api/v1/nodes/au-security-legislation-amendment-critical-infrastructure-act-2021-part-2a.json #### Australia Security of Critical Infrastructure Act 2018 (SOCI) - Positive Security Obligations - **ID**: au-security-of-critical-infrastructure-act-2018-soci - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Security of Critical Infrastructure Act 2018 (Cth) imposes positive security obligations on owners and operators of 22 critical infrastructure asset classes across 11 sectors. Responsible entities... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-security-of-critical-infrastructure-act-2018-soci.json #### Australia Security of Critical Infrastructure Act 2018 - **ID**: au-soci-act-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Australia's Security of Critical Infrastructure Act imposes mandatory cyber security incident reporting obligations - 12 hours for significant incidents, 72 hours for others - positive security obliga... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-soci-act-2018.json #### Australia SOCI Act Critical Infrastructure Risk Management Program Rules 2023 (LIN 23/210) - **ID**: au-soci-cirmp-rules-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Security of Critical Infrastructure (Critical infrastructure risk management program) Rules LIN 23/210 commenced February 17, 2023 require responsible entities for critical infrastructure assets t... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-soci-cirmp-rules-2023.json #### Australia Spam Act 2003 (Cth) - **ID**: au-spam-act-2003 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Australia's Spam Act 2003 (Cth) effective April 10, 2004 prohibits sending unsolicited commercial electronic messages to Australian electronic addresses without express or inferred consent, requires s... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-spam-act-2003.json #### Australian Cyber Security Centre Essential Eight Maturity Model 2023 - Patch Applications, MFA, Application Control and Daily Backups: Four Maturity Level Definitions - **ID**: australia-acsc-essential-eight-maturity-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation outlines four maturity levels for implementing the Essential Eight mitigation strategies, with Maturity Level 2 requiring organisations to apply patches within 48 hours for internet-fa... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-acsc-essential-eight-maturity-2023.json #### Australia ACSC Essential Eight Mitigation Strategies Maturity Model (2023 Update) - **ID**: australia-essential-eight-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Australian Cyber Security Centre's (ACSC) Essential Eight is a prioritized baseline of eight mitigation strategies designed to help organizations protect their systems against a range of cyber thr... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-essential-eight-2023.json #### Australia Security of Critical Infrastructure Act 2018 (as Amended 2022) - Positive Security Obligations, Enhanced Cyber Security Obligations (Systems of National Significance), Government Assistance and 12-Hour Incident Reporting - **ID**: australia-security-critical-infrastructure-act-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Act requires responsible entities of Australian critical infrastructure assets to adopt a risk management program (Part 2A), maintain a register of critical assets, and mandatorily report signifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-security-critical-infrastructure-act-2022.json #### Aruba National Ordinance on Personal Data Protection 2010 - **ID**: aw-lbp-2010 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Aruba, a constituent country of the Kingdom of the Netherlands, enacted the National Ordinance on Personal Data Protection (Landsverordening bescherming persoonsgegevens, LBP) aligned with Dutch and E... - **Discovery URL**: https://bidda.com/api/v1/nodes/aw-lbp-2010.json #### Azerbaijan Law on Personal Data 2010 - Supervision Commission - **ID**: az-pdp-law-2010 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Azerbaijan's Law on Personal Data (Fərdi məlumatlar haqqında Qanun) - Law No. 998-IIIQ, adopted by the Milli Majlis (National Assembly) of the Republic of Azerbaijan on 11 May 2010 and signed by Presi... - **Discovery URL**: https://bidda.com/api/v1/nodes/az-pdp-law-2010.json #### Barbados Data Protection Act 2019 - **ID**: bb-dpa-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Barbados enacted the Data Protection Act 2019, a GDPR-aligned statute administered by the Data Protection Commissioner. It mandates lawful bases for processing, grants data subjects rights of access, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bb-dpa-2019.json #### Bangladesh Cyber Security Act 2023 - **ID**: bd-cyber-security-act-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Bangladesh's Cyber Security Act 2023, enacted in September 2023 to replace the Digital Security Act 2018, establishes a framework for cybercrime prevention and prosecution in Bangladesh, criminalises ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bd-cyber-security-act-2023.json #### Burkina Faso Personal Data Protection Law - CIL Compliance Framework - **ID**: bf-pdp-law-2004 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Burkina Faso Law No. 010-2004/AN on Protection of Personal Data (2004) established one of West Africa's earliest data protection frameworks, creating the Commission de l'Informatique et des Libertés (... - **Discovery URL**: https://bidda.com/api/v1/nodes/bf-pdp-law-2004.json #### Resilient Interdomain Traffic Exchange: BGP Security and DDoS Mitigation - **ID**: bgp-security-ddos-mitigation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This special publication on Resilient Interdomain Traffic Exchange (RITE) includes initial guidance on securing the interdomain routing control traffic, preventing IP address spoofing, and certain asp... - **Discovery URL**: https://bidda.com/api/v1/nodes/bgp-security-ddos-mitigation.json #### Bahrain Personal Data Protection Law 2018 - PDPA - **ID**: bh-pdpl-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Bahrain's Personal Data Protection Law (PDPL) - Legislative Decree No. 30 of 2018, issued by His Majesty King Hamad bin Isa Al Khalifa on 12 July 2018 and published in the Official Gazette - is Bahrai... - **Discovery URL**: https://bidda.com/api/v1/nodes/bh-pdpl-2018.json #### Burundi Law on Personal Data Protection 2020 - **ID**: bi-pdp-law-2020 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Burundi enacted the Law on Personal Data Protection in 2020, establishing a comprehensive legal framework for the protection of personal data in the Republic of Burundi. The law is administered by the... - **Discovery URL**: https://bidda.com/api/v1/nodes/bi-pdp-law-2020.json #### Benin Personal Data Protection Law - APDP Compliance Framework - **ID**: bj-pdp-law-2009 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Benin Law No. 2009-09 on Protection of Personal Data establishes data subject rights, mandatory controller registration, and prior authorization requirements for sensitive data processing. The Autorit... - **Discovery URL**: https://bidda.com/api/v1/nodes/bj-pdp-law-2009.json #### Saint Barthélemy - French Data Protection Law (Loi Informatique et Libertés) Framework - **ID**: bl-lil-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Saint Barthélemy is a French overseas collectivity located in the northeastern Caribbean Sea. Saint Barthélemy was part of Guadeloupe until 2007 when it became a separate French collectivity. Unlike G... - **Discovery URL**: https://bidda.com/api/v1/nodes/bl-lil-framework.json #### Bermuda Personal Information Protection Act 2016 - **ID**: bm-pipa-2016 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Bermuda enacted the Personal Information Protection Act 2016 (PIPA), which came into force on 1 January 2017. Administered by the Privacy Commissioner for Bermuda, PIPA establishes rights-based protec... - **Discovery URL**: https://bidda.com/api/v1/nodes/bm-pipa-2016.json #### Brunei Personal Data Protection Order 2021 - PDPA Compliance Framework - **ID**: bn-pdpo-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Brunei Darussalam Personal Data Protection Order 2021 (PDPO) establishes a consent-based framework of data subject rights, mandatory data user registration, lawful basis requirements, and cross-border... - **Discovery URL**: https://bidda.com/api/v1/nodes/bn-pdpo-2021.json #### Bolivia Supreme Decree No. 1793 on Protection of Personal Data in Information Systems (2013) - **ID**: bo-pdp-decree-2013 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Bolivia enacted Supreme Decree No. 1793 of 13 November 2013 on the Protection of Personal Data in Information Systems, providing a regulatory framework for the processing of personal data by public an... - **Discovery URL**: https://bidda.com/api/v1/nodes/bo-pdp-decree-2013.json #### Brazil ANPD Regulations 2021-2023 - DPO Nomination Obligations, Legitimate Interest Guidance, Simplified Regulations for Micro-Enterprises, Security Incident Reporting Rules (2-Day Window), International Transfer Clauses and Code of Conduct Accreditation - **ID**: brazil-anpd-regulation-2021-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation establishes obligations for data protection officers, incident reporting within 2 days, and age assurance mechanisms for protecting children online. It applies to all agents of process... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-anpd-regulation-2021-2023.json #### Lei Nº 12.965, de 23 de Abril de 2014 - Estabelece princípios, garantias, direitos e deveres para o uso da Internet no Brasil - **ID**: brazil-marco-civil-internet-2014-law-12965 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: This law establishes foundational principles for internet use in Brazil, including network neutrality, user privacy, and data protection. It mandates that internet connection records be retained for 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-marco-civil-internet-2014-law-12965.json #### Bahamas Data Protection (Privacy of Personal Information) Act 2003 - **ID**: bs-dpa-2003 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Bahamas enacted the Data Protection (Privacy of Personal Information) Act, 2003 (Chapter 324A), one of the earliest comprehensive data protection statutes in the Caribbean. The Act is administered... - **Discovery URL**: https://bidda.com/api/v1/nodes/bs-dpa-2003.json #### Bhutan Information, Communications and Media Act 2018 - Data Privacy Provisions - **ID**: bt-ica-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Bhutan enacted the Information, Communications and Media Act 2018 (ICMA 2018), which includes provisions for the protection of personal information in electronic communications and digital services. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/bt-ica-2018.json #### Budapest Convention on Cybercrime 2001 - International Cybercrime Cooperation Treaty (ETS No. 185) - **ID**: budapest-convention-cybercrime-2001 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: The Convention on Cybercrime (ETS No. 185, Budapest, 23 November 2001) is the first and primary international treaty harmonising cybercrime laws and enabling cross-border cooperation in cybercrime inv... - **Discovery URL**: https://bidda.com/api/v1/nodes/budapest-convention-cybercrime-2001.json #### Botswana Data Protection Act No. 32 of 2018 - ODPC - **ID**: bw-dpa-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Botswana's Data Protection Act No. 32 of 2018 (DPA) - assented to on 3 August 2018, published in the Botswana Government Gazette Extraordinary No. 64 of 3 August 2018, and brought into force through a... - **Discovery URL**: https://bidda.com/api/v1/nodes/bw-dpa-2018.json #### Belarus Law on Personal Data Protection - NCPDP Compliance Framework - **ID**: by-pdp-law-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Belarus Law on Personal Data Protection (No. 99-Z, 2021, in force November 2021) establishes GDPR-influenced data subject rights, 72-hour breach notification, and mandatory registration for operators ... - **Discovery URL**: https://bidda.com/api/v1/nodes/by-pdp-law-2021.json #### Belize Data Protection Act 2021 - **ID**: bz-dpa-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Belize enacted the Data Protection Act 2021, establishing a comprehensive data protection framework for the country. The Act is administered by the Data Protection Commissioner of Belize and establish... - **Discovery URL**: https://bidda.com/api/v1/nodes/bz-dpa-2021.json #### Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations - **ID**: c-scrm-practices-systems-organizations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides guidance to organizations on identifying, assessing, and mitigating cybersecurity risks throughout the supply chain at all levels of their organizations. It integrates cybers... - **Discovery URL**: https://bidda.com/api/v1/nodes/c-scrm-practices-systems-organizations.json #### Alberta Personal Information Protection Act (PIPA) 2003 - **ID**: ca-ab-pipa-2003 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Alberta's private-sector data protection law, substantially similar to federal PIPEDA, governs collection, use, and disclosure of personal information by private-sector organizations in Alberta under ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-ab-pipa-2003.json #### British Columbia Personal Information Protection Act (PIPA BC) 2003 - **ID**: ca-bc-pipa-2003 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The British Columbia Personal Information Protection Act (PIPA BC) was enacted as SBC 2003 c. 63 and came into force on 1 January 2004. PIPA BC governs the collection, use, and disclosure of personal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-bc-pipa-2003.json #### Canada Anti-Spam Legislation 2014 (CASL) - **ID**: ca-casl-2014 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Canada's Anti-Spam Legislation (S.C. 2010, c. 23) effective July 1, 2014 prohibits sending commercial electronic messages to Canadians without express or implied consent, requires clear identification... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-casl-2014.json #### Top 10 IT security actions - **ID**: ca-cccs-top-10-it-security-actions-action-1-patch-operating-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Organizations should implement a set of ten prioritized IT security actions, including patching systems, managing privileges, and segmenting information, to protect internet-connected networks and min... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-cccs-top-10-it-security-actions-action-1-patch-operating-systems.json #### Canada Consumer Privacy Protection Act - Bill C-27 (Proposed, 2022) - **ID**: ca-cppa-bill-c27-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Canada Bill C-27 tabled November 16, 2020 and reintroduced June 16, 2022 proposes replacing PIPEDA with the Consumer Privacy Protection Act (CPPA) establishing modern consent requirements, data portab... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-cppa-bill-c27-2022.json #### Criminal Code (R.S.C., 1985, c. C-46), Section 342.1: Unauthorized use of computer - **ID**: ca-criminal-code-section-342-1-unauthorized-computer - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: Organizations must prevent the fraudulent and unauthorized obtaining of computer services, interception of computer system functions, use of computer systems to commit related offenses, and the misuse... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-criminal-code-section-342-1-unauthorized-computer.json #### Ontario Personal Health Information Protection Act 2004 - **ID**: ca-on-phipa-2004 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Ontario's PHIPA governs the collection, use, and disclosure of personal health information by health information custodians across the province, enforced by the Information and Privacy Commissioner of... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-on-phipa-2004.json #### Quebec Law 25 - Modernisation de la Loi sur la protection des renseignements personnels dans le secteur privé (2021) - **ID**: ca-qc-law25-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Quebec Law 25 (Loi 25 - La Loi modernisant des dispositions législatives en matière de protection des renseignements personnels) was enacted by the Assemblée nationale du Québec in September 2021 and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-qc-law25-2023.json #### An Act respecting cyber security, amending the Telecommunications Act and making consequential amendments to other Acts - Part 2: Critical Cyber Systems Protection Act - **ID**: canada-bill-c26-critical-cyber-systems-2022 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: This regulation requires operators of vital services or systems designated by the Governor in Council to establish and maintain cyber security programs, report cyber security incidents, mitigate suppl... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-bill-c26-critical-cyber-systems-2022.json #### Cocos (Keeling) Islands - Australian Privacy Act and OAIC Supervisory Framework - **ID**: cc-privacy-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Cocos (Keeling) Islands are an Australian external territory comprising 27 small coral islands in the Indian Ocean. The territory has a resident population of approximately 600 people, primarily m... - **Discovery URL**: https://bidda.com/api/v1/nodes/cc-privacy-framework.json #### Democratic Republic of Congo Law No. 20/017 on Electronic Communications - Personal Data Provisions - **ID**: cd-pdp-law-2020 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Democratic Republic of Congo (DRC) enacted Law No. 20/017 of 25 November 2020 on Electronic Communications and Information Technology, which includes provisions regulating the protection of person... - **Discovery URL**: https://bidda.com/api/v1/nodes/cd-pdp-law-2020.json #### Central African Republic ARTP Framework - AU Malabo Convention and Constitutional Privacy Obligations - **ID**: cf-artp-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Central African Republic (CAR) has established the Autorité de Régulation des Télécommunications et des Postes (ARTP) as the national regulatory authority for electronic communications and postal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/cf-artp-framework.json #### Republic of Congo Law No. 29-2019 on Digital Economy - Personal Data Provisions - **ID**: cg-digital-law-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Republic of Congo (Congo-Brazzaville) enacted Law No. 29-2019 of 30 December 2019 on the Digital Economy, which includes provisions for the protection of personal data in the digital environment. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/cg-digital-law-2019.json #### Switzerland nFADP 2023 - Revised Federal Act on Data Protection and FDPIC Enforcement - **ID**: ch-fadp-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Switzerland's revidiertes Bundesgesetz über den Datenschutz (revDSG) / loi fédérale révisée sur la protection des données (LPD révisée) / legge federale riveduta sulla protezione dei dati (LPD rivedut... - **Discovery URL**: https://bidda.com/api/v1/nodes/ch-fadp-2023.json #### Switzerland Federal Act on Data Protection 2023 (nDSG / revFADP) - National Data Protection - **ID**: ch-ndsg-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Switzerland's revised Bundesgesetz über den Datenschutz (nDSG - neues Datenschutzgesetz / revFADP - revised Federal Act on Data Protection, SR 235.1), passed by the Swiss Federal Assembly on 25 Septem... - **Discovery URL**: https://bidda.com/api/v1/nodes/ch-ndsg-2023.json #### Data Security Law of the People's Republic of China (2021) - **ID**: china-data-security-law-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This law establishes a mandatory data classification and grading system for all data handlers in China, imposing strict protection obligations for 'Important Data' and 'National Core Data' as defined ... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-data-security-law-2021.json #### Cybersecurity Law of the People's Republic of China (CSL) - **ID**: china-network-security-law-2017 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This law mandates broad cybersecurity obligations for all 'network operators' in China and imposes stricter requirements, including data localization and mandatory security reviews, on operators of 'C... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-network-security-law-2017.json #### Côte d'Ivoire Personal Data Protection Law No. 2013-450 - ARTCI - **ID**: ci-dp-law-2013 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Côte d'Ivoire's Loi No. 2013-450 du 19 juin 2013 relative à la protection des données à caractère personnel (Law No. 2013-450 of 19 June 2013 on the Protection of Personal Data) - published in the Jou... - **Discovery URL**: https://bidda.com/api/v1/nodes/ci-dp-law-2013.json #### Least Privilege for AI Agents (CIS Companion Guide) - **ID**: cis-ai-least-privilege - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: Autonomous AI agents must be managed as Non-Human Identities (NHIs) with task-scoped, ephemeral privileges. The principle of Least Privilege ensures that an agent's access is restricted to the specifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-ai-least-privilege.json #### CIS Critical Security Controls Version 8 - **ID**: cis-controls-v8 - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: Compliance with the Center for Internet Security (CIS) Critical Security Controls Version 8 provides a prioritized, risk-based framework for cyber defense, with this node mandating the foundational re... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8.json #### CIS Controls v8.1 Control 1: Inventory and Control of Enterprise Assets - **ID**: cis-controls-v8-1-control-01-inventory-and-control-of-enterprise-assets - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 1: Inventory and Control of Enterprise Assets. CIS Controls 1 focuses on actively managing (inventory, track, and correct) all enterprise assets connected to the infrastructu... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-01-inventory-and-control-of-enterprise-assets.json #### CIS Controls v8.1 Control 2: Inventory and Control of Software Assets - **ID**: cis-controls-v8-1-control-02-inventory-and-control-of-software-assets - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 2: Inventory and Control of Software Assets. CIS Control 2 focuses on actively managing (inventory, track, and correct) all software (operating systems and applications) on t... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-02-inventory-and-control-of-software-assets.json #### CIS Controls v8.1 Control 3: Data Protection - **ID**: cis-controls-v8-1-control-03-data-protection - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 3: Data Protection. CIS Controls 3 focuses on developing processes and technical controls to identify, classify, securely handle, retain, and dispose of data. Control 3 is on... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-03-data-protection.json #### CIS Controls v8.1 Control 4: Secure Configuration of Enterprise Assets and Software - **ID**: cis-controls-v8-1-control-04-secure-configuration-of-enterprise-assets-and-software - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 4: Secure Configuration of Enterprise Assets and Software. CIS Control 4 focuses on establishing and maintaining the secure configuration of enterprise assets and software. C... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-04-secure-configuration-of-enterprise-assets-and-software.json #### CIS Controls v8.1 Control 5: Account Management - **ID**: cis-controls-v8-1-control-05-account-management - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 5: Account Management. CIIS Control 5 focuses on using processes and tools to assign and manage authorization to credentials for user accounts. Control 5 is one of 18 CIS Con... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-05-account-management.json #### CIS Controls v8.1 Control 6: Access Control Management - **ID**: cis-controls-v8-1-control-06-access-control-management - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 6: Access Control Management. CIS Control 6 focuses on using processes and tools to create, assign, manage, and revoke access credentials and privileges for user, administrat... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-06-access-control-management.json #### CIS Controls v8.1 Control 7: Continuous Vulnerability Management - **ID**: cis-controls-v8-1-control-07-continuous-vulnerability-management - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 7: Continuous Vulnerability Management. CIS Control 7 focusing on developing a plan to continuously assess & track vulnerabilities on all enterprise assets within the enterpr... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-07-continuous-vulnerability-management.json #### CIS Controls v8.1 Control 8: Audit Log Management - **ID**: cis-controls-v8-1-control-08-audit-log-management - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 8: Audit Log Management. CIS Controls 8 focuses on collecting, alerting, reviewing, and retaining audit logs of events that could help detect, understand, or recover from an ... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-08-audit-log-management.json #### CIS Controls v8.1 Control 9: Email and Web Browser Protections - **ID**: cis-controls-v8-1-control-09-email-and-web-browser-protections - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 9: Email and Web Browser Protections. CIS Control 9 focuses on improving protections and detections of threats from email and web vectors. Control 9 is one of 18 CIS Controls... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-09-email-and-web-browser-protections.json #### CIS Controls v8.1 Control 10: Malware Defenses - **ID**: cis-controls-v8-1-control-10-malware-defenses - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 10: Malware Defenses. CIS Control 10 focuses on preventing or controlling the installation, spread, & execution of malicious applications, code, or scripts on enterprise asse... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-10-malware-defenses.json #### CIS Controls v8.1 Control 11: Data Recovery - **ID**: cis-controls-v8-1-control-11-data-recovery - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 11: Data Recovery. CIS Control 11 focuses on establishing and maintaining data recovery practices to restore in-scope enterprise assets to a pre-incident and trusted state. C... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-11-data-recovery.json #### CIS Controls v8.1 Control 12: Network Infrastructure Management - **ID**: cis-controls-v8-1-control-12-network-infrastructure-management - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 12: Network Infrastructure Management. CIS Control 12 focuses on establishing, implementing, and actively managing network devices to prevent attackers from exploiting vulner... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-12-network-infrastructure-management.json #### CIS Controls v8.1 Control 13: Network Monitoring and Defense - **ID**: cis-controls-v8-1-control-13-network-monitoring-and-defense - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 13: Network Monitoring and Defense. CIS Controls 13 focuses on processes and tooling to establish and maintain comprehensive network monitoring and defense against security t... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-13-network-monitoring-and-defense.json #### CIS Controls v8.1 Control 14: Security Awareness and Skills Training - **ID**: cis-controls-v8-1-control-14-security-awareness-and-skills-training - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 14: Security Awareness and Skills Training. CIS Controls 14 focuses on establishing and maintaining a security awareness program to be security conscious to reduce cybersecur... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-14-security-awareness-and-skills-training.json #### CIS Controls v8.1 Control 15: Service Provider Management - **ID**: cis-controls-v8-1-control-15-service-provider-management - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 15: Service Provider Management. CIS Controls 15 focuses on developing a process to evaluate service providers to ensure platforms and data are protected appropriately. Contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-15-service-provider-management.json #### CIS Controls v8.1 Control 16: Application Software Security - **ID**: cis-controls-v8-1-control-16-application-software-security - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 16: Application Software Security. CIS Controls 16 focuses on managing the security life cycle of software to prevent, detect, and remediate security weaknesses. Control 16 i... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-16-application-software-security.json #### CIS Controls v8.1 Control 17: Incident Response Management - **ID**: cis-controls-v8-1-control-17-incident-response-management - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 17: Incident Response Management. CIS Controls 17 focuses on establishing a program to develop and maintain an incident response capability to prepare, detect, and respond to... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-17-incident-response-management.json #### CIS Controls v8.1 Control 18: Penetration Testing - **ID**: cis-controls-v8-1-control-18-penetration-testing - **Category**: Cybersecurity - **Version**: 8.1.0 - **BLUF**: CIS Controls v8.1 Control 18: Penetration Testing. CIS Controls 18 focuses on test the effectiveness and resiliency of enterprise assets through identifying and exploiting weaknesses in controls. Cont... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-1-control-18-penetration-testing.json #### CIS Critical Security Controls Version 8 - 18 Safeguard Groups, Implementation Groups (IG1/IG2/IG3) and Mappings to NIST CSF, ISO 27001 and CMMC for Prioritised Security Actions - **ID**: cis-controls-v8-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The CIS Critical Security Controls v8 provides a prioritized set of safeguards to defend against prevalent cyber attacks, applicable to organizations across all sectors seeking to improve their cybers... - **Discovery URL**: https://bidda.com/api/v1/nodes/cis-controls-v8-2021.json #### CISA Cross-Sector Cybersecurity Performance Goals (CPGs) 2023 - 37 Baseline Security Practices for Critical Infrastructure Operators - **ID**: cisa-cpgs-cross-sector-performance-goals-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The CISA Cross-Sector Cybersecurity Performance Goals (CPGs) establish a voluntary, common set of 37 baseline cybersecurity practices for critical infrastructure operators to meaningfully reduce risks... - **Discovery URL**: https://bidda.com/api/v1/nodes/cisa-cpgs-cross-sector-performance-goals-2023.json #### Cross-Sector Cybersecurity Performance Goals - **ID**: cisa-cross-sector-cybersecurity-goals - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Cross-Sector Cybersecurity Performance Goals (CPGs) provide an approachable common set of IT and OT cybersecurity protections that are clearly defined, straightforward to implement, and aimed at a... - **Discovery URL**: https://bidda.com/api/v1/nodes/cisa-cross-sector-cybersecurity-goals.json #### RANSOMWARE GUIDE - **ID**: cisa-ms-isac-ransomware-guide - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide provides ransomware best practices and recommendations based on operational insight from the Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/cisa-ms-isac-ransomware-guide.json #### The Minimum Elements For a Software Bill of Materials (SBOM) - **ID**: cisa-sbom-minimum-elements-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Mandated by U.S. Executive Order 14028, this standard from the NTIA defines the minimum required data fields, formats, and practices for a Software Bill of Materials (SBOM). It requires all software p... - **Discovery URL**: https://bidda.com/api/v1/nodes/cisa-sbom-minimum-elements-2021.json #### CISA Zero Trust Maturity Model 2.0 - Identity, Devices, Networks, Applications and Data Pillars with Traditional, Advanced and Optimal Stages - **ID**: cisa-zero-trust-maturity-model-2-0 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This model provides a roadmap for U.S. federal agencies and other organizations to implement a zero trust architecture, as directed by Executive Order 14028. It outlines a maturity continuum across fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/cisa-zero-trust-maturity-model-2-0.json #### Chile Data Protection Law 21.719 - Ley Marco de Datos Personales and CPLT Enforcement - **ID**: cl-dp-law-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Chile's Ley Marco de Datos Personales (Framework Law on Personal Data) - Law No. 21.719, published in the Diario Oficial de la República de Chile on 13 December 2024 and entering into force on 13 Dece... - **Discovery URL**: https://bidda.com/api/v1/nodes/cl-dp-law-2022.json #### Cameroon Cybersecurity and Personal Data Law - ANTIC Compliance Framework - **ID**: cm-cybersec-dp-2010 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Cameroon Law No. 2010/012 on Cybersecurity and Cybercriminality (2010) includes comprehensive personal data protection provisions governing consent, data subject rights, controller obligations, and cr... - **Discovery URL**: https://bidda.com/api/v1/nodes/cm-cybersec-dp-2010.json #### China Algorithm Recommendation Management Provisions 2022 - **ID**: cn-algorithm-recommendation-measures-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: China's Provisions on the Management of Algorithm Recommendation in Internet Information Services, effective March 1, 2022, impose transparency, labelling, and user rights obligations on internet serv... - **Discovery URL**: https://bidda.com/api/v1/nodes/cn-algorithm-recommendation-measures-2022.json #### China Cybersecurity Law 2017 - **ID**: cn-csl-2017 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: China's Cybersecurity Law establishes a foundational network security framework requiring real-name registration for internet users, data localisation for critical information infrastructure operators... - **Discovery URL**: https://bidda.com/api/v1/nodes/cn-csl-2017.json #### China Provisions on the Administration of Deep Synthesis Internet Information Services 2022 - **ID**: cn-deep-synthesis-measures-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: China's CAC, MIIT and MPS mandate that deep synthesis service providers label all AI-generated synthetic media, implement real-name verification for users, prohibit non-consensual identity impersonati... - **Discovery URL**: https://bidda.com/api/v1/nodes/cn-deep-synthesis-measures-2022.json #### China Data Security Law 2021 - **ID**: cn-dsl-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: China's Data Security Law establishes a hierarchical national data classification system designating core data, important data, and general data with progressively stringent security requirements, res... - **Discovery URL**: https://bidda.com/api/v1/nodes/cn-dsl-2021.json #### China Network Data Security Management Regulations 2024 - **ID**: cn-network-data-security-regulations-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: China's Network Data Security Management Regulations, promulgated by the State Council on September 24, 2024 and effective January 1, 2025, implement and operationalise the Data Security Law and Perso... - **Discovery URL**: https://bidda.com/api/v1/nodes/cn-network-data-security-regulations-2024.json #### Colombia Statutory Law 1581 of 2012 - Ley de Habeas Data and SIC Enforcement - **ID**: co-slhc-2012 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Colombia's Ley Estatutaria de Protección de Datos Personales (Statutory Law on the Protection of Personal Data) - Ley Estatutaria 1581 of 2012, passed by the Colombian Congress and signed into law on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/co-slhc-2012.json #### Statutory Law 1581 of 2012 on the Protection of Personal Data - Habeas Data Rights and Obligations for Data Controllers and Processors in Colombia - **ID**: colombia-sic-habeas-data-law-1581-2012 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: Colombia's Law 1581 of 2012 establishes the legal framework for the protection of personal data and enshrines the constitutional habeas data right, requiring all entities processing personal data to i... - **Discovery URL**: https://bidda.com/api/v1/nodes/colombia-sic-habeas-data-law-1581-2012.json #### Contingency Planning Guide for Federal Information Systems - **ID**: contingency-planning-federal-information-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide provides instructions, recommendations, and considerations for federal information system contingency planning. Contingency planning refers to a coordinated strategy involving plans, proced... - **Discovery URL**: https://bidda.com/api/v1/nodes/contingency-planning-federal-information-systems.json #### Contingency Planning Guide for Federal Information Systems - **ID**: contingency-planning-guide-federal-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication 800-34, Rev. 1, provides instructions, recommendations, and considerations for federal information system contingency planning. Contingency planning refers to interim measures... - **Discovery URL**: https://bidda.com/api/v1/nodes/contingency-planning-guide-federal-systems.json #### Law 8968 of 2011 on the Protection of Personal Data in Automated Files and Databases - Prodhab (Agencia de Protección de Datos de los Habitantes) - **ID**: costa-rica-ley-8968-2011-personal-data - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: Costa Rica's Law 8968/2011 establishes the legal framework for the protection of personal data processed in automated systems, requiring data controllers to register databases with Prodhab, obtain con... - **Discovery URL**: https://bidda.com/api/v1/nodes/costa-rica-ley-8968-2011-personal-data.json #### Costa Rica Personal Data Protection Law No. 8968 2011 - PRODHAB - **ID**: cr-pdp-law-2011 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Costa Rica's Ley de Protección de la Persona frente al Tratamiento de sus Datos Personales (Personal Data Protection Law) - Law No. 8968 of 5 July 2011, published in La Gaceta (official gazette) No. 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/cr-pdp-law-2011.json #### Cuba - Constitutional Privacy Rights and Ministry of Communications Data Governance Framework - **ID**: cu-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Republic of Cuba is an independent socialist state in the Caribbean governed under the Constitution of Cuba (2019), which establishes fundamental rights including the inviolability of the home and... - **Discovery URL**: https://bidda.com/api/v1/nodes/cu-framework.json #### Cape Verde Personal Data Protection Law - CNPD Compliance Framework - **ID**: cv-pdp-law-2001 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Cape Verde Law No. 133/V/2001 on Protection of Personal Data establishes a Portuguese-influenced framework of consent-based processing, data subject rights, and mandatory controller registration. The ... - **Discovery URL**: https://bidda.com/api/v1/nodes/cv-pdp-law-2001.json #### CVE Program with CNA Hierarchy and Record Format 5.2.0 (CISA-Sponsored, MITRE Secretariat, 400+ CVE Numbering Authorities, JSON Schema, ADPs, CVE Services REST API) - **ID**: cve-program-cna-record-format-5 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Common Vulnerabilities and Exposures (CVE) Program is the canonical international vulnerability identifier system sponsored by the United States Cybersecurity and Infrastructure Security Agency (C... - **Discovery URL**: https://bidda.com/api/v1/nodes/cve-program-cna-record-format-5.json #### Curaçao National Ordinance on Personal Data Protection 2010 - **ID**: cw-lbp-2010 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Curaçao, a constituent country of the Kingdom of the Netherlands, enacted the National Ordinance on Personal Data Protection (Landsverordening bescherming persoonsgegevens, LBP) upon achieving autonom... - **Discovery URL**: https://bidda.com/api/v1/nodes/cw-lbp-2010.json #### Christmas Island - Australian Privacy Act and OAIC Supervisory Framework - **ID**: cx-privacy-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Christmas Island is an Australian external territory located in the Indian Ocean south of the Indonesian island of Java. The island is administered by the Australian Government through the Department ... - **Discovery URL**: https://bidda.com/api/v1/nodes/cx-privacy-framework.json #### Cyprus Processing of Personal Data Law No. 125(I)/2018 - GDPR National Implementation - **ID**: cy-pdp-law-125-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Cyprus's The Processing of Personal Data (Protection of Individuals) Law No. 125(I)/2018 (Ο περί Επεξεργασίας Δεδομένων Προσωπικού Χαρακτήρα (Προστασία του Ατόμου) Νόμος του 2018, Law No. 125(I)/2018)... - **Discovery URL**: https://bidda.com/api/v1/nodes/cy-pdp-law-125-2018.json #### System Information Discovery (MITRE ATT&CK T1082) - **ID**: cyber-mitre-t1082 - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: Adversaries attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture. - **Discovery URL**: https://bidda.com/api/v1/nodes/cyber-mitre-t1082.json #### Account Management (NIST SP 800-53 AC-2) - **ID**: cyber-nist-800-53-ac2 - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: The Account Management control establishes a comprehensive framework, consistent with NIST Special Publication 800-53 AC-2, for managing the full lifecycle of information system accounts. This governa... - **Discovery URL**: https://bidda.com/api/v1/nodes/cyber-nist-800-53-ac2.json #### Asset Management Strategy (NIST CSF 2.0 ID.AM) - **ID**: cyber-nist-csf-2 - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: Effective governance over the enterprise environment necessitates a comprehensive asset management strategy grounded in the NIST Cybersecurity Framework 2.0 Identify function. This approach mandates t... - **Discovery URL**: https://bidda.com/api/v1/nodes/cyber-nist-csf-2.json #### Cybersecurity Framework Profile for Hybrid Satellite Networks (HSN) - **ID**: cybersecurity-profile-hsn - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Cybersecurity Profile identifies an approach to assess the cybersecurity posture of Hybrid Satellite Networks (HSN) that provide services such as satellite-based systems for communications, posit... - **Discovery URL**: https://bidda.com/api/v1/nodes/cybersecurity-profile-hsn.json #### CycloneDX Bill of Materials Specification Version 1.7 (OWASP Foundation + Ecma International TC54, Components, Services, Dependencies, Vulnerabilities VEX, Formulations, Declarations, JSON/XML/Protobuf) - **ID**: cyclonedx-1-7-owasp-ecma-sbom-standard - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CycloneDX is a lightweight, full-stack Bill of Materials (BOM) standard developed by the OWASP Foundation and standardised through Ecma International's TC54 Technical Committee. The current version is... - **Discovery URL**: https://bidda.com/api/v1/nodes/cyclonedx-1-7-owasp-ecma-sbom-standard.json #### Czech Republic Personal Data Processing Act 2019 (Act No. 110/2019 Sb.) - GDPR National Implementation - **ID**: cz-uoou-act-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Czech Republic's Act No. 110/2019 Coll. on Personal Data Processing (Zákon č. 110/2019 Sb., o zpracování osobních údajů), published in the Collection of Laws of the Czech Republic on 24 April 2019... - **Discovery URL**: https://bidda.com/api/v1/nodes/cz-uoou-act-2019.json #### NIST SPECIAL PUBLICATION 1800-26 Data Integrity: Detecting and Responding to Ransomware and Other Destructive Events - **ID**: data-integrity-detecting-responding-ransomware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide focuses on data integrity: the property that data has not been altered in an unauthorized manner, covering data in storage, during processing, and while in transit. Destructive malware, ran... - **Discovery URL**: https://bidda.com/api/v1/nodes/data-integrity-detecting-responding-ransomware.json #### Germany BSI Act and IT Security Act 2.0 (IT-SiG 2.0) 2021 - **ID**: de-bsig-it-sig-2-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Germany's IT Security Act 2.0 (IT-SiG 2.0), which came into force on May 28, 2021, significantly expands the BSI Act by broadening the definition of critical infrastructure operators, mandating attack... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-bsig-it-sig-2-2021.json #### Germany Jugendschutzgesetz (JuSchG) and StGB § 184 - Youth Protection Act §§ 1, 4, 12, 14, 15, 18, 24a, 24b, 24c, 27, 28; Strafgesetzbuch § 184; BzKJ (Bundeszentrale für Kinder- und Jugendmedienschutz) Enforcement - **ID**: de-jugendschutzgesetz-juschg-stgb-184-restricted-content-bzkj - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The German Jugendschutzgesetz (JuSchG - Youth Protection Act) and Strafgesetzbuch (StGB - Criminal Code) § 184 form the federal-level legal regime in Germany governing the distribution of media that m... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-jugendschutzgesetz-juschg-stgb-184-restricted-content-bzkj.json #### Germany Network Enforcement Act 2017 (NetzDG) - **ID**: de-netzdg-2017 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Germany's Netzwerkdurchsetzungsgesetz (NetzDG) effective January 1, 2018 requires social network operators with more than 2 million registered users in Germany to establish accessible complaint proced... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-netzdg-2017.json #### Germany Telecommunications and Telemedia Data Protection Act 2021 (TTDSG) - **ID**: de-ttdsg-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Germany's Telekommunikation-Telemedien-Datenschutz-Gesetz (TTDSG) effective December 1, 2021 consolidates telecommunications data protection rules from the Telekommunikationsgesetz and Telemediengeset... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-ttdsg-2021.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: developing-security-plans-federal-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of system security planning is to improve the protection of information system resources. This guide provides an overview of the security requirements for a system and describes the cont... - **Discovery URL**: https://bidda.com/api/v1/nodes/developing-security-plans-federal-systems.json #### Digital Operational Resilience Act (DORA) Enterprise Compliance Standard v0 - **ID**: digital-operational-resilience-act-dora--compliance-2026-0 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Digital Operational Resilience Act (DORA) establishes a comprehensive framework for the management of ICT risks within the financial sector. It mandates that financial entities develop, implement,... - **Discovery URL**: https://bidda.com/api/v1/nodes/digital-operational-resilience-act-dora--compliance-2026-0.json #### Digital Operational Resilience Act (DORA) Enterprise Compliance Standard v15 - **ID**: digital-operational-resilience-act-dora--compliance-2026-15 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Digital Operational Resilience Act (DORA) establishes a comprehensive framework to ensure that financial entities within the EU can withstand, respond to, and recover from all types of ICT-related... - **Discovery URL**: https://bidda.com/api/v1/nodes/digital-operational-resilience-act-dora--compliance-2026-15.json #### Djibouti Law No. 108/AN/20 on Personal Data Protection - **ID**: dj-pdp-law-2020 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Djibouti enacted Law No. 108/AN/20/8ème L on Personal Data Protection in 2020, establishing the first comprehensive data protection framework in the country. The law is administered by the Commission ... - **Discovery URL**: https://bidda.com/api/v1/nodes/dj-pdp-law-2020.json #### Denmark Data Protection Act 2018 (Databeskyttelsesloven) - GDPR National Implementation - **ID**: dk-databeskyttelsesloven-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Denmark's Data Protection Act (Databeskyttelsesloven, Consolidated Act No. 502 of 23 May 2018, as amended by Act No. 1052 of 28 August 2018) is Denmark's primary national legislation supplementing the... - **Discovery URL**: https://bidda.com/api/v1/nodes/dk-databeskyttelsesloven-2018.json #### Dominica Data Protection Act 2018 - **ID**: dm-dpa-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Dominica enacted the Data Protection Act 2018, a comprehensive statute aligned with CARICOM and OECS data protection standards. The Act is administered by the Data Protection Commissioner and establis... - **Discovery URL**: https://bidda.com/api/v1/nodes/dm-dpa-2018.json #### Dominican Republic Personal Data Protection Law - INDATAP Compliance Framework - **ID**: do-pdpl-2013 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Dominican Republic Law No. 172-13 on Personal Data Protection (2013) establishes a comprehensive Latin American ARCO rights framework covering data subject access, rectification, cancellation, and opp... - **Discovery URL**: https://bidda.com/api/v1/nodes/do-pdpl-2013.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 11 - **ID**: dsa-regulation-article-11-mere-conduit-liability-exemption - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Providers of intermediary services must designate, publish, and maintain a single point of contact to enable direct electronic communication with Member State authorities, the European Commission, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-11-mere-conduit-liability-exemption.json #### REGULATION (EU) 2022/2065 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 19 October 2022 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 12 - **ID**: dsa-regulation-article-12-caching-conditions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Establishes the conditions under which providers of 'caching' intermediary services are exempt from liability for the automatic, intermediate, and temporary storage of information. - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-12-caching-conditions.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 13: Points of contact for Member State authorities, the Commission and the Board - **ID**: dsa-regulation-article-13-hosting-liability-conditions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires providers of intermediary services to designate, publish, and maintain a single point of contact for electronic communication with EU authorities and to specify the languages for... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-13-hosting-liability-conditions.json #### Regulation (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 14: Notice and action mechanisms - **ID**: dsa-regulation-article-14-notice-and-action-mechanisms - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires hosting service providers to establish user-friendly electronic mechanisms for individuals and entities to report illegal content, and to process these notices in a timely, dilig... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-14-notice-and-action-mechanisms.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 15: Reporting of criminal offences - **ID**: dsa-regulation-article-15-illegal-content-reporting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires providers of hosting services to promptly inform law enforcement or judicial authorities if they become aware of any information giving rise to a suspicion that a serious crimina... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-15-illegal-content-reporting.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 17: Statement of reasons - **ID**: dsa-regulation-article-17-statements-of-reasons-content-moderation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Hosting service providers must provide affected users with a clear, specific, and timely statement of reasons when they restrict content or accounts based on illegality or terms of service violations. - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-17-statements-of-reasons-content-moderation.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 19: Out-of-court dispute settlement - **ID**: dsa-regulation-article-19-out-of-court-dispute-settlement - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires online platforms to provide recipients of their service with access to certified out-of-court dispute settlement bodies to resolve disputes over content moderation decisions. - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-19-out-of-court-dispute-settlement.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 22 Trusted Flaggers - **ID**: dsa-regulation-article-22-trusted-flaggers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Providers of intermediary services must adhere to harmonised diligence requirements to ensure a safe, predictable, and trustworthy online environment, fostering the internal market and protecting fund... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-22-trusted-flaggers.json #### Algeria Personal Data Protection Law - ANPDP Compliance Framework - **ID**: dz-pdpl-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Algeria Law No. 18-07 on Personal Data Protection (2018) establishes a CNIL-influenced framework of consent-based processing, mandatory prior authorization for sensitive data, and data subject rights.... - **Discovery URL**: https://bidda.com/api/v1/nodes/dz-pdpl-2018.json #### Acceptable Means of Compliance (AMC) and Guidance Material (GM) to Commission Regulation (EU) No 1321/2014 - Issue 1, Amendment 4 - Cybersecurity Requirements for Aircraft (ED-202A AMC/GM) - **ID**: easa-cybersecurity-aviation-ed-202a-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation establishes cybersecurity requirements for aircraft design, production, and continuing airworthiness, mandating risk-based protection of aircraft systems against unauthorized access. I... - **Discovery URL**: https://bidda.com/api/v1/nodes/easa-cybersecurity-aviation-ed-202a-2022.json #### Ecuador Organic Personal Data Protection Law 2021 - SPDP - **ID**: ec-lopdp-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Ecuador's Ley Orgánica de Protección de Datos Personales (LOPDP - Organic Personal Data Protection Law) - published in the Registro Oficial Suplemento No. 459 on 26 May 2021 - is Ecuador's comprehensi... - **Discovery URL**: https://bidda.com/api/v1/nodes/ec-lopdp-2021.json #### Estonia Personal Data Protection Act 2018 (IKÜS) - GDPR National Implementation - **ID**: ee-ikus-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Estonia's Isikuandmete kaitse seadus (IKÜS - Personal Data Protection Act), adopted by the Riigikogu (Estonian Parliament) and published in the Riigi Teataja (RT I, 04.01.2019, 11), entered into force... - **Discovery URL**: https://bidda.com/api/v1/nodes/ee-ikus-2018.json #### Regulation (EU) 2024/1183 - Article 12: Interoperability - **ID**: eidas2-regulation-2024-1183-article-12-interoperability-trust-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates that trust services must adhere to new interoperability requirements as specified in the amended provisions of Article 12. - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-2024-1183-article-12-interoperability-trust-services.json #### Regulation (EU) 2024/1183 amending Regulation (EU) No 910/2014 as regards establishing the European Digital Identity Framework - Article 6a: European Digital Identity Wallets - **ID**: eidas2-regulation-2024-1183-article-6a-obligations-relying-parties - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article obliges relying parties required to use strong user authentication, and very large online platforms, to accept European Digital Identity Wallets for user authentication. - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-2024-1183-article-6a-obligations-relying-parties.json #### Regulation (EU) 2024/1183 on electronic identification and trust services - Article 45k Legal effects of electronic ledgers - **ID**: eidas2-regulation-article-11-eu-digital-identity-wallet - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Organizations must recognize that an electronic ledger cannot be denied legal effect or admissibility as evidence in legal proceedings simply because it is in an electronic format or is not a 'qualifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-11-eu-digital-identity-wallet.json #### REGULATION (EU) 2024/1183 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 11 April 2024 amending Regulation (EU) No 910/2014 as regards establishing the European Digital Identity Framework - Article 16 - **ID**: eidas2-regulation-article-16-attributes-and-attestations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates that providers of electronic attestations of attributes establish secure and interoperable procedures for issuance, verification, and revocation, ensuring users retain sole contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-16-attributes-and-attestations.json #### Regulation (EU) 2024/1183 on electronic identification and trust services for electronic transactions in the internal market (eIDAS 2.0) - Article 20: Requirements for qualified trust service providers - **ID**: eidas2-regulation-article-20-requirements-qualified-electronic-signatures - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Qualified trust service providers must undergo and pay for an audit by a conformity assessment body at least every 24 months to confirm compliance with this Regulation. - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-20-requirements-qualified-electronic-signatures.json #### REGULATION (EU) 2024/1183 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 11 April 2024 amending Regulation (EU) No 910/2014 as regards establishing the European Digital Identity Framework - Article 25: Legal effects of electronic signatures - **ID**: eidas2-regulation-article-25-legal-effects-electronic-signatures - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes that electronic signatures cannot be denied legal effect simply for being electronic, grants qualified electronic signatures the same legal standing as handwritten signatures,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-25-legal-effects-electronic-signatures.json #### Regulation (EU) 2024/1183 on electronic identification and trust services (eIDAS 2.0) - Article 3: Definitions - **ID**: eidas2-regulation-article-3-definitions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article defines 'electronic identification' as the process of using person identification data in electronic form to uniquely represent a natural or legal person, or a person representing another... - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-3-definitions.json #### Regulation (EU) 2024/1183 on electronic identification and trust services for electronic transactions in the internal market - Article 30 - **ID**: eidas2-regulation-article-30-qualified-electronic-seal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Organizations holding a certification for qualified electronic seal creation devices must ensure its validity does not exceed five years, conduct vulnerability assessments every two years, and remedy ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-30-qualified-electronic-seal.json #### REGULATION (EU) 2024/1183 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 11 April 2024 amending Regulation (EU) No 910/2014 as regards establishing the European Digital Identity Framework - Article 45 - **ID**: eidas2-regulation-article-45-qualified-certificates-for-signatures - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes requirements for qualified certificates for electronic signatures; however, the specific obligations of Article 45 are not present in the provided regulatory text. - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-45-qualified-certificates-for-signatures.json #### Regulation (EU) 2024/1183 on European Digital Identity - Article 5d: Publication of a list of certified European Digital Identity Wallets - **ID**: eidas2-regulation-article-47-eu-trusted-lists - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article obligates Member States to inform the Commission about certified and cancelled European Digital Identity Wallets, providing specific details, so the Commission can establish, publish, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-47-eu-trusted-lists.json #### REGULATION (EU) 2024/1183 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 11 April 2024 amending Regulation (EU) No 910/2014 as regards establishing the European Digital Identity Framework - **ID**: eidas2-regulation-article-5-electronic-identification-mutual-recognition - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation establishes the European Digital Identity Framework, intended to provide all Europeans with a trusted, user-controlled digital identity via the European Digital Identity Wallet for sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-5-electronic-identification-mutual-recognition.json #### Regulation (EU) 2024/1183 amending Regulation (EU) No 910/2014 - Article 55: Qualified electronic ledgers - **ID**: eidas2-regulation-article-55-qualified-trust-service-providers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the requirements for qualified electronic ledgers, which must be managed by qualified trust service providers and ensure the chronological ordering, integrity, origin, availab... - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-55-qualified-trust-service-providers.json #### REGULATION (EU) 2024/1183 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 11 April 2024 amending Regulation (EU) No 910/2014 as regards establishing the European Digital Identity Framework - Article 6 - **ID**: eidas2-regulation-article-6-notification-of-electronic-identification-schemes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Member States must notify the Commission of their electronic identification schemes, including details on the issuing body, assurance levels, and liability arrangements, for publication and Union-wide... - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-6-notification-of-electronic-identification-schemes.json #### Regulation (EU) 2024/1183 on European Digital Identity - Article 8: Assurance levels of electronic identification schemes - **ID**: eidas2-regulation-article-8-security-breaches-electronic-identification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The European Commission is mandated to establish, by means of implementing acts, the minimum technical specifications, standards, and procedures for low, substantial, and high assurance levels for ele... - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-8-security-breaches-electronic-identification.json #### ENISA Cloud Security Enterprise Compliance Standard v14 - **ID**: enisa-cloud-security-compliance-2026-14 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The ENISA Cloud Security Enterprise Compliance Standard v14 outlines essential requirements for organizations utilizing cloud services to ensure robust cybersecurity measures. It emphasizes risk manag... - **Discovery URL**: https://bidda.com/api/v1/nodes/enisa-cloud-security-compliance-2026-14.json #### ENISA Threat Landscape 2024 - **ID**: enisa-threat-landscape-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The ENISA Threat Landscape 2024 is an annual intelligence report identifying the top 8 cybersecurity threats to the European Union, requiring organizations to use this analysis for their risk assessme... - **Discovery URL**: https://bidda.com/api/v1/nodes/enisa-threat-landscape-2024.json #### Eritrea MOICT Framework - AU Malabo Convention and Constitutional Privacy Obligations - **ID**: er-moict-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Eritrea's Ministry of Information and Communication Technology (MOICT) oversees the regulation of telecommunications and ICT services in the State of Eritrea. The Eritrean Ratified Constitution of 199... - **Discovery URL**: https://bidda.com/api/v1/nodes/er-moict-framework.json #### Spain Data Protection and Digital Rights Act 2018 (LOPDPGDD) - GDPR National Implementation - **ID**: es-lopdpgdd-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Spain's Organic Law 3/2018 of 5 December on the Protection of Personal Data and Guarantee of Digital Rights (Ley Orgánica 3/2018, de 5 de diciembre, de Protección de Datos Personales y garantía de los... - **Discovery URL**: https://bidda.com/api/v1/nodes/es-lopdpgdd-2018.json #### Ethiopia Computer Crime Proclamation No. 958/2016 - **ID**: et-computer-crime-proclamation-2016 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Ethiopia's Computer Crime Proclamation No. 958/2016, enacted in 2016, establishes cybercrime offences including illegal access to computer systems, illegal interception, data interference, computer fr... - **Discovery URL**: https://bidda.com/api/v1/nodes/et-computer-crime-proclamation-2016.json #### Ethiopia Personal Data Protection Proclamation No. 1321/2022 - **ID**: et-pdp-proclamation-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Ethiopia enacted the Personal Data Protection Proclamation No. 1321/2022, establishing the first comprehensive data protection framework in the country. The Proclamation is administered by the Ethiopi... - **Discovery URL**: https://bidda.com/api/v1/nodes/et-pdp-proclamation-2022.json #### ETSI EN 304 223 - Securing AI (SAI) - **ID**: etsi-en-304-223-sai - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: European telecommunications standards for mitigating attacks against AI models, including data poisoning, model evasion, and supply chain vulnerabilities. - **Discovery URL**: https://bidda.com/api/v1/nodes/etsi-en-304-223-sai.json #### EU AI Act High-Risk Systems Enterprise Compliance Standard v23 - **ID**: eu-ai-act-high-risk-systems-compliance-2026-23 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The EU AI Act establishes a regulatory framework for high-risk AI systems, mandating compliance with stringent requirements to ensure safety, transparency, and accountability. Organizations deploying ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk-systems-compliance-2026-23.json #### EU AI Act High-Risk Systems Enterprise Compliance Standard v8 - **ID**: eu-ai-act-high-risk-systems-compliance-2026-8 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The EU AI Act establishes a regulatory framework for high-risk AI systems, mandating compliance with stringent requirements to ensure safety, transparency, and accountability. Organizations deploying ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk-systems-compliance-2026-8.json #### EU AVMSD Articles 28a and 28b Video-Sharing Platform Obligations (2018/1808 Amendments to 2010/13/EU) - Jurisdiction, Protection of Minors, Age Verification, Parental Control, Rating, Flagging, Media Literacy, Children's Personal Data Restriction - **ID**: eu-avmsd-article-28a-28b-video-sharing-platform-minors-protection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Articles 28a and 28b of the EU Audiovisual Media Services Directive (AVMSD) - inserted by Directive (EU) 2018/1808 amending Directive 2010/13/EU and published in Official Journal L 303 of 28 November ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-avmsd-article-28a-28b-video-sharing-platform-minors-protection.json #### Directive (EU) 2022/2557 on the resilience of critical entities - Article 13: Resilience measures of critical entities - **ID**: eu-cer-directive-2022-2557-article-13-resilience-measures-critical-entities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Critical entities must implement appropriate and proportionate technical, security, and organisational measures to ensure their resilience, based on both Member State and internal risk assessments. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cer-directive-2022-2557-article-13-resilience-measures-critical-entities.json #### Directive (EU) 2022/2557 on the resilience of critical entities - Article 9: Competent authorities and single point of contact - **ID**: eu-cer-directive-2022-2557-article-9-critical-entity-designation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Member States are required to designate or establish one or more competent authorities to apply and enforce the rules of this Directive at a national level. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cer-directive-2022-2557-article-9-critical-entity-designation.json #### Directive (EU) 2022/2557 of the European Parliament and of the Council of 14 December 2022 on the resilience of critical entities and repealing Council Directive 2008/114/EC - **ID**: eu-cer-directive-2022-2557-critical-entity-resilience - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This directive requires EU Member States to identify critical entities across 11 sectors and mandates these entities to conduct all-hazard risk assessments and implement appropriate technical, securit... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cer-directive-2022-2557-critical-entity-resilience.json #### Regulation (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements (Cyber Resilience Act) - Article 10: Enhancing skills in a cyber resilient digital environment - **ID**: eu-cra-2024-2847-article-10-obligations-importers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires Member States to promote measures and strategies for enhancing cybersecurity skills, which indirectly obligates importers to ensure their professionals are aware of and can parti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cra-2024-2847-article-10-obligations-importers.json #### Regulation (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements (Cyber Resilience Act) - Article 11: General product safety - **ID**: eu-cra-2024-2847-article-11-obligations-distributors - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates that for products with digital elements, specific safety provisions from the General Product Safety Regulation (EU) 2023/988 apply to any risks not covered by this Regulation, pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cra-2024-2847-article-11-obligations-distributors.json #### Regulation (EU) 2024/2847 (Cyber Resilience Act) Article 13: Obligations of manufacturers - **ID**: eu-cra-2024-2847-article-13-vulnerability-handling-requirements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Manufacturers must ensure that products with digital elements are designed, developed, and produced in compliance with the essential cybersecurity requirements outlined in Annex I before placing them ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cra-2024-2847-article-13-vulnerability-handling-requirements.json #### REGULATION (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements and amending Regulations (EU) No 168/2013 and (EU) No 2019/1020 and Directive (EU) 2020/1828 (Cyber Resilience Act) - Article 20 Conformity assessment procedures - **ID**: eu-cra-2024-2847-article-20-conformity-assessment-procedures - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Manufacturers must follow specified conformity assessment procedures to demonstrate that their products with digital elements meet the essential cybersecurity requirements before being placed on the m... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cra-2024-2847-article-20-conformity-assessment-procedures.json #### Regulation (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements - Article 3: Definitions - **ID**: eu-cra-2024-2847-article-3-essential-requirements-products-digital-elements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article defines 'product with digital elements' as any software or hardware product, including its remote data processing solutions and components placed on the market separately, establishing th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cra-2024-2847-article-3-essential-requirements-products-digital-elements.json #### REGULATION (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements and amending Regulations (EU) No 168/2013 and (EU) No 2019/1020 and Directive (EU) 2020/1828 (Cyber Resilience Act) - Article 56 Market surveillance and control of products with digital elements in the Union market - **ID**: eu-cra-2024-2847-article-56-market-surveillance-enforcement - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates Member State market surveillance authorities to conduct checks on products with digital elements to ensure they comply with this Regulation, including powers to require informati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cra-2024-2847-article-56-market-surveillance-enforcement.json #### Regulation (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements and amending Regulation (EU) No 910/2014 and Directive (EU) 2019/882 - Article 6 - **ID**: eu-cra-2024-2847-article-6-obligations-manufacturers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the fundamental pre-market compliance obligation that products with digital elements may only be made available on the EU market if they meet all specified requirements. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cra-2024-2847-article-6-obligations-manufacturers.json #### Regulation (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements (Cyber Resilience Act) - Article 64: General conditions for imposing administrative fines - **ID**: eu-cra-2024-2847-article-64-administrative-fines - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the conditions, criteria, and maximum amounts for administrative fines that can be imposed by market surveillance authorities for non-compliance with the Cyber Resilience Act'... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cra-2024-2847-article-64-administrative-fines.json #### Regulation (EU) 2024/2847 on cybersecurity requirements for products with digital elements - Article 9: Stakeholder consultation - **ID**: eu-cra-2024-2847-article-9-end-of-life-policy-manufacturers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the European Commission's obligation to consult with relevant stakeholders, including private sector undertakings, when preparing implementation measures for this Regulation. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cra-2024-2847-article-9-end-of-life-policy-manufacturers.json #### EU Cyber Resilience Act - Regulation (EU) 2024/2847 of 23 October 2024 on Horizontal Cybersecurity Requirements for Products with Digital Elements (Annex I Essential Cybersecurity Requirements; Application from 11 December 2027 with Earlier Phase-in for Reporting and Conformity-Assessment-Body Provisions) - **ID**: eu-cra-essential-cybersecurity-requirements - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: The Cyber Resilience Act, Regulation (EU) 2024/2847 of the European Parliament and of the Council of 23 October 2024 (published in the Official Journal of the European Union L series on 20.11.2024), e... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cra-essential-cybersecurity-requirements.json #### Directive (EU) 2022/2557 of the European Parliament and of the Council of 14 December 2022 on the resilience of critical entities and repealing Council Directive 2008/114/EC - **ID**: eu-critical-entities-resilience-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The EU Critical Entities Resilience (CER) Directive requires designated critical entities across 11 sectors to implement technical, security, and organizational measures to enhance their physical resi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-critical-entities-resilience-2022.json #### EU Cyber Resilience Act (CRA) 2024/2847 - Cybersecurity Requirements for Products with Digital Elements and Vulnerability Handling - **ID**: eu-cyber-resilience-act-2024-2847-product-security-requirements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/2847 establishes mandatory cybersecurity requirements for hardware and software products with digital elements placed on the EU market. Manufacturers must implement security by de... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-2024-2847-product-security-requirements.json #### EU Cyber Resilience Act 2024/3194 - Cybersecurity Requirements for Products with Digital Elements - **ID**: eu-cyber-resilience-act-2024-3194-product-security-requirements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/3194 (Cyber Resilience Act, CRA) establishes mandatory cybersecurity requirements for all products with digital elements (PDEs) placed on the EU market. Manufacturers must impleme... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-2024-3194-product-security-requirements.json #### Regulation (EU) 2024/1469 on horizontal cybersecurity requirements for products with digital elements (Cyber Resilience Act) - **ID**: eu-cyber-resilience-act-2024-essential-requirements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The EU Cyber Resilience Act (CRA) mandates that manufacturers of hardware and software products ensure cybersecurity by design and default, manage vulnerabilities throughout the product lifecycle, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-2024-essential-requirements.json #### Regulation (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements - Article 10: Enhancing skills in a cyber resilient digital environment - **ID**: eu-cyber-resilience-act-article-10-obligations-of-manufacturers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires Member States to promote measures and strategies for developing cybersecurity skills and increasing collaboration with the private sector, including manufacturers, to support the... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-article-10-obligations-of-manufacturers.json #### Regulation (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements - Article 11: General product safety - **ID**: eu-cyber-resilience-act-article-11-vulnerability-handling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates that for products with digital elements, specific chapters of the General Product Safety Regulation (EU) 2023/988 apply to safety risks not covered by the Cyber Resilience Act, p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-article-11-vulnerability-handling.json #### REGULATION (EU) 2024/2847 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 23 October 2024 on horizontal cybersecurity requirements for products with digital elements and amending Regulations (EU) No 168/2013 and (EU) No 2019/1020 and Directive (EU) 2020/1828 (Cyber Resilience Act) - Article 13 - **ID**: eu-cyber-resilience-act-article-13-reporting-obligations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article's specific obligations cannot be determined as the provided regulatory text does not contain the text of Article 13. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-article-13-reporting-obligations.json #### REGULATION (EU) 2024/2847 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 23 October 2024 on horizontal cybersecurity requirements for products with digital elements and amending Regulations (EU) No 168/2013 and (EU) No 2019/1020 and Directive (EU) 2020/1828 (Cyber Resilience Act) - Article 14 - **ID**: eu-cyber-resilience-act-article-14-incident-vulnerability-reporting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation establishes a uniform legal framework for essential cybersecurity requirements for products with digital elements placed on the Union market to address widespread vulnerabilities and i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-article-14-incident-vulnerability-reporting.json #### REGULATION (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements - Article 17: Obligations of importers - **ID**: eu-cyber-resilience-act-article-17-conformity-assessment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires importers to ensure that products with digital elements placed on the EU market comply with essential cybersecurity requirements, including verifying manufacturer conformity asse... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-article-17-conformity-assessment.json #### Regulation (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements, Article 19: CE marking - **ID**: eu-cyber-resilience-act-article-19-ce-marking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates that manufacturers affix the CE marking to products with digital elements to indicate their conformity with the essential cybersecurity requirements of this Regulation before the... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-article-19-ce-marking.json #### REGULATION (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements and amending Regulations (EU) No 168/2013 and (EU) No 2019/1020 and Directive (EU) 2020/1828 (Cyber Resilience Act) - Article 33 - **ID**: eu-cyber-resilience-act-article-33-additional-technical-requirements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes additional technical requirements for manufacturers of products with digital elements to ensure a higher level of cybersecurity throughout the product lifecycle. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-article-33-additional-technical-requirements.json #### Regulation (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements (Cyber Resilience Act) - Article 40: Market Surveillance and Enforcement - **ID**: eu-cyber-resilience-act-article-40-market-surveillance-and-enforcement - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the framework for market surveillance authorities to monitor and enforce compliance with the cybersecurity requirements for products with digital elements placed on the Union ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-article-40-market-surveillance-and-enforcement.json #### Regulation (EU) 2024/2847 on horizontal cybersecurity requirements for products with digital elements - Article 6: Requirements for products with digital elements - **ID**: eu-cyber-resilience-act-article-6-essential-cybersecurity-requirements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Products with digital elements can only be placed on the market if both the products and the manufacturer's processes meet the essential cybersecurity requirements detailed in Annex I. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-article-6-essential-cybersecurity-requirements.json #### EU Cyber Resilience Act Regulation 2024/2847 - Horizontal Cybersecurity Requirements for Products with Digital Elements, In Force 10 December 2024 - **ID**: eu-cyber-resilience-act-regulation-2024-2847 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Manufacturers, importers, and distributors placing products with digital elements (PDEs) on the EU market must comply with Regulation (EU) 2024/2847 (Cyber Resilience Act), which entered into force on... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-regulation-2024-2847.json #### Regulation (EU) 2024/2847 of the European Parliament and of the Council of 11 October 2024 laying down measures to strengthen solidarity and capacities in the Union to detect, prepare for and respond to cybersecurity threats and incidents (EU Cyber Solidarity Act) - **ID**: eu-cyber-solidarity-act-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation establishes a European Cyber Shield and a Cyber Emergency Mechanism to enhance the EU's collective ability to detect, prepare for, and respond to significant cybersecurity threats. It ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-solidarity-act-2024.json #### EU Cyber Solidarity Act Regulation 2025/38 - European Cybersecurity Alert System, Emergency Mechanism, and Incident Review - **ID**: eu-cyber-solidarity-act-regulation-2025-38 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: EU Member States, national and cross-border Security Operations Centres (Cyber Hubs), critical infrastructure operators, trusted cybersecurity service providers, and ENISA must operate under Regulatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-solidarity-act-regulation-2025-38.json #### Regulation (EU) 2019/881 of the European Parliament and of the Council of 17 April 2019 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification and repealing Regulation (EU) No 526/2013 (Cybersecurity Act) - **ID**: eu-cybersecurity-act-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation establishes a permanent mandate for ENISA, the EU Agency for Cybersecurity, and creates a voluntary, EU-wide cybersecurity certification framework for ICT products, services, and proce... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-2019.json #### EU Cybersecurity Act 2019/881 - **ID**: eu-cybersecurity-act-2019-881 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2019/881 gives ENISA a permanent mandate and establishes the EU cybersecurity certification framework, creating voluntary (and progressively mandatory) EU certification schemes at thre... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-2019-881.json #### Regulation (EU) 2019/881 on ENISA (the European Union Agency for Cybersecurity) and on information and communication technology cybersecurity certification - Article 2 - **ID**: eu-cybersecurity-act-article-2-definitions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the official definitions for key terms such as 'conformity assessment', 'assurance level', and 'technical specification' that must be used when interpreting and applying the E... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-2-definitions.json #### Regulation (EU) 2019/881 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification (Cybersecurity Act) - Article 4: Objectives - **ID**: eu-cybersecurity-act-article-4-mandate-of-enisa - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the core objectives for ENISA, mandating it to act as the EU's center of expertise on cybersecurity, assist in policy implementation, support capacity-building, promote cooper... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-4-mandate-of-enisa.json #### Regulation (EU) 2019/881 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification (Cybersecurity Act) - Article 46: European cybersecurity certification framework - **ID**: eu-cybersecurity-act-article-46-european-cybersecurity-certification-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the European cybersecurity certification framework to provide a mechanism for creating harmonised certification schemes that attest ICT products, services, and processes compl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-46-european-cybersecurity-certification-framework.json #### Regulation (EU) 2019/881 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification (Cybersecurity Act) - Article 47 - **ID**: eu-cybersecurity-act-article-47-national-cybersecurity-certification-authorities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article obligates the European Commission to publish and regularly update a Union rolling work programme that identifies strategic priorities and a list of ICT products, services, and processes f... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-47-national-cybersecurity-certification-authorities.json #### Regulation (EU) 2019/881 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification - Article 49: Preparation, adoption and review of a European cybersecurity certification scheme - **ID**: eu-cybersecurity-act-article-49-european-cybersecurity-certification-scheme - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article outlines the process for the European Union Agency for Cybersecurity (ENISA) to prepare, and for the Commission to adopt, European cybersecurity certification schemes, including mandatory... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-49-european-cybersecurity-certification-scheme.json #### Regulation (EU) 2019/881 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification (Cybersecurity Act) - Article 51 - **ID**: eu-cybersecurity-act-article-51-issuance-of-certificates - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates that European cybersecurity certification schemes must be designed to achieve specific security objectives, including data protection, access control, vulnerability management, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-51-issuance-of-certificates.json #### Regulation (EU) 2019/881 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification (Cybersecurity Act) - Article 54 - **ID**: eu-cybersecurity-act-article-54-vendor-self-assessment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates national cybersecurity certification authorities to monitor and enforce compliance for ICT products, services, and processes, particularly for those using self-assessment, and to... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-54-vendor-self-assessment.json #### EU Cybersecurity Act (Regulation (EU) 2019/881) - Article 55: Supplementary cybersecurity information for certified ICT products, ICT services and ICT processes - **ID**: eu-cybersecurity-act-article-55-vulnerability-disclosure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Manufacturers or providers of certified ICT products, services, or processes must publicly provide supplementary cybersecurity information, including secure usage guidance, support periods, vulnerabil... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-55-vulnerability-disclosure.json #### Regulation (EU) 2019/881 on ENISA and on information and communications technology cybersecurity certification (Cybersecurity Act) - Article 56 - **ID**: eu-cybersecurity-act-article-56-assurance-levels - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the obligations for national cybersecurity certification authorities, including supervising scheme compliance, monitoring manufacturers, assisting accreditation bodies, author... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-56-assurance-levels.json #### Regulation (EU) 2019/881 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification and repealing Regulation (EU) No 526/2013 (Cybersecurity Act) - Article 58: Tasks of the national cybersecurity certification authorities - **ID**: eu-cybersecurity-act-article-58-ncca-tasks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article outlines the mandatory tasks and powers of national cybersecurity certification authorities (NCCAs), including supervising certification schemes, enforcing compliance, handling complaints... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-58-ncca-tasks.json #### REGULATION (EU) 2019/881 (Cybersecurity Act) Article 65 - Penalties - **ID**: eu-cybersecurity-act-article-65-penalties - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Member States must establish and notify the Commission of effective, proportionate, and dissuasive penalties for infringements related to ICT cybersecurity certification. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-65-penalties.json #### Regulation (EU) 2019/881 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification - Article 9: Knowledge and information - **ID**: eu-cybersecurity-act-article-9-enisa-tasks-cybersecurity-certification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: ENISA is required to perform strategic analyses of threats and technologies, provide guidance and best practices, and make cybersecurity information publicly available through a dedicated portal to su... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-article-9-enisa-tasks-cybersecurity-certification.json #### EU Cybersecurity Act - ENISA Certification Schemes: EUCS (Cloud), EUCC (Common Criteria) and Candidate Scheme Development Process - **ID**: eu-cybersecurity-act-enisa-certification-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The EU Cybersecurity Act (Regulation (EU) 2019/881) establishes a voluntary, EU-wide cybersecurity certification framework for ICT products, services, and processes. Under Title III, Articles 46-56, E... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cybersecurity-act-enisa-certification-framework.json #### Directive (EU) 2026/799 of the European Parliament and of the Council of 30 March 2026 harmonising certain aspects of insolvency law - **ID**: eu-dir-2026-0799-harmonising-certain-aspects-of-insolvency-law - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Directive harmonises certain aspects of insolvency law across Member States to improve the functioning of the internal market and the Capital Markets Union by removing obstacles to free movement ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2026-0799-harmonising-certain-aspects-of-insolvency-law.json #### Regulation (EU) 2022/2554 (DORA) Articles 17-23: ICT-Related Incident Management, Classification, and Reporting - **ID**: eu-dora-article-17-23-incident-classification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: EU DORA Articles 17-23 mandate that financial entities establish a robust ICT-related incident management process, classify incidents (especially major ones) based on specific criteria defined in Arti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-article-17-23-incident-classification.json #### EU Digital Operational Resilience Act (DORA) - Chapter V, Section I & II: Management of ICT Third-Party Risk (Articles 28-44) - **ID**: eu-dora-articles-28-44-third-party-ict-risk - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Articles 28-44 of the EU DORA mandate that financial entities manage ICT third-party risk through a comprehensive lifecycle approach, including pre-contract due diligence, mandatory contractual provis... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-articles-28-44-third-party-ict-risk.json #### EU DORA Articles 5-16 ICT Risk Management Framework - ICT Risk Governance, Protection, Detection, Recovery and Communication for Financial Entities - **ID**: eu-dora-ict-risk-management-articles-5-16 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Mandates that EU financial entities establish, maintain, and annually review a comprehensive, documented ICT risk management framework, with ultimate responsibility resting with the management body (A... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dora-ict-risk-management-articles-5-16.json #### Regulation (EU) 2024/1183 of the European Parliament and of the Council of 11 April 2024 amending Regulation (EU) No 910/2014 as regards establishing the European Digital Identity Framework - **ID**: eu-eidas-2-0-digital-identity-regulation-2024 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: This regulation establishes a Union-wide framework for secure, user-controlled digital identities through the European Digital Identity Wallet (EUDIW), mandating Member States to issue digital identit... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eidas-2-0-digital-identity-regulation-2024.json #### EU eIDAS 2 Regulation 2024/1183 - European Digital Identity Framework and EUDI Wallet - **ID**: eu-eidas-2-regulation-2024-1183 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: EU Member States must, by December 2026, provide citizens and residents with European Digital Identity Wallets (EUDI Wallets), public bodies that require electronic identification and authentication t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eidas-2-regulation-2024-1183.json #### EU eIDAS 2 Regulation 2024/1183 - European Digital Identity (EUDI) Wallet, Trust Services, and Identity Framework - **ID**: eu-eidas2-regulation-2024-1183-digital-identity-wallet - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1183 (amending eIDAS Regulation 910/2014) requires all EU Member States to issue a free European Digital Identity (EUDI) Wallet by 2026, allowing citizens and businesses to use ve... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eidas2-regulation-2024-1183-digital-identity-wallet.json #### Regulation (EU) 2019/881 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification ('Cybersecurity Act') - Article 49: Preparation, adoption and review of a European cybersecurity certification scheme - **ID**: eu-enisa-cybersecurity-act-2019-1881-article-49-certification-schemes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article obligates the European Union Agency for Cybersecurity (ENISA) to prepare a candidate European cybersecurity certification scheme upon request from the Commission, ensuring it meets the re... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-enisa-cybersecurity-act-2019-1881-article-49-certification-schemes.json #### Regulation (EU) 2019/881 (Cybersecurity Act) - Article 8: Market, cybersecurity certification, and standardisation - **ID**: eu-enisa-cybersecurity-act-2019-1881-article-8-enisa-mandate-tasks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates the European Union Agency for Cybersecurity (ENISA) to support and promote Union policy on cybersecurity certification for ICT products, services, and processes through specific ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-enisa-cybersecurity-act-2019-1881-article-8-enisa-mandate-tasks.json #### Commission Recommendation (EU) 2021/1052 of 23 June 2021 on building a Joint Cyber Unit - **ID**: eu-joint-cyber-unit-framework-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This framework establishes a platform for structured cooperation between EU bodies (ENISA, CERT-EU), Member States' authorities, and private sector partners to ensure a coordinated response to large-s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-joint-cyber-unit-framework-2021.json #### EU NIS2 Directive 2022/2555 -- Cybersecurity Requirements for Essential and Important Entities - **ID**: eu-nis2-directive-2022-2555 - **Category**: Cybersecurity - **Version**: 2024.1.0 - **BLUF**: Directive (EU) 2022/2555 (NIS2) replaces the original NIS Directive 2016/1148 and significantly expands the scope of mandatory EU cybersecurity requirements. Member States were required to transpose N... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-directive-2022-2555.json #### EU NIS2 Directive 2022/2555 - Cybersecurity Obligations for Essential & Important Entities - **ID**: eu-nis2-directive-2022-2555-cybersecurity-essential-entities - **Category**: Cybersecurity - **Version**: 2.0 - **BLUF**: NIS2 Directive 2022/2555 (effective October 2024) expands EU cybersecurity obligations to 18 critical sectors, requires risk management measures, 24-hour initial incident notifications, board-level ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-directive-2022-2555-cybersecurity-essential-entities.json #### EU NIS2 Directive 2022/2555 - Network and Information Security for Essential and Important Entities - **ID**: eu-nis2-directive-2022-2555-network-information-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2022/2555 (NIS2) replaces the original NIS Directive and imposes mandatory cybersecurity risk management measures and 24/72-hour incident reporting obligations on essential and importan... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-directive-2022-2555-network-information-security.json #### EU NIS2 Directive: Cybersecurity Obligations for Essential and Important Entities - **ID**: eu-nis2-essential-important-entities-obligations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Under Articles 20 and 21 of the NIS2 Directive, essential and important entities must implement comprehensive cybersecurity risk-management measures, including policies on risk analysis, incident hand... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-essential-important-entities-obligations.json #### Commission Implementing Regulation (EU) 2024/2690 laying down rules for the application of Directive (EU) 2022/2555 as regards the technical and methodological requirements for cybersecurity risk-management measures - **ID**: eu-nis2-implementing-regulation-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation establishes the specific technical and methodological requirements for the cybersecurity risk-management measures that essential and important entities must implement under Article 21 ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-implementing-regulation-2024.json #### EU Commission Implementing Regulation (EU) 2024/2690 - NIS2 Technical and Methodological Cybersecurity Risk-Management Measures and Significant Incident Criteria (17 October 2024) - **ID**: eu-nis2-implementing-regulation-2024-2690 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: Commission Implementing Regulation (EU) 2024/2690 of 17 October 2024 lays down rules for the application of NIS2 Directive (EU) 2022/2555 as regards technical and methodological requirements of cybers... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-implementing-regulation-2024-2690.json #### EU NIS2 Implementing Regulation 2024/2690 - 150+ Cybersecurity Controls for Digital Infrastructure Providers, In Force 17 October 2024 - **ID**: eu-nis2-implementing-regulation-2024-2690-digital-infrastructure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: DNS service providers, TLD name registries, cloud computing service providers, data centre service providers, content delivery network providers, managed service providers, managed security service pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-implementing-regulation-2024-2690-digital-infrastructure.json #### Directive 2014/53/EU on Radio Equipment (RED) - Cybersecurity, Privacy, and Fraud Protection Requirements (Article 3.3 d, e, f) - **ID**: eu-radio-equipment-directive-2014 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The EU Radio Equipment Directive (RED), through Delegated Regulation (EU) 2022/30 activating Article 3.3 (d), (e), and (f), mandates that internet-connected radio equipment and certain wearables incor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-radio-equipment-directive-2014.json #### Regulation (EU) 2023/588 establishing the Union Secure Connectivity Programme for the period 2023-2027 - **ID**: eu-reg-2023-0588-establishing-the-union-secure-connectivity-programme-for-the - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2023/588 of the European Parliament and of the Council of 15 March 2023 establishes the Union Secure Connectivity Programme for the period 2023-2027. The Programme aims to provide resi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2023-0588-establishing-the-union-secure-connectivity-programme-for-the.json #### Regulation (EU, Euratom) 2023/2841 of the European Parliament and of the Council of 13 December 2023 laying down measures for a high common level of cybersecurity at the institutions, bodies, offices and agencies of the Union - **ID**: eu-reg-2023-2841-laying-down-measures-for-a-high-common-level-of-cybersecurit - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Regulation (EU, Euratom) 2023/2841 requires each Union entity to establish an internal cybersecurity risk-management, governance and control framework. Each entity must implement appropriate and propo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2023-2841-laying-down-measures-for-a-high-common-level-of-cybersecurit.json #### Corrigendum to Commission Delegated Regulation (EU) 2025/20 on safe provision of ground handling services - **ID**: eu-reg-2025-0020-corrigendum-to-commission-delegated-regulation-eu-2025-20-of - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This is a Corrigendum to Commission Delegated Regulation (EU) 2025/20 of 19 December 2024, which supplements Regulation (EU) 2018/1139 by laying down requirements for the safe provision of ground hand... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0020-corrigendum-to-commission-delegated-regulation-eu-2025-20-of.json #### Corrigendum to Commission Implementing Regulation (EU) 2025/23 on oversight of ground handling services and organisations - **ID**: eu-reg-2025-0023-corrigendum-to-commission-implementing-regulation-eu-2025-23 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This corrigendum corrects Commission Implementing Regulation (EU) 2025/23 of 19 December 2024, which lays down rules for the application of Regulation (EU) 2018/1139 as regards requirements for the ov... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0023-corrigendum-to-commission-implementing-regulation-eu-2025-23.json #### FDA Cybersecurity for Medical Devices Enterprise Compliance Standard v12 - **ID**: fda-cybersecurity-for-medical-devices-compliance-2026-12 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The FDA Cybersecurity for Medical Devices guidelines require manufacturers to implement a comprehensive cybersecurity risk management program throughout the device lifecycle. This includes identifying... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-cybersecurity-for-medical-devices-compliance-2026-12.json #### FedRAMP - US Federal Cloud Authorization - **ID**: fedramp-authorization - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: The Federal Risk and Authorization Management Program (FedRAMP), established by OMB Memorandum M-11-33 (June 2011) and codified into law by the FedRAMP Authorization Act (December 2022, part of NDAA F... - **Discovery URL**: https://bidda.com/api/v1/nodes/fedramp-authorization.json #### FERC Order No. 887: Reliability Standard CIP-007-7, Internal Network Security Monitoring for High and Medium Impact BES Cyber Systems - **ID**: ferc-order-887-internal-network-security-monitoring - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This order directs the North American Electric Reliability Corporation (NERC) to implement Reliability Standard CIP-007-7, which mandates Internal Network Security Monitoring (INSM) for all high and m... - **Discovery URL**: https://bidda.com/api/v1/nodes/ferc-order-887-internal-network-security-monitoring.json #### Finland Data Protection Act 2018 (Tietosuojalaki, Act No. 1050/2018) - GDPR National Implementation - **ID**: fi-tietosuojalaki-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Finland's Data Protection Act (Tietosuojalaki, Act No. 1050/2018 of 5 December 2018), published in the Finnish Statutes (Suomen Säädöskokoelma) and entering into force on 1 January 2019, is Finland's ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fi-tietosuojalaki-2018.json #### Advanced Encryption Standard (AES) - **ID**: fips-197-advanced-encryption-standard - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Advanced Encryption Standard (AES) specifies a FIPS-approved cryptographic algorithm that can be used to protect electronic data. The AES algorithm is a symmetric block cipher that can encrypt (en... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-197-advanced-encryption-standard.json #### Standards for Security Categorization of Federal Information and Information Systems - **ID**: fips-199-security-categorization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: FIPS Publication 199 establishes standards for categorizing federal information and information systems to provide a common framework for expressing security. The categorization is based on the object... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-199-security-categorization.json #### Minimum Security Requirements for Federal Information and Information Systems - **ID**: fips-200-minimum-security-requirements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This standard, mandated by the Federal Information Security Management Act (FISMA) of 2002, specifies minimum security requirements for information and information systems supporting the executive age... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-200-minimum-security-requirements.json #### Personal Identity Verification (PIV) of Federal Employees and Contractors - **ID**: fips-201-3-piv-federal-employees - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document establishes a standard for a Personal Identity Verification (PIV) system that meets the control and security objectives of Homeland Security Presidential Directive-12 (HSPD-12). It is ba... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-201-3-piv-federal-employees.json #### Post-Quantum Cryptography (FIPS 203) - **ID**: fips-203-quantum-kem - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: National standards for the Module-Lattice-Based Key-Encapsulation Mechanism (ML-KEM), ensuring security in the era of Cryptographically Relevant Quantum Computers (CRQC). - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-203-quantum-kem.json #### Post-Quantum DSA (FIPS 204) - **ID**: fips-204-quantum-dsa - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: Compliance with Federal Information Processing Standard 204 mandates a strict implementation of the Module-Lattice-Based Digital Signature Algorithm (ML-DSA). Systems must exclusively employ one of th... - **Discovery URL**: https://bidda.com/api/v1/nodes/fips-204-quantum-dsa.json #### FIRST Traffic Light Protocol Version 2.0 (TLP:RED, TLP:AMBER, TLP:AMBER+STRICT, TLP:GREEN, TLP:CLEAR, August 2022 authoritative replacement for TLP 1.0 WHITE) - **ID**: first-tlp-2-0-traffic-light-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Traffic Light Protocol (TLP) Version 2.0, maintained by the Forum of Incident Response and Security Teams (FIRST), is the canonical four-label classification scheme for restricting the onward shar... - **Discovery URL**: https://bidda.com/api/v1/nodes/first-tlp-2-0-traffic-light-protocol.json #### FISMA Compliance Enterprise Compliance Standard v24 - **ID**: fisma-compliance-compliance-2026-24 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Federal Information Security Management Act (FISMA) mandates that federal agencies develop, document, and implement an information security program to protect government information, operations, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/fisma-compliance-compliance-2026-24.json #### FISMA Compliance Enterprise Compliance Standard v9 - **ID**: fisma-compliance-compliance-2026-9 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Federal Information Security Management Act (FISMA) mandates federal agencies to secure their information systems. It requires the development, documentation, and implementation of an information ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fisma-compliance-compliance-2026-9.json #### Fiji Online Safety Act 2018 - Personal Data and Privacy Provisions - **ID**: fj-osa-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Fiji enacted the Online Safety Act 2018, which establishes the Online Safety Commission (OSC) and creates a regulatory framework governing harmful online content and conduct, including provisions for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fj-osa-2018.json #### Falkland Islands Data Protection Ordinance 2018 - **ID**: fk-dpo-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Falkland Islands, a British Overseas Territory, enacted the Data Protection Ordinance 2018 aligned with UK data protection standards. The Ordinance is administered by the Falkland Islands Governme... - **Discovery URL**: https://bidda.com/api/v1/nodes/fk-dpo-2018.json #### Micronesia (FSM) - Constitutional Privacy Rights and Pacific Islands Forum Data Protection Framework - **ID**: fm-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Federated States of Micronesia (FSM) is an independent nation in the western Pacific Ocean governed under a federal constitutional system established by the Constitution of the Federated States of... - **Discovery URL**: https://bidda.com/api/v1/nodes/fm-framework.json #### Faroe Islands Lov um Persónupplýsingar (Personal Data Protection Law) 2018 - **ID**: fo-dp-law-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Faroe Islands, an autonomous territory of the Kingdom of Denmark, enacted the Lov um Persónupplýsingar (Law on Personal Data) 2018, aligned with the European Union's General Data Protection Regula... - **Discovery URL**: https://bidda.com/api/v1/nodes/fo-dp-law-2018.json #### France Digital Republic Act 2016 (Loi pour une République numérique) - **ID**: fr-loi-republique-numerique-2016 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: France's Loi n° 2016-1321 pour une République numérique signed October 7, 2016 modernises French digital law by establishing rights to digital portability, introducing open data obligations for public... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-loi-republique-numerique-2016.json #### France Loi SREN No. 2024-449 of 21 May 2024 - Securing and Regulating the Digital Space, Cloud Sovereignty, and Cloud Interoperability Obligations - **ID**: fr-loi-sren-2024-449-digital-space - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Online service operators, cloud computing service providers, public administration bodies, and operators of sensitive data hosting services in France must comply with the Loi SREN (Loi No. 2024-449 of... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-loi-sren-2024-449-digital-space.json #### France LPM 2013 - Cybersecurity Obligations for Operators of Vital Importance - **ID**: fr-lpm-cybersecurity-oiv-2013 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: France's Military Programming Law 2014-2019 (Loi n° 2013-1168 du 18 décembre 2013), Article 22, creates the legal framework for protecting critical information systems operated by Operators of Vital I... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-lpm-cybersecurity-oiv-2013.json #### Gabon Personal Data Protection Law - CNPDP Compliance Framework - **ID**: ga-pdp-law-2011 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Gabon Law No. 001/2011 on Protection of Personal Data establishes consent-based processing obligations, data subject rights, and mandatory data controller registration. The Commission Nationale pour l... - **Discovery URL**: https://bidda.com/api/v1/nodes/ga-pdp-law-2011.json #### GCC Unified Cybersecurity Framework - Gulf Cooperation Council Mutual Cybersecurity Standards: Critical Infrastructure Protection Requirements, Cross-Border Incident Coordination and Member State Harmonisation - **ID**: gcc-unified-cybersecurity-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This framework establishes a mandatory, unified set of cybersecurity controls for Gulf Cooperation Council (GCC) member states to protect Critical National Infrastructure (CNI). It requires organizati... - **Discovery URL**: https://bidda.com/api/v1/nodes/gcc-unified-cybersecurity-framework.json #### Grenada Personal Information Act 2014 - **ID**: gd-pia-2014 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Grenada enacted the Personal Information Act 2014, a CARICOM and OECS-aligned statute establishing a rights-based framework for the protection of personal information held by organisations. The Act is... - **Discovery URL**: https://bidda.com/api/v1/nodes/gd-pia-2014.json #### Georgia Law on Personal Data Protection 2011 - Personal Data Protection Inspector - **ID**: ge-pdp-law-2011 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Georgia's Law on Personal Data Protection (საქართველოს კანონი პერსონალური მონაცემების დაცვის შესახებ) - adopted by the Parliament of Georgia on 28 December 2011 and entering into force on 1 May 2012, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ge-pdp-law-2011.json #### Guernsey Data Protection (Bailiwick of Guernsey) Law 2017 - ODPA - **ID**: gg-dpa-2017 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Guernsey's Data Protection (Bailiwick of Guernsey) Law 2017, which came into force on 25 May 2018 (the same date as the EU General Data Protection Regulation), is Guernsey's primary personal data prot... - **Discovery URL**: https://bidda.com/api/v1/nodes/gg-dpa-2017.json #### Ghana Cybersecurity Act 2020 (Act 1038) - **ID**: gh-cybersecurity-act-2020 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Ghana's Cybersecurity Act 2020 (Act 1038), assented December 2020, establishes the Cyber Security Authority as the national cybersecurity regulatory body responsible for designating Critical Informati... - **Discovery URL**: https://bidda.com/api/v1/nodes/gh-cybersecurity-act-2020.json #### Gibraltar Data Protection Act 2004 (GDPR-Equivalent) - Gibraltar ICO - **ID**: gi-dpa-2004 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Gibraltar's data protection framework, established through the Data Protection Act 2004 and progressively updated to achieve GDPR-equivalence with effect from 25 May 2018 when Gibraltar applied the EU... - **Discovery URL**: https://bidda.com/api/v1/nodes/gi-dpa-2004.json #### Greenland Inatsisartutlov om behandling af personoplysninger (Personal Data Processing Law) 2019 - **ID**: gl-dp-law-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Greenland (Kalaallit Nunaat), an autonomous territory of the Kingdom of Denmark, enacted its own Personal Data Processing Law (Inatsisartutlov om behandling af personoplysninger) in 2019, aligned with... - **Discovery URL**: https://bidda.com/api/v1/nodes/gl-dp-law-2019.json #### GLBA Safeguards Rule Enterprise Compliance Standard v10 - **ID**: glba-safeguards-rule-compliance-2026-10 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The GLBA Safeguards Rule mandates that financial institutions implement a comprehensive information security program to protect customer information. This includes conducting risk assessments, impleme... - **Discovery URL**: https://bidda.com/api/v1/nodes/glba-safeguards-rule-compliance-2026-10.json #### GLBA Safeguards Rule Enterprise Compliance Standard v25 - **ID**: glba-safeguards-rule-compliance-2026-25 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The GLBA Safeguards Rule mandates that financial institutions implement comprehensive security programs to protect customer information. Institutions must assess risks to customer data, implement safe... - **Discovery URL**: https://bidda.com/api/v1/nodes/glba-safeguards-rule-compliance-2026-25.json #### Gambia Data Protection Act 2021 - **ID**: gm-dpa-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Gambia enacted the Data Protection Act 2021 as part of comprehensive post-2017 digital governance reforms following the country's democratic transition. The Act is administered by the Public Utili... - **Discovery URL**: https://bidda.com/api/v1/nodes/gm-dpa-2021.json #### Guinea Law No. L/2016/037/AN on Cybersecurity and Personal Data Protection - **ID**: gn-pdp-law-2016 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Guinea enacted Law No. L/2016/037/AN on Cybersecurity and Personal Data Protection, consolidating cybersecurity and privacy obligations in a single instrument. The law is administered by the Autorité ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gn-pdp-law-2016.json #### Equatorial Guinea ANGTIC Framework - AU Malabo Convention and Constitutional Privacy Obligations - **ID**: gq-angtic-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Republic of Equatorial Guinea has established the Agencia Nacional de Tecnologías de la Información y Comunicaciones de Guinea Ecuatorial (ANGTIC) as the national authority for information and com... - **Discovery URL**: https://bidda.com/api/v1/nodes/gq-angtic-framework.json #### Greece Data Protection Law 4624/2019 - GDPR National Implementation - **ID**: gr-law-4624-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Greece's Data Protection Law 4624/2019 (Νόμος 4624/2019, published in Government Gazette I/137 of 29 August 2019, 'On Personal Data Protection and Implementation of EU Regulation 2016/679') is Greece'... - **Discovery URL**: https://bidda.com/api/v1/nodes/gr-law-4624-2019.json #### Guatemala Law on Access to Public Information 2008 - Personal Data Protection Provisions - **ID**: gt-laip-2008 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Guatemala enacted the Law on Access to Public Information (Ley de Acceso a la Información Pública, LAIP, Decree 57-2008), which includes provisions for the protection of personal data held by public b... - **Discovery URL**: https://bidda.com/api/v1/nodes/gt-laip-2008.json #### Guam - Federal and Territorial Privacy Rights Framework - **ID**: gu-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Guam is an unincorporated organised territory of the United States located in the western Pacific Ocean. Guam has its own Organic Act and constitution-equivalent instrument establishing a civilian gov... - **Discovery URL**: https://bidda.com/api/v1/nodes/gu-framework.json #### Guide to Computer Security Log Management - **ID**: guide-computer-security-log-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: A log is a record of the events occurring within an organization’s systems and networks. Logs are composed of log entries; each entry contains information related to a specific event that has occurred... - **Discovery URL**: https://bidda.com/api/v1/nodes/guide-computer-security-log-management.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: guide-developing-security-plans - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of system security planning is to improve protection of information system resources. The protection of a system must be documented in a system security plan, a requirement of the Office... - **Discovery URL**: https://bidda.com/api/v1/nodes/guide-developing-security-plans.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: guide-developing-security-plans-federal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of system security planning is to improve protection of information system resources. This guidance is a requirement of the Office of Management and Budget (OMB) Circular A-130 and the F... - **Discovery URL**: https://bidda.com/api/v1/nodes/guide-developing-security-plans-federal.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: guide-developing-security-plans-federal-information-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of system security planning is to improve protection of information system resources. All federal systems have some level of sensitivity and require protection, which must be documented ... - **Discovery URL**: https://bidda.com/api/v1/nodes/guide-developing-security-plans-federal-information-systems.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: guide-developing-security-plans-federal-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of system security planning is to improve protection of information system resources, as all federal systems have some level of sensitivity and require protection. The protection of a sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/guide-developing-security-plans-federal-systems.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: guide-for-developing-security-plans - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of system security planning is to improve protection of information system resources. The protection of a system must be documented in a system security plan, a requirement of the Office... - **Discovery URL**: https://bidda.com/api/v1/nodes/guide-for-developing-security-plans.json #### Volume I: Guide for Mapping Types of Information and Information Systems to Security Categories - **ID**: guide-mapping-information-types-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guideline has been developed to assist Federal government agencies to categorize information and information systems. The guideline’s objective is to facilitate application of appropriate levels ... - **Discovery URL**: https://bidda.com/api/v1/nodes/guide-mapping-information-types-security.json #### Guide to Enterprise Telework, Remote Access, and Bring Your Own Device (BYOD) Security - **ID**: guide-telework-remote-access-byod - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: For many organizations, their employees, contractors, business partners, vendors, and other users utilize enterprise telework technologies to perform work from external locations, using remote access ... - **Discovery URL**: https://bidda.com/api/v1/nodes/guide-telework-remote-access-byod.json #### Guide to Storage Encryption Technologies for End User Devices - **ID**: guide-to-storage-encryption-technologies - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication assists organizations in understanding, planning, implementing, and maintaining storage encryption technologies for end user devices, including personal computers, consumer devices li... - **Discovery URL**: https://bidda.com/api/v1/nodes/guide-to-storage-encryption-technologies.json #### Guidelines for Securing Wireless Local Area Networks (WLANs) - **ID**: guidelines-securing-wireless-local-area-networks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: A wireless local area network (WLAN) is a group of wireless networking devices within a limited geographic area that exchange data through radio communications, based on the IEEE 802.11 standard. The ... - **Discovery URL**: https://bidda.com/api/v1/nodes/guidelines-securing-wireless-local-area-networks.json #### Guinea-Bissau ARN Framework - ECOWAS Data Protection Obligations and Telecommunications Personal Data - **ID**: gw-arn-ecowas - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Guinea-Bissau's legal framework for personal data protection is anchored in the ECOWAS Supplementary Act A/SA.1/01/10 on Personal Data Protection, which is binding on Guinea-Bissau as a member state o... - **Discovery URL**: https://bidda.com/api/v1/nodes/gw-arn-ecowas.json #### Guyana Data Protection Act 2024 - **ID**: gy-dpa-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Guyana enacted the Data Protection Act 2024, establishing the first comprehensive data protection framework in the country following years of digital economy growth driven by the oil and gas sector. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/gy-dpa-2024.json #### HIPAA Omnibus Rule Enterprise Compliance Standard v19 - **ID**: hipaa-omnibus-rule-compliance-2026-19 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The HIPAA Omnibus Rule enhances the privacy and security protections for health information under the Health Insurance Portability and Accountability Act (HIPAA). It mandates that covered entities and... - **Discovery URL**: https://bidda.com/api/v1/nodes/hipaa-omnibus-rule-compliance-2026-19.json #### HIPAA Omnibus Rule Enterprise Compliance Standard v4 - **ID**: hipaa-omnibus-rule-compliance-2026-4 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The HIPAA Omnibus Rule enhances the privacy and security protections for health information under the Health Insurance Portability and Accountability Act (HIPAA). It mandates that covered entities and... - **Discovery URL**: https://bidda.com/api/v1/nodes/hipaa-omnibus-rule-compliance-2026-4.json #### Hong Kong Personal Data (Privacy) Ordinance Cap. 486 - PCPD - **ID**: hk-pdpo-1996 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Hong Kong's Personal Data (Privacy) Ordinance (PDPO) - Cap. 486 of the Laws of Hong Kong - was enacted by the Legislative Council in 1995 and came into operation on 20 December 1996, making Hong Kong ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-pdpo-1996.json #### Hong Kong Personal Data (Privacy) (Amendment) Ordinance 2021 - **ID**: hk-pdpo-2021-amendment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Hong Kong's Personal Data (Privacy) (Amendment) Ordinance 2021, effective October 8, 2021, criminalises doxxing by making the disclosure of others' personal data without consent with intent to cause h... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-pdpo-2021-amendment.json #### Honduras Framework Law for Personal Data Protection (Decree No. 172-2020) - **ID**: hn-pdpl-2020 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Honduras enacted Decree No. 172-2020 (Ley Marco para la Protección de Datos Personales), its first comprehensive personal data protection law. Administered by the Instituto de Acceso a la Información ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hn-pdpl-2020.json #### Cybersecurity Framework Profile for Hybrid Satellite Networks (HSN) - **ID**: hsn-cybersecurity-framework-profile - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of this Cybersecurity Profile is to identify an approach to assess the cybersecurity posture of Hybrid Satellite Networks (HSN) that provide services such as satellite-based systems for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hsn-cybersecurity-framework-profile.json #### Haiti CONATEL Framework - Constitutional Privacy Rights and Telecommunications Personal Data Obligations - **ID**: ht-conatel-2000 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Haiti's legal framework for personal data protection is grounded in the constitutional right to privacy established by the Haitian Constitution of 1987, which protects individuals from unreasonable in... - **Discovery URL**: https://bidda.com/api/v1/nodes/ht-conatel-2000.json #### Hungary Information Self-Determination and Freedom of Information Act 2011 (Infotv) - GDPR National Implementation - **ID**: hu-infotv-2011 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Hungary's Act CXII of 2011 on Informational Self-Determination and Freedom of Information (Az információs önrendelkezési jogról és az információszabadságról szóló 2011. évi CXII. törvény - Infotv), pu... - **Discovery URL**: https://bidda.com/api/v1/nodes/hu-infotv-2011.json #### IAEA Nuclear Security Series No. 33-T - Computer Security of Instrumentation and Control Systems at Nuclear Facilities - **ID**: iaea-nuclear-cyber-security-nst048 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This IAEA technical guidance requires nuclear facility operators to establish, implement, and maintain a comprehensive Computer Security Programme (CSP) for all Instrumentation and Control (I&C) syste... - **Discovery URL**: https://bidda.com/api/v1/nodes/iaea-nuclear-cyber-security-nst048.json #### Indonesia Electronic Information and Transactions Law Amendment 2024 (UU ITE Amendment) - **ID**: id-ite-law-amendment-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Indonesia's Law No. 1 of 2024 amending Law No. 11 of 2008 on Electronic Information and Transactions (UU ITE) signed January 2, 2024 revises provisions on online defamation and hate speech, strengthen... - **Discovery URL**: https://bidda.com/api/v1/nodes/id-ite-law-amendment-2024.json #### Identity and Access Management for Electric Utilities - **ID**: identity-and-access-management-electric-utilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The National Cybersecurity Center of Excellence (NCCoE) developed this example solution for electric utilities to more securely and efficiently manage access to the networked devices and facilities on... - **Discovery URL**: https://bidda.com/api/v1/nodes/identity-and-access-management-electric-utilities.json #### Ireland Coimisiún na Meán Online Safety Code (October 2024) - Part A General Obligations and Part B Specific Obligations for Designated Video-Sharing Platform Services; Section 12.10 Effective Age Assurance for Adult-Only Video Content; Section 14 Parental Controls; Section 15 Terms and Conditions - **ID**: ie-coimisiun-na-mean-online-safety-code-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Coimisiún na Meán Online Safety Code (the Code) is the statutory online safety code made by Coimisiún na Meán (Ireland's audiovisual and online media regulator, the Commission) under Section 139K ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ie-coimisiun-na-mean-online-safety-code-2024.json #### Israel Privacy Protection Act 5741-1981 - Data Protection and Privacy Authority Enforcement - **ID**: il-ppa-1981 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Israel's Hok Haganat HaPrivatiyut (חוק הגנת הפרטיות - Privacy Protection Act 5741-1981, also cited as the Privacy Protection Act 1981), enacted by the Knesset and published in Sefer HaHukim (the Book ... - **Discovery URL**: https://bidda.com/api/v1/nodes/il-ppa-1981.json #### Isle of Man Data Protection Act 2018 - Information Commissioner - **ID**: im-dpa-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Isle of Man's Data Protection Act 2018, which came into force on 25 May 2018 (the same date as the EU General Data Protection Regulation), is the Isle of Man's primary personal data protection leg... - **Discovery URL**: https://bidda.com/api/v1/nodes/im-dpa-2018.json #### Guidelines on Maritime Cyber Risk Management - **ID**: imo-maritime-cyber-msc-fal-circ-3 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This IMO circular affirms that cyber risk management is a required component of the ship's Safety Management System (SMS) under the International Safety Management (ISM) Code. As per Resolution MSC.42... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-maritime-cyber-msc-fal-circ-3.json #### India CERT-In Cybersecurity Directions 2022 - 6-Hour Incident Reporting, 180-Day Log Retention, and VPN/Cloud Subscriber Registration - **ID**: in-cert-in-cybersecurity-directions-2022-6hr-reporting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Service providers, intermediaries, data centres, body corporates, and government organisations operating in India must, under the Indian Computer Emergency Response Team (CERT-In) Directions issued on... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-cert-in-cybersecurity-directions-2022-6hr-reporting.json #### India CERT-In Cybersecurity Directions 2022 - **ID**: in-cert-in-directions-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: India CERT-In's 2022 Cybersecurity Directions impose a mandatory 6-hour incident reporting requirement for 20 categories of cybersecurity incidents - among the shortest reporting windows globally - re... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-cert-in-directions-2022.json #### India Digital Personal Data Protection Act 2023 (DPDPA - Act No. 22 of 2023) - **ID**: in-dpdpa-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: India's Digital Personal Data Protection Act, 2023 (DPDPA - Act No. 22 of 2023), received Presidential assent on 11 August 2023 and was published in the Gazette of India (Extraordinary, Part II, s. 1)... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-dpdpa-2023.json #### India Information Technology Act 2000 - **ID**: in-it-act-2000 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: India's Information Technology Act 2000, as amended in 2008, establishes the primary legal framework for cybersecurity and data protection in India - requiring corporations to implement reasonable sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-it-act-2000.json #### India Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules 2021 - **ID**: in-it-intermediary-guidelines-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: India's IT Rules 2021 notified February 25, 2021 under the IT Act 2000 require significant social media intermediaries with 5 million or more registered users in India to appoint a Chief Compliance Of... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-it-intermediary-guidelines-2021.json #### in-toto Attestation Framework (CNCF Graduated, Statement v1, Predicate Types: SLSA Provenance, VEX, SCAI, Vulnerability Scan, Test Result, Link, Layout; DSSE Signing) - **ID**: in-toto-attestation-framework-cncf - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: in-toto is the Cloud Native Computing Foundation (CNCF) graduated framework for supply chain integrity attestations. The in-toto Attestation Framework (at github.com/in-toto/attestation) provides a sp... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-toto-attestation-framework-cncf.json #### Directions under sub-section (6) of section 70B of the Information Technology Act, 2000 relating to information security practices, procedure, prevention, response and reporting of cyber incidents for Safe & Trusted Internet - **ID**: india-cert-in-cyber-security-directions-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: These directions mandate all service providers, intermediaries, data centres, corporate bodies, and government organizations in India to report specific types of cyber incidents to CERT-In within 6 ho... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-cert-in-cyber-security-directions-2022.json #### Directions under Section 70B(6) of the Information Technology Act, 2000 Relating to Information Security Practices, Procedures and Processes, including Incident Response - **ID**: india-cert-in-directions-2022-incident-reporting - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: All intermediaries, data centers, cloud service providers, virtual private network (VPN) services, and cryptocurrency exchanges operating in India must report cybersecurity incidents to CERT-In within... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-cert-in-directions-2022-incident-reporting.json #### Information Technology Act, 2000 (Amendment 2008) - **ID**: india-it-act-2000-amendment-2008 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: The Information Technology Act, 2000 (as amended in 2008) establishes legal recognition for electronic transactions, defines cyber offences, imposes data protection obligations on corporate bodies han... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-it-act-2000-amendment-2008.json #### Iraq Electronic Signatures and Electronic Transactions Law No. 78 of 2012 - Personal Data Provisions - **ID**: iq-esig-law-2012 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Iraq enacted the Electronic Signatures and Electronic Transactions Law No. 78 of 2012, which includes provisions for the protection of personal data processed in connection with electronic transaction... - **Discovery URL**: https://bidda.com/api/v1/nodes/iq-esig-law-2012.json #### Iran Computer Crimes Act 2009 - Personal Data and Privacy Provisions - **ID**: ir-cca-2009 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Iran enacted the Computer Crimes Act 2009 (قانون جرایم رایانه‌ای), approved by the Islamic Consultative Assembly, which includes provisions protecting the privacy and confidentiality of personal data ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ir-cca-2009.json #### Iceland Personal Data Protection Act 2018 (Lög nr. 90/2018) - EEA GDPR Implementation - **ID**: is-persouvernd-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Iceland's Lög nr. 90/2018 um persónuvernd og vinnslu persónuupplýsinga (Personal Data Protection Act), adopted by the Althingi (Icelandic Parliament) on 13 June 2018 and in force from 15 July 2018, is... - **Discovery URL**: https://bidda.com/api/v1/nodes/is-persouvernd-2018.json #### ISO/IEC 27001:2022 - Information Security Management - **ID**: iso-27001-2022 - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: ISO/IEC 27001:2022 (published October 2022, replacing ISO 27001:2013) is the international standard for establishing, implementing, maintaining, and continually improving an Information Security Manag... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27001-2022.json #### ISO 27001 ISMS Enterprise Compliance Standard v20 - **ID**: iso-27001-isms-compliance-2026-20 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: ISO 27001 outlines the requirements for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS). It emphasizes a risk-based approach to info... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27001-isms-compliance-2026-20.json #### ISO 27001 ISMS Enterprise Compliance Standard v5 - **ID**: iso-27001-isms-compliance-2026-5 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: ISO 27001 outlines the requirements for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS). It emphasizes a risk-based approach to info... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27001-isms-compliance-2026-5.json #### ISO/IEC 27002:2022 - Organizational Controls (A.5.1-A.5.37) - **ID**: iso-27002-2022-organizational-controls - **Category**: Cybersecurity - **Version**: 3.0.0 - **BLUF**: ISO/IEC 27002:2022 Organizational Controls (A.5.1-A.5.37) constitute the largest of the four control themes introduced in the 2022 revision of ISO/IEC 27002. The 37 Organizational Controls address pol... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27002-2022-organizational-controls.json #### ISO/IEC 27002:2022 Section 6 - People Controls: Screening, Terms, Awareness, Disciplinary Process - **ID**: iso-27002-2022-people-controls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: ISO/IEC 27002:2022 Section 6 provides implementation guidance for information security controls related to personnel throughout their employment lifecycle. It mandates processes for pre-employment scr... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27002-2022-people-controls.json #### ISO/IEC 27002:2022 Information security, cybersecurity and privacy protection - Information security controls: Section 7 Physical Controls - **ID**: iso-27002-2022-physical-controls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: ISO/IEC 27002:2022 Section 7 provides guidance for organizations to prevent unauthorized physical access, damage, and interference to information and information processing facilities. This is achieve... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27002-2022-physical-controls.json #### ISO/IEC 27002:2022 Section 8 - Technological Controls: Endpoint Security, Privileged Access, Data Masking - **ID**: iso-27002-2022-technological-controls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: ISO/IEC 27002:2022, Section 8, provides implementation guidance for 34 technological controls designed to protect information systems and data. This includes specific controls for user endpoint device... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27002-2022-technological-controls.json #### ISO/IEC 27005:2022 Information Security Risk Management - Guidance on Managing InfoSec Risks - **ID**: iso-27005-risk-management-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This standard provides guidelines for establishing, implementing, maintaining, and continually improving an information security risk management process. It details the iterative process from context ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27005-risk-management-2022.json #### ISO/IEC 27001:2022 - Information Security Management Systems: Statement of Applicability, Risk Treatment Plan and Continuous Improvement for Automated Processes - **ID**: iso-iec-27001-2022-information-security-workflow - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: ISO/IEC 27001:2022 requires organizations to establish, implement, maintain, and continually improve an information security management system (ISMS) based on risk assessment and treatment, including ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-27001-2022-information-security-workflow.json #### ISO/IEC TS 27110:2021 - Cybersecurity Framework Development Guidelines: Concepts, Terminology and Reference Architecture for National and Organisational Frameworks - **ID**: iso-iec-27110-2021-cybersecurity-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This technical specification provides guidelines for developing cybersecurity frameworks at national and organizational levels, including concepts, terminology, and reference architecture. It applies ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-27110-2021-cybersecurity-framework.json #### Privacy Protection Amendment (Data Security and Breach Notification) Law 2023 - Update to the Privacy Protection Law 5741-1981 - **ID**: israel-privacy-protection-amendment-2023 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: This amendment to Israel's Privacy Protection Law 1981 introduces mandatory data breach notification to the Privacy Protection Authority (PPA), enhances individual rights including access, erasure, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/israel-privacy-protection-amendment-2023.json #### Italy Caivano Decree Article 13-bis (DL 123/2023 converted by Law 159/2023) and AGCOM Resolution 96/25/CONS (8 April 2025) - Age Verification for Websites and VSPs Disseminating Pornographic Content; Certified Third-Party Provider; Two-Step Process; Double Anonymity; 12 November 2025 Compliance Deadline - **ID**: it-caivano-decree-article-13-bis-agcom-96-25-cons-age-verification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Italy's Caivano Decree (Decreto-Legge 15 September 2023 n. 123, converted into Law 13 November 2023 n. 159) introduced Article 13-bis prohibiting minors from accessing pornographic content and delegat... - **Discovery URL**: https://bidda.com/api/v1/nodes/it-caivano-decree-article-13-bis-agcom-96-25-cons-age-verification.json #### Italy Personal Data Protection Code (Codice Privacy, D.Lgs. 196/2003) - GDPR National Implementation - **ID**: it-codice-privacy-dlgs-196-2003 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Italy's Personal Data Protection Code (Codice in materia di protezione dei dati personali - Codice Privacy, Legislative Decree No. 196 of 30 June 2003, as substantially amended and restructured by Leg... - **Discovery URL**: https://bidda.com/api/v1/nodes/it-codice-privacy-dlgs-196-2003.json #### Italy National Cybersecurity Perimeter - Decree-Law 105/2019 - **ID**: it-perimetro-sicurezza-cibernetica-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Italy's Decree-Law No. 105 of 21 September 2019, converted into Law No. 133 of 18 November 2019, establishes a national cybersecurity perimeter identifying critical public and private operators whose ... - **Discovery URL**: https://bidda.com/api/v1/nodes/it-perimetro-sicurezza-cibernetica-2019.json #### Act on the Promotion of Ensuring National Security through Integrated Economic Measures (Economic Security Promotion Act) - **ID**: japan-economic-security-promotion-act-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This act requires designated operators of Japan's specified critical infrastructure to submit plans for equipment installation or outsourcing of maintenance services for prior government review to mit... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-economic-security-promotion-act-2022.json #### Jersey Data Protection (Jersey) Law 2018 - JOIC - **ID**: je-dp-law-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Jersey's Data Protection (Jersey) Law 2018, which came into force on 25 May 2018 (the same date as the EU General Data Protection Regulation), is Jersey's primary personal data protection legislation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/je-dp-law-2018.json #### Jamaica Data Protection Act 2020 - OIC - **ID**: jm-dpa-2020 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Jamaica's Data Protection Act 2020 (Act No. 5 of 2020), passed by the Parliament of Jamaica on 8 December 2020 and brought into force in stages with the substantive data protection provisions taking e... - **Discovery URL**: https://bidda.com/api/v1/nodes/jm-dpa-2020.json #### Jordan Personal Data Protection Law No. 24 of 2023 - MODEE - **ID**: jo-pdpl-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Jordan's Personal Data Protection Law No. 24 of 2023 - published in the Official Gazette of the Hashemite Kingdom of Jordan and entering into force in 2023 - is Jordan's first comprehensive personal d... - **Discovery URL**: https://bidda.com/api/v1/nodes/jo-pdpl-2023.json #### Japan Cybersecurity Basic Act 2014 - National Cybersecurity Strategy and Critical Infrastructure Protection - **ID**: jp-cybersecurity-basic-act-2014-critical-infrastructure-protection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Japan's Cybersecurity Basic Act 2014 (as amended 2018) establishes the National Cybersecurity Strategy, creates the National center of Incident readiness and Strategy for Cybersecurity (NISC), designa... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-cybersecurity-basic-act-2014-critical-infrastructure-protection.json #### Japan Economic Security Promotion Act 2022 - **ID**: jp-economic-security-promotion-act-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Japan's Economic Security Promotion Act enacted May 2022 establishes four pillars - stable supply chains for critical goods, security plans for 14 critical infrastructure sectors, advanced technology ... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-economic-security-promotion-act-2022.json #### Japan My Number Act 2013 and the Individual Number Card Digital Identity Framework - **ID**: jp-my-number-act-individual-number-digital-identity - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Japan's national digital identity is governed by the Act on the Use of Numbers to Identify a Specific Individual in Administrative Procedures (the My Number Act, Act No. 27 of 2013). The Act establish... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-my-number-act-individual-number-digital-identity.json #### Kenya Computer Misuse and Cybercrimes Act 2018 - **ID**: ke-computer-misuse-cybercrimes-act-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Kenya's Computer Misuse and Cybercrimes Act 2018 (Act No. 5 of 2018), assented to May 16, 2018, establishes a comprehensive cybercrime legal framework criminalising unauthorised access, computer fraud... - **Discovery URL**: https://bidda.com/api/v1/nodes/ke-computer-misuse-cybercrimes-act-2018.json #### Kenya Data Protection Act 2019 - No. 24 of 2019 and Office of the Data Protection Commissioner - **ID**: ke-dp-act-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Kenya's Data Protection Act, 2019 (No. 24 of 2019), assented to by the President of Kenya on 8 November 2019 and published in the Kenya Gazette Supplement No. 186 (Acts No. 31) on 8 November 2019, is ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ke-dp-act-2019.json #### Kyrgyzstan Law on Personal Information - SCITC Compliance Framework - **ID**: kg-pdp-law-2008 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Kyrgyzstan Law on Personal Information (No. 58, 2008, as amended) establishes consent-based data subject rights and operator obligations for all personal data processing within the Kyrgyz Republic. Su... - **Discovery URL**: https://bidda.com/api/v1/nodes/kg-pdp-law-2008.json #### Cambodia Sub-Decree No. 16 on Personal Data Protection 2022 - Ministry of Interior - **ID**: kh-pdpl-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Cambodia's Sub-Decree No. 16 on Personal Data Protection (Anukret Lekh 16 Chhnam 2022 Stii Pi Kar Proeur Prau Nou Kar Kar Pea Koompit Pheak Mheum Roueng Ti Tearng Oas), issued by the Royal Government ... - **Discovery URL**: https://bidda.com/api/v1/nodes/kh-pdpl-2022.json #### Kiribati - Constitutional Privacy Rights and Pacific Islands Forum Data Protection Framework - **ID**: ki-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Republic of Kiribati is an independent sovereign nation in the central Pacific Ocean comprising 33 atolls across the Gilbert, Phoenix, and Line Islands. Kiribati achieved independence from the Uni... - **Discovery URL**: https://bidda.com/api/v1/nodes/ki-framework.json #### Comoros ANRTIC Regulatory Framework - Constitutional Privacy Rights and Personal Data Obligations - **ID**: km-anrtic-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Union of the Comoros has established the Agence Nationale de Régulation des Technologies de l'Information et de la Communication (ANRTIC) as the national authority for regulating information and c... - **Discovery URL**: https://bidda.com/api/v1/nodes/km-anrtic-framework.json #### Saint Kitts and Nevis Data Protection Act 2018 - **ID**: kn-dpa-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Saint Kitts and Nevis enacted the Data Protection Act 2018, a CARICOM and OECS-aligned statute establishing a framework for the lawful processing of personal information. The Act is administered by a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/kn-dpa-2018.json #### South Korea Act on Special Cases Concerning the Punishment of Sexual Crimes - Article 14-2 (Fabricated/Edited Video Material) and September 2024 Deepfake Amendments (Production, Distribution, Possession, Viewing) - **ID**: kr-act-special-cases-punishment-sexual-crimes-article-14-2-deepfake-2024-amendment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: South Korea's Act on Special Cases Concerning the Punishment of Sexual Crimes (성폭력범죄의 처벌 등에 관한 특례법) criminalises specific sexual offences including those committed using cameras and edited media. Arti... - **Discovery URL**: https://bidda.com/api/v1/nodes/kr-act-special-cases-punishment-sexual-crimes-article-14-2-deepfake-2024-amendment.json #### South Korea Act on Promotion of Information and Communications Network Utilization and Information Protection 2001 (정보통신망법, Act No. 6360, as amended) - **ID**: kr-network-act-ict-2001 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Act on Promotion of Information and Communications Network Utilization and Information Protection (정보통신망 이용촉진 및 정보보호 등에 관한 법률 - Network Act or ICT Network Act) is South Korea's foundational statut... - **Discovery URL**: https://bidda.com/api/v1/nodes/kr-network-act-ict-2001.json #### Korea Personal Information Protection Act (PIPA) 2011 - Data Processing Principles and Subject Rights - **ID**: kr-pipa-2011-personal-information-protection-act-data-processing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Korea's Personal Information Protection Act (PIPA), as substantially amended in 2023, establishes lawful bases for processing personal information, requires a privacy policy and privacy officer (CPO) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/kr-pipa-2011-personal-information-protection-act-data-processing.json #### Kuwait Personal Data Protection Law No. 2 of 2023 - CITRA - **ID**: kw-pdpl-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Kuwait's Law No. 2 of 2023 on the Protection of Personal Data (قانون رقم 2 لسنة 2023 في شأن حماية البيانات الشخصية) - enacted in 2023 and published in the Kuwait Official Gazette - is Kuwait's first c... - **Discovery URL**: https://bidda.com/api/v1/nodes/kw-pdpl-2023.json #### Cayman Islands Data Protection Law 2017 - **ID**: ky-dpl-2017 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Cayman Islands enacted the Data Protection Law 2017 (revised 2021), a comprehensive GDPR-aligned statute that came fully into force on 30 September 2019. Administered by the Ombudsman, it establis... - **Discovery URL**: https://bidda.com/api/v1/nodes/ky-dpl-2017.json #### Kazakhstan Personal Data and Their Protection Law 2013 - MCI - **ID**: kz-pdp-law-2013 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Kazakhstan's Law on Personal Data and Their Protection (Закон Республики Казахстан «О персональных данных и их защите») - Law No. 94-V ZRK, adopted by the Parliament of the Republic of Kazakhstan on 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/kz-pdp-law-2013.json #### Lao PDR Law on Electronic Data Protection 2017 - **ID**: la-edp-law-2017 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Lao People's Democratic Republic enacted the Law on Electronic Data (Law No. 20/NA, 2017) which contains provisions governing the protection of personal data in electronic form. The law is adminis... - **Discovery URL**: https://bidda.com/api/v1/nodes/la-edp-law-2017.json #### Lebanon Electronic Transactions and Personal Data Law - TRA Compliance Framework - **ID**: lb-ldp-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Lebanon Law No. 81 of 2018 on Electronic Transactions and Personal Data establishes consent-based personal data processing obligations, data subject rights including access and correction, mandatory c... - **Discovery URL**: https://bidda.com/api/v1/nodes/lb-ldp-2018.json #### Saint Lucia Data Protection Act 2011 - **ID**: lc-dpa-2011 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Saint Lucia enacted the Data Protection Act No. 11 of 2011 to regulate the collection, use, disclosure, and storage of personal information. The Act is administered by a Data Protection Commissioner. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/lc-dpa-2011.json #### Liechtenstein Data Protection Act 2018 (Datenschutzgesetz - DSG) - EEA GDPR Implementation - **ID**: li-dsg-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Liechtenstein's Datenschutzgesetz (DSG - Data Protection Act), enacted by the Landtag (Liechtenstein Parliament) and published as LGBl. 2018 Nr. 270, came into force on 8 November 2018 (with transitio... - **Discovery URL**: https://bidda.com/api/v1/nodes/li-dsg-2018.json #### Liberia Freedom of Information Act 2010 - Personal Data and Privacy Provisions - **ID**: lr-foi-2010 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Liberia enacted the Freedom of Information Act (FOIA) in 2010, which establishes a legal right of access to public information held by government bodies and public institutions and includes provisions... - **Discovery URL**: https://bidda.com/api/v1/nodes/lr-foi-2010.json #### Lesotho Data Protection Act 2012 - **ID**: ls-dpa-2012 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Lesotho enacted the Data Protection Act 2012 to regulate the processing of personal data in the Kingdom of Lesotho. The Lesotho Communications Authority (LCA) functions as the interim supervisory body... - **Discovery URL**: https://bidda.com/api/v1/nodes/ls-dpa-2012.json #### Lithuania Law on Legal Protection of Personal Data (ADTAĮ) - GDPR National Implementation - **ID**: lt-adtai-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Lithuania's Asmens duomenų teisinės apsaugos įstatymas (ADTAĮ - Law on Legal Protection of Personal Data), as substantially amended by Act No. XIII-1426 of 30 June 2018 to align with the EU General Da... - **Discovery URL**: https://bidda.com/api/v1/nodes/lt-adtai-2018.json #### Luxembourg Data Protection Law of 1 August 2018 - GDPR National Implementation - **ID**: lu-loi-1-aug-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Luxembourg's Law of 1 August 2018 on the Organisation of the Commission Nationale pour la Protection des Données and the General Data Protection Framework (Loi du 1er août 2018 portant organisation de... - **Discovery URL**: https://bidda.com/api/v1/nodes/lu-loi-1-aug-2018.json #### Latvia Personal Data Processing Law 2018 (FPDAL) - GDPR National Implementation - **ID**: lv-fpdal-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Latvia's Fizisko personu datu apstrādes likums (FPDAL - Personal Data Processing Law), adopted by the Saeima (Latvian Parliament) on 21 November 2018 and published in the Latvijas Vēstnesis (Official ... - **Discovery URL**: https://bidda.com/api/v1/nodes/lv-fpdal-2018.json #### Libya GACI Framework - AU Malabo Convention and Constitutional Privacy Obligations - **ID**: ly-gaci-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Libya's regulatory framework for electronic communications and information technology is overseen by the General Authority for Communications and Informatics (GACI), which is responsible for licensing... - **Discovery URL**: https://bidda.com/api/v1/nodes/ly-gaci-framework.json #### Morocco Personal Data Protection Law No. 09-08 2009 - CNDP - **ID**: ma-loi-09-08 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Morocco's Loi No. 09-08 relative à la protection des personnes physiques à l'égard du traitement des données à caractère personnel (Law No. 09-08 on the Protection of Natural Persons with Regard to th... - **Discovery URL**: https://bidda.com/api/v1/nodes/ma-loi-09-08.json #### Guide to Malware Incident Prevention and Handling for Desktops and Laptops - **ID**: malware-incident-prevention-handling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Malware, also known as malicious code, refers to a program that is covertly inserted into another program with the intent to destroy data, run destructive or intrusive programs, or otherwise compromis... - **Discovery URL**: https://bidda.com/api/v1/nodes/malware-incident-prevention-handling.json #### Monaco Law No. 1.165 on Personal Data Protection (as amended) - CCIN - **ID**: mc-dp-law-2009 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Monaco's Law No. 1.165 of 17 December 1993 on the Automated Processing of Personal Information, significantly reformed by Law No. 1.353 of 4 December 2008 (entering into force in 2009) and further upd... - **Discovery URL**: https://bidda.com/api/v1/nodes/mc-dp-law-2009.json #### Moldova Law on Personal Data Protection No. 133 of 2011 - CNPDCP - **ID**: md-pdp-law-2011 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Moldova's Law on Personal Data Protection No. 133 of 8 July 2011 (Legea Republicii Moldova privind protecţia datelor cu caracter personal nr. 133 din 08.07.2011) - published in Monitorul Oficial No. 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/md-pdp-law-2011.json #### Madagascar Law No. 2014-038 on Protection of Personal Data - **ID**: mg-pdp-law-2014 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Madagascar enacted Law No. 2014-038 of 9 January 2015 on the Protection of Personal Data (Loi sur la protection des données à caractère personnel). The law is administered by the Commission de l'Infor... - **Discovery URL**: https://bidda.com/api/v1/nodes/mg-pdp-law-2014.json #### Marshall Islands - Constitutional Privacy Rights and Pacific Islands Forum Data Protection Framework - **ID**: mh-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Republic of the Marshall Islands is an independent sovereign nation in the central Pacific Ocean governed under a constitutional democracy established by the Constitution of the Republic of the Ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mh-framework.json #### MISP Open Source Threat Intelligence Platform (Events, Attributes, Objects, Galaxies, Taxonomies, Sharing Groups, STIX 2.0/2.1 Export, MISP Modules, AGPLv3) - **ID**: misp-malware-information-sharing-platform - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MISP (Malware Information Sharing Platform and Threat Sharing) is the open-source threat intelligence platform maintained at github.com/MISP/MISP under the GNU Affero General Public License v3. MISP o... - **Discovery URL**: https://bidda.com/api/v1/nodes/misp-malware-information-sharing-platform.json #### MITRE ATLAS™ - Adversarial Threat Landscape for Artificial-Intelligence Systems: Living Knowledge Base of Adversary Tactics, Techniques, Mitigations, and Case Studies for AI-Enabled Systems (Modeled After and Complementary to MITRE ATT&CK®) - **ID**: mitre-atlas-ai-threat-matrix-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATLAS™ (Adversarial Threat Landscape for Artificial-Intelligence Systems) is a globally accessible, living knowledge base of adversary tactics and techniques against AI-enabled systems based on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-atlas-ai-threat-matrix-2024.json #### MITRE ATT&CK Framework v14 - Adversarial Tactics, Techniques and Common Knowledge for Threat Intelligence - **ID**: mitre-attack-framework-v14 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The MITRE ATT&CK Framework is a globally-accessible knowledge base of adversary tactics, techniques, and procedures (TTPs) based on real-world observations. It provides a common taxonomy for cybersecu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-framework-v14.json #### MITRE ATT&CK ICS T0800: Activate Firmware Update Mode (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t0800-activate-firmware-update-mode - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0800 (Activate Firmware Update Mode) is an ATT&CK for ICS Inhibit Response Function technique. Adversaries may activate firmware update mode on devices to prevent expected response funct... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0800-activate-firmware-update-mode.json #### MITRE ATT&CK ICS T0801: Monitor Process State (Collection) - **ID**: mitre-attack-ics-t0801-monitor-process-state - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0801 covers adversary collection of OT process telemetry, alarm states, and operating conditions for reconnaissance and to plan disruptive operations. Industroyer included process-mo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0801-monitor-process-state.json #### MITRE ATT&CK ICS T0802: Automated Collection (ICS Tactic TA0100 - Collection) - **ID**: mitre-attack-ics-t0802-automated-collection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0802 (Automated Collection) is an ATT&CK for ICS Collection technique. Adversaries may automate collection of industrial environment information using tools or scripts. This automated co... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0802-automated-collection.json #### MITRE ATT&CK ICS T0803: Block Command Message (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t0803-block-command-message - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0803 (Block Command Message) is an ATT&CK for ICS Inhibit Response Function technique. Adversaries may block a command message from reaching its intended target to prevent command execut... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0803-block-command-message.json #### MITRE ATT&CK ICS T0804: Block Reporting Message (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t0804-block-reporting-message - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0804 (Block Reporting Message) is an ATT&CK for ICS Inhibit Response Function technique. Adversaries may block or prevent a reporting message from reaching its intended target. In contro... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0804-block-reporting-message.json #### MITRE ATT&CK ICS T0805: Block Serial COM (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t0805-block-serial-com - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0805 (Block Serial COM) is an ATT&CK for ICS Inhibit Response Function technique. Adversaries may block access to serial COM to prevent instructions or configurations from reaching targe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0805-block-serial-com.json #### MITRE ATT&CK ICS T0806: Brute Force I/O (ICS Tactic TA0106 - Impair Process Control) - **ID**: mitre-attack-ics-t0806-brute-force-i-o - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0806 (Brute Force I/O) is an ATT&CK for ICS Impair Process Control technique. Adversaries may repetitively or successively change I/O point values to perform an action. Brute Force I/O m... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0806-brute-force-i-o.json #### MITRE ATT&CK ICS T0807: Command-Line Interface (ICS Tactic TA0104 - Execution) - **ID**: mitre-attack-ics-t0807-command-line-interface - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0807 (Command-Line Interface) is an ATT&CK for ICS Execution technique. Adversaries may utilize command-line interfaces (CLIs) to interact with systems and execute commands. CLIs provide... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0807-command-line-interface.json #### MITRE ATT&CK ICS T0809: Data Destruction (Inhibit Response Function) - **ID**: mitre-attack-ics-t0809-data-destruction - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0809 covers adversary destruction of data and historian records on industrial control systems to inhibit operator response and forensic investigation. CRASHOVERRIDE/Industroyer (Ukra... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0809-data-destruction.json #### MITRE ATT&CK ICS T0811: Data from Information Repositories (ICS Tactic TA0100 - Collection) - **ID**: mitre-attack-ics-t0811-data-from-information-repositories - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0811 (Data from Information Repositories) is an ATT&CK for ICS Collection technique. Adversaries may target and collect data from information repositories. This can include sensitive dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0811-data-from-information-repositories.json #### MITRE ATT&CK ICS T0812: Default Credentials (ICS Tactic TA0109 - Lateral Movement) - **ID**: mitre-attack-ics-t0812-default-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0812 (Default Credentials) is an ATT&CK for ICS Lateral Movement technique. Adversaries may leverage manufacturer or supplier set default credentials on control system devices. These def... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0812-default-credentials.json #### MITRE ATT&CK ICS T0813: Denial of Control (ICS Tactic TA0105 - Impact) - **ID**: mitre-attack-ics-t0813-denial-of-control - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0813 (Denial of Control) is an ATT&CK for ICS Impact technique. Adversaries may cause a denial of control to temporarily prevent operators and engineers from interacting with process con... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0813-denial-of-control.json #### MITRE ATT&CK ICS T0814: Denial of Service (Inhibit Response Function) - **ID**: mitre-attack-ics-t0814-denial-of-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0814 covers adversary denial-of-service attacks targeting ICS components to disrupt operations. Examples include PLC flooding, fieldbus disruption, HMI lockout, and historian overloa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0814-denial-of-service.json #### MITRE ATT&CK ICS T0815: Denial of View (ICS Tactic TA0105 - Impact) - **ID**: mitre-attack-ics-t0815-denial-of-view - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0815 (Denial of View) is an ATT&CK for ICS Impact technique. Adversaries may cause a denial of view in attempt to disrupt and prevent operator oversight on the status of an ICS environme... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0815-denial-of-view.json #### MITRE ATT&CK ICS T0816: Device Restart/Shutdown (Inhibit Response Function) - **ID**: mitre-attack-ics-t0816-device-restart-shutdown - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0816 covers adversary forced restart or shutdown of ICS devices to disrupt process control. Industroyer included device restart modules. Modern threats target PLC controllers, RTU, I... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0816-device-restart-shutdown.json #### MITRE ATT&CK ICS T0817: Drive-by Compromise (ICS Tactic TA0108 - Initial Access) - **ID**: mitre-attack-ics-t0817-drive-by-compromise - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0817 (Drive-by Compromise) is an ATT&CK for ICS Initial Access technique. Adversaries may gain access to a system during a drive-by compromise, when a user visits a website as part of a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0817-drive-by-compromise.json #### MITRE ATT&CK ICS T0819: Exploit Public-Facing Application (ICS Tactic TA0108 - Initial Access) - **ID**: mitre-attack-ics-t0819-exploit-public-facing-application - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0819 (Exploit Public-Facing Application) is an ATT&CK for ICS Initial Access technique. Adversaries may leverage weaknesses to exploit internet-facing software for initial access into an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0819-exploit-public-facing-application.json #### MITRE ATT&CK ICS T0820: Exploitation for Evasion (ICS Tactic TA0103 - Evasion) - **ID**: mitre-attack-ics-t0820-exploitation-for-evasion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0820 (Exploitation for Evasion) is an ATT&CK for ICS Evasion technique. Adversaries may exploit a software vulnerability to take advantage of a programming error in a program, service, o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0820-exploitation-for-evasion.json #### MITRE ATT&CK ICS T0821: Modify Controller Tasking (ICS Tactic TA0104 - Execution) - **ID**: mitre-attack-ics-t0821-modify-controller-tasking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0821 (Modify Controller Tasking) is an ATT&CK for ICS Execution technique. Adversaries may modify the tasking of a controller to allow for the execution of their own programs. This can a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0821-modify-controller-tasking.json #### MITRE ATT&CK ICS T0822: External Remote Services (ICS Tactic TA0108 - Initial Access) - **ID**: mitre-attack-ics-t0822-external-remote-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0822 (External Remote Services) is an ATT&CK for ICS Initial Access technique. Adversaries may leverage external remote services as a point of initial access into your network. These ser... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0822-external-remote-services.json #### MITRE ATT&CK ICS T0823: Graphical User Interface (ICS Tactic TA0104 - Execution) - **ID**: mitre-attack-ics-t0823-graphical-user-interface - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0823 (Graphical User Interface) is an ATT&CK for ICS Execution technique. Adversaries may attempt to gain access to a machine via a Graphical User Interface (GUI) to enhance execution ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0823-graphical-user-interface.json #### MITRE ATT&CK ICS T0826: Loss of Availability (Impact) - **ID**: mitre-attack-ics-t0826-loss-of-availability - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0826 covers adversary impact resulting in loss of availability of ICS operations. Includes ransomware on OT (Colonial Pipeline 2021), wiper on engineering workstation (Industroyer/CR... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0826-loss-of-availability.json #### MITRE ATT&CK ICS T0827: Loss of Control (ICS Tactic TA0105 - Impact) - **ID**: mitre-attack-ics-t0827-loss-of-control - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0827 (Loss of Control) is an ATT&CK for ICS Impact technique. Adversaries may seek to achieve a sustained loss of control or a runaway condition in which operators cannot issue any comma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0827-loss-of-control.json #### MITRE ATT&CK ICS T0828: Loss of Productivity and Revenue (ICS Tactic TA0105 - Impact) - **ID**: mitre-attack-ics-t0828-loss-of-productivity-and-revenue - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0828 (Loss of Productivity and Revenue) is an ATT&CK for ICS Impact technique. Adversaries may cause loss of productivity and revenue through disruption and even damage to the availabili... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0828-loss-of-productivity-and-revenue.json #### MITRE ATT&CK ICS T0829: Loss of View (ICS Tactic TA0105 - Impact) - **ID**: mitre-attack-ics-t0829-loss-of-view - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0829 (Loss of View) is an ATT&CK for ICS Impact technique. Adversaries may cause a sustained or permanent loss of view where the ICS equipment will require local, hands-on operator inter... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0829-loss-of-view.json #### MITRE ATT&CK ICS T0830: Adversary-in-the-Middle (ICS Tactic TA0100 - Collection) - **ID**: mitre-attack-ics-t0830-adversary-in-the-middle - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0830 (Adversary-in-the-Middle) is an ATT&CK for ICS Collection technique. Adversaries with privileged network access may seek to modify network traffic in real time using adversary-in-th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0830-adversary-in-the-middle.json #### MITRE ATT&CK ICS T0831: Manipulation of Control (ICS Tactic TA0105 - Impact) - **ID**: mitre-attack-ics-t0831-manipulation-of-control - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0831 (Manipulation of Control) is an ATT&CK for ICS Impact technique. Adversaries may manipulate physical process control within the industrial environment. Methods of manipulating contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0831-manipulation-of-control.json #### MITRE ATT&CK ICS T0832: Manipulation of View (ICS Tactic TA0105 - Impact) - **ID**: mitre-attack-ics-t0832-manipulation-of-view - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0832 (Manipulation of View) is an ATT&CK for ICS Impact technique. Adversaries may attempt to manipulate the information reported back to operators or controllers. This manipulation may ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0832-manipulation-of-view.json #### MITRE ATT&CK ICS T0834: Native API (ICS Tactic TA0104 - Execution) - **ID**: mitre-attack-ics-t0834-native-api - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0834 (Native API) is an ATT&CK for ICS Execution technique. Adversaries may directly interact with the native OS application programming interface (API) to access system functions. Nativ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0834-native-api.json #### MITRE ATT&CK ICS T0835: Manipulate I/O Image (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t0835-manipulate-i-o-image - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0835 (Manipulate I/O Image) is an ATT&CK for ICS Inhibit Response Function technique. Adversaries may manipulate the I/O image of PLCs through various means to prevent them from function... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0835-manipulate-i-o-image.json #### MITRE ATT&CK ICS T0836: Modify Parameter (Impair Process Control) - **ID**: mitre-attack-ics-t0836-modify-parameter - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0836 covers adversary unauthorised modification of OT process parameters (setpoints, alarm thresholds, control logic parameters) to impair operations or cause physical damage. Stuxne... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0836-modify-parameter.json #### MITRE ATT&CK ICS T0837: Loss of Protection (ICS Tactic TA0105 - Impact) - **ID**: mitre-attack-ics-t0837-loss-of-protection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0837 (Loss of Protection) is an ATT&CK for ICS Impact technique. Adversaries may compromise protective system functions designed to prevent the effects of faults and abnormal conditions.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0837-loss-of-protection.json #### MITRE ATT&CK ICS T0838: Modify Alarm Settings (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t0838-modify-alarm-settings - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0838 (Modify Alarm Settings) is an ATT&CK for ICS Inhibit Response Function technique. Adversaries may modify alarm settings to prevent alerts that may inform operators of their presence... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0838-modify-alarm-settings.json #### MITRE ATT&CK ICS T0839: Module Firmware (ICS Tactic TA0110 - Persistence / TA0106 - Impair Process Control) - **ID**: mitre-attack-ics-t0839-module-firmware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0839 (Module Firmware) is an ATT&CK for ICS Persistence and Impair Process Control technique. Adversaries may install malicious or vulnerable firmware onto modular hardware devices. Cont... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0839-module-firmware.json #### MITRE ATT&CK ICS T0840: Network Connection Enumeration (ICS Tactic TA0102 - Discovery) - **ID**: mitre-attack-ics-t0840-network-connection-enumeration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0840 (Network Connection Enumeration) is an ATT&CK for ICS Discovery technique. Adversaries may perform network connection enumeration to discover information about device communication ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0840-network-connection-enumeration.json #### MITRE ATT&CK ICS T0842: Network Sniffing (ICS Tactic TA0102 - Discovery) - **ID**: mitre-attack-ics-t0842-network-sniffing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0842 (Network Sniffing) is an ATT&CK for ICS Discovery technique. Network sniffing is the practice of using a network interface on a computer system to monitor or capture information reg... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0842-network-sniffing.json #### MITRE ATT&CK ICS T0843.001: Download All (ICS Tactic TA0109 - Lateral Movement) - **ID**: mitre-attack-ics-t0843-001-download-all - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0843.001 (Download All) is an ICS Lateral Movement technique. Adversaries may execute a full program download to a PLC to overwrite the entire PLC program and configuration to deploy... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0843-001-download-all.json #### MITRE ATT&CK ICS T0843.002: Online Edit (ICS Tactic TA0109 - Lateral Movement) - **ID**: mitre-attack-ics-t0843-002-online-edit - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0843.002 (Online Edit) is an ICS Lateral Movement technique. Adversaries may execute an online edit of a PLC to update parts of an existing program. It does not require stopping the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0843-002-online-edit.json #### MITRE ATT&CK ICS T0843.003: Program Append (ICS Tactic TA0109 - Lateral Movement) - **ID**: mitre-attack-ics-t0843-003-program-append - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0843.003 (Program Append) is an ICS Lateral Movement technique. Adversaries may execute a program append to a PLC to update parts of an existing program. It may or may not require st... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0843-003-program-append.json #### MITRE ATT&CK ICS T0843: Program Download (ICS Tactic TA0109 - Lateral Movement) - **ID**: mitre-attack-ics-t0843-program-download - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0843 (Program Download) is an ATT&CK for ICS Lateral Movement technique. Adversaries may perform a program download to transfer a user program to a controller. Variations of program down... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0843-program-download.json #### MITRE ATT&CK ICS T0845: Program Upload (ICS Tactic TA0100 - Collection) - **ID**: mitre-attack-ics-t0845-program-upload - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0845 (Program Upload) is an ATT&CK for ICS Collection technique. Adversaries may attempt to upload a program from a PLC to gather information about an industrial process. Uploading a pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0845-program-upload.json #### MITRE ATT&CK ICS T0846.001: Port Scan (ICS Tactic TA0102 - Discovery) - **ID**: mitre-attack-ics-t0846-001-port-scan - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0846.001 (Port Scan) is an ICS Discovery technique. Adversaries may perform a port scan on a system, device, or network to identify live hosts, enumerate open ports and running servi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0846-001-port-scan.json #### MITRE ATT&CK ICS T0846.002: Broadcast Discovery (ICS Tactic TA0102 - Discovery) - **ID**: mitre-attack-ics-t0846-002-broadcast-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0846.002 (Broadcast Discovery) is an ICS Discovery technique. Adversaries may perform broadcast discovery requests to enumerate systems and devices on a network. Broadcast discovery ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0846-002-broadcast-discovery.json #### MITRE ATT&CK ICS T0846.003: Multicast Discovery (ICS Tactic TA0102 - Discovery) - **ID**: mitre-attack-ics-t0846-003-multicast-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0846.003 (Multicast Discovery) is an ICS Discovery technique. Adversaries may perform multicast discovery requests which is when one system or device sends messages to all systems an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0846-003-multicast-discovery.json #### MITRE ATT&CK ICS T0846: Remote System Discovery (ICS Tactic TA0102 - Discovery) - **ID**: mitre-attack-ics-t0846-remote-system-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0846 (Remote System Discovery) is an ATT&CK for ICS Discovery technique. Adversaries may attempt to get a listing of other systems by IP address, hostname, or other logical identifier on... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0846-remote-system-discovery.json #### MITRE ATT&CK ICS T0847: Replication Through Removable Media (ICS Tactic TA0108 - Initial Access) - **ID**: mitre-attack-ics-t0847-replication-through-removable-media - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0847 (Replication Through Removable Media) is an ATT&CK for ICS Initial Access technique. Adversaries may move onto systems, such as those separated from the enterprise network, by copyi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0847-replication-through-removable-media.json #### MITRE ATT&CK ICS T0848: Rogue Master (ICS Tactic TA0108 - Initial Access) - **ID**: mitre-attack-ics-t0848-rogue-master - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0848 (Rogue Master) is an ATT&CK for ICS Initial Access technique. Adversaries may setup a rogue master to leverage control server functions to communicate with outstations. A rogue mast... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0848-rogue-master.json #### MITRE ATT&CK ICS T0849: Masquerading (ICS Tactic TA0103 - Evasion) - **ID**: mitre-attack-ics-t0849-masquerading - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0849 (Masquerading) is an ATT&CK for ICS Evasion technique. Adversaries may use masquerading to disguise a malicious application or executable as another file, to avoid operator and engi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0849-masquerading.json #### MITRE ATT&CK ICS T0851: Rootkit (ICS Tactic TA0103 - Evasion / TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t0851-rootkit - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0851 (Rootkit) is an ATT&CK for ICS Evasion and Inhibit Response Function technique. Adversaries may deploy rootkits to hide the presence of programs, files, network connections, service... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0851-rootkit.json #### MITRE ATT&CK ICS T0852: Screen Capture (ICS Tactic TA0100 - Collection) - **ID**: mitre-attack-ics-t0852-screen-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0852 (Screen Capture) is an ATT&CK for ICS Collection technique. Adversaries may attempt to perform screen capture of devices in the control system environment. Screenshots may be taken ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0852-screen-capture.json #### MITRE ATT&CK ICS T0853: Scripting (Execution) - **ID**: mitre-attack-ics-t0853-scripting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0853 covers adversary use of scripting (Python, PowerShell, ladder logic abuse, vendor-specific scripting) on OT systems for execution. Triton/Trisis used Python on Safety Instrument... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0853-scripting.json #### MITRE ATT&CK ICS T0855: Unauthorized Command Message (ICS Tactic TA0106 - Impair Process Control) - **ID**: mitre-attack-ics-t0855-unauthorized-command-message - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0855 (Unauthorized Command Message) is an ATT&CK for ICS Impair Process Control technique. Adversaries may send unauthorized command messages to instruct control system assets to perform... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0855-unauthorized-command-message.json #### MITRE ATT&CK ICS T0856: Spoof Reporting Message (ICS Tactic TA0103 - Evasion / TA0106 - Impair Process Control) - **ID**: mitre-attack-ics-t0856-spoof-reporting-message - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0856 (Spoof Reporting Message) is an ATT&CK for ICS Evasion and Impair Process Control technique. Adversaries may spoof reporting messages in control system environments for evasion and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0856-spoof-reporting-message.json #### MITRE ATT&CK ICS T0857: System Firmware (ICS Tactic TA0110 - Persistence / TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t0857-system-firmware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0857 (System Firmware) is an ATT&CK for ICS Persistence and Inhibit Response Function technique. System firmware on modern assets is often designed with an update feature. Older device f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0857-system-firmware.json #### MITRE ATT&CK ICS T0858: Change Operating Mode (ICS Tactic TA0104 - Execution / TA0103 - Evasion) - **ID**: mitre-attack-ics-t0858-change-operating-mode - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0858 (Change Operating Mode) is an ATT&CK for ICS Execution and Evasion technique. Adversaries may change the operating mode of a controller to gain additional access to engineering func... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0858-change-operating-mode.json #### MITRE ATT&CK ICS T0859: Valid Accounts (ICS Tactic TA0110 - Persistence / TA0109 - Lateral Movement) - **ID**: mitre-attack-ics-t0859-valid-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0859 (Valid Accounts) is an ATT&CK for ICS Persistence and Lateral Movement technique. Adversaries may steal the credentials of a specific user or service account using credential access... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0859-valid-accounts.json #### MITRE ATT&CK ICS T0860: Wireless Compromise (ICS Tactic TA0108 - Initial Access) - **ID**: mitre-attack-ics-t0860-wireless-compromise - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0860 (Wireless Compromise) is an ATT&CK for ICS Initial Access technique. Adversaries may perform wireless compromise as a method of gaining communications and unauthorized access to a w... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0860-wireless-compromise.json #### MITRE ATT&CK ICS T0861: Point & Tag Identification (ICS Tactic TA0100 - Collection) - **ID**: mitre-attack-ics-t0861-point-tag-identification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0861 (Point & Tag Identification) is an ATT&CK for ICS Collection technique. Adversaries may collect point and tag values to gain a more comprehensive understanding of the process enviro... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0861-point-tag-identification.json #### MITRE ATT&CK ICS T0862: Supply Chain Compromise (ICS Tactic TA0108 - Initial Access) - **ID**: mitre-attack-ics-t0862-supply-chain-compromise - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0862 (Supply Chain Compromise) is an ATT&CK for ICS Initial Access technique. Adversaries may perform supply chain compromise to gain control systems environment access by means of infec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0862-supply-chain-compromise.json #### MITRE ATT&CK ICS T0863: User Execution (ICS Tactic TA0104 - Execution) - **ID**: mitre-attack-ics-t0863-user-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0863 (User Execution) is an ATT&CK for ICS Execution technique. Adversaries may rely on a targeted organizations user interaction for the execution of malicious code. User interaction ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0863-user-execution.json #### MITRE ATT&CK ICS T0864: Transient Cyber Asset (ICS Tactic TA0108 - Initial Access) - **ID**: mitre-attack-ics-t0864-transient-cyber-asset - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0864 (Transient Cyber Asset) is an ATT&CK for ICS Initial Access technique. Adversaries may target devices that are transient across ICS networks and external networks. Normally, transie... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0864-transient-cyber-asset.json #### MITRE ATT&CK ICS T0865: Spearphishing Attachment (ICS Tactic TA0108 - Initial Access) - **ID**: mitre-attack-ics-t0865-spearphishing-attachment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0865 (Spearphishing Attachment) is an ATT&CK for ICS Initial Access technique. Adversaries may use a spearphishing attachment, a variant of spearphishing, as a form of a social engineeri... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0865-spearphishing-attachment.json #### MITRE ATT&CK ICS T0866: Exploitation of Remote Services (ICS Tactic TA0108 - Initial Access / TA0109 - Lateral Movement) - **ID**: mitre-attack-ics-t0866-exploitation-of-remote-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0866 (Exploitation of Remote Services) is an ATT&CK for ICS Initial Access and Lateral Movement technique. Adversaries may exploit a software vulnerability to take advantage of a program... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0866-exploitation-of-remote-services.json #### MITRE ATT&CK ICS T0867: Lateral Tool Transfer (Lateral Movement) - **ID**: mitre-attack-ics-t0867-lateral-tool-transfer - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0867 covers adversary transfer of tools or payloads between OT systems for lateral movement. Includes USB-based tool transfer (Stuxnet propagation), SMB file copy on OT IT-adjacent n... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0867-lateral-tool-transfer.json #### MITRE ATT&CK ICS T0868: Detect Operating Mode (ICS Tactic TA0100 - Collection) - **ID**: mitre-attack-ics-t0868-detect-operating-mode - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0868 (Detect Operating Mode) is an ATT&CK for ICS Collection technique. Adversaries may gather information about a PLCs or controllers current operating mode. Operating modes dictate wha... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0868-detect-operating-mode.json #### MITRE ATT&CK ICS T0869: Standard Application Layer Protocol (ICS Tactic TA0101 - Command and Control) - **ID**: mitre-attack-ics-t0869-standard-application-layer-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0869 (Standard Application Layer Protocol) is an ATT&CK for ICS Command and Control technique. Adversaries may establish command and control capabilities over commonly used application l... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0869-standard-application-layer-protocol.json #### MITRE ATT&CK ICS T0871: Execution through API (ICS Tactic TA0104 - Execution) - **ID**: mitre-attack-ics-t0871-execution-through-api - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0871 (Execution through API) is an ATT&CK for ICS Execution technique. Adversaries may attempt to leverage Application Program Interfaces (APIs) used for communication between control so... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0871-execution-through-api.json #### MITRE ATT&CK ICS T0872: Indicator Removal on Host (ICS Tactic TA0103 - Evasion) - **ID**: mitre-attack-ics-t0872-indicator-removal-on-host - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0872 (Indicator Removal on Host) is an ATT&CK for ICS Evasion technique. Adversaries may attempt to remove indicators of their presence on a system in an effort to cover their tracks. In... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0872-indicator-removal-on-host.json #### MITRE ATT&CK ICS T0873.001: Siemens Project File Format (ICS Tactic TA0110 - Persistence) - **ID**: mitre-attack-ics-t0873-001-siemens-project-file-format - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0873.001 (Siemens Project File Format) is an ICS Persistence technique. Adversaries may infect Siemens PLC project files (i.e., Step 7, WinCC, etc.) to achieve Execution, Persistence... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0873-001-siemens-project-file-format.json #### MITRE ATT&CK ICS T0873: Project File Infection (ICS Tactic TA0110 - Persistence) - **ID**: mitre-attack-ics-t0873-project-file-infection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0873 (Project File Infection) is an ATT&CK for ICS Persistence technique. Adversaries may attempt to infect project files with malicious code. These project files may consist of objects,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0873-project-file-infection.json #### MITRE ATT&CK ICS T0874: Hooking (ICS Tactic TA0104 - Execution / TA0111 - Privilege Escalation) - **ID**: mitre-attack-ics-t0874-hooking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0874 (Hooking) is an ATT&CK for ICS Execution and Privilege Escalation technique. Adversaries may hook into application programming interface (API) functions used by processes to redirec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0874-hooking.json #### MITRE ATT&CK ICS T0877: I/O Image (ICS Tactic TA0100 - Collection) - **ID**: mitre-attack-ics-t0877-i-o-image - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0877 (I/O Image) is an ATT&CK for ICS Collection technique. Adversaries may seek to capture process values related to the inputs and outputs of a PLC. During the scan cycle, a PLC reads ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0877-i-o-image.json #### MITRE ATT&CK ICS T0878: Alarm Suppression (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t0878-alarm-suppression - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0878 (Alarm Suppression) is an ATT&CK for ICS Inhibit Response Function technique. Adversaries may target protection function alarms to prevent them from notifying operators of critical ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0878-alarm-suppression.json #### MITRE ATT&CK ICS T0879: Damage to Property (Impact) - **ID**: mitre-attack-ics-t0879-damage-to-property - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0879 covers adversary-induced physical damage to property, equipment, or environment via cyber means. Stuxnet (2010 Iranian centrifuges), German steel mill (2014 BSI report), Ukraini... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0879-damage-to-property.json #### MITRE ATT&CK ICS T0880: Loss of Safety (ICS Tactic TA0105 - Impact) - **ID**: mitre-attack-ics-t0880-loss-of-safety - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0880 (Loss of Safety) is an ATT&CK for ICS Impact technique. Adversaries may compromise safety system functions designed to maintain safe operation of a process when unacceptable or dang... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0880-loss-of-safety.json #### MITRE ATT&CK ICS T0881: Service Stop (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t0881-service-stop - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0881 (Service Stop) is an ATT&CK for ICS Inhibit Response Function technique. Adversaries may stop or disable services on a system to render those services unavailable to legitimate user... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0881-service-stop.json #### MITRE ATT&CK ICS T0882: Theft of Operational Information (ICS Tactic TA0105 - Impact) - **ID**: mitre-attack-ics-t0882-theft-of-operational-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0882 (Theft of Operational Information) is an ATT&CK for ICS Impact technique. Adversaries may steal operational information on a production environment as a direct mission outcome for p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0882-theft-of-operational-information.json #### MITRE ATT&CK ICS T0883: Internet Accessible Device (Initial Access) - **ID**: mitre-attack-ics-t0883-internet-accessible-device - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0883 covers adversary access to industrial control devices directly exposed to the internet without proper authentication, firewall, or VPN protection. Shodan, Censys, and ZoomEye co... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0883-internet-accessible-device.json #### MITRE ATT&CK ICS T0884: Connection Proxy (Command and Control) - **ID**: mitre-attack-ics-t0884-connection-proxy - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0884 covers adversary use of legitimate-looking proxy infrastructure within or adjacent to OT zones for C2 communication. Volt Typhoon used compromised SOHO routers as proxies into U... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0884-connection-proxy.json #### MITRE ATT&CK ICS T0885: Commonly Used Port (ICS Tactic TA0101 - Command and Control) - **ID**: mitre-attack-ics-t0885-commonly-used-port - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0885 (Commonly Used Port) is an ATT&CK for ICS Command and Control technique. Adversaries may communicate over a commonly used port to bypass firewalls or network detection systems and t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0885-commonly-used-port.json #### MITRE ATT&CK ICS T0886: Remote Services (Lateral Movement) - **ID**: mitre-attack-ics-t0886-remote-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T0886 covers adversary use of remote services (RDP, VNC, SSH, vendor proprietary remote-support tools) for lateral movement and access to OT environments. Sandworm (Industroyer/Indust... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0886-remote-services.json #### MITRE ATT&CK ICS T0887: Wireless Sniffing (ICS Tactic TA0102 - Discovery / TA0100 - Collection) - **ID**: mitre-attack-ics-t0887-wireless-sniffing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0887 (Wireless Sniffing) is an ATT&CK for ICS Discovery and Collection technique. Adversaries may seek to capture radio frequency (RF) communication used for remote control and reporting... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0887-wireless-sniffing.json #### MITRE ATT&CK ICS T0888: Remote System Information Discovery (ICS Tactic TA0102 - Discovery) - **ID**: mitre-attack-ics-t0888-remote-system-information-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0888 (Remote System Information Discovery) is an ATT&CK for ICS Discovery technique. An adversary may attempt to get detailed information about remote systems and their peripherals, such... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0888-remote-system-information-discovery.json #### MITRE ATT&CK ICS T0889: Modify Program (ICS Tactic TA0110 - Persistence) - **ID**: mitre-attack-ics-t0889-modify-program - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0889 (Modify Program) is an ATT&CK for ICS Persistence technique. Adversaries may modify or add a program on a controller to affect how it interacts with the physical process, peripheral... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0889-modify-program.json #### MITRE ATT&CK ICS T0890: Exploitation for Privilege Escalation (ICS Tactic TA0111 - Privilege Escalation) - **ID**: mitre-attack-ics-t0890-exploitation-for-privilege-escalation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0890 (Exploitation for Privilege Escalation) is an ATT&CK for ICS Privilege Escalation technique. Adversaries may exploit software vulnerabilities in an attempt to elevate privileges. Ex... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0890-exploitation-for-privilege-escalation.json #### MITRE ATT&CK ICS T0891: Hardcoded Credentials (ICS Tactic TA0109 - Lateral Movement / TA0110 - Persistence) - **ID**: mitre-attack-ics-t0891-hardcoded-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0891 (Hardcoded Credentials) is an ATT&CK for ICS Lateral Movement and Persistence technique. Adversaries may leverage credentials that are hardcoded in software or firmware to gain an u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0891-hardcoded-credentials.json #### MITRE ATT&CK ICS T0892: Change Credential (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t0892-change-credential - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0892 (Change Credential) is an ATT&CK for ICS Inhibit Response Function technique. Adversaries may modify software and device credentials to prevent operator and responder access. Depend... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0892-change-credential.json #### MITRE ATT&CK ICS T0893: Data from Local System (ICS Tactic TA0100 - Collection) - **ID**: mitre-attack-ics-t0893-data-from-local-system - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0893 (Data from Local System) is an ATT&CK for ICS Collection technique. Adversaries may target and collect data from local system sources, such as file systems, configuration files, or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0893-data-from-local-system.json #### MITRE ATT&CK ICS T0894: System Binary Proxy Execution (ICS Tactic TA0103 - Evasion) - **ID**: mitre-attack-ics-t0894-system-binary-proxy-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0894 (System Binary Proxy Execution) is an ATT&CK for ICS Evasion technique. Adversaries may bypass process and/or signature-based defenses by proxying execution of malicious content wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0894-system-binary-proxy-execution.json #### MITRE ATT&CK ICS T0895: Autorun Image (ICS Tactic TA0104 - Execution) - **ID**: mitre-attack-ics-t0895-autorun-image - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T0895 (Autorun Image) is an ATT&CK for ICS Execution technique. Adversaries may leverage AutoRun functionality or scripts to execute malicious code. Devices configured to enable AutoRun f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t0895-autorun-image.json #### MITRE ATT&CK ICS T1691.001: Command Message (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t1691-001-command-message - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1691.001 (Command Message) is an ICS Inhibit Response Function technique. Adversaries may block a command message from reaching its intended target to prevent command execution. In O... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1691-001-command-message.json #### MITRE ATT&CK ICS T1691.002: Reporting Message (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t1691-002-reporting-message - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1691.002 (Reporting Message) is an ICS Inhibit Response Function technique. Adversaries may block or prevent a reporting message from reaching its intended target. In control systems... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1691-002-reporting-message.json #### MITRE ATT&CK ICS T1691: Block Operational Technology Message (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t1691-block-operational-technology-message - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1691 (Block Operational Technology Message) is an ICS Inhibit Response Function technique. Adversaries may block messages between systems and devices in an OT/ICS environment to disr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1691-block-operational-technology-message.json #### MITRE ATT&CK ICS T1692.001: Command Message (ICS Tactic TA0103 - Evasion) - **ID**: mitre-attack-ics-t1692-001-command-message - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1692.001 (Command Message) is an ICS Evasion, Impair Process Control technique. Adversaries may send unauthorized command messages to instruct control system assets to perform action... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1692-001-command-message.json #### MITRE ATT&CK ICS T1692.002: Reporting Message (ICS Tactic TA0103 - Evasion) - **ID**: mitre-attack-ics-t1692-002-reporting-message - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1692.002 (Reporting Message) is an ICS Evasion, Impair Process Control technique. Adversaries may spoof reporting messages in control system environments for evasion and to impair pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1692-002-reporting-message.json #### MITRE ATT&CK ICS T1692: Unauthorized Message (ICS Tactic TA0103 - Evasion) - **ID**: mitre-attack-ics-t1692-unauthorized-message - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1692 (Unauthorized Message) is an ICS Evasion, Impair Process Control technique. Adversaries may send unauthorized messages to ICS systems and devices to evade defenses or manipulate... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1692-unauthorized-message.json #### MITRE ATT&CK ICS T1693.001: System Firmware (ICS Tactic TA0110 - Persistence) - **ID**: mitre-attack-ics-t1693-001-system-firmware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1693.001 (System Firmware) is an ICS Persistence, Inhibit Response Function, Impair Process Control technique. System firmware on modern assets is often designed with an update featu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1693-001-system-firmware.json #### MITRE ATT&CK ICS T1693.002: Module Firmware (ICS Tactic TA0110 - Persistence) - **ID**: mitre-attack-ics-t1693-002-module-firmware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1693.002 (Module Firmware) is an ICS Persistence, Inhibit Response Function, Impair Process Control technique. Adversaries may install malicious or vulnerable firmware onto modular h... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1693-002-module-firmware.json #### MITRE ATT&CK ICS T1693: Modify Firmware (ICS Tactic TA0110 - Persistence) - **ID**: mitre-attack-ics-t1693-modify-firmware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1693 (Modify Firmware) is an ICS Persistence, Inhibit Response Function, Impair Process Control technique. Firmware is low-level software embedded in hardware that enables systems an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1693-modify-firmware.json #### MITRE ATT&CK ICS T1694.001: Default Credentials (ICS Tactic TA0110 - Persistence) - **ID**: mitre-attack-ics-t1694-001-default-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1694.001 (Default Credentials) is an ICS Persistence, Lateral Movement technique. Adversaries may leverage manufacturer or supplier set default credentials on control system devices.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1694-001-default-credentials.json #### MITRE ATT&CK ICS T1694.002: Hardcoded Credentials (ICS Tactic TA0110 - Persistence) - **ID**: mitre-attack-ics-t1694-002-hardcoded-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1694.002 (Hardcoded Credentials) is an ICS Persistence, Lateral Movement technique. Adversaries may leverage credentials that are hardcoded in software or firmware to gain an unautho... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1694-002-hardcoded-credentials.json #### MITRE ATT&CK ICS T1694: Insecure Credentials (ICS Tactic TA0110 - Persistence) - **ID**: mitre-attack-ics-t1694-insecure-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1694 (Insecure Credentials) is an ICS Persistence, Lateral Movement technique. Adversaries may target insecure credentials as a means to persist on a system or device or move lateral... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1694-insecure-credentials.json #### MITRE ATT&CK ICS T1695.001: Serial COM (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t1695-001-serial-com - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1695.001 (Serial COM) is an ICS Inhibit Response Function technique. Adversaries may block access to serial COM to prevent instructions or configurations from reaching target devices... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1695-001-serial-com.json #### MITRE ATT&CK ICS T1695.002: Ethernet (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t1695-002-ethernet - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1695.002 (Ethernet) is an ICS Inhibit Response Function technique. Adversaries may block access to Ethernet communications to prevent instructions or configurations messages from rea... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1695-002-ethernet.json #### MITRE ATT&CK ICS T1695.003: Wi-Fi (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t1695-003-wi-fi - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1695.003 (Wi-Fi) is an ICS Inhibit Response Function technique. Adversaries may block access to Wi-Fi communications to prevent messages from reaching target systems and devices. Wi-... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1695-003-wi-fi.json #### MITRE ATT&CK ICS T1695: Block Communications (ICS Tactic TA0107 - Inhibit Response Function) - **ID**: mitre-attack-ics-t1695-block-communications - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK ICS T1695 (Block Communications) is an ICS Inhibit Response Function technique. Operational technology communications occur over serial COM, Ethernet, Wi-Fi, cellular (4G/5G), and satelli... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-ics-t1695-block-communications.json #### MITRE ATT&CK Mobile T1398: Boot or Logon Initialization Scripts (Mobile Tactic TA0028 - Persistence) - **ID**: mitre-attack-mobile-t1398-boot-or-logon-initialization-scripts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1398 (Boot or Logon Initialization Scripts) is an ATT&CK for Mobile Persistence technique. Adversaries may use scripts automatically executed at boot or logon initialization to establish... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1398-boot-or-logon-initialization-scripts.json #### MITRE ATT&CK Mobile T1404: Exploitation for Privilege Escalation (Mobile Tactic TA0029 - Privilege Escalation) - **ID**: mitre-attack-mobile-t1404-exploitation-for-privilege-escalation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1404 (Exploitation for Privilege Escalation) is an ATT&CK for Mobile Privilege Escalation technique. Adversaries may exploit software vulnerabilities in order to elevate privileges. Expl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1404-exploitation-for-privilege-escalation.json #### MITRE ATT&CK Mobile T1406.001: Steganography (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1406-001-steganography - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1406.001 (Steganography) is an ATT&CK for Mobile Defense Evasion sub-technique of T1406 (Obfuscated Files or Information). Adversaries may use steganography techniques in order to preven... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1406-001-steganography.json #### MITRE ATT&CK Mobile T1406.002: Software Packing (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1406-002-software-packing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1406.002 (Software Packing) is an ATT&CK for Mobile Defense Evasion sub-technique of T1406 (Obfuscated Files or Information). Adversaries may perform software packing to conceal their co... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1406-002-software-packing.json #### MITRE ATT&CK Mobile T1406: Obfuscated Files or Information (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1406-obfuscated-files-or-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1406 (Obfuscated Files or Information) is an ATT&CK for Mobile Defense Evasion technique. Adversaries may attempt to make a payload or file difficult to discover or analyze by encrypting... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1406-obfuscated-files-or-information.json #### MITRE ATT&CK Mobile T1407: Download New Code at Runtime (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1407-download-new-code-at-runtime - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1407 (Download New Code at Runtime) is an ATT&CK for Mobile Defense Evasion technique. Adversaries may download and execute dynamic code not included in the original application package ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1407-download-new-code-at-runtime.json #### MITRE ATT&CK Mobile T1409: Stored Application Data (Collection) - **ID**: mitre-attack-mobile-t1409-stored-application-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1409 covers adversary access to data stored in mobile app private storage, shared storage, or cloud-backed app data. Banking trojans, infostealers (Lumma Mobile, Vidar Mobile), an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1409-stored-application-data.json #### MITRE ATT&CK Mobile T1414: Clipboard Data (Mobile Tactic TA0035 - Collection / TA0031 - Credential Access) - **ID**: mitre-attack-mobile-t1414-clipboard-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1414 (Clipboard Data) is an ATT&CK for Mobile Collection and Credential Access technique. Adversaries may abuse clipboard manager APIs to obtain sensitive information copied to the devic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1414-clipboard-data.json #### MITRE ATT&CK Mobile T1417.001: Keylogging (Mobile Tactic TA0035 - Collection / TA0031 - Credential Access) - **ID**: mitre-attack-mobile-t1417-001-keylogging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1417.001 (Keylogging) is an ATT&CK for Mobile Collection and Credential Access sub-technique of T1417 (Input Capture). Adversaries may log user keystrokes to intercept credentials or oth... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1417-001-keylogging.json #### MITRE ATT&CK Mobile T1417.002: GUI Input Capture (Mobile Tactic TA0031 - Credential Access / TA0035 - Collection) - **ID**: mitre-attack-mobile-t1417-002-gui-input-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1417.002 (GUI Input Capture) is an ATT&CK for Mobile Credential Access and Collection sub-technique of T1417 (Input Capture). Adversaries may mimic common operating system GUI components... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1417-002-gui-input-capture.json #### MITRE ATT&CK Mobile T1417: Input Capture (Credential Access + Collection) - **ID**: mitre-attack-mobile-t1417-input-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1417 covers adversary capture of user input via keylogging, accessibility-service abuse, overlay attacks, or screenshot interception. Cerberus, BRATA, ERMAC, and Hook Android bank... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1417-input-capture.json #### MITRE ATT&CK Mobile T1418.001: Security Software Discovery (Mobile Tactic TA0032 - Discovery) - **ID**: mitre-attack-mobile-t1418-001-security-software-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1418.001 (Security Software Discovery) is an ATT&CK for Mobile Discovery sub-technique of T1418 (Software Discovery). Adversaries may attempt to get a listing of security applications an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1418-001-security-software-discovery.json #### MITRE ATT&CK Mobile T1418: Software Discovery (Discovery) - **ID**: mitre-attack-mobile-t1418-software-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1418 covers adversary enumeration of installed applications on a mobile device to identify target apps, security tools, and exploitation opportunities. Modern Android malware (Jok... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1418-software-discovery.json #### MITRE ATT&CK Mobile T1420: File and Directory Discovery (Mobile Tactic TA0032 - Discovery) - **ID**: mitre-attack-mobile-t1420-file-and-directory-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1420 (File and Directory Discovery) is an ATT&CK for Mobile Discovery technique. Adversaries may enumerate files and directories or search in specific device locations for desired inform... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1420-file-and-directory-discovery.json #### MITRE ATT&CK Mobile T1421: System Network Connections Discovery (Mobile Tactic TA0032 - Discovery) - **ID**: mitre-attack-mobile-t1421-system-network-connections-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1421 (System Network Connections Discovery) is an ATT&CK for Mobile Discovery technique. Adversaries may attempt to get a listing of network connections to or from the compromised device... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1421-system-network-connections-discovery.json #### MITRE ATT&CK Mobile T1422.001: Internet Connection Discovery (Mobile Tactic TA0032 - Discovery) - **ID**: mitre-attack-mobile-t1422-001-internet-connection-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1422.001 (Internet Connection Discovery) is an ATT&CK for Mobile Discovery sub-technique of T1422 (System Network Configuration Discovery). Adversaries may check for Internet connectivit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1422-001-internet-connection-discovery.json #### MITRE ATT&CK Mobile T1422.002: Wi-Fi Discovery (Mobile Tactic TA0032 - Discovery) - **ID**: mitre-attack-mobile-t1422-002-wi-fi-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1422.002 (Wi-Fi Discovery) is an ATT&CK for Mobile Discovery sub-technique of T1422 (System Network Configuration Discovery). Adversaries may search for information about Wi-Fi networks,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1422-002-wi-fi-discovery.json #### MITRE ATT&CK Mobile T1422: System Network Configuration Discovery (Mobile Tactic TA0032 - Discovery) - **ID**: mitre-attack-mobile-t1422-system-network-configuration-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1422 (System Network Configuration Discovery) is an ATT&CK for Mobile Discovery technique. Adversaries may look for details about the network configuration and settings, such as IP and/o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1422-system-network-configuration-discovery.json #### MITRE ATT&CK Mobile T1423: Network Service Scanning (Mobile Tactic TA0032 - Discovery) - **ID**: mitre-attack-mobile-t1423-network-service-scanning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1423 (Network Service Scanning) is an ATT&CK for Mobile Discovery technique. Adversaries may attempt to get a listing of services running on remote hosts, including those that may be vul... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1423-network-service-scanning.json #### MITRE ATT&CK Mobile T1424: Process Discovery (Mobile Tactic TA0032 - Discovery) - **ID**: mitre-attack-mobile-t1424-process-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1424 (Process Discovery) is an ATT&CK for Mobile Discovery technique. Adversaries may attempt to get information about running processes on a device. Information obtained could be used t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1424-process-discovery.json #### MITRE ATT&CK Mobile T1426: System Information Discovery (Mobile Tactic TA0032 - Discovery) - **ID**: mitre-attack-mobile-t1426-system-information-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1426 (System Information Discovery) is an ATT&CK for Mobile Discovery technique. Adversaries may attempt to get detailed information about a device's operating system and hardware, inclu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1426-system-information-discovery.json #### MITRE ATT&CK Mobile T1428: Exploitation of Remote Services (Mobile Tactic TA0033 - Lateral Movement) - **ID**: mitre-attack-mobile-t1428-exploitation-of-remote-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1428 (Exploitation of Remote Services) is an ATT&CK for Mobile Lateral Movement technique. Adversaries may exploit remote services of enterprise servers, workstations, or other resources... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1428-exploitation-of-remote-services.json #### MITRE ATT&CK Mobile T1429: Audio Capture (Collection) - **ID**: mitre-attack-mobile-t1429-audio-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1429 covers adversary capture of audio via the device microphone for surveillance. Pegasus, Predator, FinSpy, ToothPicker all include mic-capture capability. Modern Android varian... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1429-audio-capture.json #### MITRE ATT&CK Mobile T1430.001: Remote Device Management Services (Mobile Tactic TA0035 - Collection / TA0032 - Discovery) - **ID**: mitre-attack-mobile-t1430-001-remote-device-management-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1430.001 (Remote Device Management Services) is an ATT&CK for Mobile Collection and Discovery sub-technique of T1430 (Location Tracking). An adversary may use access to cloud services (e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1430-001-remote-device-management-services.json #### MITRE ATT&CK Mobile T1430.002: Impersonate SS7 Nodes (Mobile Tactic TA0035 - Collection / TA0032 - Discovery) - **ID**: mitre-attack-mobile-t1430-002-impersonate-ss7-nodes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1430.002 (Impersonate SS7 Nodes) is an ATT&CK for Mobile Collection and Discovery sub-technique of T1430 (Location Tracking). Adversaries may exploit the lack of authentication in signal... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1430-002-impersonate-ss7-nodes.json #### MITRE ATT&CK Mobile T1430: Location Tracking (Discovery + Collection) - **ID**: mitre-attack-mobile-t1430-location-tracking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1430 covers adversary access to a victim devices geolocation - GPS, cellular tower triangulation, Wi-Fi positioning, IP geolocation. Pegasus, Predator, FinSpy, and most commercial... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1430-location-tracking.json #### MITRE ATT&CK Mobile T1437.001: Web Protocols (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1437-001-web-protocols - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1437.001 (Web Protocols) is an ATT&CK for Mobile Command and Control sub-technique of T1437 (Application Layer Protocol). Adversaries may communicate using application layer protocols as... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1437-001-web-protocols.json #### MITRE ATT&CK Mobile T1437: Application Layer Protocol (Command and Control) - **ID**: mitre-attack-mobile-t1437-application-layer-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1437 covers adversary use of standard application-layer protocols (HTTP, HTTPS, DNS, mail, messaging) for command-and-control communication blending malicious traffic with legitim... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1437-application-layer-protocol.json #### MITRE ATT&CK Mobile T1451: SIM Card Swap (Mobile Tactic TA0027 - Initial Access) - **ID**: mitre-attack-mobile-t1451-sim-card-swap - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1451 (SIM Card Swap) is an Mobile Initial Access technique. Adversaries may gain access to mobile devices through transfers or swaps from victims’ phone numbers to adversary-contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1451-sim-card-swap.json #### MITRE ATT&CK Mobile T1453: Abuse Accessibility Features (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1453-abuse-accessibility-features - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1453 (Abuse Accessibility Features) is an Mobile Collection, Credential Access technique. Adversaries may abuse accessibility features in Android devices to steal sensitive data a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1453-abuse-accessibility-features.json #### MITRE ATT&CK Mobile T1456: Drive-by Compromise (Initial Access) - **ID**: mitre-attack-mobile-t1456-drive-by-compromise - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1456 covers adversary exploitation of victim browsers and WebViews via malicious web content to gain initial mobile access. Mobile browser zero-days (Operation Triangulation 2023,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1456-drive-by-compromise.json #### MITRE ATT&CK Mobile T1458: Replication Through Removable Media (Mobile Tactic TA0027 - Initial Access / TA0033 - Lateral Movement) - **ID**: mitre-attack-mobile-t1458-replication-through-removable-media - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1458 (Replication Through Removable Media) is an ATT&CK for Mobile Initial Access and Lateral Movement technique. Adversaries may move onto devices by exploiting or copying malware to de... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1458-replication-through-removable-media.json #### MITRE ATT&CK Mobile T1461: Lockscreen Bypass (Mobile Tactic TA0027 - Initial Access) - **ID**: mitre-attack-mobile-t1461-lockscreen-bypass - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1461 (Lockscreen Bypass) is an ATT&CK for Mobile Initial Access technique. An adversary with physical access to a mobile device may seek to bypass the device's lockscreen. Several method... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1461-lockscreen-bypass.json #### MITRE ATT&CK Mobile T1464: Network Denial of Service (Mobile Tactic TA0034 - Impact) - **ID**: mitre-attack-mobile-t1464-network-denial-of-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1464 (Network Denial of Service) is an ATT&CK for Mobile Impact technique. Adversaries may perform Network Denial of Service (DoS) attacks to degrade or block the availability of targete... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1464-network-denial-of-service.json #### MITRE ATT&CK Mobile T1471: Data Encrypted for Impact (Impact) - **ID**: mitre-attack-mobile-t1471-data-encrypted-for-impact - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1471 covers mobile-specific ransomware that encrypts user data and demands payment. Notable mobile ransomware families include Charger, Lockerpin, DoubleLocker, Filecoder.C, and S... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1471-data-encrypted-for-impact.json #### MITRE ATT&CK Mobile T1474.001: Compromise Software Dependencies and Development Tools (Mobile Tactic TA0027 - Initial Access) - **ID**: mitre-attack-mobile-t1474-001-compromise-software-dependencies-and-development-tools - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1474.001 (Compromise Software Dependencies and Development Tools) is an ATT&CK for Mobile Initial Access sub-technique of T1474 (Supply Chain Compromise). Adversaries may manipulate prod... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1474-001-compromise-software-dependencies-and-development-tools.json #### MITRE ATT&CK Mobile T1474.002: Compromise Hardware Supply Chain (Mobile Tactic TA0027 - Initial Access) - **ID**: mitre-attack-mobile-t1474-002-compromise-hardware-supply-chain - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1474.002 (Compromise Hardware Supply Chain) is an ATT&CK for Mobile Initial Access sub-technique of T1474 (Supply Chain Compromise). Adversaries may manipulate hardware components in pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1474-002-compromise-hardware-supply-chain.json #### MITRE ATT&CK Mobile T1474.003: Compromise Software Supply Chain (Mobile Tactic TA0027 - Initial Access) - **ID**: mitre-attack-mobile-t1474-003-compromise-software-supply-chain - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1474.003 (Compromise Software Supply Chain) is an ATT&CK for Mobile Initial Access sub-technique of T1474 (Supply Chain Compromise). Adversaries may manipulate application software prior... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1474-003-compromise-software-supply-chain.json #### MITRE ATT&CK Mobile T1474: Supply Chain Compromise (Initial Access) - **ID**: mitre-attack-mobile-t1474-supply-chain-compromise - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1474 covers adversary compromise of mobile applications through the software supply chain - malicious code injected into Google Play / Apple App Store apps, sideloaded APK distrib... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1474-supply-chain-compromise.json #### MITRE ATT&CK Mobile T1481.001: Dead Drop Resolver (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1481-001-dead-drop-resolver - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1481.001 (Dead Drop Resolver) is an ATT&CK for Mobile Command and Control sub-technique of T1481 (Web Service). Adversaries may use an existing, legitimate external Web service to host i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1481-001-dead-drop-resolver.json #### MITRE ATT&CK Mobile T1481.002: Bidirectional Communication (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1481-002-bidirectional-communication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1481.002 (Bidirectional Communication) is an ATT&CK for Mobile Command and Control sub-technique of T1481 (Web Service). Adversaries may use an existing, legitimate external Web service ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1481-002-bidirectional-communication.json #### MITRE ATT&CK Mobile T1481.003: One-Way Communication (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1481-003-one-way-communication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1481.003 (One-Way Communication) is an ATT&CK for Mobile Command and Control sub-technique of T1481 (Web Service). Adversaries may use an existing, legitimate external Web service channe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1481-003-one-way-communication.json #### MITRE ATT&CK Mobile T1481: Web Service (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1481-web-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1481 (Web Service) is an ATT&CK for Mobile Command and Control technique. Adversaries may use an existing, legitimate external Web service as a means for relaying data to/from a compromi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1481-web-service.json #### MITRE ATT&CK Mobile T1509: Non-Standard Port (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1509-non-standard-port - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1509 (Non-Standard Port) is an ATT&CK for Mobile Command and Control technique. Adversaries may generate network traffic using a protocol and port pairing that are typically not associat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1509-non-standard-port.json #### MITRE ATT&CK Mobile T1512: Video Capture (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1512-video-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1512 (Video Capture) is an ATT&CK for Mobile Collection technique. An adversary can leverage a device's cameras to gather information by capturing video recordings. Images may also be ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1512-video-capture.json #### MITRE ATT&CK Mobile T1513: Screen Capture (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1513-screen-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1513 (Screen Capture) is an ATT&CK for Mobile Collection technique. Adversaries may use screen capture to collect additional information about a target device, such as applications runni... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1513-screen-capture.json #### MITRE ATT&CK Mobile T1516: Input Injection (Mobile Tactic TA0030 - Defense Evasion / TA0034 - Impact) - **ID**: mitre-attack-mobile-t1516-input-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1516 (Input Injection) is an ATT&CK for Mobile Defense Evasion and Impact technique. A malicious application can inject input to the user interface to mimic user interaction through the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1516-input-injection.json #### MITRE ATT&CK Mobile T1517: Access Notifications (Mobile Tactic TA0035 - Collection / TA0031 - Credential Access) - **ID**: mitre-attack-mobile-t1517-access-notifications - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1517 (Access Notifications) is an ATT&CK for Mobile Collection and Credential Access technique. Adversaries may collect data within notifications sent by the operating system or other ap... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1517-access-notifications.json #### MITRE ATT&CK Mobile T1521.001: Symmetric Cryptography (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1521-001-symmetric-cryptography - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1521.001 (Symmetric Cryptography) is an ATT&CK for Mobile Command and Control sub-technique of T1521 (Encrypted Channel). Adversaries may employ a known symmetric encryption algorithm to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1521-001-symmetric-cryptography.json #### MITRE ATT&CK Mobile T1521.002: Asymmetric Cryptography (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1521-002-asymmetric-cryptography - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1521.002 (Asymmetric Cryptography) is an ATT&CK for Mobile Command and Control sub-technique of T1521 (Encrypted Channel). Adversaries may employ a known asymmetric encryption algorithm ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1521-002-asymmetric-cryptography.json #### MITRE ATT&CK Mobile T1521.003: SSL Pinning (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1521-003-ssl-pinning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1521.003 (SSL Pinning) is an ATT&CK for Mobile Command and Control sub-technique of T1521 (Encrypted Channel). Adversaries may use SSL Pinning to protect the C2 traffic from being interc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1521-003-ssl-pinning.json #### MITRE ATT&CK Mobile T1521: Encrypted Channel (Command and Control) - **ID**: mitre-attack-mobile-t1521-encrypted-channel - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1521 covers adversary use of TLS, symmetric, or asymmetric encrypted channels for mobile command-and-control communication. Pegasus, Predator, FinSpy, BRATA Android banker, and mo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1521-encrypted-channel.json #### MITRE ATT&CK Mobile T1532: Archive Collected Data (Collection) - **ID**: mitre-attack-mobile-t1532-archive-collected-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1532 covers adversary archiving and compression of collected data on a mobile device before exfiltration to reduce transfer size and evade detection. Pegasus, Predator, and most m... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1532-archive-collected-data.json #### MITRE ATT&CK Mobile T1533: Data from Local System (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1533-data-from-local-system - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1533 (Data from Local System) is an ATT&CK for Mobile Collection technique. Adversaries may search local system sources, such as file systems or local databases, to find files of interes... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1533-data-from-local-system.json #### MITRE ATT&CK Mobile T1541: Foreground Persistence (Mobile Tactic TA0030 - Defense Evasion / TA0028 - Persistence) - **ID**: mitre-attack-mobile-t1541-foreground-persistence - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1541 (Foreground Persistence) is an ATT&CK for Mobile Defense Evasion and Persistence technique. Adversaries may abuse Android's startForeground() API method to maintain continuous senso... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1541-foreground-persistence.json #### MITRE ATT&CK Mobile T1544: Ingress Tool Transfer (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1544-ingress-tool-transfer - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1544 (Ingress Tool Transfer) is an ATT&CK for Mobile Command and Control technique. Adversaries may transfer tools or other files from an external system onto a compromised device to fac... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1544-ingress-tool-transfer.json #### MITRE ATT&CK Mobile T1575: Native API (Mobile Tactic TA0030 - Defense Evasion / TA0041 - Execution) - **ID**: mitre-attack-mobile-t1575-native-api - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1575 (Native API) is an ATT&CK for Mobile Defense Evasion and Execution technique. Adversaries may use Android's Native Development Kit (NDK) to write native functions that can achieve e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1575-native-api.json #### MITRE ATT&CK Mobile T1577: Compromise Application Executable (Persistence) - **ID**: mitre-attack-mobile-t1577-compromise-application-executable - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1577 covers adversary modification of legitimate mobile application binaries to add malicious code while preserving original functionality. Re-signed APKs distributed via sideload... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1577-compromise-application-executable.json #### MITRE ATT&CK Mobile T1582: SMS Control (Impact + Collection) - **ID**: mitre-attack-mobile-t1582-sms-control - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1582 covers adversary control over the SMS subsystem to intercept, send, or delete messages on a mobile device. Common with banking trojans (Cerberus, Anubis, FluBot) that interce... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1582-sms-control.json #### MITRE ATT&CK Mobile T1603: Scheduled Task/Job (Mobile Tactic TA0041 - Execution / TA0028 - Persistence) - **ID**: mitre-attack-mobile-t1603-scheduled-task-job - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1603 (Scheduled Task/Job) is an ATT&CK for Mobile Execution and Persistence technique. Adversaries may abuse task scheduling functionality to facilitate initial or recurring execution of... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1603-scheduled-task-job.json #### MITRE ATT&CK Mobile T1604: Proxy Through Victim (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1604-proxy-through-victim - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1604 (Proxy Through Victim) is an ATT&CK for Mobile Defense Evasion technique. Adversaries may use a compromised device as a proxy server to the Internet. By utilizing a proxy, adversari... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1604-proxy-through-victim.json #### MITRE ATT&CK Mobile T1616: Call Control (Mobile Tactic TA0035 - Collection / TA0034 - Impact / TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1616-call-control - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1616 (Call Control) is an ATT&CK for Mobile Collection and Impact and Command and Control technique. Adversaries may make, forward, or block phone calls without user authorization. This ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1616-call-control.json #### MITRE ATT&CK Mobile T1617: Hooking (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1617-hooking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1617 (Hooking) is an ATT&CK for Mobile Defense Evasion technique. Adversaries may utilize hooking to hide the presence of artifacts associated with their behaviors to evade detection. Ho... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1617-hooking.json #### MITRE ATT&CK Mobile T1623.001: Unix Shell (Mobile Tactic TA0041 - Execution) - **ID**: mitre-attack-mobile-t1623-001-unix-shell - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1623.001 (Unix Shell) is an ATT&CK for Mobile Execution sub-technique of T1623 (Command and Scripting Interpreter). Adversaries may abuse Unix shell commands and scripts for execution. U... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1623-001-unix-shell.json #### MITRE ATT&CK Mobile T1623: Command and Scripting Interpreter (Execution) - **ID**: mitre-attack-mobile-t1623-command-and-scripting-interpreter - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1623 covers adversary use of mobile-native command interpreters and scripting environments (Unix Shell on rooted Android, JavaScript injection in WebView, mobile remote-management... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1623-command-and-scripting-interpreter.json #### MITRE ATT&CK Mobile T1624.001: Broadcast Receivers (Mobile Tactic TA0028 - Persistence) - **ID**: mitre-attack-mobile-t1624-001-broadcast-receivers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1624.001 (Broadcast Receivers) is an ATT&CK for Mobile Persistence sub-technique of T1624 (Event Triggered Execution). Adversaries may establish persistence using system mechanisms that ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1624-001-broadcast-receivers.json #### MITRE ATT&CK Mobile T1624: Event Triggered Execution (Mobile Tactic TA0028 - Persistence) - **ID**: mitre-attack-mobile-t1624-event-triggered-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1624 (Event Triggered Execution) is an ATT&CK for Mobile Persistence technique. Adversaries may establish persistence using system mechanisms that trigger execution based on specific eve... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1624-event-triggered-execution.json #### MITRE ATT&CK Mobile T1625.001: System Runtime API Hijacking (Mobile Tactic TA0028 - Persistence) - **ID**: mitre-attack-mobile-t1625-001-system-runtime-api-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1625.001 (System Runtime API Hijacking) is an ATT&CK for Mobile Persistence sub-technique of T1625 (Hijack Execution Flow). Adversaries may execute their own malicious payloads by hijack... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1625-001-system-runtime-api-hijacking.json #### MITRE ATT&CK Mobile T1625: Hijack Execution Flow (Mobile Tactic TA0028 - Persistence) - **ID**: mitre-attack-mobile-t1625-hijack-execution-flow - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1625 (Hijack Execution Flow) is an ATT&CK for Mobile Persistence technique. Adversaries may execute their own malicious payloads by hijacking the way operating systems run applications. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1625-hijack-execution-flow.json #### MITRE ATT&CK Mobile T1626.001: Device Administrator Permissions (Mobile Tactic TA0029 - Privilege Escalation) - **ID**: mitre-attack-mobile-t1626-001-device-administrator-permissions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1626.001 (Device Administrator Permissions) is an ATT&CK for Mobile Privilege Escalation sub-technique of T1626 (Abuse Elevation Control Mechanism). Adversaries may abuse Android's devic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1626-001-device-administrator-permissions.json #### MITRE ATT&CK Mobile T1626: Abuse Elevation Control Mechanism (Privilege Escalation + Defense Evasion) - **ID**: mitre-attack-mobile-t1626-abuse-elevation-control-mechanism - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1626 covers adversary bypass of OS permission controls to gain elevated privileges. Includes root-jailbreak exploitation (CheckRain, unc0ver, Magisk-based) and Device Administrati... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1626-abuse-elevation-control-mechanism.json #### MITRE ATT&CK Mobile T1627.001: Geofencing (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1627-001-geofencing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1627.001 (Geofencing) is an ATT&CK for Mobile Defense Evasion sub-technique of T1627 (Execution Guardrails). Adversaries may use a device's geographical location to limit certain malicio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1627-001-geofencing.json #### MITRE ATT&CK Mobile T1627: Execution Guardrails (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1627-execution-guardrails - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1627 (Execution Guardrails) is an ATT&CK for Mobile Defense Evasion technique. Adversaries may use execution guardrails to constrain execution or actions based on adversary supplied and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1627-execution-guardrails.json #### MITRE ATT&CK Mobile T1628.001: Suppress Application Icon (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1628-001-suppress-application-icon - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1628.001 (Suppress Application Icon) is an ATT&CK for Mobile Defense Evasion sub-technique of T1628 (Hide Artifacts). A malicious application could suppress its icon from being displayed... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1628-001-suppress-application-icon.json #### MITRE ATT&CK Mobile T1628.002: User Evasion (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1628-002-user-evasion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1628.002 (User Evasion) is an ATT&CK for Mobile Defense Evasion sub-technique of T1628 (Hide Artifacts). Adversaries may attempt to avoid detection by hiding malicious behavior from the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1628-002-user-evasion.json #### MITRE ATT&CK Mobile T1628.003: Conceal Multimedia Files (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1628-003-conceal-multimedia-files - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1628.003 (Conceal Multimedia Files) is an ATT&CK for Mobile Defense Evasion sub-technique of T1628 (Hide Artifacts). Adversaries may attempt to hide multimedia files from the user. By do... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1628-003-conceal-multimedia-files.json #### MITRE ATT&CK Mobile T1628: Hide Artifacts (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1628-hide-artifacts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1628 (Hide Artifacts) is an ATT&CK for Mobile Defense Evasion technique. Adversaries may attempt to hide artifacts associated with their behaviors to evade detection. Mobile operating sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1628-hide-artifacts.json #### MITRE ATT&CK Mobile T1629.001: Prevent Application Removal (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1629-001-prevent-application-removal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1629.001 (Prevent Application Removal) is an ATT&CK for Mobile Defense Evasion sub-technique of T1629 (Impair Defenses). Adversaries may abuse the Android device administration API to pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1629-001-prevent-application-removal.json #### MITRE ATT&CK Mobile T1629.002: Device Lockout (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1629-002-device-lockout - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1629.002 (Device Lockout) is an ATT&CK for Mobile Defense Evasion sub-technique of T1629 (Impair Defenses). An adversary may seek to inhibit user interaction by locking the legitimate us... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1629-002-device-lockout.json #### MITRE ATT&CK Mobile T1629.003: Disable or Modify Tools (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1629-003-disable-or-modify-tools - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1629.003 (Disable or Modify Tools) is an ATT&CK for Mobile Defense Evasion sub-technique of T1629 (Impair Defenses). Adversaries may disable security tools to avoid potential detection o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1629-003-disable-or-modify-tools.json #### MITRE ATT&CK Mobile T1629: Impair Defenses (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1629-impair-defenses - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1629 (Impair Defenses) is an ATT&CK for Mobile Defense Evasion technique. Adversaries may maliciously modify components of a victim environment in order to hinder or disable defensive me... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1629-impair-defenses.json #### MITRE ATT&CK Mobile T1630.001: Uninstall Malicious Application (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1630-001-uninstall-malicious-application - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1630.001 (Uninstall Malicious Application) is an ATT&CK for Mobile Defense Evasion sub-technique of T1630 (Indicator Removal on Host). Adversaries may include functionality in malware th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1630-001-uninstall-malicious-application.json #### MITRE ATT&CK Mobile T1630.002: File Deletion (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1630-002-file-deletion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1630.002 (File Deletion) is an ATT&CK for Mobile Defense Evasion sub-technique of T1630 (Indicator Removal on Host). Adversaries may wipe a device or delete individual files in order to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1630-002-file-deletion.json #### MITRE ATT&CK Mobile T1630.003: Disguise Root/Jailbreak Indicators (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1630-003-disguise-root-jailbreak-indicators - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1630.003 (Disguise Root/Jailbreak Indicators) is an ATT&CK for Mobile Defense Evasion sub-technique of T1630 (Indicator Removal on Host). An adversary could use knowledge of the techniqu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1630-003-disguise-root-jailbreak-indicators.json #### MITRE ATT&CK Mobile T1630: Indicator Removal on Host (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1630-indicator-removal-on-host - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1630 (Indicator Removal on Host) is an ATT&CK for Mobile Defense Evasion technique. Adversaries may delete, alter, or hide generated artifacts on a device, including files, jailbreak sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1630-indicator-removal-on-host.json #### MITRE ATT&CK Mobile T1631.001: Ptrace System Calls (Mobile Tactic TA0030 - Defense Evasion / TA0029 - Privilege Escalation) - **ID**: mitre-attack-mobile-t1631-001-ptrace-system-calls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1631.001 (Ptrace System Calls) is an ATT&CK for Mobile Defense Evasion and Privilege Escalation sub-technique of T1631 (Process Injection). Adversaries may inject malicious code into pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1631-001-ptrace-system-calls.json #### MITRE ATT&CK Mobile T1631: Process Injection (Mobile Tactic TA0030 - Defense Evasion / TA0029 - Privilege Escalation) - **ID**: mitre-attack-mobile-t1631-process-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1631 (Process Injection) is an ATT&CK for Mobile Defense Evasion and Privilege Escalation technique. Adversaries may inject code into processes in order to evade process-based defenses o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1631-process-injection.json #### MITRE ATT&CK Mobile T1632.001: Code Signing Policy Modification (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1632-001-code-signing-policy-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1632.001 (Code Signing Policy Modification) is an ATT&CK for Mobile Defense Evasion sub-technique of T1632 (Subvert Trust Controls). Adversaries may modify code signing policies to enabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1632-001-code-signing-policy-modification.json #### MITRE ATT&CK Mobile T1632: Subvert Trust Controls (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1632-subvert-trust-controls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1632 (Subvert Trust Controls) is an ATT&CK for Mobile Defense Evasion technique. Adversaries may undermine security controls that will either warn users of untrusted activity or prevent ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1632-subvert-trust-controls.json #### MITRE ATT&CK Mobile T1633.001: System Checks (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1633-001-system-checks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1633.001 (System Checks) is an ATT&CK for Mobile Defense Evasion sub-technique of T1633 (Virtualization/Sandbox Evasion). Adversaries may employ various system checks to detect and avoid... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1633-001-system-checks.json #### MITRE ATT&CK Mobile T1633: Virtualization/Sandbox Evasion (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1633-virtualization-sandbox-evasion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1633 (Virtualization/Sandbox Evasion) is an ATT&CK for Mobile Defense Evasion technique. Adversaries may employ various means to detect and avoid virtualization and analysis environments... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1633-virtualization-sandbox-evasion.json #### MITRE ATT&CK Mobile T1634.001: Keychain (Mobile Tactic TA0031 - Credential Access) - **ID**: mitre-attack-mobile-t1634-001-keychain - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1634.001 (Keychain) is an ATT&CK for Mobile Credential Access sub-technique of T1634 (Credentials from Password Store). Adversaries may collect keychain data from an iOS device to acquir... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1634-001-keychain.json #### MITRE ATT&CK Mobile T1634: Credentials from Password Store (Mobile Tactic TA0031 - Credential Access) - **ID**: mitre-attack-mobile-t1634-credentials-from-password-store - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1634 (Credentials from Password Store) is an ATT&CK for Mobile Credential Access technique. Adversaries may search common password storage locations to obtain user credentials. Passwords... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1634-credentials-from-password-store.json #### MITRE ATT&CK Mobile T1635.001: URI Hijacking (Mobile Tactic TA0031 - Credential Access) - **ID**: mitre-attack-mobile-t1635-001-uri-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1635.001 (URI Hijacking) is an ATT&CK for Mobile Credential Access sub-technique of T1635 (Steal Application Access Token). Adversaries may register Uniform Resource Identifiers (URIs) t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1635-001-uri-hijacking.json #### MITRE ATT&CK Mobile T1635: Steal Application Access Token (Mobile Tactic TA0031 - Credential Access) - **ID**: mitre-attack-mobile-t1635-steal-application-access-token - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1635 (Steal Application Access Token) is an ATT&CK for Mobile Credential Access technique. Adversaries can steal user application access tokens as a means of acquiring credentials to acc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1635-steal-application-access-token.json #### MITRE ATT&CK Mobile T1636.001: Calendar Entries (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1636-001-calendar-entries - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1636.001 (Calendar Entries) is an ATT&CK for Mobile Collection sub-technique of T1636 (Protected User Data). Adversaries may utilize standard operating system APIs to gather calendar ent... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1636-001-calendar-entries.json #### MITRE ATT&CK Mobile T1636.002: Call Log (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1636-002-call-log - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1636.002 (Call Log) is an ATT&CK for Mobile Collection sub-technique of T1636 (Protected User Data). Adversaries may utilize standard operating system APIs to gather call log data. On An... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1636-002-call-log.json #### MITRE ATT&CK Mobile T1636.003: Contact List (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1636-003-contact-list - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1636.003 (Contact List) is an ATT&CK for Mobile Collection sub-technique of T1636 (Protected User Data). Adversaries may utilize standard operating system APIs to gather contact list dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1636-003-contact-list.json #### MITRE ATT&CK Mobile T1636.004: SMS Messages (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1636-004-sms-messages - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1636.004 (SMS Messages) is an ATT&CK for Mobile Collection sub-technique of T1636 (Protected User Data). Adversaries may utilize standard operating system APIs to gather SMS messages. On... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1636-004-sms-messages.json #### MITRE ATT&CK Mobile T1636.005: Accounts (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1636-005-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1636.005 (Accounts) is an Mobile Collection technique. Adversaries may utilize standard operating system APIs to gather account data. On Android, this can be accomplished by using... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1636-005-accounts.json #### MITRE ATT&CK Mobile T1636: Protected User Data (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1636-protected-user-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1636 (Protected User Data) is an ATT&CK for Mobile Collection technique. Adversaries may utilize standard operating system APIs to collect data from permission-backed data stores on a de... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1636-protected-user-data.json #### MITRE ATT&CK Mobile T1637.001: Domain Generation Algorithms (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1637-001-domain-generation-algorithms - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1637.001 (Domain Generation Algorithms) is an ATT&CK for Mobile Command and Control sub-technique of T1637 (Dynamic Resolution). Adversaries may use Domain Generation Algorithms (DGAs) t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1637-001-domain-generation-algorithms.json #### MITRE ATT&CK Mobile T1637: Dynamic Resolution (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1637-dynamic-resolution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1637 (Dynamic Resolution) is an ATT&CK for Mobile Command and Control technique. Adversaries may dynamically establish connections to command and control infrastructure to evade common d... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1637-dynamic-resolution.json #### MITRE ATT&CK Mobile T1638: Adversary-in-the-Middle (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1638-adversary-in-the-middle - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1638 (Adversary-in-the-Middle) is an ATT&CK for Mobile Collection technique. Adversaries may attempt to position themselves between two or more networked devices to support follow-on beh... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1638-adversary-in-the-middle.json #### MITRE ATT&CK Mobile T1639.001: Exfiltration Over Unencrypted Non-C2 Protocol (Mobile Tactic TA0036 - Exfiltration) - **ID**: mitre-attack-mobile-t1639-001-exfiltration-over-unencrypted-non-c2-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1639.001 (Exfiltration Over Unencrypted Non-C2 Protocol) is an ATT&CK for Mobile Exfiltration sub-technique of T1639 (Exfiltration Over Alternative Protocol). Adversaries may steal data ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1639-001-exfiltration-over-unencrypted-non-c2-protocol.json #### MITRE ATT&CK Mobile T1639: Exfiltration Over Alternative Protocol (Mobile Tactic TA0036 - Exfiltration) - **ID**: mitre-attack-mobile-t1639-exfiltration-over-alternative-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1639 (Exfiltration Over Alternative Protocol) is an ATT&CK for Mobile Exfiltration technique. Adversaries may steal data by exfiltrating it over a different protocol than that of the exi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1639-exfiltration-over-alternative-protocol.json #### MITRE ATT&CK Mobile T1640: Account Access Removal (Mobile Tactic TA0034 - Impact) - **ID**: mitre-attack-mobile-t1640-account-access-removal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1640 (Account Access Removal) is an ATT&CK for Mobile Impact technique. Adversaries may interrupt availability of system and network resources by inhibiting access to accounts utilized b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1640-account-access-removal.json #### MITRE ATT&CK Mobile T1641.001: Transmitted Data Manipulation (Mobile Tactic TA0034 - Impact) - **ID**: mitre-attack-mobile-t1641-001-transmitted-data-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1641.001 (Transmitted Data Manipulation) is an ATT&CK for Mobile Impact sub-technique of T1641 (Data Manipulation). Adversaries may alter data en route to storage or other systems in ord... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1641-001-transmitted-data-manipulation.json #### MITRE ATT&CK Mobile T1641: Data Manipulation (Mobile Tactic TA0034 - Impact) - **ID**: mitre-attack-mobile-t1641-data-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1641 (Data Manipulation) is an ATT&CK for Mobile Impact technique. Adversaries may insert, delete, or alter data in order to manipulate external outcomes or hide activity. By manipulatin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1641-data-manipulation.json #### MITRE ATT&CK Mobile T1642: Endpoint Denial of Service (Mobile Tactic TA0034 - Impact) - **ID**: mitre-attack-mobile-t1642-endpoint-denial-of-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1642 (Endpoint Denial of Service) is an ATT&CK for Mobile Impact technique. Adversaries may perform Endpoint Denial of Service (DoS) attacks to degrade or block the availability of servi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1642-endpoint-denial-of-service.json #### MITRE ATT&CK Mobile T1643: Generate Traffic from Victim (Mobile Tactic TA0034 - Impact) - **ID**: mitre-attack-mobile-t1643-generate-traffic-from-victim - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1643 (Generate Traffic from Victim) is an ATT&CK for Mobile Impact technique. Adversaries may generate outbound traffic from devices. This is typically performed to manipulate external o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1643-generate-traffic-from-victim.json #### MITRE ATT&CK Mobile T1644: Out of Band Data (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1644-out-of-band-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1644 (Out of Band Data) is an ATT&CK for Mobile Command and Control technique. Adversaries may communicate with compromised devices using out of band data streams. This could be done for... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1644-out-of-band-data.json #### MITRE ATT&CK Mobile T1645: Compromise Client Software Binary (Mobile Tactic TA0028 - Persistence) - **ID**: mitre-attack-mobile-t1645-compromise-client-software-binary - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1645 (Compromise Client Software Binary) is an ATT&CK for Mobile Persistence technique. Adversaries may modify system software binaries to establish persistent access to devices. System ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1645-compromise-client-software-binary.json #### MITRE ATT&CK Mobile T1646: Exfiltration Over C2 Channel (Mobile Tactic TA0036 - Exfiltration) - **ID**: mitre-attack-mobile-t1646-exfiltration-over-c2-channel - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1646 (Exfiltration Over C2 Channel) is an ATT&CK for Mobile Exfiltration technique. Adversaries may steal data by exfiltrating it over an existing command and control channel. Stolen dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1646-exfiltration-over-c2-channel.json #### MITRE ATT&CK Mobile T1655.001: Match Legitimate Name or Location (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1655-001-match-legitimate-name-or-location - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1655.001 (Match Legitimate Name or Location) is an ATT&CK for Mobile Defense Evasion sub-technique of T1655 (Masquerading). Adversaries may match or approximate the name or location of l... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1655-001-match-legitimate-name-or-location.json #### MITRE ATT&CK Mobile T1655: Masquerading (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1655-masquerading - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1655 (Masquerading) is an ATT&CK for Mobile Defense Evasion technique. Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1655-masquerading.json #### MITRE ATT&CK Mobile T1658: Exploitation for Client Execution (Mobile Tactic TA0041 - Execution) - **ID**: mitre-attack-mobile-t1658-exploitation-for-client-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1658 (Exploitation for Client Execution) is an ATT&CK for Mobile Execution technique. Adversaries may exploit software vulnerabilities in client applications to execute code. Vulnerabili... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1658-exploitation-for-client-execution.json #### MITRE ATT&CK Mobile T1660: Phishing (Mobile Tactic TA0027 - Initial Access) - **ID**: mitre-attack-mobile-t1660-phishing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1660 (Phishing) is an ATT&CK for Mobile Initial Access technique. Adversaries may send malicious content to users in order to gain access to their mobile devices. All forms of phishing a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1660-phishing.json #### MITRE ATT&CK Mobile T1661: Application Versioning (Mobile Tactic TA0027 - Initial Access / TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1661-application-versioning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1661 (Application Versioning) is an ATT&CK for Mobile Initial Access and Defense Evasion technique. An adversary may push an update to a previously benign application to add malicious co... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1661-application-versioning.json #### MITRE ATT&CK Mobile T1662: Data Destruction (Mobile Tactic TA0034 - Impact) - **ID**: mitre-attack-mobile-t1662-data-destruction - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1662 (Data Destruction) is an ATT&CK for Mobile Impact technique. Adversaries may destroy data and files on specific devices or in large numbers to interrupt availability to systems, ser... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1662-data-destruction.json #### MITRE ATT&CK Mobile T1663: Remote Access Software (Mobile Tactic TA0037 - Command and Control) - **ID**: mitre-attack-mobile-t1663-remote-access-software - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1663 (Remote Access Software) is an ATT&CK for Mobile Command and Control technique. Adversaries may use legitimate remote access software, such as VNC, TeamViewer, AirDroid, AirMirror, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1663-remote-access-software.json #### MITRE ATT&CK Mobile T1664: Exploitation for Initial Access (Mobile Tactic TA0027 - Initial Access) - **ID**: mitre-attack-mobile-t1664-exploitation-for-initial-access - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1664 (Exploitation for Initial Access) is an ATT&CK for Mobile Initial Access technique. Adversaries may exploit software vulnerabilities to gain initial access to a mobile device. This ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1664-exploitation-for-initial-access.json #### MITRE ATT&CK Mobile T1670: Virtualization Solution (Mobile Tactic TA0030 - Defense Evasion) - **ID**: mitre-attack-mobile-t1670-virtualization-solution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1670 (Virtualization Solution) is an Mobile Defense Evasion technique. Adversaries may carry out malicious operations using virtualization solutions to escape from Android sandbox... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1670-virtualization-solution.json #### MITRE ATT&CK Mobile T1676: Linked Devices (Mobile Tactic TA0035 - Collection) - **ID**: mitre-attack-mobile-t1676-linked-devices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK Mobile T1676 (Linked Devices) is an Mobile Collection, Persistence technique. Adversaries may abuse the “linked devices” feature on messaging applications, such as Signal and WhatsApp, to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-mobile-t1676-linked-devices.json #### MITRE ATT&CK T1001.001: Junk Data (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1001-001-junk-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1001.001 (Junk Data) is an Enterprise Command and Control sub-technique of T1001 (Data Obfuscation). Adversaries may add junk data to protocols used for command and control to make detec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1001-001-junk-data.json #### MITRE ATT&CK T1001.002: Steganography (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1001-002-steganography - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1001.002 (Steganography) is an Enterprise Command and Control sub-technique of T1001 (Data Obfuscation). Adversaries may use steganographic techniques to hide command and control traffic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1001-002-steganography.json #### MITRE ATT&CK T1001.003: Protocol or Service Impersonation (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1001-003-protocol-or-service-impersonation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1001.003 (Protocol or Service Impersonation) is an Enterprise Command and Control sub-technique of T1001 (Data Obfuscation). Adversaries may impersonate legitimate protocols or web servi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1001-003-protocol-or-service-impersonation.json #### MITRE ATT&CK T1001: Data Obfuscation (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1001-data-obfuscation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1001 (Data Obfuscation) is an Enterprise Command and Control technique. Adversaries may obfuscate command and control traffic to make it more difficult to detect. Command and control (C2... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1001-data-obfuscation.json #### MITRE ATT&CK T1003.001: LSASS Memory (Sub-Technique of T1003 - Credential Access) - **ID**: mitre-attack-t1003-001-lsass-memory - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1003.001 covers adversary extraction of authentication credentials from the Local Security Authority Subsystem Service (LSASS) process memory on Windows endpoints. Mimikatz, Pypykatz, Pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1003-001-lsass-memory.json #### MITRE ATT&CK T1003.002: Security Account Manager (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1003-002-security-account-manager - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1003.002 (Security Account Manager) is an Enterprise Credential Access sub-technique of T1003 (OS Credential Dumping). Adversaries may attempt to extract credential material from the Sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1003-002-security-account-manager.json #### MITRE ATT&CK T1003.003: NTDS (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1003-003-ntds - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1003.003 (NTDS) is an Enterprise Credential Access sub-technique of T1003 (OS Credential Dumping). Adversaries may attempt to access or create a copy of the Active Directory domain datab... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1003-003-ntds.json #### MITRE ATT&CK T1003.004: LSA Secrets (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1003-004-lsa-secrets - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1003.004 (LSA Secrets) is an Enterprise Credential Access sub-technique of T1003 (OS Credential Dumping). Adversaries with SYSTEM access to a host may attempt to access Local Security Au... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1003-004-lsa-secrets.json #### MITRE ATT&CK T1003.005: Cached Domain Credentials (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1003-005-cached-domain-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1003.005 (Cached Domain Credentials) is an Enterprise Credential Access sub-technique of T1003 (OS Credential Dumping). Adversaries may attempt to access cached domain credentials used t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1003-005-cached-domain-credentials.json #### MITRE ATT&CK T1003.006: DCSync (Sub-Technique of T1003 - Credential Access) - **ID**: mitre-attack-t1003-006-dcsync - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1003.006 covers adversary impersonation of a Domain Controller to retrieve password hashes via Microsoft Directory Replication Service (MS-DRSR) protocol. Tools include Mimikatz lsadump:... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1003-006-dcsync.json #### MITRE ATT&CK T1003.007: Proc Filesystem (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1003-007-proc-filesystem - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1003.007 (Proc Filesystem) is an Enterprise Credential Access sub-technique of T1003 (OS Credential Dumping). Adversaries may gather credentials from the proc filesystem or /proc. The pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1003-007-proc-filesystem.json #### MITRE ATT&CK T1003.008: /etc/passwd and /etc/shadow (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1003-008-etc-passwd-and-etc-shadow - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1003.008 (/etc/passwd and /etc/shadow) is an Enterprise Credential Access sub-technique of T1003 (OS Credential Dumping). Adversaries may attempt to dump the contents of /etc/passwd and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1003-008-etc-passwd-and-etc-shadow.json #### MITRE ATT&CK T1003: OS Credential Dumping (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1003-os-credential-dumping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1003 covers adversary techniques for dumping credentials from operating systems and software. Sub-techniques include LSASS Memory (T1003.001), Security Account Manager (T1003.002), NTDS ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1003-os-credential-dumping.json #### MITRE ATT&CK T1005: Data from Local System (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1005-data-from-local-system - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1005 covers adversary collection of sensitive data from local system storage after gaining endpoint access. Living-off-the-land enumeration via find, grep, dir, type, Get-ChildItem is th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1005-data-from-local-system.json #### MITRE ATT&CK T1006: Direct Volume Access (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1006-direct-volume-access - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1006 (Direct Volume Access) is an Enterprise Defense Evasion technique. Adversaries may directly access a volume to bypass file access controls and file system monitoring. Windows allows... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1006-direct-volume-access.json #### MITRE ATT&CK T1007: System Service Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1007-system-service-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1007 (System Service Discovery) is an Enterprise Discovery technique. Adversaries may try to gather information about registered local system services. Adversaries may obtain information... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1007-system-service-discovery.json #### MITRE ATT&CK T1008: Fallback Channels (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1008-fallback-channels - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1008 (Fallback Channels) is an Enterprise Command and Control technique. Adversaries may use fallback or alternate communication channels if the primary channel is compromised or inacces... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1008-fallback-channels.json #### MITRE ATT&CK T1010: Application Window Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1010-application-window-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1010 (Application Window Discovery) is an Enterprise Discovery technique. Adversaries may attempt to get a listing of open application windows. Window listings could convey information a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1010-application-window-discovery.json #### MITRE ATT&CK T1011.001: Exfiltration Over Bluetooth (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1011-001-exfiltration-over-bluetooth - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1011.001 (Exfiltration Over Bluetooth) is an Enterprise Exfiltration sub-technique of T1011 (Exfiltration Over Other Network Medium). Adversaries may attempt to exfiltrate data over Blue... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1011-001-exfiltration-over-bluetooth.json #### MITRE ATT&CK T1011: Exfiltration Over Other Network Medium (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1011-exfiltration-over-other-network-medium - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1011 (Exfiltration Over Other Network Medium) is an Enterprise Exfiltration technique. Adversaries may attempt to exfiltrate data over a different network medium than the command and con... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1011-exfiltration-over-other-network-medium.json #### MITRE ATT&CK T1012: Query Registry (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1012-query-registry - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1012 (Query Registry) is an Enterprise Discovery technique. Adversaries may interact with the Windows Registry to gather information about the system, configuration, and installed softwa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1012-query-registry.json #### MITRE ATT&CK T1014: Rootkit (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1014-rootkit - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1014 (Rootkit) is an Enterprise Defense Evasion technique. Adversaries may use rootkits to hide the presence of programs, files, network connections, services, drivers, and other system ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1014-rootkit.json #### MITRE ATT&CK T1016.001: Internet Connection Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1016-001-internet-connection-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1016.001 (Internet Connection Discovery) is an Enterprise Discovery sub-technique of T1016 (System Network Configuration Discovery). Adversaries may check for Internet connectivity on co... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1016-001-internet-connection-discovery.json #### MITRE ATT&CK T1016.002: Wi-Fi Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1016-002-wi-fi-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1016.002 (Wi-Fi Discovery) is an Enterprise Discovery sub-technique of T1016 (System Network Configuration Discovery). Adversaries may search for information about Wi-Fi networks, such a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1016-002-wi-fi-discovery.json #### MITRE ATT&CK T1016: System Network Configuration Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1016-system-network-configuration-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1016 (System Network Configuration Discovery) is an Enterprise Discovery technique. Adversaries may look for details about the network configuration and settings, such as IP and/or MAC a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1016-system-network-configuration-discovery.json #### MITRE ATT&CK T1018: Remote System Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1018-remote-system-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1018 describes adversary enumeration of remote systems on the network to enable lateral movement planning. Tools include built-in net commands, nltest, BloodHound, SharpHound, and PowerV... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1018-remote-system-discovery.json #### MITRE ATT&CK T1020.001: Traffic Duplication (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1020-001-traffic-duplication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1020.001 (Traffic Duplication) is an Enterprise Exfiltration sub-technique of T1020 (Automated Exfiltration). Adversaries may leverage traffic mirroring in order to automate data exfiltr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1020-001-traffic-duplication.json #### MITRE ATT&CK T1020: Automated Exfiltration (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1020-automated-exfiltration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1020 (Automated Exfiltration) is an Enterprise Exfiltration technique. Adversaries may exfiltrate data, such as sensitive documents, through the use of automated processing after being g... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1020-automated-exfiltration.json #### MITRE ATT&CK T1021.001: Remote Desktop Protocol (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1021-001-remote-desktop-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1021.001 (Remote Desktop Protocol) is an Enterprise Lateral Movement sub-technique of T1021 (Remote Services). Adversaries may use Valid Accounts to log into a computer using the Remote ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1021-001-remote-desktop-protocol.json #### MITRE ATT&CK T1021.002: SMB/Windows Admin Shares (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1021-002-smb-windows-admin-shares - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1021.002 (SMB/Windows Admin Shares) is an Enterprise Lateral Movement sub-technique of T1021 (Remote Services). Adversaries may use Valid Accounts to interact with a remote network share... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1021-002-smb-windows-admin-shares.json #### MITRE ATT&CK T1021.003: Distributed Component Object Model (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1021-003-distributed-component-object-model - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1021.003 (Distributed Component Object Model) is an Enterprise Lateral Movement sub-technique of T1021 (Remote Services). Adversaries may use Valid Accounts to interact with remote machi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1021-003-distributed-component-object-model.json #### MITRE ATT&CK T1021.004: SSH (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1021-004-ssh - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1021.004 (SSH) is an Enterprise Lateral Movement sub-technique of T1021 (Remote Services). Adversaries may use Valid Accounts to log into remote machines using Secure Shell (SSH). The ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1021-004-ssh.json #### MITRE ATT&CK T1021.005: VNC (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1021-005-vnc - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1021.005 (VNC) is an Enterprise Lateral Movement sub-technique of T1021 (Remote Services). Adversaries may use Valid Accounts to remotely control machines using Virtual Network Computing... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1021-005-vnc.json #### MITRE ATT&CK T1021.006: Windows Remote Management (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1021-006-windows-remote-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1021.006 (Windows Remote Management) is an Enterprise Lateral Movement sub-technique of T1021 (Remote Services). Adversaries may use Valid Accounts to interact with remote systems using ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1021-006-windows-remote-management.json #### MITRE ATT&CK T1021.007: Cloud Services (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1021-007-cloud-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1021.007 (Cloud Services) is an Enterprise Lateral Movement sub-technique of T1021 (Remote Services). Adversaries may log into accessible cloud services within a compromised environment ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1021-007-cloud-services.json #### MITRE ATT&CK T1021.008: Direct Cloud VM Connections (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1021-008-direct-cloud-vm-connections - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1021.008 (Direct Cloud VM Connections) is an Enterprise Lateral Movement sub-technique of T1021 (Remote Services). Adversaries may leverage Valid Accounts to log directly into accessible... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1021-008-direct-cloud-vm-connections.json #### MITRE ATT&CK T1021: Remote Services (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1021-remote-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1021 covers adversary use of valid accounts to log into remote services for lateral movement. Sub-techniques cover Remote Desktop Protocol (T1021.001), SMB/Windows Admin Shares (T1021.00... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1021-remote-services.json #### MITRE ATT&CK T1025: Data from Removable Media (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1025-data-from-removable-media - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1025 (Data from Removable Media) is an Enterprise Collection technique. Adversaries may search connected removable media on computers they have compromised to find files of interest. Sen... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1025-data-from-removable-media.json #### MITRE ATT&CK T1027.001: Binary Padding (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-001-binary-padding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.001 (Binary Padding) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may use binary padding to add junk data and change the on... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-001-binary-padding.json #### MITRE ATT&CK T1027.002: Software Packing (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-002-software-packing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.002 (Software Packing) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may perform software packing or virtual machine softwar... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-002-software-packing.json #### MITRE ATT&CK T1027.003: Steganography (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-003-steganography - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.003 (Steganography) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may use steganography techniques in order to prevent the d... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-003-steganography.json #### MITRE ATT&CK T1027.004: Compile After Delivery (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-004-compile-after-delivery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.004 (Compile After Delivery) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may attempt to make payloads difficult to discove... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-004-compile-after-delivery.json #### MITRE ATT&CK T1027.005: Indicator Removal from Tools (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-005-indicator-removal-from-tools - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.005 (Indicator Removal from Tools) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may remove indicators from tools if they be... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-005-indicator-removal-from-tools.json #### MITRE ATT&CK T1027.006: HTML Smuggling (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-006-html-smuggling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.006 (HTML Smuggling) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may smuggle data and files past content filters by hiding... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-006-html-smuggling.json #### MITRE ATT&CK T1027.007: Dynamic API Resolution (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-007-dynamic-api-resolution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.007 (Dynamic API Resolution) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may obfuscate then dynamically resolve API functi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-007-dynamic-api-resolution.json #### MITRE ATT&CK T1027.008: Stripped Payloads (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-008-stripped-payloads - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.008 (Stripped Payloads) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may attempt to make a payload difficult to analyze by ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-008-stripped-payloads.json #### MITRE ATT&CK T1027.009: Embedded Payloads (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-009-embedded-payloads - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.009 (Embedded Payloads) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may embed payloads within other files to conceal malic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-009-embedded-payloads.json #### MITRE ATT&CK T1027.010: Command Obfuscation (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-010-command-obfuscation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.010 (Command Obfuscation) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may obfuscate content during command execution to im... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-010-command-obfuscation.json #### MITRE ATT&CK T1027.011: Fileless Storage (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-011-fileless-storage - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.011 (Fileless Storage) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may store data in "fileless" formats to conceal malicio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-011-fileless-storage.json #### MITRE ATT&CK T1027.012: LNK Icon Smuggling (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-012-lnk-icon-smuggling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.012 (LNK Icon Smuggling) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may smuggle commands to download malicious payloads p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-012-lnk-icon-smuggling.json #### MITRE ATT&CK T1027.013: Encrypted/Encoded File (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-013-encrypted-encoded-file - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.013 (Encrypted/Encoded File) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may encrypt or encode files to obfuscate strings,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-013-encrypted-encoded-file.json #### MITRE ATT&CK T1027.014: Polymorphic Code (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-014-polymorphic-code - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.014 (Polymorphic Code) is an Enterprise Defense Evasion sub-technique of T1027 (Obfuscated Files or Information). Adversaries may utilize polymorphic code (also known as metamorphic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-014-polymorphic-code.json #### MITRE ATT&CK T1027.015: Compression (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1027-015-compression - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.015 (Compression) is an Enterprise Stealth technique. Adversaries may use compression to obfuscate their payloads or files. Compressed file formats such as ZIP, gzip, 7z, and RAR ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-015-compression.json #### MITRE ATT&CK T1027.016: Junk Code Insertion (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1027-016-junk-code-insertion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.016 (Junk Code Insertion) is an Enterprise Stealth technique. Adversaries may use junk code / dead code to obfuscate a malware’s functionality. Junk code is code that either does no... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-016-junk-code-insertion.json #### MITRE ATT&CK T1027.017: SVG Smuggling (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1027-017-svg-smuggling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.017 (SVG Smuggling) is an Enterprise Stealth technique. Adversaries may smuggle data and files past content filters by hiding malicious payloads inside of seemingly benign SVG files... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-017-svg-smuggling.json #### MITRE ATT&CK T1027.018: Invisible Unicode (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1027-018-invisible-unicode - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027.018 (Invisible Unicode) is an Enterprise Stealth technique. Adversaries may abuse invisible or non-printing Unicode characters to conceal malicious content within files, scripts, or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-018-invisible-unicode.json #### MITRE ATT&CK T1027: Obfuscated Files or Information (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1027-obfuscated-files-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1027 covers adversary use of obfuscation, encoding, encryption, and packing to evade detection. Sub-techniques include Binary Padding (T1027.001), Software Packing (T1027.002), Steganogr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1027-obfuscated-files-information.json #### MITRE ATT&CK T1029: Scheduled Transfer (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1029-scheduled-transfer - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1029 (Scheduled Transfer) is an Enterprise Exfiltration technique. Adversaries may schedule data exfiltration to be performed only at certain times of day or at certain intervals. This c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1029-scheduled-transfer.json #### MITRE ATT&CK T1030: Data Transfer Size Limits (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1030-data-transfer-size-limits - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1030 (Data Transfer Size Limits) is an Enterprise Exfiltration technique. An adversary may exfiltrate data in fixed size chunks instead of whole files or limit packet sizes below certain... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1030-data-transfer-size-limits.json #### MITRE ATT&CK T1033: System Owner/User Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1033-system-owner-user-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1033 (System Owner/User Discovery) is an Enterprise Discovery technique. Adversaries may attempt to identify the primary user, currently logged in user, set of users that commonly uses a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1033-system-owner-user-discovery.json #### MITRE ATT&CK T1036.001: Invalid Code Signature (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1036-001-invalid-code-signature - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.001 (Invalid Code Signature) is an Enterprise Defense Evasion sub-technique of T1036 (Masquerading). Adversaries may attempt to mimic features of valid code signatures to increase t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-001-invalid-code-signature.json #### MITRE ATT&CK T1036.002: Right-to-Left Override (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1036-002-right-to-left-override - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.002 (Right-to-Left Override) is an Enterprise Defense Evasion sub-technique of T1036 (Masquerading). Adversaries may abuse the right-to-left override (RTLO or RLO) character (U+202E... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-002-right-to-left-override.json #### MITRE ATT&CK T1036.003: Rename System Utilities (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1036-003-rename-system-utilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.003 (Rename System Utilities) is an Enterprise Defense Evasion sub-technique of T1036 (Masquerading). Adversaries may rename legitimate system utilities to try to evade security mec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-003-rename-system-utilities.json #### MITRE ATT&CK T1036.004: Masquerade Task or Service (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1036-004-masquerade-task-or-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.004 (Masquerade Task or Service) is an Enterprise Defense Evasion sub-technique of T1036 (Masquerading). Adversaries may attempt to manipulate the name of a task or service to make ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-004-masquerade-task-or-service.json #### MITRE ATT&CK T1036.005: Match Legitimate Name or Location (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1036-005-match-legitimate-name-or-location - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.005 (Match Legitimate Name or Location) is an Enterprise Defense Evasion sub-technique of T1036 (Masquerading). Adversaries may match or approximate the name or location of legitima... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-005-match-legitimate-name-or-location.json #### MITRE ATT&CK T1036.006: Space after Filename (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1036-006-space-after-filename - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.006 (Space after Filename) is an Enterprise Defense Evasion sub-technique of T1036 (Masquerading). Adversaries can hide a program's true filetype by changing the extension of a file... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-006-space-after-filename.json #### MITRE ATT&CK T1036.007: Double File Extension (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1036-007-double-file-extension - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.007 (Double File Extension) is an Enterprise Defense Evasion sub-technique of T1036 (Masquerading). Adversaries may abuse a double extension in the filename as a means of masqueradi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-007-double-file-extension.json #### MITRE ATT&CK T1036.008: Masquerade File Type (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1036-008-masquerade-file-type - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.008 (Masquerade File Type) is an Enterprise Defense Evasion sub-technique of T1036 (Masquerading). Adversaries may masquerade malicious payloads as legitimate files through changes ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-008-masquerade-file-type.json #### MITRE ATT&CK T1036.009: Break Process Trees (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1036-009-break-process-trees - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.009 (Break Process Trees) is an Enterprise Defense Evasion sub-technique of T1036 (Masquerading). An adversary may attempt to evade process tree-based analysis by modifying executed... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-009-break-process-trees.json #### MITRE ATT&CK T1036.010: Masquerade Account Name (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1036-010-masquerade-account-name - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.010 (Masquerade Account Name) is an Enterprise Defense Evasion sub-technique of T1036 (Masquerading). Adversaries may match or approximate the names of legitimate accounts to make n... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-010-masquerade-account-name.json #### MITRE ATT&CK T1036.011: Overwrite Process Arguments (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1036-011-overwrite-process-arguments - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.011 (Overwrite Process Arguments) is an Enterprise Stealth technique. Adversaries may modify a process's in-memory arguments to change its name in order to appear as a legitimate or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-011-overwrite-process-arguments.json #### MITRE ATT&CK T1036.012: Browser Fingerprint (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1036-012-browser-fingerprint - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036.012 (Browser Fingerprint) is an Enterprise Stealth technique. Adversaries may attempt to blend in with legitimate traffic by spoofing browser and system attributes like operating sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-012-browser-fingerprint.json #### MITRE ATT&CK T1036: Masquerading (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1036-masquerading - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1036 (Masquerading) is an Enterprise Defense Evasion technique. Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1036-masquerading.json #### MITRE ATT&CK T1037.001: Logon Script (Windows) (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1037-001-logon-script-windows - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1037.001 (Logon Script (Windows)) is an Enterprise Persistence and Privilege Escalation sub-technique of T1037 (Boot or Logon Initialization Scripts). Adversaries may use Windows logon s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1037-001-logon-script-windows.json #### MITRE ATT&CK T1037.002: Login Hook (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1037-002-login-hook - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1037.002 (Login Hook) is an Enterprise Persistence and Privilege Escalation sub-technique of T1037 (Boot or Logon Initialization Scripts). Adversaries may use a Login Hook to establish p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1037-002-login-hook.json #### MITRE ATT&CK T1037.003: Network Logon Script (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1037-003-network-logon-script - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1037.003 (Network Logon Script) is an Enterprise Persistence and Privilege Escalation sub-technique of T1037 (Boot or Logon Initialization Scripts). Adversaries may use network logon scr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1037-003-network-logon-script.json #### MITRE ATT&CK T1037.004: RC Scripts (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1037-004-rc-scripts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1037.004 (RC Scripts) is an Enterprise Persistence and Privilege Escalation sub-technique of T1037 (Boot or Logon Initialization Scripts). Adversaries may establish persistence by modify... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1037-004-rc-scripts.json #### MITRE ATT&CK T1037.005: Startup Items (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1037-005-startup-items - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1037.005 (Startup Items) is an Enterprise Persistence and Privilege Escalation sub-technique of T1037 (Boot or Logon Initialization Scripts). Adversaries may use startup items automatica... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1037-005-startup-items.json #### MITRE ATT&CK T1037: Boot or Logon Initialization Scripts (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1037-boot-or-logon-initialization-scripts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1037 (Boot or Logon Initialization Scripts) is an Enterprise Persistence and Privilege Escalation technique. Adversaries may use scripts automatically executed at boot or logon initializ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1037-boot-or-logon-initialization-scripts.json #### MITRE ATT&CK T1039: Data from Network Shared Drive (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1039-data-from-network-shared-drive - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1039 (Data from Network Shared Drive) is an Enterprise Collection technique. Adversaries may search network shares on computers they have compromised to find files of interest. Sensitive... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1039-data-from-network-shared-drive.json #### MITRE ATT&CK T1040: Network Sniffing (Enterprise Tactic TA0006 - Credential Access / TA0007 - Discovery) - **ID**: mitre-attack-t1040-network-sniffing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1040 (Network Sniffing) is an Enterprise Credential Access and Discovery technique. Adversaries may passively sniff network traffic to capture information about an environment, including... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1040-network-sniffing.json #### MITRE ATT&CK T1041: Exfiltration Over C2 Channel (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1041-exfiltration-over-c2-channel - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1041 covers adversary exfiltration of stolen data over the same command-and-control channel used for adversary communication, blending data theft with normal C2 traffic. This is the domi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1041-exfiltration-over-c2-channel.json #### MITRE ATT&CK T1046: Network Service Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1046-network-service-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1046 (Network Service Discovery) is an Enterprise Discovery technique. Adversaries may attempt to get a listing of services running on remote hosts and local network infrastructure devic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1046-network-service-discovery.json #### MITRE ATT&CK T1047: Windows Management Instrumentation (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1047-windows-management-instrumentation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1047 (Windows Management Instrumentation) is an Enterprise Execution technique. Adversaries may abuse Windows Management Instrumentation (WMI) to execute malicious commands and payloads.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1047-windows-management-instrumentation.json #### MITRE ATT&CK T1048.001: Exfiltration Over Symmetric Encrypted Non-C2 Protocol (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1048-001-exfiltration-over-symmetric-encrypted-non-c2-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1048.001 (Exfiltration Over Symmetric Encrypted Non-C2 Protocol) is an Enterprise Exfiltration sub-technique of T1048 (Exfiltration Over Alternative Protocol). Adversaries may steal data... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1048-001-exfiltration-over-symmetric-encrypted-non-c2-protocol.json #### MITRE ATT&CK T1048.002: Exfiltration Over Asymmetric Encrypted Non-C2 Protocol (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1048-002-exfiltration-over-asymmetric-encrypted-non-c2-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1048.002 (Exfiltration Over Asymmetric Encrypted Non-C2 Protocol) is an Enterprise Exfiltration sub-technique of T1048 (Exfiltration Over Alternative Protocol). Adversaries may steal dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1048-002-exfiltration-over-asymmetric-encrypted-non-c2-protocol.json #### MITRE ATT&CK T1048.003: Exfiltration Over Unencrypted Non-C2 Protocol (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1048-003-exfiltration-over-unencrypted-non-c2-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1048.003 (Exfiltration Over Unencrypted Non-C2 Protocol) is an Enterprise Exfiltration sub-technique of T1048 (Exfiltration Over Alternative Protocol). Adversaries may steal data by exfi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1048-003-exfiltration-over-unencrypted-non-c2-protocol.json #### MITRE ATT&CK T1048: Exfiltration Over Alternative Protocol (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1048-exfiltration-over-alternative-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1048 (Exfiltration Over Alternative Protocol) is an Enterprise Exfiltration technique. Adversaries may steal data by exfiltrating it over a different protocol than that of the existing c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1048-exfiltration-over-alternative-protocol.json #### MITRE ATT&CK T1049: System Network Connections Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1049-system-network-connections-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1049 (System Network Connections Discovery) is an Enterprise Discovery technique. Adversaries may attempt to get a listing of network connections to or from the compromised system they a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1049-system-network-connections-discovery.json #### MITRE ATT&CK T1052.001: Exfiltration over USB (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1052-001-exfiltration-over-usb - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1052.001 (Exfiltration over USB) is an Enterprise Exfiltration sub-technique of T1052 (Exfiltration Over Physical Medium). Adversaries may attempt to exfiltrate data over a USB connected... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1052-001-exfiltration-over-usb.json #### MITRE ATT&CK T1052: Exfiltration Over Physical Medium (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1052-exfiltration-over-physical-medium - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1052 (Exfiltration Over Physical Medium) is an Enterprise Exfiltration technique. Adversaries may attempt to exfiltrate data via a physical medium, such as a removable drive. In certain ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1052-exfiltration-over-physical-medium.json #### MITRE ATT&CK T1053.002: At (Enterprise Tactic TA0002 - Execution / TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1053-002-at - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1053.002 (At) is an Enterprise Execution and Persistence and Privilege Escalation sub-technique of T1053 (Scheduled Task/Job). Adversaries may abuse the at utility to perform task schedu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1053-002-at.json #### MITRE ATT&CK T1053.003: Cron (Enterprise Tactic TA0002 - Execution / TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1053-003-cron - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1053.003 (Cron) is an Enterprise Execution and Persistence and Privilege Escalation sub-technique of T1053 (Scheduled Task/Job). Adversaries may abuse the cron utility to perform task sc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1053-003-cron.json #### MITRE ATT&CK T1053.005: Scheduled Task (Enterprise Tactic TA0002 - Execution / TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1053-005-scheduled-task - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1053.005 (Scheduled Task) is an Enterprise Execution and Persistence and Privilege Escalation sub-technique of T1053 (Scheduled Task/Job). Adversaries may abuse the Windows Task Schedule... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1053-005-scheduled-task.json #### MITRE ATT&CK T1053.006: Systemd Timers (Enterprise Tactic TA0002 - Execution / TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1053-006-systemd-timers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1053.006 (Systemd Timers) is an Enterprise Execution and Persistence and Privilege Escalation sub-technique of T1053 (Scheduled Task/Job). Adversaries may abuse systemd timers to perform... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1053-006-systemd-timers.json #### MITRE ATT&CK T1053.007: Container Orchestration Job (Enterprise Tactic TA0002 - Execution / TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1053-007-container-orchestration-job - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1053.007 (Container Orchestration Job) is an Enterprise Execution and Persistence and Privilege Escalation sub-technique of T1053 (Scheduled Task/Job). Adversaries may abuse task schedul... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1053-007-container-orchestration-job.json #### MITRE ATT&CK T1053: Scheduled Task/Job (Enterprise Tactic TA0002 - Execution / TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1053-scheduled-task-job - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1053 (Scheduled Task/Job) is an Enterprise Execution and Persistence and Privilege Escalation technique. Adversaries may abuse task scheduling functionality to facilitate initial or recu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1053-scheduled-task-job.json #### MITRE ATT&CK T1055.001: Dynamic-link Library Injection (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-001-dynamic-link-library-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.001 (Dynamic-link Library Injection) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may inject dynamic-link librar... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-001-dynamic-link-library-injection.json #### MITRE ATT&CK T1055.002: Portable Executable Injection (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-002-portable-executable-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.002 (Portable Executable Injection) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may inject portable executables... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-002-portable-executable-injection.json #### MITRE ATT&CK T1055.003: Thread Execution Hijacking (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-003-thread-execution-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.003 (Thread Execution Hijacking) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may inject malicious code into hij... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-003-thread-execution-hijacking.json #### MITRE ATT&CK T1055.004: Asynchronous Procedure Call (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-004-asynchronous-procedure-call - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.004 (Asynchronous Procedure Call) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may inject malicious code into pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-004-asynchronous-procedure-call.json #### MITRE ATT&CK T1055.005: Thread Local Storage (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-005-thread-local-storage - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.005 (Thread Local Storage) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may inject malicious code into processes... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-005-thread-local-storage.json #### MITRE ATT&CK T1055.008: Ptrace System Calls (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-008-ptrace-system-calls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.008 (Ptrace System Calls) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may inject malicious code into processes ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-008-ptrace-system-calls.json #### MITRE ATT&CK T1055.009: Proc Memory (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-009-proc-memory - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.009 (Proc Memory) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may inject malicious code into processes via the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-009-proc-memory.json #### MITRE ATT&CK T1055.011: Extra Window Memory Injection (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-011-extra-window-memory-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.011 (Extra Window Memory Injection) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may inject malicious code into ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-011-extra-window-memory-injection.json #### MITRE ATT&CK T1055.012: Process Hollowing (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-012-process-hollowing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.012 (Process Hollowing) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may inject malicious code into suspended an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-012-process-hollowing.json #### MITRE ATT&CK T1055.013: Process Doppelgänging (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-013-process-doppelg-nging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.013 (Process Doppelgänging) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may inject malicious code into process ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-013-process-doppelg-nging.json #### MITRE ATT&CK T1055.014: VDSO Hijacking (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-014-vdso-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.014 (VDSO Hijacking) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may inject malicious code into processes via V... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-014-vdso-hijacking.json #### MITRE ATT&CK T1055.015: ListPlanting (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-015-listplanting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055.015 (ListPlanting) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1055 (Process Injection). Adversaries may abuse list-view controls to inject malicious... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-015-listplanting.json #### MITRE ATT&CK T1055: Process Injection (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1055-process-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1055 (Process Injection) is an Enterprise Defense Evasion and Privilege Escalation technique. Adversaries may inject code into processes in order to evade process-based defenses as well ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1055-process-injection.json #### MITRE ATT&CK T1056.001: Keylogging (Enterprise Tactic TA0009 - Collection / TA0006 - Credential Access) - **ID**: mitre-attack-t1056-001-keylogging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1056.001 (Keylogging) is an Enterprise Collection and Credential Access sub-technique of T1056 (Input Capture). Adversaries may log user keystrokes to intercept credentials as the user t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1056-001-keylogging.json #### MITRE ATT&CK T1056.002: GUI Input Capture (Enterprise Tactic TA0009 - Collection / TA0006 - Credential Access) - **ID**: mitre-attack-t1056-002-gui-input-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1056.002 (GUI Input Capture) is an Enterprise Collection and Credential Access sub-technique of T1056 (Input Capture). Adversaries may mimic common operating system GUI components to pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1056-002-gui-input-capture.json #### MITRE ATT&CK T1056.003: Web Portal Capture (Enterprise Tactic TA0009 - Collection / TA0006 - Credential Access) - **ID**: mitre-attack-t1056-003-web-portal-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1056.003 (Web Portal Capture) is an Enterprise Collection and Credential Access sub-technique of T1056 (Input Capture). Adversaries may install code on externally facing portals, such as... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1056-003-web-portal-capture.json #### MITRE ATT&CK T1056.004: Credential API Hooking (Enterprise Tactic TA0009 - Collection / TA0006 - Credential Access) - **ID**: mitre-attack-t1056-004-credential-api-hooking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1056.004 (Credential API Hooking) is an Enterprise Collection and Credential Access sub-technique of T1056 (Input Capture). Adversaries may hook into Windows application programming inte... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1056-004-credential-api-hooking.json #### MITRE ATT&CK T1056: Input Capture (Enterprise Tactic TA0009 - Collection / TA0006 - Credential Access) - **ID**: mitre-attack-t1056-input-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1056 (Input Capture) is an Enterprise Collection and Credential Access technique. Adversaries may use methods of capturing user input to obtain credentials or collect information. During... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1056-input-capture.json #### MITRE ATT&CK T1057: Process Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1057-process-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1057 describes adversary enumeration of running processes to identify security tools, valuable applications, and post-exploitation opportunities. Common commands include tasklist, Get-Pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1057-process-discovery.json #### MITRE ATT&CK T1059.001: PowerShell (Sub-Technique of T1059 - Execution) - **ID**: mitre-attack-t1059-001-powershell - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.001 covers adversary abuse of PowerShell for execution, lateral movement, and discovery. PowerShell is the dominant living-off-the-land interpreter on Windows: every modern ransomwa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-001-powershell.json #### MITRE ATT&CK T1059.002: AppleScript (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-002-applescript - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.002 (AppleScript) is an Enterprise Execution sub-technique of T1059 (Command and Scripting Interpreter). Adversaries may abuse AppleScript for execution. AppleScript is a macOS scri... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-002-applescript.json #### MITRE ATT&CK T1059.003: Windows Command Shell (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-003-windows-command-shell - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.003 (Windows Command Shell) is an Enterprise Execution sub-technique of T1059 (Command and Scripting Interpreter). Adversaries may abuse the Windows command shell for execution. The... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-003-windows-command-shell.json #### MITRE ATT&CK T1059.004: Unix Shell (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-004-unix-shell - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.004 (Unix Shell) is an Enterprise Execution sub-technique of T1059 (Command and Scripting Interpreter). Adversaries may abuse Unix shell commands and scripts for execution. Unix she... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-004-unix-shell.json #### MITRE ATT&CK T1059.005: Visual Basic (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-005-visual-basic - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.005 (Visual Basic) is an Enterprise Execution sub-technique of T1059 (Command and Scripting Interpreter). Adversaries may abuse Visual Basic (VB) for execution. VB is a programming ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-005-visual-basic.json #### MITRE ATT&CK T1059.006: Python (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-006-python - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.006 (Python) is an Enterprise Execution sub-technique of T1059 (Command and Scripting Interpreter). Adversaries may abuse Python commands and scripts for execution. Python is a very... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-006-python.json #### MITRE ATT&CK T1059.007: JavaScript (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-007-javascript - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.007 (JavaScript) is an Enterprise Execution sub-technique of T1059 (Command and Scripting Interpreter). Adversaries may abuse various implementations of JavaScript for execution. Ja... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-007-javascript.json #### MITRE ATT&CK T1059.008: Network Device CLI (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-008-network-device-cli - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.008 (Network Device CLI) is an Enterprise Execution sub-technique of T1059 (Command and Scripting Interpreter). Adversaries may abuse scripting or built-in command line interpreters... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-008-network-device-cli.json #### MITRE ATT&CK T1059.009: Cloud API (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-009-cloud-api - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.009 (Cloud API) is an Enterprise Execution sub-technique of T1059 (Command and Scripting Interpreter). Adversaries may abuse cloud APIs to execute malicious commands. APIs available... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-009-cloud-api.json #### MITRE ATT&CK T1059.010: AutoHotKey & AutoIT (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-010-autohotkey-autoit - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.010 (AutoHotKey & AutoIT) is an Enterprise Execution sub-technique of T1059 (Command and Scripting Interpreter). Adversaries may execute commands and perform malicious tasks using A... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-010-autohotkey-autoit.json #### MITRE ATT&CK T1059.011: Lua (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-011-lua - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.011 (Lua) is an Enterprise Execution sub-technique of T1059 (Command and Scripting Interpreter). Adversaries may abuse Lua commands and scripts for execution. Lua is a cross-platfor... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-011-lua.json #### MITRE ATT&CK T1059.012: Hypervisor CLI (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-012-hypervisor-cli - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.012 (Hypervisor CLI) is an Enterprise Execution technique. Adversaries may abuse hypervisor command line interpreters (CLIs) to execute malicious commands. Hypervisor CLIs typically... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-012-hypervisor-cli.json #### MITRE ATT&CK T1059.013: Container CLI/API (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-013-container-cli-api - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059.013 (Container CLI/API) is an Enterprise Execution technique. Adversaries may abuse built-in CLI tools or API calls to execute malicious commands in containerized environments. The ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-013-container-cli-api.json #### MITRE ATT&CK T1059: Command and Scripting Interpreter (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1059-command-and-scripting-interpreter - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1059 covers adversary abuse of command and scripting interpreters (PowerShell, Bash, Python, JavaScript, Visual Basic, Windows Command Shell, Network Device CLI) to execute commands, scr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1059-command-and-scripting-interpreter.json #### MITRE ATT&CK T1068: Exploitation for Privilege Escalation (Enterprise Tactic TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1068-exploitation-privilege-escalation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1068 covers adversary exploitation of software vulnerabilities to elevate privileges from a lower-privilege context to higher (user to admin, admin to system, container escape to host). ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1068-exploitation-privilege-escalation.json #### MITRE ATT&CK T1069.001: Local Groups (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1069-001-local-groups - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1069.001 (Local Groups) is an Enterprise Discovery sub-technique of T1069 (Permission Groups Discovery). Adversaries may attempt to find local system groups and permission settings. The ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1069-001-local-groups.json #### MITRE ATT&CK T1069.002: Domain Groups (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1069-002-domain-groups - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1069.002 (Domain Groups) is an Enterprise Discovery sub-technique of T1069 (Permission Groups Discovery). Adversaries may attempt to find domain-level groups and permission settings. The... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1069-002-domain-groups.json #### MITRE ATT&CK T1069.003: Cloud Groups (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1069-003-cloud-groups - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1069.003 (Cloud Groups) is an Enterprise Discovery sub-technique of T1069 (Permission Groups Discovery). Adversaries may attempt to find cloud groups and permission settings. The knowled... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1069-003-cloud-groups.json #### MITRE ATT&CK T1069: Permission Groups Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1069-permission-groups-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1069 (Permission Groups Discovery) is an Enterprise Discovery technique. Adversaries may attempt to discover group and permission settings. This information can help adversaries determin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1069-permission-groups-discovery.json #### MITRE ATT&CK T1070.001: Clear Windows Event Logs (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1070-001-clear-windows-event-logs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1070.001 (Clear Windows Event Logs) is an Enterprise Defense Evasion sub-technique of T1070 (Indicator Removal). Adversaries may clear Windows Event Logs to hide the activity of an intru... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1070-001-clear-windows-event-logs.json #### MITRE ATT&CK T1070.002: Clear Linux or Mac System Logs (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1070-002-clear-linux-or-mac-system-logs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1070.002 (Clear Linux or Mac System Logs) is an Enterprise Defense Evasion sub-technique of T1070 (Indicator Removal). Adversaries may clear system logs to hide evidence of an intrusion.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1070-002-clear-linux-or-mac-system-logs.json #### MITRE ATT&CK T1070.003: Clear Command History (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1070-003-clear-command-history - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1070.003 (Clear Command History) is an Enterprise Defense Evasion sub-technique of T1070 (Indicator Removal). In addition to clearing system logs, an adversary may clear the command hist... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1070-003-clear-command-history.json #### MITRE ATT&CK T1070.004: File Deletion (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1070-004-file-deletion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1070.004 (File Deletion) is an Enterprise Defense Evasion sub-technique of T1070 (Indicator Removal). Adversaries may delete files left behind by the actions of their intrusion activity.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1070-004-file-deletion.json #### MITRE ATT&CK T1070.005: Network Share Connection Removal (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1070-005-network-share-connection-removal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1070.005 (Network Share Connection Removal) is an Enterprise Defense Evasion sub-technique of T1070 (Indicator Removal). Adversaries may remove share connections that are no longer usefu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1070-005-network-share-connection-removal.json #### MITRE ATT&CK T1070.006: Timestomp (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1070-006-timestomp - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1070.006 (Timestomp) is an Enterprise Defense Evasion sub-technique of T1070 (Indicator Removal). Adversaries may modify file time attributes to hide new files or changes to existing fil... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1070-006-timestomp.json #### MITRE ATT&CK T1070.007: Clear Network Connection History and Configurations (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1070-007-clear-network-connection-history-and-configurations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1070.007 (Clear Network Connection History and Configurations) is an Enterprise Defense Evasion sub-technique of T1070 (Indicator Removal). Adversaries may clear or remove evidence of ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1070-007-clear-network-connection-history-and-configurations.json #### MITRE ATT&CK T1070.008: Clear Mailbox Data (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1070-008-clear-mailbox-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1070.008 (Clear Mailbox Data) is an Enterprise Defense Evasion sub-technique of T1070 (Indicator Removal). Adversaries may modify mail and mail application data to remove evidence of the... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1070-008-clear-mailbox-data.json #### MITRE ATT&CK T1070.009: Clear Persistence (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1070-009-clear-persistence - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1070.009 (Clear Persistence) is an Enterprise Defense Evasion sub-technique of T1070 (Indicator Removal). Adversaries may clear artifacts associated with previously established persisten... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1070-009-clear-persistence.json #### MITRE ATT&CK T1070.010: Relocate Malware (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1070-010-relocate-malware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1070.010 (Relocate Malware) is an Enterprise Defense Evasion sub-technique of T1070 (Indicator Removal). Once a payload is delivered, adversaries may reproduce copies of the same malware... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1070-010-relocate-malware.json #### MITRE ATT&CK T1070: Indicator Removal (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1070-indicator-removal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1070 covers adversary deletion or modification of artifacts generated by intrusion activity to evade detection and impede investigation. Sub-techniques include Clear Windows Event Logs (... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1070-indicator-removal.json #### MITRE ATT&CK T1071.001: Web Protocols (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1071-001-web-protocols - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1071.001 (Web Protocols) is an Enterprise Command and Control sub-technique of T1071 (Application Layer Protocol). Adversaries may communicate using application layer protocols associate... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1071-001-web-protocols.json #### MITRE ATT&CK T1071.002: File Transfer Protocols (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1071-002-file-transfer-protocols - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1071.002 (File Transfer Protocols) is an Enterprise Command and Control sub-technique of T1071 (Application Layer Protocol). Adversaries may communicate using application layer protocols... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1071-002-file-transfer-protocols.json #### MITRE ATT&CK T1071.003: Mail Protocols (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1071-003-mail-protocols - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1071.003 (Mail Protocols) is an Enterprise Command and Control sub-technique of T1071 (Application Layer Protocol). Adversaries may communicate using application layer protocols associat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1071-003-mail-protocols.json #### MITRE ATT&CK T1071.004: DNS (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1071-004-dns - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1071.004 (DNS) is an Enterprise Command and Control sub-technique of T1071 (Application Layer Protocol). Adversaries may communicate using the Domain Name System (DNS) application layer ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1071-004-dns.json #### MITRE ATT&CK T1071.005: Publish/Subscribe Protocols (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1071-005-publish-subscribe-protocols - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1071.005 (Publish/Subscribe Protocols) is an Enterprise Command and Control sub-technique of T1071 (Application Layer Protocol). Adversaries may communicate using publish/subscribe (pub/... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1071-005-publish-subscribe-protocols.json #### MITRE ATT&CK T1071: Application Layer Protocol (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1071-application-layer-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1071 covers adversary use of standard application-layer protocols (HTTP/HTTPS, DNS, mail, file transfer) for command-and-control communication, blending malicious traffic with legitimate... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1071-application-layer-protocol.json #### MITRE ATT&CK T1072: Software Deployment Tools (Enterprise Tactic TA0002 - Execution / TA0008 - Lateral Movement) - **ID**: mitre-attack-t1072-software-deployment-tools - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1072 (Software Deployment Tools) is an Enterprise Execution and Lateral Movement technique. Adversaries may gain access to and use centralized software suites installed within an enterpr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1072-software-deployment-tools.json #### MITRE ATT&CK T1074.001: Local Data Staging (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1074-001-local-data-staging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1074.001 (Local Data Staging) is an Enterprise Collection sub-technique of T1074 (Data Staged). Adversaries may stage collected data in a central location or directory on the local syste... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1074-001-local-data-staging.json #### MITRE ATT&CK T1074.002: Remote Data Staging (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1074-002-remote-data-staging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1074.002 (Remote Data Staging) is an Enterprise Collection sub-technique of T1074 (Data Staged). Adversaries may stage data collected from multiple systems in a central location or direc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1074-002-remote-data-staging.json #### MITRE ATT&CK T1074: Data Staged (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1074-data-staged - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1074 (Data Staged) is an Enterprise Collection technique. Adversaries may stage collected data in a central location or directory prior to Exfiltration. Data may be kept in separate file... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1074-data-staged.json #### MITRE ATT&CK T1078.001: Default Accounts (Enterprise Tactic TA0005 - Defense Evasion / TA0003 - Persistence / TA0004 - Privilege Escalation / TA0001 - Initial Access) - **ID**: mitre-attack-t1078-001-default-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1078.001 (Default Accounts) is an Enterprise Defense Evasion and Persistence and Privilege Escalation and Initial Access sub-technique of T1078 (Valid Accounts). Adversaries may obtain a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1078-001-default-accounts.json #### MITRE ATT&CK T1078.002: Domain Accounts (Enterprise Tactic TA0005 - Defense Evasion / TA0003 - Persistence / TA0004 - Privilege Escalation / TA0001 - Initial Access) - **ID**: mitre-attack-t1078-002-domain-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1078.002 (Domain Accounts) is an Enterprise Defense Evasion and Persistence and Privilege Escalation and Initial Access sub-technique of T1078 (Valid Accounts). Adversaries may obtain an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1078-002-domain-accounts.json #### MITRE ATT&CK T1078.003: Local Accounts (Enterprise Tactic TA0005 - Defense Evasion / TA0003 - Persistence / TA0004 - Privilege Escalation / TA0001 - Initial Access) - **ID**: mitre-attack-t1078-003-local-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1078.003 (Local Accounts) is an Enterprise Defense Evasion and Persistence and Privilege Escalation and Initial Access sub-technique of T1078 (Valid Accounts). Adversaries may obtain and... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1078-003-local-accounts.json #### MITRE ATT&CK T1078.004: Cloud Accounts (Sub-Technique of T1078 - Initial Access / Persistence / Privilege Escalation / Defense Evasion) - **ID**: mitre-attack-t1078-004-cloud-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1078.004 covers adversary use of legitimate cloud account credentials (Microsoft Entra ID / Azure AD, AWS IAM, Google Workspace, GCP, Okta, Salesforce) to gain initial access, maintain p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1078-004-cloud-accounts.json #### MITRE ATT&CK T1078: Valid Accounts (Enterprise Tactics TA0001 / TA0003 / TA0004 / TA0005) - **ID**: mitre-attack-t1078-valid-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1078 (Valid Accounts) covers adversary use of compromised credentials for initial access, persistence, privilege escalation, and defense evasion. Sub-techniques cover Default Accounts (T... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1078-valid-accounts.json #### MITRE ATT&CK T1080: Taint Shared Content (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1080-taint-shared-content - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1080 (Taint Shared Content) is an Enterprise Lateral Movement technique. Adversaries may deliver payloads to remote systems by adding content to shared storage locations, such as network... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1080-taint-shared-content.json #### MITRE ATT&CK T1083: File and Directory Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1083-file-and-directory-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1083 covers adversary enumeration of files and directories to find files of interest, identify backup locations, and map storage structures. The technique is universally observed across ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1083-file-and-directory-discovery.json #### MITRE ATT&CK T1087.001: Local Account (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1087-001-local-account - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1087.001 (Local Account) is an Enterprise Discovery sub-technique of T1087 (Account Discovery). Adversaries may attempt to get a listing of local system accounts. This information can he... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1087-001-local-account.json #### MITRE ATT&CK T1087.002: Domain Account (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1087-002-domain-account - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1087.002 (Domain Account) is an Enterprise Discovery sub-technique of T1087 (Account Discovery). Adversaries may attempt to get a listing of domain accounts. This information can help ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1087-002-domain-account.json #### MITRE ATT&CK T1087.003: Email Account (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1087-003-email-account - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1087.003 (Email Account) is an Enterprise Discovery sub-technique of T1087 (Account Discovery). Adversaries may attempt to get a listing of email addresses and accounts. Adversaries may ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1087-003-email-account.json #### MITRE ATT&CK T1087.004: Cloud Account (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1087-004-cloud-account - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1087.004 (Cloud Account) is an Enterprise Discovery sub-technique of T1087 (Account Discovery). Adversaries may attempt to get a listing of cloud accounts. Cloud accounts are those creat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1087-004-cloud-account.json #### MITRE ATT&CK T1087: Account Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1087-account-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1087 (Account Discovery) is an Enterprise Discovery technique. Adversaries may attempt to get a listing of valid accounts, usernames, or email addresses on a system or within a compromis... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1087-account-discovery.json #### MITRE ATT&CK T1090.001: Internal Proxy (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1090-001-internal-proxy - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1090.001 (Internal Proxy) is an Enterprise Command and Control sub-technique of T1090 (Proxy). Adversaries may use an internal proxy to direct command and control traffic between two or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1090-001-internal-proxy.json #### MITRE ATT&CK T1090.002: External Proxy (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1090-002-external-proxy - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1090.002 (External Proxy) is an Enterprise Command and Control sub-technique of T1090 (Proxy). Adversaries may use an external proxy to act as an intermediary for network communications ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1090-002-external-proxy.json #### MITRE ATT&CK T1090.003: Multi-hop Proxy (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1090-003-multi-hop-proxy - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1090.003 (Multi-hop Proxy) is an Enterprise Command and Control sub-technique of T1090 (Proxy). Adversaries may chain together multiple proxies to disguise the source of malicious traffi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1090-003-multi-hop-proxy.json #### MITRE ATT&CK T1090.004: Domain Fronting (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1090-004-domain-fronting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1090.004 (Domain Fronting) is an Enterprise Command and Control sub-technique of T1090 (Proxy). Adversaries may take advantage of routing schemes in Content Delivery Networks (CDNs) and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1090-004-domain-fronting.json #### MITRE ATT&CK T1090: Proxy (Command and Control) - **ID**: mitre-attack-t1090-proxy - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1090 covers adversary use of proxy infrastructure (Internal Proxy T1090.001, External Proxy T1090.002, Multi-hop Proxy T1090.003 including Tor, Domain Fronting T1090.004) to obfuscate C2... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1090-proxy.json #### MITRE ATT&CK T1091: Replication Through Removable Media (Enterprise Tactic TA0008 - Lateral Movement / TA0001 - Initial Access) - **ID**: mitre-attack-t1091-replication-through-removable-media - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1091 (Replication Through Removable Media) is an Enterprise Lateral Movement and Initial Access technique. Adversaries may move onto systems, possibly those on disconnected or air-gapped... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1091-replication-through-removable-media.json #### MITRE ATT&CK T1092: Communication Through Removable Media (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1092-communication-through-removable-media - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1092 (Communication Through Removable Media) is an Enterprise Command and Control technique. Adversaries can perform command and control between compromised hosts on potentially disconne... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1092-communication-through-removable-media.json #### MITRE ATT&CK T1095: Non-Application Layer Protocol (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1095-non-application-layer-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1095 (Non-Application Layer Protocol) is an Enterprise Command and Control technique. Adversaries may use an OSI non-application layer protocol for communication between host and C2 serv... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1095-non-application-layer-protocol.json #### MITRE ATT&CK T1098.001: Additional Cloud Credentials (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1098-001-additional-cloud-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1098.001 (Additional Cloud Credentials) is an Enterprise Persistence and Privilege Escalation sub-technique of T1098 (Account Manipulation). Adversaries may add adversary-controlled cred... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1098-001-additional-cloud-credentials.json #### MITRE ATT&CK T1098.002: Additional Email Delegate Permissions (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1098-002-additional-email-delegate-permissions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1098.002 (Additional Email Delegate Permissions) is an Enterprise Persistence and Privilege Escalation sub-technique of T1098 (Account Manipulation). Adversaries may grant additional per... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1098-002-additional-email-delegate-permissions.json #### MITRE ATT&CK T1098.003: Additional Cloud Roles (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1098-003-additional-cloud-roles - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1098.003 (Additional Cloud Roles) is an Enterprise Persistence and Privilege Escalation sub-technique of T1098 (Account Manipulation). An adversary may add additional roles or permission... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1098-003-additional-cloud-roles.json #### MITRE ATT&CK T1098.004: SSH Authorized Keys (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1098-004-ssh-authorized-keys - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1098.004 (SSH Authorized Keys) is an Enterprise Persistence and Privilege Escalation sub-technique of T1098 (Account Manipulation). Adversaries may modify the SSH authorized_keys file to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1098-004-ssh-authorized-keys.json #### MITRE ATT&CK T1098.005: Device Registration (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1098-005-device-registration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1098.005 (Device Registration) is an Enterprise Persistence and Privilege Escalation sub-technique of T1098 (Account Manipulation). Adversaries may register a device to an adversary-cont... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1098-005-device-registration.json #### MITRE ATT&CK T1098.006: Additional Container Cluster Roles (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1098-006-additional-container-cluster-roles - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1098.006 (Additional Container Cluster Roles) is an Enterprise Persistence and Privilege Escalation sub-technique of T1098 (Account Manipulation). An adversary may add additional roles o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1098-006-additional-container-cluster-roles.json #### MITRE ATT&CK T1098.007: Additional Local or Domain Groups (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1098-007-additional-local-or-domain-groups - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1098.007 (Additional Local or Domain Groups) is an Enterprise Persistence and Privilege Escalation sub-technique of T1098 (Account Manipulation). An adversary may add additional local or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1098-007-additional-local-or-domain-groups.json #### MITRE ATT&CK T1098: Account Manipulation (Enterprise Tactics TA0003 / TA0004 - Persistence and Privilege Escalation) - **ID**: mitre-attack-t1098-account-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1098 describes adversary modification of accounts to maintain or escalate access. Sub-techniques cover Additional Cloud Credentials (T1098.001), Additional Email Delegate Permissions (T1... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1098-account-manipulation.json #### MITRE ATT&CK T1102.001: Dead Drop Resolver (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1102-001-dead-drop-resolver - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1102.001 (Dead Drop Resolver) is an Enterprise Command and Control sub-technique of T1102 (Web Service). Adversaries may use an existing, legitimate external Web service to host informat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1102-001-dead-drop-resolver.json #### MITRE ATT&CK T1102.002: Bidirectional Communication (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1102-002-bidirectional-communication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1102.002 (Bidirectional Communication) is an Enterprise Command and Control sub-technique of T1102 (Web Service). Adversaries may use an existing, legitimate external Web service as a me... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1102-002-bidirectional-communication.json #### MITRE ATT&CK T1102.003: One-Way Communication (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1102-003-one-way-communication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1102.003 (One-Way Communication) is an Enterprise Command and Control sub-technique of T1102 (Web Service). Adversaries may use an existing, legitimate external Web service as a means fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1102-003-one-way-communication.json #### MITRE ATT&CK T1102: Web Service (Command and Control) - **ID**: mitre-attack-t1102-web-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1102 covers adversary abuse of legitimate web services (GitHub, Pastebin, Discord, Dropbox, Telegram, Slack, X/Twitter, GitHub Gist) for command-and-control communication, blending malic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1102-web-service.json #### MITRE ATT&CK T1104: Multi-Stage Channels (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1104-multi-stage-channels - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1104 (Multi-Stage Channels) is an Enterprise Command and Control technique. Adversaries may create multiple stages for command and control that are employed under different conditions or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1104-multi-stage-channels.json #### MITRE ATT&CK T1105: Ingress Tool Transfer (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1105-ingress-tool-transfer - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1105 (Ingress Tool Transfer) is an Enterprise Command and Control technique. Adversaries may transfer tools or other files from an external system into a compromised environment. Tools o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1105-ingress-tool-transfer.json #### MITRE ATT&CK T1106: Native API (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1106-native-api - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1106 covers adversary direct invocation of operating system APIs to execute code, bypassing higher-level interpreters and detection mechanisms that rely on parent-process telemetry. Comm... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1106-native-api.json #### MITRE ATT&CK T1110.001: Password Guessing (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1110-001-password-guessing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1110.001 (Password Guessing) is an Enterprise Credential Access sub-technique of T1110 (Brute Force). Adversaries with no prior knowledge of legitimate credentials within the system or e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1110-001-password-guessing.json #### MITRE ATT&CK T1110.002: Password Cracking (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1110-002-password-cracking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1110.002 (Password Cracking) is an Enterprise Credential Access sub-technique of T1110 (Brute Force). Adversaries may use password cracking to attempt to recover usable credentials, such... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1110-002-password-cracking.json #### MITRE ATT&CK T1110.003: Password Spraying (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1110-003-password-spraying - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1110.003 (Password Spraying) is an Enterprise Credential Access sub-technique of T1110 (Brute Force). Adversaries may use a single or small list of commonly used passwords against many d... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1110-003-password-spraying.json #### MITRE ATT&CK T1110.004: Credential Stuffing (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1110-004-credential-stuffing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1110.004 (Credential Stuffing) is an Enterprise Credential Access sub-technique of T1110 (Brute Force). Adversaries may use credentials obtained from breach dumps of unrelated accounts t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1110-004-credential-stuffing.json #### MITRE ATT&CK T1110: Brute Force (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1110-brute-force - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1110 covers adversary attempts to gain access through systematic guessing of credentials. Sub-techniques include Password Guessing (T1110.001), Password Cracking (T1110.002), Password Sp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1110-brute-force.json #### MITRE ATT&CK T1111: Multi-Factor Authentication Interception (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1111-multi-factor-authentication-interception - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1111 (Multi-Factor Authentication Interception) is an Enterprise Credential Access technique. Adversaries may target multi-factor authentication (MFA) mechanisms, (i.e., smart cards, tok... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1111-multi-factor-authentication-interception.json #### MITRE ATT&CK T1112: Modify Registry (Defense Evasion) - **ID**: mitre-attack-t1112-modify-registry - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1112 covers adversary modification of the Windows Registry to hide configuration, persist, disable security tools, or evade detection. Common targets: Run keys, Services, Defender exclus... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1112-modify-registry.json #### MITRE ATT&CK T1113: Screen Capture (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1113-screen-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1113 (Screen Capture) is an Enterprise Collection technique. Adversaries may attempt to take screen captures of the desktop to gather information over the course of an operation. Screen ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1113-screen-capture.json #### MITRE ATT&CK T1114.001: Local Email Collection (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1114-001-local-email-collection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1114.001 (Local Email Collection) is an Enterprise Collection sub-technique of T1114 (Email Collection). Adversaries may target user email on local systems to collect sensitive informati... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1114-001-local-email-collection.json #### MITRE ATT&CK T1114.002: Remote Email Collection (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1114-002-remote-email-collection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1114.002 (Remote Email Collection) is an Enterprise Collection sub-technique of T1114 (Email Collection). Adversaries may target an Exchange server, Office 365, or Google Workspace to co... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1114-002-remote-email-collection.json #### MITRE ATT&CK T1114.003: Email Forwarding Rule (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1114-003-email-forwarding-rule - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1114.003 (Email Forwarding Rule) is an Enterprise Collection sub-technique of T1114 (Email Collection). Adversaries may setup email forwarding rules to collect sensitive information. Adv... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1114-003-email-forwarding-rule.json #### MITRE ATT&CK T1114: Email Collection (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1114-email-collection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1114 covers adversary collection of email data through Local Email Collection (T1114.001), Remote Email Collection (T1114.002), and Email Forwarding Rule (T1114.003). Compromised mailbox... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1114-email-collection.json #### MITRE ATT&CK T1115: Clipboard Data (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1115-clipboard-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1115 (Clipboard Data) is an Enterprise Collection technique. Adversaries may collect data stored in the clipboard from users copying information within or between applications. For examp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1115-clipboard-data.json #### MITRE ATT&CK T1119: Automated Collection (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1119-automated-collection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1119 (Automated Collection) is an Enterprise Collection technique. Once established within a system or network, an adversary may use automated techniques for collecting internal data. Me... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1119-automated-collection.json #### MITRE ATT&CK T1120: Peripheral Device Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1120-peripheral-device-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1120 (Peripheral Device Discovery) is an Enterprise Discovery technique. Adversaries may attempt to gather information about attached peripheral devices and components connected to a com... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1120-peripheral-device-discovery.json #### MITRE ATT&CK T1123: Audio Capture (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1123-audio-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1123 (Audio Capture) is an Enterprise Collection technique. An adversary can leverage a computer's peripheral devices (e.g., microphones and webcams) or applications (e.g., voice and vid... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1123-audio-capture.json #### MITRE ATT&CK T1124: System Time Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1124-system-time-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1124 (System Time Discovery) is an Enterprise Discovery technique. An adversary may gather the system time and/or time zone settings from a local or remote system. The system time is set... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1124-system-time-discovery.json #### MITRE ATT&CK T1125: Video Capture (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1125-video-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1125 (Video Capture) is an Enterprise Collection technique. An adversary can leverage a computer's peripheral devices (e.g., integrated cameras or webcams) or applications (e.g., video c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1125-video-capture.json #### MITRE ATT&CK T1127.001: MSBuild (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1127-001-msbuild - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1127.001 (MSBuild) is an Enterprise Defense Evasion sub-technique of T1127 (Trusted Developer Utilities Proxy Execution). Adversaries may use MSBuild to proxy execution of code through a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1127-001-msbuild.json #### MITRE ATT&CK T1127.002: ClickOnce (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1127-002-clickonce - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1127.002 (ClickOnce) is an Enterprise Defense Evasion sub-technique of T1127 (Trusted Developer Utilities Proxy Execution). Adversaries may use ClickOnce applications (.appref-ms and .ap... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1127-002-clickonce.json #### MITRE ATT&CK T1127.003: JamPlus (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1127-003-jamplus - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1127.003 (JamPlus) is an Enterprise Stealth, Execution technique. Adversaries may use `JamPlus` to proxy the execution of a malicious script. `JamPlus` is a build utility tool for code a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1127-003-jamplus.json #### MITRE ATT&CK T1127: Trusted Developer Utilities Proxy Execution (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1127-trusted-developer-utilities-proxy-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1127 (Trusted Developer Utilities Proxy Execution) is an Enterprise Defense Evasion technique. Adversaries may take advantage of trusted developer utilities to proxy execution of malicio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1127-trusted-developer-utilities-proxy-execution.json #### MITRE ATT&CK T1129: Shared Modules (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1129-shared-modules - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1129 (Shared Modules) is an Enterprise Execution technique. Adversaries may execute malicious payloads via loading shared modules. Shared modules are executable files that are loaded int... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1129-shared-modules.json #### MITRE ATT&CK T1132.001: Standard Encoding (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1132-001-standard-encoding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1132.001 (Standard Encoding) is an Enterprise Command and Control sub-technique of T1132 (Data Encoding). Adversaries may encode data with a standard data encoding system to make the con... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1132-001-standard-encoding.json #### MITRE ATT&CK T1132.002: Non-Standard Encoding (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1132-002-non-standard-encoding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1132.002 (Non-Standard Encoding) is an Enterprise Command and Control sub-technique of T1132 (Data Encoding). Adversaries may encode data with a non-standard data encoding system to make... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1132-002-non-standard-encoding.json #### MITRE ATT&CK T1132: Data Encoding (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1132-data-encoding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1132 (Data Encoding) is an Enterprise Command and Control technique. Adversaries may encode data to make the content of command and control traffic more difficult to detect. Command and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1132-data-encoding.json #### MITRE ATT&CK T1133: External Remote Services (Enterprise Tactic TA0003 - Persistence / TA0001 - Initial Access) - **ID**: mitre-attack-t1133-external-remote-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1133 (External Remote Services) is an Enterprise Persistence and Initial Access technique. Adversaries may leverage external-facing remote services to initially access and/or persist wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1133-external-remote-services.json #### MITRE ATT&CK T1134.001: Token Impersonation/Theft (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1134-001-token-impersonation-theft - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1134.001 (Token Impersonation/Theft) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1134 (Access Token Manipulation). Adversaries may duplicate then imperson... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1134-001-token-impersonation-theft.json #### MITRE ATT&CK T1134.002: Create Process with Token (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1134-002-create-process-with-token - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1134.002 (Create Process with Token) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1134 (Access Token Manipulation). Adversaries may create a new process wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1134-002-create-process-with-token.json #### MITRE ATT&CK T1134.003: Make and Impersonate Token (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1134-003-make-and-impersonate-token - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1134.003 (Make and Impersonate Token) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1134 (Access Token Manipulation). Adversaries may make new tokens and im... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1134-003-make-and-impersonate-token.json #### MITRE ATT&CK T1134.004: Parent PID Spoofing (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1134-004-parent-pid-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1134.004 (Parent PID Spoofing) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1134 (Access Token Manipulation). Adversaries may spoof the parent process iden... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1134-004-parent-pid-spoofing.json #### MITRE ATT&CK T1134.005: SID-History Injection (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1134-005-sid-history-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1134.005 (SID-History Injection) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1134 (Access Token Manipulation). Adversaries may use SID-History Injection t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1134-005-sid-history-injection.json #### MITRE ATT&CK T1134: Access Token Manipulation (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1134-access-token-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1134 (Access Token Manipulation) is an Enterprise Defense Evasion and Privilege Escalation technique. Adversaries may modify access tokens to operate under a different user or system sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1134-access-token-manipulation.json #### MITRE ATT&CK T1135: Network Share Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1135-network-share-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1135 (Network Share Discovery) is an Enterprise Discovery technique. Adversaries may look for folders and drives shared on remote systems as a means of identifying sources of information... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1135-network-share-discovery.json #### MITRE ATT&CK T1136.001: Local Account (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1136-001-local-account - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1136.001 (Local Account) is an Enterprise Persistence sub-technique of T1136 (Create Account). Adversaries may create a local account to maintain access to victim systems. Local accounts... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1136-001-local-account.json #### MITRE ATT&CK T1136.002: Domain Account (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1136-002-domain-account - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1136.002 (Domain Account) is an Enterprise Persistence sub-technique of T1136 (Create Account). Adversaries may create a domain account to maintain access to victim systems. Domain accou... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1136-002-domain-account.json #### MITRE ATT&CK T1136.003: Cloud Account (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1136-003-cloud-account - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1136.003 (Cloud Account) is an Enterprise Persistence sub-technique of T1136 (Create Account). Adversaries may create a cloud account to maintain access to victim systems. With a suffici... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1136-003-cloud-account.json #### MITRE ATT&CK T1136: Create Account (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1136-create-account - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1136 describes adversary creation of accounts to maintain access. Sub-techniques cover Local Account (T1136.001), Domain Account (T1136.002), and Cloud Account (T1136.003). Adversary-cre... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1136-create-account.json #### MITRE ATT&CK T1137.001: Office Template Macros (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1137-001-office-template-macros - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1137.001 (Office Template Macros) is an Enterprise Persistence sub-technique of T1137 (Office Application Startup). Adversaries may abuse Microsoft Office templates to obtain persistence... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1137-001-office-template-macros.json #### MITRE ATT&CK T1137.002: Office Test (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1137-002-office-test - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1137.002 (Office Test) is an Enterprise Persistence sub-technique of T1137 (Office Application Startup). Adversaries may abuse the Microsoft Office "Office Test" Registry key to obtain p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1137-002-office-test.json #### MITRE ATT&CK T1137.003: Outlook Forms (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1137-003-outlook-forms - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1137.003 (Outlook Forms) is an Enterprise Persistence sub-technique of T1137 (Office Application Startup). Adversaries may abuse Microsoft Outlook forms to obtain persistence on a compro... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1137-003-outlook-forms.json #### MITRE ATT&CK T1137.004: Outlook Home Page (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1137-004-outlook-home-page - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1137.004 (Outlook Home Page) is an Enterprise Persistence sub-technique of T1137 (Office Application Startup). Adversaries may abuse Microsoft Outlook's Home Page feature to obtain persi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1137-004-outlook-home-page.json #### MITRE ATT&CK T1137.005: Outlook Rules (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1137-005-outlook-rules - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1137.005 (Outlook Rules) is an Enterprise Persistence sub-technique of T1137 (Office Application Startup). Adversaries may abuse Microsoft Outlook rules to obtain persistence on a compro... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1137-005-outlook-rules.json #### MITRE ATT&CK T1137.006: Add-ins (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1137-006-add-ins - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1137.006 (Add-ins) is an Enterprise Persistence sub-technique of T1137 (Office Application Startup). Adversaries may abuse Microsoft Office add-ins to obtain persistence on a compromised... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1137-006-add-ins.json #### MITRE ATT&CK T1137: Office Application Startup (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1137-office-application-startup - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1137 (Office Application Startup) is an Enterprise Persistence technique. Adversaries may leverage Microsoft Office-based applications for persistence between startups. Microsoft Office ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1137-office-application-startup.json #### MITRE ATT&CK T1140: Deobfuscate/Decode Files or Information (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1140-deobfuscate-decode-files - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1140 describes adversary actions to reverse obfuscation or encoding applied to payloads after delivery to enable execution. Common patterns include base64 decoding, certutil decoding, Po... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1140-deobfuscate-decode-files.json #### MITRE ATT&CK T1176.001: Browser Extensions (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1176-001-browser-extensions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1176.001 (Browser Extensions) is an Enterprise Persistence technique. Adversaries may abuse internet browser extensions to establish persistent access to victim systems. Browser extensio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1176-001-browser-extensions.json #### MITRE ATT&CK T1176.002: IDE Extensions (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1176-002-ide-extensions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1176.002 (IDE Extensions) is an Enterprise Persistence technique. Adversaries may abuse an integrated development environment (IDE) extension to establish persistent access to victim sys... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1176-002-ide-extensions.json #### MITRE ATT&CK T1176: Browser Extensions (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1176-browser-extensions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1176 (Browser Extensions) is an Enterprise Persistence technique. Adversaries may abuse Internet browser extensions to establish persistent access to victim systems. Browser extensions o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1176-browser-extensions.json #### MITRE ATT&CK T1185: Browser Session Hijacking (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1185-browser-session-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1185 (Browser Session Hijacking) is an Enterprise Collection technique. Adversaries may take advantage of security vulnerabilities and inherent functionality in browser software to chang... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1185-browser-session-hijacking.json #### MITRE ATT&CK T1187: Forced Authentication (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1187-forced-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1187 (Forced Authentication) is an Enterprise Credential Access technique. Adversaries may gather credential material by invoking or forcing a user to automatically provide authenticatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1187-forced-authentication.json #### MITRE ATT&CK T1189: Drive-by Compromise (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1189-drive-by-compromise - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1189 (Drive-by Compromise) is an Enterprise Initial Access technique. Adversaries may gain access to a system through a user visiting a website over the normal course of browsing. With t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1189-drive-by-compromise.json #### MITRE ATT&CK T1190: Exploit Public-Facing Application (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1190-exploit-public-facing-application - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1190 describes adversary exploitation of weaknesses in internet-facing applications, services, or APIs to gain initial network access. Notable real-world exploitations include MOVEit (CV... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1190-exploit-public-facing-application.json #### MITRE ATT&CK T1195.001: Compromise Software Dependencies and Development Tools (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1195-001-compromise-software-dependencies-and-development-tools - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1195.001 (Compromise Software Dependencies and Development Tools) is an Enterprise Initial Access sub-technique of T1195 (Supply Chain Compromise). Adversaries may manipulate software de... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1195-001-compromise-software-dependencies-and-development-tools.json #### MITRE ATT&CK T1195.002: Compromise Software Supply Chain (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1195-002-compromise-software-supply-chain - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1195.002 (Compromise Software Supply Chain) is an Enterprise Initial Access sub-technique of T1195 (Supply Chain Compromise). Adversaries may manipulate application software prior to rec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1195-002-compromise-software-supply-chain.json #### MITRE ATT&CK T1195.003: Compromise Hardware Supply Chain (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1195-003-compromise-hardware-supply-chain - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1195.003 (Compromise Hardware Supply Chain) is an Enterprise Initial Access sub-technique of T1195 (Supply Chain Compromise). Adversaries may manipulate hardware components in products p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1195-003-compromise-hardware-supply-chain.json #### MITRE ATT&CK T1195: Supply Chain Compromise (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1195-supply-chain-compromise - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1195 (Supply Chain Compromise) is an Enterprise Initial Access technique. Adversaries may manipulate products or product delivery mechanisms prior to receipt by a final consumer for the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1195-supply-chain-compromise.json #### MITRE ATT&CK T1197: BITS Jobs (Enterprise Tactic TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1197-bits-jobs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1197 (BITS Jobs) is an Enterprise Defense Evasion and Persistence technique. Adversaries may abuse BITS jobs to persistently execute code and perform various background tasks. Windows Ba... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1197-bits-jobs.json #### MITRE ATT&CK T1199: Trusted Relationship (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1199-trusted-relationship - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1199 (Trusted Relationship) is an Enterprise Initial Access technique. Adversaries may breach or otherwise leverage organizations who have access to intended victims. Access through trus... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1199-trusted-relationship.json #### MITRE ATT&CK T1200: Hardware Additions (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1200-hardware-additions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1200 (Hardware Additions) is an Enterprise Initial Access technique. Adversaries may introduce computer accessories, networking hardware, or other computing devices into a system or netw... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1200-hardware-additions.json #### MITRE ATT&CK T1201: Password Policy Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1201-password-policy-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1201 (Password Policy Discovery) is an Enterprise Discovery technique. Adversaries may attempt to access detailed information about the password policy used within an enterprise network ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1201-password-policy-discovery.json #### MITRE ATT&CK T1202: Indirect Command Execution (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1202-indirect-command-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1202 (Indirect Command Execution) is an Enterprise Defense Evasion technique. Adversaries may abuse utilities that allow for command execution to bypass security restrictions that limit ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1202-indirect-command-execution.json #### MITRE ATT&CK T1203: Exploitation for Client Execution (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1203-exploitation-for-client-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1203 (Exploitation for Client Execution) is an Enterprise Execution technique. Adversaries may exploit software vulnerabilities in client applications to execute code. Vulnerabilities ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1203-exploitation-for-client-execution.json #### MITRE ATT&CK T1204.001: Malicious Link (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1204-001-malicious-link - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1204.001 (Malicious Link) is an Enterprise Execution sub-technique of T1204 (User Execution). An adversary may rely upon a user clicking a malicious link in order to gain execution. User... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1204-001-malicious-link.json #### MITRE ATT&CK T1204.002: Malicious File (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1204-002-malicious-file - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1204.002 (Malicious File) is an Enterprise Execution sub-technique of T1204 (User Execution). An adversary may rely upon a user opening a malicious file in order to gain execution. Users... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1204-002-malicious-file.json #### MITRE ATT&CK T1204.003: Malicious Image (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1204-003-malicious-image - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1204.003 (Malicious Image) is an Enterprise Execution sub-technique of T1204 (User Execution). Adversaries may rely on a user running a malicious image to facilitate execution. Amazon We... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1204-003-malicious-image.json #### MITRE ATT&CK T1204.004: Malicious Copy and Paste (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1204-004-malicious-copy-and-paste - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1204.004 (Malicious Copy and Paste) is an Enterprise Execution technique. An adversary may rely upon a user copying and pasting code in order to gain execution. Users may be subjected to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1204-004-malicious-copy-and-paste.json #### MITRE ATT&CK T1204.005: Malicious Library (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1204-005-malicious-library - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1204.005 (Malicious Library) is an Enterprise Execution technique. Adversaries may rely on a user installing a malicious library to facilitate execution. Threat actors may Upload Malware... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1204-005-malicious-library.json #### MITRE ATT&CK T1204: User Execution (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1204-user-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1204 covers adversary reliance on specific actions by users to execute malicious code. Sub-techniques cover Malicious Link (T1204.001), Malicious File (T1204.002), and Malicious Image (T... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1204-user-execution.json #### MITRE ATT&CK T1205.001: Port Knocking (Enterprise Tactic TA0005 - Defense Evasion / TA0003 - Persistence / TA0011 - Command and Control) - **ID**: mitre-attack-t1205-001-port-knocking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1205.001 (Port Knocking) is an Enterprise Defense Evasion and Persistence and Command and Control sub-technique of T1205 (Traffic Signaling). Adversaries may use port knocking to hide op... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1205-001-port-knocking.json #### MITRE ATT&CK T1205.002: Socket Filters (Enterprise Tactic TA0005 - Defense Evasion / TA0003 - Persistence / TA0011 - Command and Control) - **ID**: mitre-attack-t1205-002-socket-filters - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1205.002 (Socket Filters) is an Enterprise Defense Evasion and Persistence and Command and Control sub-technique of T1205 (Traffic Signaling). Adversaries may attach filters to a network... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1205-002-socket-filters.json #### MITRE ATT&CK T1205: Traffic Signaling (Enterprise Tactic TA0005 - Defense Evasion / TA0003 - Persistence / TA0011 - Command and Control) - **ID**: mitre-attack-t1205-traffic-signaling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1205 (Traffic Signaling) is an Enterprise Defense Evasion and Persistence and Command and Control technique. Adversaries may use traffic signaling to hide open ports or other malicious f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1205-traffic-signaling.json #### MITRE ATT&CK T1207: Rogue Domain Controller (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1207-rogue-domain-controller - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1207 (Rogue Domain Controller) is an Enterprise Defense Evasion technique. Adversaries may register a rogue Domain Controller to enable manipulation of Active Directory data. DCShadow ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1207-rogue-domain-controller.json #### MITRE ATT&CK T1210: Exploitation of Remote Services (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1210-exploitation-of-remote-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1210 (Exploitation of Remote Services) is an Enterprise Lateral Movement technique. Adversaries may exploit remote services to gain unauthorized access to internal systems once inside of... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1210-exploitation-of-remote-services.json #### MITRE ATT&CK T1211: Exploitation for Defense Evasion (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1211-exploitation-for-defense-evasion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1211 (Exploitation for Defense Evasion) is an Enterprise Defense Evasion technique. Adversaries may exploit a system or application vulnerability to bypass security features. Exploitatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1211-exploitation-for-defense-evasion.json #### MITRE ATT&CK T1212: Exploitation for Credential Access (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1212-exploitation-for-credential-access - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1212 (Exploitation for Credential Access) is an Enterprise Credential Access technique. Adversaries may exploit software vulnerabilities in an attempt to collect credentials. Exploitatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1212-exploitation-for-credential-access.json #### MITRE ATT&CK T1213.001: Confluence (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1213-001-confluence - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1213.001 (Confluence) is an Enterprise Collection sub-technique of T1213 (Data from Information Repositories). Adversaries may leverage Confluence repositories to mine valuable informati... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1213-001-confluence.json #### MITRE ATT&CK T1213.002: Sharepoint (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1213-002-sharepoint - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1213.002 (Sharepoint) is an Enterprise Collection sub-technique of T1213 (Data from Information Repositories). Adversaries may leverage the SharePoint repository as a source to mine valu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1213-002-sharepoint.json #### MITRE ATT&CK T1213.003: Code Repositories (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1213-003-code-repositories - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1213.003 (Code Repositories) is an Enterprise Collection sub-technique of T1213 (Data from Information Repositories). Adversaries may leverage code repositories to collect valuable infor... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1213-003-code-repositories.json #### MITRE ATT&CK T1213.004: Customer Relationship Management Software (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1213-004-customer-relationship-management-software - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1213.004 (Customer Relationship Management Software) is an Enterprise Collection sub-technique of T1213 (Data from Information Repositories). Adversaries may leverage Customer Relationsh... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1213-004-customer-relationship-management-software.json #### MITRE ATT&CK T1213.005: Messaging Applications (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1213-005-messaging-applications - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1213.005 (Messaging Applications) is an Enterprise Collection sub-technique of T1213 (Data from Information Repositories). Adversaries may leverage chat and messaging applications, such ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1213-005-messaging-applications.json #### MITRE ATT&CK T1213.006: Databases (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1213-006-databases - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1213.006 (Databases) is an Enterprise Collection technique. Adversaries may leverage databases to mine valuable information. These databases may be hosted on-premises or in the cloud (bo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1213-006-databases.json #### MITRE ATT&CK T1213: Data from Information Repositories (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1213-data-from-information-repositories - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1213 (Data from Information Repositories) is an Enterprise Collection technique. Adversaries may leverage information repositories to mine valuable information. Information repositories ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1213-data-from-information-repositories.json #### MITRE ATT&CK T1216.001: PubPrn (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1216-001-pubprn - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1216.001 (PubPrn) is an Enterprise Defense Evasion sub-technique of T1216 (System Script Proxy Execution). Adversaries may use PubPrn to proxy execution of malicious remote files. PubPrn... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1216-001-pubprn.json #### MITRE ATT&CK T1216.002: SyncAppvPublishingServer (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1216-002-syncappvpublishingserver - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1216.002 (SyncAppvPublishingServer) is an Enterprise Defense Evasion sub-technique of T1216 (System Script Proxy Execution). Adversaries may abuse SyncAppvPublishingServer.vbs to proxy e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1216-002-syncappvpublishingserver.json #### MITRE ATT&CK T1216: System Script Proxy Execution (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1216-system-script-proxy-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1216 (System Script Proxy Execution) is an Enterprise Defense Evasion technique. Adversaries may use trusted scripts, often signed with certificates, to proxy the execution of malicious ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1216-system-script-proxy-execution.json #### MITRE ATT&CK T1217: Browser Information Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1217-browser-information-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1217 (Browser Information Discovery) is an Enterprise Discovery technique. Adversaries may enumerate information about browsers to learn more about compromised environments. Data saved b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1217-browser-information-discovery.json #### MITRE ATT&CK T1218.001: Compiled HTML File (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-001-compiled-html-file - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.001 (Compiled HTML File) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse Compiled HTML files (.chm) to conceal malicio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-001-compiled-html-file.json #### MITRE ATT&CK T1218.002: Control Panel (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-002-control-panel - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.002 (Control Panel) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse control.exe to proxy execution of malicious payloa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-002-control-panel.json #### MITRE ATT&CK T1218.003: CMSTP (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-003-cmstp - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.003 (CMSTP) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse CMSTP to proxy execution of malicious code. The Microsoft ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-003-cmstp.json #### MITRE ATT&CK T1218.004: InstallUtil (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-004-installutil - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.004 (InstallUtil) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may use InstallUtil to proxy execution of code through a trust... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-004-installutil.json #### MITRE ATT&CK T1218.005: Mshta (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-005-mshta - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.005 (Mshta) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse mshta.exe to proxy execution of malicious .hta files and J... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-005-mshta.json #### MITRE ATT&CK T1218.007: Msiexec (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-007-msiexec - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.007 (Msiexec) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse msiexec.exe to proxy execution of malicious payloads. Ms... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-007-msiexec.json #### MITRE ATT&CK T1218.008: Odbcconf (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-008-odbcconf - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.008 (Odbcconf) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse odbcconf.exe to proxy execution of malicious payloads. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-008-odbcconf.json #### MITRE ATT&CK T1218.009: Regsvcs/Regasm (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-009-regsvcs-regasm - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.009 (Regsvcs/Regasm) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse Regsvcs and Regasm to proxy execution of code thr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-009-regsvcs-regasm.json #### MITRE ATT&CK T1218.010: Regsvr32 (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-010-regsvr32 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.010 (Regsvr32) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse Regsvr32.exe to proxy execution of malicious code. Regs... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-010-regsvr32.json #### MITRE ATT&CK T1218.011: Rundll32 (Sub-Technique of T1218 - Defense Evasion) - **ID**: mitre-attack-t1218-011-rundll32 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.011 covers adversary use of rundll32.exe to proxy execute malicious DLLs and bypass application allowlisting. Variants include DLL with exported function, javascript: protocol (rund... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-011-rundll32.json #### MITRE ATT&CK T1218.012: Verclsid (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-012-verclsid - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.012 (Verclsid) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse verclsid.exe to proxy execution of malicious code. Verc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-012-verclsid.json #### MITRE ATT&CK T1218.013: Mavinject (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-013-mavinject - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.013 (Mavinject) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse mavinject.exe to proxy execution of malicious code. Ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-013-mavinject.json #### MITRE ATT&CK T1218.014: MMC (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-014-mmc - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.014 (MMC) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse mmc.exe to proxy execution of malicious .msc files. Microsof... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-014-mmc.json #### MITRE ATT&CK T1218.015: Electron Applications (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1218-015-electron-applications - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218.015 (Electron Applications) is an Enterprise Defense Evasion sub-technique of T1218 (System Binary Proxy Execution). Adversaries may abuse components of the Electron framework to ex... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-015-electron-applications.json #### MITRE ATT&CK T1218: System Binary Proxy Execution (Defense Evasion) - **ID**: mitre-attack-t1218-system-binary-proxy-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1218 covers adversary use of legitimate signed Windows binaries (LOLBins - Living Off The Land Binaries) to proxy execution of malicious payloads and bypass application allowlisting. Sub... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1218-system-binary-proxy-execution.json #### MITRE ATT&CK T1219.001: IDE Tunneling (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1219-001-ide-tunneling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1219.001 (IDE Tunneling) is an Enterprise Command and Control technique. Adversaries may abuse Integrated Development Environment (IDE) software with remote development features to estab... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1219-001-ide-tunneling.json #### MITRE ATT&CK T1219.002: Remote Desktop Software (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1219-002-remote-desktop-software - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1219.002 (Remote Desktop Software) is an Enterprise Command and Control technique. An adversary may use legitimate desktop support software to establish an interactive command and contro... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1219-002-remote-desktop-software.json #### MITRE ATT&CK T1219.003: Remote Access Hardware (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1219-003-remote-access-hardware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1219.003 (Remote Access Hardware) is an Enterprise Command and Control technique. An adversary may use legitimate remote access hardware to establish an interactive command and control c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1219-003-remote-access-hardware.json #### MITRE ATT&CK T1219: Remote Access Software (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1219-remote-access-software - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1219 (Remote Access Software) is an Enterprise Command and Control technique. An adversary may use legitimate desktop support and remote access software to establish an interactive comma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1219-remote-access-software.json #### MITRE ATT&CK T1220: XSL Script Processing (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1220-xsl-script-processing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1220 (XSL Script Processing) is an Enterprise Defense Evasion technique. Adversaries may bypass application control and obscure execution of code by embedding scripts inside XSL files. E... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1220-xsl-script-processing.json #### MITRE ATT&CK T1221: Template Injection (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1221-template-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1221 (Template Injection) is an Enterprise Defense Evasion technique. Adversaries may create or modify references in user document templates to conceal malicious code or force authentica... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1221-template-injection.json #### MITRE ATT&CK T1222.001: Windows File and Directory Permissions Modification (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1222-001-windows-file-and-directory-permissions-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1222.001 (Windows File and Directory Permissions Modification) is an Enterprise Defense Evasion sub-technique of T1222 (File and Directory Permissions Modification). Adversaries may modi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1222-001-windows-file-and-directory-permissions-modification.json #### MITRE ATT&CK T1222.002: Linux and Mac File and Directory Permissions Modification (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1222-002-linux-and-mac-file-and-directory-permissions-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1222.002 (Linux and Mac File and Directory Permissions Modification) is an Enterprise Defense Evasion sub-technique of T1222 (File and Directory Permissions Modification). Adversaries ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1222-002-linux-and-mac-file-and-directory-permissions-modification.json #### MITRE ATT&CK T1222: File and Directory Permissions Modification (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1222-file-and-directory-permissions-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1222 (File and Directory Permissions Modification) is an Enterprise Defense Evasion technique. Adversaries may modify file or directory permissions/attributes to evade access control lis... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1222-file-and-directory-permissions-modification.json #### MITRE ATT&CK T1480.001: Environmental Keying (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1480-001-environmental-keying - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1480.001 (Environmental Keying) is an Enterprise Defense Evasion sub-technique of T1480 (Execution Guardrails). Adversaries may environmentally key payloads or other features of malware ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1480-001-environmental-keying.json #### MITRE ATT&CK T1480.002: Mutual Exclusion (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1480-002-mutual-exclusion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1480.002 (Mutual Exclusion) is an Enterprise Defense Evasion sub-technique of T1480 (Execution Guardrails). Adversaries may constrain execution or actions based on the presence of a mute... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1480-002-mutual-exclusion.json #### MITRE ATT&CK T1480: Execution Guardrails (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1480-execution-guardrails - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1480 (Execution Guardrails) is an Enterprise Defense Evasion technique. Adversaries may use execution guardrails to constrain execution or actions based on adversary supplied and environ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1480-execution-guardrails.json #### MITRE ATT&CK T1482: Domain Trust Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1482-domain-trust-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1482 (Domain Trust Discovery) is an Enterprise Discovery technique. Adversaries may attempt to gather information on domain trust relationships that may be used to identify lateral movem... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1482-domain-trust-discovery.json #### MITRE ATT&CK T1484.001: Group Policy Modification (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1484-001-group-policy-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1484.001 (Group Policy Modification) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1484 (Domain or Tenant Policy Modification). Adversaries may modify Group... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1484-001-group-policy-modification.json #### MITRE ATT&CK T1484.002: Trust Modification (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1484-002-trust-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1484.002 (Trust Modification) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1484 (Domain or Tenant Policy Modification). Adversaries may add new domain trus... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1484-002-trust-modification.json #### MITRE ATT&CK T1484: Domain or Tenant Policy Modification (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1484-domain-or-tenant-policy-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1484 (Domain or Tenant Policy Modification) is an Enterprise Defense Evasion and Privilege Escalation technique. Adversaries may modify the configuration settings of a domain or identity... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1484-domain-or-tenant-policy-modification.json #### MITRE ATT&CK T1485.001: Lifecycle-Triggered Deletion (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1485-001-lifecycle-triggered-deletion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1485.001 (Lifecycle-Triggered Deletion) is an Enterprise Impact sub-technique of T1485 (Data Destruction). Adversaries may modify the lifecycle policies of a cloud storage bucket to dest... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1485-001-lifecycle-triggered-deletion.json #### MITRE ATT&CK T1485: Data Destruction (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1485-data-destruction - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1485 covers adversary destruction of victim data and systems through wiper malware, secure deletion, or storage corruption to disrupt operations or destroy evidence. Notable wiper campai... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1485-data-destruction.json #### MITRE ATT&CK T1486: Data Encrypted for Impact (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1486-data-encrypted-for-impact - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1486 covers adversary encryption of victim data and demand for ransom, the canonical ransomware behaviour responsible for the majority of catastrophic enterprise cyber incidents. LockBit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1486-data-encrypted-for-impact.json #### MITRE ATT&CK T1489: Service Stop (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1489-service-stop - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1489 (Service Stop) is an Enterprise Impact technique. Adversaries may stop or disable services on a system to render those services unavailable to legitimate users. Stopping critical se... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1489-service-stop.json #### MITRE ATT&CK T1490: Inhibit System Recovery (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1490-inhibit-system-recovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1490 (Inhibit System Recovery) is an Enterprise Impact technique. Adversaries may delete or remove built-in data and turn off services designed to aid in the recovery of a corrupted syst... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1490-inhibit-system-recovery.json #### MITRE ATT&CK T1491.001: Internal Defacement (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1491-001-internal-defacement - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1491.001 (Internal Defacement) is an Enterprise Impact sub-technique of T1491 (Defacement). An adversary may deface systems internal to an organization in an attempt to intimidate or mis... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1491-001-internal-defacement.json #### MITRE ATT&CK T1491.002: External Defacement (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1491-002-external-defacement - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1491.002 (External Defacement) is an Enterprise Impact sub-technique of T1491 (Defacement). An adversary may deface systems external to an organization in an attempt to deliver messaging... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1491-002-external-defacement.json #### MITRE ATT&CK T1491: Defacement (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1491-defacement - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1491 (Defacement) is an Enterprise Impact technique. Adversaries may modify visual content available internally or externally to an enterprise network, thus affecting the integrity of th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1491-defacement.json #### MITRE ATT&CK T1495: Firmware Corruption (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1495-firmware-corruption - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1495 (Firmware Corruption) is an Enterprise Impact technique. Adversaries may overwrite or corrupt the flash memory contents of system BIOS or other firmware in devices attached to a sys... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1495-firmware-corruption.json #### MITRE ATT&CK T1496.001: Compute Hijacking (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1496-001-compute-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1496.001 (Compute Hijacking) is an Enterprise Impact sub-technique of T1496 (Resource Hijacking). Adversaries may leverage the compute resources of co-opted systems to complete resource-... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1496-001-compute-hijacking.json #### MITRE ATT&CK T1496.002: Bandwidth Hijacking (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1496-002-bandwidth-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1496.002 (Bandwidth Hijacking) is an Enterprise Impact sub-technique of T1496 (Resource Hijacking). Adversaries may leverage the network bandwidth resources of co-opted systems to comple... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1496-002-bandwidth-hijacking.json #### MITRE ATT&CK T1496.003: SMS Pumping (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1496-003-sms-pumping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1496.003 (SMS Pumping) is an Enterprise Impact sub-technique of T1496 (Resource Hijacking). Adversaries may leverage messaging services for SMS pumping, which may impact system and/or ho... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1496-003-sms-pumping.json #### MITRE ATT&CK T1496.004: Cloud Service Hijacking (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1496-004-cloud-service-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1496.004 (Cloud Service Hijacking) is an Enterprise Impact sub-technique of T1496 (Resource Hijacking). Adversaries may leverage compromised software-as-a-service (SaaS) applications to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1496-004-cloud-service-hijacking.json #### MITRE ATT&CK T1496: Resource Hijacking (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1496-resource-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1496 (Resource Hijacking) is an Enterprise Impact technique. Adversaries may leverage the resources of co-opted systems to complete resource-intensive tasks, which may impact system and/... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1496-resource-hijacking.json #### MITRE ATT&CK T1497.001: System Checks (Enterprise Tactic TA0005 - Defense Evasion / TA0007 - Discovery) - **ID**: mitre-attack-t1497-001-system-checks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1497.001 (System Checks) is an Enterprise Defense Evasion and Discovery sub-technique of T1497 (Virtualization/Sandbox Evasion). Adversaries may employ various system checks to detect an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1497-001-system-checks.json #### MITRE ATT&CK T1497.002: User Activity Based Checks (Enterprise Tactic TA0005 - Defense Evasion / TA0007 - Discovery) - **ID**: mitre-attack-t1497-002-user-activity-based-checks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1497.002 (User Activity Based Checks) is an Enterprise Defense Evasion and Discovery sub-technique of T1497 (Virtualization/Sandbox Evasion). Adversaries may employ various user activity... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1497-002-user-activity-based-checks.json #### MITRE ATT&CK T1497.003: Time Based Evasion (Enterprise Tactic TA0005 - Defense Evasion / TA0007 - Discovery) - **ID**: mitre-attack-t1497-003-time-based-evasion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1497.003 (Time Based Evasion) is an Enterprise Defense Evasion and Discovery sub-technique of T1497 (Virtualization/Sandbox Evasion). Adversaries may employ various time-based methods to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1497-003-time-based-evasion.json #### MITRE ATT&CK T1497: Virtualization/Sandbox Evasion (Enterprise Tactic TA0005 - Defense Evasion / TA0007 - Discovery) - **ID**: mitre-attack-t1497-virtualization-sandbox-evasion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1497 (Virtualization/Sandbox Evasion) is an Enterprise Defense Evasion and Discovery technique. Adversaries may employ various means to detect and avoid virtualization and analysis envir... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1497-virtualization-sandbox-evasion.json #### MITRE ATT&CK T1498.001: Direct Network Flood (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1498-001-direct-network-flood - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1498.001 (Direct Network Flood) is an Enterprise Impact sub-technique of T1498 (Network Denial of Service). Adversaries may attempt to cause a denial of service (DoS) by directly sending... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1498-001-direct-network-flood.json #### MITRE ATT&CK T1498.002: Reflection Amplification (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1498-002-reflection-amplification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1498.002 (Reflection Amplification) is an Enterprise Impact sub-technique of T1498 (Network Denial of Service). Adversaries may attempt to cause a denial of service (DoS) by reflecting a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1498-002-reflection-amplification.json #### MITRE ATT&CK T1498: Network Denial of Service (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1498-network-denial-of-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1498 (Network Denial of Service) is an Enterprise Impact technique. Adversaries may perform Network Denial of Service (DoS) attacks to degrade or block the availability of targeted resou... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1498-network-denial-of-service.json #### MITRE ATT&CK T1499.001: OS Exhaustion Flood (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1499-001-os-exhaustion-flood - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1499.001 (OS Exhaustion Flood) is an Enterprise Impact sub-technique of T1499 (Endpoint Denial of Service). Adversaries may launch a denial of service (DoS) attack targeting an endpoint'... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1499-001-os-exhaustion-flood.json #### MITRE ATT&CK T1499.002: Service Exhaustion Flood (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1499-002-service-exhaustion-flood - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1499.002 (Service Exhaustion Flood) is an Enterprise Impact sub-technique of T1499 (Endpoint Denial of Service). Adversaries may target the different network services provided by systems... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1499-002-service-exhaustion-flood.json #### MITRE ATT&CK T1499.003: Application Exhaustion Flood (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1499-003-application-exhaustion-flood - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1499.003 (Application Exhaustion Flood) is an Enterprise Impact sub-technique of T1499 (Endpoint Denial of Service). Adversaries may target resource intensive features of applications to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1499-003-application-exhaustion-flood.json #### MITRE ATT&CK T1499.004: Application or System Exploitation (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1499-004-application-or-system-exploitation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1499.004 (Application or System Exploitation) is an Enterprise Impact sub-technique of T1499 (Endpoint Denial of Service). Adversaries may exploit software vulnerabilities that can cause... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1499-004-application-or-system-exploitation.json #### MITRE ATT&CK T1499: Endpoint Denial of Service (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1499-endpoint-denial-of-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1499 covers adversary denial-of-service attacks targeting endpoint resources to make services unavailable. Sub-techniques include OS Exhaustion Flood (T1499.001), Service Exhaustion Floo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1499-endpoint-denial-of-service.json #### MITRE ATT&CK T1505.001: SQL Stored Procedures (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1505-001-sql-stored-procedures - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1505.001 (SQL Stored Procedures) is an Enterprise Persistence sub-technique of T1505 (Server Software Component). Adversaries may abuse SQL stored procedures to establish persistent acce... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1505-001-sql-stored-procedures.json #### MITRE ATT&CK T1505.002: Transport Agent (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1505-002-transport-agent - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1505.002 (Transport Agent) is an Enterprise Persistence sub-technique of T1505 (Server Software Component). Adversaries may abuse Microsoft transport agents to establish persistent acces... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1505-002-transport-agent.json #### MITRE ATT&CK T1505.003: Web Shell (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1505-003-web-shell - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1505.003 (Web Shell) is an Enterprise Persistence sub-technique of T1505 (Server Software Component). Adversaries may backdoor web servers with web shells to establish persistent access ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1505-003-web-shell.json #### MITRE ATT&CK T1505.004: IIS Components (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1505-004-iis-components - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1505.004 (IIS Components) is an Enterprise Persistence sub-technique of T1505 (Server Software Component). Adversaries may install malicious components that run on Internet Information S... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1505-004-iis-components.json #### MITRE ATT&CK T1505.005: Terminal Services DLL (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1505-005-terminal-services-dll - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1505.005 (Terminal Services DLL) is an Enterprise Persistence sub-technique of T1505 (Server Software Component). Adversaries may abuse components of Terminal Services to enable persiste... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1505-005-terminal-services-dll.json #### MITRE ATT&CK T1505.006: vSphere Installation Bundles (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1505-006-vsphere-installation-bundles - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1505.006 (vSphere Installation Bundles) is an Enterprise Persistence technique. Adversaries may abuse vSphere Installation Bundles (VIBs) to establish persistent access to ESXi hyperviso... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1505-006-vsphere-installation-bundles.json #### MITRE ATT&CK T1505: Server Software Component (Persistence) - **ID**: mitre-attack-t1505-server-software-component - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1505 covers adversary deployment of malicious software components into legitimate server software for persistence. Sub-techniques include SQL Stored Procedures (T1505.001), Transport Age... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1505-server-software-component.json #### MITRE ATT&CK T1518.001: Security Software Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1518-001-security-software-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1518.001 (Security Software Discovery) is an Enterprise Discovery sub-technique of T1518 (Software Discovery). Adversaries may attempt to get a listing of security software, configuratio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1518-001-security-software-discovery.json #### MITRE ATT&CK T1518.002: Backup Software Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1518-002-backup-software-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1518.002 (Backup Software Discovery) is an Enterprise Discovery technique. Adversaries may attempt to get a listing of backup software or configurations that are installed on a system. A... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1518-002-backup-software-discovery.json #### MITRE ATT&CK T1518: Software Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1518-software-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1518 (Software Discovery) is an Enterprise Discovery technique. Adversaries may attempt to get a listing of software and software versions that are installed on a system or in a cloud en... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1518-software-discovery.json #### MITRE ATT&CK T1525: Implant Internal Image (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1525-implant-internal-image - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1525 (Implant Internal Image) is an Enterprise Persistence technique. Adversaries may implant cloud or container images with malicious code to establish persistence after gaining access ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1525-implant-internal-image.json #### MITRE ATT&CK T1526: Cloud Service Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1526-cloud-service-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1526 (Cloud Service Discovery) is an Enterprise Discovery technique. An adversary may attempt to enumerate the cloud services running on a system after gaining access. These methods can ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1526-cloud-service-discovery.json #### MITRE ATT&CK T1528: Steal Application Access Token (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1528-steal-application-access-token - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1528 (Steal Application Access Token) is an Enterprise Credential Access technique. Adversaries can steal application access tokens as a means of acquiring credentials to access remote s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1528-steal-application-access-token.json #### MITRE ATT&CK T1529: System Shutdown/Reboot (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1529-system-shutdown-reboot - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1529 (System Shutdown/Reboot) is an Enterprise Impact technique. Adversaries may shutdown/reboot systems to interrupt access to, or aid in the destruction of, those systems. Operating sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1529-system-shutdown-reboot.json #### MITRE ATT&CK T1530: Data from Cloud Storage (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1530-data-from-cloud-storage - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1530 (Data from Cloud Storage) is an Enterprise Collection technique. Adversaries may access data from cloud storage. Many IaaS providers offer solutions for online data object storage s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1530-data-from-cloud-storage.json #### MITRE ATT&CK T1531: Account Access Removal (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1531-account-access-removal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1531 (Account Access Removal) is an Enterprise Impact technique. Adversaries may interrupt availability of system and network resources by inhibiting access to accounts utilized by legit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1531-account-access-removal.json #### MITRE ATT&CK T1534: Internal Spearphishing (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1534-internal-spearphishing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1534 (Internal Spearphishing) is an Enterprise Lateral Movement technique. After they already have access to accounts or systems within the environment, adversaries may use internal spea... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1534-internal-spearphishing.json #### MITRE ATT&CK T1535: Unused/Unsupported Cloud Regions (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1535-unused-unsupported-cloud-regions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1535 (Unused/Unsupported Cloud Regions) is an Enterprise Defense Evasion technique. Adversaries may create cloud instances in unused geographic service regions in order to evade detectio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1535-unused-unsupported-cloud-regions.json #### MITRE ATT&CK T1537: Transfer Data to Cloud Account (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1537-transfer-data-to-cloud-account - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1537 (Transfer Data to Cloud Account) is an Enterprise Exfiltration technique. Adversaries may exfiltrate data by transferring the data, including through sharing/syncing and creating ba... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1537-transfer-data-to-cloud-account.json #### MITRE ATT&CK T1538: Cloud Service Dashboard (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1538-cloud-service-dashboard - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1538 (Cloud Service Dashboard) is an Enterprise Discovery technique. An adversary may use a cloud service dashboard GUI with stolen credentials to gain useful information from an operati... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1538-cloud-service-dashboard.json #### MITRE ATT&CK T1539: Steal Web Session Cookie (Credential Access) - **ID**: mitre-attack-t1539-steal-web-session-cookie - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1539 covers adversary theft of web session cookies to bypass MFA and impersonate authenticated users. Storm-0558 (Microsoft, 2023) and SCATTERED SPIDER (Okta, 2023-2024) campaigns levera... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1539-steal-web-session-cookie.json #### MITRE ATT&CK T1542.001: System Firmware (Enterprise Tactic TA0003 - Persistence / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1542-001-system-firmware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1542.001 (System Firmware) is an Enterprise Persistence and Defense Evasion sub-technique of T1542 (Pre-OS Boot). Adversaries may modify system firmware to persist on systems.The BIOS (B... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1542-001-system-firmware.json #### MITRE ATT&CK T1542.002: Component Firmware (Enterprise Tactic TA0003 - Persistence / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1542-002-component-firmware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1542.002 (Component Firmware) is an Enterprise Persistence and Defense Evasion sub-technique of T1542 (Pre-OS Boot). Adversaries may modify component firmware to persist on systems. Some... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1542-002-component-firmware.json #### MITRE ATT&CK T1542.003: Bootkit (Enterprise Tactic TA0003 - Persistence / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1542-003-bootkit - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1542.003 (Bootkit) is an Enterprise Persistence and Defense Evasion sub-technique of T1542 (Pre-OS Boot). Adversaries may use bootkits to persist on systems. Bootkits reside at a layer b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1542-003-bootkit.json #### MITRE ATT&CK T1542.004: ROMMONkit (Enterprise Tactic TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1542-004-rommonkit - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1542.004 (ROMMONkit) is an Enterprise Defense Evasion and Persistence sub-technique of T1542 (Pre-OS Boot). Adversaries may abuse the ROM Monitor (ROMMON) by loading an unauthorized firm... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1542-004-rommonkit.json #### MITRE ATT&CK T1542.005: TFTP Boot (Enterprise Tactic TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1542-005-tftp-boot - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1542.005 (TFTP Boot) is an Enterprise Defense Evasion and Persistence sub-technique of T1542 (Pre-OS Boot). Adversaries may abuse netbooting to load an unauthorized network device operat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1542-005-tftp-boot.json #### MITRE ATT&CK T1542: Pre-OS Boot (Enterprise Tactic TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1542-pre-os-boot - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1542 (Pre-OS Boot) is an Enterprise Defense Evasion and Persistence technique. Adversaries may abuse Pre-OS Boot mechanisms as a way to establish persistence on a system. During the boot... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1542-pre-os-boot.json #### MITRE ATT&CK T1543.001: Launch Agent (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1543-001-launch-agent - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1543.001 (Launch Agent) is an Enterprise Persistence and Privilege Escalation sub-technique of T1543 (Create or Modify System Process). Adversaries may create or modify launch agents to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1543-001-launch-agent.json #### MITRE ATT&CK T1543.002: Systemd Service (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1543-002-systemd-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1543.002 (Systemd Service) is an Enterprise Persistence and Privilege Escalation sub-technique of T1543 (Create or Modify System Process). Adversaries may create or modify systemd servic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1543-002-systemd-service.json #### MITRE ATT&CK T1543.003: Windows Service (Sub-Technique of T1543 - Persistence + Privilege Escalation) - **ID**: mitre-attack-t1543-003-windows-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1543.003 covers adversary persistence via Windows Service creation or modification (Service Control Manager). Lateral movement frameworks (PsExec, Impacket-smbexec, Cobalt Strike) and mo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1543-003-windows-service.json #### MITRE ATT&CK T1543.004: Launch Daemon (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1543-004-launch-daemon - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1543.004 (Launch Daemon) is an Enterprise Persistence and Privilege Escalation sub-technique of T1543 (Create or Modify System Process). Adversaries may create or modify Launch Daemons t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1543-004-launch-daemon.json #### MITRE ATT&CK T1543.005: Container Service (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1543-005-container-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1543.005 (Container Service) is an Enterprise Persistence and Privilege Escalation sub-technique of T1543 (Create or Modify System Process). Adversaries may create or modify container or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1543-005-container-service.json #### MITRE ATT&CK T1543: Create or Modify System Process (Persistence + Privilege Escalation) - **ID**: mitre-attack-t1543-create-or-modify-system-process - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1543 covers adversary creation or modification of OS-level system processes for persistence and privilege escalation. Sub-techniques include Launch Agent (T1543.001 macOS), Systemd Servi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1543-create-or-modify-system-process.json #### MITRE ATT&CK T1546.001: Change Default File Association (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-001-change-default-file-association - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.001 (Change Default File Association) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persistence... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-001-change-default-file-association.json #### MITRE ATT&CK T1546.002: Screensaver (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-002-screensaver - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.002 (Screensaver) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persistence by executing malici... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-002-screensaver.json #### MITRE ATT&CK T1546.003: Windows Management Instrumentation Event Subscription (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-003-windows-management-instrumentation-event-subscription - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.003 (Windows Management Instrumentation Event Subscription) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-003-windows-management-instrumentation-event-subscription.json #### MITRE ATT&CK T1546.004: Unix Shell Configuration Modification (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-004-unix-shell-configuration-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.004 (Unix Shell Configuration Modification) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-004-unix-shell-configuration-modification.json #### MITRE ATT&CK T1546.005: Trap (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-005-trap - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.005 (Trap) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persistence by executing malicious con... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-005-trap.json #### MITRE ATT&CK T1546.006: LC_LOAD_DYLIB Addition (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-006-lc-load-dylib-addition - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.006 (LC_LOAD_DYLIB Addition) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persistence by execu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-006-lc-load-dylib-addition.json #### MITRE ATT&CK T1546.007: Netsh Helper DLL (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-007-netsh-helper-dll - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.007 (Netsh Helper DLL) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persistence by executing m... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-007-netsh-helper-dll.json #### MITRE ATT&CK T1546.008: Accessibility Features (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-008-accessibility-features - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.008 (Accessibility Features) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persistence and/or e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-008-accessibility-features.json #### MITRE ATT&CK T1546.009: AppCert DLLs (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-009-appcert-dlls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.009 (AppCert DLLs) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persistence and/or elevate pri... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-009-appcert-dlls.json #### MITRE ATT&CK T1546.010: AppInit DLLs (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-010-appinit-dlls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.010 (AppInit DLLs) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persistence and/or elevate pri... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-010-appinit-dlls.json #### MITRE ATT&CK T1546.011: Application Shimming (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-011-application-shimming - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.011 (Application Shimming) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persistence and/or ele... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-011-application-shimming.json #### MITRE ATT&CK T1546.012: Image File Execution Options Injection (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-012-image-file-execution-options-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.012 (Image File Execution Options Injection) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish pers... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-012-image-file-execution-options-injection.json #### MITRE ATT&CK T1546.013: PowerShell Profile (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-013-powershell-profile - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.013 (PowerShell Profile) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may gain persistence and elevate privi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-013-powershell-profile.json #### MITRE ATT&CK T1546.014: Emond (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-014-emond - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.014 (Emond) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may gain persistence and elevate privileges by exec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-014-emond.json #### MITRE ATT&CK T1546.015: Component Object Model Hijacking (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-015-component-object-model-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.015 (Component Object Model Hijacking) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persistenc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-015-component-object-model-hijacking.json #### MITRE ATT&CK T1546.016: Installer Packages (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-016-installer-packages - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.016 (Installer Packages) is an Enterprise Privilege Escalation and Persistence sub-technique of T1546 (Event Triggered Execution). Adversaries may establish persistence and elevate ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-016-installer-packages.json #### MITRE ATT&CK T1546.017: Udev Rules (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1546-017-udev-rules - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.017 (Udev Rules) is an Enterprise Persistence and Privilege Escalation sub-technique of T1546 (Event Triggered Execution). Adversaries may maintain persistence through executing mal... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-017-udev-rules.json #### MITRE ATT&CK T1546.018: Python Startup Hooks (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1546-018-python-startup-hooks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546.018 (Python Startup Hooks) is an Enterprise Persistence, Privilege Escalation technique. Adversaries may achieve persistence by leveraging Python’s startup mechanisms, including pat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-018-python-startup-hooks.json #### MITRE ATT&CK T1546: Event Triggered Execution (Enterprise Tactic TA0004 - Privilege Escalation / TA0003 - Persistence) - **ID**: mitre-attack-t1546-event-triggered-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1546 (Event Triggered Execution) is an Enterprise Privilege Escalation and Persistence technique. Adversaries may establish persistence and/or elevate privileges using system mechanisms ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1546-event-triggered-execution.json #### MITRE ATT&CK T1547.001: Registry Run Keys / Startup Folder (Sub-Technique of T1547 - Persistence + Privilege Escalation) - **ID**: mitre-attack-t1547-001-registry-run-keys-startup-folder - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.001 covers adversary persistence via Windows Registry Run keys (HKLM Software Microsoft Windows CurrentVersion Run/RunOnce and HKCU equivalents) and Startup folder. This is the sing... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-001-registry-run-keys-startup-folder.json #### MITRE ATT&CK T1547.002: Authentication Package (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-002-authentication-package - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.002 (Authentication Package) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may abuse authentication p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-002-authentication-package.json #### MITRE ATT&CK T1547.003: Time Providers (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-003-time-providers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.003 (Time Providers) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may abuse time providers to execut... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-003-time-providers.json #### MITRE ATT&CK T1547.004: Winlogon Helper DLL (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-004-winlogon-helper-dll - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.004 (Winlogon Helper DLL) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may abuse features of Winlogo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-004-winlogon-helper-dll.json #### MITRE ATT&CK T1547.005: Security Support Provider (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-005-security-support-provider - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.005 (Security Support Provider) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may abuse security supp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-005-security-support-provider.json #### MITRE ATT&CK T1547.006: Kernel Modules and Extensions (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-006-kernel-modules-and-extensions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.006 (Kernel Modules and Extensions) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may modify the kern... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-006-kernel-modules-and-extensions.json #### MITRE ATT&CK T1547.007: Re-opened Applications (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-007-re-opened-applications - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.007 (Re-opened Applications) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may modify plist files to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-007-re-opened-applications.json #### MITRE ATT&CK T1547.008: LSASS Driver (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-008-lsass-driver - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.008 (LSASS Driver) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may modify or add LSASS drivers to o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-008-lsass-driver.json #### MITRE ATT&CK T1547.009: Shortcut Modification (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-009-shortcut-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.009 (Shortcut Modification) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may create or modify shortc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-009-shortcut-modification.json #### MITRE ATT&CK T1547.010: Port Monitors (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-010-port-monitors - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.010 (Port Monitors) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may use port monitors to run an adv... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-010-port-monitors.json #### MITRE ATT&CK T1547.012: Print Processors (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-012-print-processors - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.012 (Print Processors) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may abuse print processors to ru... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-012-print-processors.json #### MITRE ATT&CK T1547.013: XDG Autostart Entries (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-013-xdg-autostart-entries - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.013 (XDG Autostart Entries) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may add or modify XDG Autos... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-013-xdg-autostart-entries.json #### MITRE ATT&CK T1547.014: Active Setup (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-014-active-setup - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.014 (Active Setup) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may achieve persistence by adding a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-014-active-setup.json #### MITRE ATT&CK T1547.015: Login Items (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1547-015-login-items - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547.015 (Login Items) is an Enterprise Persistence and Privilege Escalation sub-technique of T1547 (Boot or Logon Autostart Execution). Adversaries may add login items to execute upon u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-015-login-items.json #### MITRE ATT&CK T1547: Boot or Logon Autostart Execution (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1547-boot-logon-autostart-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1547 covers adversary configuration of system settings to execute malicious code automatically at boot or user logon, providing persistence. The technique has 14 sub-techniques including... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1547-boot-logon-autostart-execution.json #### MITRE ATT&CK T1548.001: Setuid and Setgid (Enterprise Tactic TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1548-001-setuid-and-setgid - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1548.001 (Setuid and Setgid) is an Enterprise Privilege Escalation and Defense Evasion sub-technique of T1548 (Abuse Elevation Control Mechanism). An adversary may abuse configurations w... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1548-001-setuid-and-setgid.json #### MITRE ATT&CK T1548.002: Bypass User Account Control (Enterprise Tactic TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1548-002-bypass-user-account-control - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1548.002 (Bypass User Account Control) is an Enterprise Privilege Escalation and Defense Evasion sub-technique of T1548 (Abuse Elevation Control Mechanism). Adversaries may bypass UAC me... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1548-002-bypass-user-account-control.json #### MITRE ATT&CK T1548.003: Sudo and Sudo Caching (Enterprise Tactic TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1548-003-sudo-and-sudo-caching - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1548.003 (Sudo and Sudo Caching) is an Enterprise Privilege Escalation and Defense Evasion sub-technique of T1548 (Abuse Elevation Control Mechanism). Adversaries may perform sudo cachin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1548-003-sudo-and-sudo-caching.json #### MITRE ATT&CK T1548.004: Elevated Execution with Prompt (Enterprise Tactic TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1548-004-elevated-execution-with-prompt - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1548.004 (Elevated Execution with Prompt) is an Enterprise Privilege Escalation and Defense Evasion sub-technique of T1548 (Abuse Elevation Control Mechanism). Adversaries may leverage t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1548-004-elevated-execution-with-prompt.json #### MITRE ATT&CK T1548.005: Temporary Elevated Cloud Access (Enterprise Tactic TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1548-005-temporary-elevated-cloud-access - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1548.005 (Temporary Elevated Cloud Access) is an Enterprise Privilege Escalation and Defense Evasion sub-technique of T1548 (Abuse Elevation Control Mechanism). Adversaries may abuse per... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1548-005-temporary-elevated-cloud-access.json #### MITRE ATT&CK T1548.006: TCC Manipulation (Enterprise Tactic TA0005 - Defense Evasion / TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1548-006-tcc-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1548.006 (TCC Manipulation) is an Enterprise Defense Evasion and Privilege Escalation sub-technique of T1548 (Abuse Elevation Control Mechanism). Adversaries can manipulate or abuse the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1548-006-tcc-manipulation.json #### MITRE ATT&CK T1548: Abuse Elevation Control Mechanism (Enterprise Tactic TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1548-abuse-elevation-control-mechanism - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1548 (Abuse Elevation Control Mechanism) is an Enterprise Privilege Escalation and Defense Evasion technique. Adversaries may circumvent mechanisms designed to control elevate privileges... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1548-abuse-elevation-control-mechanism.json #### MITRE ATT&CK T1550.001: Application Access Token (Enterprise Tactic TA0005 - Defense Evasion / TA0008 - Lateral Movement) - **ID**: mitre-attack-t1550-001-application-access-token - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1550.001 (Application Access Token) is an Enterprise Defense Evasion and Lateral Movement sub-technique of T1550 (Use Alternate Authentication Material). Adversaries may use stolen appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1550-001-application-access-token.json #### MITRE ATT&CK T1550.002: Pass the Hash (Enterprise Tactic TA0005 - Defense Evasion / TA0008 - Lateral Movement) - **ID**: mitre-attack-t1550-002-pass-the-hash - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1550.002 (Pass the Hash) is an Enterprise Defense Evasion and Lateral Movement sub-technique of T1550 (Use Alternate Authentication Material). Adversaries may "pass the hash" using stole... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1550-002-pass-the-hash.json #### MITRE ATT&CK T1550.003: Pass the Ticket (Enterprise Tactic TA0005 - Defense Evasion / TA0008 - Lateral Movement) - **ID**: mitre-attack-t1550-003-pass-the-ticket - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1550.003 (Pass the Ticket) is an Enterprise Defense Evasion and Lateral Movement sub-technique of T1550 (Use Alternate Authentication Material). Adversaries may "pass the ticket" using s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1550-003-pass-the-ticket.json #### MITRE ATT&CK T1550.004: Web Session Cookie (Enterprise Tactic TA0005 - Defense Evasion / TA0008 - Lateral Movement) - **ID**: mitre-attack-t1550-004-web-session-cookie - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1550.004 (Web Session Cookie) is an Enterprise Defense Evasion and Lateral Movement sub-technique of T1550 (Use Alternate Authentication Material). Adversaries can use stolen session coo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1550-004-web-session-cookie.json #### MITRE ATT&CK T1550: Use Alternate Authentication Material (Enterprise Tactic TA0005 - Defense Evasion / TA0008 - Lateral Movement) - **ID**: mitre-attack-t1550-use-alternate-authentication-material - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1550 (Use Alternate Authentication Material) is an Enterprise Defense Evasion and Lateral Movement technique. Adversaries may use alternate authentication material, such as password hash... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1550-use-alternate-authentication-material.json #### MITRE ATT&CK T1552.001: Credentials In Files (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1552-001-credentials-in-files - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1552.001 (Credentials In Files) is an Enterprise Credential Access sub-technique of T1552 (Unsecured Credentials). Adversaries may search local file systems and remote file shares for fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1552-001-credentials-in-files.json #### MITRE ATT&CK T1552.002: Credentials in Registry (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1552-002-credentials-in-registry - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1552.002 (Credentials in Registry) is an Enterprise Credential Access sub-technique of T1552 (Unsecured Credentials). Adversaries may search the Registry on compromised systems for insec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1552-002-credentials-in-registry.json #### MITRE ATT&CK T1552.003: Bash History (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1552-003-bash-history - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1552.003 (Bash History) is an Enterprise Credential Access sub-technique of T1552 (Unsecured Credentials). Adversaries may search the bash command history on compromised systems for inse... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1552-003-bash-history.json #### MITRE ATT&CK T1552.004: Private Keys (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1552-004-private-keys - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1552.004 (Private Keys) is an Enterprise Credential Access sub-technique of T1552 (Unsecured Credentials). Adversaries may search for private key certificate files on compromised systems... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1552-004-private-keys.json #### MITRE ATT&CK T1552.005: Cloud Instance Metadata API (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1552-005-cloud-instance-metadata-api - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1552.005 (Cloud Instance Metadata API) is an Enterprise Credential Access sub-technique of T1552 (Unsecured Credentials). Adversaries may attempt to access the Cloud Instance Metadata AP... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1552-005-cloud-instance-metadata-api.json #### MITRE ATT&CK T1552.006: Group Policy Preferences (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1552-006-group-policy-preferences - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1552.006 (Group Policy Preferences) is an Enterprise Credential Access sub-technique of T1552 (Unsecured Credentials). Adversaries may attempt to find unsecured credentials in Group Poli... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1552-006-group-policy-preferences.json #### MITRE ATT&CK T1552.007: Container API (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1552-007-container-api - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1552.007 (Container API) is an Enterprise Credential Access sub-technique of T1552 (Unsecured Credentials). Adversaries may gather credentials via APIs within a containers environment. A... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1552-007-container-api.json #### MITRE ATT&CK T1552.008: Chat Messages (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1552-008-chat-messages - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1552.008 (Chat Messages) is an Enterprise Credential Access sub-technique of T1552 (Unsecured Credentials). Adversaries may directly collect unsecured credentials stored or passed throug... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1552-008-chat-messages.json #### MITRE ATT&CK T1552: Unsecured Credentials (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1552-unsecured-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1552 (Unsecured Credentials) is an Enterprise Credential Access technique. Adversaries may search compromised systems to find and obtain insecurely stored credentials. These credentials ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1552-unsecured-credentials.json #### MITRE ATT&CK T1553.001: Gatekeeper Bypass (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1553-001-gatekeeper-bypass - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1553.001 (Gatekeeper Bypass) is an Enterprise Defense Evasion sub-technique of T1553 (Subvert Trust Controls). Adversaries may modify file attributes and subvert Gatekeeper functionality... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1553-001-gatekeeper-bypass.json #### MITRE ATT&CK T1553.002: Code Signing (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1553-002-code-signing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1553.002 (Code Signing) is an Enterprise Defense Evasion sub-technique of T1553 (Subvert Trust Controls). Adversaries may create, acquire, or steal code signing materials to sign their m... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1553-002-code-signing.json #### MITRE ATT&CK T1553.003: SIP and Trust Provider Hijacking (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1553-003-sip-and-trust-provider-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1553.003 (SIP and Trust Provider Hijacking) is an Enterprise Defense Evasion sub-technique of T1553 (Subvert Trust Controls). Adversaries may tamper with SIP and trust provider component... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1553-003-sip-and-trust-provider-hijacking.json #### MITRE ATT&CK T1553.004: Install Root Certificate (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1553-004-install-root-certificate - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1553.004 (Install Root Certificate) is an Enterprise Defense Evasion sub-technique of T1553 (Subvert Trust Controls). Adversaries may install a root certificate on a compromised system t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1553-004-install-root-certificate.json #### MITRE ATT&CK T1553.005: Mark-of-the-Web Bypass (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1553-005-mark-of-the-web-bypass - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1553.005 (Mark-of-the-Web Bypass) is an Enterprise Defense Evasion sub-technique of T1553 (Subvert Trust Controls). Adversaries may abuse specific file formats to subvert Mark-of-the-Web... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1553-005-mark-of-the-web-bypass.json #### MITRE ATT&CK T1553.006: Code Signing Policy Modification (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1553-006-code-signing-policy-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1553.006 (Code Signing Policy Modification) is an Enterprise Defense Evasion sub-technique of T1553 (Subvert Trust Controls). Adversaries may modify code signing policies to enable execu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1553-006-code-signing-policy-modification.json #### MITRE ATT&CK T1553: Subvert Trust Controls (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1553-subvert-trust-controls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1553 (Subvert Trust Controls) is an Enterprise Defense Evasion technique. Adversaries may undermine security controls that will either warn users of untrusted activity or prevent executi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1553-subvert-trust-controls.json #### MITRE ATT&CK T1554: Compromise Host Software Binary (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1554-compromise-host-software-binary - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1554 (Compromise Host Software Binary) is an Enterprise Persistence technique. Adversaries may modify host software binaries to establish persistent access to systems. Software binaries/... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1554-compromise-host-software-binary.json #### MITRE ATT&CK T1555.001: Keychain (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1555-001-keychain - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1555.001 (Keychain) is an Enterprise Credential Access sub-technique of T1555 (Credentials from Password Stores). Adversaries may acquire credentials from Keychain. Keychain (or Keychain... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1555-001-keychain.json #### MITRE ATT&CK T1555.002: Securityd Memory (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1555-002-securityd-memory - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1555.002 (Securityd Memory) is an Enterprise Credential Access sub-technique of T1555 (Credentials from Password Stores). An adversary with root access may gather credentials by reading ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1555-002-securityd-memory.json #### MITRE ATT&CK T1555.003: Credentials from Web Browsers (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1555-003-credentials-from-web-browsers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1555.003 (Credentials from Web Browsers) is an Enterprise Credential Access sub-technique of T1555 (Credentials from Password Stores). Adversaries may acquire credentials from web browse... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1555-003-credentials-from-web-browsers.json #### MITRE ATT&CK T1555.004: Windows Credential Manager (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1555-004-windows-credential-manager - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1555.004 (Windows Credential Manager) is an Enterprise Credential Access sub-technique of T1555 (Credentials from Password Stores). Adversaries may acquire credentials from the Windows C... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1555-004-windows-credential-manager.json #### MITRE ATT&CK T1555.005: Password Managers (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1555-005-password-managers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1555.005 (Password Managers) is an Enterprise Credential Access sub-technique of T1555 (Credentials from Password Stores). Adversaries may acquire user credentials from third-party passw... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1555-005-password-managers.json #### MITRE ATT&CK T1555.006: Cloud Secrets Management Stores (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1555-006-cloud-secrets-management-stores - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1555.006 (Cloud Secrets Management Stores) is an Enterprise Credential Access sub-technique of T1555 (Credentials from Password Stores). Adversaries may acquire credentials from cloud-na... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1555-006-cloud-secrets-management-stores.json #### MITRE ATT&CK T1555: Credentials from Password Stores (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1555-credentials-from-password-stores - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1555 covers adversary access to credentials stored in browsers, password managers, and OS credential stores. Sub-techniques include Keychain (T1555.001), Securityd Memory (T1555.002), Cr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1555-credentials-from-password-stores.json #### MITRE ATT&CK T1556.001: Domain Controller Authentication (Enterprise Tactic TA0006 - Credential Access / TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1556-001-domain-controller-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1556.001 (Domain Controller Authentication) is an Enterprise Credential Access and Defense Evasion and Persistence sub-technique of T1556 (Modify Authentication Process). Adversaries may... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1556-001-domain-controller-authentication.json #### MITRE ATT&CK T1556.002: Password Filter DLL (Enterprise Tactic TA0006 - Credential Access / TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1556-002-password-filter-dll - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1556.002 (Password Filter DLL) is an Enterprise Credential Access and Defense Evasion and Persistence sub-technique of T1556 (Modify Authentication Process). Adversaries may register mal... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1556-002-password-filter-dll.json #### MITRE ATT&CK T1556.003: Pluggable Authentication Modules (Enterprise Tactic TA0006 - Credential Access / TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1556-003-pluggable-authentication-modules - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1556.003 (Pluggable Authentication Modules) is an Enterprise Credential Access and Defense Evasion and Persistence sub-technique of T1556 (Modify Authentication Process). Adversaries may... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1556-003-pluggable-authentication-modules.json #### MITRE ATT&CK T1556.004: Network Device Authentication (Enterprise Tactic TA0006 - Credential Access / TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1556-004-network-device-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1556.004 (Network Device Authentication) is an Enterprise Credential Access and Defense Evasion and Persistence sub-technique of T1556 (Modify Authentication Process). Adversaries may us... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1556-004-network-device-authentication.json #### MITRE ATT&CK T1556.005: Reversible Encryption (Enterprise Tactic TA0006 - Credential Access / TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1556-005-reversible-encryption - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1556.005 (Reversible Encryption) is an Enterprise Credential Access and Defense Evasion and Persistence sub-technique of T1556 (Modify Authentication Process). An adversary may abuse Act... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1556-005-reversible-encryption.json #### MITRE ATT&CK T1556.006: Multi-Factor Authentication (Enterprise Tactic TA0006 - Credential Access / TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1556-006-multi-factor-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1556.006 (Multi-Factor Authentication) is an Enterprise Credential Access and Defense Evasion and Persistence sub-technique of T1556 (Modify Authentication Process). Adversaries may disa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1556-006-multi-factor-authentication.json #### MITRE ATT&CK T1556.007: Hybrid Identity (Enterprise Tactic TA0006 - Credential Access / TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1556-007-hybrid-identity - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1556.007 (Hybrid Identity) is an Enterprise Credential Access and Defense Evasion and Persistence sub-technique of T1556 (Modify Authentication Process). Adversaries may patch, modify, o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1556-007-hybrid-identity.json #### MITRE ATT&CK T1556.008: Network Provider DLL (Enterprise Tactic TA0006 - Credential Access / TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1556-008-network-provider-dll - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1556.008 (Network Provider DLL) is an Enterprise Credential Access and Defense Evasion and Persistence sub-technique of T1556 (Modify Authentication Process). Adversaries may register ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1556-008-network-provider-dll.json #### MITRE ATT&CK T1556.009: Conditional Access Policies (Enterprise Tactic TA0006 - Credential Access / TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1556-009-conditional-access-policies - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1556.009 (Conditional Access Policies) is an Enterprise Credential Access and Defense Evasion and Persistence sub-technique of T1556 (Modify Authentication Process). Adversaries may disa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1556-009-conditional-access-policies.json #### MITRE ATT&CK T1556: Modify Authentication Process (Enterprise Tactic TA0006 - Credential Access / TA0005 - Defense Evasion / TA0003 - Persistence) - **ID**: mitre-attack-t1556-modify-authentication-process - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1556 (Modify Authentication Process) is an Enterprise Credential Access and Defense Evasion and Persistence technique. Adversaries may modify authentication mechanisms and processes to a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1556-modify-authentication-process.json #### MITRE ATT&CK T1557.001: LLMNR/NBT-NS Poisoning and SMB Relay (Enterprise Tactic TA0006 - Credential Access / TA0009 - Collection) - **ID**: mitre-attack-t1557-001-llmnr-nbt-ns-poisoning-and-smb-relay - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1557.001 (LLMNR/NBT-NS Poisoning and SMB Relay) is an Enterprise Credential Access and Collection sub-technique of T1557 (Adversary-in-the-Middle). By responding to LLMNR/NBT-NS network ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1557-001-llmnr-nbt-ns-poisoning-and-smb-relay.json #### MITRE ATT&CK T1557.002: ARP Cache Poisoning (Enterprise Tactic TA0006 - Credential Access / TA0009 - Collection) - **ID**: mitre-attack-t1557-002-arp-cache-poisoning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1557.002 (ARP Cache Poisoning) is an Enterprise Credential Access and Collection sub-technique of T1557 (Adversary-in-the-Middle). Adversaries may poison Address Resolution Protocol (ARP... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1557-002-arp-cache-poisoning.json #### MITRE ATT&CK T1557.003: DHCP Spoofing (Enterprise Tactic TA0006 - Credential Access / TA0009 - Collection) - **ID**: mitre-attack-t1557-003-dhcp-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1557.003 (DHCP Spoofing) is an Enterprise Credential Access and Collection sub-technique of T1557 (Adversary-in-the-Middle). Adversaries may redirect network traffic to adversary-owned s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1557-003-dhcp-spoofing.json #### MITRE ATT&CK T1557.004: Evil Twin (Enterprise Tactic TA0006 - Credential Access / TA0009 - Collection) - **ID**: mitre-attack-t1557-004-evil-twin - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1557.004 (Evil Twin) is an Enterprise Credential Access and Collection sub-technique of T1557 (Adversary-in-the-Middle). Adversaries may host seemingly genuine Wi-Fi access points to dec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1557-004-evil-twin.json #### MITRE ATT&CK T1557: Adversary-in-the-Middle (Enterprise Tactic TA0006 - Credential Access / TA0009 - Collection) - **ID**: mitre-attack-t1557-adversary-in-the-middle - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1557 (Adversary-in-the-Middle) is an Enterprise Credential Access and Collection technique. Adversaries may attempt to position themselves between two or more networked devices using an ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1557-adversary-in-the-middle.json #### MITRE ATT&CK T1558.001: Golden Ticket (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1558-001-golden-ticket - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1558.001 (Golden Ticket) is an Enterprise Credential Access sub-technique of T1558 (Steal or Forge Kerberos Tickets). Adversaries who have the KRBTGT account password hash may forge Kerb... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1558-001-golden-ticket.json #### MITRE ATT&CK T1558.002: Silver Ticket (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1558-002-silver-ticket - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1558.002 (Silver Ticket) is an Enterprise Credential Access sub-technique of T1558 (Steal or Forge Kerberos Tickets). Adversaries who have the password hash of a target service account (... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1558-002-silver-ticket.json #### MITRE ATT&CK T1558.003: Kerberoasting (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1558-003-kerberoasting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1558.003 (Kerberoasting) is an Enterprise Credential Access sub-technique of T1558 (Steal or Forge Kerberos Tickets). Adversaries may abuse a valid Kerberos ticket-granting ticket (TGT) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1558-003-kerberoasting.json #### MITRE ATT&CK T1558.004: AS-REP Roasting (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1558-004-as-rep-roasting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1558.004 (AS-REP Roasting) is an Enterprise Credential Access sub-technique of T1558 (Steal or Forge Kerberos Tickets). Adversaries may reveal credentials of accounts that have disabled ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1558-004-as-rep-roasting.json #### MITRE ATT&CK T1558.005: Ccache Files (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1558-005-ccache-files - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1558.005 (Ccache Files) is an Enterprise Credential Access sub-technique of T1558 (Steal or Forge Kerberos Tickets). Adversaries may attempt to steal Kerberos tickets stored in credentia... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1558-005-ccache-files.json #### MITRE ATT&CK T1558: Steal or Forge Kerberos Tickets (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1558-steal-or-forge-kerberos-tickets - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1558 (Steal or Forge Kerberos Tickets) is an Enterprise Credential Access technique. Adversaries may attempt to subvert Kerberos authentication by stealing or forging Kerberos tickets to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1558-steal-or-forge-kerberos-tickets.json #### MITRE ATT&CK T1559.001: Component Object Model (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1559-001-component-object-model - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1559.001 (Component Object Model) is an Enterprise Execution sub-technique of T1559 (Inter-Process Communication). Adversaries may use the Windows Component Object Model (COM) for local ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1559-001-component-object-model.json #### MITRE ATT&CK T1559.002: Dynamic Data Exchange (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1559-002-dynamic-data-exchange - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1559.002 (Dynamic Data Exchange) is an Enterprise Execution sub-technique of T1559 (Inter-Process Communication). Adversaries may use Windows Dynamic Data Exchange (DDE) to execute arbit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1559-002-dynamic-data-exchange.json #### MITRE ATT&CK T1559.003: XPC Services (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1559-003-xpc-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1559.003 (XPC Services) is an Enterprise Execution sub-technique of T1559 (Inter-Process Communication). Adversaries can provide malicious content to an XPC service daemon for local code... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1559-003-xpc-services.json #### MITRE ATT&CK T1559: Inter-Process Communication (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1559-inter-process-communication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1559 (Inter-Process Communication) is an Enterprise Execution technique. Adversaries may abuse inter-process communication (IPC) mechanisms for local code or command execution. IPC is ty... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1559-inter-process-communication.json #### MITRE ATT&CK T1560.001: Archive via Utility (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1560-001-archive-via-utility - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1560.001 (Archive via Utility) is an Enterprise Collection sub-technique of T1560 (Archive Collected Data). Adversaries may use utilities to compress and/or encrypt collected data prior ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1560-001-archive-via-utility.json #### MITRE ATT&CK T1560.002: Archive via Library (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1560-002-archive-via-library - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1560.002 (Archive via Library) is an Enterprise Collection sub-technique of T1560 (Archive Collected Data). An adversary may compress or encrypt data that is collected prior to exfiltrat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1560-002-archive-via-library.json #### MITRE ATT&CK T1560.003: Archive via Custom Method (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1560-003-archive-via-custom-method - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1560.003 (Archive via Custom Method) is an Enterprise Collection sub-technique of T1560 (Archive Collected Data). An adversary may compress or encrypt data that is collected prior to exf... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1560-003-archive-via-custom-method.json #### MITRE ATT&CK T1560: Archive Collected Data (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1560-archive-collected-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1560 (Archive Collected Data) is an Enterprise Collection technique. An adversary may compress and/or encrypt data that is collected prior to exfiltration. Compressing the data can help ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1560-archive-collected-data.json #### MITRE ATT&CK T1561.001: Disk Content Wipe (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1561-001-disk-content-wipe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1561.001 (Disk Content Wipe) is an Enterprise Impact sub-technique of T1561 (Disk Wipe). Adversaries may erase the contents of storage devices on specific systems or in large numbers in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1561-001-disk-content-wipe.json #### MITRE ATT&CK T1561.002: Disk Structure Wipe (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1561-002-disk-structure-wipe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1561.002 (Disk Structure Wipe) is an Enterprise Impact sub-technique of T1561 (Disk Wipe). Adversaries may corrupt or wipe the disk data structures on a hard drive necessary to boot a sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1561-002-disk-structure-wipe.json #### MITRE ATT&CK T1561: Disk Wipe (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1561-disk-wipe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1561 (Disk Wipe) is an Enterprise Impact technique. Adversaries may wipe or corrupt raw disk data on specific systems or in large numbers in a network to interrupt availability to system... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1561-disk-wipe.json #### MITRE ATT&CK T1562.001: Disable or Modify Tools (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1562-001-disable-or-modify-tools - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1562.001 (Disable or Modify Tools) is an Enterprise Defense Evasion sub-technique of T1562 (Impair Defenses). Adversaries may modify and/or disable security tools to avoid possible detec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1562-001-disable-or-modify-tools.json #### MITRE ATT&CK T1562.002: Disable Windows Event Logging (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1562-002-disable-windows-event-logging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1562.002 (Disable Windows Event Logging) is an Enterprise Defense Evasion sub-technique of T1562 (Impair Defenses). Adversaries may disable Windows event logging to limit data that can b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1562-002-disable-windows-event-logging.json #### MITRE ATT&CK T1562.003: Impair Command History Logging (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1562-003-impair-command-history-logging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1562.003 (Impair Command History Logging) is an Enterprise Defense Evasion sub-technique of T1562 (Impair Defenses). Adversaries may impair command history logging to hide commands they ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1562-003-impair-command-history-logging.json #### MITRE ATT&CK T1562.004: Disable or Modify System Firewall (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1562-004-disable-or-modify-system-firewall - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1562.004 (Disable or Modify System Firewall) is an Enterprise Defense Evasion sub-technique of T1562 (Impair Defenses). Adversaries may disable or modify system firewalls in order to byp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1562-004-disable-or-modify-system-firewall.json #### MITRE ATT&CK T1562.006: Indicator Blocking (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1562-006-indicator-blocking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1562.006 (Indicator Blocking) is an Enterprise Defense Evasion sub-technique of T1562 (Impair Defenses). An adversary may attempt to block indicators or events typically captured by sens... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1562-006-indicator-blocking.json #### MITRE ATT&CK T1562.007: Disable or Modify Cloud Firewall (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1562-007-disable-or-modify-cloud-firewall - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1562.007 (Disable or Modify Cloud Firewall) is an Enterprise Defense Evasion sub-technique of T1562 (Impair Defenses). Adversaries may disable or modify a firewall within a cloud environ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1562-007-disable-or-modify-cloud-firewall.json #### MITRE ATT&CK T1562.008: Disable or Modify Cloud Logs (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1562-008-disable-or-modify-cloud-logs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1562.008 (Disable or Modify Cloud Logs) is an Enterprise Defense Evasion sub-technique of T1562 (Impair Defenses). An adversary may disable or modify cloud logging capabilities and integ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1562-008-disable-or-modify-cloud-logs.json #### MITRE ATT&CK T1562.009: Safe Mode Boot (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1562-009-safe-mode-boot - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1562.009 (Safe Mode Boot) is an Enterprise Defense Evasion sub-technique of T1562 (Impair Defenses). Adversaries may abuse Windows safe mode to disable endpoint defenses. Safe mode start... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1562-009-safe-mode-boot.json #### MITRE ATT&CK T1562.010: Downgrade Attack (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1562-010-downgrade-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1562.010 (Downgrade Attack) is an Enterprise Defense Evasion sub-technique of T1562 (Impair Defenses). Adversaries may downgrade or use a version of system features that may be outdated,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1562-010-downgrade-attack.json #### MITRE ATT&CK T1562.011: Spoof Security Alerting (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1562-011-spoof-security-alerting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1562.011 (Spoof Security Alerting) is an Enterprise Defense Evasion sub-technique of T1562 (Impair Defenses). Adversaries may spoof security alerting from tools, presenting false evidenc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1562-011-spoof-security-alerting.json #### MITRE ATT&CK T1562.012: Disable or Modify Linux Audit System (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1562-012-disable-or-modify-linux-audit-system - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1562.012 (Disable or Modify Linux Audit System) is an Enterprise Defense Evasion sub-technique of T1562 (Impair Defenses). Adversaries may disable or modify the Linux audit system to hid... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1562-012-disable-or-modify-linux-audit-system.json #### MITRE ATT&CK T1563.001: SSH Hijacking (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1563-001-ssh-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1563.001 (SSH Hijacking) is an Enterprise Lateral Movement sub-technique of T1563 (Remote Service Session Hijacking). Adversaries may hijack a legitimate user's SSH session to move later... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1563-001-ssh-hijacking.json #### MITRE ATT&CK T1563.002: RDP Hijacking (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1563-002-rdp-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1563.002 (RDP Hijacking) is an Enterprise Lateral Movement sub-technique of T1563 (Remote Service Session Hijacking). Adversaries may hijack a legitimate user's remote desktop session to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1563-002-rdp-hijacking.json #### MITRE ATT&CK T1563: Remote Service Session Hijacking (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1563-remote-service-session-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1563 (Remote Service Session Hijacking) is an Enterprise Lateral Movement technique. Adversaries may take control of preexisting sessions with remote services to move laterally in an env... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1563-remote-service-session-hijacking.json #### MITRE ATT&CK T1564.001: Hidden Files and Directories (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-001-hidden-files-and-directories - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.001 (Hidden Files and Directories) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may set files and directories to be hidden to evade detectio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-001-hidden-files-and-directories.json #### MITRE ATT&CK T1564.002: Hidden Users (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-002-hidden-users - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.002 (Hidden Users) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may use hidden users to hide the presence of user accounts they create or mo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-002-hidden-users.json #### MITRE ATT&CK T1564.003: Hidden Window (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-003-hidden-window - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.003 (Hidden Window) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may use hidden windows to conceal malicious activity from the plain sight o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-003-hidden-window.json #### MITRE ATT&CK T1564.004: NTFS File Attributes (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-004-ntfs-file-attributes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.004 (NTFS File Attributes) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may use NTFS file attributes to hide their malicious data in order t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-004-ntfs-file-attributes.json #### MITRE ATT&CK T1564.005: Hidden File System (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-005-hidden-file-system - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.005 (Hidden File System) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may use a hidden file system to conceal malicious activity from users ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-005-hidden-file-system.json #### MITRE ATT&CK T1564.006: Run Virtual Instance (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-006-run-virtual-instance - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.006 (Run Virtual Instance) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may carry out malicious operations using a virtual instance to avoid... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-006-run-virtual-instance.json #### MITRE ATT&CK T1564.007: VBA Stomping (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-007-vba-stomping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.007 (VBA Stomping) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may hide malicious Visual Basic for Applications (VBA) payloads embedded wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-007-vba-stomping.json #### MITRE ATT&CK T1564.008: Email Hiding Rules (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-008-email-hiding-rules - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.008 (Email Hiding Rules) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may use email rules to hide inbound emails in a compromised user's mai... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-008-email-hiding-rules.json #### MITRE ATT&CK T1564.009: Resource Forking (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-009-resource-forking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.009 (Resource Forking) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may abuse resource forks to hide malicious code or executables to evade ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-009-resource-forking.json #### MITRE ATT&CK T1564.010: Process Argument Spoofing (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-010-process-argument-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.010 (Process Argument Spoofing) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may attempt to hide process command-line arguments by overwriti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-010-process-argument-spoofing.json #### MITRE ATT&CK T1564.011: Ignore Process Interrupts (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-011-ignore-process-interrupts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.011 (Ignore Process Interrupts) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may evade defensive mechanisms by executing commands that hide ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-011-ignore-process-interrupts.json #### MITRE ATT&CK T1564.012: File/Path Exclusions (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-012-file-path-exclusions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.012 (File/Path Exclusions) is an Enterprise Defense Evasion sub-technique of T1564 (Hide Artifacts). Adversaries may attempt to hide their file-based artifacts by writing them to sp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-012-file-path-exclusions.json #### MITRE ATT&CK T1564.013: Bind Mounts (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1564-013-bind-mounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.013 (Bind Mounts) is an Enterprise Stealth technique. Adversaries may abuse bind mounts on file structures to hide their activity and artifacts from native utilities. A bind mount m... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-013-bind-mounts.json #### MITRE ATT&CK T1564.014: Extended Attributes (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1564-014-extended-attributes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564.014 (Extended Attributes) is an Enterprise Stealth technique. Adversaries may abuse extended attributes (xattrs) on macOS and Linux to hide their malicious data in order to evade de... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-014-extended-attributes.json #### MITRE ATT&CK T1564: Hide Artifacts (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1564-hide-artifacts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1564 (Hide Artifacts) is an Enterprise Defense Evasion technique. Adversaries may attempt to hide artifacts associated with their behaviors to evade detection. Operating systems may have... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1564-hide-artifacts.json #### MITRE ATT&CK T1565.001: Stored Data Manipulation (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1565-001-stored-data-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1565.001 (Stored Data Manipulation) is an Enterprise Impact sub-technique of T1565 (Data Manipulation). Adversaries may insert, delete, or manipulate data at rest in order to influence e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1565-001-stored-data-manipulation.json #### MITRE ATT&CK T1565.002: Transmitted Data Manipulation (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1565-002-transmitted-data-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1565.002 (Transmitted Data Manipulation) is an Enterprise Impact sub-technique of T1565 (Data Manipulation). Adversaries may alter data en route to storage or other systems in order to m... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1565-002-transmitted-data-manipulation.json #### MITRE ATT&CK T1565.003: Runtime Data Manipulation (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1565-003-runtime-data-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1565.003 (Runtime Data Manipulation) is an Enterprise Impact sub-technique of T1565 (Data Manipulation). Adversaries may modify systems in order to manipulate the data as it is accessed ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1565-003-runtime-data-manipulation.json #### MITRE ATT&CK T1565: Data Manipulation (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1565-data-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1565 (Data Manipulation) is an Enterprise Impact technique. Adversaries may insert, delete, or manipulate data in order to influence external outcomes or hide activity, thus threatening ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1565-data-manipulation.json #### MITRE ATT&CK T1566.001: Spearphishing Attachment (Sub-Technique of T1566 - Initial Access) - **ID**: mitre-attack-t1566-001-spearphishing-attachment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1566.001 covers adversary delivery of malicious files via email attachments to trick users into execution. Office documents with malicious macros, OLE objects, ISO/IMG containers bypassi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1566-001-spearphishing-attachment.json #### MITRE ATT&CK T1566.002: Spearphishing Link (Sub-Technique of T1566 - Initial Access) - **ID**: mitre-attack-t1566-002-spearphishing-link - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1566.002 covers adversary delivery of malicious URLs via email to phish credentials or deliver malware. Modern attackers use look-alike domains, recently-registered domains, URL shortene... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1566-002-spearphishing-link.json #### MITRE ATT&CK T1566.003: Spearphishing via Service (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1566-003-spearphishing-via-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1566.003 (Spearphishing via Service) is an Enterprise Initial Access sub-technique of T1566 (Phishing). Adversaries may send spearphishing messages via third-party services in an attempt... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1566-003-spearphishing-via-service.json #### MITRE ATT&CK T1566.004: Spearphishing Voice (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1566-004-spearphishing-voice - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1566.004 (Spearphishing Voice) is an Enterprise Initial Access sub-technique of T1566 (Phishing). Adversaries may use voice communications to ultimately gain access to victim systems. Sp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1566-004-spearphishing-voice.json #### MITRE ATT&CK T1566: Phishing (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1566-phishing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1566 (Phishing) describes adversary delivery of malicious content via electronic messages (email, instant messenger, SMS) to gain initial access. The technique has four sub-techniques: T... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1566-phishing.json #### MITRE ATT&CK T1567.001: Exfiltration to Code Repository (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1567-001-exfiltration-to-code-repository - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1567.001 (Exfiltration to Code Repository) is an Enterprise Exfiltration sub-technique of T1567 (Exfiltration Over Web Service). Adversaries may exfiltrate data to a code repository rath... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1567-001-exfiltration-to-code-repository.json #### MITRE ATT&CK T1567.002: Exfiltration to Cloud Storage (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1567-002-exfiltration-to-cloud-storage - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1567.002 (Exfiltration to Cloud Storage) is an Enterprise Exfiltration sub-technique of T1567 (Exfiltration Over Web Service). Adversaries may exfiltrate data to a cloud storage service ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1567-002-exfiltration-to-cloud-storage.json #### MITRE ATT&CK T1567.003: Exfiltration to Text Storage Sites (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1567-003-exfiltration-to-text-storage-sites - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1567.003 (Exfiltration to Text Storage Sites) is an Enterprise Exfiltration sub-technique of T1567 (Exfiltration Over Web Service). Adversaries may exfiltrate data to text storage sites ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1567-003-exfiltration-to-text-storage-sites.json #### MITRE ATT&CK T1567.004: Exfiltration Over Webhook (Enterprise Tactic TA0010 - Exfiltration) - **ID**: mitre-attack-t1567-004-exfiltration-over-webhook - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1567.004 (Exfiltration Over Webhook) is an Enterprise Exfiltration sub-technique of T1567 (Exfiltration Over Web Service). Adversaries may exfiltrate data to a webhook endpoint rather th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1567-004-exfiltration-over-webhook.json #### MITRE ATT&CK T1567: Exfiltration Over Web Service (Exfiltration) - **ID**: mitre-attack-t1567-exfiltration-over-web-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1567 covers adversary exfiltration of stolen data via legitimate web services (cloud storage, code-sharing sites, paste sites) to blend with normal SaaS use. Sub-techniques: Exfiltration... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1567-exfiltration-over-web-service.json #### MITRE ATT&CK T1568.001: Fast Flux DNS (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1568-001-fast-flux-dns - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1568.001 (Fast Flux DNS) is an Enterprise Command and Control sub-technique of T1568 (Dynamic Resolution). Adversaries may use Fast Flux DNS to hide a command and control channel behind ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1568-001-fast-flux-dns.json #### MITRE ATT&CK T1568.002: Domain Generation Algorithms (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1568-002-domain-generation-algorithms - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1568.002 (Domain Generation Algorithms) is an Enterprise Command and Control sub-technique of T1568 (Dynamic Resolution). Adversaries may make use of Domain Generation Algorithms (DGAs) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1568-002-domain-generation-algorithms.json #### MITRE ATT&CK T1568.003: DNS Calculation (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1568-003-dns-calculation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1568.003 (DNS Calculation) is an Enterprise Command and Control sub-technique of T1568 (Dynamic Resolution). Adversaries may perform calculations on addresses returned in DNS results to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1568-003-dns-calculation.json #### MITRE ATT&CK T1568: Dynamic Resolution (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1568-dynamic-resolution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1568 (Dynamic Resolution) is an Enterprise Command and Control technique. Adversaries may dynamically establish connections to command and control infrastructure to evade common detectio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1568-dynamic-resolution.json #### MITRE ATT&CK T1569.001: Launchctl (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1569-001-launchctl - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1569.001 (Launchctl) is an Enterprise Execution sub-technique of T1569 (System Services). Adversaries may abuse launchctl to execute commands or programs. Launchctl interfaces with launc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1569-001-launchctl.json #### MITRE ATT&CK T1569.002: Service Execution (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1569-002-service-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1569.002 (Service Execution) is an Enterprise Execution sub-technique of T1569 (System Services). Adversaries may abuse the Windows service control manager to execute malicious commands ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1569-002-service-execution.json #### MITRE ATT&CK T1569.003: Systemctl (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1569-003-systemctl - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1569.003 (Systemctl) is an Enterprise Execution technique. Adversaries may abuse systemctl to execute commands or programs. Systemctl is the primary interface for systemd, the Linux init... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1569-003-systemctl.json #### MITRE ATT&CK T1569: System Services (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1569-system-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1569 (System Services) is an Enterprise Execution technique. Adversaries may abuse system services or daemons to execute commands or programs. Adversaries can execute malicious content b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1569-system-services.json #### MITRE ATT&CK T1570: Lateral Tool Transfer (Enterprise Tactic TA0008 - Lateral Movement) - **ID**: mitre-attack-t1570-lateral-tool-transfer - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1570 describes adversary transfer of tools or files between systems in a compromised environment to enable continued post-exploitation. Common methods include SMB/admin shares, RDP file ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1570-lateral-tool-transfer.json #### MITRE ATT&CK T1571: Non-Standard Port (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1571-non-standard-port - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1571 (Non-Standard Port) is an Enterprise Command and Control technique. Adversaries may communicate using a protocol and port pairing that are typically not associated. For example, HTT... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1571-non-standard-port.json #### MITRE ATT&CK T1572: Protocol Tunneling (Command and Control) - **ID**: mitre-attack-t1572-protocol-tunneling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1572 covers adversary tunneling of one protocol inside another to evade network controls. SSH tunneling for SOCKS proxy, HTTP/HTTPS tunneling for arbitrary TCP, DNS tunneling (iodine, dn... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1572-protocol-tunneling.json #### MITRE ATT&CK T1573.001: Symmetric Cryptography (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1573-001-symmetric-cryptography - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1573.001 (Symmetric Cryptography) is an Enterprise Command and Control sub-technique of T1573 (Encrypted Channel). Adversaries may employ a known symmetric encryption algorithm to concea... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1573-001-symmetric-cryptography.json #### MITRE ATT&CK T1573.002: Asymmetric Cryptography (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1573-002-asymmetric-cryptography - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1573.002 (Asymmetric Cryptography) is an Enterprise Command and Control sub-technique of T1573 (Encrypted Channel). Adversaries may employ a known asymmetric encryption algorithm to conc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1573-002-asymmetric-cryptography.json #### MITRE ATT&CK T1573: Encrypted Channel (Command and Control) - **ID**: mitre-attack-t1573-encrypted-channel - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1573 covers adversary use of symmetric or asymmetric encryption for command-and-control communication to evade network inspection. Sub-techniques: Symmetric Cryptography (T1573.001), Asy... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1573-encrypted-channel.json #### MITRE ATT&CK T1574.001: DLL Search Order Hijacking (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-001-dll-search-order-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.001 (DLL Search Order Hijacking) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Adversaries may execute th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-001-dll-search-order-hijacking.json #### MITRE ATT&CK T1574.002: DLL Side-Loading (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-002-dll-side-loading - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.002 (DLL Side-Loading) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Adversaries may execute their own ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-002-dll-side-loading.json #### MITRE ATT&CK T1574.004: Dylib Hijacking (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-004-dylib-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.004 (Dylib Hijacking) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Adversaries may execute their own pay... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-004-dylib-hijacking.json #### MITRE ATT&CK T1574.005: Executable Installer File Permissions Weakness (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-005-executable-installer-file-permissions-weakness - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.005 (Executable Installer File Permissions Weakness) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Advers... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-005-executable-installer-file-permissions-weakness.json #### MITRE ATT&CK T1574.006: Dynamic Linker Hijacking (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-006-dynamic-linker-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.006 (Dynamic Linker Hijacking) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Adversaries may execute thei... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-006-dynamic-linker-hijacking.json #### MITRE ATT&CK T1574.007: Path Interception by PATH Environment Variable (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-007-path-interception-by-path-environment-variable - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.007 (Path Interception by PATH Environment Variable) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Advers... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-007-path-interception-by-path-environment-variable.json #### MITRE ATT&CK T1574.008: Path Interception by Search Order Hijacking (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-008-path-interception-by-search-order-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.008 (Path Interception by Search Order Hijacking) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Adversari... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-008-path-interception-by-search-order-hijacking.json #### MITRE ATT&CK T1574.009: Path Interception by Unquoted Path (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-009-path-interception-by-unquoted-path - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.009 (Path Interception by Unquoted Path) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Adversaries may ex... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-009-path-interception-by-unquoted-path.json #### MITRE ATT&CK T1574.010: Services File Permissions Weakness (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-010-services-file-permissions-weakness - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.010 (Services File Permissions Weakness) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Adversaries may ex... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-010-services-file-permissions-weakness.json #### MITRE ATT&CK T1574.011: Services Registry Permissions Weakness (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-011-services-registry-permissions-weakness - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.011 (Services Registry Permissions Weakness) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Adversaries ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-011-services-registry-permissions-weakness.json #### MITRE ATT&CK T1574.012: COR_PROFILER (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-012-cor-profiler - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.012 (COR_PROFILER) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Adversaries may leverage the COR_PROFILE... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-012-cor-profiler.json #### MITRE ATT&CK T1574.013: KernelCallbackTable (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-013-kernelcallbacktable - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.013 (KernelCallbackTable) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Adversaries may abuse the KernelC... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-013-kernelcallbacktable.json #### MITRE ATT&CK T1574.014: AppDomainManager (Enterprise Tactic TA0003 - Persistence / TA0004 - Privilege Escalation / TA0005 - Defense Evasion) - **ID**: mitre-attack-t1574-014-appdomainmanager - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574.014 (AppDomainManager) is an Enterprise Persistence and Privilege Escalation and Defense Evasion sub-technique of T1574 (Hijack Execution Flow). Adversaries may execute their own ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-014-appdomainmanager.json #### MITRE ATT&CK T1574: Hijack Execution Flow (Persistence + Privilege Escalation + Defense Evasion) - **ID**: mitre-attack-t1574-hijack-execution-flow - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1574 covers adversary hijacking of legitimate program execution flow to load malicious code. Sub-techniques include DLL Side-Loading (T1574.002), DLL Search Order Hijacking (T1574.001), ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1574-hijack-execution-flow.json #### MITRE ATT&CK T1578.001: Create Snapshot (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1578-001-create-snapshot - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1578.001 (Create Snapshot) is an Enterprise Defense Evasion sub-technique of T1578 (Modify Cloud Compute Infrastructure). An adversary may create a snapshot or data backup within a cloud... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1578-001-create-snapshot.json #### MITRE ATT&CK T1578.002: Create Cloud Instance (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1578-002-create-cloud-instance - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1578.002 (Create Cloud Instance) is an Enterprise Defense Evasion sub-technique of T1578 (Modify Cloud Compute Infrastructure). An adversary may create a new instance or virtual machine ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1578-002-create-cloud-instance.json #### MITRE ATT&CK T1578.003: Delete Cloud Instance (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1578-003-delete-cloud-instance - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1578.003 (Delete Cloud Instance) is an Enterprise Defense Evasion sub-technique of T1578 (Modify Cloud Compute Infrastructure). An adversary may delete a cloud instance after they have p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1578-003-delete-cloud-instance.json #### MITRE ATT&CK T1578.004: Revert Cloud Instance (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1578-004-revert-cloud-instance - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1578.004 (Revert Cloud Instance) is an Enterprise Defense Evasion sub-technique of T1578 (Modify Cloud Compute Infrastructure). An adversary may revert changes made to a cloud instance a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1578-004-revert-cloud-instance.json #### MITRE ATT&CK T1578.005: Modify Cloud Compute Configurations (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1578-005-modify-cloud-compute-configurations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1578.005 (Modify Cloud Compute Configurations) is an Enterprise Defense Evasion sub-technique of T1578 (Modify Cloud Compute Infrastructure). Adversaries may modify settings that directl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1578-005-modify-cloud-compute-configurations.json #### MITRE ATT&CK T1578: Modify Cloud Compute Infrastructure (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1578-modify-cloud-compute-infrastructure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1578 (Modify Cloud Compute Infrastructure) is an Enterprise Defense Evasion technique. An adversary may attempt to modify a cloud account's compute service infrastructure to evade defens... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1578-modify-cloud-compute-infrastructure.json #### MITRE ATT&CK T1580: Cloud Infrastructure Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1580-cloud-infrastructure-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1580 (Cloud Infrastructure Discovery) is an Enterprise Discovery technique. An adversary may attempt to discover infrastructure and resources that are available within an infrastructure-... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1580-cloud-infrastructure-discovery.json #### MITRE ATT&CK T1583.001: Domains (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1583-001-domains - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1583.001 (Domains) is an Enterprise Resource Development sub-technique of T1583 (Acquire Infrastructure). Adversaries may acquire domains that can be used during targeting. Domain names ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1583-001-domains.json #### MITRE ATT&CK T1583.002: DNS Server (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1583-002-dns-server - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1583.002 (DNS Server) is an Enterprise Resource Development sub-technique of T1583 (Acquire Infrastructure). Adversaries may set up their own Domain Name System (DNS) servers that can be... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1583-002-dns-server.json #### MITRE ATT&CK T1583.003: Virtual Private Server (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1583-003-virtual-private-server - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1583.003 (Virtual Private Server) is an Enterprise Resource Development sub-technique of T1583 (Acquire Infrastructure). Adversaries may rent Virtual Private Servers (VPSs) that can be u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1583-003-virtual-private-server.json #### MITRE ATT&CK T1583.004: Server (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1583-004-server - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1583.004 (Server) is an Enterprise Resource Development sub-technique of T1583 (Acquire Infrastructure). Adversaries may buy, lease, rent, or obtain physical servers that can be used dur... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1583-004-server.json #### MITRE ATT&CK T1583.005: Botnet (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1583-005-botnet - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1583.005 (Botnet) is an Enterprise Resource Development sub-technique of T1583 (Acquire Infrastructure). Adversaries may buy, lease, or rent a network of compromised systems that can be ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1583-005-botnet.json #### MITRE ATT&CK T1583.006: Web Services (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1583-006-web-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1583.006 (Web Services) is an Enterprise Resource Development sub-technique of T1583 (Acquire Infrastructure). Adversaries may register for web services that can be used during targeting... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1583-006-web-services.json #### MITRE ATT&CK T1583.007: Serverless (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1583-007-serverless - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1583.007 (Serverless) is an Enterprise Resource Development sub-technique of T1583 (Acquire Infrastructure). Adversaries may purchase and configure serverless cloud infrastructure, such ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1583-007-serverless.json #### MITRE ATT&CK T1583.008: Malvertising (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1583-008-malvertising - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1583.008 (Malvertising) is an Enterprise Resource Development sub-technique of T1583 (Acquire Infrastructure). Adversaries may purchase online advertisements that can be abused to distri... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1583-008-malvertising.json #### MITRE ATT&CK T1583: Acquire Infrastructure (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1583-acquire-infrastructure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1583 covers adversary acquisition of infrastructure to support operations: domain registration, server hosting, virtual private servers, DNS services, web services, and serverless platfo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1583-acquire-infrastructure.json #### MITRE ATT&CK T1584.001: Domains (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1584-001-domains - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1584.001 (Domains) is an Enterprise Resource Development sub-technique of T1584 (Compromise Infrastructure). Adversaries may hijack domains and/or subdomains that can be used during targ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1584-001-domains.json #### MITRE ATT&CK T1584.002: DNS Server (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1584-002-dns-server - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1584.002 (DNS Server) is an Enterprise Resource Development sub-technique of T1584 (Compromise Infrastructure). Adversaries may compromise third-party DNS servers that can be used during... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1584-002-dns-server.json #### MITRE ATT&CK T1584.003: Virtual Private Server (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1584-003-virtual-private-server - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1584.003 (Virtual Private Server) is an Enterprise Resource Development sub-technique of T1584 (Compromise Infrastructure). Adversaries may compromise third-party Virtual Private Servers... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1584-003-virtual-private-server.json #### MITRE ATT&CK T1584.004: Server (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1584-004-server - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1584.004 (Server) is an Enterprise Resource Development sub-technique of T1584 (Compromise Infrastructure). Adversaries may compromise third-party servers that can be used during targeti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1584-004-server.json #### MITRE ATT&CK T1584.005: Botnet (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1584-005-botnet - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1584.005 (Botnet) is an Enterprise Resource Development sub-technique of T1584 (Compromise Infrastructure). Adversaries may compromise numerous third-party systems to form a botnet that ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1584-005-botnet.json #### MITRE ATT&CK T1584.006: Web Services (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1584-006-web-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1584.006 (Web Services) is an Enterprise Resource Development sub-technique of T1584 (Compromise Infrastructure). Adversaries may compromise access to third-party web services that can b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1584-006-web-services.json #### MITRE ATT&CK T1584.007: Serverless (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1584-007-serverless - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1584.007 (Serverless) is an Enterprise Resource Development sub-technique of T1584 (Compromise Infrastructure). Adversaries may compromise serverless cloud infrastructure, such as Cloudf... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1584-007-serverless.json #### MITRE ATT&CK T1584.008: Network Devices (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1584-008-network-devices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1584.008 (Network Devices) is an Enterprise Resource Development sub-technique of T1584 (Compromise Infrastructure). Adversaries may compromise third-party network devices that can be us... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1584-008-network-devices.json #### MITRE ATT&CK T1584: Compromise Infrastructure (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1584-compromise-infrastructure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1584 (Compromise Infrastructure) is an Enterprise Resource Development technique. Adversaries may compromise third-party infrastructure that can be used during targeting. Infrastructure ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1584-compromise-infrastructure.json #### MITRE ATT&CK T1585.001: Social Media Accounts (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1585-001-social-media-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1585.001 (Social Media Accounts) is an Enterprise Resource Development sub-technique of T1585 (Establish Accounts). Adversaries may create and cultivate social media accounts that can be... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1585-001-social-media-accounts.json #### MITRE ATT&CK T1585.002: Email Accounts (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1585-002-email-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1585.002 (Email Accounts) is an Enterprise Resource Development sub-technique of T1585 (Establish Accounts). Adversaries may create email accounts that can be used during targeting. Adve... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1585-002-email-accounts.json #### MITRE ATT&CK T1585.003: Cloud Accounts (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1585-003-cloud-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1585.003 (Cloud Accounts) is an Enterprise Resource Development sub-technique of T1585 (Establish Accounts). Adversaries may create accounts with cloud providers that can be used during ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1585-003-cloud-accounts.json #### MITRE ATT&CK T1585: Establish Accounts (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1585-establish-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1585 (Establish Accounts) is an Enterprise Resource Development technique. Adversaries may create and cultivate accounts with services that can be used during targeting. Adversaries can ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1585-establish-accounts.json #### MITRE ATT&CK T1586.001: Social Media Accounts (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1586-001-social-media-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1586.001 (Social Media Accounts) is an Enterprise Resource Development sub-technique of T1586 (Compromise Accounts). Adversaries may compromise social media accounts that can be used dur... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1586-001-social-media-accounts.json #### MITRE ATT&CK T1586.002: Email Accounts (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1586-002-email-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1586.002 (Email Accounts) is an Enterprise Resource Development sub-technique of T1586 (Compromise Accounts). Adversaries may compromise email accounts that can be used during targeting.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1586-002-email-accounts.json #### MITRE ATT&CK T1586.003: Cloud Accounts (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1586-003-cloud-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1586.003 (Cloud Accounts) is an Enterprise Resource Development sub-technique of T1586 (Compromise Accounts). Adversaries may compromise cloud accounts that can be used during targeting.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1586-003-cloud-accounts.json #### MITRE ATT&CK T1586: Compromise Accounts (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1586-compromise-accounts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1586 (Compromise Accounts) is an Enterprise Resource Development technique. Adversaries may compromise accounts with services that can be used during targeting. For operations incorporat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1586-compromise-accounts.json #### MITRE ATT&CK T1587.001: Malware (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1587-001-malware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1587.001 (Malware) is an Enterprise Resource Development sub-technique of T1587 (Develop Capabilities). Adversaries may develop malware and malware components that can be used during tar... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1587-001-malware.json #### MITRE ATT&CK T1587.002: Code Signing Certificates (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1587-002-code-signing-certificates - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1587.002 (Code Signing Certificates) is an Enterprise Resource Development sub-technique of T1587 (Develop Capabilities). Adversaries may create self-signed code signing certificates tha... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1587-002-code-signing-certificates.json #### MITRE ATT&CK T1587.003: Digital Certificates (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1587-003-digital-certificates - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1587.003 (Digital Certificates) is an Enterprise Resource Development sub-technique of T1587 (Develop Capabilities). Adversaries may create self-signed SSL/TLS certificates that can be u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1587-003-digital-certificates.json #### MITRE ATT&CK T1587.004: Exploits (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1587-004-exploits - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1587.004 (Exploits) is an Enterprise Resource Development sub-technique of T1587 (Develop Capabilities). Adversaries may develop exploits that can be used during targeting. An exploit ta... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1587-004-exploits.json #### MITRE ATT&CK T1587: Develop Capabilities (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1587-develop-capabilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1587 (Develop Capabilities) is an Enterprise Resource Development technique. Adversaries may build capabilities that can be used during targeting. Rather than purchasing, freely download... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1587-develop-capabilities.json #### MITRE ATT&CK T1588.001: Malware (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1588-001-malware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1588.001 (Malware) is an Enterprise Resource Development sub-technique of T1588 (Obtain Capabilities). Adversaries may buy, steal, or download malware that can be used during targeting. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1588-001-malware.json #### MITRE ATT&CK T1588.002: Tool (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1588-002-tool - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1588.002 (Tool) is an Enterprise Resource Development sub-technique of T1588 (Obtain Capabilities). Adversaries may buy, steal, or download software tools that can be used during targeti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1588-002-tool.json #### MITRE ATT&CK T1588.003: Code Signing Certificates (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1588-003-code-signing-certificates - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1588.003 (Code Signing Certificates) is an Enterprise Resource Development sub-technique of T1588 (Obtain Capabilities). Adversaries may buy and/or steal code signing certificates that c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1588-003-code-signing-certificates.json #### MITRE ATT&CK T1588.004: Digital Certificates (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1588-004-digital-certificates - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1588.004 (Digital Certificates) is an Enterprise Resource Development sub-technique of T1588 (Obtain Capabilities). Adversaries may buy and/or steal SSL/TLS certificates that can be used... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1588-004-digital-certificates.json #### MITRE ATT&CK T1588.005: Exploits (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1588-005-exploits - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1588.005 (Exploits) is an Enterprise Resource Development sub-technique of T1588 (Obtain Capabilities). Adversaries may buy, steal, or download exploits that can be used during targeting... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1588-005-exploits.json #### MITRE ATT&CK T1588.006: Vulnerabilities (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1588-006-vulnerabilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1588.006 (Vulnerabilities) is an Enterprise Resource Development sub-technique of T1588 (Obtain Capabilities). Adversaries may acquire information about vulnerabilities that can be used ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1588-006-vulnerabilities.json #### MITRE ATT&CK T1588.007: Artificial Intelligence (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1588-007-artificial-intelligence - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1588.007 (Artificial Intelligence) is an Enterprise Resource Development sub-technique of T1588 (Obtain Capabilities). Adversaries may obtain access to generative artificial intelligence... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1588-007-artificial-intelligence.json #### MITRE ATT&CK T1588: Obtain Capabilities (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1588-obtain-capabilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1588 (Obtain Capabilities) is an Enterprise Resource Development technique. Adversaries may buy and/or steal capabilities that can be used during targeting. Rather than developing their ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1588-obtain-capabilities.json #### MITRE ATT&CK T1589.001: Credentials (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1589-001-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1589.001 (Credentials) is an Enterprise Reconnaissance sub-technique of T1589 (Gather Victim Identity Information). Adversaries may gather credentials that can be used during targeting. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1589-001-credentials.json #### MITRE ATT&CK T1589.002: Email Addresses (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1589-002-email-addresses - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1589.002 (Email Addresses) is an Enterprise Reconnaissance sub-technique of T1589 (Gather Victim Identity Information). Adversaries may gather email addresses that can be used during tar... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1589-002-email-addresses.json #### MITRE ATT&CK T1589.003: Employee Names (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1589-003-employee-names - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1589.003 (Employee Names) is an Enterprise Reconnaissance sub-technique of T1589 (Gather Victim Identity Information). Adversaries may gather employee names that can be used during targe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1589-003-employee-names.json #### MITRE ATT&CK T1589: Gather Victim Identity Information (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1589-gather-victim-identity-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1589 covers adversary collection of identity information about a target organisation - employee names, email addresses, credentials in breach corpora, executive identifiers - to enable p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1589-gather-victim-identity-information.json #### MITRE ATT&CK T1590.001: Domain Properties (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1590-001-domain-properties - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1590.001 (Domain Properties) is an Enterprise Reconnaissance sub-technique of T1590 (Gather Victim Network Information). Adversaries may gather information about the victim's network dom... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1590-001-domain-properties.json #### MITRE ATT&CK T1590.002: DNS (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1590-002-dns - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1590.002 (DNS) is an Enterprise Reconnaissance sub-technique of T1590 (Gather Victim Network Information). Adversaries may gather information about the victim's DNS that can be used duri... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1590-002-dns.json #### MITRE ATT&CK T1590.003: Network Trust Dependencies (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1590-003-network-trust-dependencies - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1590.003 (Network Trust Dependencies) is an Enterprise Reconnaissance sub-technique of T1590 (Gather Victim Network Information). Adversaries may gather information about the victim's ne... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1590-003-network-trust-dependencies.json #### MITRE ATT&CK T1590.004: Network Topology (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1590-004-network-topology - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1590.004 (Network Topology) is an Enterprise Reconnaissance sub-technique of T1590 (Gather Victim Network Information). Adversaries may gather information about the victim's network topo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1590-004-network-topology.json #### MITRE ATT&CK T1590.005: IP Addresses (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1590-005-ip-addresses - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1590.005 (IP Addresses) is an Enterprise Reconnaissance sub-technique of T1590 (Gather Victim Network Information). Adversaries may gather the victim's IP addresses that can be used duri... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1590-005-ip-addresses.json #### MITRE ATT&CK T1590.006: Network Security Appliances (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1590-006-network-security-appliances - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1590.006 (Network Security Appliances) is an Enterprise Reconnaissance sub-technique of T1590 (Gather Victim Network Information). Adversaries may gather information about the victim's n... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1590-006-network-security-appliances.json #### MITRE ATT&CK T1590: Gather Victim Network Information (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1590-gather-victim-network-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1590 (Gather Victim Network Information) is an Enterprise Reconnaissance technique. Adversaries may gather information about the victim's networks that can be used during targeting. Info... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1590-gather-victim-network-information.json #### MITRE ATT&CK T1591.001: Determine Physical Locations (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1591-001-determine-physical-locations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1591.001 (Determine Physical Locations) is an Enterprise Reconnaissance sub-technique of T1591 (Gather Victim Org Information). Adversaries may gather the victim's physical location(s) t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1591-001-determine-physical-locations.json #### MITRE ATT&CK T1591.002: Business Relationships (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1591-002-business-relationships - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1591.002 (Business Relationships) is an Enterprise Reconnaissance sub-technique of T1591 (Gather Victim Org Information). Adversaries may gather information about the victim's business r... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1591-002-business-relationships.json #### MITRE ATT&CK T1591.003: Identify Business Tempo (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1591-003-identify-business-tempo - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1591.003 (Identify Business Tempo) is an Enterprise Reconnaissance sub-technique of T1591 (Gather Victim Org Information). Adversaries may gather information about the victim's business ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1591-003-identify-business-tempo.json #### MITRE ATT&CK T1591.004: Identify Roles (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1591-004-identify-roles - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1591.004 (Identify Roles) is an Enterprise Reconnaissance sub-technique of T1591 (Gather Victim Org Information). Adversaries may gather information about identities and roles within the... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1591-004-identify-roles.json #### MITRE ATT&CK T1591: Gather Victim Org Information (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1591-gather-victim-org-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1591 (Gather Victim Org Information) is an Enterprise Reconnaissance technique. Adversaries may gather information about the victim's organization that can be used during targeting. Info... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1591-gather-victim-org-information.json #### MITRE ATT&CK T1592.001: Hardware (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1592-001-hardware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1592.001 (Hardware) is an Enterprise Reconnaissance sub-technique of T1592 (Gather Victim Host Information). Adversaries may gather information about the victim's host hardware that can ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1592-001-hardware.json #### MITRE ATT&CK T1592.002: Software (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1592-002-software - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1592.002 (Software) is an Enterprise Reconnaissance sub-technique of T1592 (Gather Victim Host Information). Adversaries may gather information about the victim's host software that can ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1592-002-software.json #### MITRE ATT&CK T1592.003: Firmware (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1592-003-firmware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1592.003 (Firmware) is an Enterprise Reconnaissance sub-technique of T1592 (Gather Victim Host Information). Adversaries may gather information about the victim's host firmware that can ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1592-003-firmware.json #### MITRE ATT&CK T1592.004: Client Configurations (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1592-004-client-configurations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1592.004 (Client Configurations) is an Enterprise Reconnaissance sub-technique of T1592 (Gather Victim Host Information). Adversaries may gather information about the victim's client con... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1592-004-client-configurations.json #### MITRE ATT&CK T1592: Gather Victim Host Information (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1592-gather-victim-host-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1592 (Gather Victim Host Information) is an Enterprise Reconnaissance technique. Adversaries may gather information about the victim's hosts that can be used during targeting. Informatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1592-gather-victim-host-information.json #### MITRE ATT&CK T1593.001: Social Media (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1593-001-social-media - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1593.001 (Social Media) is an Enterprise Reconnaissance sub-technique of T1593 (Search Open Websites/Domains). Adversaries may search social media for information about victims that can ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1593-001-social-media.json #### MITRE ATT&CK T1593.002: Search Engines (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1593-002-search-engines - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1593.002 (Search Engines) is an Enterprise Reconnaissance sub-technique of T1593 (Search Open Websites/Domains). Adversaries may use search engines to collect information about victims t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1593-002-search-engines.json #### MITRE ATT&CK T1593.003: Code Repositories (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1593-003-code-repositories - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1593.003 (Code Repositories) is an Enterprise Reconnaissance sub-technique of T1593 (Search Open Websites/Domains). Adversaries may search public code repositories for information about ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1593-003-code-repositories.json #### MITRE ATT&CK T1593: Search Open Websites/Domains (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1593-search-open-websites-domains - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1593 (Search Open Websites/Domains) is an Enterprise Reconnaissance technique. Adversaries may search freely available websites and/or domains for information about victims that can be u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1593-search-open-websites-domains.json #### MITRE ATT&CK T1594: Search Victim-Owned Websites (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1594-search-victim-owned-websites - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1594 (Search Victim-Owned Websites) is an Enterprise Reconnaissance technique. Adversaries may search websites owned by the victim for information that can be used during targeting. Vict... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1594-search-victim-owned-websites.json #### MITRE ATT&CK T1595.001: Scanning IP Blocks (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1595-001-scanning-ip-blocks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1595.001 (Scanning IP Blocks) is an Enterprise Reconnaissance sub-technique of T1595 (Active Scanning). Adversaries may scan victim IP blocks to gather information that can be used durin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1595-001-scanning-ip-blocks.json #### MITRE ATT&CK T1595.002: Vulnerability Scanning (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1595-002-vulnerability-scanning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1595.002 (Vulnerability Scanning) is an Enterprise Reconnaissance sub-technique of T1595 (Active Scanning). Adversaries may scan victims for vulnerabilities that can be used during targe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1595-002-vulnerability-scanning.json #### MITRE ATT&CK T1595.003: Wordlist Scanning (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1595-003-wordlist-scanning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1595.003 (Wordlist Scanning) is an Enterprise Reconnaissance sub-technique of T1595 (Active Scanning). Adversaries may iteratively probe infrastructure using brute-forcing and crawling t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1595-003-wordlist-scanning.json #### MITRE ATT&CK T1595: Active Scanning (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1595-active-scanning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1595 covers adversary active scanning of target infrastructure to identify services, vulnerabilities, and entry points before attack. Sub-techniques include Scanning IP Blocks (T1595.001... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1595-active-scanning.json #### MITRE ATT&CK T1596.001: DNS/Passive DNS (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1596-001-dns-passive-dns - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1596.001 (DNS/Passive DNS) is an Enterprise Reconnaissance sub-technique of T1596 (Search Open Technical Databases). Adversaries may search DNS data for information about victims that ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1596-001-dns-passive-dns.json #### MITRE ATT&CK T1596.002: WHOIS (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1596-002-whois - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1596.002 (WHOIS) is an Enterprise Reconnaissance sub-technique of T1596 (Search Open Technical Databases). Adversaries may search public WHOIS data for information about victims that can... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1596-002-whois.json #### MITRE ATT&CK T1596.003: Digital Certificates (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1596-003-digital-certificates - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1596.003 (Digital Certificates) is an Enterprise Reconnaissance sub-technique of T1596 (Search Open Technical Databases). Adversaries may search public digital certificate data for infor... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1596-003-digital-certificates.json #### MITRE ATT&CK T1596.004: CDNs (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1596-004-cdns - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1596.004 (CDNs) is an Enterprise Reconnaissance sub-technique of T1596 (Search Open Technical Databases). Adversaries may search content delivery network (CDN) data about victims that ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1596-004-cdns.json #### MITRE ATT&CK T1596.005: Scan Databases (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1596-005-scan-databases - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1596.005 (Scan Databases) is an Enterprise Reconnaissance sub-technique of T1596 (Search Open Technical Databases). Adversaries may search within public scan databases for information ab... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1596-005-scan-databases.json #### MITRE ATT&CK T1596: Search Open Technical Databases (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1596-search-open-technical-databases - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1596 (Search Open Technical Databases) is an Enterprise Reconnaissance technique. Adversaries may search freely available technical databases for information about victims that can be us... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1596-search-open-technical-databases.json #### MITRE ATT&CK T1597.001: Threat Intel Vendors (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1597-001-threat-intel-vendors - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1597.001 (Threat Intel Vendors) is an Enterprise Reconnaissance sub-technique of T1597 (Search Closed Sources). Adversaries may search private data from threat intelligence vendors for i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1597-001-threat-intel-vendors.json #### MITRE ATT&CK T1597.002: Purchase Technical Data (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1597-002-purchase-technical-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1597.002 (Purchase Technical Data) is an Enterprise Reconnaissance sub-technique of T1597 (Search Closed Sources). Adversaries may purchase technical information about victims that can b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1597-002-purchase-technical-data.json #### MITRE ATT&CK T1597: Search Closed Sources (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1597-search-closed-sources - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1597 (Search Closed Sources) is an Enterprise Reconnaissance technique. Adversaries may search and gather information about victims from closed (e.g., paid, private, or otherwise not fre... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1597-search-closed-sources.json #### MITRE ATT&CK T1598.001: Spearphishing Service (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1598-001-spearphishing-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1598.001 (Spearphishing Service) is an Enterprise Reconnaissance sub-technique of T1598 (Phishing for Information). Adversaries may send spearphishing messages via third-party services t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1598-001-spearphishing-service.json #### MITRE ATT&CK T1598.002: Spearphishing Attachment (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1598-002-spearphishing-attachment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1598.002 (Spearphishing Attachment) is an Enterprise Reconnaissance sub-technique of T1598 (Phishing for Information). Adversaries may send spearphishing messages with a malicious attach... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1598-002-spearphishing-attachment.json #### MITRE ATT&CK T1598.003: Spearphishing Link (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1598-003-spearphishing-link - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1598.003 (Spearphishing Link) is an Enterprise Reconnaissance sub-technique of T1598 (Phishing for Information). Adversaries may send spearphishing messages with a malicious link to elic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1598-003-spearphishing-link.json #### MITRE ATT&CK T1598.004: Spearphishing Voice (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1598-004-spearphishing-voice - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1598.004 (Spearphishing Voice) is an Enterprise Reconnaissance sub-technique of T1598 (Phishing for Information). Adversaries may use voice communications to elicit sensitive information... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1598-004-spearphishing-voice.json #### MITRE ATT&CK T1598: Phishing for Information (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1598-phishing-for-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1598 (Phishing for Information) is an Enterprise Reconnaissance technique. Adversaries may send phishing messages to elicit sensitive information that can be used during targeting. Phish... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1598-phishing-for-information.json #### MITRE ATT&CK T1599.001: Network Address Translation Traversal (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1599-001-network-address-translation-traversal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1599.001 (Network Address Translation Traversal) is an Enterprise Defense Evasion sub-technique of T1599 (Network Boundary Bridging). Adversaries may bridge network boundaries by modifyi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1599-001-network-address-translation-traversal.json #### MITRE ATT&CK T1599: Network Boundary Bridging (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1599-network-boundary-bridging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1599 (Network Boundary Bridging) is an Enterprise Defense Evasion technique. Adversaries may bridge network boundaries by compromising perimeter network devices or internal devices respo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1599-network-boundary-bridging.json #### MITRE ATT&CK T1600.001: Reduce Key Space (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1600-001-reduce-key-space - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1600.001 (Reduce Key Space) is an Enterprise Defense Evasion sub-technique of T1600 (Weaken Encryption). Adversaries may reduce the level of effort required to decrypt data transmitted o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1600-001-reduce-key-space.json #### MITRE ATT&CK T1600.002: Disable Crypto Hardware (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1600-002-disable-crypto-hardware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1600.002 (Disable Crypto Hardware) is an Enterprise Defense Evasion sub-technique of T1600 (Weaken Encryption). Adversaries disable a network device's dedicated hardware encryption, whic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1600-002-disable-crypto-hardware.json #### MITRE ATT&CK T1600: Weaken Encryption (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1600-weaken-encryption - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1600 (Weaken Encryption) is an Enterprise Defense Evasion technique. Adversaries may compromise a network device's encryption capability in order to bypass encryption that would otherwis... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1600-weaken-encryption.json #### MITRE ATT&CK T1601.001: Patch System Image (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1601-001-patch-system-image - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1601.001 (Patch System Image) is an Enterprise Defense Evasion sub-technique of T1601 (Modify System Image). Adversaries may modify the operating system of a network device to introduce ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1601-001-patch-system-image.json #### MITRE ATT&CK T1601.002: Downgrade System Image (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1601-002-downgrade-system-image - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1601.002 (Downgrade System Image) is an Enterprise Defense Evasion sub-technique of T1601 (Modify System Image). Adversaries may install an older version of the operating system of a net... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1601-002-downgrade-system-image.json #### MITRE ATT&CK T1601: Modify System Image (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1601-modify-system-image - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1601 (Modify System Image) is an Enterprise Defense Evasion technique. Adversaries may make changes to the operating system of embedded network devices to weaken defenses and provide new... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1601-modify-system-image.json #### MITRE ATT&CK T1602.001: SNMP (MIB Dump) (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1602-001-snmp-mib-dump - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1602.001 (SNMP (MIB Dump)) is an Enterprise Collection sub-technique of T1602 (Data from Configuration Repository). Adversaries may target the Management Information Base (MIB) to collec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1602-001-snmp-mib-dump.json #### MITRE ATT&CK T1602.002: Network Device Configuration Dump (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1602-002-network-device-configuration-dump - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1602.002 (Network Device Configuration Dump) is an Enterprise Collection sub-technique of T1602 (Data from Configuration Repository). Adversaries may access network configuration files t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1602-002-network-device-configuration-dump.json #### MITRE ATT&CK T1602: Data from Configuration Repository (Enterprise Tactic TA0009 - Collection) - **ID**: mitre-attack-t1602-data-from-configuration-repository - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1602 (Data from Configuration Repository) is an Enterprise Collection technique. Adversaries may collect data related to managed devices from configuration repositories. Configuration re... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1602-data-from-configuration-repository.json #### MITRE ATT&CK T1606.001: Web Cookies (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1606-001-web-cookies - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1606.001 (Web Cookies) is an Enterprise Credential Access sub-technique of T1606 (Forge Web Credentials). Adversaries may forge web cookies that can be used to gain access to web applica... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1606-001-web-cookies.json #### MITRE ATT&CK T1606.002: SAML Tokens (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1606-002-saml-tokens - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1606.002 (SAML Tokens) is an Enterprise Credential Access sub-technique of T1606 (Forge Web Credentials). An adversary may forge SAML tokens with any permissions claims and lifetimes if ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1606-002-saml-tokens.json #### MITRE ATT&CK T1606: Forge Web Credentials (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1606-forge-web-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1606 (Forge Web Credentials) is an Enterprise Credential Access technique. Adversaries may forge credential materials that can be used to gain access to web applications or Internet serv... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1606-forge-web-credentials.json #### MITRE ATT&CK T1608.001: Upload Malware (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1608-001-upload-malware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1608.001 (Upload Malware) is an Enterprise Resource Development sub-technique of T1608 (Stage Capabilities). Adversaries may upload malware to third-party or adversary controlled infrast... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1608-001-upload-malware.json #### MITRE ATT&CK T1608.002: Upload Tool (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1608-002-upload-tool - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1608.002 (Upload Tool) is an Enterprise Resource Development sub-technique of T1608 (Stage Capabilities). Adversaries may upload tools to third-party or adversary controlled infrastructu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1608-002-upload-tool.json #### MITRE ATT&CK T1608.003: Install Digital Certificate (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1608-003-install-digital-certificate - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1608.003 (Install Digital Certificate) is an Enterprise Resource Development sub-technique of T1608 (Stage Capabilities). Adversaries may install SSL/TLS certificates that can be used du... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1608-003-install-digital-certificate.json #### MITRE ATT&CK T1608.004: Drive-by Target (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1608-004-drive-by-target - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1608.004 (Drive-by Target) is an Enterprise Resource Development sub-technique of T1608 (Stage Capabilities). Adversaries may prepare an operational environment to infect systems that vi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1608-004-drive-by-target.json #### MITRE ATT&CK T1608.005: Link Target (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1608-005-link-target - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1608.005 (Link Target) is an Enterprise Resource Development sub-technique of T1608 (Stage Capabilities). Adversaries may put in place resources that are referenced by a link that can be... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1608-005-link-target.json #### MITRE ATT&CK T1608.006: SEO Poisoning (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1608-006-seo-poisoning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1608.006 (SEO Poisoning) is an Enterprise Resource Development sub-technique of T1608 (Stage Capabilities). Adversaries may poison mechanisms that influence search engine optimization (S... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1608-006-seo-poisoning.json #### MITRE ATT&CK T1608: Stage Capabilities (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1608-stage-capabilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1608 (Stage Capabilities) is an Enterprise Resource Development technique. Adversaries may upload, install, or otherwise set up capabilities that can be used during targeting. To support... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1608-stage-capabilities.json #### MITRE ATT&CK T1609: Container Administration Command (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1609-container-administration-command - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1609 (Container Administration Command) is an Enterprise Execution technique. Adversaries may abuse a container administration service to execute commands within a container. A container... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1609-container-administration-command.json #### MITRE ATT&CK T1610: Deploy Container (Enterprise Tactic TA0005 - Defense Evasion / TA0002 - Execution) - **ID**: mitre-attack-t1610-deploy-container - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1610 (Deploy Container) is an Enterprise Defense Evasion and Execution technique. Adversaries may deploy a container into an environment to facilitate execution or evade defenses. In som... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1610-deploy-container.json #### MITRE ATT&CK T1611: Escape to Host (Enterprise Tactic TA0004 - Privilege Escalation) - **ID**: mitre-attack-t1611-escape-to-host - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1611 (Escape to Host) is an Enterprise Privilege Escalation technique. Adversaries may break out of a container to gain access to the underlying host. This can allow an adversary access ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1611-escape-to-host.json #### MITRE ATT&CK T1612: Build Image on Host (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1612-build-image-on-host - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1612 (Build Image on Host) is an Enterprise Defense Evasion technique. Adversaries may build a container image directly on a host to bypass defenses that monitor for the retrieval of mal... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1612-build-image-on-host.json #### MITRE ATT&CK T1613: Container and Resource Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1613-container-and-resource-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1613 (Container and Resource Discovery) is an Enterprise Discovery technique. Adversaries may attempt to discover containers and other resources that are available within a containers en... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1613-container-and-resource-discovery.json #### MITRE ATT&CK T1614.001: System Language Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1614-001-system-language-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1614.001 (System Language Discovery) is an Enterprise Discovery sub-technique of T1614 (System Location Discovery). Adversaries may attempt to gather information about the system languag... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1614-001-system-language-discovery.json #### MITRE ATT&CK T1614: System Location Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1614-system-location-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1614 (System Location Discovery) is an Enterprise Discovery technique. Adversaries may gather information in an attempt to calculate the geographical location of a victim host. Adversari... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1614-system-location-discovery.json #### MITRE ATT&CK T1615: Group Policy Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1615-group-policy-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1615 (Group Policy Discovery) is an Enterprise Discovery technique. Adversaries may gather information on Group Policy settings to identify paths for privilege escalation, security measu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1615-group-policy-discovery.json #### MITRE ATT&CK T1619: Cloud Storage Object Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1619-cloud-storage-object-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1619 (Cloud Storage Object Discovery) is an Enterprise Discovery technique. Adversaries may enumerate objects in cloud storage infrastructure. Adversaries may use this information during... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1619-cloud-storage-object-discovery.json #### MITRE ATT&CK T1620: Reflective Code Loading (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1620-reflective-code-loading - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1620 (Reflective Code Loading) is an Enterprise Defense Evasion technique. Adversaries may reflectively load code into a process in order to conceal the execution of malicious payloads. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1620-reflective-code-loading.json #### MITRE ATT&CK T1621: Multi-Factor Authentication Request Generation (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1621-multi-factor-authentication-request-generation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1621 (Multi-Factor Authentication Request Generation) is an Enterprise Credential Access technique. Adversaries may attempt to bypass multi-factor authentication (MFA) mechanisms and gai... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1621-multi-factor-authentication-request-generation.json #### MITRE ATT&CK T1622: Debugger Evasion (Enterprise Tactic TA0005 - Defense Evasion / TA0007 - Discovery) - **ID**: mitre-attack-t1622-debugger-evasion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1622 (Debugger Evasion) is an Enterprise Defense Evasion and Discovery technique. Adversaries may employ various means to detect and avoid debuggers. Debuggers are typically used by defe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1622-debugger-evasion.json #### MITRE ATT&CK T1647: Plist File Modification (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1647-plist-file-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1647 (Plist File Modification) is an Enterprise Defense Evasion technique. Adversaries may modify property list files (plist files) to enable other malicious activity, while also potenti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1647-plist-file-modification.json #### MITRE ATT&CK T1648: Serverless Execution (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1648-serverless-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1648 (Serverless Execution) is an Enterprise Execution technique. Adversaries may abuse serverless computing, integration, and automation services to execute arbitrary code in cloud envi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1648-serverless-execution.json #### MITRE ATT&CK T1649: Steal or Forge Authentication Certificates (Enterprise Tactic TA0006 - Credential Access) - **ID**: mitre-attack-t1649-steal-or-forge-authentication-certificates - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1649 (Steal or Forge Authentication Certificates) is an Enterprise Credential Access technique. Adversaries may steal or forge certificates used for authentication to access remote syste... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1649-steal-or-forge-authentication-certificates.json #### MITRE ATT&CK T1650: Acquire Access (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1650-acquire-access - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1650 (Acquire Access) is an Enterprise Resource Development technique. Adversaries may purchase or otherwise acquire an existing access to a target system or network. A variety of online... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1650-acquire-access.json #### MITRE ATT&CK T1651: Cloud Administration Command (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1651-cloud-administration-command - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1651 (Cloud Administration Command) is an Enterprise Execution technique. Adversaries may abuse cloud management services to execute commands within virtual machines. Resources such as A... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1651-cloud-administration-command.json #### MITRE ATT&CK T1652: Device Driver Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1652-device-driver-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1652 (Device Driver Discovery) is an Enterprise Discovery technique. Adversaries may attempt to enumerate local device drivers on a victim host. Information about device drivers may high... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1652-device-driver-discovery.json #### MITRE ATT&CK T1653: Power Settings (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1653-power-settings - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1653 (Power Settings) is an Enterprise Persistence technique. Adversaries may impair a system's ability to hibernate, reboot, or shut down in order to extend access to infected machines.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1653-power-settings.json #### MITRE ATT&CK T1654: Log Enumeration (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1654-log-enumeration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1654 (Log Enumeration) is an Enterprise Discovery technique. Adversaries may enumerate system and service logs to find useful data. These logs may highlight various types of valuable ins... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1654-log-enumeration.json #### MITRE ATT&CK T1656: Impersonation (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1656-impersonation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1656 (Impersonation) is an Enterprise Defense Evasion technique. Adversaries may impersonate a trusted person or organization in order to persuade and trick a target into performing some... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1656-impersonation.json #### MITRE ATT&CK T1657: Financial Theft (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1657-financial-theft - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1657 (Financial Theft) is an Enterprise Impact technique. Adversaries may steal monetary resources from targets through extortion, social engineering, technical theft, or other methods a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1657-financial-theft.json #### MITRE ATT&CK T1659: Content Injection (Enterprise Tactic TA0001 - Initial Access / TA0011 - Command and Control) - **ID**: mitre-attack-t1659-content-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1659 (Content Injection) is an Enterprise Initial Access and Command and Control technique. Adversaries may gain access and continuously communicate with victims by injecting malicious c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1659-content-injection.json #### MITRE ATT&CK T1665: Hide Infrastructure (Enterprise Tactic TA0011 - Command and Control) - **ID**: mitre-attack-t1665-hide-infrastructure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1665 (Hide Infrastructure) is an Enterprise Command and Control technique. Adversaries may manipulate network traffic in order to hide and evade detection of their C2 infrastructure. Thi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1665-hide-infrastructure.json #### MITRE ATT&CK T1666: Modify Cloud Resource Hierarchy (Enterprise Tactic TA0005 - Defense Evasion) - **ID**: mitre-attack-t1666-modify-cloud-resource-hierarchy - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1666 (Modify Cloud Resource Hierarchy) is an Enterprise Defense Evasion technique. Adversaries may attempt to modify hierarchical structures in infrastructure-as-a-service (IaaS) environ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1666-modify-cloud-resource-hierarchy.json #### MITRE ATT&CK T1667: Email Bombing (Enterprise Tactic TA0040 - Impact) - **ID**: mitre-attack-t1667-email-bombing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1667 (Email Bombing) is an Enterprise Impact technique. Adversaries may flood targeted email addresses with an overwhelming volume of messages. This may bury legitimate emails in a flood... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1667-email-bombing.json #### MITRE ATT&CK T1668: Exclusive Control (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1668-exclusive-control - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1668 (Exclusive Control) is an Enterprise Persistence technique. Adversaries who successfully compromise a system may attempt to maintain persistence by “closing the door” behind them; i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1668-exclusive-control.json #### MITRE ATT&CK T1669: Wi-Fi Networks (Enterprise Tactic TA0001 - Initial Access) - **ID**: mitre-attack-t1669-wi-fi-networks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1669 (Wi-Fi Networks) is an Enterprise Initial Access technique. Adversaries may gain initial access to target systems by connecting to wireless networks. They may accomplish this by exp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1669-wi-fi-networks.json #### MITRE ATT&CK T1671: Cloud Application Integration (Enterprise Tactic TA0003 - Persistence) - **ID**: mitre-attack-t1671-cloud-application-integration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1671 (Cloud Application Integration) is an Enterprise Persistence technique. Adversaries may achieve persistence by leveraging OAuth application integrations in a software-as-a-service e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1671-cloud-application-integration.json #### MITRE ATT&CK T1673: Virtual Machine Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1673-virtual-machine-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1673 (Virtual Machine Discovery) is an Enterprise Discovery technique. An adversary may attempt to enumerate running virtual machines (VMs) after gaining access to a host or hypervisor. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1673-virtual-machine-discovery.json #### MITRE ATT&CK T1674: Input Injection (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1674-input-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1674 (Input Injection) is an Enterprise Execution technique. Adversaries may simulate keystrokes on a victim’s computer by various means to perform any type of action on behalf of the us... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1674-input-injection.json #### MITRE ATT&CK T1675: ESXi Administration Command (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1675-esxi-administration-command - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1675 (ESXi Administration Command) is an Enterprise Execution technique. Adversaries may abuse ESXi administration services to execute commands on guest machines hosted within an ESXi vi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1675-esxi-administration-command.json #### MITRE ATT&CK T1677: Poisoned Pipeline Execution (Enterprise Tactic TA0002 - Execution) - **ID**: mitre-attack-t1677-poisoned-pipeline-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1677 (Poisoned Pipeline Execution) is an Enterprise Execution technique. Adversaries may manipulate continuous integration / continuous development (CI/CD) processes by injecting malicio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1677-poisoned-pipeline-execution.json #### MITRE ATT&CK T1678: Delay Execution (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1678-delay-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1678 (Delay Execution) is an Enterprise Stealth technique. Adversaries may employ various time-based methods to evade detection and analysis. These techniques often exploit system clocks... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1678-delay-execution.json #### MITRE ATT&CK T1679: Selective Exclusion (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1679-selective-exclusion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1679 (Selective Exclusion) is an Enterprise Stealth technique. Adversaries may intentionally exclude certain files, folders, directories, file types, or system components from encryption... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1679-selective-exclusion.json #### MITRE ATT&CK T1680: Local Storage Discovery (Enterprise Tactic TA0007 - Discovery) - **ID**: mitre-attack-t1680-local-storage-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1680 (Local Storage Discovery) is an Enterprise Discovery technique. Adversaries may enumerate local drives, disks, and/or volumes and their attributes like total or free space and volum... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1680-local-storage-discovery.json #### MITRE ATT&CK T1681: Search Threat Vendor Data (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1681-search-threat-vendor-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1681 (Search Threat Vendor Data) is an Enterprise Reconnaissance technique. Threat actors may seek information/indicators from closed or open threat intelligence sources gathered about t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1681-search-threat-vendor-data.json #### MITRE ATT&CK T1682: Query Public AI Services (Enterprise Tactic TA0043 - Reconnaissance) - **ID**: mitre-attack-t1682-query-public-ai-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1682 (Query Public AI Services) is an Enterprise Reconnaissance technique. Adversaries may query publicly accessible artificial intelligence (AI) services, such as large language models ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1682-query-public-ai-services.json #### MITRE ATT&CK T1683.001: Written Content (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1683-001-written-content - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1683.001 (Written Content) is an Enterprise Resource Development technique. Adversaries may create or tailor written materials to support targeting and malicious operations. Content may ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1683-001-written-content.json #### MITRE ATT&CK T1683.002: Audio-Visual Content (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1683-002-audio-visual-content - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1683.002 (Audio-Visual Content) is an Enterprise Resource Development technique. Adversaries may create or manipulate audio, image, and video content to support targeting and malicious o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1683-002-audio-visual-content.json #### MITRE ATT&CK T1683: Generate Content (Enterprise Tactic TA0042 - Resource Development) - **ID**: mitre-attack-t1683-generate-content - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1683 (Generate Content) is an Enterprise Resource Development technique. Adversaries may create or generate content to support targeting and operations. This content may be used to estab... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1683-generate-content.json #### MITRE ATT&CK T1684.001: Impersonation (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1684-001-impersonation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1684.001 (Impersonation) is an Enterprise Stealth technique. Adversaries may impersonate a trusted person or organization in order to persuade and trick a target into performing some act... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1684-001-impersonation.json #### MITRE ATT&CK T1684.002: Email Spoofing (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1684-002-email-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1684.002 (Email Spoofing) is an Enterprise Stealth technique. Adversaries may fake, or spoof, a sender’s identity by modifying the value of relevant email headers in order to establish c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1684-002-email-spoofing.json #### MITRE ATT&CK T1684: Social Engineering (Enterprise Tactic TA0005 - Stealth) - **ID**: mitre-attack-t1684-social-engineering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1684 (Social Engineering) is an Enterprise Stealth technique. Adversaries may use social engineering techniques to influence users to take actions that result in unauthorized access, app... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1684-social-engineering.json #### MITRE ATT&CK T1685.001: Disable or Modify Windows Event Log (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1685-001-disable-or-modify-windows-event-log - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1685.001 (Disable or Modify Windows Event Log) is an Enterprise Defense Impairment technique. Adversaries may disable or modify the Windows Event Log to limit data that can be leveraged ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1685-001-disable-or-modify-windows-event-log.json #### MITRE ATT&CK T1685.002: Disable or Modify Cloud Log (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1685-002-disable-or-modify-cloud-log - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1685.002 (Disable or Modify Cloud Log) is an Enterprise Defense Impairment technique. An adversary may disable or modify cloud logging capabilities and integrations to limit what data is... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1685-002-disable-or-modify-cloud-log.json #### MITRE ATT&CK T1685.003: Modify or Spoof Tool UI (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1685-003-modify-or-spoof-tool-ui - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1685.003 (Modify or Spoof Tool UI) is an Enterprise Defense Impairment technique. Adversaries may spoof or manipulate security tool user interfaces (UIs) to falsely indicate tools are fu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1685-003-modify-or-spoof-tool-ui.json #### MITRE ATT&CK T1685.004: Disable or Modify Linux Audit System Log (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1685-004-disable-or-modify-linux-audit-system-log - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1685.004 (Disable or Modify Linux Audit System Log) is an Enterprise Defense Impairment technique. Adversaries may disable or modify the Linux Audit system to hide malicious activity and... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1685-004-disable-or-modify-linux-audit-system-log.json #### MITRE ATT&CK T1685.005: Clear Windows Event Logs (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1685-005-clear-windows-event-logs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1685.005 (Clear Windows Event Logs) is an Enterprise Defense Impairment technique. Adversaries may clear Windows Event Logs to hide the activity of an intrusion. Windows Event Logs are a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1685-005-clear-windows-event-logs.json #### MITRE ATT&CK T1685.006: Clear Linux or Mac System Logs (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1685-006-clear-linux-or-mac-system-logs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1685.006 (Clear Linux or Mac System Logs) is an Enterprise Defense Impairment technique. Adversaries may clear system logs to hide evidence of an intrusion. macOS and Linux both keep tra... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1685-006-clear-linux-or-mac-system-logs.json #### MITRE ATT&CK T1685: Disable or Modify Tools (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1685-disable-or-modify-tools - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1685 (Disable or Modify Tools) is an Enterprise Defense Impairment technique. Adversaries may disable, degrade, or tamper with security tools or applications (e.g., endpoint detection an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1685-disable-or-modify-tools.json #### MITRE ATT&CK T1686.001: Cloud Firewall (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1686-001-cloud-firewall - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1686.001 (Cloud Firewall) is an Enterprise Defense Impairment technique. Adversaries may disable or modify a firewall within a cloud environment to bypass controls that limit access to c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1686-001-cloud-firewall.json #### MITRE ATT&CK T1686.002: Network Device Firewall (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1686-002-network-device-firewall - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1686.002 (Network Device Firewall) is an Enterprise Defense Impairment technique. Adversaries may disable network device-based firewall mechanisms entirely or add, delete, or modify part... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1686-002-network-device-firewall.json #### MITRE ATT&CK T1686.003: Windows Host Firewall (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1686-003-windows-host-firewall - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1686.003 (Windows Host Firewall) is an Enterprise Defense Impairment technique. Adversaries may disable or modify the Windows host firewall to bypass controls limiting network usage. Thi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1686-003-windows-host-firewall.json #### MITRE ATT&CK T1686: Disable or Modify System Firewall (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1686-disable-or-modify-system-firewall - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1686 (Disable or Modify System Firewall) is an Enterprise Defense Impairment technique. Adversaries may disable or modify host-based or network firewalls to impair defensive mechanisms a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1686-disable-or-modify-system-firewall.json #### MITRE ATT&CK T1687: Exploitation for Defense Impairment (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1687-exploitation-for-defense-impairment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1687 (Exploitation for Defense Impairment) is an Enterprise Defense Impairment technique. Adversaries may exploit vulnerabilities in security software, infrastructure, or defensive compo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1687-exploitation-for-defense-impairment.json #### MITRE ATT&CK T1688: Safe Mode Boot (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1688-safe-mode-boot - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1688 (Safe Mode Boot) is an Enterprise Defense Impairment technique. Adversaries may abuse Windows safe mode to disable endpoint defenses. Safe mode starts up the Windows operating syste... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1688-safe-mode-boot.json #### MITRE ATT&CK T1689: Downgrade Attack (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1689-downgrade-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1689 (Downgrade Attack) is an Enterprise Defense Impairment technique. Adversaries may downgrade or use a version of system features that may be outdated, vulnerable, and/or does not sup... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1689-downgrade-attack.json #### MITRE ATT&CK T1690: Prevent Command History Logging (Enterprise Tactic TA0112 - Defense Impairment) - **ID**: mitre-attack-t1690-prevent-command-history-logging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE ATT&CK T1690 (Prevent Command History Logging) is an Enterprise Defense Impairment technique. Adversaries may impair command history logging to hide commands they run on a compromised system. Va... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-attack-t1690-prevent-command-history-logging.json #### MITRE CALDERA Open Source Adversary Emulation Platform (Sandcat/Manx Agents, Atomic/Stockpile/Response Plugins, ATT&CK Technique Execution, Apache Software Foundation) - **ID**: mitre-caldera-adversary-emulation-platform - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CALDERA is the open-source cybersecurity platform for automated adversary emulation, assisting manual red teams and automating incident response by executing MITRE ATT&CK techniques against test... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-caldera-adversary-emulation-platform.json #### MITRE CAPEC-1: Accessing Functionality Not Properly Constrained by ACLs (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-1-accessing-functionality-not-properly-constrained-by-acls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-1 (Accessing Functionality Not Properly Constrained by ACLs) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In applications, particul... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-1-accessing-functionality-not-properly-constrained-by-acls.json #### MITRE CAPEC-10: Buffer Overflow via Environment Variables (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-10-buffer-overflow-via-environment-variables - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-10 (Buffer Overflow via Environment Variables) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack pattern involves causing a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-10-buffer-overflow-via-environment-variables.json #### MITRE CAPEC-100: Overflow Buffers (Buffer Overflow Attacks) (Very High Severity) - **ID**: mitre-capec-capec-100-buffer-overflow - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-100 (Overflow Buffers) targets improper or missing bounds checking on buffer operations, typically triggered by attacker-injected input. Results in program crash or unauthorized code execu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-100-buffer-overflow.json #### MITRE CAPEC-101: Server Side Include (SSI) Injection (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-101-server-side-include-ssi-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-101 (Server Side Include (SSI) Injection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker can use Server Side Include (SSI... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-101-server-side-include-ssi-injection.json #### MITRE CAPEC-102: Session Sidejacking (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-102-session-sidejacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-102 (Session Sidejacking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Session sidejacking takes advantage of an unencrypted commun... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-102-session-sidejacking.json #### MITRE CAPEC-103: Clickjacking (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-103-clickjacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-103 (Clickjacking) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary tricks a victim into unknowingly initiating some actio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-103-clickjacking.json #### MITRE CAPEC-104: Cross Zone Scripting (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-104-cross-zone-scripting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-104 (Cross Zone Scripting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker is able to cause a victim to load content into ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-104-cross-zone-scripting.json #### MITRE CAPEC-105: HTTP Request Splitting (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-105-http-request-splitting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-105 (HTTP Request Splitting) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary abuses the flexibility and discrepancies in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-105-http-request-splitting.json #### MITRE CAPEC-107: Cross Site Tracing (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-107-cross-site-tracing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-107 (Cross Site Tracing) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Cross Site Tracing (XST) enables an adversary to steal the vi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-107-cross-site-tracing.json #### MITRE CAPEC-108: Command Line Execution through SQL Injection (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-108-command-line-execution-through-sql-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-108 (Command Line Execution through SQL Injection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker uses standard SQL injec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-108-command-line-execution-through-sql-injection.json #### MITRE CAPEC-109: Object Relational Mapping Injection (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-109-object-relational-mapping-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-109 (Object Relational Mapping Injection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker leverages a weakness present in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-109-object-relational-mapping-injection.json #### MITRE CAPEC-11: Cause Web Server Misclassification (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-11-cause-web-server-misclassification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-11 (Cause Web Server Misclassification) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attack of this type exploits a Web server's... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-11-cause-web-server-misclassification.json #### MITRE CAPEC-110: SQL Injection through SOAP Parameter Tampering (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-110-sql-injection-through-soap-parameter-tampering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-110 (SQL Injection through SOAP Parameter Tampering) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker modifies the paramete... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-110-sql-injection-through-soap-parameter-tampering.json #### MITRE CAPEC-111: JSON Hijacking (aka JavaScript Hijacking) (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-111-json-hijacking-aka-javascript-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-111 (JSON Hijacking (aka JavaScript Hijacking)) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker targets a system that uses... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-111-json-hijacking-aka-javascript-hijacking.json #### MITRE CAPEC-112: Brute Force (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-112-brute-force - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-112 (Brute Force) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack, some asset (information, functionality, identity, etc.) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-112-brute-force.json #### MITRE CAPEC-113: Interface Manipulation (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-113-interface-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-113 (Interface Manipulation) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary manipulates the use or processing of an interfac... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-113-interface-manipulation.json #### MITRE CAPEC-114: Authentication Abuse (Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-114-authentication-abuse - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-114 (Authentication Abuse) is an attack pattern in which an attacker obtains unauthorized access to an application, service, or device through knowledge of inherent weaknesses in an authen... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-114-authentication-abuse.json #### MITRE CAPEC-115: Authentication Bypass (Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-115-authentication-bypass - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-115 (Authentication Bypass) is an attack pattern in which an attacker gains access to application, service, or device with the privileges of an authorized or privileged user by evading or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-115-authentication-bypass.json #### MITRE CAPEC-116: Excavation (Attack Pattern - Information Disclosure) - **ID**: mitre-capec-capec-116-excavation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-116 (Excavation) is an attack pattern in which an adversary actively probes the target to solicit information that could be leveraged for malicious purposes - including stack traces, confi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-116-excavation.json #### MITRE CAPEC-117: Interception (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-117-interception - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-117 (Interception) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary monitors data streams to or from the target for informatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-117-interception.json #### MITRE CAPEC-12: Choosing Message Identifier (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-12-choosing-message-identifier - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-12 (Choosing Message Identifier) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This pattern of attack is defined by the selection of... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-12-choosing-message-identifier.json #### MITRE CAPEC-120: Double Encoding (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-120-double-encoding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-120 (Double Encoding) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary utilizes a repeating of the encoding process for a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-120-double-encoding.json #### MITRE CAPEC-121: Exploit Non-Production Interfaces (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-121-exploit-non-production-interfaces - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-121 (Exploit Non-Production Interfaces) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a sample, demonstration,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-121-exploit-non-production-interfaces.json #### MITRE CAPEC-122: Privilege Abuse (Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-122-privilege-abuse - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-122 (Privilege Abuse) is an attack pattern in which an adversary exploits features of the target that should be reserved for privileged users or administrators but are exposed to use by lo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-122-privilege-abuse.json #### MITRE CAPEC-123: Buffer Manipulation (Meta Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-123-buffer-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-123 (Buffer Manipulation) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary manipulates an application's interaction with a buf... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-123-buffer-manipulation.json #### MITRE CAPEC-124: Shared Resource Manipulation (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-124-shared-resource-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-124 (Shared Resource Manipulation) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a resource shared between multipl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-124-shared-resource-manipulation.json #### MITRE CAPEC-125: Flooding (Attack Pattern - Resource Exhaustion) - **ID**: mitre-capec-capec-125-flooding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-125 (Flooding) is an attack pattern in which an adversary consumes target resources by rapidly engaging in a large number of interactions. Exploits weaknesses in rate limiting and prevents... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-125-flooding.json #### MITRE CAPEC-126: Path Traversal (Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-126-path-traversal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-126 (Path Traversal) is an attack pattern in which an adversary exploits insufficient input validation to access unauthorized data by manipulating file paths, typically using dot-dot-slash... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-126-path-traversal.json #### MITRE CAPEC-127: Directory Indexing (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-127-directory-indexing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-127 (Directory Indexing) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary crafts a request to a target that results in the... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-127-directory-indexing.json #### MITRE CAPEC-128: Integer Attacks (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-128-integer-attacks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-128 (Integer Attacks) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker takes advantage of the structure of integer variable... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-128-integer-attacks.json #### MITRE CAPEC-129: Pointer Manipulation (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-129-pointer-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-129 (Pointer Manipulation) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack pattern involves an adversary manipulating a pointe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-129-pointer-manipulation.json #### MITRE CAPEC-13: Subverting Environment Variable Values (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-13-subverting-environment-variable-values - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-13 (Subverting Environment Variable Values) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary directly or indirectly modif... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-13-subverting-environment-variable-values.json #### MITRE CAPEC-130: Excessive Allocation (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-130-excessive-allocation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-130 (Excessive Allocation) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary causes the target to allocate excessive resources ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-130-excessive-allocation.json #### MITRE CAPEC-131: Resource Leak Exposure (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-131-resource-leak-exposure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-131 (Resource Leak Exposure) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary utilizes a resource leak on the target to deplet... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-131-resource-leak-exposure.json #### MITRE CAPEC-132: Symlink Attack (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-132-symlink-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-132 (Symlink Attack) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary positions a symbolic link in such a manner that the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-132-symlink-attack.json #### MITRE CAPEC-133: Try All Common Switches (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-133-try-all-common-switches - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-133 (Try All Common Switches) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker attempts to invoke all common switches and o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-133-try-all-common-switches.json #### MITRE CAPEC-134: Email Injection (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-134-email-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-134 (Email Injection) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary manipulates the headers and content of an email mes... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-134-email-injection.json #### MITRE CAPEC-135: Format String Injection (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-135-format-string-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-135 (Format String Injection) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary includes formatting characters in a string ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-135-format-string-injection.json #### MITRE CAPEC-136: LDAP Injection (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-136-ldap-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-136 (LDAP Injection) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker manipulates or crafts an LDAP query for the purpose o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-136-ldap-injection.json #### MITRE CAPEC-137: Parameter Injection (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-137-parameter-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-137 (Parameter Injection) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary manipulates the content of request parameters for t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-137-parameter-injection.json #### MITRE CAPEC-138: Reflection Injection (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-138-reflection-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-138 (Reflection Injection) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary supplies a value to the target application whi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-138-reflection-injection.json #### MITRE CAPEC-139: Relative Path Traversal (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-139-relative-path-traversal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-139 (Relative Path Traversal) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker exploits a weakness in input validation on t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-139-relative-path-traversal.json #### MITRE CAPEC-14: Client-side Injection-induced Buffer Overflow (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-14-client-side-injection-induced-buffer-overflow - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-14 (Client-side Injection-induced Buffer Overflow) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This type of attack exploits a buff... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-14-client-side-injection-induced-buffer-overflow.json #### MITRE CAPEC-140: Bypassing of Intermediate Forms in Multiple-Form Sets (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-140-bypassing-of-intermediate-forms-in-multiple-form-sets - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-140 (Bypassing of Intermediate Forms in Multiple-Form Sets) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Some web applications requ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-140-bypassing-of-intermediate-forms-in-multiple-form-sets.json #### MITRE CAPEC-141: Cache Poisoning (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-141-cache-poisoning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-141 (Cache Poisoning) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker exploits the functionality of cache technologies to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-141-cache-poisoning.json #### MITRE CAPEC-142: DNS Cache Poisoning (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-142-dns-cache-poisoning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-142 (DNS Cache Poisoning) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. A domain name server translates a domain name (such as www.e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-142-dns-cache-poisoning.json #### MITRE CAPEC-143: Detect Unpublicized Web Pages (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-143-detect-unpublicized-web-pages - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-143 (Detect Unpublicized Web Pages) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary searches a targeted web site for web ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-143-detect-unpublicized-web-pages.json #### MITRE CAPEC-144: Detect Unpublicized Web Services (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-144-detect-unpublicized-web-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-144 (Detect Unpublicized Web Services) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary searches a targeted web site for w... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-144-detect-unpublicized-web-services.json #### MITRE CAPEC-145: Checksum Spoofing (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-145-checksum-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-145 (Checksum Spoofing) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary spoofs a checksum message for the purpose of maki... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-145-checksum-spoofing.json #### MITRE CAPEC-146: XML Schema Poisoning (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-146-xml-schema-poisoning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-146 (XML Schema Poisoning) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary corrupts or modifies the content of XML schema... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-146-xml-schema-poisoning.json #### MITRE CAPEC-147: XML Ping of the Death (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-147-xml-ping-of-the-death - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-147 (XML Ping of the Death) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker initiates a resource depletion attack where a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-147-xml-ping-of-the-death.json #### MITRE CAPEC-148: Content Spoofing (Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-148-content-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-148 (Content Spoofing) is an attack pattern in which an adversary modifies content to make it contain something other than what the original content producer intended while keeping the app... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-148-content-spoofing.json #### MITRE CAPEC-149: Explore for Predictable Temporary File Names (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-149-explore-for-predictable-temporary-file-names - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-149 (Explore for Predictable Temporary File Names) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker explores a target to id... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-149-explore-for-predictable-temporary-file-names.json #### MITRE CAPEC-15: Command Delimiters (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-15-command-delimiters - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-15 (Command Delimiters) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attack of this type exploits a programs' vulnerabilities th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-15-command-delimiters.json #### MITRE CAPEC-150: Collect Data from Common Resource Locations (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-150-collect-data-from-common-resource-locations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-150 (Collect Data from Common Resource Locations) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits well-known loc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-150-collect-data-from-common-resource-locations.json #### MITRE CAPEC-151: Identity Spoofing (Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-151-identity-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-151 (Identity Spoofing) is an attack pattern in which an adversary assumes the identity of another entity (human or non-human) and uses that identity to accomplish a goal. Likelihood and S... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-151-identity-spoofing.json #### MITRE CAPEC-153: Input Data Manipulation (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-153-input-data-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-153 (Input Data Manipulation) is a meta-level attack pattern in which an attacker exploits a weakness in input validation by controlling the format, structure, and composition of data to a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-153-input-data-manipulation.json #### MITRE CAPEC-154: Resource Location Spoofing (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-154-resource-location-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-154 (Resource Location Spoofing) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary deceives an application or user and convince... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-154-resource-location-spoofing.json #### MITRE CAPEC-155: Screen Temporary Files for Sensitive Information (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-155-screen-temporary-files-for-sensitive-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-155 (Screen Temporary Files for Sensitive Information) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits the tempo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-155-screen-temporary-files-for-sensitive-information.json #### MITRE CAPEC-157: Sniffing Attacks (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-157-sniffing-attacks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-157 (Sniffing Attacks) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack pattern, the adversary intercepts information tr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-157-sniffing-attacks.json #### MITRE CAPEC-158: Sniffing Network Traffic (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-158-sniffing-network-traffic - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-158 (Sniffing Network Traffic) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack pattern, the adversary monitors network ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-158-sniffing-network-traffic.json #### MITRE CAPEC-159: Redirect Access to Libraries (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-159-redirect-access-to-libraries - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-159 (Redirect Access to Libraries) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in the way an appl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-159-redirect-access-to-libraries.json #### MITRE CAPEC-16: Dictionary-based Password Attack (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-16-dictionary-based-password-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-16 (Dictionary-based Password Attack) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker tries each of the words in a diction... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-16-dictionary-based-password-attack.json #### MITRE CAPEC-160: Exploit Script-Based APIs (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-160-exploit-script-based-apis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-160 (Exploit Script-Based APIs) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Some APIs support scripting instructions as arguments.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-160-exploit-script-based-apis.json #### MITRE CAPEC-161: Infrastructure Manipulation (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-161-infrastructure-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-161 (Infrastructure Manipulation) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker exploits characteristics of the infrastructu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-161-infrastructure-manipulation.json #### MITRE CAPEC-162: Manipulating Hidden Fields (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-162-manipulating-hidden-fields - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-162 (Manipulating Hidden Fields) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in the server's trus... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-162-manipulating-hidden-fields.json #### MITRE CAPEC-163: Spear Phishing (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-163-spear-phishing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-163 (Spear Phishing) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary targets a specific user or group with a Phishing (CA... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-163-spear-phishing.json #### MITRE CAPEC-164: Mobile Phishing (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-164-mobile-phishing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-164 (Mobile Phishing) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary targets mobile phone users with a phishing attack f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-164-mobile-phishing.json #### MITRE CAPEC-165: File Manipulation (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-165-file-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-165 (File Manipulation) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker modifies file contents or attributes (such as extensio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-165-file-manipulation.json #### MITRE CAPEC-166: Force the System to Reset Values (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-166-force-the-system-to-reset-values - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-166 (Force the System to Reset Values) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker forces the target into a previous s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-166-force-the-system-to-reset-values.json #### MITRE CAPEC-167: White Box Reverse Engineering (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-167-white-box-reverse-engineering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-167 (White Box Reverse Engineering) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker discovers the structure, function, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-167-white-box-reverse-engineering.json #### MITRE CAPEC-168: Windows ::DATA Alternate Data Stream (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-168-windows-data-alternate-data-stream - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-168 (Windows ::DATA Alternate Data Stream) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker exploits the functionality of M... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-168-windows-data-alternate-data-stream.json #### MITRE CAPEC-169: Footprinting (Meta Attack Pattern - Very Low Severity) - **ID**: mitre-capec-capec-169-footprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-169 (Footprinting) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in probing and exploration activities to identify ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-169-footprinting.json #### MITRE CAPEC-17: Using Malicious Files (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-17-using-malicious-files - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-17 (Using Malicious Files) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attack of this type exploits a system's configuration th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-17-using-malicious-files.json #### MITRE CAPEC-170: Web Application Fingerprinting (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-170-web-application-fingerprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-170 (Web Application Fingerprinting) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker sends a series of probes to a web app... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-170-web-application-fingerprinting.json #### MITRE CAPEC-173: Action Spoofing (Meta Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-173-action-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-173 (Action Spoofing) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary is able to disguise one action for another and therefor... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-173-action-spoofing.json #### MITRE CAPEC-174: Flash Parameter Injection (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-174-flash-parameter-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-174 (Flash Parameter Injection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary takes advantage of improper data validati... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-174-flash-parameter-injection.json #### MITRE CAPEC-175: Code Inclusion (Meta Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-175-code-inclusion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-175 (Code Inclusion) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness on the target to force arbitrary cod... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-175-code-inclusion.json #### MITRE CAPEC-176: Configuration/Environment Manipulation (Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-176-configuration-environment-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-176 (Configuration/Environment Manipulation) is an attack pattern in which an attacker manipulates files or settings external to a target application that affect the behavior of that appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-176-configuration-environment-manipulation.json #### MITRE CAPEC-177: Create files with the same name as files protected with a higher classification (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-177-create-files-with-the-same-name-as-files - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-177 (Create files with the same name as files protected with a higher classification) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-177-create-files-with-the-same-name-as-files.json #### MITRE CAPEC-178: Cross-Site Flashing (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-178-cross-site-flashing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-178 (Cross-Site Flashing) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker is able to trick the victim into executing a Fla... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-178-cross-site-flashing.json #### MITRE CAPEC-179: Calling Micro-Services Directly (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-179-calling-micro-services-directly - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-179 (Calling Micro-Services Directly) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker is able to discover and query Micro-... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-179-calling-micro-services-directly.json #### MITRE CAPEC-18: XSS Targeting Non-Script Elements (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-18-xss-targeting-non-script-elements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-18 (XSS Targeting Non-Script Elements) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack is a form of Cross-Site Scripting (... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-18-xss-targeting-non-script-elements.json #### MITRE CAPEC-180: Exploiting Incorrectly Configured Access Control Security Levels (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-180-exploiting-incorrectly-configured-access-control-security-le - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-180 (Exploiting Incorrectly Configured Access Control Security Levels) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker exp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-180-exploiting-incorrectly-configured-access-control-security-le.json #### MITRE CAPEC-181: Flash File Overlay (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-181-flash-file-overlay - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-181 (Flash File Overlay) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker creates a transparent overlay using flash in orde... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-181-flash-file-overlay.json #### MITRE CAPEC-182: Flash Injection (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-182-flash-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-182 (Flash Injection) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker tricks a victim to execute malicious flash content t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-182-flash-injection.json #### MITRE CAPEC-183: IMAP/SMTP Command Injection (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-183-imap-smtp-command-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-183 (IMAP/SMTP Command Injection) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits weaknesses in input validation... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-183-imap-smtp-command-injection.json #### MITRE CAPEC-184: Software Integrity Attack (Attack Pattern - Supply Chain Foundation) - **ID**: mitre-capec-capec-184-software-integrity-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-184 (Software Integrity Attack) is an attack pattern in which an attacker initiates a series of events to cause a user, program, server, or device to perform actions that undermine the int... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-184-software-integrity-attack.json #### MITRE CAPEC-185: Malicious Software Download (Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-185-malicious-software-download - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-185 (Malicious Software Download) is an attack pattern in which an attacker uses deceptive methods to cause a user or automated process to download and install dangerous code from an attac... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-185-malicious-software-download.json #### MITRE CAPEC-186: Malicious Software Update (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-186-malicious-software-update - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-186 (Malicious Software Update) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses deceptive methods to cause a user or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-186-malicious-software-update.json #### MITRE CAPEC-187: Malicious Automated Software Update via Redirection (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-187-malicious-automated-software-update-via-redirection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-187 (Malicious Automated Software Update via Redirection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker exploits two lay... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-187-malicious-automated-software-update-via-redirection.json #### MITRE CAPEC-188: Reverse Engineering (Meta Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-188-reverse-engineering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-188 (Reverse Engineering) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary discovers the structure, function, and composition ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-188-reverse-engineering.json #### MITRE CAPEC-189: Black Box Reverse Engineering (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-189-black-box-reverse-engineering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-189 (Black Box Reverse Engineering) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary discovers the structure, function, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-189-black-box-reverse-engineering.json #### MITRE CAPEC-19: Embedding Scripts within Scripts (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-19-embedding-scripts-within-scripts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-19 (Embedding Scripts within Scripts) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary leverages the capability to execute... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-19-embedding-scripts-within-scripts.json #### MITRE CAPEC-190: Reverse Engineer an Executable to Expose Assumed Hidden Functionality (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-190-reverse-engineer-an-executable-to-expose-assumed-hidden - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-190 (Reverse Engineer an Executable to Expose Assumed Hidden Functionality) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacke... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-190-reverse-engineer-an-executable-to-expose-assumed-hidden.json #### MITRE CAPEC-191: Read Sensitive Constants Within an Executable (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-191-read-sensitive-constants-within-an-executable - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-191 (Read Sensitive Constants Within an Executable) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in activities... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-191-read-sensitive-constants-within-an-executable.json #### MITRE CAPEC-192: Protocol Analysis (Meta Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-192-protocol-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-192 (Protocol Analysis) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in activities to decipher and/or decode proto... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-192-protocol-analysis.json #### MITRE CAPEC-193: PHP Remote File Inclusion (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-193-php-remote-file-inclusion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-193 (PHP Remote File Inclusion) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this pattern the adversary is able to load and exec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-193-php-remote-file-inclusion.json #### MITRE CAPEC-194: Fake the Source of Data (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-194-fake-the-source-of-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-194 (Fake the Source of Data) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary takes advantage of improper authentication ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-194-fake-the-source-of-data.json #### MITRE CAPEC-195: Principal Spoof (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-195-principal-spoof - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-195 (Principal Spoof) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. A Principal Spoof is a form of Identity Spoofing where an advers... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-195-principal-spoof.json #### MITRE CAPEC-196: Session Credential Falsification through Forging (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-196-session-credential-falsification-through-forging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-196 (Session Credential Falsification through Forging) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker creates a false but... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-196-session-credential-falsification-through-forging.json #### MITRE CAPEC-197: Exponential Data Expansion (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-197-exponential-data-expansion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-197 (Exponential Data Expansion) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary submits data to a target application whi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-197-exponential-data-expansion.json #### MITRE CAPEC-198: XSS Targeting Error Pages (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-198-xss-targeting-error-pages - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-198 (XSS Targeting Error Pages) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary distributes a link (or possibly some othe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-198-xss-targeting-error-pages.json #### MITRE CAPEC-199: XSS Using Alternate Syntax (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-199-xss-using-alternate-syntax - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-199 (XSS Using Alternate Syntax) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses alternate forms of keywords or comm... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-199-xss-using-alternate-syntax.json #### MITRE CAPEC-2: Inducing Account Lockout (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-2-inducing-account-lockout - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-2 (Inducing Account Lockout) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker leverages the security functionality of the s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-2-inducing-account-lockout.json #### MITRE CAPEC-20: Encryption Brute Forcing (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-20-encryption-brute-forcing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-20 (Encryption Brute Forcing) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker, armed with the cipher text and the encrypti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-20-encryption-brute-forcing.json #### MITRE CAPEC-200: Removal of filters: Input filters, output filters, data masking (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-200-removal-of-filters-input-filters-output-filters-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-200 (Removal of filters: Input filters, output filters, data masking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker remo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-200-removal-of-filters-input-filters-output-filters-data.json #### MITRE CAPEC-201: Serialized Data External Linking (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-201-serialized-data-external-linking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-201 (Serialized Data External Linking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary creates a serialized data file (e.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-201-serialized-data-external-linking.json #### MITRE CAPEC-202: Create Malicious Client (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-202-create-malicious-client - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-202 (Create Malicious Client) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary creates a client application to interface w... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-202-create-malicious-client.json #### MITRE CAPEC-203: Manipulate Registry Information (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-203-manipulate-registry-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-203 (Manipulate Registry Information) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in authorizatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-203-manipulate-registry-information.json #### MITRE CAPEC-204: Lifting Sensitive Data Embedded in Cache (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-204-lifting-sensitive-data-embedded-in-cache - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-204 (Lifting Sensitive Data Embedded in Cache) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary examines a target applicat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-204-lifting-sensitive-data-embedded-in-cache.json #### MITRE CAPEC-206: Signing Malicious Code (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-206-signing-malicious-code - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-206 (Signing Malicious Code) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary extracts credentials used for code signing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-206-signing-malicious-code.json #### MITRE CAPEC-207: Removing Important Client Functionality (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-207-removing-important-client-functionality - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-207 (Removing Important Client Functionality) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary removes or disables functio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-207-removing-important-client-functionality.json #### MITRE CAPEC-208: Removing/short-circuiting 'Purse' logic: removing/mutating 'cash' decrements (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-208-removing-short-circuiting-purse-logic-removing-mutating-cash - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-208 (Removing/short-circuiting 'Purse' logic: removing/mutating 'cash' decrements) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-208-removing-short-circuiting-purse-logic-removing-mutating-cash.json #### MITRE CAPEC-209: XSS Using MIME Type Mismatch (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-209-xss-using-mime-type-mismatch - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-209 (XSS Using MIME Type Mismatch) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary creates a file with scripting content ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-209-xss-using-mime-type-mismatch.json #### MITRE CAPEC-21: Exploitation of Trusted Identifiers (Attack Pattern - High Severity) - **ID**: mitre-capec-capec-21-exploitation-of-trusted-identifiers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-21 (Exploitation of Trusted Identifiers) is an attack pattern in which an adversary manipulates trusted identifiers (session IDs, cookies, access tokens, SAML assertions, OAuth tokens) to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-21-exploitation-of-trusted-identifiers.json #### MITRE CAPEC-212: Functionality Misuse (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-212-functionality-misuse - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-212 (Functionality Misuse) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary leverages a legitimate capability of an applicatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-212-functionality-misuse.json #### MITRE CAPEC-215: Fuzzing for application mapping (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-215-fuzzing-for-application-mapping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-215 (Fuzzing for application mapping) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker sends random, malformed, or otherwis... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-215-fuzzing-for-application-mapping.json #### MITRE CAPEC-216: Communication Channel Manipulation (Meta Attack Pattern) - **ID**: mitre-capec-capec-216-communication-channel-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-216 (Communication Channel Manipulation) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary manipulates a setting or parameter o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-216-communication-channel-manipulation.json #### MITRE CAPEC-217: Exploiting Incorrectly Configured SSL/TLS (Standard Attack Pattern) - **ID**: mitre-capec-capec-217-exploiting-incorrectly-configured-ssl-tls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-217 (Exploiting Incorrectly Configured SSL/TLS) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary takes advantage of incorr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-217-exploiting-incorrectly-configured-ssl-tls.json #### MITRE CAPEC-218: Spoofing of UDDI/ebXML Messages (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-218-spoofing-of-uddi-ebxml-messages - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-218 (Spoofing of UDDI/ebXML Messages) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker spoofs a UDDI, ebXML, or similar mes... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-218-spoofing-of-uddi-ebxml-messages.json #### MITRE CAPEC-219: XML Routing Detour Attacks (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-219-xml-routing-detour-attacks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-219 (XML Routing Detour Attacks) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker subverts an intermediate system used to p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-219-xml-routing-detour-attacks.json #### MITRE CAPEC-22: Exploiting Trust in Client (Attack Pattern - High Severity) - **ID**: mitre-capec-capec-22-exploiting-trust-in-client - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-22 (Exploiting Trust in Client) is an attack pattern in which an attacker communicates directly with the server where the server believes it is communicating only with a valid client. Like... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-22-exploiting-trust-in-client.json #### MITRE CAPEC-220: Client-Server Protocol Manipulation (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-220-client-server-protocol-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-220 (Client-Server Protocol Manipulation) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary takes advantage of weaknesses i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-220-client-server-protocol-manipulation.json #### MITRE CAPEC-221: Data Serialization External Entities Blowup (Detailed Attack Pattern) - **ID**: mitre-capec-capec-221-data-serialization-external-entities-blowup - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-221 (Data Serialization External Entities Blowup) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack takes advantage of the e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-221-data-serialization-external-entities-blowup.json #### MITRE CAPEC-222: iFrame Overlay (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-222-iframe-overlay - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-222 (iFrame Overlay) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In an iFrame overlay attack the victim is tricked into unknowingl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-222-iframe-overlay.json #### MITRE CAPEC-224: Fingerprinting (Meta Attack Pattern - Very Low Severity) - **ID**: mitre-capec-capec-224-fingerprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-224 (Fingerprinting) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary compares output from a target system to known indicators... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-224-fingerprinting.json #### MITRE CAPEC-226: Session Credential Falsification through Manipulation (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-226-session-credential-falsification-through-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-226 (Session Credential Falsification through Manipulation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker manipulates an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-226-session-credential-falsification-through-manipulation.json #### MITRE CAPEC-227: Sustained Client Engagement (Meta Attack Pattern) - **ID**: mitre-capec-capec-227-sustained-client-engagement - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-227 (Sustained Client Engagement) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary attempts to deny legitimate users access to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-227-sustained-client-engagement.json #### MITRE CAPEC-228: DTD Injection (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-228-dtd-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-228 (DTD Injection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker injects malicious content into an application's DTD in... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-228-dtd-injection.json #### MITRE CAPEC-229: Serialized Data Parameter Blowup (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-229-serialized-data-parameter-blowup - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-229 (Serialized Data Parameter Blowup) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack exploits certain serialized data pa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-229-serialized-data-parameter-blowup.json #### MITRE CAPEC-23: File Content Injection (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-23-file-content-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-23 (File Content Injection) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary poisons files with a malicious payload (targe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-23-file-content-injection.json #### MITRE CAPEC-230: Serialized Data with Nested Payloads (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-230-serialized-data-with-nested-payloads - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-230 (Serialized Data with Nested Payloads) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Applications often need to transform data i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-230-serialized-data-with-nested-payloads.json #### MITRE CAPEC-231: Oversized Serialized Data Payloads (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-231-oversized-serialized-data-payloads - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-231 (Oversized Serialized Data Payloads) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary injects oversized serialized dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-231-oversized-serialized-data-payloads.json #### MITRE CAPEC-233: Privilege Escalation (Meta Attack Pattern) - **ID**: mitre-capec-capec-233-privilege-escalation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-233 (Privilege Escalation) is a meta-level attack pattern in which an adversary exploits a weakness enabling elevation of privilege to perform unauthorized actions. Page references OWASP W... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-233-privilege-escalation.json #### MITRE CAPEC-234: Hijacking a privileged process (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-234-hijacking-a-privileged-process - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-234 (Hijacking a privileged process) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary gains control of a process that is a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-234-hijacking-a-privileged-process.json #### MITRE CAPEC-237: Escaping a Sandbox by Calling Code in Another Language (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-237-escaping-a-sandbox-by-calling-code-in-another - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-237 (Escaping a Sandbox by Calling Code in Another Language) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The attacker may submit m... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-237-escaping-a-sandbox-by-calling-code-in-another.json #### MITRE CAPEC-24: Filter Failure through Buffer Overflow (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-24-filter-failure-through-buffer-overflow - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-24 (Filter Failure through Buffer Overflow) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack, the idea is to cause an ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-24-filter-failure-through-buffer-overflow.json #### MITRE CAPEC-240: Resource Injection (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-240-resource-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-240 (Resource Injection) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits weaknesses in input validation by manipulat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-240-resource-injection.json #### MITRE CAPEC-242: Code Injection (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-242-code-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-242 (Code Injection) is a meta-level attack pattern in which an adversary exploits a weakness in input validation on the target to inject new code into that which is currently executing. L... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-242-code-injection.json #### MITRE CAPEC-243: XSS Targeting HTML Attributes (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-243-xss-targeting-html-attributes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-243 (XSS Targeting HTML Attributes) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary inserts commands to perform cross-sit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-243-xss-targeting-html-attributes.json #### MITRE CAPEC-244: XSS Targeting URI Substitution Fields (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-244-xss-targeting-uri-substitution-fields - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-244 (XSS Targeting URI Placeholders) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attack of this type exploits the ability of mo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-244-xss-targeting-uri-substitution-fields.json #### MITRE CAPEC-245: XSS Using Doubled Characters (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-245-xss-using-doubled-characters - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-245 (XSS Using Doubled Characters) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary bypasses input validation by using do... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-245-xss-using-doubled-characters.json #### MITRE CAPEC-247: XSS Using Invalid Characters (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-247-xss-using-invalid-characters - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-247 (XSS Using Invalid Characters) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary inserts invalid characters in identifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-247-xss-using-invalid-characters.json #### MITRE CAPEC-248: Command Injection (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-248-command-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-248 (Command Injection) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary looking to execute a command of their choosing, injec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-248-command-injection.json #### MITRE CAPEC-25: Forced Deadlock (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-25-forced-deadlock - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-25 (Forced Deadlock) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary triggers and exploits a deadlock condition in the targe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-25-forced-deadlock.json #### MITRE CAPEC-250: XML Injection (Attack Pattern - High Severity) - **ID**: mitre-capec-capec-250-xml-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-250 (XML Injection) is an attack pattern in which an attacker uses crafted XML user-controllable input to probe, attack, and inject data into the XML database using techniques similar to S... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-250-xml-injection.json #### MITRE CAPEC-251: Local Code Inclusion (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-251-local-code-inclusion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-251 (Local Code Inclusion) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The attacker forces an application to load arbitrary code f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-251-local-code-inclusion.json #### MITRE CAPEC-252: PHP Local File Inclusion (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-252-php-local-file-inclusion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-252 (PHP Local File Inclusion) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The attacker loads and executes an arbitrary local PHP ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-252-php-local-file-inclusion.json #### MITRE CAPEC-253: Remote Code Inclusion (Standard Attack Pattern) - **ID**: mitre-capec-capec-253-remote-code-inclusion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-253 (Remote Code Inclusion) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The attacker forces an application to load arbitrary code ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-253-remote-code-inclusion.json #### MITRE CAPEC-256: SOAP Array Overflow (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-256-soap-array-overflow - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-256 (SOAP Array Overflow) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker sends a SOAP request with an array whose actual ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-256-soap-array-overflow.json #### MITRE CAPEC-26: Leveraging Race Conditions (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-26-leveraging-race-conditions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-26 (Leveraging Race Conditions) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary targets a race condition occurring when mult... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-26-leveraging-race-conditions.json #### MITRE CAPEC-261: Fuzzing for garnering other adjacent user/sensitive data (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-261-fuzzing-for-garnering-other-adjacent-user-sensitive-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-261 (Fuzzing for garnering other adjacent user/sensitive data) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary who is aut... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-261-fuzzing-for-garnering-other-adjacent-user-sensitive-data.json #### MITRE CAPEC-263: Force Use of Corrupted Files (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-263-force-use-of-corrupted-files - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-263 (Force Use of Corrupted Files) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This describes an attack where an application is fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-263-force-use-of-corrupted-files.json #### MITRE CAPEC-267: Leverage Alternate Encoding (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-267-leverage-alternate-encoding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-267 (Leverage Alternate Encoding) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary leverages the possibility to encode pot... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-267-leverage-alternate-encoding.json #### MITRE CAPEC-268: Audit Log Manipulation (Standard Attack Pattern) - **ID**: mitre-capec-capec-268-audit-log-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-268 (Audit Log Manipulation) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The attacker injects, manipulates, deletes, or forges mal... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-268-audit-log-manipulation.json #### MITRE CAPEC-27: Leveraging Race Conditions via Symbolic Links (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-27-leveraging-race-conditions-via-symbolic-links - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-27 (Leveraging Race Conditions via Symbolic Links) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack leverages the use of sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-27-leveraging-race-conditions-via-symbolic-links.json #### MITRE CAPEC-270: Modification of Registry Run Keys (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-270-modification-of-registry-run-keys - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-270 (Modification of Registry Run Keys) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary adds a new entry to the "run keys... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-270-modification-of-registry-run-keys.json #### MITRE CAPEC-271: Schema Poisoning (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-271-schema-poisoning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-271 (Schema Poisoning) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary corrupts or modifies the content of a schema for t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-271-schema-poisoning.json #### MITRE CAPEC-272: Protocol Manipulation (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-272-protocol-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-272 (Protocol Manipulation) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary subverts a communications protocol to perform an ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-272-protocol-manipulation.json #### MITRE CAPEC-273: HTTP Response Smuggling (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-273-http-response-smuggling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-273 (HTTP Response Smuggling) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary manipulates and injects malicious content i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-273-http-response-smuggling.json #### MITRE CAPEC-274: HTTP Verb Tampering (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-274-http-verb-tampering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-274 (HTTP Verb Tampering) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker modifies the HTTP Verb (e.g. GET, PUT, TRACE, et... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-274-http-verb-tampering.json #### MITRE CAPEC-275: DNS Rebinding (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-275-dns-rebinding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-275 (DNS Rebinding) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary serves content whose IP address is resolved by a DNS ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-275-dns-rebinding.json #### MITRE CAPEC-276: Inter-component Protocol Manipulation (Standard Attack Pattern) - **ID**: mitre-capec-capec-276-inter-component-protocol-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-276 (Inter-component Protocol Manipulation) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Inter-component protocols are used to comm... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-276-inter-component-protocol-manipulation.json #### MITRE CAPEC-277: Data Interchange Protocol Manipulation (Standard Attack Pattern) - **ID**: mitre-capec-capec-277-data-interchange-protocol-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-277 (Data Interchange Protocol Manipulation) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Data Interchange Protocols are used to tr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-277-data-interchange-protocol-manipulation.json #### MITRE CAPEC-278: Web Services Protocol Manipulation (Standard Attack Pattern) - **ID**: mitre-capec-capec-278-web-services-protocol-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-278 (Web Services Protocol Manipulation) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary manipulates a web service relate... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-278-web-services-protocol-manipulation.json #### MITRE CAPEC-279: SOAP Manipulation (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-279-soap-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-279 (SOAP Manipulation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Simple Object Access Protocol (SOAP) is used as a communicatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-279-soap-manipulation.json #### MITRE CAPEC-28: Fuzzing (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-28-fuzzing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-28 (Fuzzing) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack pattern, the adversary leverages fuzzing to try to identify we... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-28-fuzzing.json #### MITRE CAPEC-285: ICMP Echo Request Ping (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-285-icmp-echo-request-ping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-285 (ICMP Echo Request Ping) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary sends out an ICMP Type 8 Echo Request, commo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-285-icmp-echo-request-ping.json #### MITRE CAPEC-287: TCP SYN Scan (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-287-tcp-syn-scan - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-287 (TCP SYN Scan) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses a SYN scan to determine the status of ports on th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-287-tcp-syn-scan.json #### MITRE CAPEC-29: Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-29-leveraging-time-of-check-and-time-of-use - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-29 (Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack tar... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-29-leveraging-time-of-check-and-time-of-use.json #### MITRE CAPEC-290: Enumerate Mail Exchange (MX) Records (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-290-enumerate-mail-exchange-mx-records - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-290 (Enumerate Mail Exchange (MX) Records) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary enumerates the MX records for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-290-enumerate-mail-exchange-mx-records.json #### MITRE CAPEC-291: DNS Zone Transfers (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-291-dns-zone-transfers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-291 (DNS Zone Transfers) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker exploits a DNS misconfiguration that permits a ZO... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-291-dns-zone-transfers.json #### MITRE CAPEC-292: Host Discovery (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-292-host-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-292 (Host Discovery) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary sends a probe to an IP address to determine if the h... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-292-host-discovery.json #### MITRE CAPEC-293: Traceroute Route Enumeration (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-293-traceroute-route-enumeration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-293 (Traceroute Route Enumeration) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses a traceroute utility to map out t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-293-traceroute-route-enumeration.json #### MITRE CAPEC-294: ICMP Address Mask Request (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-294-icmp-address-mask-request - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-294 (ICMP Address Mask Request) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary sends an ICMP Type 17 Address Mask Reques... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-294-icmp-address-mask-request.json #### MITRE CAPEC-295: Timestamp Request (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-295-timestamp-request - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-295 (Timestamp Request) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This pattern of attack leverages standard requests to learn th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-295-timestamp-request.json #### MITRE CAPEC-296: ICMP Information Request (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-296-icmp-information-request - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-296 (ICMP Information Request) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary sends an ICMP Information Request to a hos... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-296-icmp-information-request.json #### MITRE CAPEC-297: TCP ACK Ping (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-297-tcp-ack-ping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-297 (TCP ACK Ping) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary sends a TCP segment with the ACK flag set to a remote ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-297-tcp-ack-ping.json #### MITRE CAPEC-298: UDP Ping (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-298-udp-ping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-298 (UDP Ping) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary sends a UDP datagram to the remote host to determine if th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-298-udp-ping.json #### MITRE CAPEC-299: TCP SYN Ping (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-299-tcp-syn-ping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-299 (TCP SYN Ping) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses TCP SYN packets as a means towards host discovery... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-299-tcp-syn-ping.json #### MITRE CAPEC-3: Using Leading 'Ghost' Character Sequences to Bypass Input Filters (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-3-using-leading-ghost-character-sequences-to-bypass-input - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-3 (Using Leading 'Ghost' Character Sequences to Bypass Input Filters) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Some APIs will s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-3-using-leading-ghost-character-sequences-to-bypass-input.json #### MITRE CAPEC-30: Hijacking a Privileged Thread of Execution (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-30-hijacking-a-privileged-thread-of-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-30 (Hijacking a Privileged Thread of Execution) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary hijacks a privileged thre... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-30-hijacking-a-privileged-thread-of-execution.json #### MITRE CAPEC-300: Port Scanning (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-300-port-scanning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-300 (Port Scanning) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses a combination of techniques to determine the sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-300-port-scanning.json #### MITRE CAPEC-301: TCP Connect Scan (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-301-tcp-connect-scan - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-301 (TCP Connect Scan) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses full TCP connection attempts to determine if ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-301-tcp-connect-scan.json #### MITRE CAPEC-302: TCP FIN Scan (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-302-tcp-fin-scan - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-302 (TCP FIN Scan) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses a TCP FIN scan to determine if ports are closed o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-302-tcp-fin-scan.json #### MITRE CAPEC-303: TCP Xmas Scan (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-303-tcp-xmas-scan - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-303 (TCP Xmas Scan) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses a TCP XMAS scan to determine if ports are closed... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-303-tcp-xmas-scan.json #### MITRE CAPEC-304: TCP Null Scan (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-304-tcp-null-scan - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-304 (TCP Null Scan) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses a TCP NULL scan to determine if ports are closed... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-304-tcp-null-scan.json #### MITRE CAPEC-305: TCP ACK Scan (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-305-tcp-ack-scan - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-305 (TCP ACK Scan) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses TCP ACK segments to gather information about fire... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-305-tcp-ack-scan.json #### MITRE CAPEC-306: TCP Window Scan (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-306-tcp-window-scan - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-306 (TCP Window Scan) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in TCP Window scanning to analyze port stat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-306-tcp-window-scan.json #### MITRE CAPEC-307: TCP RPC Scan (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-307-tcp-rpc-scan - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-307 (TCP RPC Scan) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary scans for RPC services listing on a Unix/Linux host. L... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-307-tcp-rpc-scan.json #### MITRE CAPEC-308: UDP Scan (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-308-udp-scan - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-308 (UDP Scan) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in UDP scanning to gather information about UDP po... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-308-udp-scan.json #### MITRE CAPEC-309: Network Topology Mapping (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-309-network-topology-mapping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-309 (Network Topology Mapping) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in scanning activities to map netw... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-309-network-topology-mapping.json #### MITRE CAPEC-31: Accessing/Intercepting/Modifying HTTP Cookies (Attack Pattern - High Severity) - **ID**: mitre-capec-capec-31-http-cookies - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-31 (Accessing/Intercepting/Modifying HTTP Cookies) is an attack pattern that exploits HTTP cookies in three ways: accessing cookies to extract sensitive data, intercepting transmitted cook... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-31-http-cookies.json #### MITRE CAPEC-310: Scanning for Vulnerable Software (Attack Pattern - Reconnaissance) - **ID**: mitre-capec-capec-310-scanning-for-vulnerable-software - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-310 (Scanning for Vulnerable Software) is a reconnaissance attack pattern in which an adversary engages in scanning activity to find vulnerable software versions or types (operating system... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-310-scanning-for-vulnerable-software.json #### MITRE CAPEC-312: Active OS Fingerprinting (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-312-active-os-fingerprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-312 (Active OS Fingerprinting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in activity to detect the operatin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-312-active-os-fingerprinting.json #### MITRE CAPEC-313: Passive OS Fingerprinting (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-313-passive-os-fingerprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-313 (Passive OS Fingerprinting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in activity to detect the version... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-313-passive-os-fingerprinting.json #### MITRE CAPEC-317: IP ID Sequencing Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-317-ip-id-sequencing-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-317 (IP ID Sequencing Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This OS fingerprinting probe analyzes the IP 'ID' field s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-317-ip-id-sequencing-probe.json #### MITRE CAPEC-318: IP 'ID' Echoed Byte-Order Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-318-ip-id-echoed-byte-order-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-318 (IP 'ID' Echoed Byte-Order Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This OS fingerprinting probe tests to determine ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-318-ip-id-echoed-byte-order-probe.json #### MITRE CAPEC-319: IP (DF) 'Don't Fragment Bit' Echoing Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-319-ip-df-don-t-fragment-bit-echoing-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-319 (IP (DF) 'Don't Fragment Bit' Echoing Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This OS fingerprinting probe tests to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-319-ip-df-don-t-fragment-bit-echoing-probe.json #### MITRE CAPEC-32: XSS Through HTTP Query Strings (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-32-xss-through-http-query-strings - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-32 (XSS Through HTTP Query Strings) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary embeds malicious script code in the p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-32-xss-through-http-query-strings.json #### MITRE CAPEC-320: TCP Timestamp Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-320-tcp-timestamp-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-320 (TCP Timestamp Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This OS fingerprinting probe examines the remote server's im... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-320-tcp-timestamp-probe.json #### MITRE CAPEC-321: TCP Sequence Number Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-321-tcp-sequence-number-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-321 (TCP Sequence Number Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This OS fingerprinting probe tests the target system's... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-321-tcp-sequence-number-probe.json #### MITRE CAPEC-322: TCP (ISN) Greatest Common Divisor Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-322-tcp-isn-greatest-common-divisor-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-322 (TCP (ISN) Greatest Common Divisor Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This OS fingerprinting probe sends a num... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-322-tcp-isn-greatest-common-divisor-probe.json #### MITRE CAPEC-323: TCP (ISN) Counter Rate Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-323-tcp-isn-counter-rate-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-323 (TCP (ISN) Counter Rate Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This OS detection probe measures the average rate o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-323-tcp-isn-counter-rate-probe.json #### MITRE CAPEC-324: TCP (ISN) Sequence Predictability Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-324-tcp-isn-sequence-predictability-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-324 (TCP (ISN) Sequence Predictability Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This type of operating system probe atte... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-324-tcp-isn-sequence-predictability-probe.json #### MITRE CAPEC-325: TCP Congestion Control Flag (ECN) Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-325-tcp-congestion-control-flag-ecn-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-325 (TCP Congestion Control Flag (ECN) Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This OS fingerprinting probe checks to s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-325-tcp-congestion-control-flag-ecn-probe.json #### MITRE CAPEC-326: TCP Initial Window Size Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-326-tcp-initial-window-size-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-326 (TCP Initial Window Size Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This OS fingerprinting probe checks the initial TC... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-326-tcp-initial-window-size-probe.json #### MITRE CAPEC-327: TCP Options Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-327-tcp-options-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-327 (TCP Options Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This OS fingerprinting probe analyzes the type and order of an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-327-tcp-options-probe.json #### MITRE CAPEC-328: TCP 'RST' Flag Checksum Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-328-tcp-rst-flag-checksum-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-328 (TCP 'RST' Flag Checksum Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This OS fingerprinting probe performs a checksum o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-328-tcp-rst-flag-checksum-probe.json #### MITRE CAPEC-329: ICMP Error Message Quoting Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-329-icmp-error-message-quoting-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-329 (ICMP Error Message Quoting Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses a technique to generate an IC... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-329-icmp-error-message-quoting-probe.json #### MITRE CAPEC-33: HTTP Request Smuggling (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-33-http-request-smuggling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-33 (HTTP Request Smuggling) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary abuses the flexibility and discrepancies in t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-33-http-request-smuggling.json #### MITRE CAPEC-330: ICMP Error Message Echoing Integrity Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-330-icmp-error-message-echoing-integrity-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-330 (ICMP Error Message Echoing Integrity Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses a technique to gene... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-330-icmp-error-message-echoing-integrity-probe.json #### MITRE CAPEC-331: ICMP IP Total Length Field Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-331-icmp-ip-total-length-field-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-331 (ICMP IP Total Length Field Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary sends a UDP packet to a closed por... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-331-icmp-ip-total-length-field-probe.json #### MITRE CAPEC-332: ICMP IP 'ID' Field Error Message Probe (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-332-icmp-ip-id-field-error-message-probe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-332 (ICMP IP 'ID' Field Error Message Probe) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary sends a UDP datagram having ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-332-icmp-ip-id-field-error-message-probe.json #### MITRE CAPEC-34: HTTP Response Splitting (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-34-http-response-splitting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-34 (HTTP Response Splitting) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary manipulates and injects malicious content, i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-34-http-response-splitting.json #### MITRE CAPEC-35: Leverage Executable Code in Non-Executable Files (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-35-leverage-executable-code-in-non-executable-files - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-35 (Leverage Executable Code in Non-Executable Files) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attack of this type exploits ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-35-leverage-executable-code-in-non-executable-files.json #### MITRE CAPEC-36: Using Unpublished Interfaces or Functionality (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-36-using-unpublished-interfaces-or-functionality - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-36 (Using Unpublished Interfaces or Functionality) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary searches for and invok... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-36-using-unpublished-interfaces-or-functionality.json #### MITRE CAPEC-37: Retrieve Embedded Sensitive Data (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-37-retrieve-embedded-sensitive-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-37 (Retrieve Embedded Sensitive Data) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker examines a target system to find sen... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-37-retrieve-embedded-sensitive-data.json #### MITRE CAPEC-38: Leveraging/Manipulating Configuration File Search Paths (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-38-leveraging-manipulating-configuration-file-search-paths - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-38 (Leveraging/Manipulating Configuration File Search Paths) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This pattern of attack se... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-38-leveraging-manipulating-configuration-file-search-paths.json #### MITRE CAPEC-383: Harvesting Information via API Event Monitoring (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-383-harvesting-information-via-api-event-monitoring - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-383 (Harvesting Information via API Event Monitoring) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary hosts an event with... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-383-harvesting-information-via-api-event-monitoring.json #### MITRE CAPEC-384: Application API Message Manipulation via Man-in-the-Middle (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-384-application-api-message-manipulation-via-man-in-the - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-384 (Application API Message Manipulation via Man-in-the-Middle) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker manipulat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-384-application-api-message-manipulation-via-man-in-the.json #### MITRE CAPEC-385: Transaction or Event Tampering via Application API Manipulation (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-385-transaction-or-event-tampering-via-application-api-manipulat - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-385 (Transaction or Event Tampering via Application API Manipulation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker host... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-385-transaction-or-event-tampering-via-application-api-manipulat.json #### MITRE CAPEC-386: Application API Navigation Remapping (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-386-application-api-navigation-remapping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-386 (Application API Navigation Remapping) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker manipulates either egress or in... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-386-application-api-navigation-remapping.json #### MITRE CAPEC-387: Navigation Remapping To Propagate Malicious Content (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-387-navigation-remapping-to-propagate-malicious-content - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-387 (Navigation Remapping To Propagate Malicious Content) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary manipulates eit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-387-navigation-remapping-to-propagate-malicious-content.json #### MITRE CAPEC-388: Application API Button Hijacking (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-388-application-api-button-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-388 (Application API Button Hijacking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker manipulates either egress or ingres... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-388-application-api-button-hijacking.json #### MITRE CAPEC-389: Content Spoofing Via Application API Manipulation (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-389-content-spoofing-via-application-api-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-389 (Content Spoofing Via Application API Manipulation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker manipulates either... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-389-content-spoofing-via-application-api-manipulation.json #### MITRE CAPEC-39: Manipulating Opaque Client-based Data Tokens (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-39-manipulating-opaque-client-based-data-tokens - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-39 (Manipulating Opaque Client-based Data Tokens) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In circumstances where an applicatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-39-manipulating-opaque-client-based-data-tokens.json #### MITRE CAPEC-390: Bypassing Physical Security (Meta Attack Pattern - Unrated Severity) - **ID**: mitre-capec-capec-390-bypassing-physical-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-390 (Bypassing Physical Security) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Facilities often used layered models for physical securi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-390-bypassing-physical-security.json #### MITRE CAPEC-391: Bypassing Physical Locks (Standard Attack Pattern - Unrated Severity) - **ID**: mitre-capec-capec-391-bypassing-physical-locks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-391 (Bypassing Physical Locks) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker uses techniques and methods to bypass physi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-391-bypassing-physical-locks.json #### MITRE CAPEC-392: Lock Bumping (Detailed Attack Pattern - Unrated Severity) - **ID**: mitre-capec-capec-392-lock-bumping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-392 (Lock Bumping) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker uses a bump key to force a lock on a building or facili... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-392-lock-bumping.json #### MITRE CAPEC-393: Lock Picking (Detailed Attack Pattern - Unrated Severity) - **ID**: mitre-capec-capec-393-lock-picking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-393 (Lock Picking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker uses lock picking tools and techniques to bypass the lo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-393-lock-picking.json #### MITRE CAPEC-394: Using a Snap Gun Lock to Force a Lock (Detailed Attack Pattern - Unrated Severity) - **ID**: mitre-capec-capec-394-using-a-snap-gun-lock-to-force-a-lock - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-394 (Using a Snap Gun Lock to Force a Lock) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker uses a Snap Gun, also known as... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-394-using-a-snap-gun-lock-to-force-a-lock.json #### MITRE CAPEC-395: Bypassing Electronic Locks and Access Controls (Standard Attack Pattern - Unrated Severity) - **ID**: mitre-capec-capec-395-bypassing-electronic-locks-and-access-controls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-395 (Bypassing Electronic Locks and Access Controls) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker exploits security ass... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-395-bypassing-electronic-locks-and-access-controls.json #### MITRE CAPEC-397: Cloning Magnetic Strip Cards (Detailed Attack Pattern - Unrated Severity) - **ID**: mitre-capec-capec-397-cloning-magnetic-strip-cards - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-397 (Cloning Magnetic Strip Cards) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker duplicates the data on a Magnetic strip... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-397-cloning-magnetic-strip-cards.json #### MITRE CAPEC-398: Magnetic Strip Card Brute Force Attacks (Detailed Attack Pattern) - **ID**: mitre-capec-capec-398-magnetic-strip-card-brute-force-attacks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-398 (Magnetic Strip Card Brute Force Attacks) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary analyzes the data on two or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-398-magnetic-strip-card-brute-force-attacks.json #### MITRE CAPEC-399: Cloning RFID Cards or Chips (Detailed Attack Pattern - Unrated Severity) - **ID**: mitre-capec-capec-399-cloning-rfid-cards-or-chips - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-399 (Cloning RFID Cards or Chips) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker analyzes data returned by an RFID chip a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-399-cloning-rfid-cards-or-chips.json #### MITRE CAPEC-4: Using Alternative IP Address Encodings (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-4-using-alternative-ip-address-encodings - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-4 (Using Alternative IP Address Encodings) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack relies on the adversary using u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-4-using-alternative-ip-address-encodings.json #### MITRE CAPEC-40: Manipulating Writeable Terminal Devices (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-40-manipulating-writeable-terminal-devices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-40 (Manipulating Writeable Terminal Devices) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack exploits terminal devices tha... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-40-manipulating-writeable-terminal-devices.json #### MITRE CAPEC-400: RFID Chip Deactivation or Destruction (Detailed Attack Pattern - Unrated Severity) - **ID**: mitre-capec-capec-400-rfid-chip-deactivation-or-destruction - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-400 (RFID Chip Deactivation or Destruction) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker uses methods to deactivate a p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-400-rfid-chip-deactivation-or-destruction.json #### MITRE CAPEC-401: Physically Hacking Hardware (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-401-physically-hacking-hardware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-401 (Physically Hacking Hardware) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in access control t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-401-physically-hacking-hardware.json #### MITRE CAPEC-402: Bypassing ATA Password Security (Detailed Attack Pattern) - **ID**: mitre-capec-capec-402-bypassing-ata-password-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-402 (Bypassing ATA Password Security) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in ATA security... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-402-bypassing-ata-password-security.json #### MITRE CAPEC-406: Dumpster Diving (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-406-dumpster-diving - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-406 (Dumpster Diving) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary cases an establishment and searches through trash b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-406-dumpster-diving.json #### MITRE CAPEC-407: Pretexting (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-407-pretexting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-407 (Pretexting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in pretexting behavior to solicit information fr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-407-pretexting.json #### MITRE CAPEC-41: Using Meta-characters in E-mail Headers to Inject Malicious Payloads (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-41-using-meta-characters-in-e-mail-headers-to - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-41 (Using Meta-characters in E-mail Headers to Inject Malicious Payloads) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This type of... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-41-using-meta-characters-in-e-mail-headers-to.json #### MITRE CAPEC-410: Information Elicitation (Meta Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-410-information-elicitation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-410 (Information Elicitation) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages an individual using any combination of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-410-information-elicitation.json #### MITRE CAPEC-412: Pretexting via Customer Service (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-412-pretexting-via-customer-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-412 (Pretexting via Customer Service) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in pretexting behavior, ass... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-412-pretexting-via-customer-service.json #### MITRE CAPEC-413: Pretexting via Tech Support (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-413-pretexting-via-tech-support - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-413 (Pretexting via Tech Support) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in pretexting behavior, assumin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-413-pretexting-via-tech-support.json #### MITRE CAPEC-414: Pretexting via Delivery Person (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-414-pretexting-via-delivery-person - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-414 (Pretexting via Delivery Person) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in pretexting behavior, assu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-414-pretexting-via-delivery-person.json #### MITRE CAPEC-415: Pretexting via Phone (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-415-pretexting-via-phone - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-415 (Pretexting via Phone) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in pretexting behavior, assuming some ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-415-pretexting-via-phone.json #### MITRE CAPEC-416: Manipulate Human Behavior (Meta Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-416-manipulate-human-behavior - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-416 (Manipulate Human Behavior) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits inherent human psychological predisp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-416-manipulate-human-behavior.json #### MITRE CAPEC-417: Influence Perception (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-417-influence-perception - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-417 (Influence Perception) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary uses social engineering to exploit the target... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-417-influence-perception.json #### MITRE CAPEC-418: Influence Perception of Reciprocation (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-418-influence-perception-of-reciprocation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-418 (Influence Perception of Reciprocation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses a social engineering tec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-418-influence-perception-of-reciprocation.json #### MITRE CAPEC-42: MIME Conversion (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-42-mime-conversion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-42 (MIME Conversion) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker exploits a weakness in the MIME conversion routine to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-42-mime-conversion.json #### MITRE CAPEC-420: Influence Perception of Scarcity (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-420-influence-perception-of-scarcity - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-420 (Influence Perception of Scarcity) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary leverages a perception of scarcit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-420-influence-perception-of-scarcity.json #### MITRE CAPEC-421: Influence Perception of Authority (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-421-influence-perception-of-authority - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-421 (Influence Perception of Authority) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses a social engineering techniq... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-421-influence-perception-of-authority.json #### MITRE CAPEC-422: Influence Perception of Commitment and Consistency (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-422-influence-perception-of-commitment-and-consistency - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-422 (Influence Perception of Commitment and Consistency) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses social engi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-422-influence-perception-of-commitment-and-consistency.json #### MITRE CAPEC-423: Influence Perception of Liking (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-423-influence-perception-of-liking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-423 (Influence Perception of Liking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary influences the target's actions by ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-423-influence-perception-of-liking.json #### MITRE CAPEC-424: Influence Perception of Consensus or Social Proof (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-424-influence-perception-of-consensus-or-social-proof - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-424 (Influence Perception of Consensus or Social Proof) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary influences the t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-424-influence-perception-of-consensus-or-social-proof.json #### MITRE CAPEC-425: Target Influence via Framing (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-425-target-influence-via-framing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-425 (Target Influence via Framing) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses framing techniques to contextuali... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-425-target-influence-via-framing.json #### MITRE CAPEC-426: Influence via Incentives (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-426-influence-via-incentives - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-426 (Influence via Incentives) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary incites a behavior from the target by man... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-426-influence-via-incentives.json #### MITRE CAPEC-427: Influence via Psychological Principles (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-427-influence-via-psychological-principles - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-427 (Influence via Psychological Principles) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary shapes the target's actions... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-427-influence-via-psychological-principles.json #### MITRE CAPEC-428: Influence via Modes of Thinking (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-428-influence-via-modes-of-thinking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-428 (Influence via Modes of Thinking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary tailors their communication to the... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-428-influence-via-modes-of-thinking.json #### MITRE CAPEC-429: Target Influence via Eye Cues (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-429-target-influence-via-eye-cues - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-429 (Target Influence via Eye Cues) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary gains information via non-verbal mea... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-429-target-influence-via-eye-cues.json #### MITRE CAPEC-43: Exploiting Multiple Input Interpretation Layers (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-43-exploiting-multiple-input-interpretation-layers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-43 (Exploiting Multiple Input Interpretation Layers) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker supplies the target s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-43-exploiting-multiple-input-interpretation-layers.json #### MITRE CAPEC-433: Target Influence via The Human Buffer Overflow (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-433-target-influence-via-the-human-buffer-overflow - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-433 (Target Influence via The Human Buffer Overflow) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker utilizes a technique ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-433-target-influence-via-the-human-buffer-overflow.json #### MITRE CAPEC-434: Target Influence via Interview and Interrogation (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-434-target-influence-via-interview-and-interrogation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-434 (Target Influence via Interview and Interrogation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Typical severity: Low. Child o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-434-target-influence-via-interview-and-interrogation.json #### MITRE CAPEC-435: Target Influence via Instant Rapport (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-435-target-influence-via-instant-rapport - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-435 (Target Influence via Instant Rapport) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Typical severity: Low. Child of CAPEC-427. - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-435-target-influence-via-instant-rapport.json #### MITRE CAPEC-438: Modification During Manufacture (Meta Attack Pattern) - **ID**: mitre-capec-capec-438-modification-during-manufacture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-438 (Modification During Manufacture) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker modifies a technology, product, or compo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-438-modification-during-manufacture.json #### MITRE CAPEC-439: Manipulation During Distribution (Meta Attack Pattern) - **ID**: mitre-capec-capec-439-manipulation-during-distribution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-439 (Manipulation During Distribution) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker undermines the integrity of a product, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-439-manipulation-during-distribution.json #### MITRE CAPEC-44: Overflow Binary Resource File (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-44-overflow-binary-resource-file - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-44 (Overflow Binary Resource File) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attack of this type exploits a buffer overflow v... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-44-overflow-binary-resource-file.json #### MITRE CAPEC-440: Hardware Integrity Attack (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-440-hardware-integrity-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-440 (Hardware Integrity Attack) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in the system maintenance... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-440-hardware-integrity-attack.json #### MITRE CAPEC-441: Malicious Logic Insertion (Attack Pattern - High Severity, Supply Chain) - **ID**: mitre-capec-capec-441-malicious-logic-insertion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-441 (Malicious Logic Insertion) is an attack pattern in which an adversary installs or adds malicious logic (malware) into a seemingly benign component of a fielded system. Targets already... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-441-malicious-logic-insertion.json #### MITRE CAPEC-442: Infected Software (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-442-infected-software - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-442 (Infected Software) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary adds malicious logic, often in the form of a comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-442-infected-software.json #### MITRE CAPEC-443: Malicious Logic Inserted Into Product by Authorized Developer (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-443-malicious-logic-inserted-into-product-by-authorized-develope - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-443 (Malicious Logic Inserted Into Product by Authorized Developer) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-443-malicious-logic-inserted-into-product-by-authorized-develope.json #### MITRE CAPEC-444: Development Alteration (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-444-development-alteration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-444 (Development Alteration) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary modifies a technology, product, or component... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-444-development-alteration.json #### MITRE CAPEC-445: Malicious Logic Insertion into Product Software via Configuration Management Manipulation (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-445-malicious-logic-insertion-into-product-software-via-configur - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-445 (Malicious Logic Insertion into Product Software via Configuration Management Manipulation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-445-malicious-logic-insertion-into-product-software-via-configur.json #### MITRE CAPEC-446: Malicious Logic Insertion into Product via Inclusion of Third-Party Component (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-446-malicious-logic-insertion-into-product-via-inclusion-of - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-446 (Malicious Logic Insertion into Product via Inclusion of Third-Party Component) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-446-malicious-logic-insertion-into-product-via-inclusion-of.json #### MITRE CAPEC-447: Design Alteration (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-447-design-alteration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-447 (Design Alteration) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary modifies the design of a technology, product, or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-447-design-alteration.json #### MITRE CAPEC-448: Embed Virus into DLL (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-448-embed-virus-into-dll - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-448 (Embed Virus into DLL) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary tampers with a DLL and embeds a computer virus... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-448-embed-virus-into-dll.json #### MITRE CAPEC-45: Buffer Overflow via Symbolic Links (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-45-buffer-overflow-via-symbolic-links - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-45 (Buffer Overflow via Symbolic Links) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This type of attack leverages the use of symbo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-45-buffer-overflow-via-symbolic-links.json #### MITRE CAPEC-452: Infected Hardware (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-452-infected-hardware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-452 (Infected Hardware) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary inserts malicious logic into hardware, typically ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-452-infected-hardware.json #### MITRE CAPEC-456: Infected Memory (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-456-infected-memory - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-456 (Infected Memory) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary inserts malicious logic into memory enabling them t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-456-infected-memory.json #### MITRE CAPEC-457: USB Memory Attacks (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-457-usb-memory-attacks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-457 (USB Memory Attacks) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary loads malicious code onto a USB memory stick in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-457-usb-memory-attacks.json #### MITRE CAPEC-458: Flash Memory Attacks (Detailed Attack Pattern) - **ID**: mitre-capec-capec-458-flash-memory-attacks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-458 (Flash Memory Attacks) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary inserts malicious logic into a product or tech... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-458-flash-memory-attacks.json #### MITRE CAPEC-459: Creating a Rogue Certification Authority Certificate (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-459-creating-a-rogue-certification-authority-certificate - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-459 (Creating a Rogue Certification Authority Certificate) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a wea... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-459-creating-a-rogue-certification-authority-certificate.json #### MITRE CAPEC-46: Overflow Variables and Tags (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-46-overflow-variables-and-tags - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-46 (Overflow Variables and Tags) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This type of attack leverages the use of tags or vari... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-46-overflow-variables-and-tags.json #### MITRE CAPEC-460: HTTP Parameter Pollution (HPP) (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-460-http-parameter-pollution-hpp - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-460 (HTTP Parameter Pollution (HPP)) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary adds duplicate HTTP GET/POST paramet... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-460-http-parameter-pollution-hpp.json #### MITRE CAPEC-461: Web Services API Signature Forgery Leveraging Hash Function Extension Weakness (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-461-web-services-api-signature-forgery-leveraging-hash-function - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-461 (Web Services API Signature Forgery Leveraging Hash Function Extension Weakness) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. A... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-461-web-services-api-signature-forgery-leveraging-hash-function.json #### MITRE CAPEC-462: Cross-Domain Search Timing (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-462-cross-domain-search-timing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-462 (Cross-Domain Search Timing) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker initiates cross domain HTTP / GET request... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-462-cross-domain-search-timing.json #### MITRE CAPEC-463: Padding Oracle Crypto Attack (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-463-padding-oracle-crypto-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-463 (Padding Oracle Crypto Attack) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary is able to efficiently decrypt data wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-463-padding-oracle-crypto-attack.json #### MITRE CAPEC-464: Evercookie (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-464-evercookie - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-464 (Evercookie) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker creates a very persistent cookie that stays present even ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-464-evercookie.json #### MITRE CAPEC-465: Transparent Proxy Abuse (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-465-transparent-proxy-abuse - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-465 (Transparent Proxy Abuse) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. A transparent proxy serves as an intermediate between th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-465-transparent-proxy-abuse.json #### MITRE CAPEC-466: Leveraging Active Adversary in the Middle Attacks to Bypass Same Origin Policy (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-466-leveraging-active-adversary-in-the-middle-attacks-to - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-466 (Leveraging Active Adversary in the Middle Attacks to Bypass Same Origin Policy) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. A... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-466-leveraging-active-adversary-in-the-middle-attacks-to.json #### MITRE CAPEC-467: Cross Site Identification (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-467-cross-site-identification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-467 (Cross Site Identification) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker harvests identifying information about a v... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-467-cross-site-identification.json #### MITRE CAPEC-468: Generic Cross-Browser Cross-Domain Theft (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-468-generic-cross-browser-cross-domain-theft - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-468 (Generic Cross-Browser Cross-Domain Theft) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker makes use of Cascading Styl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-468-generic-cross-browser-cross-domain-theft.json #### MITRE CAPEC-469: HTTP DoS (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-469-http-dos - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-469 (HTTP DoS) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker performs flooding at the HTTP level to bring down only a pa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-469-http-dos.json #### MITRE CAPEC-47: Buffer Overflow via Parameter Expansion (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-47-buffer-overflow-via-parameter-expansion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-47 (Buffer Overflow via Parameter Expansion) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack, the target software is gi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-47-buffer-overflow-via-parameter-expansion.json #### MITRE CAPEC-470: Expanding Control over the Operating System from the Database (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-470-expanding-control-over-the-operating-system-from-the - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-470 (Expanding Control over the Operating System from the Database) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker is abl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-470-expanding-control-over-the-operating-system-from-the.json #### MITRE CAPEC-471: Search Order Hijacking (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-471-search-order-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-471 (Search Order Hijacking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in an application's spec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-471-search-order-hijacking.json #### MITRE CAPEC-472: Browser Fingerprinting (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-472-browser-fingerprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-472 (Browser Fingerprinting) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker carefully crafts small snippets of Java Scrip... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-472-browser-fingerprinting.json #### MITRE CAPEC-473: Signature Spoof (Standard Attack Pattern) - **ID**: mitre-capec-capec-473-signature-spoof - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-473 (Signature Spoof) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker generates a message or datablock that causes the rec... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-473-signature-spoof.json #### MITRE CAPEC-474: Signature Spoofing by Key Theft (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-474-signature-spoofing-by-key-theft - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-474 (Signature Spoofing by Key Theft) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker obtains an authoritative or reputabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-474-signature-spoofing-by-key-theft.json #### MITRE CAPEC-475: Signature Spoofing by Improper Validation (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-475-signature-spoofing-by-improper-validation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-475 (Signature Spoofing by Improper Validation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a cryptographic ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-475-signature-spoofing-by-improper-validation.json #### MITRE CAPEC-476: Signature Spoofing by Misrepresentation (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-476-signature-spoofing-by-misrepresentation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-476 (Signature Spoofing by Misrepresentation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker exploits a weakness in the p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-476-signature-spoofing-by-misrepresentation.json #### MITRE CAPEC-477: Signature Spoofing by Mixing Signed and Unsigned Content (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-477-signature-spoofing-by-mixing-signed-and-unsigned-content - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-477 (Signature Spoofing by Mixing Signed and Unsigned Content) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker exploits th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-477-signature-spoofing-by-mixing-signed-and-unsigned-content.json #### MITRE CAPEC-478: Modification of Windows Service Configuration (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-478-modification-of-windows-service-configuration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-478 (Modification of Windows Service Configuration) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-478-modification-of-windows-service-configuration.json #### MITRE CAPEC-479: Malicious Root Certificate (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-479-malicious-root-certificate - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-479 (Malicious Root Certificate) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in authorization and... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-479-malicious-root-certificate.json #### MITRE CAPEC-48: Passing Local Filenames to Functions That Expect a URL (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-48-passing-local-filenames-to-functions-that-expect-a - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-48 (Passing Local Filenames to Functions That Expect a URL) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack relies on clie... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-48-passing-local-filenames-to-functions-that-expect-a.json #### MITRE CAPEC-480: Escaping Virtualization (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-480-escaping-virtualization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-480 (Escaping Virtualization) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary gains access to an application, service, or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-480-escaping-virtualization.json #### MITRE CAPEC-481: Contradictory Destinations in Traffic Routing Schemes (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-481-contradictory-destinations-in-traffic-routing-schemes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-481 (Contradictory Destinations in Traffic Routing Schemes) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Adversaries can provide co... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-481-contradictory-destinations-in-traffic-routing-schemes.json #### MITRE CAPEC-482: TCP Flood (Standard Attack Pattern) - **ID**: mitre-capec-capec-482-tcp-flood - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-482 (TCP Flood) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary may execute a flooding attack using the TCP protocol with... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-482-tcp-flood.json #### MITRE CAPEC-485: Signature Spoofing by Key Recreation (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-485-signature-spoofing-by-key-recreation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-485 (Signature Spoofing by Key Recreation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker obtains an authoritative or rep... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-485-signature-spoofing-by-key-recreation.json #### MITRE CAPEC-486: UDP Flood (Standard Attack Pattern) - **ID**: mitre-capec-capec-486-udp-flood - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-486 (UDP Flood) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary may execute a flooding attack using the UDP protocol with... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-486-udp-flood.json #### MITRE CAPEC-487: ICMP Flood (Standard Attack Pattern) - **ID**: mitre-capec-capec-487-icmp-flood - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-487 (ICMP Flood) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary may execute a flooding attack using the ICMP protocol wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-487-icmp-flood.json #### MITRE CAPEC-488: HTTP Flood (Standard Attack Pattern) - **ID**: mitre-capec-capec-488-http-flood - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-488 (HTTP Flood) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary may execute a flooding attack using the HTTP protocol wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-488-http-flood.json #### MITRE CAPEC-489: SSL Flood (Standard Attack Pattern) - **ID**: mitre-capec-capec-489-ssl-flood - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-489 (SSL Flood) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary may execute a flooding attack using the SSL protocol with... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-489-ssl-flood.json #### MITRE CAPEC-49: Password Brute Forcing (Attack Pattern - High Severity) - **ID**: mitre-capec-capec-49-password-brute-forcing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-49 (Password Brute Forcing) is an attack pattern in which an adversary tries every possible value for a password until they succeed. The CAPEC page identifies three prerequisites: adversar... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-49-password-brute-forcing.json #### MITRE CAPEC-490: Amplification (Standard Attack Pattern) - **ID**: mitre-capec-capec-490-amplification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-490 (Amplification) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary may execute an amplification where the size of a resp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-490-amplification.json #### MITRE CAPEC-491: Quadratic Data Expansion (Detailed Attack Pattern) - **ID**: mitre-capec-capec-491-quadratic-data-expansion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-491 (Quadratic Data Expansion) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits macro-like substitution to cause ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-491-quadratic-data-expansion.json #### MITRE CAPEC-492: Regular Expression Exponential Blowup (Standard Attack Pattern) - **ID**: mitre-capec-capec-492-regular-expression-exponential-blowup - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-492 (Regular Expression Exponential Blowup) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary may execute an attack on a pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-492-regular-expression-exponential-blowup.json #### MITRE CAPEC-493: SOAP Array Blowup (Standard Attack Pattern) - **ID**: mitre-capec-capec-493-soap-array-blowup - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-493 (SOAP Array Blowup) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary may execute an attack on a web service that uses ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-493-soap-array-blowup.json #### MITRE CAPEC-494: TCP Fragmentation (Standard Attack Pattern) - **ID**: mitre-capec-capec-494-tcp-fragmentation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-494 (TCP Fragmentation) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary may execute a TCP Fragmentation attack against a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-494-tcp-fragmentation.json #### MITRE CAPEC-495: UDP Fragmentation (Standard Attack Pattern) - **ID**: mitre-capec-capec-495-udp-fragmentation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-495 (UDP Fragmentation) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker may execute a UDP Fragmentation attack against a t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-495-udp-fragmentation.json #### MITRE CAPEC-496: ICMP Fragmentation (Standard Attack Pattern) - **ID**: mitre-capec-capec-496-icmp-fragmentation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-496 (ICMP Fragmentation) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker may execute a ICMP Fragmentation attack against a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-496-icmp-fragmentation.json #### MITRE CAPEC-497: File Discovery (Standard Attack Pattern - Very Low Severity) - **ID**: mitre-capec-capec-497-file-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-497 (File Discovery) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in probing and exploration activities to det... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-497-file-discovery.json #### MITRE CAPEC-498: Probe iOS Screenshots (Detailed Attack Pattern) - **ID**: mitre-capec-capec-498-probe-ios-screenshots - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-498 (Probe iOS Screenshots) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary examines screenshot images created by iOS in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-498-probe-ios-screenshots.json #### MITRE CAPEC-499: Android Intent Intercept (Standard Attack Pattern) - **ID**: mitre-capec-capec-499-android-intent-intercept - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-499 (Android Intent Intercept) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary, through a previously installed malicious ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-499-android-intent-intercept.json #### MITRE CAPEC-5: Blue Boxing (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-5-blue-boxing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-5 (Blue Boxing) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This type of attack against older telephone switches and trunks has be... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-5-blue-boxing.json #### MITRE CAPEC-50: Password Recovery Exploitation (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-50-password-recovery-exploitation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-50 (Password Recovery Exploitation) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker may take advantage of the application ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-50-password-recovery-exploitation.json #### MITRE CAPEC-500: WebView Injection (Detailed Attack Pattern) - **ID**: mitre-capec-capec-500-webview-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-500 (WebView Injection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary, through a previously installed malicious applica... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-500-webview-injection.json #### MITRE CAPEC-501: Android Activity Hijack (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-501-android-activity-hijack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-501 (Android Activity Hijack) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary intercepts an implicit intent sent to launc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-501-android-activity-hijack.json #### MITRE CAPEC-502: Intent Spoof (Standard Attack Pattern) - **ID**: mitre-capec-capec-502-intent-spoof - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-502 (Intent Spoof) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary, through a previously installed malicious application,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-502-intent-spoof.json #### MITRE CAPEC-503: WebView Exposure (Standard Attack Pattern) - **ID**: mitre-capec-capec-503-webview-exposure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-503 (WebView Exposure) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary, through a malicious web page, accesses applicatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-503-webview-exposure.json #### MITRE CAPEC-504: Task Impersonation (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-504-task-impersonation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-504 (Task Impersonation) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary, through a previously installed malicious applic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-504-task-impersonation.json #### MITRE CAPEC-505: Scheme Squatting (Detailed Attack Pattern) - **ID**: mitre-capec-capec-505-scheme-squatting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-505 (Scheme Squatting) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary, through a previously installed malicious applicat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-505-scheme-squatting.json #### MITRE CAPEC-506: Tapjacking (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-506-tapjacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-506 (Tapjacking) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary, through a previously installed malicious application, d... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-506-tapjacking.json #### MITRE CAPEC-507: Physical Theft (Meta Attack Pattern) - **ID**: mitre-capec-capec-507-physical-theft - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-507 (Physical Theft) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary gains physical access to a system or device through thef... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-507-physical-theft.json #### MITRE CAPEC-508: Shoulder Surfing (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-508-shoulder-surfing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-508 (Shoulder Surfing) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In a shoulder surfing attack, an adversary observes an unaware ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-508-shoulder-surfing.json #### MITRE CAPEC-509: Kerberoasting (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-509-kerberoasting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-509 (Kerberoasting) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Through the exploitation of how service accounts leverage Kerberos... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-509-kerberoasting.json #### MITRE CAPEC-51: Poison Web Service Registry (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-51-poison-web-service-registry - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-51 (Poison Web Service Registry) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. SOA and Web Services often use a registry to perform ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-51-poison-web-service-registry.json #### MITRE CAPEC-510: SaaS User Request Forgery (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-510-saas-user-request-forgery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-510 (SaaS User Request Forgery) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary, through a previously installed malicious... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-510-saas-user-request-forgery.json #### MITRE CAPEC-511: Infiltration of Software Development Environment (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-511-infiltration-of-software-development-environment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-511 (Infiltration of Software Development Environment) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker uses common deliver... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-511-infiltration-of-software-development-environment.json #### MITRE CAPEC-516: Hardware Component Substitution During Baselining (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-516-hardware-component-substitution-during-baselining - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-516 (Hardware Component Substitution During Baselining) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary with access to sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-516-hardware-component-substitution-during-baselining.json #### MITRE CAPEC-517: Documentation Alteration to Circumvent Dial-down (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-517-documentation-alteration-to-circumvent-dial-down - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-517 (Documentation Alteration to Circumvent Dial-down) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker with access to a ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-517-documentation-alteration-to-circumvent-dial-down.json #### MITRE CAPEC-518: Documentation Alteration to Produce Under-performing Systems (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-518-documentation-alteration-to-produce-under-performing-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-518 (Documentation Alteration to Produce Under-performing Systems) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker with ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-518-documentation-alteration-to-produce-under-performing-systems.json #### MITRE CAPEC-519: Documentation Alteration to Cause Errors in System Design (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-519-documentation-alteration-to-cause-errors-in-system-design - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-519 (Documentation Alteration to Cause Errors in System Design) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker with acces... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-519-documentation-alteration-to-cause-errors-in-system-design.json #### MITRE CAPEC-52: Embedding NULL Bytes (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-52-embedding-null-bytes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-52 (Embedding NULL Bytes) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary embeds one or more null bytes in input to the t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-52-embedding-null-bytes.json #### MITRE CAPEC-520: Counterfeit Hardware Component Inserted During Product Assembly (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-520-counterfeit-hardware-component-inserted-during-product-assem - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-520 (Counterfeit Hardware Component Inserted During Product Assembly) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-520-counterfeit-hardware-component-inserted-during-product-assem.json #### MITRE CAPEC-521: Hardware Design Specifications Are Altered (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-521-hardware-design-specifications-are-altered - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-521 (Hardware Design Specifications Are Altered) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker with access to a manufact... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-521-hardware-design-specifications-are-altered.json #### MITRE CAPEC-522: Malicious Hardware Component Replacement (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-522-malicious-hardware-component-replacement - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-522 (Malicious Hardware Component Replacement) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary replaces legitimate hardwa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-522-malicious-hardware-component-replacement.json #### MITRE CAPEC-523: Malicious Software Implanted (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-523-malicious-software-implanted - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-523 (Malicious Software Implanted) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker implants malicious software into the sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-523-malicious-software-implanted.json #### MITRE CAPEC-524: Rogue Integration Procedures (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-524-rogue-integration-procedures - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-524 (Rogue Integration Procedures) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker alters or establishes rogue processes i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-524-rogue-integration-procedures.json #### MITRE CAPEC-528: XML Flood (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-528-xml-flood - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-528 (XML Flood) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary may execute a flooding attack using XML messages with the... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-528-xml-flood.json #### MITRE CAPEC-529: Malware-Directed Internal Reconnaissance (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-529-malware-directed-internal-reconnaissance - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-529 (Malware-Directed Internal Reconnaissance) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Adversary uses malware or a similarly c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-529-malware-directed-internal-reconnaissance.json #### MITRE CAPEC-53: Postfix, Null Terminate, and Backslash (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-53-postfix-null-terminate-and-backslash - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-53 (Postfix, Null Terminate, and Backslash) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. If a string is passed through a filter of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-53-postfix-null-terminate-and-backslash.json #### MITRE CAPEC-530: Provide Counterfeit Component (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-530-provide-counterfeit-component - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-530 (Provide Counterfeit Component) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker provides a counterfeit component durin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-530-provide-counterfeit-component.json #### MITRE CAPEC-531: Hardware Component Substitution (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-531-hardware-component-substitution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-531 (Hardware Component Substitution) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker substitutes out a tested and approve... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-531-hardware-component-substitution.json #### MITRE CAPEC-532: Altered Installed BIOS (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-532-altered-installed-bios - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-532 (Altered Installed BIOS) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker with access to download and update system sof... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-532-altered-installed-bios.json #### MITRE CAPEC-533: Malicious Manual Software Update (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-533-malicious-manual-software-update - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-533 (Malicious Manual Software Update) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker introduces malicious code to the vi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-533-malicious-manual-software-update.json #### MITRE CAPEC-534: Malicious Hardware Update (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-534-malicious-hardware-update - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-534 (Malicious Hardware Update) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary introduces malicious hardware during an u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-534-malicious-hardware-update.json #### MITRE CAPEC-535: Malicious Gray Market Hardware (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-535-malicious-gray-market-hardware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-535 (Malicious Gray Market Hardware) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker maliciously alters hardware component... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-535-malicious-gray-market-hardware.json #### MITRE CAPEC-536: Data Injected During Configuration (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-536-data-injected-during-configuration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-536 (Data Injected During Configuration) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker with access to data files and pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-536-data-injected-during-configuration.json #### MITRE CAPEC-537: Infiltration of Hardware Development Environment (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-537-infiltration-of-hardware-development-environment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-537 (Infiltration of Hardware Development Environment) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary, leveraging the ab... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-537-infiltration-of-hardware-development-environment.json #### MITRE CAPEC-538: Open-Source Library Manipulation (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-538-open-source-library-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-538 (Open-Source Library Manipulation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Adversaries implant malicious code in open sour... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-538-open-source-library-manipulation.json #### MITRE CAPEC-539: ASIC With Malicious Functionality (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-539-asic-with-malicious-functionality - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-539 (ASIC With Malicious Functionality) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker with access to the development env... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-539-asic-with-malicious-functionality.json #### MITRE CAPEC-54: Query System for Information (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-54-query-system-for-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-54 (Query System for Information) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary, aware of an application's location (an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-54-query-system-for-information.json #### MITRE CAPEC-540: Overread Buffers (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-540-overread-buffers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-540 (Overread Buffers) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary attacks a target by providing input that causes an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-540-overread-buffers.json #### MITRE CAPEC-541: Application Fingerprinting (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-541-application-fingerprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-541 (Application Fingerprinting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in fingerprinting activities to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-541-application-fingerprinting.json #### MITRE CAPEC-542: Targeted Malware (Standard Attack Pattern) - **ID**: mitre-capec-capec-542-targeted-malware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-542 (Targeted Malware) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary develops targeted malware that takes advantage of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-542-targeted-malware.json #### MITRE CAPEC-543: Counterfeit Websites (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-543-counterfeit-websites - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-543 (Counterfeit Websites) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Adversary creates duplicates of legitimate websites. When u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-543-counterfeit-websites.json #### MITRE CAPEC-544: Counterfeit Organizations (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-544-counterfeit-organizations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-544 (Counterfeit Organizations) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary creates a false front organizations with ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-544-counterfeit-organizations.json #### MITRE CAPEC-545: Pull Data from System Resources (Standard Attack Pattern) - **ID**: mitre-capec-capec-545-pull-data-from-system-resources - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-545 (Pull Data from System Resources) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary who is authorized or has the abilit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-545-pull-data-from-system-resources.json #### MITRE CAPEC-546: Incomplete Data Deletion in a Multi-Tenant Environment (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-546-incomplete-data-deletion-in-a-multi-tenant-environment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-546 (Incomplete Data Deletion in a Multi-Tenant Environment) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary obtains unau... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-546-incomplete-data-deletion-in-a-multi-tenant-environment.json #### MITRE CAPEC-547: Physical Destruction of Device or Component (Standard Attack Pattern - Unrated Severity) - **ID**: mitre-capec-capec-547-physical-destruction-of-device-or-component - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-547 (Physical Destruction of Device or Component) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary conducts a physical att... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-547-physical-destruction-of-device-or-component.json #### MITRE CAPEC-548: Contaminate Resource (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-548-contaminate-resource - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-548 (Contaminate Resource) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary contaminates organizational information systems (i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-548-contaminate-resource.json #### MITRE CAPEC-549: Local Execution of Code (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-549-local-execution-of-code - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-549 (Local Execution of Code) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary installs and executes malicious code on the tar... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-549-local-execution-of-code.json #### MITRE CAPEC-55: Rainbow Table Password Cracking (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-55-rainbow-table-password-cracking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-55 (Rainbow Table Password Cracking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker gets access to the database table whe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-55-rainbow-table-password-cracking.json #### MITRE CAPEC-550: Install New Service (Detailed Attack Pattern) - **ID**: mitre-capec-capec-550-install-new-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-550 (Install New Service) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. When an operating system starts, it also starts programs cal... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-550-install-new-service.json #### MITRE CAPEC-551: Modify Existing Service (Detailed Attack Pattern) - **ID**: mitre-capec-capec-551-modify-existing-service - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-551 (Modify Existing Service) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. When an operating system starts, it also starts programs... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-551-modify-existing-service.json #### MITRE CAPEC-552: Install Rootkit (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-552-install-rootkit - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-552 (Install Rootkit) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in authentication to install ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-552-install-rootkit.json #### MITRE CAPEC-554: Functionality Bypass (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-554-functionality-bypass - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-554 (Functionality Bypass) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary attacks a system by bypassing some or all function... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-554-functionality-bypass.json #### MITRE CAPEC-555: Remote Services with Stolen Credentials (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-555-remote-services-with-stolen-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-555 (Remote Services with Stolen Credentials) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This pattern of attack involves an adver... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-555-remote-services-with-stolen-credentials.json #### MITRE CAPEC-556: Replace File Extension Handlers (Detailed Attack Pattern) - **ID**: mitre-capec-capec-556-replace-file-extension-handlers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-556 (Replace File Extension Handlers) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. When a file is opened, its file handler is check... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-556-replace-file-extension-handlers.json #### MITRE CAPEC-558: Replace Trusted Executable (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-558-replace-trusted-executable - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-558 (Replace Trusted Executable) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits weaknesses in privilege managem... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-558-replace-trusted-executable.json #### MITRE CAPEC-559: Orbital Jamming (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-559-orbital-jamming - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-559 (Orbital Jamming) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack pattern, the adversary sends disruptive signals a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-559-orbital-jamming.json #### MITRE CAPEC-560: Use of Known Domain Credentials (Attack Pattern - High Severity) - **ID**: mitre-capec-capec-560-use-of-known-domain-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-560 (Use of Known Domain Credentials) is an attack pattern in which an adversary guesses or obtains (steals or purchases) legitimate credentials to achieve authentication and perform autho... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-560-use-of-known-domain-credentials.json #### MITRE CAPEC-561: Windows Admin Shares with Stolen Credentials (Detailed Attack Pattern) - **ID**: mitre-capec-capec-561-windows-admin-shares-with-stolen-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-561 (Windows Admin Shares with Stolen Credentials) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary guesses or obtains (i.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-561-windows-admin-shares-with-stolen-credentials.json #### MITRE CAPEC-562: Modify Shared File (Detailed Attack Pattern) - **ID**: mitre-capec-capec-562-modify-shared-file - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-562 (Modify Shared File) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary manipulates the files in a shared location by ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-562-modify-shared-file.json #### MITRE CAPEC-563: Add Malicious File to Shared Webroot (Detailed Attack Pattern) - **ID**: mitre-capec-capec-563-add-malicious-file-to-shared-webroot - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-563 (Add Malicious File to Shared Webroot) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversaries may add malicious content to... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-563-add-malicious-file-to-shared-webroot.json #### MITRE CAPEC-564: Run Software at Logon (Detailed Attack Pattern) - **ID**: mitre-capec-capec-564-run-software-at-logon - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-564 (Run Software at Logon) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Operating system allows logon scripts to be run whenever a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-564-run-software-at-logon.json #### MITRE CAPEC-565: Password Spraying (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-565-password-spraying - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-565 (Password Spraying) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In a Password Spraying attack, an adversary tries a small list... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-565-password-spraying.json #### MITRE CAPEC-568: Capture Credentials via Keylogger (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-568-capture-credentials-via-keylogger - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-568 (Capture Credentials via Keylogger) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary deploys a keylogger in an effort ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-568-capture-credentials-via-keylogger.json #### MITRE CAPEC-569: Collect Data as Provided by Users (Standard Attack Pattern) - **ID**: mitre-capec-capec-569-collect-data-as-provided-by-users - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-569 (Collect Data as Provided by Users) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker leverages a tool, device, or progr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-569-collect-data-as-provided-by-users.json #### MITRE CAPEC-57: Utilizing REST's Trust in the System Resource to Obtain Sensitive Data (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-57-utilizing-rest-s-trust-in-the-system-resource - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-57 (Utilizing REST's Trust in the System Resource to Obtain Sensitive Data) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attac... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-57-utilizing-rest-s-trust-in-the-system-resource.json #### MITRE CAPEC-571: Block Logging to Central Repository (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-571-block-logging-to-central-repository - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-571 (Block Logging to Central Repository) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary prevents host-generated logs be... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-571-block-logging-to-central-repository.json #### MITRE CAPEC-572: Artificially Inflate File Sizes (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-572-artificially-inflate-file-sizes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-572 (Artificially Inflate File Sizes) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary modifies file contents by adding da... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-572-artificially-inflate-file-sizes.json #### MITRE CAPEC-573: Process Footprinting (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-573-process-footprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-573 (Process Footprinting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits functionality meant to identify infor... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-573-process-footprinting.json #### MITRE CAPEC-574: Services Footprinting (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-574-services-footprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-574 (Services Footprinting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits functionality meant to identify info... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-574-services-footprinting.json #### MITRE CAPEC-575: Account Footprinting (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-575-account-footprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-575 (Account Footprinting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits functionality meant to identify infor... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-575-account-footprinting.json #### MITRE CAPEC-576: Group Permission Footprinting (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-576-group-permission-footprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-576 (Group Permission Footprinting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits functionality meant to ident... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-576-group-permission-footprinting.json #### MITRE CAPEC-577: Owner Footprinting (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-577-owner-footprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-577 (Owner Footprinting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits functionality meant to identify informa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-577-owner-footprinting.json #### MITRE CAPEC-578: Disable Security Software (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-578-disable-security-software - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-578 (Disable Security Software) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in access control to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-578-disable-security-software.json #### MITRE CAPEC-579: Replace Winlogon Helper DLL (Detailed Attack Pattern) - **ID**: mitre-capec-capec-579-replace-winlogon-helper-dll - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-579 (Replace Winlogon Helper DLL) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Winlogon is a part of Windows that performs logon ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-579-replace-winlogon-helper-dll.json #### MITRE CAPEC-58: Restful Privilege Elevation (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-58-restful-privilege-elevation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-58 (Restful Privilege Elevation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary identifies a Rest HTTP (Get, Put, Delete... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-58-restful-privilege-elevation.json #### MITRE CAPEC-580: System Footprinting (Standard Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-580-system-footprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-580 (System Footprinting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary engages in active probing and exploration activ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-580-system-footprinting.json #### MITRE CAPEC-581: Security Software Footprinting (Detailed Attack Pattern) - **ID**: mitre-capec-capec-581-security-software-footprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-581 (Security Software Footprinting) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Adversaries may attempt to get a listing of secur... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-581-security-software-footprinting.json #### MITRE CAPEC-582: Route Disabling (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-582-route-disabling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-582 (Route Disabling) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary disables the network route between two targets. The... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-582-route-disabling.json #### MITRE CAPEC-583: Disabling Network Hardware (Detailed Attack Pattern) - **ID**: mitre-capec-capec-583-disabling-network-hardware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-583 (Disabling Network Hardware) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack pattern, an adversary physically disab... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-583-disabling-network-hardware.json #### MITRE CAPEC-584: BGP Route Disabling (Detailed Attack Pattern) - **ID**: mitre-capec-capec-584-bgp-route-disabling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-584 (BGP Route Disabling) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary suppresses the Border Gateway Protocol (BGP) ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-584-bgp-route-disabling.json #### MITRE CAPEC-585: DNS Domain Seizure (Detailed Attack Pattern) - **ID**: mitre-capec-capec-585-dns-domain-seizure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-585 (DNS Domain Seizure) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack pattern, an adversary influences a target's we... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-585-dns-domain-seizure.json #### MITRE CAPEC-586: Object Injection (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-586-object-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-586 (Object Injection) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary attempts to exploit an application by injecting additi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-586-object-injection.json #### MITRE CAPEC-587: Cross Frame Scripting (XFS) (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-587-cross-frame-scripting-xfs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-587 (Cross Frame Scripting (XFS)) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack pattern combines malicious Javascript an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-587-cross-frame-scripting-xfs.json #### MITRE CAPEC-588: DOM-Based XSS (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-588-dom-based-xss - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-588 (DOM-Based XSS) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This type of attack is a form of Cross-Site Scripting (XSS) where ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-588-dom-based-xss.json #### MITRE CAPEC-589: DNS Blocking (Detailed Attack Pattern) - **ID**: mitre-capec-capec-589-dns-blocking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-589 (DNS Blocking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary intercepts traffic and intentionally drops DNS request... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-589-dns-blocking.json #### MITRE CAPEC-59: Session Credential Falsification through Prediction (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-59-session-credential-falsification-through-prediction - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-59 (Session Credential Falsification through Prediction) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets predictab... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-59-session-credential-falsification-through-prediction.json #### MITRE CAPEC-590: IP Address Blocking (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-590-ip-address-blocking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-590 (IP Address Blocking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary performing this type of attack drops packets de... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-590-ip-address-blocking.json #### MITRE CAPEC-591: Reflected XSS (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-591-reflected-xss - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-591 (Reflected XSS) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This type of attack is a form of Cross-Site Scripting (XSS) where ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-591-reflected-xss.json #### MITRE CAPEC-592: Stored XSS (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-592-stored-xss - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-592 (Stored XSS) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary utilizes a form of Cross-site Scripting (XSS) where a ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-592-stored-xss.json #### MITRE CAPEC-593: Session Hijacking (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-593-session-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-593 (Session Hijacking) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This type of attack involves an adversary that exploits weakne... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-593-session-hijacking.json #### MITRE CAPEC-594: Traffic Injection (Meta Attack Pattern) - **ID**: mitre-capec-capec-594-traffic-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-594 (Traffic Injection) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary injects traffic into the target's network connection.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-594-traffic-injection.json #### MITRE CAPEC-595: Connection Reset (Standard Attack Pattern) - **ID**: mitre-capec-capec-595-connection-reset - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-595 (Connection Reset) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack pattern, an adversary injects a connection reset... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-595-connection-reset.json #### MITRE CAPEC-596: TCP RST Injection (Detailed Attack Pattern) - **ID**: mitre-capec-capec-596-tcp-rst-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-596 (TCP RST Injection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary injects one or more TCP RST packets to a target a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-596-tcp-rst-injection.json #### MITRE CAPEC-597: Absolute Path Traversal (Detailed Attack Pattern) - **ID**: mitre-capec-capec-597-absolute-path-traversal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-597 (Absolute Path Traversal) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary with access to file system resources, eithe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-597-absolute-path-traversal.json #### MITRE CAPEC-598: DNS Spoofing (Detailed Attack Pattern) - **ID**: mitre-capec-capec-598-dns-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-598 (DNS Spoofing) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary sends a malicious ("NXDOMAIN" ("No such domain") code,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-598-dns-spoofing.json #### MITRE CAPEC-599: Terrestrial Jamming (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-599-terrestrial-jamming - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-599 (Terrestrial Jamming) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack pattern, the adversary transmits disruptive s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-599-terrestrial-jamming.json #### MITRE CAPEC-6: Argument Injection (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-6-argument-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-6 (Argument Injection) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker changes the behavior or state of a targeted applica... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-6-argument-injection.json #### MITRE CAPEC-60: Reusing Session IDs (aka Session Replay) (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-60-reusing-session-ids-aka-session-replay - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-60 (Reusing Session IDs (aka Session Replay)) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets the reuse of valid s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-60-reusing-session-ids-aka-session-replay.json #### MITRE CAPEC-600: Credential Stuffing (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-600-credential-stuffing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-600 (Credential Stuffing) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary tries known username/password combinations agai... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-600-credential-stuffing.json #### MITRE CAPEC-601: Jamming (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-601-jamming - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-601 (Jamming) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses radio noise or signals in an attempt to disrupt commun... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-601-jamming.json #### MITRE CAPEC-603: Blockage (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-603-blockage - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-603 (Blockage) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary blocks the delivery of an important system resource causin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-603-blockage.json #### MITRE CAPEC-604: Wi-Fi Jamming (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-604-wi-fi-jamming - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-604 (Wi-Fi Jamming) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack scenario, the attacker actively transmits on the Wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-604-wi-fi-jamming.json #### MITRE CAPEC-605: Cellular Jamming (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-605-cellular-jamming - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-605 (Cellular Jamming) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack scenario, the attacker actively transmits signal... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-605-cellular-jamming.json #### MITRE CAPEC-606: Weakening of Cellular Encryption (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-606-weakening-of-cellular-encryption - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-606 (Weakening of Cellular Encryption) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker, with control of a Cellular Rogue B... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-606-weakening-of-cellular-encryption.json #### MITRE CAPEC-607: Obstruction (Meta Attack Pattern - Unrated Severity) - **ID**: mitre-capec-capec-607-obstruction - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-607 (Obstruction) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker obstructs the interactions between system components. By int... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-607-obstruction.json #### MITRE CAPEC-608: Cryptanalysis of Cellular Encryption (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-608-cryptanalysis-of-cellular-encryption - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-608 (Cryptanalysis of Cellular Encryption) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The use of cryptanalytic techniques to deri... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-608-cryptanalysis-of-cellular-encryption.json #### MITRE CAPEC-609: Cellular Traffic Intercept (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-609-cellular-traffic-intercept - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-609 (Cellular Traffic Intercept) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Cellular traffic for voice and data from mobile devic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-609-cellular-traffic-intercept.json #### MITRE CAPEC-61: Session Fixation (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-61-session-fixation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-61 (Session Fixation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The attacker induces a client to establish a session with the ta... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-61-session-fixation.json #### MITRE CAPEC-610: Cellular Data Injection (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-610-cellular-data-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-610 (Cellular Data Injection) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Adversaries inject data into mobile technology traffic (... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-610-cellular-data-injection.json #### MITRE CAPEC-611: BitSquatting (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-611-bitsquatting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-611 (BitSquatting) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary registers a domain name one bit different than a trust... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-611-bitsquatting.json #### MITRE CAPEC-612: WiFi MAC Address Tracking (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-612-wifi-mac-address-tracking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-612 (WiFi MAC Address Tracking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack scenario, the attacker passively listen... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-612-wifi-mac-address-tracking.json #### MITRE CAPEC-613: WiFi SSID Tracking (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-613-wifi-ssid-tracking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-613 (WiFi SSID Tracking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack scenario, the attacker passively listens for W... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-613-wifi-ssid-tracking.json #### MITRE CAPEC-614: Rooting SIM Cards (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-614-rooting-sim-cards - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-614 (Rooting SIM Cards) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. SIM cards are the de facto trust anchor of mobile devices worl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-614-rooting-sim-cards.json #### MITRE CAPEC-615: Evil Twin Wi-Fi Attack (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-615-evil-twin-wi-fi-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-615 (Evil Twin Wi-Fi Attack) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Adversaries install Wi-Fi equipment that acts as a legiti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-615-evil-twin-wi-fi-attack.json #### MITRE CAPEC-616: Establish Rogue Location (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-616-establish-rogue-location - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-616 (Establish Rogue Location) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary provides a malicious version of a resource... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-616-establish-rogue-location.json #### MITRE CAPEC-617: Cellular Rogue Base Station (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-617-cellular-rogue-base-station - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-617 (Cellular Rogue Base Station) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack scenario, the attacker imitates a cel... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-617-cellular-rogue-base-station.json #### MITRE CAPEC-618: Cellular Broadcast Message Request (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-618-cellular-broadcast-message-request - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-618 (Cellular Broadcast Message Request) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack scenario, the attacker uses kn... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-618-cellular-broadcast-message-request.json #### MITRE CAPEC-619: Signal Strength Tracking (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-619-signal-strength-tracking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-619 (Signal Strength Tracking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack scenario, the attacker passively monitor... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-619-signal-strength-tracking.json #### MITRE CAPEC-62: Cross-Site Request Forgery (CSRF) (Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-62-cross-site-request-forgery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-62 (Cross-Site Request Forgery) is an attack pattern in which an attacker crafts malicious web links to induce users to click and execute malicious actions against third-party applications... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-62-cross-site-request-forgery.json #### MITRE CAPEC-620: Drop Encryption Level (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-620-drop-encryption-level - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-620 (Drop Encryption Level) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker forces the encryption level to be lowered, thu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-620-drop-encryption-level.json #### MITRE CAPEC-621: Analysis of Packet Timing and Sizes (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-621-analysis-of-packet-timing-and-sizes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-621 (Analysis of Packet Timing and Sizes) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker may intercept and log encrypted ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-621-analysis-of-packet-timing-and-sizes.json #### MITRE CAPEC-622: Electromagnetic Side-Channel Attack (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-622-electromagnetic-side-channel-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-622 (Electromagnetic Side-Channel Attack) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. In this attack scenario, the attacker passiv... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-622-electromagnetic-side-channel-attack.json #### MITRE CAPEC-623: Compromising Emanations Attack (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-623-compromising-emanations-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-623 (Compromising Emanations Attack) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Compromising Emanations (CE) are defined as unint... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-623-compromising-emanations-attack.json #### MITRE CAPEC-624: Hardware Fault Injection (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-624-hardware-fault-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-624 (Hardware Fault Injection) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary uses disruptive signals or events, or alters ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-624-hardware-fault-injection.json #### MITRE CAPEC-625: Mobile Device Fault Injection (Standard Attack Pattern) - **ID**: mitre-capec-capec-625-mobile-device-fault-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-625 (Mobile Device Fault Injection) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Fault injection attacks against mobile devices use... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-625-mobile-device-fault-injection.json #### MITRE CAPEC-626: Smudge Attack (Detailed Attack Pattern) - **ID**: mitre-capec-capec-626-smudge-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-626 (Smudge Attack) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Attacks that reveal the password/passcode pattern on a touchscreen... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-626-smudge-attack.json #### MITRE CAPEC-627: Counterfeit GPS Signals (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-627-counterfeit-gps-signals - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-627 (Counterfeit GPS Signals) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary attempts to deceive a GPS receiver by broad... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-627-counterfeit-gps-signals.json #### MITRE CAPEC-628: Carry-Off GPS Attack (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-628-carry-off-gps-attack - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-628 (Carry-Off GPS Attack) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. A common form of a GPS spoofing attack, commonly termed a c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-628-carry-off-gps-attack.json #### MITRE CAPEC-63: Cross-Site Scripting (XSS) (Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-63-cross-site-scripting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-63 (Cross-Site Scripting) is an attack pattern in which an adversary embeds malicious scripts in content that will be served to web browsers; the target client-side browser executes the sc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-63-cross-site-scripting.json #### MITRE CAPEC-630: TypoSquatting (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-630-typosquatting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-630 (TypoSquatting) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary registers a domain name with at least one character d... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-630-typosquatting.json #### MITRE CAPEC-631: SoundSquatting (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-631-soundsquatting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-631 (SoundSquatting) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary registers a domain name that sounds the same as a tr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-631-soundsquatting.json #### MITRE CAPEC-632: Homograph Attack via Homoglyphs (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-632-homograph-attack-via-homoglyphs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-632 (Homograph Attack via Homoglyphs) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary registers a domain name containing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-632-homograph-attack-via-homoglyphs.json #### MITRE CAPEC-633: Token Impersonation (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-633-token-impersonation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-633 (Token Impersonation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in authentication to create... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-633-token-impersonation.json #### MITRE CAPEC-634: Probe Audio and Video Peripherals (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-634-probe-audio-and-video-peripherals - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-634 (Probe Audio and Video Peripherals) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary exploits the target system's aud... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-634-probe-audio-and-video-peripherals.json #### MITRE CAPEC-635: Alternative Execution Due to Deceptive Filenames (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-635-alternative-execution-due-to-deceptive-filenames - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-635 (Alternative Execution Due to Deceptive Filenames) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The extension of a file name is... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-635-alternative-execution-due-to-deceptive-filenames.json #### MITRE CAPEC-636: Hiding Malicious Data or Code within Files (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-636-hiding-malicious-data-or-code-within-files - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-636 (Hiding Malicious Data or Code within Files) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Files on various operating systems ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-636-hiding-malicious-data-or-code-within-files.json #### MITRE CAPEC-637: Collect Data from Clipboard (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-637-collect-data-from-clipboard - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-637 (Collect Data from Clipboard) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary exploits an application that allows fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-637-collect-data-from-clipboard.json #### MITRE CAPEC-638: Altered Component Firmware (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-638-altered-component-firmware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-638 (Altered Component Firmware) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits systems features and/or imprope... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-638-altered-component-firmware.json #### MITRE CAPEC-639: Probe System Files (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-639-probe-system-files - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-639 (Probe System Files) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary obtains unauthorized information due to improper... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-639-probe-system-files.json #### MITRE CAPEC-64: Using Slashes and URL Encoding Combined to Bypass Validation Logic (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-64-using-slashes-and-url-encoding-combined-to-bypass - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-64 (Using Slashes and URL Encoding Combined to Bypass Validation Logic) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack ta... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-64-using-slashes-and-url-encoding-combined-to-bypass.json #### MITRE CAPEC-640: Inclusion of Code in Existing Process (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-640-inclusion-of-code-in-existing-process - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-640 (Inclusion of Code in Existing Process) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary takes advantage of a bug in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-640-inclusion-of-code-in-existing-process.json #### MITRE CAPEC-641: DLL Side-Loading (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-641-dll-side-loading - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-641 (DLL Side-Loading) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary places a malicious version of a Dynamic-Link Libra... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-641-dll-side-loading.json #### MITRE CAPEC-642: Replace Binaries (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-642-replace-binaries - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-642 (Replace Binaries) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Adversaries know that certain binaries will be regularly execut... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-642-replace-binaries.json #### MITRE CAPEC-643: Identify Shared Files/Directories on System (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-643-identify-shared-files-directories-on-system - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-643 (Identify Shared Files/Directories on System) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary discovers connections b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-643-identify-shared-files-directories-on-system.json #### MITRE CAPEC-644: Use of Captured Hashes (Pass The Hash) (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-644-use-of-captured-hashes-pass-the-hash - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-644 (Use of Captured Hashes (Pass The Hash)) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary obtains (i.e. steals or purc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-644-use-of-captured-hashes-pass-the-hash.json #### MITRE CAPEC-645: Use of Captured Tickets (Pass The Ticket) (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-645-use-of-captured-tickets-pass-the-ticket - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-645 (Use of Captured Tickets (Pass The Ticket)) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses stolen Kerberos tick... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-645-use-of-captured-tickets-pass-the-ticket.json #### MITRE CAPEC-646: Peripheral Footprinting (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-646-peripheral-footprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-646 (Peripheral Footprinting) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Adversaries may attempt to obtain information about atta... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-646-peripheral-footprinting.json #### MITRE CAPEC-647: Collect Data from Registries (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-647-collect-data-from-registries - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-647 (Collect Data from Registries) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a weakness in authorization t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-647-collect-data-from-registries.json #### MITRE CAPEC-648: Collect Data from Screen Capture (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-648-collect-data-from-screen-capture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-648 (Collect Data from Screen Capture) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary gathers sensitive information by e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-648-collect-data-from-screen-capture.json #### MITRE CAPEC-649: Adding a Space to a File Extension (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-649-adding-a-space-to-a-file-extension - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-649 (Adding a Space to a File Extension) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary adds a space character to the en... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-649-adding-a-space-to-a-file-extension.json #### MITRE CAPEC-65: Sniff Application Code (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-65-sniff-application-code - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-65 (Sniff Application Code) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary passively sniffs network communications and c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-65-sniff-application-code.json #### MITRE CAPEC-650: Upload a Web Shell to a Web Server (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-650-upload-a-web-shell-to-a-web-server - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-650 (Upload a Web Shell to a Web Server) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. By exploiting insufficient permissions, it is... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-650-upload-a-web-shell-to-a-web-server.json #### MITRE CAPEC-651: Eavesdropping (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-651-eavesdropping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-651 (Eavesdropping) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary intercepts a form of communication (e.g. text, audio,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-651-eavesdropping.json #### MITRE CAPEC-652: Use of Known Kerberos Credentials (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-652-use-of-known-kerberos-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-652 (Use of Known Kerberos Credentials) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary obtains (i.e. steals or purchases... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-652-use-of-known-kerberos-credentials.json #### MITRE CAPEC-653: Use of Known Operating System Credentials (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-653-use-of-known-operating-system-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-653 (Use of Known Operating System Credentials) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary guesses or obtains (i.e. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-653-use-of-known-operating-system-credentials.json #### MITRE CAPEC-654: Credential Prompt Impersonation (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-654-credential-prompt-impersonation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-654 (Credential Prompt Impersonation) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary, through a previously installed mal... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-654-credential-prompt-impersonation.json #### MITRE CAPEC-655: Avoid Security Tool Identification by Adding Data (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-655-avoid-security-tool-identification-by-adding-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-655 (Avoid Security Tool Identification by Adding Data) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary adds data to a fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-655-avoid-security-tool-identification-by-adding-data.json #### MITRE CAPEC-656: Voice Phishing (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-656-voice-phishing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-656 (Voice Phishing) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary targets users with a phishing attack for the purpose... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-656-voice-phishing.json #### MITRE CAPEC-657: Malicious Automated Software Update via Spoofing (High Severity) - **ID**: mitre-capec-capec-657-malicious-automated-software-update - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-657 (Malicious Automated Software Update via Spoofing) is an attack pattern in which an attacker uses identity or content spoofing to trick a client into performing an automated software u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-657-malicious-automated-software-update.json #### MITRE CAPEC-66: SQL Injection (Attack Pattern - High Severity) - **ID**: mitre-capec-capec-66-sql-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-66 (SQL Injection) is an attack pattern in which an adversary crafts input strings so that the target software constructs SQL statements that perform actions other than those intended by t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-66-sql-injection.json #### MITRE CAPEC-660: Root/Jailbreak Detection Evasion via Hooking (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-660-root-jailbreak-detection-evasion-via-hooking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-660 (Root/Jailbreak Detection Evasion via Hooking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary forces a non-restricte... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-660-root-jailbreak-detection-evasion-via-hooking.json #### MITRE CAPEC-661: Root/Jailbreak Detection Evasion via Debugging (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-661-root-jailbreak-detection-evasion-via-debugging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-661 (Root/Jailbreak Detection Evasion via Debugging) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary inserts a debugger i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-661-root-jailbreak-detection-evasion-via-debugging.json #### MITRE CAPEC-662: Adversary in the Browser (AiTB) (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-662-adversary-in-the-browser-aitb - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-662 (Adversary in the Browser (AiTB)) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits security vulnerabilities o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-662-adversary-in-the-browser-aitb.json #### MITRE CAPEC-663: Exploitation of Transient Instruction Execution (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-663-exploitation-of-transient-instruction-execution - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-663 (Exploitation of Transient Instruction Execution) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a hardware... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-663-exploitation-of-transient-instruction-execution.json #### MITRE CAPEC-664: Server Side Request Forgery (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-664-server-side-request-forgery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-664 (Server Side Request Forgery) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits improper input validation by s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-664-server-side-request-forgery.json #### MITRE CAPEC-665: Exploitation of Thunderbolt Protection Flaws (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-665-exploitation-of-thunderbolt-protection-flaws - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-665 (Exploitation of Thunderbolt Protection Flaws) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary leverages a firmware w... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-665-exploitation-of-thunderbolt-protection-flaws.json #### MITRE CAPEC-666: BlueSmacking (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-666-bluesmacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-666 (BlueSmacking) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary uses Bluetooth flooding to transfer large packets to B... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-666-bluesmacking.json #### MITRE CAPEC-667: Bluetooth Impersonation AttackS (BIAS) (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-667-bluetooth-impersonation-attacks-bias - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-667 (Bluetooth Impersonation AttackS (BIAS)) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary disguises the MAC address of... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-667-bluetooth-impersonation-attacks-bias.json #### MITRE CAPEC-668: Key Negotiation of Bluetooth Attack (KNOB) (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-668-key-negotiation-of-bluetooth-attack-knob - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-668 (Key Negotiation of Bluetooth Attack (KNOB)) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary can exploit a flaw in Bl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-668-key-negotiation-of-bluetooth-attack-knob.json #### MITRE CAPEC-669: Alteration of a Software Update (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-669-alteration-of-a-software-update - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-669 (Alteration of a Software Update) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary with access to an organization's so... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-669-alteration-of-a-software-update.json #### MITRE CAPEC-67: String Format Overflow in syslog() (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-67-string-format-overflow-in-syslog - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-67 (String Format Overflow in syslog()) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets applications and software ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-67-string-format-overflow-in-syslog.json #### MITRE CAPEC-670: Software Development Tools Maliciously Altered (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-670-software-development-tools-maliciously-altered - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-670 (Software Development Tools Maliciously Altered) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary with the ability to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-670-software-development-tools-maliciously-altered.json #### MITRE CAPEC-671: Requirements for ASIC Functionality Maliciously Altered (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-671-requirements-for-asic-functionality-maliciously-altered - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-671 (Requirements for ASIC Functionality Maliciously Altered) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary with access... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-671-requirements-for-asic-functionality-maliciously-altered.json #### MITRE CAPEC-672: Malicious Code Implanted During Chip Programming (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-672-malicious-code-implanted-during-chip-programming - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-672 (Malicious Code Implanted During Chip Programming) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. During the programming step of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-672-malicious-code-implanted-during-chip-programming.json #### MITRE CAPEC-673: Developer Signing Maliciously Altered Software (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-673-developer-signing-maliciously-altered-software - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-673 (Developer Signing Maliciously Altered Software) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Software produced by a reputable ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-673-developer-signing-maliciously-altered-software.json #### MITRE CAPEC-674: Design for FPGA Maliciously Altered (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-674-design-for-fpga-maliciously-altered - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-674 (Design for FPGA Maliciously Altered) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary alters the functionality of a f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-674-design-for-fpga-maliciously-altered.json #### MITRE CAPEC-675: Retrieve Data from Decommissioned Devices (Standard Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-675-retrieve-data-from-decommissioned-devices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-675 (Retrieve Data from Decommissioned Devices) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary obtains decommissioned, r... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-675-retrieve-data-from-decommissioned-devices.json #### MITRE CAPEC-676: NoSQL Injection (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-676-nosql-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-676 (NoSQL Injection) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary targets software that constructs NoSQL statements b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-676-nosql-injection.json #### MITRE CAPEC-677: Server Motherboard Compromise (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-677-server-motherboard-compromise - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-677 (Server Motherboard Compromise) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Malware is inserted in a server motherboard (e.g.,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-677-server-motherboard-compromise.json #### MITRE CAPEC-678: System Build Data Maliciously Altered (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-678-system-build-data-maliciously-altered - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-678 (System Build Data Maliciously Altered) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. During the system build process, the syste... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-678-system-build-data-maliciously-altered.json #### MITRE CAPEC-679: Exploitation of Improperly Configured or Implemented Memory Protections (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-679-exploitation-of-improperly-configured-or-implemented-memory - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-679 (Exploitation of Improperly Configured or Implemented Memory Protections) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adver... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-679-exploitation-of-improperly-configured-or-implemented-memory.json #### MITRE CAPEC-68: Subvert Code-signing Facilities (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-68-subvert-code-signing-facilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-68 (Subvert Code-signing Facilities) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Many languages use code signing facilities to vou... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-68-subvert-code-signing-facilities.json #### MITRE CAPEC-680: Exploitation of Improperly Controlled Registers (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-680-exploitation-of-improperly-controlled-registers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-680 (Exploitation of Improperly Controlled Registers) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits missing or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-680-exploitation-of-improperly-controlled-registers.json #### MITRE CAPEC-681: Exploitation of Improperly Controlled Hardware Security Identifiers (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-681-exploitation-of-improperly-controlled-hardware-security-iden - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-681 (Exploitation of Improperly Controlled Hardware Security Identifiers) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-681-exploitation-of-improperly-controlled-hardware-security-iden.json #### MITRE CAPEC-682: Exploitation of Firmware or ROM Code with Unpatchable Vulnerabilities (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-682-exploitation-of-firmware-or-rom-code-with-unpatchable - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-682 (Exploitation of Firmware or ROM Code with Unpatchable Vulnerabilities) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-682-exploitation-of-firmware-or-rom-code-with-unpatchable.json #### MITRE CAPEC-69: Target Programs with Elevated Privileges (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-69-target-programs-with-elevated-privileges - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-69 (Target Programs with Elevated Privileges) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets programs running wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-69-target-programs-with-elevated-privileges.json #### MITRE CAPEC-690: Metadata Spoofing (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-690-metadata-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-690 (Metadata Spoofing) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary alters the metadata of a resource (e.g., file, direct... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-690-metadata-spoofing.json #### MITRE CAPEC-691: Spoof Open-Source Software Metadata (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-691-spoof-open-source-software-metadata - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-691 (Spoof Open-Source Software Metadata) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary spoofs open-source software met... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-691-spoof-open-source-software-metadata.json #### MITRE CAPEC-692: Spoof Version Control System Commit Metadata (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-692-spoof-version-control-system-commit-metadata - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-692 (Spoof Version Control System Commit Metadata) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary spoofs metadata pertai... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-692-spoof-version-control-system-commit-metadata.json #### MITRE CAPEC-693: StarJacking (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-693-starjacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-693 (StarJacking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary spoofs software popularity metadata to deceive users in... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-693-starjacking.json #### MITRE CAPEC-694: System Location Discovery (Standard Attack Pattern - Very Low Severity) - **ID**: mitre-capec-capec-694-system-location-discovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-694 (System Location Discovery) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary collects information about the target sys... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-694-system-location-discovery.json #### MITRE CAPEC-695: Repo Jacking (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-695-repo-jacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-695 (Repo Jacking) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary takes advantage of the redirect property of directly l... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-695-repo-jacking.json #### MITRE CAPEC-696: Load Value Injection (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-696-load-value-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-696 (Load Value Injection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits a hardware design flaw in a CPU imple... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-696-load-value-injection.json #### MITRE CAPEC-697: DHCP Spoofing (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-697-dhcp-spoofing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-697 (DHCP Spoofing) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary masquerades as a legitimate Dynamic Host Configuratio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-697-dhcp-spoofing.json #### MITRE CAPEC-698: Install Malicious Extension (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-698-install-malicious-extension - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-698 (Install Malicious Extension) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary directly installs or tricks a user into... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-698-install-malicious-extension.json #### MITRE CAPEC-699: Eavesdropping on a Monitor (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-699-eavesdropping-on-a-monitor - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-699 (Eavesdropping on a Monitor) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An Adversary can eavesdrop on the content of an external ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-699-eavesdropping-on-a-monitor.json #### MITRE CAPEC-7: Blind SQL Injection (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-7-blind-sql-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-7 (Blind SQL Injection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Blind SQL Injection results from an insufficient mitigation fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-7-blind-sql-injection.json #### MITRE CAPEC-70: Try Common or Default Usernames and Passwords (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-70-try-common-or-default-usernames-and-passwords - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-70 (Try Common or Default Usernames and Passwords) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary may try certain common... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-70-try-common-or-default-usernames-and-passwords.json #### MITRE CAPEC-700: Network Boundary Bridging (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-700-network-boundary-bridging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-700 (Network Boundary Bridging) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary which has gained elevated access to netwo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-700-network-boundary-bridging.json #### MITRE CAPEC-701: Browser in the Middle (BiTM) (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-701-browser-in-the-middle-bitm - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-701 (Browser in the Middle (BiTM)) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits the inherent functionalities ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-701-browser-in-the-middle-bitm.json #### MITRE CAPEC-702: Exploiting Incorrect Chaining or Granularity of Hardware Debug Components (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-702-exploiting-incorrect-chaining-or-granularity-of-hardware-deb - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-702 (Exploiting Incorrect Chaining or Granularity of Hardware Debug Components) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adv... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-702-exploiting-incorrect-chaining-or-granularity-of-hardware-deb.json #### MITRE CAPEC-71: Using Unicode Encoding to Bypass Validation Logic (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-71-using-unicode-encoding-to-bypass-validation-logic - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-71 (Using Unicode Encoding to Bypass Validation Logic) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker may provide a Unico... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-71-using-unicode-encoding-to-bypass-validation-logic.json #### MITRE CAPEC-72: URL Encoding (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-72-url-encoding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-72 (URL Encoding) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets the encoding of the URL. An adversary can take a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-72-url-encoding.json #### MITRE CAPEC-73: User-Controlled Filename (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-73-user-controlled-filename - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-73 (User-Controlled Filename) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attack of this type involves an adversary inserting m... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-73-user-controlled-filename.json #### MITRE CAPEC-74: Manipulating State (Meta Attack Pattern - High Severity) - **ID**: mitre-capec-capec-74-manipulating-state - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-74 (Manipulating State) is a meta-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. The adversary modifies state information maintained by the target ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-74-manipulating-state.json #### MITRE CAPEC-75: Manipulating Writeable Configuration Files (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-75-manipulating-writeable-configuration-files - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-75 (Manipulating Writeable Configuration Files) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Generally these are manually edited fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-75-manipulating-writeable-configuration-files.json #### MITRE CAPEC-76: Manipulating Web Input to File System Calls (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-76-manipulating-web-input-to-file-system-calls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-76 (Manipulating Web Input to File System Calls) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker manipulates inputs to the... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-76-manipulating-web-input-to-file-system-calls.json #### MITRE CAPEC-77: Manipulating User-Controlled Variables (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-77-manipulating-user-controlled-variables - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-77 (Manipulating User-Controlled Variables) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets user controlled variab... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-77-manipulating-user-controlled-variables.json #### MITRE CAPEC-78: Using Escaped Slashes in Alternate Encoding (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-78-using-escaped-slashes-in-alternate-encoding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-78 (Using Escaped Slashes in Alternate Encoding) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets the use of the ba... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-78-using-escaped-slashes-in-alternate-encoding.json #### MITRE CAPEC-79: Using Slashes in Alternate Encoding (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-79-using-slashes-in-alternate-encoding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-79 (Using Slashes in Alternate Encoding) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets the encoding of the Slash... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-79-using-slashes-in-alternate-encoding.json #### MITRE CAPEC-8: Buffer Overflow in an API Call (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-8-buffer-overflow-in-an-api-call - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-8 (Buffer Overflow in an API Call) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets libraries or shared code module... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-8-buffer-overflow-in-an-api-call.json #### MITRE CAPEC-80: Using UTF-8 Encoding to Bypass Validation Logic (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-80-using-utf-8-encoding-to-bypass-validation-logic - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-80 (Using UTF-8 Encoding to Bypass Validation Logic) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack is a specific variati... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-80-using-utf-8-encoding-to-bypass-validation-logic.json #### MITRE CAPEC-81: Web Server Logs Tampering (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-81-web-server-logs-tampering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-81 (Web Server Logs Tampering) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Web Logs Tampering attacks involve an attacker injectin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-81-web-server-logs-tampering.json #### MITRE CAPEC-83: XPath Injection (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-83-xpath-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-83 (XPath Injection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker can craft special user-controllable input consisting ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-83-xpath-injection.json #### MITRE CAPEC-84: XQuery Injection (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-84-xquery-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-84 (XQuery Injection) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack utilizes XQuery to probe and attack server systems; ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-84-xquery-injection.json #### MITRE CAPEC-85: AJAX Footprinting (Detailed Attack Pattern - Low Severity) - **ID**: mitre-capec-capec-85-ajax-footprinting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-85 (AJAX Footprinting) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack utilizes the frequent client-server roundtrips in A... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-85-ajax-footprinting.json #### MITRE CAPEC-86: XSS Through HTTP Headers (Detailed Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-86-xss-through-http-headers - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-86 (XSS Through HTTP Headers) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary exploits web applications that generate web... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-86-xss-through-http-headers.json #### MITRE CAPEC-87: Forceful Browsing (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-87-forceful-browsing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-87 (Forceful Browsing) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An attacker employs forceful browsing (direct URL entry) to acc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-87-forceful-browsing.json #### MITRE CAPEC-88: OS Command Injection (Attack Pattern - High Severity) - **ID**: mitre-capec-capec-88-os-command-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-88 (OS Command Injection) is an attack pattern in which an adversary injects operating system commands into existing application functions. Applications using untrusted input to build comm... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-88-os-command-injection.json #### MITRE CAPEC-89: Pharming (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-89-pharming - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-89 (Pharming) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. A pharming attack occurs when the victim is fooled into entering sensiti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-89-pharming.json #### MITRE CAPEC-9: Buffer Overflow in Local Command-Line Utilities (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-9-buffer-overflow-in-local-command-line-utilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-9 (Buffer Overflow in Local Command-Line Utilities) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets command-line u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-9-buffer-overflow-in-local-command-line-utilities.json #### MITRE CAPEC-90: Reflection Attack in Authentication Protocol (Standard Attack Pattern - High Severity) - **ID**: mitre-capec-capec-90-reflection-attack-in-authentication-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-90 (Reflection Attack in Authentication Protocol) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An adversary can abuse an authentica... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-90-reflection-attack-in-authentication-protocol.json #### MITRE CAPEC-92: Forced Integer Overflow (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-92-forced-integer-overflow - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-92 (Forced Integer Overflow) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack forces an integer variable to go out of range... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-92-forced-integer-overflow.json #### MITRE CAPEC-93: Log Injection-Tampering-Forging (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-93-log-injection-tampering-forging - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-93 (Log Injection-Tampering-Forging) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets the log files of the target h... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-93-log-injection-tampering-forging.json #### MITRE CAPEC-94: Adversary in the Middle (AiTM) (Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-94-adversary-in-the-middle - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-94 (Adversary in the Middle) is an attack pattern in which an adversary targets the communication between two components (typically client and server) to alter or obtain data from transact... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-94-adversary-in-the-middle.json #### MITRE CAPEC-95: WSDL Scanning (Detailed Attack Pattern - High Severity) - **ID**: mitre-capec-capec-95-wsdl-scanning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-95 (WSDL Scanning) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. This attack targets the WSDL interface made available by a web serv... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-95-wsdl-scanning.json #### MITRE CAPEC-96: Block Access to Libraries (Detailed Attack Pattern - Medium Severity) - **ID**: mitre-capec-capec-96-block-access-to-libraries - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-96 (Block Access to Libraries) is a detailed-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. An application typically makes calls to functions that ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-96-block-access-to-libraries.json #### MITRE CAPEC-97: Cryptanalysis (Standard Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-97-cryptanalysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-97 (Cryptanalysis) is a standard-level attack pattern in the MITRE Common Attack Pattern Enumeration and Classification. Cryptanalysis is a process of finding weaknesses in cryptographic a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-97-cryptanalysis.json #### MITRE CAPEC-98: Phishing (Attack Pattern - Very High Severity) - **ID**: mitre-capec-capec-98-phishing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE CAPEC-98 (Phishing) is a social engineering attack pattern in which an attacker masquerades as a legitimate entity to prompt the user to reveal confidential information (very frequently authenti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-capec-capec-98-phishing.json #### MITRE Cyber Resiliency Engineering Framework (CREF) and NIST SP 800-160 Vol. 2 Rev. 1 Developing Cyber-Resilient Systems - **ID**: mitre-cref-cyber-resiliency-engineering-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Cyber Resiliency Engineering Framework (CREF) is the MITRE-and-NIST framework for designing systems that anticipate, withstand, recover from, and adapt to adversity including advanced persistent t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cref-cyber-resiliency-engineering-framework.json #### MITRE CWE-119 - Improper Restriction of Operations Within the Bounds of a Memory Buffer - **ID**: mitre-cwe-119-out-of-bounds-memory-buffer - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) is a CWE Top 25 weakness and the root category for many memory safety vulnerabilities including CWE-125 (Out-of-bounds... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-119-out-of-bounds-memory-buffer.json #### MITRE CWE-125 - Out-of-bounds Read - **ID**: mitre-cwe-125-out-of-bounds-read - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-125 (Out-of-bounds Read) is a CWE Top 25 weakness underlying many information-disclosure vulnerabilities including Heartbleed (CVE-2014-0160). CWE-125 is defined as: the product reads data past th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-125-out-of-bounds-read.json #### MITRE CWE-190 - Integer Overflow or Wraparound - **ID**: mitre-cwe-190-integer-overflow - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-190 (Integer Overflow or Wraparound) is a CWE Top 25 weakness that frequently sits underneath buffer overflow, heap corruption, and protection-bypass vulnerabilities. CWE-190 is defined as: the pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-190-integer-overflow.json #### MITRE CWE-20 - Improper Input Validation - **ID**: mitre-cwe-20-improper-input-validation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-20 (Improper Input Validation) is one of the most foundational and broadly applicable software security weaknesses, ranked consistently near the top of the CWE Top 25. CWE-20 is defined as: the pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-20-improper-input-validation.json #### MITRE CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor - **ID**: mitre-cwe-200-sensitive-information-exposure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor) is the broad parent weakness for information disclosure findings and is a CWE Top 25 weakness consistently associated with data bre... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-200-sensitive-information-exposure.json #### MITRE CWE-209 - Generation of Error Message Containing Sensitive Information - **ID**: mitre-cwe-209-error-message-information-disclosure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-209 (Generation of Error Message Containing Sensitive Information) is a CWE Top 25 weakness underlying many information disclosure findings in penetration tests and bug bounty reports. CWE-209 is ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-209-error-message-information-disclosure.json #### MITRE CWE-22 - Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) - **ID**: mitre-cwe-22-path-traversal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-22 (Improper Limitation of a Pathname to a Restricted Directory, commonly known as Path Traversal or Directory Traversal) is a CWE Top 25 weakness with consistent presence in file-handling vulnera... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-22-path-traversal.json #### MITRE CWE-269 - Improper Privilege Management - **ID**: mitre-cwe-269-improper-privilege-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-269 (Improper Privilege Management) is a CWE Top 25 weakness associated with privilege escalation vulnerabilities across operating systems, container runtimes, web applications, and SaaS platforms... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-269-improper-privilege-management.json #### MITRE CWE-285 - Improper Authorization - **ID**: mitre-cwe-285-improper-authorization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-285 (Improper Authorization) is a CWE Top 25 weakness frequently underpinning Broken Object Level Authorization (BOLA) and Broken Function Level Authorization (BFLA) findings in API and web applic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-285-improper-authorization.json #### MITRE CWE-287 - Improper Authentication - **ID**: mitre-cwe-287-improper-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-287 (Improper Authentication) is a CWE Top 25 weakness consistently present in authentication-bypass advisories across web applications, APIs, network appliances, and SaaS platforms. CWE-287 is de... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-287-improper-authentication.json #### MITRE CWE-306 - Missing Authentication for Critical Function - **ID**: mitre-cwe-306-missing-authentication-for-critical-function - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-306 (Missing Authentication for Critical Function) is a CWE Top 25 weakness consistently associated with unauthenticated admin interfaces, exposed management ports, internal APIs leaked to the int... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-306-missing-authentication-for-critical-function.json #### MITRE CWE-352 - Cross-Site Request Forgery (CSRF) - **ID**: mitre-cwe-352-cross-site-request-forgery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-352 (Cross-Site Request Forgery, commonly known as CSRF or XSRF) is a web application security weakness whereby an attacker tricks an authenticated user's browser into submitting state-changing re... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-352-cross-site-request-forgery.json #### MITRE CWE-400 - Uncontrolled Resource Consumption - **ID**: mitre-cwe-400-uncontrolled-resource-consumption - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-400 (Uncontrolled Resource Consumption) is a CWE Top 25 weakness underlying denial-of-service vulnerabilities including algorithmic complexity attacks, regex denial of service (ReDoS), billion lau... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-400-uncontrolled-resource-consumption.json #### MITRE CWE-416 - Use After Free - **ID**: mitre-cwe-416-use-after-free - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-416 (Use After Free) is a CWE Top 25 weakness underlying many heap exploitation primitives in browsers, kernels, and high-performance native code. CWE-416 is defined as: the product reuses or refe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-416-use-after-free.json #### MITRE CWE-434 - Unrestricted Upload of File with Dangerous Type - **ID**: mitre-cwe-434-unrestricted-file-upload - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-434 (Unrestricted Upload of File with Dangerous Type) is a CWE Top 25 weakness underlying many remote code execution incidents in web applications, including unauthenticated webshell uploads, poly... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-434-unrestricted-file-upload.json #### MITRE CWE-476 - NULL Pointer Dereference - **ID**: mitre-cwe-476-null-pointer-dereference - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-476 (NULL Pointer Dereference) is a CWE Top 25 weakness causing denial of service in most contexts and remote code execution in privileged or kernel contexts where NULL maps to a usable memory pag... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-476-null-pointer-dereference.json #### MITRE CWE-502 - Deserialization of Untrusted Data - **ID**: mitre-cwe-502-deserialization-of-untrusted-data - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-502 (Deserialization of Untrusted Data) is a CWE Top 25 weakness underlying many remote code execution exploits across Java, .NET, PHP, Python, Ruby, and Node.js ecosystems. CWE-502 is defined as:... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-502-deserialization-of-untrusted-data.json #### MITRE CWE-611 - Improper Restriction of XML External Entity Reference (XXE) - **ID**: mitre-cwe-611-xml-external-entity-xxe - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-611 (Improper Restriction of XML External Entity Reference, commonly known as XXE) is a CWE Top 25 weakness affecting XML parsing in applications, SOAP services, SAML implementations, document upl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-611-xml-external-entity-xxe.json #### MITRE CWE-732 - Incorrect Permission Assignment for Critical Resource - **ID**: mitre-cwe-732-incorrect-permission-assignment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-732 (Incorrect Permission Assignment for Critical Resource) is a CWE Top 25 weakness consistently present in cloud misconfiguration incidents (public S3 buckets, world-readable Kubernetes secrets,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-732-incorrect-permission-assignment.json #### MITRE CWE-77 - Improper Neutralization of Special Elements Used in a Command (Command Injection) - **ID**: mitre-cwe-77-command-injection-broad - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-77 (Improper Neutralization of Special Elements used in a Command) is the broad parent weakness for command injection. It covers not only OS command injection (CWE-78, its child) but also injectio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-77-command-injection-broad.json #### MITRE CWE-770 - Allocation of Resources Without Limits or Throttling - **ID**: mitre-cwe-770-allocation-resources-without-limits - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-770 (Allocation of Resources Without Limits or Throttling) is a CWE Top 25 weakness and a primary child of CWE-400 (Uncontrolled Resource Consumption); it covers application-layer denial-of-servic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-770-allocation-resources-without-limits.json #### MITRE CWE-78 - Improper Neutralization of Special Elements Used in an OS Command (OS Command Injection) - **ID**: mitre-cwe-78-os-command-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-78 (Improper Neutralization of Special Elements used in an OS Command, commonly known as OS Command Injection) is consistently in the CWE Top 25 most dangerous weaknesses and is one of the most ex... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-78-os-command-injection.json #### MITRE CWE-787 - Out-of-bounds Write - **ID**: mitre-cwe-787-out-of-bounds-write - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-787 (Out-of-bounds Write) is consistently the highest-ranked memory safety weakness in the CWE Top 25 Most Dangerous Software Weaknesses and is the underlying weakness for the majority of remote c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-787-out-of-bounds-write.json #### MITRE CWE-79 - Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) - **ID**: mitre-cwe-79-cross-site-scripting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-79 (Improper Neutralization of Input During Web Page Generation, commonly known as Cross-site Scripting or XSS) is one of the most prevalent web application security weaknesses, ranked in the CWE ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-79-cross-site-scripting.json #### MITRE CWE-798 - Use of Hard-coded Credentials - **ID**: mitre-cwe-798-use-of-hard-coded-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-798 (Use of Hard-coded Credentials) is a CWE Top 25 weakness consistently present in firmware, IoT devices, network appliances, default-install software, and codebases that have leaked private rep... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-798-use-of-hard-coded-credentials.json #### MITRE CWE-862 - Missing Authorization - **ID**: mitre-cwe-862-missing-authorization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-862 (Missing Authorization) is a CWE Top 25 weakness recurring in cloud, API, and SaaS applications, and is the underlying root cause for many Insecure Direct Object Reference (IDOR) and Broken Ob... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-862-missing-authorization.json #### MITRE CWE-863 - Incorrect Authorization - **ID**: mitre-cwe-863-incorrect-authorization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-863 (Incorrect Authorization) is a CWE Top 25 weakness covering authorization decisions that are made but performed with incorrect logic, missing conditions, or buggy rule evaluation. CWE-863 is d... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-863-incorrect-authorization.json #### MITRE CWE-89 - Improper Neutralization of Special Elements Used in an SQL Command (SQL Injection) - **ID**: mitre-cwe-89-sql-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-89 (Improper Neutralization of Special Elements used in an SQL Command, commonly known as SQL Injection or SQLi) is consistently among the most dangerous and exploitable web application weaknesses... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-89-sql-injection.json #### MITRE CWE-918 - Server-Side Request Forgery (SSRF) - **ID**: mitre-cwe-918-server-side-request-forgery - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: CWE-918 (Server-Side Request Forgery, commonly known as SSRF) is a CWE Top 25 weakness that has become particularly dangerous in cloud environments where it can be exploited to access metadata service... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-918-server-side-request-forgery.json #### MITRE CWE-94 - Improper Control of Generation of Code (Code Injection) - **ID**: mitre-cwe-94-code-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CWE-94 (Improper Control of Generation of Code, commonly known as Code Injection) is a CWE Top 25 weakness covering server-side template injection, eval injection, expression language injection, and d... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-94-code-injection.json #### MITRE CWE Top 25 Most Dangerous Software Weaknesses 2024 (CWE-79 XSS, CWE-787 Out-of-bounds Write, CWE-89 SQL Injection, CWE-352 CSRF, CWE-22 Path Traversal, CWE-125, CWE-78, CWE-416, CWE-862) - **ID**: mitre-cwe-top-25-2024-most-dangerous-weaknesses - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The 2024 CWE Top 25 Most Dangerous Software Weaknesses, published by The MITRE Corporation's CWE program at cwe.mitre.org/top25/archive/2024/, is the ranked annual list of the most severe and prevalen... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-cwe-top-25-2024-most-dangerous-weaknesses.json #### MITRE D3FEND D3-AA: Agent Authentication (Defensive Tactic - Harden -> Agent Authentication) - **ID**: mitre-d3fend-d3-aa-agent-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-AA (Agent Authentication) is a Harden defensive technique. Agent authentication is the process of verifying the identities of agents to ensure they are authorized and trustworthy parti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-aa-agent-authentication.json #### MITRE D3FEND D3-ABPI: Application-based Process Isolation (Defensive Tactic - Isolate -> Application-based Process Isolation) - **ID**: mitre-d3fend-d3-abpi-application-based-process-isolation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-ABPI (Application-based Process Isolation) is a Isolate defensive technique. Application code which prevents its own subroutines from accessing intra-process / internal memory space. S... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-abpi-application-based-process-isolation.json #### MITRE D3FEND D3-ACH: Application Configuration Hardening (Defensive Tactic - Harden -> Application Configuration Hardening) - **ID**: mitre-d3fend-d3-ach-application-configuration-hardening - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-ACH (Application Configuration Hardening) is a defensive technique that secures application-layer settings - feature flags, security headers, session cookie attributes, CORS policies, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ach-application-configuration-hardening.json #### MITRE D3FEND D3-AEM: Application Exception Monitoring (Defensive Tactic - Detect -> Application Exception Monitoring) - **ID**: mitre-d3fend-d3-aem-application-exception-monitoring - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-AEM (Application Exception Monitoring) is a Detect defensive technique. Monitoring the failures of system counters and timers. Monitoring timer and counter failures or exceedances can ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-aem-application-exception-monitoring.json #### MITRE D3FEND D3-AI: Asset Inventory (Defensive Tactic - Model -> Asset Inventory) - **ID**: mitre-d3fend-d3-ai-asset-inventory - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-AI (Asset Inventory) is a foundational defensive technique that enumerates and tracks digital assets (hardware, software, services, accounts, data) to enable downstream defence. Withou... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ai-asset-inventory.json #### MITRE D3FEND D3-AL: Account Locking (Defensive Tactic - Harden -> Credential Hardening) - **ID**: mitre-d3fend-d3-al-account-locking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-AL (Account Locking) is a defensive technique that disables identity accounts after a configured number of failed authentication attempts to defeat brute force, password spray, and cre... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-al-account-locking.json #### MITRE D3FEND D3-AM: Access Modeling (Defensive Tactic - Model -> Access Modeling) - **ID**: mitre-d3fend-d3-am-access-modeling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-AM (Access Modeling) is a Model defensive technique. Access modeling captures and records the access permissions granted to identities (e.g., administrators, users, groups, systems) an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-am-access-modeling.json #### MITRE D3FEND D3-ANAA: Administrative Network Activity Analysis (Defensive Tactic - Detect -> Administrative Network Activity Analysis) - **ID**: mitre-d3fend-d3-anaa-administrative-network-activity-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-ANAA (Administrative Network Activity Analysis) is a Detect defensive technique. Detection of unauthorized use of administrative network protocols by analyzing network activity against... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-anaa-administrative-network-activity-analysis.json #### MITRE D3FEND D3-ANCI: Authentication Cache Invalidation (Defensive Tactic - Evict → Credential Eviction) - **ID**: mitre-d3fend-d3-anci-authentication-cache-invalidation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-ANCI (Authentication Cache Invalidation) is a defensive technique that revokes cached credentials and active sessions to force renewed authentication. ANCI counters ATT&CK techniques T... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-anci-authentication-cache-invalidation.json #### MITRE D3FEND D3-APCA: Application Protocol Command Analysis (Defensive Tactic - Detect -> Application Protocol Command Analysis) - **ID**: mitre-d3fend-d3-apca-application-protocol-command-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-APCA (Application Protocol Command Analysis) is a Detect defensive technique. Analyzing application protocol level remote commands to detect unauthorized activity. This technique requi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-apca-application-protocol-command-analysis.json #### MITRE D3FEND D3-AVE: Asset Vulnerability Enumeration (Defensive Tactic - Model -> Asset Vulnerability Enumeration) - **ID**: mitre-d3fend-d3-ave-asset-vulnerability-enumeration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-AVE (Asset Vulnerability Enumeration) is a Model defensive technique. Asset vulnerability enumeration enriches inventory items with knowledge identifying their vulnerabilities. In the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ave-asset-vulnerability-enumeration.json #### MITRE D3FEND D3-BA: Bootloader Authentication (Defensive Tactic - Harden -> Bootloader Authentication) - **ID**: mitre-d3fend-d3-ba-bootloader-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-BA (Bootloader Authentication) is a Harden defensive technique. Cryptographically authenticating the bootloader software before system boot. In the D3FEND model it authenticates the bo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ba-bootloader-authentication.json #### MITRE D3FEND D3-CA: Certificate Analysis (Defensive Tactic - Detect -> Certificate Analysis) - **ID**: mitre-d3fend-d3-ca-certificate-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CA (Certificate Analysis) is a Detect defensive technique. Analyzing Public Key Infrastructure certificates to detect if they have been misconfigured or spoofed using both network traf... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ca-certificate-analysis.json #### MITRE D3FEND D3-CAA: Connection Attempt Analysis (Defensive Tactic - Detect -> Connection Attempt Analysis) - **ID**: mitre-d3fend-d3-caa-connection-attempt-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CAA (Connection Attempt Analysis) is a Detect defensive technique. Analyzing failed connections in a network to detect unauthorized activity. Connection Attempt Analysis in multiple wa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-caa-connection-attempt-analysis.json #### MITRE D3FEND D3-CBA: Certificate-based Authentication (Defensive Tactic - Harden -> Certificate-based Authentication) - **ID**: mitre-d3fend-d3-cba-certificate-based-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CBA (Certificate-based Authentication) is a Harden defensive technique. In the D3FEND model it reads Certificate. It is part of the Agent Authentication D3FEND parent category and coun... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cba-certificate-based-authentication.json #### MITRE D3FEND D3-CCSA: Credential Compromise Scope Analysis (Defensive Tactic - Detect -> Credential Compromise Scope Analysis) - **ID**: mitre-d3fend-d3-ccsa-credential-compromise-scope-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CCSA (Credential Compromise Scope Analysis) is a Detect defensive technique. Determining which credentials may have been compromised by analyzing the user logon history of a particular... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ccsa-credential-compromise-scope-analysis.json #### MITRE D3FEND D3-CDP: Change Default Password (Defensive Tactic - Harden -> Change Default Password) - **ID**: mitre-d3fend-d3-cdp-change-default-password - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CDP (Change Default Password) is a Harden defensive technique. Changing the default password means replacing the factory-set credentials with a strong, unique password before the devic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cdp-change-default-password.json #### MITRE D3FEND D3-CE: Credential Eviction (Defensive Tactic - Evict) - **ID**: mitre-d3fend-d3-ce-credential-eviction - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CE (Credential Eviction) is a defensive technique that disables or removes compromised credentials from a computer network. Distinct from D3-CRO Credential Rotation (CE removes; CRO re... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ce-credential-eviction.json #### MITRE D3FEND D3-CERO: Certificate Rotation (Defensive Tactic - Harden -> Certificate Rotation) - **ID**: mitre-d3fend-d3-cero-certificate-rotation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CERO (Certificate Rotation) is a Harden defensive technique. Certificate rotation involves replacing digital certificates and their private keys to maintain cryptographic integrity and... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cero-certificate-rotation.json #### MITRE D3FEND D3-CF: Content Filtering (Defensive Tactic - Isolate -> Content Filtering) - **ID**: mitre-d3fend-d3-cf-content-filtering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CF (Content Filtering) is a Isolate defensive technique. Content Filtering techniques aid in the process of analyzing an input file for malicious or erroneous content and outputing a s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cf-content-filtering.json #### MITRE D3FEND D3-CH: Credential Hardening (Defensive Tactic - Harden -> Credential Hardening) - **ID**: mitre-d3fend-d3-ch-credential-hardening - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CH (Credential Hardening) is the foundational Harden-tactic technique that strengthens user, service, and machine credentials against theft, brute-force, replay, and unauthorised use. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ch-credential-hardening.json #### MITRE D3FEND D3-CI: Configuration Inventory (Defensive Tactic - Model -> Configuration Inventory) - **ID**: mitre-d3fend-d3-ci-configuration-inventory - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CI (Configuration Inventory) is a Model defensive technique. In the D3FEND model it inventories Configuration Resource. It is part of the Asset Inventory D3FEND parent category and cou... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ci-configuration-inventory.json #### MITRE D3FEND D3-CIA: Container Image Analysis (Defensive Tactic - Model -> Container Image Analysis) - **ID**: mitre-d3fend-d3-cia-container-image-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CIA (Container Image Analysis) is a Model defensive technique. Analyzing a Container Image with respect to a set of policies. Container images are standalone collections of the executa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cia-container-image-analysis.json #### MITRE D3FEND D3-CM: Content Modification (Defensive Tactic - Isolate -> Content Modification) - **ID**: mitre-d3fend-d3-cm-content-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CM (Content Modification) is a Isolate defensive technique. Modify content that does not comply with policy. When content is found to not comply with it's content policy, it may be tra... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cm-content-modification.json #### MITRE D3FEND D3-CP: Certificate Pinning (Defensive Tactic - Harden) - **ID**: mitre-d3fend-d3-cp-certificate-pinning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CP (Certificate Pinning) is a defensive technique that persists a server X.509 certificate or public key and compares against the server presented identity to allow greater client conf... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cp-certificate-pinning.json #### MITRE D3FEND D3-CQ: Content Quarantine (Defensive Tactic - Isolate -> Content Quarantine) - **ID**: mitre-d3fend-d3-cq-content-quarantine - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CQ (Content Quarantine) is a Isolate defensive technique. Transfer content that does not comply with policy to a quarantine zone. Quarantining serves as a protective measure to isolate... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cq-content-quarantine.json #### MITRE D3FEND D3-CR: Credential Revocation (Defensive Tactic - Evict -> Credential Revocation) - **ID**: mitre-d3fend-d3-cr-credential-revocation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CR (Credential Revocation) is a Evict defensive technique. Deleting a set of credentials permanently to prevent them from being used to authenticate. Management servers with enterprise... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cr-credential-revocation.json #### MITRE D3FEND D3-CRO: Credential Rotation (Defensive Tactic - Evict) - **ID**: mitre-d3fend-d3-cro-credential-rotation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CRO (Credential Rotation) is a defensive technique that regularly changes or replaces authentication credentials (passwords, API keys, certificates) to minimise risk of unauthorised ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cro-credential-rotation.json #### MITRE D3FEND D3-CS: Credential Scrubbing (Defensive Tactic - Harden -> Credential Scrubbing) - **ID**: mitre-d3fend-d3-cs-credential-scrubbing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CS (Credential Scrubbing) is a Harden defensive technique. The systematic removal of hard-coded credentials from source code to prevent accidental exposure and unauthorized access. Cre... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cs-credential-scrubbing.json #### MITRE D3FEND D3-CSPP: Client-server Payload Profiling (Defensive Tactic - Detect -> Client-server Payload Profiling) - **ID**: mitre-d3fend-d3-cspp-client-server-payload-profiling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CSPP (Client-server Payload Profiling) is a Detect defensive technique. Comparing client-server request and response payloads to a baseline profile to identify outliers. Profiling requ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cspp-client-server-payload-profiling.json #### MITRE D3FEND D3-CTS: Credential Transmission Scoping (Defensive Tactic - Isolate -> Credential Transmission Scoping) - **ID**: mitre-d3fend-d3-cts-credential-transmission-scoping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-CTS (Credential Transmission Scoping) is a Isolate defensive technique. Limiting the transmission of a credential to a scoped set of relying parties. In the D3FEND model it isolates th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-cts-credential-transmission-scoping.json #### MITRE D3FEND D3-DA: Dynamic Analysis (Defensive Tactic - Detect -> Dynamic Analysis) - **ID**: mitre-d3fend-d3-da-dynamic-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DA (Dynamic Analysis) is a Detect defensive technique. Executing or opening a file in a synthetic "sandbox" environment to determine if the file is a malicious program or if the file e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-da-dynamic-analysis.json #### MITRE D3FEND D3-DAM: Domain Account Monitoring (Defensive Tactic - Detect -> Domain Account Monitoring) - **ID**: mitre-d3fend-d3-dam-domain-account-monitoring - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DAM (Domain Account Monitoring) is a Detect defensive technique. Monitoring the existence of or changes to Domain User Accounts. In the D3FEND model it monitors the domain user account... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dam-domain-account-monitoring.json #### MITRE D3FEND D3-DE: Decoy Environment (Defensive Tactic - Deceive -> Decoy Environment) - **ID**: mitre-d3fend-d3-de-decoy-environment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DE (Decoy Environment) is a defensive technique that deploys realistic but fake systems, networks, or cloud environments to attract adversary engagement, generate threat intelligence, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-de-decoy-environment.json #### MITRE D3FEND D3-DENCR: Disk Encryption (Defensive Tactic - Harden -> Platform Hardening) - **ID**: mitre-d3fend-d3-dencr-disk-encryption - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DENCR (Disk Encryption) is a defensive technique that protects data at rest by encrypting block-level storage volumes. DENCR counters ATT&CK techniques T1486 (Data Encrypted for Impact... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dencr-disk-encryption.json #### MITRE D3FEND D3-DF: Decoy File (Defensive Tactic - Deceive -> Decoy Object) - **ID**: mitre-d3fend-d3-df-decoy-file - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DF (Decoy File) is a defensive technique that places enticing fake files (canary tokens, decoy documents, fake credential stores, fake backup archives, fake source code) in locations w... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-df-decoy-file.json #### MITRE D3FEND D3-DI: Data Inventory (Defensive Tactic - Model -> Data Inventory) - **ID**: mitre-d3fend-d3-di-data-inventory - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DI (Data Inventory) is a defensive technique that enumerates and tracks data assets - structured databases, unstructured file shares, SaaS data, regulated personal data, secrets, and i... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-di-data-inventory.json #### MITRE D3FEND D3-DKE: Disk Erasure (Defensive Tactic - Evict -> Disk Erasure) - **ID**: mitre-d3fend-d3-dke-disk-erasure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DKE (Disk Erasure) is a Evict defensive technique. Disk Erasure is the process of securely deleting all data on a disk to ensure that it cannot be recovered by any means. Disk Erasure ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dke-disk-erasure.json #### MITRE D3FEND D3-DKF: Disk Formatting (Defensive Tactic - Evict -> Disk Formatting) - **ID**: mitre-d3fend-d3-dkf-disk-formatting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DKF (Disk Formatting) is a Evict defensive technique. Disk Formatting is the process of preparing a data storage device, such as a hard drive, solid-state drive, or USB flash drive, fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dkf-disk-formatting.json #### MITRE D3FEND D3-DLV: Domain Logic Validation (Defensive Tactic - Harden -> Domain Logic Validation) - **ID**: mitre-d3fend-d3-dlv-domain-logic-validation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DLV (Domain Logic Validation) is a Harden defensive technique. Validation of variable state in the context of the domain application. Validates the type, value, and/or range of an vari... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dlv-domain-logic-validation.json #### MITRE D3FEND D3-DNR: Decoy Network Resource (Defensive Tactic - Deceive -> Decoy Network Resource) - **ID**: mitre-d3fend-d3-dnr-decoy-network-resource - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DNR (Decoy Network Resource) is a defensive technique that creates fake network services (decoy DNS records, fake SSH/RDP/SMB shares, decoy web services, decoy directory listings) to d... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dnr-decoy-network-resource.json #### MITRE D3FEND D3-DNSAL: DNS Allowlisting (Defensive Tactic - Isolate -> DNS Allowlisting) - **ID**: mitre-d3fend-d3-dnsal-dns-allowlisting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DNSAL (DNS Allowlisting) is a Isolate defensive technique. Permitting only approved domains and their subdomains to be resolved. In the D3FEND model it blocks the outbound internet dns... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dnsal-dns-allowlisting.json #### MITRE D3FEND D3-DNSDL: DNS Denylisting (Defensive Tactic - Detect/Isolate -> Network Analysis) - **ID**: mitre-d3fend-d3-dnsdl-dns-denylisting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DNSDL (DNS Denylisting) is a defensive technique that blocks DNS resolution of known-malicious domains to prevent C2 communication, phishing, malware distribution, and data exfiltratio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dnsdl-dns-denylisting.json #### MITRE D3FEND D3-DNSTA: DNS Traffic Analysis (Defensive Tactic - Detect -> DNS Traffic Analysis) - **ID**: mitre-d3fend-d3-dnsta-dns-traffic-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DNSTA (DNS Traffic Analysis) is a Detect defensive technique. Analysis of domain name metadata, including name and DNS records, to determine whether the domain is likely to resolve to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dnsta-dns-traffic-analysis.json #### MITRE D3FEND D3-DP: Disk Partitioning (Defensive Tactic - Evict -> Disk Partitioning) - **ID**: mitre-d3fend-d3-dp-disk-partitioning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DP (Disk Partitioning) is a Evict defensive technique. In the D3FEND model it creates Partition Table. It is part of the Object Eviction D3FEND parent category and counters ATT&CK tech... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dp-disk-partitioning.json #### MITRE D3FEND D3-DQSA: Database Query String Analysis (Defensive Tactic - Detect -> Database Query String Analysis) - **ID**: mitre-d3fend-d3-dqsa-database-query-string-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DQSA (Database Query String Analysis) is a Detect defensive technique. Analyzing database queries to detect SQL Injection. Some implementations use software hooks to intercept function... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dqsa-database-query-string-analysis.json #### MITRE D3FEND D3-DRA: Disable Remote Access (Defensive Tactic - Harden -> Disable Remote Access) - **ID**: mitre-d3fend-d3-dra-disable-remote-access - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DRA (Disable Remote Access) is a Harden defensive technique. Limiting access to a computing device which is not required through or from a non-organization-controlled network. There ar... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dra-disable-remote-access.json #### MITRE D3FEND D3-DTP: Domain Trust Policy (Defensive Tactic - Isolate -> Domain Trust Policy) - **ID**: mitre-d3fend-d3-dtp-domain-trust-policy - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DTP (Domain Trust Policy) is a Isolate defensive technique. Restricting inter-domain trust by modifying domain configuration. In the D3FEND model it restricts the directory service; re... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-dtp-domain-trust-policy.json #### MITRE D3FEND D3-DUC: Decoy User Credential (Defensive Tactic - Deceive -> Decoy Object) - **ID**: mitre-d3fend-d3-duc-decoy-user-credential - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-DUC (Decoy User Credential) is a defensive technique that plants fake credentials, honey accounts, and canary tokens to detect adversary credential theft and lateral movement. DUC coun... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-duc-decoy-user-credential.json #### MITRE D3FEND D3-EAL: Executable Allowlisting (Defensive Tactic - Isolate -> Executable Allowlisting) - **ID**: mitre-d3fend-d3-eal-executable-allowlisting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-EAL (Executable Allowlisting) is a Isolate defensive technique. Using a digital signature to authenticate a file before opening. This technique is generic and there are numerous ways t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-eal-executable-allowlisting.json #### MITRE D3FEND D3-EDL: Executable Denylisting (Defensive Tactic - Isolate -> Executable Denylisting) - **ID**: mitre-d3fend-d3-edl-executable-denylisting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-EDL (Executable Denylisting) is a Isolate defensive technique. Blocking the execution of files on a host in accordance with defined application policy rules. Criteria A policy-enforcin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-edl-executable-denylisting.json #### MITRE D3FEND D3-EF: Email Filtering (Defensive Tactic - Isolate -> Email Filtering) - **ID**: mitre-d3fend-d3-ef-email-filtering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-EF (Email Filtering) is a Isolate defensive technique. Filtering incoming email traffic based on specific criteria. Mail filters can be implemented to scan inbound email messages at th... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ef-email-filtering.json #### MITRE D3FEND D3-EFA: Emulated File Analysis (Defensive Tactic - Detect -> Emulated File Analysis) - **ID**: mitre-d3fend-d3-efa-emulated-file-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-EFA (Emulated File Analysis) is a Detect defensive technique. Emulating instructions in a file looking for specific patterns. In the D3FEND model it analyzes the document file; analyze... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-efa-emulated-file-analysis.json #### MITRE D3FEND D3-EHB: Endpoint Health Beacon (Defensive Tactic - Detect) - **ID**: mitre-d3fend-d3-ehb-endpoint-health-beacon - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-EHB (Endpoint Health Beacon) is a defensive technique that monitors endpoint security status by sending periodic health-status messages; absence of response may indicate compromise. Co... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ehb-endpoint-health-beacon.json #### MITRE D3FEND D3-EI: Execution Isolation (Defensive Tactic - Isolate -> Execution Isolation) - **ID**: mitre-d3fend-d3-ei-execution-isolation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-EI (Execution Isolation) is a defensive technique that confines code execution to isolated boundaries (sandboxes, containers, VMs, application guard browsers, virtualization-based secu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ei-execution-isolation.json #### MITRE D3FEND D3-ER: Email Removal (Defensive Tactic - Evict -> Email Removal) - **ID**: mitre-d3fend-d3-er-email-removal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-ER (Email Removal) is a Evict defensive technique. The email removal technique deletes email files from system storage. Email removal is a technique that can be used to prevent a user ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-er-email-removal.json #### MITRE D3FEND D3-FA: File Analysis (Defensive Tactic - Detect -> File Analysis) - **ID**: mitre-d3fend-d3-fa-file-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FA (File Analysis) is a Detect defensive technique. File Analysis is an analytic process to determine a file's status. For example: virus, trojan, benign, malicious, trusted, unauthori... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-fa-file-analysis.json #### MITRE D3FEND D3-FBA: Firmware Behavior Analysis (Defensive Tactic - Detect -> Firmware Behavior Analysis) - **ID**: mitre-d3fend-d3-fba-firmware-behavior-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FBA (Firmware Behavior Analysis) is a Detect defensive technique. Analyzing the behavior of embedded code in firmware and looking for anomalous behavior and suspicious activity. Firmwa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-fba-firmware-behavior-analysis.json #### MITRE D3FEND D3-FC: File Carving (Defensive Tactic - Detect -> File Carving) - **ID**: mitre-d3fend-d3-fc-file-carving - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FC (File Carving) is a Detect defensive technique. Identifying and extracting files from network application protocols through the use of network stream reassembly software. Protocol s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-fc-file-carving.json #### MITRE D3FEND D3-FCA: File Creation Analysis (Defensive Tactic - Detect -> File Creation Analysis) - **ID**: mitre-d3fend-d3-fca-file-creation-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FCA (File Creation Analysis) is a Detect defensive technique. Analyzing the properties of file create system call invocations. In the D3FEND model it analyzes the create file. It count... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-fca-file-creation-analysis.json #### MITRE D3FEND D3-FE: File Encryption (Defensive Tactic - Harden -> File Encryption) - **ID**: mitre-d3fend-d3-fe-file-encryption - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FE (File Encryption) is a Harden defensive technique. Encrypting a file using a cryptographic key. Files are encrypted using either a single key for both encryption and decryption or s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-fe-file-encryption.json #### MITRE D3FEND D3-FEMC: Firmware Embedded Monitoring Code (Defensive Tactic - Detect -> Firmware Embedded Monitoring Code) - **ID**: mitre-d3fend-d3-femc-firmware-embedded-monitoring-code - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FEMC (Firmware Embedded Monitoring Code) is a Detect defensive technique. Monitoring code is injected into firmware for integrity monitoring of firmware and firmware data. Firmware in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-femc-firmware-embedded-monitoring-code.json #### MITRE D3FEND D3-FEV: File Eviction (Defensive Tactic - Evict -> File Eviction) - **ID**: mitre-d3fend-d3-fev-file-eviction - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FEV (File Eviction) is a Evict defensive technique. File eviction techniques delete files from system storage. Adversaries may place files or programs into a computer's file system to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-fev-file-eviction.json #### MITRE D3FEND D3-FFV: File Format Verification (Defensive Tactic - Isolate -> File Format Verification) - **ID**: mitre-d3fend-d3-ffv-file-format-verification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FFV (File Format Verification) is a Isolate defensive technique. Verifying that a file conforms to its expected format specifications In the D3FEND model it analyzes the file section. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ffv-file-format-verification.json #### MITRE D3FEND D3-FH: File Hashing (Defensive Tactic - Detect) - **ID**: mitre-d3fend-d3-fh-file-hashing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FH (File Hashing) is a defensive technique that uses file hash comparisons to detect known malware. Requires a database of malicious hashes to compare against environment files. Counte... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-fh-file-hashing.json #### MITRE D3FEND D3-FIM: File Integrity Monitoring (Defensive Tactic - Detect → File Analysis) - **ID**: mitre-d3fend-d3-fim-file-integrity-monitoring - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FIM (File Integrity Monitoring) is a defensive technique that detects unauthorised modification of files by computing and comparing cryptographic hashes against a baseline. FIM counter... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-fim-file-integrity-monitoring.json #### MITRE D3FEND D3-FRDDL: Forward Resolution Domain Denylisting (Defensive Tactic - Isolate -> Forward Resolution Domain Denylisting) - **ID**: mitre-d3fend-d3-frddl-forward-resolution-domain-denylisting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FRDDL (Forward Resolution Domain Denylisting) is a Isolate defensive technique. Blocking a lookup based on the query's domain name value. Policies are created that filter DNS queries u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-frddl-forward-resolution-domain-denylisting.json #### MITRE D3FEND D3-FV: Firmware Verification (Defensive Tactic - Detect -> Firmware Verification) - **ID**: mitre-d3fend-d3-fv-firmware-verification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-FV (Firmware Verification) is a Detect defensive technique. Cryptographically verifying firmware integrity. Cryptographic hash values are computed for system and peripheral firmware. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-fv-firmware-verification.json #### MITRE D3FEND D3-HBPI: Hardware-based Process Isolation (Defensive Tactic - Isolate -> Hardware-based Process Isolation) - **ID**: mitre-d3fend-d3-hbpi-hardware-based-process-isolation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-HBPI (Hardware-based Process Isolation) is a Isolate defensive technique. Preventing one process from writing to the memory space of another process through hardware based address mana... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-hbpi-hardware-based-process-isolation.json #### MITRE D3FEND D3-HBWP: Hardware-based Write Protection (Defensive Tactic - Harden -> Hardware-based Write Protection) - **ID**: mitre-d3fend-d3-hbwp-hardware-based-write-protection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-HBWP (Hardware-based Write Protection) is a Harden defensive technique. Physical methods of preventing data from being written to computer storage. In the D3FEND model it hardens the s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-hbwp-hardware-based-write-protection.json #### MITRE D3FEND D3-HCI: Hardware Component Inventory (Defensive Tactic - Model -> Hardware Component Inventory) - **ID**: mitre-d3fend-d3-hci-hardware-component-inventory - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-HCI (Hardware Component Inventory) is a Model defensive technique. In the D3FEND model it inventories Hardware Device. It is part of the Asset Inventory D3FEND parent category and coun... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-hci-hardware-component-inventory.json #### MITRE D3FEND D3-HD: Homoglyph Detection (Defensive Tactic - Detect -> Homoglyph Detection) - **ID**: mitre-d3fend-d3-hd-homoglyph-detection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-HD (Homoglyph Detection) is a Detect defensive technique. Comparing strings using a variety of techniques to determine if a deceptive or malicious string is being presented to a user. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-hd-homoglyph-detection.json #### MITRE D3FEND D3-HR: Host Reboot (Defensive Tactic - Evict -> Host Reboot) - **ID**: mitre-d3fend-d3-hr-host-reboot - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-HR (Host Reboot) is a Evict defensive technique. Initiating a host's reboot sequence to terminate all running processes. Host reboot can either be initiated in the physical presence of... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-hr-host-reboot.json #### MITRE D3FEND D3-HS: Host Shutdown (Defensive Tactic - Evict -> Host Shutdown) - **ID**: mitre-d3fend-d3-hs-host-shutdown - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-HS (Host Shutdown) is a Evict defensive technique. Initiating a host's shutdown sequence to terminate all running processes. Host shutdown can either be initiated in the physical prese... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-hs-host-shutdown.json #### MITRE D3FEND D3-IAA: Identifier Activity Analysis (Defensive Tactic - Detect -> Identifier Activity Analysis) - **ID**: mitre-d3fend-d3-iaa-identifier-activity-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-IAA (Identifier Activity Analysis) is a Detect defensive technique. Taking known malicious identifiers and determining if they are present in a system. Identifier activity analysis is ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-iaa-identifier-activity-analysis.json #### MITRE D3FEND D3-IDA: Input Device Analysis (Defensive Tactic - Detect -> Input Device Analysis) - **ID**: mitre-d3fend-d3-ida-input-device-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-IDA (Input Device Analysis) is a Detect defensive technique. Operating system level mechanisms to prevent abusive input device exploitation. Input Device Hardening techniques filter ce... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ida-input-device-analysis.json #### MITRE D3FEND D3-IOPR: IO Port Restriction (Defensive Tactic - Isolate -> IO Port Restriction) - **ID**: mitre-d3fend-d3-iopr-io-port-restriction - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-IOPR (IO Port Restriction) is a Isolate defensive technique. Limiting access to computer input/output (IO) ports to restrict unauthorized devices. Software-based restriction uses agent... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-iopr-io-port-restriction.json #### MITRE D3FEND D3-IPCTA: IPC Traffic Analysis (Defensive Tactic - Detect -> IPC Traffic Analysis) - **ID**: mitre-d3fend-d3-ipcta-ipc-traffic-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-IPCTA (IPC Traffic Analysis) is a Detect defensive technique. Analyzing standard inter process communication (IPC) protocols to detect deviations from normal protocol activity. Inter p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ipcta-ipc-traffic-analysis.json #### MITRE D3FEND D3-IRA: Identifier Reputation Analysis (Defensive Tactic - Detect) - **ID**: mitre-d3fend-d3-ira-identifier-reputation-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-IRA (Identifier Reputation Analysis) is a defensive technique that analyses the reputation of identifiers (IP addresses, file hashes, domain names, URLs) to detect malicious activity. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ira-identifier-reputation-analysis.json #### MITRE D3FEND D3-ISVA: Inbound Session Volume Analysis (Defensive Tactic - Detect -> Inbound Session Volume Analysis) - **ID**: mitre-d3fend-d3-isva-inbound-session-volume-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-ISVA (Inbound Session Volume Analysis) is a Detect defensive technique. Analyzing inbound network session or connection attempt volume. Network appliances are configured to alert on ce... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-isva-inbound-session-volume-analysis.json #### MITRE D3FEND D3-ITF: Inbound Traffic Filtering (Defensive Tactic - Isolate -> Network Isolation) - **ID**: mitre-d3fend-d3-itf-inbound-traffic-filtering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-ITF (Inbound Traffic Filtering) is a defensive technique that filters inbound network connections based on source identifier, application protocol, and request content to block adversa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-itf-inbound-traffic-filtering.json #### MITRE D3FEND D3-KBPI: Kernel-based Process Isolation (Defensive Tactic - Isolate -> Kernel-based Process Isolation) - **ID**: mitre-d3fend-d3-kbpi-kernel-based-process-isolation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-KBPI (Kernel-based Process Isolation) is a Isolate defensive technique. Using kernel-level capabilities to isolate processes. In the D3FEND model it isolates the process. It counters A... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-kbpi-kernel-based-process-isolation.json #### MITRE D3FEND D3-LAM: Local Account Monitoring (Defensive Tactic - Detect -> Local Account Monitoring) - **ID**: mitre-d3fend-d3-lam-local-account-monitoring - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-LAM (Local Account Monitoring) is a Detect defensive technique. Analyzing local user accounts to detect unauthorized activity. In the D3FEND model it analyzes the local user account. I... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-lam-local-account-monitoring.json #### MITRE D3FEND D3-LFP: Local File Permissions (Defensive Tactic - Isolate -> Local File Permissions) - **ID**: mitre-d3fend-d3-lfp-local-file-permissions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-LFP (Local File Permissions) is a Isolate defensive technique. Local file permissions is the systematic process of defining, implementing, and managing access control policies that dic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-lfp-local-file-permissions.json #### MITRE D3FEND D3-LLM: Logical Link Mapping (Defensive Tactic - Model -> Logical Link Mapping) - **ID**: mitre-d3fend-d3-llm-logical-link-mapping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-LLM (Logical Link Mapping) is a Model defensive technique. Logical link mapping creates a model of existing or previous node-to-node connections using network-layer data or metadata. I... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-llm-logical-link-mapping.json #### MITRE D3FEND D3-MBT: Memory Boundary Tracking (Defensive Tactic - Detect -> Memory Boundary Tracking) - **ID**: mitre-d3fend-d3-mbt-memory-boundary-tracking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-MBT (Memory Boundary Tracking) is a Detect defensive technique. Analyzing a call stack for return addresses which point to unexpected memory locations. This technique monitors for indi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-mbt-memory-boundary-tracking.json #### MITRE D3FEND D3-MENCR: Message Encryption (Defensive Tactic - Harden -> Message Encryption) - **ID**: mitre-d3fend-d3-mencr-message-encryption - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-MENCR (Message Encryption) is a defensive technique that protects message content in transit using cryptography to prevent eavesdropping, tampering, and replay. MENCR covers TLS for we... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-mencr-message-encryption.json #### MITRE D3FEND D3-MFA: Multi-Factor Authentication (Defensive Tactic - Harden → Credential Hardening) - **ID**: mitre-d3fend-d3-mfa-multi-factor-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-MFA (Multi-Factor Authentication) is a defensive technique that requires authentication through two or more independent factors (knowledge, possession, inherence) to verify user identi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-mfa-multi-factor-authentication.json #### MITRE D3FEND D3-NI: Network Isolation (Defensive Tactic - Isolate → Network Isolation) - **ID**: mitre-d3fend-d3-ni-network-isolation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-NI (Network Isolation) is a defensive technique that prevents network communication between systems through segmentation, microsegmentation, and dynamic isolation. NI counters ATT&CK t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ni-network-isolation.json #### MITRE D3FEND D3-NM: Network Mapping (Defensive Tactic - Model -> Network Mapping) - **ID**: mitre-d3fend-d3-nm-network-mapping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-NM (Network Mapping) is a defensive technique that enumerates and visualises network topology, segmentation boundaries, communication paths, and inter-zone trust relationships to enabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-nm-network-mapping.json #### MITRE D3FEND D3-NNI: Network Node Inventory (Defensive Tactic - Model -> Network Node Inventory) - **ID**: mitre-d3fend-d3-nni-network-node-inventory - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-NNI (Network Node Inventory) is a Model defensive technique. In the D3FEND model it inventories Network Node. It is part of the Asset Inventory D3FEND parent category and counters ATT&... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-nni-network-node-inventory.json #### MITRE D3FEND D3-NRAM: Network Resource Access Mediation (Defensive Tactic - Isolate -> Network Resource Access Mediation) - **ID**: mitre-d3fend-d3-nram-network-resource-access-mediation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-NRAM (Network Resource Access Mediation) is a Isolate defensive technique. Control of access to organizational systems and services by users or processes over a network. Network Resour... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-nram-network-resource-access-mediation.json #### MITRE D3FEND D3-NTA: Network Traffic Analysis (Defensive Tactic - Detect → Network Analysis) - **ID**: mitre-d3fend-d3-nta-network-traffic-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-NTA (Network Traffic Analysis) is a defensive technique that inspects network communications to identify malicious or unauthorised behaviour. NTA counters ATT&CK techniques T1071 (Appl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-nta-network-traffic-analysis.json #### MITRE D3FEND D3-NTCD: Network Traffic Community Deviation (Defensive Tactic - Detect -> Network Traffic Community Deviation) - **ID**: mitre-d3fend-d3-ntcd-network-traffic-community-deviation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-NTCD (Network Traffic Community Deviation) is a Detect defensive technique. Establishing baseline communities of network hosts and identifying statistically divergent inter-community c... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ntcd-network-traffic-community-deviation.json #### MITRE D3FEND D3-NTF: Network Traffic Filtering (Defensive Tactic - Isolate -> Network Traffic Filtering) - **ID**: mitre-d3fend-d3-ntf-network-traffic-filtering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-NTF (Network Traffic Filtering) is a Isolate defensive technique. Restricting network traffic originating from any location. In the D3FEND model it filters the network traffic; filters... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ntf-network-traffic-filtering.json #### MITRE D3FEND D3-NTPM: Network Traffic Policy Mapping (Defensive Tactic - Model -> Network Traffic Policy Mapping) - **ID**: mitre-d3fend-d3-ntpm-network-traffic-policy-mapping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-NTPM (Network Traffic Policy Mapping) is a Model defensive technique. Network traffic policy mapping identifies and models the allowed pathways of data at the network, transport, and/o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ntpm-network-traffic-policy-mapping.json #### MITRE D3FEND D3-NTSA: Network Traffic Signature Analysis (Defensive Tactic - Detect -> Network Traffic Signature Analysis) - **ID**: mitre-d3fend-d3-ntsa-network-traffic-signature-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-NTSA (Network Traffic Signature Analysis) is a Detect defensive technique. Analyzing network traffic and compares it to known signatures Network signature analysis relies on predefined... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ntsa-network-traffic-signature-analysis.json #### MITRE D3FEND D3-OAM: Operational Activity Mapping (Defensive Tactic - Model -> Operational Activity Mapping) - **ID**: mitre-d3fend-d3-oam-operational-activity-mapping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-OAM (Operational Activity Mapping) is a defensive technique that enumerates and documents legitimate operational activities - business processes, automated workflows, scheduled jobs, b... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-oam-operational-activity-mapping.json #### MITRE D3FEND D3-OPM: Operational Process Monitoring (Defensive Tactic - Detect -> Operational Process Monitoring) - **ID**: mitre-d3fend-d3-opm-operational-process-monitoring - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-OPM (Operational Process Monitoring) is a Detect defensive technique. Monitoring physical parameters and operator actions related to an operational environment. While some Operational ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-opm-operational-process-monitoring.json #### MITRE D3FEND D3-OTF: Outbound Traffic Filtering (Defensive Tactic - Isolate -> Outbound Traffic Filtering) - **ID**: mitre-d3fend-d3-otf-outbound-traffic-filtering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-OTF (Outbound Traffic Filtering) is a Isolate defensive technique. Restricting network traffic originating from a private host or enclave destined towards untrusted networks. Outbound ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-otf-outbound-traffic-filtering.json #### MITRE D3FEND D3-OTP: One-time Password (Defensive Tactic - Harden -> One-time Password) - **ID**: mitre-d3fend-d3-otp-one-time-password - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-OTP (One-time Password) is a Harden defensive technique. In the D3FEND model it use-limits Password. It is part of the Credential Hardening D3FEND parent category and counters ATT&CK t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-otp-one-time-password.json #### MITRE D3FEND D3-PA: Password Authentication (Defensive Tactic - Harden -> Password Authentication) - **ID**: mitre-d3fend-d3-pa-password-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PA (Password Authentication) is a Harden defensive technique. In the D3FEND model it uses Password. It is part of the Agent Authentication D3FEND parent category and counters ATT&CK te... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-pa-password-authentication.json #### MITRE D3FEND D3-PAN: Pointer Authentication (Defensive Tactic - Harden) - **ID**: mitre-d3fend-d3-pan-pointer-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PAN (Pointer Authentication) is a defensive technique that uses cryptographic hashes or derivatives of pointer values to detect tampering. Defends against memory corruption attacks, RO... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-pan-pointer-authentication.json #### MITRE D3FEND D3-PCSV: Process Code Segment Verification (Defensive Tactic - Detect -> Process Code Segment Verification) - **ID**: mitre-d3fend-d3-pcsv-process-code-segment-verification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PCSV (Process Code Segment Verification) is a Detect defensive technique. Comparing the "text" or "code" memory segments to a source of truth. A process code segment is an executable p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-pcsv-process-code-segment-verification.json #### MITRE D3FEND D3-PE: Process Eviction (Defensive Tactic - Evict -> Process Eviction) - **ID**: mitre-d3fend-d3-pe-process-eviction - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PE (Process Eviction) is a defensive technique that forcibly terminates malicious processes from compromised systems as a containment action. PE counters post-compromise execution unde... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-pe-process-eviction.json #### MITRE D3FEND D3-PHDURA: Per Host Download-Upload Ratio Analysis (Defensive Tactic - Detect -> Per Host Download-Upload Ratio Analysis) - **ID**: mitre-d3fend-d3-phdura-per-host-download-upload-ratio-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PHDURA (Per Host Download-Upload Ratio Analysis) is a Detect defensive technique. Detecting anomalies that indicate malicious activity by comparing the amount of data downloaded versus... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-phdura-per-host-download-upload-ratio-analysis.json #### MITRE D3FEND D3-PLA: Process Lineage Analysis (Defensive Tactic - Detect -> Process Lineage Analysis) - **ID**: mitre-d3fend-d3-pla-process-lineage-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PLA (Process Lineage Analysis) is a Detect defensive technique. Identification of suspicious processes executing on an end-point device by examining the ancestry and siblings of a proc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-pla-process-lineage-analysis.json #### MITRE D3FEND D3-PLM: Physical Link Mapping (Defensive Tactic - Model -> Physical Link Mapping) - **ID**: mitre-d3fend-d3-plm-physical-link-mapping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PLM (Physical Link Mapping) is a Model defensive technique. Physical link mapping identifies and models the link connectivity of the network devices within a physical network. In the D... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-plm-physical-link-mapping.json #### MITRE D3FEND D3-PMAD: Protocol Metadata Anomaly Detection (Defensive Tactic - Detect -> Protocol Metadata Anomaly Detection) - **ID**: mitre-d3fend-d3-pmad-protocol-metadata-anomaly-detection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PMAD (Protocol Metadata Anomaly Detection) is a Detect defensive technique. Collecting network communication protocol metadata and identifying statistical outliers. Network protocol me... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-pmad-protocol-metadata-anomaly-detection.json #### MITRE D3FEND D3-PR: Password Rotation (Defensive Tactic - Harden -> Password Rotation) - **ID**: mitre-d3fend-d3-pr-password-rotation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PR (Password Rotation) is a Harden defensive technique. Password rotation is a security policy that mandates the periodic change of user account passwords to mitigate the risk of unaut... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-pr-password-rotation.json #### MITRE D3FEND D3-PS: Process Suspension (Defensive Tactic - Evict -> Process Suspension) - **ID**: mitre-d3fend-d3-ps-process-suspension - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PS (Process Suspension) is a Evict defensive technique. Suspending a running process on a computer system. A running process might be suspended to mitigate its immediate effects if it ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ps-process-suspension.json #### MITRE D3FEND D3-PSA: Process Spawn Analysis (Defensive Tactic - Detect -> Process Analysis) - **ID**: mitre-d3fend-d3-psa-process-spawn-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PSA (Process Spawn Analysis) is a defensive technique that analyses parent-child process relationships to identify suspicious execution chains. PSA counters ATT&CK techniques T1059 (Co... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-psa-process-spawn-analysis.json #### MITRE D3FEND D3-PSEP: Process Segment Execution Prevention (Defensive Tactic - Harden -> Process Segment Execution Prevention) - **ID**: mitre-d3fend-d3-psep-process-segment-execution-prevention - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PSEP (Process Segment Execution Prevention) is a Harden defensive technique. Preventing execution of any address in a memory region other than the code segment. During execution of a p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-psep-process-segment-execution-prevention.json #### MITRE D3FEND D3-PSMD: Process Self-Modification Detection (Defensive Tactic - Detect -> Process Self-Modification Detection) - **ID**: mitre-d3fend-d3-psmd-process-self-modification-detection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PSMD (Process Self-Modification Detection) is a Detect defensive technique. Detects processes that modify, change, or replace their own code at runtime. A security agent installed on t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-psmd-process-self-modification-detection.json #### MITRE D3FEND D3-PT: Process Termination (Defensive Tactic - Evict) - **ID**: mitre-d3fend-d3-pt-process-termination - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-PT (Process Termination) is a defensive technique that terminates running application processes via OS kernel APIs to stop processes exhibiting malicious or anomalous behavior. Counter... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-pt-process-termination.json #### MITRE D3FEND D3-RC: Restore Configuration (Defensive Tactic - Restore -> Restore Configuration) - **ID**: mitre-d3fend-d3-rc-restore-configuration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RC (Restore Configuration) is a Restore defensive technique. Restoring an software configuration. In the D3FEND model it restores the configuration resource. It counters ATT&CK techniq... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rc-restore-configuration.json #### MITRE D3FEND D3-RD: Restore Database (Defensive Tactic - Restore -> Restore Database) - **ID**: mitre-d3fend-d3-rd-restore-database - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RD (Restore Database) is a Restore defensive technique. Restoring the data in a database. In the D3FEND model it restores the database. It counters ATT&CK techniques T1003.002, T1003.0... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rd-restore-database.json #### MITRE D3FEND D3-RE: Restore Email (Defensive Tactic - Restore -> Restore Email) - **ID**: mitre-d3fend-d3-re-restore-email - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RE (Restore Email) is a Restore defensive technique. Restoring an email for an entity to access. In the D3FEND model it restores the email. It counters ATT&CK techniques T1114.001, T15... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-re-restore-email.json #### MITRE D3FEND D3-RF: Restore File (Defensive Tactic - Restore -> Restore Object) - **ID**: mitre-d3fend-d3-rf-restore-file - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RF (Restore File) is a defensive technique that recovers individual files or directories from a known-good backup after corruption, encryption, deletion, or unauthorised modification. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rf-restore-file.json #### MITRE D3FEND D3-RFAM: Remote File Access Mediation (Defensive Tactic - Isolate -> Remote File Access Mediation) - **ID**: mitre-d3fend-d3-rfam-remote-file-access-mediation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RFAM (Remote File Access Mediation) is a Isolate defensive technique. Remote file access mediation is the process of managing and securing access to file systems over a network to ensu... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rfam-remote-file-access-mediation.json #### MITRE D3FEND D3-RH: Radiation Hardening (Defensive Tactic - Harden -> Radiation Hardening) - **ID**: mitre-d3fend-d3-rh-radiation-hardening - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RH (Radiation Hardening) is a Harden defensive technique. Radiation hardening is the process of making electronic components and circuits resistant to damage or malfunction caused by h... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rh-radiation-hardening.json #### MITRE D3FEND D3-RIC: Reissue Credential (Defensive Tactic - Restore -> Reissue Credential) - **ID**: mitre-d3fend-d3-ric-reissue-credential - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RIC (Reissue Credential) is a Restore defensive technique. Issue a new credential to a user which supercedes their old credential. In the D3FEND model it restores the credential. It co... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ric-reissue-credential.json #### MITRE D3FEND D3-RKD: Registry Key Deletion (Defensive Tactic - Evict -> Registry Key Deletion) - **ID**: mitre-d3fend-d3-rkd-registry-key-deletion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RKD (Registry Key Deletion) is a Evict defensive technique. Delete a registry key. In the D3FEND model it deletes the windows registry key. It counters ATT&CK technique T1562.003. Via ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rkd-registry-key-deletion.json #### MITRE D3FEND D3-RNA: Restore Network Access (Defensive Tactic - Restore -> Restore Network Access) - **ID**: mitre-d3fend-d3-rna-restore-network-access - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RNA (Restore Network Access) is a Restore defensive technique. Restoring a entity's access to a computer network. In the D3FEND model it restores the host. It counters ATT&CK technique... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rna-restore-network-access.json #### MITRE D3FEND D3-RO: Restore Object (Defensive Tactic - Restore -> Restore Object) - **ID**: mitre-d3fend-d3-ro-restore-object - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RO (Restore Object) is a defensive technique that recovers system state from a known-good backup or golden image after compromise. RO counters ATT&CK techniques T1486 (Data Encrypted f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ro-restore-object.json #### MITRE D3FEND D3-RPA: Relay Pattern Analysis (Defensive Tactic - Detect -> Relay Pattern Analysis) - **ID**: mitre-d3fend-d3-rpa-relay-pattern-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RPA (Relay Pattern Analysis) is a Detect defensive technique. The detection of an internal host relaying traffic between the internal network and the external network. A relay may use ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rpa-relay-pattern-analysis.json #### MITRE D3FEND D3-RRID: Reverse Resolution IP Denylisting (Defensive Tactic - Isolate -> Reverse Resolution IP Denylisting) - **ID**: mitre-d3fend-d3-rrid-reverse-resolution-ip-denylisting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RRID (Reverse Resolution IP Denylisting) is a Isolate defensive technique. Blocking a reverse lookup based on the query's IP address value. This technique prevents a client from learni... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rrid-reverse-resolution-ip-denylisting.json #### MITRE D3FEND D3-RS: Restore Software (Defensive Tactic - Restore -> Restore Software) - **ID**: mitre-d3fend-d3-rs-restore-software - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RS (Restore Software) is a Restore defensive technique. Restoring software to a host. In the D3FEND model it restores the software. It counters ATT&CK techniques T1014, T1056.003, T107... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rs-restore-software.json #### MITRE D3FEND D3-RTA: RPC Traffic Analysis (Defensive Tactic - Detect -> RPC Traffic Analysis) - **ID**: mitre-d3fend-d3-rta-rpc-traffic-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RTA (RPC Traffic Analysis) is a Detect defensive technique. Monitoring the activity of remote procedure calls in communication traffic to establish standard protocol operations and pot... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rta-rpc-traffic-analysis.json #### MITRE D3FEND D3-RTSD: Remote Terminal Session Detection (Defensive Tactic - Detect -> Remote Terminal Session Detection) - **ID**: mitre-d3fend-d3-rtsd-remote-terminal-session-detection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RTSD (Remote Terminal Session Detection) is a Detect defensive technique. Detection of an unauthorized remote live terminal console session by examining network traffic to a network ho... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-rtsd-remote-terminal-session-detection.json #### MITRE D3FEND D3-RUAA: Restore User Account Access (Defensive Tactic - Restore -> Restore User Account Access) - **ID**: mitre-d3fend-d3-ruaa-restore-user-account-access - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-RUAA (Restore User Account Access) is a Restore defensive technique. Restoring a user account's access to resources. In the D3FEND model it restores the user account. It counters ATT&C... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ruaa-restore-user-account-access.json #### MITRE D3FEND D3-SAOR: Segment Address Offset Randomization (Defensive Tactic - Harden -> Segment Address Offset Randomization) - **ID**: mitre-d3fend-d3-saor-segment-address-offset-randomization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SAOR (Segment Address Offset Randomization) is a Harden defensive technique. Randomizing the base (start) address of one or more segments of memory during the initialization of a proce... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-saor-segment-address-offset-randomization.json #### MITRE D3FEND D3-SBV: Service Binary Verification (Defensive Tactic - Detect -> Service Binary Verification) - **ID**: mitre-d3fend-d3-sbv-service-binary-verification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SBV (Service Binary Verification) is a Detect defensive technique. Analyzing changes in service binary files by comparing to a source of truth. System service applications may originat... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sbv-service-binary-verification.json #### MITRE D3FEND D3-SCA: System Call Analysis (Defensive Tactic - Detect -> System Call Analysis) - **ID**: mitre-d3fend-d3-sca-system-call-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SCA (System Call Analysis) is a Detect defensive technique. Analyzing system calls to determine whether a process is exhibiting unauthorized behavior. System calls are APIs between a u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sca-system-call-analysis.json #### MITRE D3FEND D3-SCF: System Call Filtering (Defensive Tactic - Isolate -> System Call Filtering) - **ID**: mitre-d3fend-d3-scf-system-call-filtering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SCF (System Call Filtering) is a Isolate defensive technique. Controlling access to local computer system resources with kernel-level capabilities. System call filtering uses a mandato... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-scf-system-call-filtering.json #### MITRE D3FEND D3-SCH: Source Code Hardening (Defensive Tactic - Harden) - **ID**: mitre-d3fend-d3-sch-source-code-hardening - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SCH (Source Code Hardening) is a defensive technique that hardens source code to make it more difficult to exploit and less error-prone. Covers safer subroutines, pointer/memory valida... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sch-source-code-hardening.json #### MITRE D3FEND D3-SCP: System Configuration Permissions (Defensive Tactic - Harden -> System Configuration Permissions) - **ID**: mitre-d3fend-d3-scp-system-configuration-permissions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SCP (System Configuration Permissions) is a Harden defensive technique. Restricting system configuration modifications to a specific user or group of users. In the D3FEND model it rest... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-scp-system-configuration-permissions.json #### MITRE D3FEND D3-SDM: System Daemon Monitoring (Defensive Tactic - Detect -> System Daemon Monitoring) - **ID**: mitre-d3fend-d3-sdm-system-daemon-monitoring - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SDM (System Daemon Monitoring) is a Detect defensive technique. Tracking changes to the state or configuration of critical system level processes. Attackers may manipulate system setti... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sdm-system-daemon-monitoring.json #### MITRE D3FEND D3-SFA: System File Analysis (Defensive Tactic - Detect -> System File Analysis) - **ID**: mitre-d3fend-d3-sfa-system-file-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SFA (System File Analysis) is a Detect defensive technique. Monitoring system files such as authentication databases, configuration files, system logs, and system executables for modif... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sfa-system-file-analysis.json #### MITRE D3FEND D3-SFCV: Stack Frame Canary Validation (Defensive Tactic - Harden -> Stack Frame Canary Validation) - **ID**: mitre-d3fend-d3-sfcv-stack-frame-canary-validation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SFCV (Stack Frame Canary Validation) is a Harden defensive technique. Comparing a value stored in a stack frame with a known good value in order to prevent or detect a memory segment o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sfcv-stack-frame-canary-validation.json #### MITRE D3FEND D3-SFV: System Firmware Verification (Defensive Tactic - Detect -> System Firmware Verification) - **ID**: mitre-d3fend-d3-sfv-system-firmware-verification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SFV (System Firmware Verification) is a Detect defensive technique. Cryptographically verifying installed system firmware integrity. Cryptographic hash values are computed for system f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sfv-system-firmware-verification.json #### MITRE D3FEND D3-SI: Software Inventory (Defensive Tactic - Model -> Software Inventory) - **ID**: mitre-d3fend-d3-si-software-inventory - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SI (Software Inventory) is a Model defensive technique. In the D3FEND model it inventories Software. It is part of the Asset Inventory D3FEND parent category and counters ATT&CK techni... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-si-software-inventory.json #### MITRE D3FEND D3-SICA: System Init Config Analysis (Defensive Tactic - Detect -> System Init Config Analysis) - **ID**: mitre-d3fend-d3-sica-system-init-config-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SICA (System Init Config Analysis) is a Detect defensive technique. Analysis of any system process startup configuration. In the D3FEND model it analyzes the system init configuration.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sica-system-init-config-analysis.json #### MITRE D3FEND D3-SJA: Scheduled Job Analysis (Defensive Tactic - Detect -> Scheduled Job Analysis) - **ID**: mitre-d3fend-d3-sja-scheduled-job-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SJA (Scheduled Job Analysis) is a Detect defensive technique. Analysis of source files, processes, destination files, or destination servers associated with a scheduled job to detect u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sja-scheduled-job-analysis.json #### MITRE D3FEND D3-SMRA: Sender MTA Reputation Analysis (Defensive Tactic - Detect -> Sender MTA Reputation Analysis) - **ID**: mitre-d3fend-d3-smra-sender-mta-reputation-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SMRA (Sender MTA Reputation Analysis) is a Detect defensive technique. Characterizing the reputation of mail transfer agents (MTA) to determine the security risk in emails. The sender ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-smra-sender-mta-reputation-analysis.json #### MITRE D3FEND D3-SPP: Strong Password Policy (Defensive Tactic - Harden -> Credential Hardening) - **ID**: mitre-d3fend-d3-spp-strong-password-policy - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SPP (Strong Password Policy) is a defensive technique that enforces password complexity, length, breach-corpus screening, and reuse prevention to defeat brute-force, dictionary, and cr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-spp-strong-password-policy.json #### MITRE D3FEND D3-SRA: Sender Reputation Analysis (Defensive Tactic - Detect -> Sender Reputation Analysis) - **ID**: mitre-d3fend-d3-sra-sender-reputation-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SRA (Sender Reputation Analysis) is a Detect defensive technique. Ascertaining sender reputation based on information associated with a message (e.g. email/instant messaging). Sender t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sra-sender-reputation-analysis.json #### MITRE D3FEND D3-SSC: Shadow Stack Comparisons (Defensive Tactic - Detect -> Shadow Stack Comparisons) - **ID**: mitre-d3fend-d3-ssc-shadow-stack-comparisons - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SSC (Shadow Stack Comparisons) is a Detect defensive technique. Comparing a call stack in system memory with a shadow call stack maintained by the processor to determine unauthorized s... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ssc-shadow-stack-comparisons.json #### MITRE D3FEND D3-ST: Session Termination (Defensive Tactic - Evict -> Session Termination) - **ID**: mitre-d3fend-d3-st-session-termination - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-ST (Session Termination) is a Evict defensive technique. Forcefully end all active sessions associated with compromised accounts or devices. In the D3FEND model it deletes the session.... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-st-session-termination.json #### MITRE D3FEND D3-SU: Software Update (Defensive Tactic - Harden -> Software Update) - **ID**: mitre-d3fend-d3-su-software-update - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SU (Software Update) is a Harden defensive technique. Replacing old software on a computer system component. In the D3FEND model it updates the software. It counters ATT&CK techniques ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-su-software-update.json #### MITRE D3FEND D3-SYSM: System Mapping (Defensive Tactic - Model -> System Mapping) - **ID**: mitre-d3fend-d3-sysm-system-mapping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SYSM (System Mapping) is a defensive technique that enumerates and documents system architecture - components, interfaces, trust boundaries, software stacks, and configuration baseline... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sysm-system-mapping.json #### MITRE D3FEND D3-SYSVA: System Vulnerability Assessment (Defensive Tactic - Model -> System Vulnerability Assessment) - **ID**: mitre-d3fend-d3-sysva-system-vulnerability-assessment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-SYSVA (System Vulnerability Assessment) is a Model defensive technique. System vulnerability assessment relates all the vulnerabilities of a system's components in the context of their... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-sysva-system-vulnerability-assessment.json #### MITRE D3FEND D3-TB: Token Binding (Defensive Tactic - Harden -> Token Binding) - **ID**: mitre-d3fend-d3-tb-token-binding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-TB (Token Binding) is a Harden defensive technique. Token binding is a security mechanism used to enhance the protection of tokens, such as cookies or OAuth tokens, by binding them to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-tb-token-binding.json #### MITRE D3FEND D3-TBA: Token-based Authentication (Defensive Tactic - Harden -> Token-based Authentication) - **ID**: mitre-d3fend-d3-tba-token-based-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-TBA (Token-based Authentication) is a Harden defensive technique. In the D3FEND model it uses Access Token. It is part of the Agent Authentication D3FEND parent category and counters A... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-tba-token-based-authentication.json #### MITRE D3FEND D3-TL: Trusted Library (Defensive Tactic - Harden -> Trusted Library) - **ID**: mitre-d3fend-d3-tl-trusted-library - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-TL (Trusted Library) is a Harden defensive technique. A trusted library is a collection of pre-verified and secure code modules or components that are used within software applications... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-tl-trusted-library.json #### MITRE D3FEND D3-UA: URL Analysis (Defensive Tactic - Detect -> URL Analysis) - **ID**: mitre-d3fend-d3-ua-url-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-UA (URL Analysis) is a Detect defensive technique. Determining if a URL is benign or malicious by analyzing the URL or its components. URLs may contain components, for example: scheme ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ua-url-analysis.json #### MITRE D3FEND D3-UAP: User Account Permissions (Defensive Tactic - Isolate -> User Account Permissions) - **ID**: mitre-d3fend-d3-uap-user-account-permissions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-UAP (User Account Permissions) is a Isolate defensive technique. Restricting a user account's access to resources. In the D3FEND model it restricts the user account. It counters ATT&CK... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-uap-user-account-permissions.json #### MITRE D3FEND D3-UBA: User Behavior Analysis (Defensive Tactic - Detect) - **ID**: mitre-d3fend-d3-uba-user-behavior-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-UBA (User Behavior Analysis) is a defensive technique that uses patterns of human behavior and statistical analysis to detect meaningful anomalies indicating insider threats, targeted ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-uba-user-behavior-analysis.json #### MITRE D3FEND D3-UGLPA: User Geolocation Logon Pattern Analysis (Defensive Tactic - Detect -> User Geolocation Logon Pattern Analysis) - **ID**: mitre-d3fend-d3-uglpa-user-geolocation-logon-pattern-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-UGLPA (User Geolocation Logon Pattern Analysis) is a Detect defensive technique. Monitoring geolocation data of user logon attempts and comparing it to a baseline user behavior profile... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-uglpa-user-geolocation-logon-pattern-analysis.json #### MITRE D3FEND D3-ULA: Unlock Account (Defensive Tactic - Restore -> Unlock Account) - **ID**: mitre-d3fend-d3-ula-unlock-account - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-ULA (Unlock Account) is a Restore defensive technique. Restoring a user account's access to resources by unlocking a locked User Account. In the D3FEND model it restores the user accou... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ula-unlock-account.json #### MITRE D3FEND D3-URA: URL Reputation Analysis (Defensive Tactic - Detect -> URL Reputation Analysis) - **ID**: mitre-d3fend-d3-ura-url-reputation-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-URA (URL Reputation Analysis) is a Detect defensive technique. Analyzing the reputation of a URL. In the D3FEND model it analyzes the url. It counters ATT&CK techniques T1189, T1204.00... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-ura-url-reputation-analysis.json #### MITRE D3FEND D3-USICA: User Session Init Config Analysis (Defensive Tactic - Detect -> User Session Init Config Analysis) - **ID**: mitre-d3fend-d3-usica-user-session-init-config-analysis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-USICA (User Session Init Config Analysis) is a Detect defensive technique. Analyzing modifications to user session config files such as .bashrc or .bash_profile. In the D3FEND model it... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-usica-user-session-init-config-analysis.json #### MITRE D3FEND D3-VI: Variable Initialization (Defensive Tactic - Harden -> Variable Initialization) - **ID**: mitre-d3fend-d3-vi-variable-initialization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-VI (Variable Initialization) is a Harden defensive technique. Setting variables to a known value before use. Initializing variables upon declaration ensures that the variable has a kno... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-vi-variable-initialization.json #### MITRE D3FEND D3-VS: Video Surveillance (Defensive Tactic - Detect -> Video Surveillance) - **ID**: mitre-d3fend-d3-vs-video-surveillance - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-VS (Video Surveillance) is a Detect defensive technique. Monitoring of physical areas via camera video feeds to deter, detect, and investigate unauthorized access and related security ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-vs-video-surveillance.json #### MITRE D3FEND D3-WSAM: Web Session Access Mediation (Defensive Tactic - Isolate -> Web Session Access Mediation) - **ID**: mitre-d3fend-d3-wsam-web-session-access-mediation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE D3FEND D3-WSAM (Web Session Access Mediation) is a Isolate defensive technique. Web session access mediation secures user sessions in web applications by employing robust authentication and inte... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-d3fend-d3-wsam-web-session-access-mediation.json #### MITRE EMB3D TID-101: Power Consumption Analysis Side Channel (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-101-power-consumption-analysis-side-channel - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-101 (Power Consumption Analysis Side Channel) is an embedded-device threat in the Hardware category. Devices will oftentimes consume variable amounts of power depending on the operatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-101-power-consumption-analysis-side-channel.json #### MITRE EMB3D TID-102: Electromagnetic Analysis Side Channel (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-102-electromagnetic-analysis-side-channel - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-102 (Electromagnetic Analysis Side Channel) is an embedded-device threat in the Hardware category. Devices will oftentimes emit different electromagnetic signals during different opera... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-102-electromagnetic-analysis-side-channel.json #### MITRE EMB3D TID-103: Microarchitectural Side Channels (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-103-microarchitectural-side-channels - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-103 (Microarchitectural Side Channels) is an embedded-device threat in the Hardware category. Operating system memory safety models rely on processor hardware to enforce separation bet... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-103-microarchitectural-side-channels.json #### MITRE EMB3D TID-105: Hardware Fault Injection - Control Flow Modification (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-105-hardware-fault-injection-control-flow-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-105 (Hardware Fault Injection - Control Flow Modification) is an embedded-device threat in the Hardware category. A threat actor with physical access to a device may be able to manipul... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-105-hardware-fault-injection-control-flow-modification.json #### MITRE EMB3D TID-106: Data Bus Interception (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-106-data-bus-interception - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-106 (Data Bus Interception) is an embedded-device threat in the Hardware category. A threat actor could intercept data across a data bus used to connect a process to either volatile me... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-106-data-bus-interception.json #### MITRE EMB3D TID-107: Unauthorized Direct Memory Access (DMA) (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-107-unauthorized-direct-memory-access-dma - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-107 (Unauthorized Direct Memory Access (DMA)) is an embedded-device threat in the Hardware category. If separate discrete chips/peripherals that have access to the same physical memory... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-107-unauthorized-direct-memory-access-dma.json #### MITRE EMB3D TID-108: ROM/NVRAM Data Extraction or Modification (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-108-rom-nvram-data-extraction-or-modification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-108 (ROM/NVRAM Data Extraction or Modification) is an embedded-device threat in the Hardware category. Contents of non-volatile memory chips or non-fixed storage (e.g., SD cards, Compa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-108-rom-nvram-data-extraction-or-modification.json #### MITRE EMB3D TID-109: RAM Chip Contents Readout (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-109-ram-chip-contents-readout - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-109 (RAM Chip Contents Readout) is an embedded-device threat in the Hardware category. If a threat actor can physically access a RAM chip, they may be able to readout the contents of t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-109-ram-chip-contents-readout.json #### MITRE EMB3D TID-110: Hardware Fault Injection - Data Manipulation (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-110-hardware-fault-injection-data-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-110 (Hardware Fault Injection - Data Manipulation) is an embedded-device threat in the Hardware category. Certain software-executed attacks can introduce a fault to the physical hardwa... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-110-hardware-fault-injection-data-manipulation.json #### MITRE EMB3D TID-111: Untrusted External Storage (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-111-untrusted-external-storage - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-111 (Untrusted External Storage) is an embedded-device threat in the Hardware category. An untrusted storage peripheral (e.g., USB) could be connected to the device. If malicious code ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-111-untrusted-external-storage.json #### MITRE EMB3D TID-113: Unverified Peripheral Firmware Loaded (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-113-unverified-peripheral-firmware-loaded - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-113 (Unverified Peripheral Firmware Loaded) is an embedded-device threat in the Hardware category. A threat actor could manipulate the firmware associated with a device's peripheral or... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-113-unverified-peripheral-firmware-loaded.json #### MITRE EMB3D TID-114: Peripheral Data Bus Interception (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-114-peripheral-data-bus-interception - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-114 (Peripheral Data Bus Interception) is an embedded-device threat in the Hardware category. Messages and data passing between discrete sub-components and peripherals may be intercept... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-114-peripheral-data-bus-interception.json #### MITRE EMB3D TID-115: Firmware/Data Extraction via Hardware Interface (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-115-firmware-data-extraction-via-hardware-interface - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-115 (Firmware/Data Extraction via Hardware Interface) is an embedded-device threat in the Hardware category. Unprotected programming or debugging interfaces may be used to extract devi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-115-firmware-data-extraction-via-hardware-interface.json #### MITRE EMB3D TID-116: Latent Privileged Access Port (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-116-latent-privileged-access-port - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-116 (Latent Privileged Access Port) is an embedded-device threat in the Hardware category. If a device has a latent user access port, it may be possible for attackers to leverage physi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-116-latent-privileged-access-port.json #### MITRE EMB3D TID-118: Weak Peripheral Port Electrical Damage Protection (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-118-weak-peripheral-port-electrical-damage-protection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-118 (Weak Peripheral Port Electrical Damage Protection) is an embedded-device threat in the Hardware category. If a threat actor has physical access to a device, they may be able to ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-118-weak-peripheral-port-electrical-damage-protection.json #### MITRE EMB3D TID-119: Latent Hardware Debug Port Allows Memory/Code Manipulation (Embedded Device Threat - Hardware) - **ID**: mitre-emb3d-tid-119-latent-hardware-debug-port-allows-memory-code-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-119 (Latent Hardware Debug Port Allows Memory/Code Manipulation) is an embedded-device threat in the Hardware category. Hardware debugging ports (e.g., JTAG, SWD, etc.) oftentimes have... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-119-latent-hardware-debug-port-allows-memory-code-manipulation.json #### MITRE EMB3D TID-201: Inadequate Bootloader Protection and Verification (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-201-inadequate-bootloader-protection-and-verification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-201 (Inadequate Bootloader Protection and Verification) is an embedded-device threat in the System Software category. Some devices utilize bootloaders that are either stored in writabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-201-inadequate-bootloader-protection-and-verification.json #### MITRE EMB3D TID-202: Exploitable System Network Stack Component (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-202-exploitable-system-network-stack-component - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-202 (Exploitable System Network Stack Component) is an embedded-device threat in the System Software category. Devices may have vulnerabilities within software used to parse various ne... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-202-exploitable-system-network-stack-component.json #### MITRE EMB3D TID-203: Malicious OS Kernel Driver/Module Installable (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-203-malicious-os-kernel-driver-module-installable - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-203 (Malicious OS Kernel Driver/Module Installable) is an embedded-device threat in the System Software category. Threat actors may be able to install a driver or kernel module with ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-203-malicious-os-kernel-driver-module-installable.json #### MITRE EMB3D TID-204: Untrusted Programs Can Access Privileged OS Functions (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-204-untrusted-programs-can-access-privileged-os-functions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-204 (Untrusted Programs Can Access Privileged OS Functions) is an embedded-device threat in the System Software category. Without a correctly enforced operating system privilege model,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-204-untrusted-programs-can-access-privileged-os-functions.json #### MITRE EMB3D TID-205: Existing OS Tools Maliciously Used for Device Manipulation (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-205-existing-os-tools-maliciously-used-for-device-manipulation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-205 (Existing OS Tools Maliciously Used for Device Manipulation) is an embedded-device threat in the System Software category. If a threat actor has access to a valid OS account, they ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-205-existing-os-tools-maliciously-used-for-device-manipulation.json #### MITRE EMB3D TID-206: Memory Management Protections Subverted (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-206-memory-management-protections-subverted - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-206 (Memory Management Protections Subverted) is an embedded-device threat in the System Software category. While the use of memory permissions, such as non-executable stack and heap m... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-206-memory-management-protections-subverted.json #### MITRE EMB3D TID-207: Container Escape (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-207-container-escape - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-207 (Container Escape) is an embedded-device threat in the System Software category. Container environments, such as Docker and Kubernetes, share the same underlying kernel as the host... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-207-container-escape.json #### MITRE EMB3D TID-208: Virtual Machine Escape (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-208-virtual-machine-escape - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-208 (Virtual Machine Escape) is an embedded-device threat in the System Software category. Virtualization mechanisms allow multiple operating sytem instances to share the same underlyi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-208-virtual-machine-escape.json #### MITRE EMB3D TID-209: Host Can Manipulate Guest Virtual Machines (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-209-host-can-manipulate-guest-virtual-machines - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-209 (Host Can Manipulate Guest Virtual Machines) is an embedded-device threat in the System Software category. If a threat actor can access a hypervisor's host infrastructure, such as ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-209-host-can-manipulate-guest-virtual-machines.json #### MITRE EMB3D TID-210: Device Vulnerabilities Unpatchable (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-210-device-vulnerabilities-unpatchable - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-210 (Device Vulnerabilities Unpatchable) is an embedded-device threat in the System Software category. Threat actors will frequently target device components, like firmware, that have ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-210-device-vulnerabilities-unpatchable.json #### MITRE EMB3D TID-211: Device Allows Unauthenticated Firmware Installation (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-211-device-allows-unauthenticated-firmware-installation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-211 (Device Allows Unauthenticated Firmware Installation) is an embedded-device threat in the System Software category. If a device does not have a mechanism to authenticate firmware u... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-211-device-allows-unauthenticated-firmware-installation.json #### MITRE EMB3D TID-212: FW/SW Update Integrity Shared Secrets Extraction (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-212-fw-sw-update-integrity-shared-secrets-extraction - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-212 (FW/SW Update Integrity Shared Secrets Extraction) is an embedded-device threat in the System Software category. Some devices utilize a shared secret authentication scheme to verif... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-212-fw-sw-update-integrity-shared-secrets-extraction.json #### MITRE EMB3D TID-213: Faulty FW/SW Update Integrity Verification (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-213-faulty-fw-sw-update-integrity-verification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-213 (Faulty FW/SW Update Integrity Verification) is an embedded-device threat in the System Software category. To avoid the weaknesses of a shared secret verification (see TID-212), de... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-213-faulty-fw-sw-update-integrity-verification.json #### MITRE EMB3D TID-214: Secrets Extracted from Device Root of Trust (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-214-secrets-extracted-from-device-root-of-trust - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-214 (Secrets Extracted from Device Root of Trust) is an embedded-device threat in the System Software category. Some device have mutable or immutable secure Roots of Trust (ROTs) that ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-214-secrets-extracted-from-device-root-of-trust.json #### MITRE EMB3D TID-215: Unencrypted SW/FW Updates (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-215-unencrypted-sw-fw-updates - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-215 (Unencrypted SW/FW Updates) is an embedded-device threat in the System Software category. If the firmware/software update is not encrypted at rest in storage it can be reverse engi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-215-unencrypted-sw-fw-updates.json #### MITRE EMB3D TID-216: Firmware Update Rollbacks Allowed (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-216-firmware-update-rollbacks-allowed - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-216 (Firmware Update Rollbacks Allowed) is an embedded-device threat in the System Software category. Firmware updates will oftentimes include fixes to security vulnerabilities, meanin... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-216-firmware-update-rollbacks-allowed.json #### MITRE EMB3D TID-217: Remotely Initiated Updates Can Cause DoS (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-217-remotely-initiated-updates-can-cause-dos - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-217 (Remotely Initiated Updates Can Cause DoS) is an embedded-device threat in the System Software category. When firmware/software update process is initiated on a device, it may ente... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-217-remotely-initiated-updates-can-cause-dos.json #### MITRE EMB3D TID-218: Operating System Susceptible to Rootkit (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-218-operating-system-susceptible-to-rootkit - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-218 (Operating System Susceptible to Rootkit) is an embedded-device threat in the System Software category. A threat actor may be able to install a rootkit that can manipulate the oper... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-218-operating-system-susceptible-to-rootkit.json #### MITRE EMB3D TID-219: OS/Kernel Privilege Escalation (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-219-os-kernel-privilege-escalation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-219 (OS/Kernel Privilege Escalation) is an embedded-device threat in the System Software category. Operating Systems and Kernels frequently run at the highest levels of permissions. If... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-219-os-kernel-privilege-escalation.json #### MITRE EMB3D TID-220: Unpatchable Hardware Root of Trust (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-220-unpatchable-hardware-root-of-trust - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-220 (Unpatchable Hardware Root of Trust) is an embedded-device threat in the System Software category. Hardware roots of trust can be used to support many desirable device security fun... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-220-unpatchable-hardware-root-of-trust.json #### MITRE EMB3D TID-221: Authentication Bypass By Message Replay (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-221-authentication-bypass-by-message-replay - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-221 (Authentication Bypass By Message Replay) is an embedded-device threat in the System Software category. Some devices will allow for authentication over the network, but do not impl... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-221-authentication-bypass-by-message-replay.json #### MITRE EMB3D TID-222: Critical System Service May Be Disabled (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-222-critical-system-service-may-be-disabled - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-222 (Critical System Service May Be Disabled) is an embedded-device threat in the System Software category. Various devices and associated services are necessary to support communicati... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-222-critical-system-service-may-be-disabled.json #### MITRE EMB3D TID-223: System Susceptible to RAM Scraping (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-223-system-susceptible-to-ram-scraping - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-223 (System Susceptible to RAM Scraping) is an embedded-device threat in the System Software category. If the threat actor can obtain sufficient privileges on the devices, they may be ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-223-system-susceptible-to-ram-scraping.json #### MITRE EMB3D TID-224: Excessive Access via Software Diagnostic Features (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-224-excessive-access-via-software-diagnostic-features - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-224 (Excessive Access via Software Diagnostic Features) is an embedded-device threat in the System Software category. If a device has debugging capabilities (e.g., diagnostic tools, de... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-224-excessive-access-via-software-diagnostic-features.json #### MITRE EMB3D TID-225: Logs can be manipulated on the device (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-225-logs-can-be-manipulated-on-the-device - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-225 (Logs can be manipulated on the device) is an embedded-device threat in the System Software category. Threat actors may try to manipulate logs on the device to evade defenses, conf... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-225-logs-can-be-manipulated-on-the-device.json #### MITRE EMB3D TID-226: Device leaks security information in logs (Embedded Device Threat - System Software) - **ID**: mitre-emb3d-tid-226-device-leaks-security-information-in-logs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-226 (Device leaks security information in logs) is an embedded-device threat in the System Software category. Some devise will login information that can be exploited by attackers to f... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-226-device-leaks-security-information-in-logs.json #### MITRE EMB3D TID-301: Applications Binaries Modified (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-301-applications-binaries-modified - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-301 (Applications Binaries Modified) is an embedded-device threat in the Application Software category. A threat actor could modify application-level binaries or libraries on the devic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-301-applications-binaries-modified.json #### MITRE EMB3D TID-302: Install Untrusted Application (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-302-install-untrusted-application - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-302 (Install Untrusted Application) is an embedded-device threat in the Application Software category. A threat actor can install a malicious program to the device to manipulate its op... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-302-install-untrusted-application.json #### MITRE EMB3D TID-303: Excessive Trust in Offboard Management/IDE Software (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-303-excessive-trust-in-offboard-management-ide-software - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-303 (Excessive Trust in Offboard Management/IDE Software) is an embedded-device threat in the Application Software category. If device management is intended to be performed by a dedic... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-303-excessive-trust-in-offboard-management-ide-software.json #### MITRE EMB3D TID-304: Manipulate Runtime Environment (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-304-manipulate-runtime-environment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-304 (Manipulate Runtime Environment) is an embedded-device threat in the Application Software category. A threat actor can manipulate the runtime environments on a device to maintain p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-304-manipulate-runtime-environment.json #### MITRE EMB3D TID-305: Program Executes Dangerous System Calls (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-305-program-executes-dangerous-system-calls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-305 (Program Executes Dangerous System Calls) is an embedded-device threat in the Application Software category. If the device allows the downloading and execution of native binaries o... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-305-program-executes-dangerous-system-calls.json #### MITRE EMB3D TID-306: Sandboxed Environments Escaped (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-306-sandboxed-environments-escaped - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-306 (Sandboxed Environments Escaped) is an embedded-device threat in the Application Software category. While restricting the execution of external programs within a sandboxed executio... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-306-sandboxed-environments-escaped.json #### MITRE EMB3D TID-307: Device Code Representations Inconsistent (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-307-device-code-representations-inconsistent - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-307 (Device Code Representations Inconsistent) is an embedded-device threat in the Application Software category. Many devices that allow the execution of custom application programs, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-307-device-code-representations-inconsistent.json #### MITRE EMB3D TID-308: Code Overwritten to Avoid Detection (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-308-code-overwritten-to-avoid-detection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-308 (Code Overwritten to Avoid Detection) is an embedded-device threat in the Application Software category. The threat actor can overwrite a previously deployed/installed malicious pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-308-code-overwritten-to-avoid-detection.json #### MITRE EMB3D TID-309: Device Exploits Engineering Workstation (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-309-device-exploits-engineering-workstation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-309 (Device Exploits Engineering Workstation) is an embedded-device threat in the Application Software category. If the integrated development environment (IDE) or vendor software that... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-309-device-exploits-engineering-workstation.json #### MITRE EMB3D TID-310: Remotely Accessible Unauthenticated Services (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-310-remotely-accessible-unauthenticated-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-310 (Remotely Accessible Unauthenticated Services) is an embedded-device threat in the Application Software category. If an application does not authenticate all connections from a rem... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-310-remotely-accessible-unauthenticated-services.json #### MITRE EMB3D TID-311: Default Credentials (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-311-default-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-311 (Default Credentials) is an embedded-device threat in the Application Software category. Devices often include default credentials from the vendor. Default credentials can be chang... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-311-default-credentials.json #### MITRE EMB3D TID-312: Credential Change Mechanism Can Be Abused (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-312-credential-change-mechanism-can-be-abused - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-312 (Credential Change Mechanism Can Be Abused) is an embedded-device threat in the Application Software category. A device's credential change mechanisms can be abused to lock out use... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-312-credential-change-mechanism-can-be-abused.json #### MITRE EMB3D TID-313: Unauthenticated Session Changes Credential (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-313-unauthenticated-session-changes-credential - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-313 (Unauthenticated Session Changes Credential) is an embedded-device threat in the Application Software category. A threat actor can change or reset a password or credential without ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-313-unauthenticated-session-changes-credential.json #### MITRE EMB3D TID-314: Passwords Can Be Guessed Using Brute-Force Attempts (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-314-passwords-can-be-guessed-using-brute-force-attempts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-314 (Passwords Can Be Guessed Using Brute-Force Attempts) is an embedded-device threat in the Application Software category. A threat actor could gain unauthorized access by continuall... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-314-passwords-can-be-guessed-using-brute-force-attempts.json #### MITRE EMB3D TID-315: Password Retrieval Mechanism Abused (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-315-password-retrieval-mechanism-abused - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-315 (Password Retrieval Mechanism Abused) is an embedded-device threat in the Application Software category. If the device includes a password retrieval mechanism, a threat actor could... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-315-password-retrieval-mechanism-abused.json #### MITRE EMB3D TID-316: Incorrect Certificate Verification Allows Authentication Bypass (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-316-incorrect-certificate-verification-allows-authentication-bypass - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-316 (Incorrect Certificate Verification Allows Authentication Bypass) is an embedded-device threat in the Application Software category. Certificate-based authentication depends on the... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-316-incorrect-certificate-verification-allows-authentication-bypass.json #### MITRE EMB3D TID-317: Predictable Cryptographic Key (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-317-predictable-cryptographic-key - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-317 (Predictable Cryptographic Key) is an embedded-device threat in the Application Software category. If the device does not generate sufficiently random cryptographic primitives, a t... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-317-predictable-cryptographic-key.json #### MITRE EMB3D TID-318: Insecure Cryptographic Implementation (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-318-insecure-cryptographic-implementation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-318 (Insecure Cryptographic Implementation) is an embedded-device threat in the Application Software category. The device uses a cryptographic library or implementation that either int... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-318-insecure-cryptographic-implementation.json #### MITRE EMB3D TID-319: Cross Site Scripting (XSS) (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-319-cross-site-scripting-xss - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-319 (Cross Site Scripting (XSS)) is an embedded-device threat in the Application Software category. The device does not properly restrict, filter, or validate the content of web-based ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-319-cross-site-scripting-xss.json #### MITRE EMB3D TID-320: SQL Injection (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-320-sql-injection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-320 (SQL Injection) is an embedded-device threat in the Application Software category. The device does not property restrict, filter, or validate the content of web-based requests, esp... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-320-sql-injection.json #### MITRE EMB3D TID-321: HTTP Application Session Hijacking (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-321-http-application-session-hijacking - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-321 (HTTP Application Session Hijacking) is an embedded-device threat in the Application Software category. A threat actor can hijack an insufficiently protected HTTP session token to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-321-http-application-session-hijacking.json #### MITRE EMB3D TID-322: Cross Site Request Forgery (CSRF) (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-322-cross-site-request-forgery-csrf - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-322 (Cross Site Request Forgery (CSRF)) is an embedded-device threat in the Application Software category. If a threat actor can include malicious JavaScript within a page viewed by a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-322-cross-site-request-forgery-csrf.json #### MITRE EMB3D TID-323: Path Traversal (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-323-path-traversal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-323 (Path Traversal) is an embedded-device threat in the Application Software category. A threat actor can send requests for files or content that resides in different directories from... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-323-path-traversal.json #### MITRE EMB3D TID-324: HTTP Direct Object Reference (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-324-http-direct-object-reference - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-324 (HTTP Direct Object Reference) is an embedded-device threat in the Application Software category. If a device does not properly authenticate all HTTP requests, a threat actor can d... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-324-http-direct-object-reference.json #### MITRE EMB3D TID-325: HTTP Injection/Response Splitting (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-325-http-injection-response-splitting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-325 (HTTP Injection/Response Splitting) is an embedded-device threat in the Application Software category. The device uses HTTP headers that are unencrypted, not-validated, and/or unau... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-325-http-injection-response-splitting.json #### MITRE EMB3D TID-326: Insecure Deserialization (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-326-insecure-deserialization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-326 (Insecure Deserialization) is an embedded-device threat in the Application Software category. Many object-oriented languages use serialization to convert class objects into byte st... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-326-insecure-deserialization.json #### MITRE EMB3D TID-327: Out of Bounds Memory Access (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-327-out-of-bounds-memory-access - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-327 (Out of Bounds Memory Access) is an embedded-device threat in the Application Software category. If an application does not properly restrict data writes to allocated memory locati... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-327-out-of-bounds-memory-access.json #### MITRE EMB3D TID-328: Hardcoded Credentials (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-328-hardcoded-credentials - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-328 (Hardcoded Credentials) is an embedded-device threat in the Application Software category. Hardcoded credentials typically cannot be changed by end-users and are often undocumented... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-328-hardcoded-credentials.json #### MITRE EMB3D TID-329: Improper Password Storage (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-329-improper-password-storage - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-329 (Improper Password Storage) is an embedded-device threat in the Application Software category. If a device stores passwords in an unsafe manner (e.g., in a cleartext file with no r... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-329-improper-password-storage.json #### MITRE EMB3D TID-330: Cryptographic Timing Side-Channel (Embedded Device Threat - Application Software) - **ID**: mitre-emb3d-tid-330-cryptographic-timing-side-channel - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-330 (Cryptographic Timing Side-Channel) is an embedded-device threat in the Application Software category. Algorithms or code implementations of cryptographic processes will sometimes ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-330-cryptographic-timing-side-channel.json #### MITRE EMB3D TID-401: Undocumented Protocol Features (Embedded Device Threat - Networking) - **ID**: mitre-emb3d-tid-401-undocumented-protocol-features - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-401 (Undocumented Protocol Features) is an embedded-device threat in the Networking category. Some devices may support proprietary protocols, or may add proprietary functionality to op... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-401-undocumented-protocol-features.json #### MITRE EMB3D TID-404: Remotely Triggerable Deadlock/DoS (Embedded Device Threat - Networking) - **ID**: mitre-emb3d-tid-404-remotely-triggerable-deadlock-dos - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-404 (Remotely Triggerable Deadlock/DoS) is an embedded-device threat in the Networking category. Some devices will have operating modes that put the device in an inoperable state. Devi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-404-remotely-triggerable-deadlock-dos.json #### MITRE EMB3D TID-405: Network Stack Resource Exhaustion (Embedded Device Threat - Networking) - **ID**: mitre-emb3d-tid-405-network-stack-resource-exhaustion - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-405 (Network Stack Resource Exhaustion) is an embedded-device threat in the Networking category. Remote connections and communications can consume various device resources (e.g., netwo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-405-network-stack-resource-exhaustion.json #### MITRE EMB3D TID-406: Unauthorized Messages or Connections (Embedded Device Threat - Networking) - **ID**: mitre-emb3d-tid-406-unauthorized-messages-or-connections - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-406 (Unauthorized Messages or Connections) is an embedded-device threat in the Networking category. Some devices operate using protocols that have no capacity for network-level authent... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-406-unauthorized-messages-or-connections.json #### MITRE EMB3D TID-407: Missing Message Replay Protection (Embedded Device Threat - Networking) - **ID**: mitre-emb3d-tid-407-missing-message-replay-protection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-407 (Missing Message Replay Protection) is an embedded-device threat in the Networking category. Threat actors may be able to replay a message to a device to cause an unwanted function... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-407-missing-message-replay-protection.json #### MITRE EMB3D TID-408: Unencrypted Sensitive Data Communication (Embedded Device Threat - Networking) - **ID**: mitre-emb3d-tid-408-unencrypted-sensitive-data-communication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-408 (Unencrypted Sensitive Data Communication) is an embedded-device threat in the Networking category. Some devices do not adequately encrypt communications that includes operational ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-408-unencrypted-sensitive-data-communication.json #### MITRE EMB3D TID-410: Cryptographic Protocol Side Channel (Embedded Device Threat - Networking) - **ID**: mitre-emb3d-tid-410-cryptographic-protocol-side-channel - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-410 (Cryptographic Protocol Side Channel) is an embedded-device threat in the Networking category. While encrypting data can prevent a threat actor from directly obtaining the plaintex... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-410-cryptographic-protocol-side-channel.json #### MITRE EMB3D TID-411: Weak/Insecure Cryptographic Protocol (Embedded Device Threat - Networking) - **ID**: mitre-emb3d-tid-411-weak-insecure-cryptographic-protocol - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-411 (Weak/Insecure Cryptographic Protocol) is an embedded-device threat in the Networking category. The device utilizes a weak or insecure cryptographic protocol or algorithm that can ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-411-weak-insecure-cryptographic-protocol.json #### MITRE EMB3D TID-412: Network Routing Capability Abuse (Embedded Device Threat - Networking) - **ID**: mitre-emb3d-tid-412-network-routing-capability-abuse - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE EMB3D TID-412 (Network Routing Capability Abuse) is an embedded-device threat in the Networking category. Some devices will allow for the forwarding of packets to other connected devices (e.g., ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-emb3d-tid-412-network-routing-capability-abuse.json #### MITRE Engage Adversary Engagement Framework (Prepare, Operate, Understand; Expose, Affect, Elicit Goals; Successor to MITRE Shield) - **ID**: mitre-engage-adversary-engagement-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: MITRE Engage is the MITRE Corporation's framework for planning and discussing adversary engagement operations - the deception, denial, and direct-engagement techniques defenders use to expose, affect,... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-engage-adversary-engagement-framework.json #### Impair Defenses (MITRE T1562) - **ID**: mitre-t1562 - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: MITRE ATT&CK Technique T1562 (Impair Defenses) describes adversary behaviors aimed at disabling, tampering with, or reducing the effectiveness of security tools and controls - including antivirus, end... - **Discovery URL**: https://bidda.com/api/v1/nodes/mitre-t1562.json #### Mali Law No. 2013-015 on Personal Data Protection - **ID**: ml-pdp-law-2013 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Mali enacted Law No. 2013-015/P-RM of 21 May 2013 on the Protection of Personal Data, establishing a comprehensive framework for personal data processing. The law is administered by the Commission de ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ml-pdp-law-2013.json #### Myanmar Cybersecurity Law 2021 - Personal Data Protection Provisions - **ID**: mm-cybersec-law-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Myanmar enacted the Cybersecurity Law 2021, which includes provisions governing personal data protection in the digital environment alongside cybersecurity obligations. The law applies to digital busi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mm-cybersec-law-2021.json #### Mongolia Law on Personal Data Protection - CRC Compliance Framework - **ID**: mn-pdp-law-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Mongolia's Law on Personal Data Protection (2021) establishes a comprehensive framework for the collection, processing, and cross-border transfer of personal data, with mandatory breach notification a... - **Discovery URL**: https://bidda.com/api/v1/nodes/mn-pdp-law-2021.json #### Northern Mariana Islands - Federal and Commonwealth Privacy Rights Framework - **ID**: mp-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Commonwealth of the Northern Mariana Islands (CNMI) is a self-governing Commonwealth in political union with the United States, located in the western Pacific Ocean. The CNMI was established under... - **Discovery URL**: https://bidda.com/api/v1/nodes/mp-framework.json #### Mauritania Law No. 2017-020 on Personal Data Protection - **ID**: mr-pdp-law-2017 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Mauritania enacted Law No. 2017-020 of 4 September 2017 on the Protection of Personal Data, creating a comprehensive framework administered by the Commission Nationale de Protection des Données à Cara... - **Discovery URL**: https://bidda.com/api/v1/nodes/mr-pdp-law-2017.json #### Montserrat Data Protection Act 2019 - **ID**: ms-dpa-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Montserrat, a British Overseas Territory, enacted the Data Protection Act 2019 aligned with UK and GDPR data protection standards. Administered by the Information Commissioner for Montserrat, the Act ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ms-dpa-2019.json #### Malta Data Protection Act Chapter 586 (2018) - GDPR National Implementation - **ID**: mt-dpa-586-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Malta's Data Protection Act (DPA), Chapter 586 of the Laws of Malta, enacted by Act No. XVII of 2018 and published in the Government Gazette of Malta, is Malta's primary national legislation supplemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/mt-dpa-586-2018.json #### Malawi Data Protection Act 2021 - MACRA Compliance Framework - **ID**: mw-dpa-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Malawi Data Protection Act 2021 establishes a comprehensive framework for personal data processing including consent obligations, data subject rights, mandatory registration, and cross-border transfer... - **Discovery URL**: https://bidda.com/api/v1/nodes/mw-dpa-2021.json #### Malawi Electronic Transactions and Cybersecurity Act 2016 - **ID**: mw-electronic-transactions-cybersecurity-act-2016 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Malawi's Electronic Transactions and Cybersecurity Act 2016, enacted to regulate electronic commerce and cybercrime, establishes the Malawi Communications Regulatory Authority as the oversight body fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mw-electronic-transactions-cybersecurity-act-2016.json #### Malaysia Cybersecurity Act 2024 (Act 854) - **ID**: my-cybersecurity-act-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Malaysia's Cybersecurity Act 2024 (Act 854), gazetted in June 2024, designates National Critical Information Infrastructure in eleven sectors whose operators must implement cybersecurity measures pres... - **Discovery URL**: https://bidda.com/api/v1/nodes/my-cybersecurity-act-2024.json #### Mozambique Personal Data Protection Law - INTIC Compliance Framework - **ID**: mz-dp-law-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Mozambique Law No. 8/2021 on Personal Data Protection (April 2021) establishes data subject rights, mandatory data controller registration, consent-based processing obligations, and cross-border trans... - **Discovery URL**: https://bidda.com/api/v1/nodes/mz-dp-law-2021.json #### Namibia Personal Information Protection Act 2022 - **ID**: na-pipa-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Namibia enacted the Personal Information Protection Act 2022 (Act No. 14 of 2022), establishing a comprehensive framework for the lawful processing of personal information. The Act creates a Data Prot... - **Discovery URL**: https://bidda.com/api/v1/nodes/na-pipa-2022.json #### New Caledonia - Loi Informatique et Libertés (French Data Protection Law) - **ID**: nc-lil-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: New Caledonia is a French special collectivity with a unique constitutional status established by the Noumea Accord and the French Organic Law of 19 March 1999. As an EU Overseas Country and Territory... - **Discovery URL**: https://bidda.com/api/v1/nodes/nc-lil-2018.json #### Niger Ordinance No. 2017-015 on Personal Data Protection - **ID**: ne-pdp-ord-2017 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Niger enacted Ordinance No. 2017-015 of 2 March 2017 on the Protection of Personal Data, establishing a framework for the lawful collection, storage, and processing of personal data. The law is admini... - **Discovery URL**: https://bidda.com/api/v1/nodes/ne-pdp-ord-2017.json #### Norfolk Island - Australian Privacy Act and OAIC Supervisory Framework - **ID**: nf-privacy-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Norfolk Island is an Australian external territory located in the South Pacific Ocean between New Zealand and New Caledonia. Norfolk Island has a resident population of approximately 2,000 people, inc... - **Discovery URL**: https://bidda.com/api/v1/nodes/nf-privacy-framework.json #### Nigeria Cybercrimes (Prohibition, Prevention, Etc.) Act 2015 - **ID**: ng-cybercrimes-act-2015 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Nigeria's Cybercrimes (Prohibition, Prevention, Etc.) Act 2015, assented to May 15, 2015, establishes a comprehensive legal framework for cybercrime prohibition and prosecution in Nigeria, designates ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ng-cybercrimes-act-2015.json #### Nigeria Data Protection Act 2023 - **ID**: ng-dpa-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Nigeria's Data Protection Act 2023 replaces the NDPR 2019, establishes the Nigeria Data Protection Commission (NDPC) as the sole national supervisory authority, introduces GDPR-aligned data subject ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/ng-dpa-2023.json #### Nicaragua Personal Data Protection Law 787 (2012) - **ID**: ni-pdp-law-2012 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Nicaragua enacted Law 787, the Personal Data Protection Law (Ley de Protección de Datos Personales), in 2012, establishing one of the earliest comprehensive data protection frameworks in Central Ameri... - **Discovery URL**: https://bidda.com/api/v1/nodes/ni-pdp-law-2012.json #### Directive (EU) 2022/2555 (NIS2 Directive) Article 10: Computer security incident response teams (CSIRTs) - **ID**: nis2-directive-article-10-csirt-designation-and-requirements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Member States must designate or establish one or more Computer Security Incident Response Teams (CSIRTs) responsible for incident handling, covering specific sectors and complying with defined require... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-10-csirt-designation-and-requirements.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union - Article 11: Requirements, technical capabilities and tasks of CSIRTs - **ID**: nis2-directive-article-11-tasks-csirts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates that Computer Security Incident Response Teams (CSIRTs) must comply with a set of specified requirements concerning their tasks and technical capabilities to ensure effective inc... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-11-tasks-csirts.json #### Directive (EU) 2022/2555 (NIS2 Directive) Article 12: Coordinated vulnerability disclosure and a European vulnerability database - **ID**: nis2-directive-article-12-coordinated-vulnerability-disclosure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires each Member State to designate a national CSIRT as a coordinator to act as a trusted intermediary, facilitating interaction between vulnerability reporters and manufacturers upon... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-12-coordinated-vulnerability-disclosure.json #### Directive (EU) 2022/2555, Article 13: Cooperation at national level - **ID**: nis2-directive-article-13-european-cyber-crises-liaison-network - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Member States must ensure that where their competent authorities, single point of contact, and CSIRTs are separate entities, they cooperate with each other to fulfill the obligations of this Directive... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-13-european-cyber-crises-liaison-network.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union - Article 14 Cooperation Group - **ID**: nis2-directive-article-14-cybersecurity-crisis-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes a Cooperation Group to support and facilitate strategic cooperation and the exchange of information among Member States to strengthen trust and confidence in cybersecurity. - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-14-cybersecurity-crisis-management.json #### Directive (EU) 2022/2555 (NIS2 Directive) Article 15: CSIRTs network - **ID**: nis2-directive-article-15-cooperation-group-objectives-tasks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes a network of national CSIRTs to contribute to confidence and trust and to promote swift and effective operational cooperation among Member States. - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-15-cooperation-group-objectives-tasks.json #### Directive (EU) 2022/2555 (NIS 2 Directive) - Article 16: Union level coordinated vulnerability disclosure and a European vulnerability database - **ID**: nis2-directive-article-16-registration-obligations-essential-important-entities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires Member States to designate a national CSIRT to coordinate vulnerability disclosure and mandates ENISA to establish and maintain a European vulnerability database. - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-16-registration-obligations-essential-important-entities.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS 2 Directive) - Article 17 General provisions concerning the tasks of the competent authorities - **ID**: nis2-directive-article-17-liability-management-bodies - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires Member States to ensure their national competent authorities have the necessary powers, means, and resources to effectively carry out their tasks under the NIS 2 Directive and to... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-17-liability-management-bodies.json #### DIRECTIVE (EU) 2022/2555 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 14 December 2022 on measures for a high common level of cybersecurity across the Union - Article 18 - **ID**: nis2-directive-article-18-cybersecurity-risk-management-measures - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires entities to implement adapted and coordinated responses to address the expanding cyber threat landscape and the increasing magnitude, sophistication, and impact of incidents. - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-18-cybersecurity-risk-management-measures.json #### DIRECTIVE (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS 2 Directive) - Article 19 Coordinated Vulnerability Disclosure - **ID**: nis2-directive-article-19-vulnerability-disclosure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires Member States to designate national CSIRTs to facilitate coordinated vulnerability disclosure and requires entities to establish and implement a vulnerability disclosure policy. - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-19-vulnerability-disclosure.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS2 Directive) - Article 2: Scope - **ID**: nis2-directive-article-2-scope-essential-important-entities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Organizations must determine if they are a public or private entity listed in Annex I or II, meet or exceed the size of a medium-sized enterprise, and operate within the Union to ascertain if this Dir... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-2-scope-essential-important-entities.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS 2 Directive) - Article 20 - **ID**: nis2-directive-article-20-governance-management-body-accountability - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Management bodies of essential and important entities must approve and oversee cybersecurity risk-management measures, follow training, and can be held liable for infringements. - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-20-governance-management-body-accountability.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS 2 Directive) - Article 21: Cybersecurity risk-management measures - **ID**: nis2-directive-article-21-cybersecurity-risk-management-measures-detail - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Essential and important entities must implement a baseline of at least ten specific technical, operational, and organizational measures to manage cybersecurity risks to their network and information s... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-21-cybersecurity-risk-management-measures-detail.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union - Article 23: Reporting obligations - **ID**: nis2-directive-article-23-incident-reporting-obligations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Essential and important entities must notify their competent authority or CSIRT of any significant incident through a multi-stage process, including an early warning within 24 hours and a full notific... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-23-incident-reporting-obligations.json #### Directive (EU) 2022/2555 Article 24: Use of European cybersecurity certification schemes and national cybersecurity certification schemes - **ID**: nis2-directive-article-24-use-of-cybersecurity-certification-schemes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Organizations may be required by Member States or future EU delegated acts to use specific ICT products, services, and processes certified under European cybersecurity certification schemes to demonst... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-24-use-of-cybersecurity-certification-schemes.json #### Directive (EU) 2022/2555 (NIS 2 Directive) Article 25: Use of European and international standards and technical specifications - **ID**: nis2-directive-article-25-use-european-harmonised-standards-specifications - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Organizations should align their cybersecurity risk-management measures with European and international standards, as Member States are required to encourage their use for a convergent implementation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-25-use-european-harmonised-standards-specifications.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union - Article 26: Jurisdiction and registration - **ID**: nis2-directive-article-26-jurisdiction-and-registration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article specifies that entities are subject to the jurisdiction of the Member State where they have their main establishment and outlines requirements for submitting registration information to t... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-26-jurisdiction-and-registration.json #### Directive (EU) 2022/2555 Article 27: Registry of entities - **ID**: nis2-directive-article-27-register-of-essential-and-important-entities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: ENISA is required to establish and maintain a registry of specific digital infrastructure and service entities, which must submit their identification and contact information by a set deadline. - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-27-register-of-essential-and-important-entities.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union - Article 28: EU-level coordinated risk assessments of critical supply chains - **ID**: nis2-directive-article-28-eu-coordinated-supply-chain-risk-assessment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article empowers the EU Cooperation Group, Commission, and ENISA to conduct coordinated security risk assessments of critical ICT supply chains and issue non-binding recommendations for mitigatin... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-28-eu-coordinated-supply-chain-risk-assessment.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS 2 Directive) - Article 29: Voluntary cybersecurity information-sharing arrangements - **ID**: nis2-directive-article-29-information-sharing-arrangements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article requires Member States to encourage and facilitate the establishment of voluntary cybersecurity information-sharing arrangements among entities to share threat intelligence and other rele... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-29-information-sharing-arrangements.json #### Directive (EU) 2022/2555 (NIS2 Directive) - Article 3: Scope of Application - **ID**: nis2-directive-article-3-definitions-network-information-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes that entities listed in Annex I or II are subject to this Directive regardless of their size, and clarifies that a specific provision from a related Recommendation is not appl... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-3-definitions-network-information-systems.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS 2 Directive) - Article 30: General conditions for imposing administrative fines - **ID**: nis2-directive-article-30-administrative-fines-essential-entities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the conditions, criteria, and maximum amounts for administrative fines that can be imposed on essential entities for infringements of cybersecurity risk-management and reporti... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-30-administrative-fines-essential-entities.json #### Directive (EU) 2022/2555 Article 31: General conditions for imposing administrative fines on essential and important entities - **ID**: nis2-directive-article-31-administrative-fines-important-entities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Important entities must comply with cybersecurity risk-management measures (Article 21) and reporting obligations (Article 23) to avoid administrative fines of up to at least EUR 7,000,000 or 1.4% of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-31-administrative-fines-important-entities.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS 2 Directive) - Article 32: Supervisory and enforcement measures in relation to essential entities - **ID**: nis2-directive-article-32-supervisory-measures-essential-entities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article grants competent authorities specific supervisory and enforcement powers over essential entities, including the ability to conduct inspections, issue binding instructions, and impose admi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-32-supervisory-measures-essential-entities.json #### Directive (EU) 2022/2555 Article 33: Supervisory and enforcement measures in relation to important entities - **ID**: nis2-directive-article-33-supervisory-measures-important-entities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article grants competent authorities a range of supervisory and enforcement powers over important entities to ensure compliance with cybersecurity risk-management and reporting obligations. - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-33-supervisory-measures-important-entities.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union, Article 34: Administrative fines - **ID**: nis2-directive-article-34-administrative-fines - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates that Member States establish rules for effective, proportionate, and dissuasive administrative fines for entities that infringe upon the cybersecurity risk-management and reporti... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-34-administrative-fines.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS 2 Directive) - Article 35: Infringements entailing an administrative fine - **ID**: nis2-directive-article-35-exercise-of-supervision-essential-entities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the conditions and maximum amounts for administrative fines that competent authorities can impose on essential and important entities for infringements of cybersecurity risk-m... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-35-exercise-of-supervision-essential-entities.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union - Article 36: Tasks of the CSIRTs and Cooperation - **ID**: nis2-directive-article-36-tasks-csirts-cooperation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article mandates that national Computer Security Incident Response Teams (CSIRTs) perform specific tasks including monitoring threats, issuing warnings, responding to incidents, and cooperating w... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-36-tasks-csirts-cooperation.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union - Article 37: EU-CyCLONe - establishment, composition and tasks - **ID**: nis2-directive-article-37-eu-cyber-crises-liaison-network - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the European Cyber Crises Liaison Organisation Network (EU-CyCLONe) to support the coordinated management of large-scale cybersecurity incidents and crises at an operational l... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-37-eu-cyber-crises-liaison-network.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS 2 Directive) - Article 38: CSIRTs network - **ID**: nis2-directive-article-38-csirt-network - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article outlines the composition, tasks, and operational procedures for the network of national CSIRTs, mandating their cooperation and information exchange to support the implementation of the N... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-38-csirt-network.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union - Article 4: Sector-specific Union legal acts - **ID**: nis2-directive-article-4-minimum-harmonisation-existing-legislation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes that if an entity is already subject to sector-specific Union legislation with cybersecurity requirements equivalent to this Directive, the provisions of this Directive will n... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-4-minimum-harmonisation-existing-legislation.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union - Article 40 - **ID**: nis2-directive-article-40-peer-review-mechanism - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes a peer-review system for Member States to assess the effectiveness of their national cybersecurity strategies and the implementation of this Directive, fostering consistent an... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-40-peer-review-mechanism.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS2 Directive) - Article 5: Minimum harmonisation - **ID**: nis2-directive-article-5-minimum-harmonisation-higher-national-measures - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Organizations must identify and comply with any national cybersecurity provisions adopted or maintained by Member States that ensure a higher level of cybersecurity than this Directive, provided they ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-5-minimum-harmonisation-higher-national-measures.json #### Directive (EU) 2022/2555 (NIS 2 Directive) Article 6: Definitions - Network and Information System - **ID**: nis2-directive-article-6-definitions-network-information-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article defines 'network and information system' as the foundational scope for applying the Directive's cybersecurity obligations, encompassing electronic communications networks, data processing... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-6-definitions-network-information-systems.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union (NIS2 Directive) - Article 7: National cybersecurity strategy - **ID**: nis2-directive-article-7-national-cybersecurity-strategy-requirements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Member States must adopt a national cybersecurity strategy that defines strategic objectives, required resources, and policy measures to achieve and maintain a high level of cybersecurity. - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-7-national-cybersecurity-strategy-requirements.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union - Article 8: Competent authorities and single points of contact - **ID**: nis2-directive-article-8-competent-authorities-national-single-points-contact - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Member States must designate or establish one or more competent authorities responsible for cybersecurity and related supervisory tasks. - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-8-competent-authorities-national-single-points-contact.json #### Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union - Article 9: National cyber crisis management frameworks - **ID**: nis2-directive-article-9-csirt-technical-requirements-tasks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Member States must designate or establish one or more competent authorities for managing large-scale cybersecurity incidents and crises, ensuring they have adequate resources and cohere with national ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-article-9-csirt-technical-requirements-tasks.json #### NIS2 Directive Enterprise Compliance Standard v1 - **ID**: nis2-directive-compliance-2026-1 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The NIS2 Directive establishes a comprehensive framework for enhancing cybersecurity across the EU. It mandates that essential and important entities adopt risk management practices, report incidents,... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-compliance-2026-1.json #### NIS2 Directive Enterprise Compliance Standard v16 - **ID**: nis2-directive-compliance-2026-16 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The NIS2 Directive establishes a comprehensive framework for enhancing cybersecurity across the EU. It mandates that essential and important entities adopt risk management practices, report incidents,... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-directive-compliance-2026-16.json #### NIS2 Directive: Article 23 - Reporting Obligations for Significant Incidents - **ID**: nis2-incident-reporting-article-23 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Under Article 23 of the NIS2 Directive, essential and important entities must notify their competent authority or CSIRT of any significant incident without undue delay, following a multi-stage process... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-incident-reporting-article-23.json #### Cybersecurity Risk-Management Measures (Article 21, NIS2 Directive 2022/2555) - **ID**: nis2-security-measures-article-21 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Under Article 21 of the NIS2 Directive, essential and important entities must implement appropriate and proportionate technical, operational, and organisational measures to manage cybersecurity risks ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-security-measures-article-21.json #### NIS2 Directive: Cybersecurity in Supply Chains and Supplier Relationships (Article 22) - **ID**: nis2-supply-chain-security-article-22 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Under Article 22 of the NIS2 Directive, Member States must ensure that essential and important entities manage cybersecurity risks within their supply chains by assessing and considering the cybersecu... - **Discovery URL**: https://bidda.com/api/v1/nodes/nis2-supply-chain-security-article-22.json #### Audit Event Logging (NIST 800-53) - **ID**: nist-800-53-au2 - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: NIST SP 800-53 Rev 5 Control AU-2 (Event Logging) requires organizations to identify the types of events that the system is capable of logging in support of the audit function, coordinate the event lo... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-800-53-au2.json #### Contingency Planning (NIST 800-53) - **ID**: nist-800-53-cp2 - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: NIST SP 800-53 Rev 5 Control CP-2 (Contingency Plan) requires organizations to develop a contingency plan for the information system that identifies essential missions and business functions, provides... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-800-53-cp2.json #### Ident & Auth (NIST 800-53) - **ID**: nist-800-53-ia2 - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: NIST SP 800-53 Rev 5 Control IA-2 (Identification and Authentication - Organizational Users) requires information systems to uniquely identify and authenticate organizational users (including processe... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-800-53-ia2.json #### Boundary Protection (NIST 800-53) - **ID**: nist-800-53-sc7 - **Category**: Cybersecurity - **Version**: 1.1.1 - **BLUF**: NIST SP 800-53 Rev 5 Control SC-7 (Boundary Protection) requires organizations to monitor and control communications at the external boundary of the system and at key internal boundaries, implement su... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-800-53-sc7.json #### NIST AI RMF: Governance & Accountability (Govern 1.1) - **ID**: nist-ai-rmf-govern - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: The NIST AI Risk Management Framework (RMF) 'Govern' function establishes the institutional foundation for safe AI. Sub-category Govern 1.1 specifically mandates that legal and regulatory AI requireme... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ai-rmf-govern.json #### Contingency Planning Guide for Federal Information Systems - **ID**: nist-contingency-planning-federal-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication 800-34, Rev. 1, provides instructions, recommendations, and considerations for federal information system contingency planning. Contingency planning refers to interim measures... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-contingency-planning-federal-systems.json #### NIST CSF 2.0 Category DE.AE: Adverse Event Analysis - **ID**: nist-csf-2-0-category-de-ae-adverse-event-analysis - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category DE.AE Adverse Event Analysis, in the DETECT (DE) function. Category statement from NIST CSF 2.0 Core: Anomalies, indicators of compromise, and other pot... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-de-ae-adverse-event-analysis.json #### NIST CSF 2.0 Category DE.CM: Continuous Monitoring - **ID**: nist-csf-2-0-category-de-cm-continuous-monitoring - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category DE.CM Continuous Monitoring, in the DETECT (DE) function. Category statement from NIST CSF 2.0 Core: Assets are monitored to find anomalies, indicators ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-de-cm-continuous-monitoring.json #### NIST CSF 2.0 Category GV.OC: Organizational Context - **ID**: nist-csf-2-0-category-gv-oc-organizational-context - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category GV.OC Organizational Context, in the GOVERN (GV) function. Category statement from NIST CSF 2.0 Core: The circumstances - mission, stakeholder expectati... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-gv-oc-organizational-context.json #### NIST CSF 2.0 Category GV.OV: Oversight - **ID**: nist-csf-2-0-category-gv-ov-oversight - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category GV.OV Oversight, in the GOVERN (GV) function. Category statement from NIST CSF 2.0 Core: Results of organization-wide cybersecurity risk management acti... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-gv-ov-oversight.json #### NIST CSF 2.0 Category GV.PO: Policy - **ID**: nist-csf-2-0-category-gv-po-policy - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category GV.PO Policy, in the GOVERN (GV) function. Category statement from NIST CSF 2.0 Core: Organizational cybersecurity policy is established, communicated, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-gv-po-policy.json #### NIST CSF 2.0 Category GV.RM: Risk Management Strategy - **ID**: nist-csf-2-0-category-gv-rm-risk-management-strategy - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category GV.RM Risk Management Strategy, in the GOVERN (GV) function. Category statement from NIST CSF 2.0 Core: The organization's priorities, constraints, risk... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-gv-rm-risk-management-strategy.json #### NIST CSF 2.0 Category GV.RR: Roles, Responsibilities, and Authorities - **ID**: nist-csf-2-0-category-gv-rr-roles-responsibilities-and-authorities - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category GV.RR Roles, Responsibilities, and Authorities, in the GOVERN (GV) function. Category statement from NIST CSF 2.0 Core: Cybersecurity roles, responsibil... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-gv-rr-roles-responsibilities-and-authorities.json #### NIST CSF 2.0 Category GV.SC: Cybersecurity Supply Chain Risk Management - **ID**: nist-csf-2-0-category-gv-sc-cybersecurity-supply-chain-risk-management - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category GV.SC Cybersecurity Supply Chain Risk Management, in the GOVERN (GV) function. Category statement from NIST CSF 2.0 Core: Cyber supply chain risk manage... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-gv-sc-cybersecurity-supply-chain-risk-management.json #### NIST CSF 2.0 Category ID.AM: Asset Management - **ID**: nist-csf-2-0-category-id-am-asset-management - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category ID.AM Asset Management, in the IDENTIFY (ID) function. Category statement from NIST CSF 2.0 Core: Assets (e.g., data, hardware, software, systems, facil... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-id-am-asset-management.json #### NIST CSF 2.0 Category ID.IM: Improvement - **ID**: nist-csf-2-0-category-id-im-improvement - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category ID.IM Improvement, in the IDENTIFY (ID) function. Category statement from NIST CSF 2.0 Core: Improvements to organizational cybersecurity risk managemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-id-im-improvement.json #### NIST CSF 2.0 Category ID.RA: Risk Assessment - **ID**: nist-csf-2-0-category-id-ra-risk-assessment - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category ID.RA Risk Assessment, in the IDENTIFY (ID) function. Category statement from NIST CSF 2.0 Core: The cybersecurity risk to the organization, assets, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-id-ra-risk-assessment.json #### NIST CSF 2.0 Category PR.AA: Identity Management, Authentication, and Access Control - **ID**: nist-csf-2-0-category-pr-aa-identity-management-authentication-and-access-control - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category PR.AA Identity Management, Authentication, and Access Control, in the PROTECT (PR) function. Category statement from NIST CSF 2.0 Core: Access to physic... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-pr-aa-identity-management-authentication-and-access-control.json #### NIST CSF 2.0 Category PR.AT: Awareness and Training - **ID**: nist-csf-2-0-category-pr-at-awareness-and-training - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category PR.AT Awareness and Training, in the PROTECT (PR) function. Category statement from NIST CSF 2.0 Core: The organization's personnel are provided with cy... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-pr-at-awareness-and-training.json #### NIST CSF 2.0 Category PR.DS: Data Security - **ID**: nist-csf-2-0-category-pr-ds-data-security - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category PR.DS Data Security, in the PROTECT (PR) function. Category statement from NIST CSF 2.0 Core: Data are managed consistent with the organization's risk s... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-pr-ds-data-security.json #### NIST CSF 2.0 Category PR.IR: Technology Infrastructure Resilience - **ID**: nist-csf-2-0-category-pr-ir-technology-infrastructure-resilience - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category PR.IR Technology Infrastructure Resilience, in the PROTECT (PR) function. Category statement from NIST CSF 2.0 Core: Security architectures are managed ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-pr-ir-technology-infrastructure-resilience.json #### NIST CSF 2.0 Category PR.PS: Platform Security - **ID**: nist-csf-2-0-category-pr-ps-platform-security - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category PR.PS Platform Security, in the PROTECT (PR) function. Category statement from NIST CSF 2.0 Core: The hardware, software (e.g., firmware, operating syst... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-pr-ps-platform-security.json #### NIST CSF 2.0 Category RC.CO: Incident Recovery Communication - **ID**: nist-csf-2-0-category-rc-co-incident-recovery-communication - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category RC.CO Incident Recovery Communication, in the RECOVER (RC) function. Category statement from NIST CSF 2.0 Core: Restoration activities are coordinated w... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-rc-co-incident-recovery-communication.json #### NIST CSF 2.0 Category RC.RP: Incident Recovery Plan Execution - **ID**: nist-csf-2-0-category-rc-rp-incident-recovery-plan-execution - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category RC.RP Incident Recovery Plan Execution, in the RECOVER (RC) function. Category statement from NIST CSF 2.0 Core: Restoration activities are performed to... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-rc-rp-incident-recovery-plan-execution.json #### NIST CSF 2.0 Category RS.AN: Incident Analysis - **ID**: nist-csf-2-0-category-rs-an-incident-analysis - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category RS.AN Incident Analysis, in the RESPOND (RS) function. Category statement from NIST CSF 2.0 Core: Investigations are conducted to ensure effective respo... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-rs-an-incident-analysis.json #### NIST CSF 2.0 Category RS.CO: Incident Response Reporting and Communication - **ID**: nist-csf-2-0-category-rs-co-incident-response-reporting-and-communication - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category RS.CO Incident Response Reporting and Communication, in the RESPOND (RS) function. Category statement from NIST CSF 2.0 Core: Response activities are co... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-rs-co-incident-response-reporting-and-communication.json #### NIST CSF 2.0 Category RS.MA: Incident Management - **ID**: nist-csf-2-0-category-rs-ma-incident-management - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category RS.MA Incident Management, in the RESPOND (RS) function. Category statement from NIST CSF 2.0 Core: Responses to detected cybersecurity incidents are ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-rs-ma-incident-management.json #### NIST CSF 2.0 Category RS.MI: Incident Mitigation - **ID**: nist-csf-2-0-category-rs-mi-incident-mitigation - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Category RS.MI Incident Mitigation, in the RESPOND (RS) function. Category statement from NIST CSF 2.0 Core: Activities are performed to prevent expansion of an ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-category-rs-mi-incident-mitigation.json #### NIST CSF 2.0 Enterprise Compliance Standard v13 - **ID**: nist-csf-2-0-compliance-2026-13 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The NIST Cybersecurity Framework (CSF) 2.0 provides a policy framework of computer security guidance for how private sector organizations can assess and improve their ability to prevent, detect, and r... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-compliance-2026-13.json #### NIST Cybersecurity Framework 2.0 (2024) - Govern, Identify, Protect, Detect, Respond and Recover Functions with Implementation Examples - **ID**: nist-csf-2-0-cybersecurity-framework-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The NIST Cybersecurity Framework (CSF) 2.0 provides voluntary guidance for organizations of all sizes and sectors to manage and reduce cybersecurity risk through six Functions: GOVERN, IDENTIFY, PROTE... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-cybersecurity-framework-2024.json #### NIST CSF 2.0 - DETECT (DE) Function - **ID**: nist-csf-2-0-de-detect-function-node - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 - DETECT (DE) function. Function overview from NIST CSF 2.0 Core: Possible cybersecurity attacks and compromises are found and analyzed The DETECT function organ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-de-detect-function-node.json #### The NIST Cybersecurity Framework (CSF) 2.0 - GOVERN Function - **ID**: nist-csf-2-0-govern-function - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The GOVERN (GV) function, new in NIST CSF 2.0, establishes and communicates the organization's cybersecurity risk management strategy, expectations, and policy. It ensures that cybersecurity strategy ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-govern-function.json #### NIST CSF 2.0 - IDENTIFY (ID) Function - **ID**: nist-csf-2-0-id-identify-function-node - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 - IDENTIFY (ID) function. Function overview from NIST CSF 2.0 Core: The organization's current cybersecurity risks are understood The IDENTIFY function organizes... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-id-identify-function-node.json #### NIST CSF 2.0 - PROTECT (PR) Function - **ID**: nist-csf-2-0-pr-protect-function-node - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 - PROTECT (PR) function. Function overview from NIST CSF 2.0 Core: Safeguards to manage the organization's cybersecurity risks are used The PROTECT function orga... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-pr-protect-function-node.json #### NIST CSF 2.0 - RECOVER (RC) Function - **ID**: nist-csf-2-0-rc-recover-function-node - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 - RECOVER (RC) function. Function overview from NIST CSF 2.0 Core: Assets and operations affected by a cybersecurity incident are restored The RECOVER function o... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-rc-recover-function-node.json #### NIST CSF 2.0 - RESPOND (RS) Function - **ID**: nist-csf-2-0-rs-respond-function-node - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 - RESPOND (RS) function. Function overview from NIST CSF 2.0 Core: Actions regarding a detected cybersecurity incident are taken The RESPOND function organizes 6... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-rs-respond-function-node.json #### NIST CSF 2.0 Subcategory DE.AE-02 - **ID**: nist-csf-2-0-subcategory-de-ae-02 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory DE.AE-02, in the Adverse Event Analysis (DE.AE) category of the DETECT (DE) function. Subcategory statement from NIST CSF 2.0 Core: Potentially adver... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-de-ae-02.json #### NIST CSF 2.0 Subcategory DE.CM-01 - **ID**: nist-csf-2-0-subcategory-de-cm-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory DE.CM-01, in the Continuous Monitoring (DE.CM) category of the DETECT (DE) function. Subcategory statement from NIST CSF 2.0 Core: Networks and netwo... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-de-cm-01.json #### NIST CSF 2.0 Subcategory GV.OC-01 - **ID**: nist-csf-2-0-subcategory-gv-oc-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory GV.OC-01, in the Organizational Context (GV.OC) category of the GOVERN (GV) function. Subcategory statement from NIST CSF 2.0 Core: The organizationa... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-gv-oc-01.json #### NIST CSF 2.0 Subcategory GV.OC-03 - **ID**: nist-csf-2-0-subcategory-gv-oc-03 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory GV.OC-03, in the Organizational Context (GV.OC) category of the GOVERN (GV) function. Subcategory statement from NIST CSF 2.0 Core: Legal, regulatory... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-gv-oc-03.json #### NIST CSF 2.0 Subcategory GV.OV-01 - **ID**: nist-csf-2-0-subcategory-gv-ov-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory GV.OV-01, in the Oversight (GV.OV) category of the GOVERN (GV) function. Subcategory statement from NIST CSF 2.0 Core: Cybersecurity risk management ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-gv-ov-01.json #### NIST CSF 2.0 Subcategory GV.PO-01 - **ID**: nist-csf-2-0-subcategory-gv-po-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory GV.PO-01, in the Policy (GV.PO) category of the GOVERN (GV) function. Subcategory statement from NIST CSF 2.0 Core: Policy for managing cybersecurity... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-gv-po-01.json #### NIST CSF 2.0 Subcategory GV.RM-01 - **ID**: nist-csf-2-0-subcategory-gv-rm-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory GV.RM-01, in the Risk Management Strategy (GV.RM) category of the GOVERN (GV) function. Subcategory statement from NIST CSF 2.0 Core: Risk management... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-gv-rm-01.json #### NIST CSF 2.0 Subcategory GV.RM-02 - **ID**: nist-csf-2-0-subcategory-gv-rm-02 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory GV.RM-02, in the Risk Management Strategy (GV.RM) category of the GOVERN (GV) function. Subcategory statement from NIST CSF 2.0 Core: Risk appetite a... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-gv-rm-02.json #### NIST CSF 2.0 Subcategory GV.RR-02 - **ID**: nist-csf-2-0-subcategory-gv-rr-02 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory GV.RR-02, in the Roles, Responsibilities, and Authorities (GV.RR) category of the GOVERN (GV) function. Subcategory statement from NIST CSF 2.0 Core:... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-gv-rr-02.json #### NIST CSF 2.0 Subcategory GV.SC-01 - **ID**: nist-csf-2-0-subcategory-gv-sc-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory GV.SC-01, in the Cybersecurity Supply Chain Risk Management (GV.SC) category of the GOVERN (GV) function. Subcategory statement from NIST CSF 2.0 Cor... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-gv-sc-01.json #### NIST CSF 2.0 Subcategory GV.SC-04 - **ID**: nist-csf-2-0-subcategory-gv-sc-04 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory GV.SC-04, in the Cybersecurity Supply Chain Risk Management (GV.SC) category of the GOVERN (GV) function. Subcategory statement from NIST CSF 2.0 Cor... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-gv-sc-04.json #### NIST CSF 2.0 Subcategory GV.SC-06 - **ID**: nist-csf-2-0-subcategory-gv-sc-06 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory GV.SC-06, in the Cybersecurity Supply Chain Risk Management (GV.SC) category of the GOVERN (GV) function. Subcategory statement from NIST CSF 2.0 Cor... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-gv-sc-06.json #### NIST CSF 2.0 Subcategory ID.AM-01 - **ID**: nist-csf-2-0-subcategory-id-am-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory ID.AM-01, in the Asset Management (ID.AM) category of the IDENTIFY (ID) function. Subcategory statement from NIST CSF 2.0 Core: Inventories of hardwa... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-id-am-01.json #### NIST CSF 2.0 Subcategory ID.AM-02 - **ID**: nist-csf-2-0-subcategory-id-am-02 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory ID.AM-02, in the Asset Management (ID.AM) category of the IDENTIFY (ID) function. Subcategory statement from NIST CSF 2.0 Core: Inventories of softwa... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-id-am-02.json #### NIST CSF 2.0 Subcategory ID.AM-05 - **ID**: nist-csf-2-0-subcategory-id-am-05 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory ID.AM-05, in the Asset Management (ID.AM) category of the IDENTIFY (ID) function. Subcategory statement from NIST CSF 2.0 Core: Assets are prioritize... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-id-am-05.json #### NIST CSF 2.0 Subcategory ID.RA-01 - **ID**: nist-csf-2-0-subcategory-id-ra-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory ID.RA-01, in the Risk Assessment (ID.RA) category of the IDENTIFY (ID) function. Subcategory statement from NIST CSF 2.0 Core: Vulnerabilities in ass... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-id-ra-01.json #### NIST CSF 2.0 Subcategory ID.RA-03 - **ID**: nist-csf-2-0-subcategory-id-ra-03 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory ID.RA-03, in the Risk Assessment (ID.RA) category of the IDENTIFY (ID) function. Subcategory statement from NIST CSF 2.0 Core: Internal and external ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-id-ra-03.json #### NIST CSF 2.0 Subcategory PR.AA-01 - **ID**: nist-csf-2-0-subcategory-pr-aa-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory PR.AA-01, in the Identity Management, Authentication, and Access Control (PR.AA) category of the PROTECT (PR) function. Subcategory statement from NI... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-pr-aa-01.json #### NIST CSF 2.0 Subcategory PR.AA-05 - **ID**: nist-csf-2-0-subcategory-pr-aa-05 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory PR.AA-05, in the Identity Management, Authentication, and Access Control (PR.AA) category of the PROTECT (PR) function. Subcategory statement from NI... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-pr-aa-05.json #### NIST CSF 2.0 Subcategory PR.AT-01 - **ID**: nist-csf-2-0-subcategory-pr-at-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory PR.AT-01, in the Awareness and Training (PR.AT) category of the PROTECT (PR) function. Subcategory statement from NIST CSF 2.0 Core: Personnel are pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-pr-at-01.json #### NIST CSF 2.0 Subcategory PR.DS-01 - **ID**: nist-csf-2-0-subcategory-pr-ds-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory PR.DS-01, in the Data Security (PR.DS) category of the PROTECT (PR) function. Subcategory statement from NIST CSF 2.0 Core: The confidentiality, inte... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-pr-ds-01.json #### NIST CSF 2.0 Subcategory PR.DS-02 - **ID**: nist-csf-2-0-subcategory-pr-ds-02 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory PR.DS-02, in the Data Security (PR.DS) category of the PROTECT (PR) function. Subcategory statement from NIST CSF 2.0 Core: The confidentiality, inte... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-pr-ds-02.json #### NIST CSF 2.0 Subcategory RS.MA-01 - **ID**: nist-csf-2-0-subcategory-rs-ma-01 - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: NIST Cybersecurity Framework (CSF) 2.0 Subcategory RS.MA-01, in the Incident Management (RS.MA) category of the RESPOND (RS) function. Subcategory statement from NIST CSF 2.0 Core: The incident respon... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-subcategory-rs-ma-01.json #### NIST Cybersecurity Framework 2.0 - Workflow Security Governance: Govern Function, Identify, Protect, Detect, Respond and Recover for Automated Workflow Environments - **ID**: nist-csf-2-0-workflow-security-governance - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation establishes a comprehensive framework for managing cybersecurity risk in automated workflow environments through six core functions: Govern, Identify, Protect, Detect, Respond, and Rec... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-2-0-workflow-security-governance.json #### NIST Cybersecurity Framework 2.0 - **ID**: nist-csf-20-govern-function-gv - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The GOVERN (GV) Function of NIST CSF 2.0 establishes, communicates, and monitors the organization cybersecurity risk management strategy, expectations, and policy. GOVERN addresses understanding of or... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-20-govern-function-gv.json #### NIST Cybersecurity Framework 2.0: Identify (ID) Function - **ID**: nist-csf-20-identify-function-id - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The IDENTIFY (ID) Function of NIST CSF 2.0 ensures the organization current cybersecurity risks are understood. Understanding assets (data, hardware, software, systems, facilities, services, people), ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-20-identify-function-id.json #### NIST Cybersecurity Framework 2.0 - **ID**: nist-csf-20-protect-function-pr - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The PROTECT (PR) Function of NIST CSF 2.0 implements safeguards to manage the organization cybersecurity risks. PROTECT supports the ability to secure assets to prevent or lower the likelihood and imp... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-20-protect-function-pr.json #### NIST Cybersecurity Framework 2.0: Recover (RC) Function - **ID**: nist-csf-20-recover-function-rc - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This article establishes the framework for developing and implementing activities to maintain resilience and restore capabilities or services impaired by a cybersecurity incident. - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-20-recover-function-rc.json #### NIST Cybersecurity Framework 2.0: Engagement and Resource Utilization - **ID**: nist-csf-20-respond-function-rs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The RESPOND (RS) Function of NIST CSF 2.0 takes actions regarding a detected cybersecurity incident. RESPOND covers four Categories: Incident Management (RS.MA) governing response activities once an i... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-20-respond-function-rs.json #### Mitigating Cybersecurity and Privacy Risks in Telehealth Smart Home Integration - **ID**: nist-cswp-34-telehealth-smart-home - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Hospital-at-Home (HaH) solutions, a form of telehealth providing in-patient level care within patients' residences, introduce significant privacy and cybersecurity risks by placing hospital-grade medi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-cswp-34-telehealth-smart-home.json #### Applying 5G Cybersecurity and Privacy Capabilities Introduction to the White Paper Series - **ID**: nist-cswp-36-5g-cybersecurity-capabilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document introduces the white paper series titled Applying 5G Cybersecurity and Privacy Capabilities, published by the National Cybersecurity Center of Excellence (NCCoE) 5G Cybersecurity project... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-cswp-36-5g-cybersecurity-capabilities.json #### Using Hardware-Enabled Security to Ensure 5G System Platform Integrity: Applying 5G Cybersecurity and Privacy Capabilities - **ID**: nist-cswp-36b-hardware-enabled-security-5g - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This white paper provides an overview and an example of employing hardware-enabled security capabilities to provision, measure, attest to, and enforce the integrity of the compute platform to foster t... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-cswp-36b-hardware-enabled-security-5g.json #### NIST CSWP 39 — Considerations for Achieving Crypto Agility: Strategies and Practices (Cybersecurity White Paper, March 2025) - **ID**: nist-cswp-39-considerations-for-achieving-crypto-agility-2025 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Cybersecurity White Paper (CSWP) 39 'Considerations for Achieving Crypto Agility: Strategies and Practices' is a NIST publication issued by the Computer Security Resource Center in March 2025 to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-cswp-39-considerations-for-achieving-crypto-agility-2025.json #### The NIST Cybersecurity Framework (CSF) 2.0 - **ID**: nist-cybersecurity-framework-2-0 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The NIST Cybersecurity Framework (CSF) 2.0 provides guidance to industry, government agencies, and other organizations to manage cybersecurity risks. It is designed to help organizations of all sizes ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-cybersecurity-framework-2-0.json #### Digital Signature Standard (DSS) - **ID**: nist-fips-186-5-dss - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This standard specifies a suite of algorithms that can be used to generate a digital signature for applications requiring a digital signature rather than a written signature. Digital signatures are us... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-fips-186-5-dss.json #### Guidelines on Mobile Device Forensics - **ID**: nist-guidelines-mobile-device-forensics - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Mobile device forensics is the science of recovering digital evidence from a mobile device under forensically sound conditions using accepted methods. This guide discusses procedures for the preservat... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-guidelines-mobile-device-forensics.json #### Notional Supply Chain Risk Management Practices for Federal Information Systems - **ID**: nist-ir-7622-scrm-practices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides a notional set of repeatable and commercially reasonable supply chain assurance methods and practices to help federal departments and agencies mitigate supply chain risk to f... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-7622-scrm-practices.json #### Guidelines for Smart Grid Cybersecurity, Volume 1 - Smart Grid Cybersecurity Strategy, Architecture, and High-Level Requirements - **ID**: nist-ir-7628-smart-grid-cybersecurity - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This three-volume report, Guidelines for Smart Grid Cybersecurity, presents an analytical framework that organizations can use to develop effective cybersecurity strategies tailored to their particula... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-7628-smart-grid-cybersecurity.json #### Automation Support for Security Control Assessments Volume 1: Overview - **ID**: nist-ir-8011-v1-automated-assessments - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This volume introduces concepts to support automated assessment of security controls detailed in NIST Special Publication (SP) 800-53. The ability to assess all implemented information security contro... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8011-v1-automated-assessments.json #### NISTIR 8062 An Introduction to Privacy Engineering and Risk Management in Federal Systems - **ID**: nist-ir-8062-privacy-engineering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides an introduction to how systems engineering and risk management can be used to develop more trustworthy systems that include privacy as an integral attribute. It is intended f... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8062-privacy-engineering.json #### Security Assurance Requirements for Linux Application Container Deployments - **ID**: nist-ir-8176-linux-container-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document outlines security assurance requirements for security solutions implemented in Linux application container platforms. To assess the effectiveness of security solutions, it is necessary t... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8176-linux-container-security.json #### IoT Non-Technical Supporting Capability Core Baseline - **ID**: nist-ir-8259b-iot-non-technical-baseline - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication defines an Internet of Things (IoT) device manufacturers’ non-technical supporting capability core baseline, which is a set of non-technical supporting capabilities generally needed f... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8259b-iot-non-technical-baseline.json #### Key Practices in Cyber Supply Chain Risk Management: Observations from Industry - **ID**: nist-ir-8276-cyber-scrm-practices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: In today’s highly connected, interdependent world, all organizations rely on others for critical products and services. The reality of globalization has resulted in a world where organizations no long... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8276-cyber-scrm-practices.json #### Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management - **ID**: nist-ir-8286a-cybersecurity-risk - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document supplements NIST Interagency or Internal Report 8286, Integrating Cybersecurity and Enterprise Risk Management (ERM), by providing additional detail regarding risk guidance, identificati... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8286a-cybersecurity-risk.json #### Prioritizing Cybersecurity Risk for Enterprise Risk Management - **ID**: nist-ir-8286b-prioritizing-cybersecurity-risk - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document provides supplemental guidance for aligning cybersecurity risks with an organization’s overall Enterprise Risk Management (ERM) program. It is the second publication in a series that sup... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8286b-prioritizing-cybersecurity-risk.json #### Staging Cybersecurity Risks for Enterprise Risk Management and Governance Oversight - **ID**: nist-ir-8286c-staging-cybersecurity-risks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document supplements NIST Interagency/Internal Report (NISTIR) 8286, Integrating Cybersecurity and Enterprise Risk Management (ERM). It explores methods for integrating disparate cybersecurity ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8286c-staging-cybersecurity-risks.json #### Using Business Impact Analysis to Inform Risk Prioritization and Response - **ID**: nist-ir-8286d-bia-for-risk - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication describes how a business impact analysis (BIA), historically used for determining availability requirements for business continuity, can be extended to provide a broad understanding o... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8286d-bia-for-risk.json #### Ransomware Risk Management: A Cybersecurity Framework Profile - **ID**: nist-ir-8374-ransomware-risk-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Ransomware is a type of malicious attack where attackers encrypt an organization’s data and demand payment to restore access. Attackers may also steal an organization’s information and demand an addit... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8374-ransomware-risk-management.json #### Profile of the IoT Core Baseline for Consumer IoT Products - **ID**: nist-ir-8425-iot-core-baseline-profile - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication documents the consumer profile of NIST’s Internet of Things (IoT) core baseline and identifies cybersecurity capabilities commonly needed for the consumer IoT sector (i.e., IoT produc... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8425-iot-core-baseline-profile.json #### Cybersecurity Framework Profile for Hybrid Satellite Networks (HSN) - **ID**: nist-ir-8441-hsn-profile - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The space sector is transitioning towards Hybrid Satellite Networks (HSN), which are an aggregation of independently owned and operated terminals, antennas, satellites, payloads, or other components t... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8441-hsn-profile.json #### Guidelines for Managing the Security of Mobile Devices in the Enterprise - **ID**: nist-mobile-device-security-enterprise - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication assists organizations in managing and securing mobile devices by describing available technologies and strategies. As mobile devices perform everyday enterprise tasks, they regularly ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-mobile-device-security-enterprise.json #### Recommendation for Key Management Part 3: Application-Specific Key Management Guidance - **ID**: nist-recommendation-key-management-pt3 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication 800-57 Part 3 provides application-specific cryptographic key management guidance, intended primarily for system administrators, system installers, and end users to adequately... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-recommendation-key-management-pt3.json #### NIST SPECIAL PUBLICATION 1800-1 Securing Electronic Health Records on Mobile Devices - **ID**: nist-sp-1800-1-securing-ehr-mobile - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This NIST Cybersecurity Practice Guide provides a modular, open, end-to-end reference design demonstrating how healthcare organizations can more securely share patient information among caregivers usi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-1-securing-ehr-mobile.json #### Protecting Information and System Integrity in Industrial Control System Environments: Cybersecurity for the Manufacturing Sector - **ID**: nist-sp-1800-10-ics-integrity - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Many manufacturing organizations rely on industrial control systems (ICS) to monitor and control their machinery, production lines, and other physical processes that produce goods. As OT and IT system... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-10-ics-integrity.json #### NIST SPECIAL PUBLICATION 1800-11 Data Integrity Recovering from Ransomware and Other Destructive Events - **ID**: nist-sp-1800-11-data-integrity - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Destructive malware, ransomware, malicious insider activity, and even honest mistakes all set the stage for why organizations need to quickly recover from an event that alters or destroys data. Busine... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-11-data-integrity.json #### Derived Personal Identity Verification (PIV) Credentials - **ID**: nist-sp-1800-12-derived-piv - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Access to federal information systems relies on strong authentication of the user with a Personal Identity Verification (PIV) Card, a smart card containing identifying information. However, access to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-12-derived-piv.json #### Mobile Application Single Sign-On: Improving Authentication for Public Safety First Responders - **ID**: nist-sp-1800-13-mobile-sso - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: On-demand access to public safety data is critical to ensuring that public safety and first responders (PSFRs) can protect life and property during an emergency. This information, often accessed via m... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-13-mobile-sso.json #### NIST SPECIAL PUBLICATION 1800-14 Protecting the Integrity of Internet Routing: Border Gateway Protocol (BGP) Route Origin Validation - **ID**: nist-sp-1800-14-bgp-rov - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This NIST Cybersecurity Practice Guide demonstrates how networks can protect Border Gateway Protocol (BGP) routes from vulnerability to route hijacks by using available security protocols, products, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-14-bgp-rov.json #### NIST SPECIAL PUBLICATION 1800-15 Securing Small-Business and Home Internet of Things (IoT) Devices: Mitigating Network-Based Attacks Using Manufacturer Usage Description (MUD) - **ID**: nist-sp-1800-15-iot-mud - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The rapid growth of Internet of Things (IoT) devices is a cause for concern because they are tempting targets for attackers, often having minimal security, unpatched software flaws, and constraints th... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-15-iot-mud.json #### NIST SPECIAL PUBLICATION 1800-16 Securing Web Transactions TLS Server Certificate Management - **ID**: nist-sp-1800-16-tls-certificate-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Transport Layer Security (TLS) server certificates are critical to the security of both internet-facing and private web services. Many organizations, especially large- or medium-scale enterprises with... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-16-tls-certificate-management.json #### NIST SPECIAL PUBLICATION 1800-17 Multifactor Authentication for E-Commerce: Risk-Based, FIDO Universal Second Factor Implementations for Purchasers - **ID**: nist-sp-1800-17-mfa-ecommerce - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This NIST Cybersecurity Practice Guide demonstrates how online retailers can implement multifactor authentication (MFA) to help reduce electronic commerce (e-commerce) fraud. MFA is a security enhance... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-17-mfa-ecommerce.json #### Trusted Cloud: Security Practice Guide for VMware Hybrid Cloud Infrastructure as a Service (IaaS) Environments - **ID**: nist-sp-1800-19-trusted-cloud - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This National Institute of Standards and Technology (NIST) Cybersecurity Practice Guide demonstrates how organizations can implement trusted compute pools to safeguard the security and privacy of thei... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-19-trusted-cloud.json #### NIST SPECIAL PUBLICATION 1800-21 Mobile Device Security: Corporate-Owned Personally-Enabled (COPE) - **ID**: nist-sp-1800-21-cope - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This NIST Cybersecurity Practice Guide demonstrates how organizations can use standards-based, commercially available products to help meet their Corporate-Owned Personally-Enabled (COPE) mobile devic... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-21-cope.json #### NIST SPECIAL PUBLICATION 1800-22 Mobile Device Security: Bring Your Own Device (BYOD) - **ID**: nist-sp-1800-22-byod - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This National Institute of Standards and Technology (NIST) Cybersecurity Practice Guide provides an example solution demonstrating how organizations can use standards-based, commercially available pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-22-byod.json #### Energy Sector Asset Management For Electric Utilities, Oil & Gas Industry - **ID**: nist-sp-1800-23-energy-asset-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: As critical infrastructures, the incapacitation or destruction of assets in the energy sector, including electric utilities and the oil and gas industry, could have serious negative effects on the eco... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-23-energy-asset-management.json #### NIST SPECIAL PUBLICATION 1800-24 Securing Picture Archiving and Communication System (PACS): Cybersecurity for the Healthcare Sector - **ID**: nist-sp-1800-24-securing-pacs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide details how the National Cybersecurity Center of Excellence (NCCoE) at NIST built a laboratory environment to emulate a medical imaging environment, performed a risk assessment, and identif... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-24-securing-pacs.json #### NIST SPECIAL PUBLICATION 1800-25 Data Integrity: Identifying and Protecting Assets Against Ransomware and Other Destructive Events - **ID**: nist-sp-1800-25-data-integrity - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This NIST Cybersecurity Practice Guide demonstrates how organizations can develop and implement appropriate actions before a detected data integrity cybersecurity event. The guide focuses on data inte... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-25-data-integrity.json #### NIST SPECIAL PUBLICATION 1800-28 Data Confidentiality: Identifying and Protecting Assets Against Data Breaches - **ID**: nist-sp-1800-28-data-confidentiality - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide helps organizations implement strategies to prevent data confidentiality attacks by demonstrating how to develop and implement appropriate actions to identify and protect data against a con... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-28-data-confidentiality.json #### NIST SPECIAL PUBLICATION 1800-29 Data Confidentiality: Detect, Respond to, and Recover from Data Breaches - **ID**: nist-sp-1800-29-data-breaches - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: An organization must protect its information from unauthorized access and disclosure, as data breaches can have far-reaching operational, financial, and reputational impacts. In the event of a data br... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-29-data-breaches.json #### Securing Distributed Energy Resources: An Example of Industrial Internet of Things Cybersecurity - **ID**: nist-sp-1800-32-securing-ders - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This practice guide from the National Cybersecurity Center of Excellence (NCCoE) applies standards, best practices, and commercially available technology to protect the digital communication, data, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-32-securing-ders.json #### NIST SPECIAL PUBLICATION 1800-35 Implementing a Zero Trust Architecture: High-Level Document - **ID**: nist-sp-1800-35-zero-trust-architecture - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: A zero trust architecture (ZTA) is an enterprise cybersecurity architecture based on zero trust principles, such as those outlined in NIST Special Publication (SP) 800-207, designed to prevent data br... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-35-zero-trust-architecture.json #### NIST SPECIAL PUBLICATION 1800-4 Mobile Device Security Cloud and Hybrid Builds - **ID**: nist-sp-1800-4-mobile-device-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This National Institute of Standards and Technology (NIST) Cybersecurity Practice Guide addresses the challenge of securely deploying and managing mobile devices in an enterprise. In many organization... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-4-mobile-device-security.json #### NIST SPECIAL PUBLICATION 1800-5 IT Asset Management - **ID**: nist-sp-1800-5-it-asset-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This NIST Cybersecurity Practice Guide offers a proof-of-concept solution for financial services companies to more securely and efficiently monitor and manage their information technology (IT) assets.... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-5-it-asset-management.json #### Domain Name System-Based Electronic Mail Security - **ID**: nist-sp-1800-6-email-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide details proof-of-concept security platforms that demonstrate trustworthy email exchanges across organizational boundaries for both public and private-sector business operations. The project... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-6-email-security.json #### NIST SPECIAL PUBLICATION 1800-7 Situational Awareness For Electric Utilities - **ID**: nist-sp-1800-7-electric-utilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Through direct dialogue between NCCoE staff and members of the energy sector it became clear that energy companies need to create and maintain a high level of visibility into their operating environme... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-7-electric-utilities.json #### NIST SPECIAL PUBLICATION 1800-8: Securing Wireless Infusion Pumps in Healthcare Delivery Organizations - **ID**: nist-sp-1800-8-infusion-pumps - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Medical devices, such as infusion pumps, were once standalone instruments that interacted only with the patient or medical provider. With technological improvements, these devices now connect wireless... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-8-infusion-pumps.json #### Information Security Handbook: A Guide for Managers - **ID**: nist-sp-800-100-security-handbook - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Information Security Handbook provides a broad overview of information security program elements to assist managers in understanding how to establish and implement an information security program... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-100-security-handbook.json #### Recommendation for Key Derivation Using Pseudorandom Functions - **ID**: nist-sp-800-108r1-key-derivation - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Recommendation specifies techniques for the derivation of additional keying material from a secret key, either established through a key-establishment scheme or shared through some other manner, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-108r1-key-derivation.json #### Guide to SSL VPNs - **ID**: nist-sp-800-113-guide-ssl-vpns - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Secure Sockets Layer (SSL) virtual private networks (VPN) provide secure remote access to an organization’s resources. A VPN is a virtual network, built on top of existing physical networks, that can ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-113-guide-ssl-vpns.json #### User’s Guide to Telework and Bring Your Own Device (BYOD) Security - **ID**: nist-sp-800-114-r1-byod-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides recommendations for securing Bring Your Own Device (BYOD) devices used for telework and remote access, as well as those directly attached to the enterprise’s own networks. It... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-114-r1-byod-security.json #### NIST SP 800-115: Technical Guide to Information Security Testing and Assessment - **ID**: nist-sp-800-115-pen-testing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide provides a comprehensive methodology for conducting information security testing and assessments, including penetration testing. It establishes a four-phase process (Planning, Discovery, At... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-115-pen-testing.json #### Technical Guide to Information Security Testing and Assessment - **ID**: nist-sp-800-115-security-testing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: An information security assessment is the process of determining how effectively an entity being assessed (e.g., host, system, network, procedure, person) meets specific security objectives. This docu... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-115-security-testing.json #### Guide to Bluetooth Security - **ID**: nist-sp-800-121r2-bluetooth-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Bluetooth wireless technology is an open standard for short-range radio frequency communication used primarily to establish wireless personal area networks (WPANs), and has been integrated into many t... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-121r2-bluetooth-security.json #### Special Publication 800-123 Guide to General Server Security - **ID**: nist-sp-800-123-server-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication addresses the general security issues of typical servers, assisting organizations in installing, configuring, and maintaining them securely. Servers are frequently targeted by attacke... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-123-server-security.json #### Guide for Security-Focused Configuration Management of Information Systems - **ID**: nist-sp-800-128-config-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide provides guidelines for organizations responsible for managing and administering the security of federal information systems and associated environments of operation. The focus of this docu... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-128-config-management.json #### An Introduction to Information Security (NIST Special Publication 800-12 Revision 1) - **ID**: nist-sp-800-12r1-intro-infosec - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication serves as a starting-point for those new to information security and for those unfamiliar with NIST information security publications and guidelines. Its intent is to provide a high-l... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-12r1-intro-infosec.json #### Transitioning the Use of Cryptographic Algorithms and Key Lengths - **ID**: nist-sp-800-131a-rev-2-crypto-transitions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Recommendation (SP 800-131A) provides specific guidance for transitions to the use of stronger cryptographic keys and more robust algorithms for Federal Government agencies protecting sensitive, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-131a-rev-2-crypto-transitions.json #### NIST Special Publication 800-132 Recommendation for Password-Based Key Derivation Part 1: Storage Applications - **ID**: nist-sp-800-132-pbkdf - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Recommendation specifies techniques for the derivation of master keys from passwords or passphrases to protect stored electronic data or data protection keys. Due to the low entropy and possibly ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-132-pbkdf.json #### Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations - **ID**: nist-sp-800-137-iscm - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST SP 800-137 requires U.S. federal agencies to develop and implement an Information Security Continuous Monitoring (ISCM) program to maintain ongoing awareness of security posture, vulnerabilities,... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-137-iscm.json #### FIPS 140-3 Derived Test Requirements (DTR): CMVP Validation Authority Updates to ISO/IEC 24759 - **ID**: nist-sp-800-140-dtr - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication (SP) 800-140 specifies the modifications of the Derived Test Requirements (DTR) for Federal Information Processing Standard (FIPS) 140-3. It modifies the test (TE) and vendor ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-140-dtr.json #### Guidelines on Security and Privacy in Public Cloud Computing - **ID**: nist-sp-800-144-cloud-computing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides an overview of the security and privacy challenges pertinent to public cloud computing and points out considerations organizations should take when outsourcing data, applicat... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-144-cloud-computing.json #### NIST Special Publication 800-150 Guide to Cyber Threat Information Sharing (Indicators, TTPs, Security Alerts, Threat Intelligence, Tool Configurations; Establishing and Participating in Sharing Relationships) - **ID**: nist-sp-800-150-cyber-threat-information-sharing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication 800-150 'Guide to Cyber Threat Information Sharing' (Johnson, Badger, Waltermire, Snyder, Skorupka; October 2016; https://doi.org/10.6028/NIST.SP.800-150) is the U.S. federal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-150-cyber-threat-information-sharing.json #### A Profile for U.S. Federal Cryptographic Key Management Systems - **ID**: nist-sp-800-152-key-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Profile for U.S. Federal Cryptographic Key Management Systems (FCKMSs) contains requirements for their design, implementation, procurement, installation, configuration, management, operation, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-152-key-management.json #### Engineering Trustworthy Secure Systems - **ID**: nist-sp-800-160-v1r1 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication describes a basis for establishing principles, concepts, activities, and tasks for engineering trustworthy secure systems. These can be effectively applied within systems engineering ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-160-v1r1.json #### NIST Special Publication 800-160, Volume 2, Revision 1: Developing Cyber-Resilient Systems: A Systems Security Engineering Approach - **ID**: nist-sp-800-160-v2r1 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication (SP) 800-160, Volume 2, focuses on cyber resiliency engineering-an emerging specialty systems engineering discipline applied in conjunction with resilience engineering and sys... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-160-v2r1.json #### Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations - **ID**: nist-sp-800-161-r1-supply-chain-risk-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This standard provides guidance for U.S. federal and other organizations on identifying, assessing, and responding to cybersecurity risks throughout the supply chain. It establishes a multi-tiered Cyb... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-161-r1-supply-chain-risk-management.json #### NIST SP 800-161 Rev 1 - Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations - **ID**: nist-sp-800-161-scrm - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This standard provides guidance for federal and non-federal organizations on establishing a comprehensive Cybersecurity Supply Chain Risk Management (C-SCRM) program. It requires organizations to iden... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-161-scrm.json #### Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations - **ID**: nist-sp-800-161r1-csrm-practices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides guidance to organizations on identifying, assessing, and mitigating cybersecurity risks throughout the supply chain at all levels of their organizations. It addresses concern... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-161r1-csrm-practices.json #### Guide to Attribute Based Access Control (ABAC) Definition and Considerations - **ID**: nist-sp-800-162-abac - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document provides Federal agencies with a definition of attribute based access control (ABAC), a logical access control methodology where authorization to perform a set of operations is determine... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-162-abac.json #### NIST Special Publication 800-163 Revision 1: Vetting the Security of Mobile Applications - **ID**: nist-sp-800-163r1-mobile-app-vetting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: As both public and private organizations rely more on mobile applications, ensuring that they are reasonably free from vulnerabilities and defects is paramount. Mobile apps can pose serious security r... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-163r1-mobile-app-vetting.json #### Guide to Application Whitelisting - **ID**: nist-sp-800-167-application-whitelisting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: An application whitelist is a list of applications and application components that are authorized to be present or active on a host according to a well-defined baseline. Application whitelisting techn... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-167-application-whitelisting.json #### NIST SP 800-171 Rev 2 - Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations - **ID**: nist-sp-800-171-cui - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: This standard requires nonfederal organizations that process, store, or transmit Controlled Unclassified Information (CUI) to implement 110 specific security controls across 14 families, as detailed i... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-171-cui.json #### NIST SP 800-171 Rev 3 - Protecting Controlled Unclassified Information (CUI) in Non-Federal Systems - **ID**: nist-sp-800-171-cui-protection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This standard provides security requirements for non-federal systems and organizations to protect the confidentiality of Controlled Unclassified Information (CUI). Compliance is mandatory for entities... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-171-cui-protection.json #### NIST Special Publication 800-171 Revision 3: Protecting Controlled Unclassified Information in Non-Federal Systems and Organizations - **ID**: nist-sp-800-171r3-cui-protection-2024 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: This regulation establishes security requirements for non-federal organizations that process, store, or transmit Controlled Unclassified Information (CUI) to ensure confidentiality, integrity, and ava... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-171r3-cui-protection-2024.json #### Enhanced Security Requirements for Protecting Controlled Unclassified Information: A Supplement to NIST Special Publication 800-171 - **ID**: nist-sp-800-172-enhanced-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The protection of Controlled Unclassified Information (CUI) resident in nonfederal systems and organizations is of paramount importance to federal agencies and can directly impact the ability of the F... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-172-enhanced-security.json #### Assessing Enhanced Security Requirements for Controlled Unclassified Information - **ID**: nist-sp-800-172a-assessment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides federal agencies and nonfederal organizations with assessment procedures to carry out assessments of the requirements in NIST Special Publication 800-172, Enhanced Security R... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-172a-assessment.json #### NIST Special Publication 800-177 Revision 1 Trustworthy Email - **ID**: nist-sp-800-177-trustworthy-email - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document provides recommendations and guidelines for enhancing trust in email, applicable to federal IT systems and also useful for small or medium-sized organizations. The primary audience inclu... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-177-trustworthy-email.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: nist-sp-800-18-r1 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of system security planning is to improve protection of information system resources. All federal systems have some level of sensitivity and require protection as part of good management... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-18-r1.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: nist-sp-800-18-r1-security-plans - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide provides direction for developing system security plans for federal information systems, a requirement of the Office of Management and Budget (OMB) Circular A-130 and the Federal Informatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-18-r1-security-plans.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: nist-sp-800-18-security-plans - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of system security planning is to improve protection of information system resources. All federal systems have some level of sensitivity and require protection as part of good management... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-18-security-plans.json #### Workforce Framework for Cybersecurity (NICE Framework) - **ID**: nist-sp-800-181r1-nice-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication from the National Initiative for Cybersecurity Education (NICE) describes the Workforce Framework for Cybersecurity (NICE Framework), a fundamental reference for describing and sharin... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-181r1-nice-framework.json #### NIST Special Publication 800-183 Networks of ‘Things’ - **ID**: nist-sp-800-183-networks-of-things - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document offers an underlying and foundational understanding of the Internet of Things (IoT) based on the realization that IoT involves sensing, computing, communication, and actuation. It presen... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-183-networks-of-things.json #### Guide for Cybersecurity Event Recovery - **ID**: nist-sp-800-184-event-recovery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: In light of an increasing number of cybersecurity events, organizations can improve resilience by ensuring that their risk management processes include comprehensive recovery planning. Although there ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-184-event-recovery.json #### SHA-3 Derived Functions: cSHAKE, KMAC, TupleHash and ParallelHash - **ID**: nist-sp-800-185-sha3-derived-functions - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Recommendation specifies four types of SHA-3-derived functions: cSHAKE, KMAC, TupleHash, and ParallelHash, each defined for a 128- and 256-bit security strength. This publication has been develop... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-185-sha3-derived-functions.json #### Recommendations for Discrete Logarithm-based Cryptography: Elliptic Curve Domain Parameters - **ID**: nist-sp-800-186-elliptic-curves - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Recommendation specifies the set of elliptic curves recommended for U.S. Government use. It provides updated specifications of elliptic curves appropriate for digital signatures and key agreement... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-186-elliptic-curves.json #### De-Identifying Government Datasets: Techniques and Governance - **ID**: nist-sp-800-188-de-identification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: De-identification is a general term for any process of removing the association between a set of identifying data and the data subject. This document, NIST SP 800-188, provides specific guidance to U.... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-188-de-identification.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: nist-sp-800-18r1-security-plans - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of system security planning is to improve protection of information system resources. The protection of a system must be documented in a system security plan, a requirement of OMB Circul... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-18r1-security-plans.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: nist-sp-800-18r1-security-plans-federal-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of system security planning is to improve protection of information system resources. All federal systems have some level of sensitivity and require protection, which must be documented ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-18r1-security-plans-federal-systems.json #### Application Container Security Guide - **ID**: nist-sp-800-190-container-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Application container technologies are a form of operating system virtualization combined with application software packaging that provide a portable, reusable, and automatable way to package and run ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-190-container-security.json #### NIST Special Publication 800-193 Platform Firmware Resiliency Guidelines - **ID**: nist-sp-800-193-firmware-resiliency - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document provides technical guidelines and recommendations supporting resiliency of platform firmware and data against potentially destructive attacks. The platform is a collection of fundamental... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-193-firmware-resiliency.json #### Strategies for the Integration of Software Supply Chain Security in DevSecOps CI/CD Pipelines - **ID**: nist-sp-800-204d-sssc-devsecops - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document outlines strategies for integrating Software Supply Chain (SSC) security assurance measures into Continuous Integration/Continuous Delivery (CI/CD) pipelines to protect the integrity of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-204d-sssc-devsecops.json #### NIST Special Publication 800-205 Attribute Considerations for Access Control Systems - **ID**: nist-sp-800-205-access-control - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document provides federal agencies with a guide for implementing attributes in access control systems. Attributes enable a logical access control methodology where authorization to perform a set ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-205-access-control.json #### NIST SP 800-207 - Zero Trust Architecture - **ID**: nist-sp-800-207 - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: NIST Special Publication 800-207 (August 2020) defines Zero Trust Architecture (ZTA) - the security paradigm that shifts from perimeter-based ('castle and moat') defenses to identity-centric, per-sess... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-207.json #### NIST SP 800-207 - Zero Trust Architecture - **ID**: nist-sp-800-207-zero-trust - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides an abstract definition of Zero Trust Architecture (ZTA), outlining its core logical components, deployment models, and operational principles. It establishes the foundational... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-207-zero-trust.json #### Recommendation for Stateful Hash-Based Signature Schemes - **ID**: nist-sp-800-208-stateful-hbs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This recommendation specifies two stateful hash-based signature (HBS) schemes, the Leighton-Micali Signature (LMS) system and the eXtended Merkle Signature Scheme (XMSS), along with their multi-tree v... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-208-stateful-hbs.json #### Security Guidelines for Storage Infrastructure - **ID**: nist-sp-800-209-storage-infrastructure - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document provides an overview of the evolution of the storage technology landscape, current security threats, and the resultant risks. The primary purpose is to provide a comprehensive set of sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-209-storage-infrastructure.json #### NIST Special Publication 800-213 IoT Device Cybersecurity Guidance for the Federal Government: Establishing IoT Device Cybersecurity Requirements - **ID**: nist-sp-800-213-iot-guidance - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: As organizations increasingly use Internet of Things (IoT) devices, care must be taken in their acquisition and implementation. This publication contains background and recommendations to help federal... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-213-iot-guidance.json #### NIST Special Publication 800-213A IoT Device Cybersecurity Guidance for the Federal Government: IoT Device Cybersecurity Requirement Catalog - **ID**: nist-sp-800-213a-iot-catalog - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides a catalog of internet of things (IoT) device cybersecurity capabilities and non-technical supporting capabilities to help federal organizations determine and establish device... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-213a-iot-catalog.json #### NIST SP 800-215 Guide to a Secure Enterprise Network Landscape - **ID**: nist-sp-800-215-secure-enterprise-network - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The enterprise network landscape has undergone tremendous changes due to enterprise access to multiple cloud services, the geographical spread of on-premises IT resources, and the architectural shift ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-215-secure-enterprise-network.json #### Recommendations for Federal Vulnerability Disclosure Guidelines - **ID**: nist-sp-800-216-vulnerability-disclosure-guidelines - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document provides guidelines for managing vulnerability disclosure for information systems within the Federal Government, following the IoT Cybersecurity Improvement Act of 2020. It recommends gu... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-216-vulnerability-disclosure-guidelines.json #### NIST Special Publication 800-218 Secure Software Development Framework (SSDF) Version 1.1: Recommendations for Mitigating the Risk of Software Vulnerabilities - **ID**: nist-sp-800-218-ssdf - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document describes the Secure Software Development Framework (SSDF), a core set of fundamental, sound, high-level practices for secure software development. The framework is intended to be integr... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-218-ssdf.json #### NIST SP 800-218 v1.1 Secure Software Development Framework (SSDF) - Prepare the Organization, Protect the Software, Produce Well-Secured Software, Respond to Vulnerabilities; EO 14028 Reference Standard - **ID**: nist-sp-800-218-ssdf-v1-1-secure-software-development-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication 800-218 v1.1 the Secure Software Development Framework (Souppaya, Scarfone, Dodson; February 2022) is the canonical U.S. federal framework defining fundamental secure software... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-218-ssdf-v1-1-secure-software-development-framework.json #### Automated Secure Configuration Guidance from the macOS Security Compliance Project (mSCP) - **ID**: nist-sp-800-219-macos-mscp - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication introduces the macOS Security Compliance Project (mSCP), an open-source initiative by the National Institute of Standards and Technology (NIST) designed to provide security configurat... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-219-macos-mscp.json #### Enterprise Impact of Information and Communications Technology Risk: Governing and Managing ICT Risk Programs Within an Enterprise Risk Portfolio - **ID**: nist-sp-800-221-ict-risk - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication helps individual organizations within an enterprise improve their Information and Communications Technology (ICT) risk management (ICTRM) to better identify, assess, and manage ICT ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-221-ict-risk.json #### Information and Communications Technology (ICT) Risk Outcomes: Integrating ICT Risk Management Programs with the Enterprise Risk Portfolio - **ID**: nist-sp-800-221a-ict-risk-outcomes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The increasing frequency, creativity, and severity of technology attacks means that all enterprises should ensure that information and communications technology (ICT) risk is receiving appropriate att... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-221a-ict-risk-outcomes.json #### Guidelines for Evaluating Differential Privacy Guarantees - **ID**: nist-sp-800-226-differential-privacy - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication describes differential privacy - a PET that quantifies privacy risk to individuals when their data appears in a dataset. Differential privacy was first defined in 2006 as a theoretica... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-226-differential-privacy.json #### Guide for Conducting Risk Assessments - **ID**: nist-sp-800-30-risk-assessment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide provides a structured approach for conducting risk assessments of federal information systems and organizations, amplifying the guidance in NIST Special Publication 800-39. Risk assessments... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-30-risk-assessment.json #### Contingency Planning Guide for Federal Information Systems - **ID**: nist-sp-800-34-contingency-planning - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication 800-34, Rev. 1 provides instructions, recommendations, and considerations for federal information system contingency planning. Contingency planning refers to interim measures ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-34-contingency-planning.json #### Contingency Planning Guide for Federal Information Systems - **ID**: nist-sp-800-34-contingency-planning-guide - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication 800-34, Rev. 1, provides instructions, recommendations, and considerations for federal information system contingency planning. Contingency planning refers to interim measures... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-34-contingency-planning-guide.json #### Contingency Planning Guide for Federal Information Systems - **ID**: nist-sp-800-34-r1 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication 800-34, Rev. 1 provides instructions, recommendations, and considerations for federal information system contingency planning. Contingency planning refers to a coordinated str... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-34-r1.json #### Risk Management Framework for Information Systems and Organizations: A System Life Cycle Approach for Security and Privacy - **ID**: nist-sp-800-37-rmf - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This standard establishes a mandatory seven-step Risk Management Framework (RMF) for U.S. federal agencies to manage cybersecurity and privacy risk. As detailed in Chapter 2, the RMF integrates securi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-37-rmf.json #### NIST Special Publication 800-39: Managing Information Security Risk: Organization, Mission, and Information System View - **ID**: nist-sp-800-39-managing-information-security-risk - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides guidance for an integrated, organization-wide program for managing information security risk to organizational operations, assets, individuals, other organizations, and the N... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-39-managing-information-security-risk.json #### Managing Information Security Risk: Organization, Mission, and Information System View - **ID**: nist-sp-800-39-managing-risk - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guidance provides an integrated, organization-wide program for managing information security risk to organizational operations, assets, individuals, other organizations, and the Nation resulting ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-39-managing-risk.json #### Guide to Enterprise Patch Management Planning: Preventive Maintenance for Technology - **ID**: nist-sp-800-40r4-enterprise-patch-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Enterprise patch management is the process of identifying, prioritizing, acquiring, installing, and verifying the installation of patches, updates, and upgrades throughout an organization. This proces... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-40r4-enterprise-patch-management.json #### Guidelines on Firewalls and Firewall Policy - **ID**: nist-sp-800-41-r1-firewalls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Firewalls are devices or programs that control the flow of network traffic between networks or hosts that employ differing security postures. This guidance provides an overview of firewall technologie... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-41-r1-firewalls.json #### Managing the Security of Information Exchanges - **ID**: nist-sp-800-47-information-exchanges - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides guidance for managing the security of information exchanges between systems that are owned and operated by different organizations or are within the same organization but wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-47-information-exchanges.json #### Building a Cybersecurity and Privacy Learning Program - **ID**: nist-sp-800-50r1-learning-program - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides guidance for federal agencies and organizations to develop and manage a life cycle approach to building a Cybersecurity and Privacy Learning Program (CPLP). The program is in... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-50r1-learning-program.json #### Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations - **ID**: nist-sp-800-52r2-tls-guidelines - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Transport Layer Security (TLS) provides mechanisms to protect data during electronic dissemination across the Internet. This Special Publication provides guidance to the selection and configuration of... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-52r2-tls-guidelines.json #### Security and Privacy Controls for Information Systems and Organizations - **ID**: nist-sp-800-53-r5 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides a catalog of security and privacy controls for information systems and organizations to protect organizational operations and assets, individuals, other organizations, and th... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-r5.json #### NIST SP 800-53 Rev 5 - Access Control (AC) Family - **ID**: nist-sp-800-53-rev5-ac-access-control-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Access Control (AC) family of NIST SP 800-53 Rev 5 contains 25 base controls (AC-1 through AC-25) that govern how organizations authorize, enforce, and monitor logical and physical access to infor... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-ac-access-control-family.json #### NIST SP 800-53 Rev 5 - Awareness and Training (AT) Family - **ID**: nist-sp-800-53-rev5-at-awareness-training-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Awareness and Training (AT) (AT) family of NIST SP 800-53 Rev 5 contains 6 base controls (AT-1 onward) that establish the security and privacy obligations for awareness and training. The AT family... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-at-awareness-training-family.json #### NIST SP 800-53 Rev 5 - Audit and Accountability (AU) Family - **ID**: nist-sp-800-53-rev5-au-audit-and-accountability-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Audit and Accountability (AU) (AU) family of NIST SP 800-53 Rev 5 contains 16 base controls (AU-1 onward) that establish the security and privacy obligations for audit and accountability. The AU f... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-au-audit-and-accountability-family.json #### NIST SP 800-53 Rev 5 - Assessment, Authorization, and Monitoring (CA) Family - **ID**: nist-sp-800-53-rev5-ca-assessment-authorization-monitoring-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Assessment, Authorization, and Monitoring (CA) (CA) family of NIST SP 800-53 Rev 5 contains 9 base controls (CA-1 onward) that establish the security and privacy obligations for assessment, author... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-ca-assessment-authorization-monitoring-family.json #### NIST SP 800-53 Rev 5 - Configuration Management (CM) Family - **ID**: nist-sp-800-53-rev5-cm-configuration-management-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Configuration Management (CM) (CM) family of NIST SP 800-53 Rev 5 contains 14 base controls (CM-1 onward) that establish the security and privacy obligations for configuration management. The CM f... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-cm-configuration-management-family.json #### NIST SP 800-53 Rev 5 - Contingency Planning (CP) Family - **ID**: nist-sp-800-53-rev5-cp-contingency-planning-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Contingency Planning (CP) (CP) family of NIST SP 800-53 Rev 5 contains 13 base controls (CP-1 onward) that establish the security and privacy obligations for contingency planning. The CP family co... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-cp-contingency-planning-family.json #### NIST SP 800-53 Rev 5 - Identification and Authentication (IA) Family - **ID**: nist-sp-800-53-rev5-ia-identification-authentication-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Identification and Authentication (IA) family of NIST SP 800-53 Rev 5 contains 13 base controls (IA-1 through IA-13) that govern how organizations uniquely identify and authenticate users, devices... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-ia-identification-authentication-family.json #### NIST SP 800-53 Rev 5 - Incident Response (IR) Family - **ID**: nist-sp-800-53-rev5-ir-incident-response-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Incident Response (IR) family of NIST SP 800-53 Rev 5 contains 10 base controls (IR-1 through IR-10) that establish the organizational and technical foundations of an incident response capability ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-ir-incident-response-family.json #### NIST SP 800-53 Rev 5 - Maintenance (MA) Family - **ID**: nist-sp-800-53-rev5-ma-maintenance-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Maintenance (MA) (MA) family of NIST SP 800-53 Rev 5 contains 7 base controls (MA-1 onward) that establish the security and privacy obligations for maintenance. The MA family covers controlled mai... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-ma-maintenance-family.json #### NIST SP 800-53 Rev 5 - Media Protection (MP) Family - **ID**: nist-sp-800-53-rev5-mp-media-protection-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Media Protection (MP) (MP) family of NIST SP 800-53 Rev 5 contains 8 base controls (MP-1 onward) that establish the security and privacy obligations for media protection. The MP family covers medi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-mp-media-protection-family.json #### NIST SP 800-53 Rev 5 - Physical and Environmental Protection (PE) Family - **ID**: nist-sp-800-53-rev5-pe-physical-and-environmental-protection-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Physical and Environmental Protection (PE) (PE) family of NIST SP 800-53 Rev 5 contains 23 base controls (PE-1 onward) that establish the security and privacy obligations for physical and environm... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-pe-physical-and-environmental-protection-family.json #### NIST SP 800-53 Rev 5 - Planning (PL) Family - **ID**: nist-sp-800-53-rev5-pl-planning-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Planning (PL) (PL) family of NIST SP 800-53 Rev 5 contains 11 base controls (PL-1 onward) that establish the security and privacy obligations for planning. The PL family covers system security and... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-pl-planning-family.json #### NIST SP 800-53 Rev 5 - Program Management (PM) Family - **ID**: nist-sp-800-53-rev5-pm-program-management-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Program Management (PM) (PM) family of NIST SP 800-53 Rev 5 contains 32 base controls (PM-1 onward) that establish the security and privacy obligations for program management. The PM family is org... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-pm-program-management-family.json #### NIST SP 800-53 Rev 5 - Personnel Security (PS) Family - **ID**: nist-sp-800-53-rev5-ps-personnel-security-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Personnel Security (PS) (PS) family of NIST SP 800-53 Rev 5 contains 9 base controls (PS-1 onward) that establish the security and privacy obligations for personnel security. The PS family covers ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-ps-personnel-security-family.json #### NIST SP 800-53 Rev 5 - PII Processing and Transparency (PT) Family - **ID**: nist-sp-800-53-rev5-pt-pii-processing-and-transparency-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The PII Processing and Transparency (PT) (PT) family of NIST SP 800-53 Rev 5 contains 8 base controls (PT-1 onward) that establish the security and privacy obligations for pii processing and transpare... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-pt-pii-processing-and-transparency-family.json #### NIST SP 800-53 Rev 5 - Risk Assessment (RA) Family - **ID**: nist-sp-800-53-rev5-ra-risk-assessment-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Risk Assessment (RA) (RA) family of NIST SP 800-53 Rev 5 contains 10 base controls (RA-1 onward) that establish the security and privacy obligations for risk assessment. The RA family covers secur... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-ra-risk-assessment-family.json #### NIST SP 800-53 Rev 5 - System and Services Acquisition (SA) Family - **ID**: nist-sp-800-53-rev5-sa-system-and-services-acquisition-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The System and Services Acquisition (SA) (SA) family of NIST SP 800-53 Rev 5 contains 24 base controls (SA-1 onward) that establish the security and privacy obligations for system and services acquisi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-sa-system-and-services-acquisition-family.json #### NIST SP 800-53 Rev 5 - System and Communications Protection (SC) Family - **ID**: nist-sp-800-53-rev5-sc-system-and-communications-protection-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The System and Communications Protection (SC) (SC) family of NIST SP 800-53 Rev 5 contains 51 base controls (SC-1 onward) that establish the security and privacy obligations for system and communicati... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-sc-system-and-communications-protection-family.json #### NIST SP 800-53 Rev 5 - System and Information Integrity (SI) Family - **ID**: nist-sp-800-53-rev5-si-system-and-information-integrity-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The System and Information Integrity (SI) (SI) family of NIST SP 800-53 Rev 5 contains 23 base controls (SI-1 onward) that establish the security and privacy obligations for system and information int... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-si-system-and-information-integrity-family.json #### NIST SP 800-53 Rev 5 - Supply Chain Risk Management (SR) Family - **ID**: nist-sp-800-53-rev5-sr-supply-chain-risk-management-family - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Supply Chain Risk Management (SR) (SR) family of NIST SP 800-53 Rev 5 contains 12 base controls (SR-1 onward) that establish the security and privacy obligations for supply chain risk management. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53-rev5-sr-supply-chain-risk-management-family.json #### Control Baselines for Information Systems and Organizations - **ID**: nist-sp-800-53b-control-baselines - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides security and privacy control baselines for the Federal Government. It establishes three security control baselines, one for each system impact level-low-impact, moderate-impa... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53b-control-baselines.json #### Recommendation for Pair-Wise Key Establishment Using Integer Factorization Cryptography - **ID**: nist-sp-800-56b-key-establishment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Recommendation specifies key-establishment schemes using integer factorization cryptography, in particular, RSA. The schemes are appropriate for use by the U.S. Federal Government to support cryp... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-56b-key-establishment.json #### Recommendation for Key Management: Part 1 - General - **ID**: nist-sp-800-57-key-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Recommendation provides cryptographic key-management guidance, focusing on general best practices for the management of cryptographic keying material. The proper management of cryptographic keys ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-57-key-management.json #### Recommendation for Key Management: Part 2 - Best Practices for Key Management Organizations - **ID**: nist-sp-800-57-p2-r1 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication (SP) 800-57 provides cryptographic key management guidance. Part 2 of this recommendation identifies the concepts, functions, and elements common to effective systems for the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-57-p2-r1.json #### Volume II: Appendices to Guide for Mapping Types of Information and Information Systems to Security Categories - **ID**: nist-sp-800-60-v2r1-appendices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Developed by the National Institute of Standards and Technology (NIST) in response to the Federal Information Security Management Act (FISMA), this guideline assists Federal government agencies in cat... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-60-v2r1-appendices.json #### NIST SP 800-61 Rev 2 - Computer Security Incident Handling Guide - **ID**: nist-sp-800-61-incident-response - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide provides a comprehensive framework for U.S. federal agencies, and a best-practice model for all organizations, to establish and manage a computer security incident response capability. It d... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-61-incident-response.json #### Computer Security Incident Handling Guide - **ID**: nist-sp-800-61r2-incident-handling - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Computer security incident response has become an important component of information technology (IT) programs. Because performing incident response effectively is a complex undertaking, establishing a... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-61r2-incident-handling.json #### Computer Security Incident Handling Guide (NIST Special Publication 800-61 Revision 3) - **ID**: nist-sp-800-61r3-incident-response-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides guidelines for preparing for, detecting, analyzing, containing, eradicating, and recovering from cybersecurity incidents. It applies to all organizations that own, operate, o... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-61r3-incident-response-2024.json #### Digital Identity Guidelines: Authentication and Lifecycle Management - **ID**: nist-sp-800-63b-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: These guidelines provide technical requirements for federal agencies implementing digital identity services, but may be used by non-governmental organizations on a voluntary basis. The guidelines focu... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-63b-authentication.json #### NIST Special Publication 800-63B Digital Identity Guidelines: Authentication and Lifecycle Management - **ID**: nist-sp-800-63b-digital-identity - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: These guidelines provide technical requirements for federal agencies implementing digital identity services, focusing on the authentication of subjects interacting with government systems over open ne... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-63b-digital-identity.json #### National Checklist Program for IT Products - Guidelines for Checklist Users and Developers - **ID**: nist-sp-800-70-r4-ncp - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: A security configuration checklist (also called a lockdown or hardening guide) is a series of instructions for configuring an IT product to a particular operational environment, verifying its configur... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-70-r4-ncp.json #### Guide to Operational Technology (OT) Security - **ID**: nist-sp-800-82r3-ot-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document provides guidance on how to secure operational technology (OT) while addressing their unique performance, reliability, and safety requirements. OT encompasses a broad range of programmab... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-82r3-ot-security.json #### Guide to Test, Training, and Exercise Programs for IT Plans and Capabilities - **ID**: nist-sp-800-84-tte-programs - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document provides guidance on designing, developing, conducting, and evaluating test, training, and exercise (TT&E) events so that organizations can improve their ability to prepare for, respond ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-84-tte-programs.json #### Guide to Integrating Forensic Techniques into Incident Response - **ID**: nist-sp-800-86-forensic-techniques - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Digital forensics is the application of science to the identification, collection, examination, and analysis of data while preserving the integrity of the information and maintaining a strict chain of... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-86-forensic-techniques.json #### Guidelines for Media Sanitization - **ID**: nist-sp-800-88-media-sanitization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide assists organizations and system owners in making practical media sanitization decisions based on the categorization of their information's confidentiality. Sanitization is a process that r... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-88-media-sanitization.json #### Recommendation for Random Number Generation Using Deterministic Random Bit Generators - **ID**: nist-sp-800-90a-rev1-drbg - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Recommendation specifies mechanisms for the generation of random bits using deterministic methods. The methods provided are based on either hash functions or block cipher algorithms. A Determinis... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-90a-rev1-drbg.json #### Guide to Computer Security Log Management - **ID**: nist-sp-800-92-log-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: A log is a record of the events occurring within an organization’s systems and networks. The number, volume, and variety of computer security logs have increased greatly, which has created the need fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-92-log-management.json #### Establishing Wireless Robust Security Networks: A Guide to IEEE 802.11i - **ID**: nist-sp-800-97-ieee-802-11i - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide seeks to assist organizations in better understanding the Institute of Electrical and Electronics Engineers (IEEE) 802.11 family of standards for wireless local area networks (WLANs), focus... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-97-ieee-802-11i.json #### Guide for Developing Security Plans for Federal Information Systems - **ID**: nist-sp800-18-developing-security-plans - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The objective of system security planning is to improve protection of information system resources. All federal systems have some level of sensitivity and require protection as part of good management... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp800-18-developing-security-plans.json #### NIST SSDF Practice PO.1 - Define Security Requirements for Software Development - **ID**: nist-ssdf-po-1-define-security-requirements-for-software-development - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PO.1 Define Security Requirements for Software Development from NIST SP 800-218 v1.1 directs organizations to: Ensure that security requirements for software development are known at all... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-po-1-define-security-requirements-for-software-development.json #### NIST SSDF Practice PO.2 - Implement Roles and Responsibilities - **ID**: nist-ssdf-po-2-implement-roles-and-responsibilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PO.2 Implement Roles and Responsibilities from NIST SP 800-218 v1.1 directs organizations to: Ensure that everyone inside and outside of the organization involved in the SDLC is prepared... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-po-2-implement-roles-and-responsibilities.json #### NIST SSDF Practice PO.3 - Implement Supporting Toolchains - **ID**: nist-ssdf-po-3-implement-supporting-toolchains - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PO.3 Implement Supporting Toolchains from NIST SP 800-218 v1.1 directs organizations to: Use automation to reduce human effort and improve the accuracy, reproducibility, usability, and c... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-po-3-implement-supporting-toolchains.json #### NIST SSDF Practice PO.4 - Define and Use Criteria for Software Security Checks - **ID**: nist-ssdf-po-4-define-and-use-criteria-for-software-security-checks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PO.4 Define and Use Criteria for Software Security Checks from NIST SP 800-218 v1.1 directs organizations to: Help ensure that the software resulting from the SDLC meets the organization... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-po-4-define-and-use-criteria-for-software-security-checks.json #### NIST SSDF Practice PO.5 - Implement and Maintain Secure Environments for Software Development - **ID**: nist-ssdf-po-5-implement-and-maintain-secure-environments-for-software-development - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PO.5 Implement and Maintain Secure Environments for Software Development from NIST SP 800-218 v1.1 directs organizations to: Ensure that all components of the environments for software d... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-po-5-implement-and-maintain-secure-environments-for-software-development.json #### NIST SSDF Practice PS.1 - Protect All Forms of Code from Unauthorized Access and Tampering - **ID**: nist-ssdf-ps-1-protect-all-forms-of-code-from-unauthorized-access-and-tampering - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PS.1 Protect All Forms of Code from Unauthorized Access and Tampering from NIST SP 800-218 v1.1 directs organizations to: Help prevent unauthorized changes to code, both inadvertent and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-ps-1-protect-all-forms-of-code-from-unauthorized-access-and-tampering.json #### NIST SSDF Practice PS.2 - Provide a Mechanism for Verifying Software Release Integrity - **ID**: nist-ssdf-ps-2-provide-a-mechanism-for-verifying-software-release-integrity - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PS.2 Provide a Mechanism for Verifying Software Release Integrity from NIST SP 800-218 v1.1 directs organizations to: Help software acquirers ensure that the software they acquire is leg... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-ps-2-provide-a-mechanism-for-verifying-software-release-integrity.json #### NIST SSDF Practice PS.3 - Archive and Protect Each Software Release - **ID**: nist-ssdf-ps-3-archive-and-protect-each-software-release - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PS.3 Archive and Protect Each Software Release from NIST SP 800-218 v1.1 directs organizations to: Preserve software releases in order to help identify, analyze, and eliminate vulnerabil... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-ps-3-archive-and-protect-each-software-release.json #### NIST SSDF Practice PW.1 - Design Software to Meet Security Requirements and Mitigate Security Risks - **ID**: nist-ssdf-pw-1-design-software-to-meet-security-requirements-and-mitigate-security-ri - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PW.1 Design Software to Meet Security Requirements and Mitigate Security Risks from NIST SP 800-218 v1.1 directs organizations to: Identify and evaluate the security requirements for the... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-pw-1-design-software-to-meet-security-requirements-and-mitigate-security-ri.json #### NIST SSDF Practice PW.2 - Review the Software Design to Verify Compliance with Security Requirements and Risk Information - **ID**: nist-ssdf-pw-2-review-the-software-design-to-verify-compliance-with-security-requirem - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PW.2 Review the Software Design to Verify Compliance with Security Requirements and Risk Information from NIST SP 800-218 v1.1 directs organizations to: Help ensure that the software wil... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-pw-2-review-the-software-design-to-verify-compliance-with-security-requirem.json #### NIST SSDF Practice PW.4 - Reuse Existing, Well-Secured Software When Feasible Instead of Duplicating Functionality - **ID**: nist-ssdf-pw-4-reuse-existing-well-secured-software-when-feasible-instead-of-duplicat - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PW.4 Reuse Existing, Well-Secured Software When Feasible Instead of Duplicating Functionality from NIST SP 800-218 v1.1 directs organizations to: Lower the costs of software development,... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-pw-4-reuse-existing-well-secured-software-when-feasible-instead-of-duplicat.json #### NIST SSDF Practice PW.5 - Create Source Code by Adhering to Secure Coding Practices - **ID**: nist-ssdf-pw-5-create-source-code-by-adhering-to-secure-coding-practices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PW.5 Create Source Code by Adhering to Secure Coding Practices from NIST SP 800-218 v1.1 directs organizations to: Decrease the number of security vulnerabilities in the software, and re... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-pw-5-create-source-code-by-adhering-to-secure-coding-practices.json #### NIST SSDF Practice PW.6 - Configure the Compilation, Interpreter, and Build Processes to Improve Executable Security - **ID**: nist-ssdf-pw-6-configure-the-compilation-interpreter-and-build-processes-to-improve-e - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PW.6 Configure the Compilation, Interpreter, and Build Processes to Improve Executable Security from NIST SP 800-218 v1.1 directs organizations to: Decrease the number of security vulner... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-pw-6-configure-the-compilation-interpreter-and-build-processes-to-improve-e.json #### NIST SSDF Practice PW.7 - Review and/or Analyze Human-Readable Code to Identify Vulnerabilities and Verify Compliance with Security Requirements - **ID**: nist-ssdf-pw-7-review-andor-analyze-human-readable-code-to-identify-vulnerabilities-a - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PW.7 Review and/or Analyze Human-Readable Code to Identify Vulnerabilities and Verify Compliance with Security Requirements from NIST SP 800-218 v1.1 directs organizations to: Help ident... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-pw-7-review-andor-analyze-human-readable-code-to-identify-vulnerabilities-a.json #### NIST SSDF Practice PW.8 - Test Executable Code to Identify Vulnerabilities and Verify Compliance with Security Requirements - **ID**: nist-ssdf-pw-8-test-executable-code-to-identify-vulnerabilities-and-verify-compliance - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PW.8 Test Executable Code to Identify Vulnerabilities and Verify Compliance with Security Requirements from NIST SP 800-218 v1.1 directs organizations to: Help identify vulnerabilities s... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-pw-8-test-executable-code-to-identify-vulnerabilities-and-verify-compliance.json #### NIST SSDF Practice PW.9 - Configure Software to Have Secure Settings by Default - **ID**: nist-ssdf-pw-9-configure-software-to-have-secure-settings-by-default - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice PW.9 Configure Software to Have Secure Settings by Default from NIST SP 800-218 v1.1 directs organizations to: Help improve the security of the software at the time of installation to re... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-pw-9-configure-software-to-have-secure-settings-by-default.json #### NIST SSDF Practice RV.1 - Identify and Confirm Vulnerabilities on an Ongoing Basis - **ID**: nist-ssdf-rv-1-identify-and-confirm-vulnerabilities-on-an-ongoing-basis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice RV.1 Identify and Confirm Vulnerabilities on an Ongoing Basis from NIST SP 800-218 v1.1 directs organizations to: Help ensure that vulnerabilities are identified more quickly so that the... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-rv-1-identify-and-confirm-vulnerabilities-on-an-ongoing-basis.json #### NIST SSDF Practice RV.2 - Assess, Prioritize, and Remediate Vulnerabilities - **ID**: nist-ssdf-rv-2-assess-prioritize-and-remediate-vulnerabilities - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice RV.2 Assess, Prioritize, and Remediate Vulnerabilities from NIST SP 800-218 v1.1 directs organizations to: Help ensure that vulnerabilities are remediated in accordance with risk to redu... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-rv-2-assess-prioritize-and-remediate-vulnerabilities.json #### NIST SSDF Practice RV.3 - Analyze Vulnerabilities to Identify Their Root Causes - **ID**: nist-ssdf-rv-3-analyze-vulnerabilities-to-identify-their-root-causes - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SSDF Practice RV.3 Analyze Vulnerabilities to Identify Their Root Causes from NIST SP 800-218 v1.1 directs organizations to: Help reduce the frequency of vulnerabilities in the future. Implementation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ssdf-rv-3-analyze-vulnerabilities-to-identify-their-root-causes.json #### Mitigating Cybersecurity and Privacy Risks in Telehealth Smart Home Integration - **ID**: nist-telehealth-smart-home-integration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This paper introduces a notional high-level smart home integration reference architecture to better understand cybersecurity and privacy risks associated with Hospital-at-Home (HaH) deployments in the... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-telehealth-smart-home-integration.json #### Glossary of Key Information Security Terms - **ID**: nistir-7298r3-glossary-security-terms - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication, NISTIR 7298 Revision 3, describes an easily-accessible repository of terms and definitions extracted verbatim from National Institute of Standards and Technology (NIST) publications ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nistir-7298r3-glossary-security-terms.json #### NISTIR 8114 Report on Lightweight Cryptography - **ID**: nistir-8114-lightweight-cryptography - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST-approved cryptographic standards were designed to perform well on general-purpose computers, but their performance may not be acceptable for the increasing number of small, resource-constrained c... - **Discovery URL**: https://bidda.com/api/v1/nodes/nistir-8114-lightweight-cryptography.json #### NISTIR 8183 Cybersecurity Framework Manufacturing Profile - **ID**: nistir-8183-manufacturing-profile - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This document provides the Cybersecurity Framework (CSF) implementation details developed for the manufacturing environment. The “Manufacturing Profile” of the Cybersecurity Framework can be used as a... - **Discovery URL**: https://bidda.com/api/v1/nodes/nistir-8183-manufacturing-profile.json #### NISTIR 8228 Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks - **ID**: nistir-8228-iot-cybersecurity-risks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Internet of Things (IoT) is a rapidly evolving and expanding collection of diverse technologies that interact with the physical world. The purpose of this publication is to help federal agencies a... - **Discovery URL**: https://bidda.com/api/v1/nodes/nistir-8228-iot-cybersecurity-risks.json #### NISTIR 8259A IoT Device Cybersecurity Capability Core Baseline - **ID**: nistir-8259a-iot-device-cybersecurity - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication defines an Internet of Things (IoT) device cybersecurity capability core baseline, which is a set of device capabilities generally needed to support common cybersecurity controls that... - **Discovery URL**: https://bidda.com/api/v1/nodes/nistir-8259a-iot-device-cybersecurity.json #### Blockchain and Related Technologies to Support Manufacturing Supply Chain Traceability: Needs and Industry Perspectives - **ID**: nistir-8419-supply-chain-traceability - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication explores the issues surrounding supply chain traceability, assessing the role blockchain and related technologies can play in its improvement. It targets all stakeholders in the U.S. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nistir-8419-supply-chain-traceability.json #### Norway Personal Data Act 2018 (Personopplysningsloven) - GDPR Implementation in the EEA - **ID**: no-personopplysningsloven-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Norwegian Personal Data Act 2018 (Personopplysningsloven, Lov om behandling av personopplysninger, enacted 15 June 2018, entry into force 20 July 2018) incorporates the EU General Data Protection ... - **Discovery URL**: https://bidda.com/api/v1/nodes/no-personopplysningsloven-2018.json #### Norway Personal Data Act 2018 (Personopplysningsloven) - EEA GDPR Implementation - **ID**: no-pol-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Norway's Personopplysningsloven (Personal Data Act, LOV-2018-06-15-38), adopted by the Storting (Norwegian Parliament) on 15 June 2018 and in force from 20 July 2018, is Norway's primary national data... - **Discovery URL**: https://bidda.com/api/v1/nodes/no-pol-2018.json #### Nauru - Constitutional Privacy Rights and Pacific Islands Forum Data Protection Framework - **ID**: nr-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Republic of Nauru, a small island state in the Central Pacific, has a legal system influenced by Australian common law and legislation. The Constitution of Nauru establishes fundamental rights inc... - **Discovery URL**: https://bidda.com/api/v1/nodes/nr-framework.json #### Niue - Constitutional Privacy Rights and Pacific Islands Forum Data Protection Framework - **ID**: nu-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Niue is a self-governing state in free association with New Zealand, located in the South Pacific Ocean. Niue has its own constitution established under the Niue Constitution Act 1974 (New Zealand), w... - **Discovery URL**: https://bidda.com/api/v1/nodes/nu-framework.json #### NYDFS Part 500 Cybersecurity Regulation v2.0 2023 - 23 NYCRR 500 Amended: Class A Company Requirements, Penetration Testing, EDR, MFA Mandates, 72-Hour Incident Notification, CISO Reporting to Board, Third-Party Service Provider Security Policy and Annual Compliance Certification - **ID**: nydfs-part-500-cybersecurity-v2-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The NYDFS Part 500 regulation mandates that Covered Entities, including financial services companies operating under New York law, implement a robust cybersecurity program, conduct annual penetration ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nydfs-part-500-cybersecurity-v2-2023.json #### New Zealand Films, Videos, and Publications Classification Act 1993 (FVPCA) with 2021 Urgent Interim Classification and Prevention of Online Harm Amendment - Section 3 Objectionable Publications, Part 7A Take-Down Notices, Section 119E Civil Pecuniary Penalty, Chief Censor and DIA Digital Safety Group - **ID**: nz-films-videos-publications-classification-act-1993-2021-amendment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The New Zealand Films, Videos, and Publications Classification Act 1993 (FVPCA, Act No. 94 of 1993) is the statutory classification regime for films, videos, and publications including online content;... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-films-videos-publications-classification-act-1993-2021-amendment.json #### New Zealand Harmful Digital Communications Act 2015 - **ID**: nz-hdca-2015 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: New Zealand's Harmful Digital Communications Act 2015 (No 63) effective July 3, 2015 establishes ten communication principles prohibiting digital communications that are threatening, intimidating, off... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-hdca-2015.json #### New Zealand Information Security Manual 2023 (NZISM Version 3.7) - **ID**: nz-nzism-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NZISM Version 3.7 published 2023 by the Government Communications Security Bureau is the mandatory information security standard for New Zealand government agencies handling official, sensitive, or cl... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-nzism-2023.json #### OASIS CACAO Security Playbooks Version 2.0 CS01 (Collaborative Automated Course of Action Operations, Workflow Step Types, 13 Command Types, STIX 2.1 Integration, OpenC2 Pairing) - **ID**: oasis-cacao-v2-0-security-playbooks - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OASIS CACAO Security Playbooks Version 2.0, Committee Specification 01, dated 27 November 2023, defines a standardised JSON-based framework for cybersecurity playbooks - workflows for security orchest... - **Discovery URL**: https://bidda.com/api/v1/nodes/oasis-cacao-v2-0-security-playbooks.json #### OASIS CSAF 2.0 Common Security Advisory Framework (Profile 1 Base, Profile 2 Security Incident Response, Profile 3 Informational Advisory, Profile 4 Security Advisory, Profile 5 VEX; JSON schema; CVRF 1.2 successor) - **ID**: oasis-csaf-2-0-common-security-advisory-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OASIS Common Security Advisory Framework (CSAF) version 2.0 is the OASIS-published machine-readable standard for security advisory documents and is governed by the OASIS Common Security Advisory Frame... - **Discovery URL**: https://bidda.com/api/v1/nodes/oasis-csaf-2-0-common-security-advisory-framework.json #### OASIS OpenC2 Language Specification Version 1.0 CS02 (Open Command and Control, Action, Target, Args, Actuator, SLPF Actuator Profile, JSON Serialisation, HTTPS Transport) - **ID**: oasis-openc2-v1-0-cs02-command-control - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OASIS OpenC2 (Open Command and Control) Language Specification Version 1.0, Committee Specification 02, dated 24 November 2019, defines a concise and extensible language to enable machine-to-machine c... - **Discovery URL**: https://bidda.com/api/v1/nodes/oasis-openc2-v1-0-cs02-command-control.json #### OASIS STIX Version 2.1 OASIS Standard (Structured Threat Information eXpression, STIX Domain Objects, Relationship Objects, Cyber Observable Objects, Patterning Language) - **ID**: oasis-stix-2-1-structured-threat-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: STIX Version 2.1, ratified as an OASIS Standard on 10 June 2021, is the canonical JSON-based language and serialisation for representing Cyber Threat Intelligence (CTI). STIX 2.1 defines STIX Domain O... - **Discovery URL**: https://bidda.com/api/v1/nodes/oasis-stix-2-1-structured-threat-information.json #### OCSF Open Cybersecurity Schema Framework Version 1.8.0 (Categories, Event Classes, Objects, Profiles, Extensions, Schema Browser at schema.ocsf.io) - **ID**: ocsf-open-cybersecurity-schema-framework-1-8-0 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Open Cybersecurity Schema Framework (OCSF) is an open, vendor-agnostic, normalized JSON schema for security event data. OCSF version 1.8.0 was released on 18 March 2026 by the OCSF project on GitH... - **Discovery URL**: https://bidda.com/api/v1/nodes/ocsf-open-cybersecurity-schema-framework-1-8-0.json #### Oman Personal Data Protection Law 2022 - ITA - **ID**: om-pdpl-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Oman's Personal Data Protection Law (PDPL) - Royal Decree No. 6/2022, issued by His Majesty Sultan Haitham bin Tarik on 9 February 2022 and published in the Official Gazette of Oman - is Oman's first ... - **Discovery URL**: https://bidda.com/api/v1/nodes/om-pdpl-2022.json #### Ordered t-way Combinations for Testing State-based Systems - **ID**: ordered-t-way-combination-testing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication introduces a notion of ordered t-way combinations for testing state-based systems where the response depends on both input values and the current system state. In such systems, like n... - **Discovery URL**: https://bidda.com/api/v1/nodes/ordered-t-way-combination-testing.json #### Ordered t-way Combinations for Testing State-based Systems - **ID**: ordered-t-way-combinations-testing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Fault detection in state-based systems often depends on the specific order of inputs that establish states which eventually lead to a failure. For systems where the response depends on both input valu... - **Discovery URL**: https://bidda.com/api/v1/nodes/ordered-t-way-combinations-testing.json #### OWASP Top 10 for LLMs & Agents - **ID**: owasp-agentic-top10 - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: Operationalizing the security framework delineated by the Open Web Application Security Project's Top 10 for Large Language Model Applications, this compliance control set establishes stringent polici... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-agentic-top10.json #### API1:2023 Broken Object Level Authorization - **ID**: owasp-api-top-10-2023-api01-broken-object-level-authorization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OWASP API Security Top 10 (2023) API1:2023 Broken Object Level Authorization. Object level authorization is an access control mechanism that is usually implemented at the code level to validate that a... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-api-top-10-2023-api01-broken-object-level-authorization.json #### API2:2023 Broken Authentication - **ID**: owasp-api-top-10-2023-api02-broken-authentication - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OWASP API Security Top 10 (2023) API2:2023 Broken Authentication. Authentication endpoints and flows are assets that need to be protected. Additionally, "Forgot password / reset password" should be tr... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-api-top-10-2023-api02-broken-authentication.json #### API3:2023 Broken Object Property Level Authorization - **ID**: owasp-api-top-10-2023-api03-broken-object-property-level-authorization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OWASP API Security Top 10 (2023) API3:2023 Broken Object Property Level Authorization. When allowing a user to access an object using an API endpoint, it is important to validate that the user has acc... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-api-top-10-2023-api03-broken-object-property-level-authorization.json #### API4:2023 Unrestricted Resource Consumption - **ID**: owasp-api-top-10-2023-api04-unrestricted-resource-consumption - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OWASP API Security Top 10 (2023) API4:2023 Unrestricted Resource Consumption. Satisfying API requests requires resources such as network bandwidth, CPU, memory, and storage. Sometimes required resourc... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-api-top-10-2023-api04-unrestricted-resource-consumption.json #### API5:2023 Broken Function Level Authorization - **ID**: owasp-api-top-10-2023-api05-broken-function-level-authorization - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OWASP API Security Top 10 (2023) API5:2023 Broken Function Level Authorization. The best way to find broken function level authorization issues is to perform a deep analysis of the authorization mecha... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-api-top-10-2023-api05-broken-function-level-authorization.json #### API6:2023 Unrestricted Access to Sensitive Business Flows - **ID**: owasp-api-top-10-2023-api06-unrestricted-access-to-sensitive-business-flows - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OWASP API Security Top 10 (2023) API6:2023 Unrestricted Access to Sensitive Business Flows. When creating an API Endpoint, it is important to understand which business flow it exposes. Some business f... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-api-top-10-2023-api06-unrestricted-access-to-sensitive-business-flows.json #### API7:2023 Server Side Request Forgery - **ID**: owasp-api-top-10-2023-api07-server-side-request-forgery - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OWASP API Security Top 10 (2023) API7:2023 Server Side Request Forgery. Server-Side Request Forgery (SSRF) flaws occur when an API is fetching a remote resource without validating the user-supplied UR... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-api-top-10-2023-api07-server-side-request-forgery.json #### API8:2023 Security Misconfiguration - **ID**: owasp-api-top-10-2023-api08-security-misconfiguration - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OWASP API Security Top 10 (2023) API8:2023 Security Misconfiguration. The API might be vulnerable if: * Appropriate security hardening is missing across any part of the API stack, or if there are impr... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-api-top-10-2023-api08-security-misconfiguration.json #### API9:2023 Improper Inventory Management - **ID**: owasp-api-top-10-2023-api09-improper-inventory-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OWASP API Security Top 10 (2023) API9:2023 Improper Inventory Management. The sprawled and connected nature of APIs and modern applications brings new challenges. It is important for organizations not... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-api-top-10-2023-api09-improper-inventory-management.json #### API10:2023 Unsafe Consumption of APIs - **ID**: owasp-api-top-10-2023-api10-unsafe-consumption-of-apis - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OWASP API Security Top 10 (2023) API10:2023 Unsafe Consumption of APIs. Developers tend to trust data received from third-party APIs more than user input. This is especially true for APIs offered by w... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-api-top-10-2023-api10-unsafe-consumption-of-apis.json #### OWASP ASVS v4 V1: Architecture, Design and Threat Modeling - **ID**: owasp-asvs-v4-v1-architecture-design-and-threat-modeling-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V1: Architecture, Design and Threat Modeling. Control Objective from ASVS v4: Security architecture has almost become a lost art in many orga... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v1-architecture-design-and-threat-modeling-chapter.json #### OWASP ASVS v4 V10: Malicious Code - **ID**: owasp-asvs-v4-v10-malicious-code-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V10: Malicious Code. Control Objective from ASVS v4: Ensure that code satisfies the following high level requirements: * Malicious activity i... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v10-malicious-code-chapter.json #### OWASP ASVS v4 V11: Business Logic - **ID**: owasp-asvs-v4-v11-business-logic-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V11: Business Logic. Control Objective from ASVS v4: Ensure that a verified application satisfies the following high level requirements: * Th... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v11-business-logic-chapter.json #### OWASP ASVS v4 V12: Files and Resources - **ID**: owasp-asvs-v4-v12-files-and-resources-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V12: Files and Resources. Control Objective from ASVS v4: Ensure that a verified application satisfies the following high level requirements:... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v12-files-and-resources-chapter.json #### OWASP ASVS v4 V13: API and Web Service - **ID**: owasp-asvs-v4-v13-api-and-web-service-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V13: API and Web Service. Control Objective from ASVS v4: Ensure that a verified application that uses trusted service layer APIs (commonly u... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v13-api-and-web-service-chapter.json #### OWASP ASVS v4 V14: Configuration - **ID**: owasp-asvs-v4-v14-configuration-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V14: Configuration. Control Objective from ASVS v4: Ensure that a verified application has: * A secure, repeatable, automatable build environ... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v14-configuration-chapter.json #### OWASP ASVS v4 V2: Authentication - **ID**: owasp-asvs-v4-v2-authentication-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V2: Authentication. Control Objective from ASVS v4: Authentication is the act of establishing, or confirming, someone (or something) as authe... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v2-authentication-chapter.json #### OWASP ASVS v4 V3: Session Management - **ID**: owasp-asvs-v4-v3-session-management-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V3: Session Management. Control Objective from ASVS v4: One of the core components of any web-based application or stateful API is the mechan... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v3-session-management-chapter.json #### OWASP ASVS v4 V4: Access Control - **ID**: owasp-asvs-v4-v4-access-control-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V4: Access Control. Control Objective from ASVS v4: Authorization is the concept of allowing access to resources only to those permitted to u... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v4-access-control-chapter.json #### OWASP ASVS v4 V5: Validation, Sanitization and Encoding - **ID**: owasp-asvs-v4-v5-validation-sanitization-and-encoding-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V5: Validation, Sanitization and Encoding. Control Objective from ASVS v4: The most common web application security weakness is the failure t... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v5-validation-sanitization-and-encoding-chapter.json #### OWASP ASVS v4 V6: Stored Cryptography - **ID**: owasp-asvs-v4-v6-stored-cryptography-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V6: Stored Cryptography. Control Objective from ASVS v4: Ensure that a verified application satisfies the following high level requirements: ... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v6-stored-cryptography-chapter.json #### OWASP ASVS v4 V7: Error Handling and Logging - **ID**: owasp-asvs-v4-v7-error-handling-and-logging-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V7: Error Handling and Logging. Control Objective from ASVS v4: The primary objective of error handling and logging is to provide useful info... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v7-error-handling-and-logging-chapter.json #### OWASP ASVS v4 V8: Data Protection - **ID**: owasp-asvs-v4-v8-data-protection-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V8: Data Protection. Control Objective from ASVS v4: There are three key elements to sound data protection: Confidentiality, Integrity and Av... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v8-data-protection-chapter.json #### OWASP ASVS v4 V9: Communication - **ID**: owasp-asvs-v4-v9-communication-chapter - **Category**: Cybersecurity - **Version**: 4.0.3 - **BLUF**: OWASP ASVS v4 (Application Security Verification Standard) V9: Communication. Control Objective from ASVS v4: Ensure that a verified application meets the following high level requirements: * Require ... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-v4-v9-communication-chapter.json #### Prompt Injection Prevention (OWASP LLM01) - **ID**: owasp-llm-1 - **Category**: Cybersecurity - **Version**: 1.1.1 - **BLUF**: Prompt Injection (LLM01) occurs when an attacker manipulates an LLM via crafted inputs to override system instructions. Prevention requires strict input sanitization, separation of data from instructi... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-1.json #### Insecure Output Handling (OWASP LLM02) - **ID**: owasp-llm-2 - **Category**: Cybersecurity - **Version**: 1.1.1 - **BLUF**: Insecure Output Handling (LLM02) occurs when an application trustingly processes LLM-generated output without validation, potentially leading to XSS, CSRF, or SSRF in downstream systems. - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-llm-2.json #### OWASP MASVS v2 - MASVS-AUTH Authentication and Authorization Category - **ID**: owasp-masvs-auth-authentication-and-authorization-category - **Category**: Cybersecurity - **Version**: 2.1.0 - **BLUF**: OWASP MASVS v2 (Mobile Application Security Verification Standard) - MASVS-AUTH Authentication and Authorization. Authentication and authorization are essential components of most mobile apps, especia... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-masvs-auth-authentication-and-authorization-category.json #### OWASP MASVS v2 - MASVS-CODE Code Quality and Build Setting Category - **ID**: owasp-masvs-code-code-quality-and-build-setting-category - **Category**: Cybersecurity - **Version**: 2.1.0 - **BLUF**: OWASP MASVS v2 (Mobile Application Security Verification Standard) - MASVS-CODE Code Quality and Build Setting. Mobile apps have many data entry points, including the UI, IPC, network, and file system... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-masvs-code-code-quality-and-build-setting-category.json #### OWASP MASVS v2 - MASVS-CRYPTO Cryptography Category - **ID**: owasp-masvs-crypto-cryptography-category - **Category**: Cybersecurity - **Version**: 2.1.0 - **BLUF**: OWASP MASVS v2 (Mobile Application Security Verification Standard) - MASVS-CRYPTO Cryptography. Cryptography is essential for mobile apps because mobile devices are highly portable and can be easily l... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-masvs-crypto-cryptography-category.json #### OWASP MASVS v2 - MASVS-NETWORK Network Communication Category - **ID**: owasp-masvs-network-network-communication-category - **Category**: Cybersecurity - **Version**: 2.1.0 - **BLUF**: OWASP MASVS v2 (Mobile Application Security Verification Standard) - MASVS-NETWORK Network Communication. Secure networking is a critical aspect of mobile app security, particularly for apps that comm... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-masvs-network-network-communication-category.json #### OWASP MASVS v2 - MASVS-PLATFORM Platform Interaction Category - **ID**: owasp-masvs-platform-platform-interaction-category - **Category**: Cybersecurity - **Version**: 2.1.0 - **BLUF**: OWASP MASVS v2 (Mobile Application Security Verification Standard) - MASVS-PLATFORM Platform Interaction. The security of mobile apps heavily depends on their interaction with the mobile platform, whi... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-masvs-platform-platform-interaction-category.json #### OWASP MASVS v2 - MASVS-PRIVACY Privacy Category - **ID**: owasp-masvs-privacy-privacy-category - **Category**: Cybersecurity - **Version**: 2.1.0 - **BLUF**: OWASP MASVS v2 (Mobile Application Security Verification Standard) - MASVS-PRIVACY category. The main goal of MASVS-PRIVACY is to provide a **baseline for user privacy**. It is not intended to cover a... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-masvs-privacy-privacy-category.json #### OWASP MASVS v2 - MASVS-RESILIENCE Resilience Against Reverse Engineering and Tampering Category - **ID**: owasp-masvs-resilience-resilience-against-reverse-engineering-and-tampering-category - **Category**: Cybersecurity - **Version**: 2.1.0 - **BLUF**: OWASP MASVS v2 (Mobile Application Security Verification Standard) - MASVS-RESILIENCE category. Defense-in-depth measures such as code obfuscation, anti-debugging, anti-tampering, and runtime applicat... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-masvs-resilience-resilience-against-reverse-engineering-and-tampering-category.json #### OWASP MASVS v2 - MASVS-STORAGE Storage Category - **ID**: owasp-masvs-storage-storage-category - **Category**: Cybersecurity - **Version**: 2.1.0 - **BLUF**: OWASP MASVS v2 (Mobile Application Security Verification Standard) - MASVS-STORAGE Storage. Mobile applications handle a wide variety of sensitive data, such as personally identifiable information (PI... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-masvs-storage-storage-category.json #### OWASP SAMM v2.1 Software Assurance Maturity Model (5 Business Functions; 15 Security Practices; Maturity Levels 1, 2, 3; Stream A and Stream B Assessment) - **ID**: owasp-samm-v2-1-software-assurance-maturity-model - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OWASP SAMM (Software Assurance Maturity Model) version 2.1 is the OWASP-published prescriptive framework for measuring and improving the software security posture of an organisation; it is governed by... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-1-software-assurance-maturity-model.json #### OWASP SAMM v2 - Design - Secure Architecture Practice - **ID**: owasp-samm-v2-design-secure-architecture-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Design business function, Secure Architecture security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software security... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-design-secure-architecture-practice.json #### OWASP SAMM v2 - Design - Security Requirements Practice - **ID**: owasp-samm-v2-design-security-requirements-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Design business function, Security Requirements security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software securi... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-design-security-requirements-practice.json #### OWASP SAMM v2 - Design - Threat Assessment Practice - **ID**: owasp-samm-v2-design-threat-assessment-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Design business function, Threat Assessment security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software security a... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-design-threat-assessment-practice.json #### OWASP SAMM v2 - Governance - Education & Guidance Practice - **ID**: owasp-samm-v2-governance-education-guidance-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Governance business function, Education & Guidance security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-governance-education-guidance-practice.json #### OWASP SAMM v2 - Governance - Policy & Compliance Practice - **ID**: owasp-samm-v2-governance-policy-compliance-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Governance business function, Policy & Compliance security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software secu... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-governance-policy-compliance-practice.json #### OWASP SAMM v2 - Governance - Strategy & Metrics Practice - **ID**: owasp-samm-v2-governance-strategy-metrics-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Governance business function, Strategy & Metrics security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software secur... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-governance-strategy-metrics-practice.json #### OWASP SAMM v2 - Implementation - Defect Management Practice - **ID**: owasp-samm-v2-implementation-defect-management-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Implementation business function, Defect Management security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software se... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-implementation-defect-management-practice.json #### OWASP SAMM v2 - Implementation - Secure Build Practice - **ID**: owasp-samm-v2-implementation-secure-build-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Implementation business function, Secure Build security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software securit... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-implementation-secure-build-practice.json #### OWASP SAMM v2 - Implementation - Secure Deployment Practice - **ID**: owasp-samm-v2-implementation-secure-deployment-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Implementation business function, Secure Deployment security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software se... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-implementation-secure-deployment-practice.json #### OWASP SAMM v2 - Operations - Environment Management Practice - **ID**: owasp-samm-v2-operations-environment-management-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Operations business function, Environment Management security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software s... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-operations-environment-management-practice.json #### OWASP SAMM v2 - Operations - Incident Management Practice - **ID**: owasp-samm-v2-operations-incident-management-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Operations business function, Incident Management security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software secu... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-operations-incident-management-practice.json #### OWASP SAMM v2 - Operations - Operational Management Practice - **ID**: owasp-samm-v2-operations-operational-management-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Operations business function, Operational Management security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software s... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-operations-operational-management-practice.json #### OWASP SAMM v2 - Verification - Architecture Assessment Practice - **ID**: owasp-samm-v2-verification-architecture-assessment-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Verification business function, Architecture Assessment security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving softwar... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-verification-architecture-assessment-practice.json #### OWASP SAMM v2 - Verification - Requirements Testing Practice - **ID**: owasp-samm-v2-verification-requirements-testing-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Verification business function, Requirements Testing security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software s... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-verification-requirements-testing-practice.json #### OWASP SAMM v2 - Verification - Security Testing Practice - **ID**: owasp-samm-v2-verification-security-testing-practice - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: OWASP SAMM v2 (Software Assurance Maturity Model) - Verification business function, Security Testing security practice. SAMM v2 is OWASP's prescriptive model for measuring and improving software secur... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-samm-v2-verification-security-testing-practice.json #### Panama Personal Data Protection Law No. 81 of 2019 - AIG - **ID**: pa-pdp-law-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Panama's Ley No. 81 de 26 de marzo de 2019 'Sobre Protección de Datos Personales' (Personal Data Protection Law) - published in the Gaceta Oficial (official gazette) No. 28743-A on 29 March 2019 - is ... - **Discovery URL**: https://bidda.com/api/v1/nodes/pa-pdp-law-2019.json #### Payment Processing Rules for Restricted Content Services (Visa Integrity Risk Program VIRP; Mastercard AN 5196 Specialty Merchant Standards; Documented Consent, Age and Identity Verification, Content Pre-Screening, Seven-Day Complaint Resolution) - **ID**: payment-processing-restricted-content-visa-virp-mastercard-an-5196 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Operators of restricted-content services that accept Visa and Mastercard payments must satisfy two parallel card-network compliance regimes: the Visa Integrity Risk Program (VIRP) and the Mastercard S... - **Discovery URL**: https://bidda.com/api/v1/nodes/payment-processing-restricted-content-visa-virp-mastercard-an-5196.json #### PCI DSS 4.0 Enterprise Compliance Standard v21 - **ID**: pci-dss-4-0-compliance-2026-21 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The PCI DSS 4.0 standard outlines comprehensive security measures for organizations that handle cardholder data. It emphasizes the importance of protecting cardholder data through encryption, access c... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-4-0-compliance-2026-21.json #### PCI DSS 4.0 Enterprise Compliance Standard v6 - **ID**: pci-dss-4-0-compliance-2026-6 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The PCI DSS 4.0 standard outlines comprehensive security measures to protect cardholder data and ensure secure payment transactions. It mandates organizations to implement robust security controls, in... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-4-0-compliance-2026-6.json #### PCI DSS v4.0 Requirement 1.2: Network Security Controls to Restrict Connections Between Untrusted Networks and the CDE - **ID**: pci-dss-v4-req-1-2-network-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This requirement mandates that entities implement and configure Network Security Controls (NSCs), such as firewalls, to restrict all network connections between untrusted networks (e.g., the internet)... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-req-1-2-network-security.json #### Payment Card Industry Data Security Standard (PCI DSS) v4.0: Requirements 10, 11, and 12 - Logging, Monitoring, Testing, and Policy - **ID**: pci-dss-v4-req-10-12-monitoring-policy - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: PCI DSS Requirements 10, 11, and 12 mandate that entities handling cardholder data must implement robust audit logging and monitoring for all system access (Req 10), regularly test security systems an... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-req-10-12-monitoring-policy.json #### Payment Card Industry Data Security Standard (PCI DSS) v4.0 - Requirements 3 and 4: Protect Stored Account Data and Protect Cardholder Data with Strong Cryptography During Transmission - **ID**: pci-dss-v4-req-3-4-data-protection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: For all entities that store, process, or transmit cardholder data, PCI DSS Requirements 3 and 4 mandate the protection of stored account data and the use of strong cryptography for transmitting cardho... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-req-3-4-data-protection.json #### PCI DSS v4.0 Requirements 6 and 7: Develop and Maintain Secure Systems and Software & Restrict Access to Cardholder Data by Business Need to Know - **ID**: pci-dss-v4-req-6-7-system-security - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation requires entities handling cardholder data to develop and maintain secure systems and software by identifying and addressing security vulnerabilities (Requirement 6) and to restrict ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-v4-req-6-7-system-security.json #### Peru Personal Data Protection Law No. 29733 2011 - ANPDP - **ID**: pe-dp-law-2011 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Peru's Ley de Protección de Datos Personales (Personal Data Protection Law) - Law No. 29733, enacted on 2 July 2011 and published in El Peruano (official gazette) on 3 July 2011 - is Peru's primary le... - **Discovery URL**: https://bidda.com/api/v1/nodes/pe-dp-law-2011.json #### French Polynesia - Loi Informatique et Libertés (French Data Protection Law) - **ID**: pf-lil-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: French Polynesia is a French overseas collectivity (collectivité d'outre-mer) under its Organic Law of 27 February 2004. As an EU Overseas Country and Territory (OCT) rather than an EU outermost regio... - **Discovery URL**: https://bidda.com/api/v1/nodes/pf-lil-2018.json #### Papua New Guinea Cybercrime Code Act 2016 - Personal Data Provisions - **ID**: pg-cca-2016 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Papua New Guinea enacted the Cybercrime Code Act 2016, which establishes a comprehensive framework for addressing computer crimes including offences involving personal data held in electronic systems.... - **Discovery URL**: https://bidda.com/api/v1/nodes/pg-cca-2016.json #### Philippines Cybercrime Prevention Act 2012 (Republic Act No. 10175) - **ID**: ph-cybercrime-prevention-act-2012 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Philippines Republic Act No. 10175 signed September 12, 2012 effective October 3, 2012 criminalises offences against the confidentiality, integrity, and availability of computer data and systems inclu... - **Discovery URL**: https://bidda.com/api/v1/nodes/ph-cybercrime-prevention-act-2012.json #### Cybercrime Prevention Act of 2012 - **ID**: philippines-cybercrime-prevention-act-2012-ra-10175 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: This Act criminalizes illegal access, data interference, system interference, and misuse of devices in computer systems or networks, and establishes procedures for real-time data collection and preser... - **Discovery URL**: https://bidda.com/api/v1/nodes/philippines-cybercrime-prevention-act-2012-ra-10175.json #### Pakistan Prevention of Electronic Crimes Act 2016 (PECA) - Cybercrime Law - **ID**: pk-peca-2016 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Prevention of Electronic Crimes Act 2016 (PECA), enacted on 18 August 2016 (published in the Gazette of Pakistan, Extraordinary, dated 19 August 2016), is Pakistan's comprehensive cybercrime legis... - **Discovery URL**: https://bidda.com/api/v1/nodes/pk-peca-2016.json #### Poland Personal Data Protection Act 2018 (Ustawa o ochronie danych osobowych) - GDPR National Implementation - **ID**: pl-uodo-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Poland's Personal Data Protection Act (Ustawa z dnia 10 maja 2018 r. o ochronie danych osobowych, Dz.U. 2018 poz. 1000, enacted 10 May 2018, entered into force 25 May 2018) is Poland's primary nationa... - **Discovery URL**: https://bidda.com/api/v1/nodes/pl-uodo-2018.json #### Saint Pierre and Miquelon - French Data Protection Law (Loi Informatique et Libertés) Framework - **ID**: pm-lil-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Saint Pierre and Miquelon is a French territorial collectivity located in the North Atlantic Ocean south of the Canadian province of Newfoundland and Labrador. It is the only remaining French territor... - **Discovery URL**: https://bidda.com/api/v1/nodes/pm-lil-framework.json #### Puerto Rico - Federal and Territorial Privacy Rights Framework - **ID**: pr-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Puerto Rico is an unincorporated organised territory of the United States located in the Caribbean. Puerto Rico has its own Constitution, which establishes a fundamental right to privacy and protectio... - **Discovery URL**: https://bidda.com/api/v1/nodes/pr-framework.json #### Protecting Subscriber Identifiers with Subscription Concealed Identifier (SUCI) - **ID**: protecting-subscriber-identifiers-suci - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This white paper describes how Subscription Concealed Identifier (SUCI) protection can be enabled in 5G networks as an optional security capability defined by 5G standards. It addresses the problem of... - **Discovery URL**: https://bidda.com/api/v1/nodes/protecting-subscriber-identifiers-suci.json #### Palestine Electronic Transactions Law No. 15 of 2019 - Personal Data Provisions - **ID**: ps-etl-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Palestinian Authority enacted the Electronic Transactions Law No. 15 of 2019, which includes provisions for the protection of personal data processed in electronic transactions and digital service... - **Discovery URL**: https://bidda.com/api/v1/nodes/ps-etl-2019.json #### Portugal Data Protection Law (Lei 58/2019) - GDPR National Implementation - **ID**: pt-lei-58-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Portugal's Data Protection Law (Lei 58/2019 de 8 de agosto - Lei de Execução do RGPD, published in the Diário da República No. 151, 1.ª série, on 8 August 2019, entering into force on 9 August 2019) i... - **Discovery URL**: https://bidda.com/api/v1/nodes/pt-lei-58-2019.json #### Palau - Constitutional Privacy Rights and Pacific Islands Forum Data Protection Framework - **ID**: pw-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Republic of Palau is an independent nation in the western Pacific Ocean with a constitutional democratic government. The Constitution of the Republic of Palau (1979, as amended) establishes fundam... - **Discovery URL**: https://bidda.com/api/v1/nodes/pw-framework.json #### Paraguay Law No. 6534/2020 on Protection of Personal Data - DNPDP - **ID**: py-pdpl-2020 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Paraguay's Law No. 6534/2020 on Protection of Personal Data (Ley No. 6534/2020 de Protección de Datos Personales), enacted on 23 July 2020 and promulgated by the Executive Power of Paraguay, is Paragu... - **Discovery URL**: https://bidda.com/api/v1/nodes/py-pdpl-2020.json #### Quantum Readiness Triage - **ID**: quantum-risk-audit - **Category**: Cybersecurity - **Version**: 1.1.0 - **BLUF**: A quantum readiness assessment is the systematic process of identifying all cryptographic assets in an organization that are vulnerable to attack by a Cryptographically Relevant Quantum Computer (CRQC... - **Discovery URL**: https://bidda.com/api/v1/nodes/quantum-risk-audit.json #### Recommendation for Pair-Wise Key-Establishment Schemes Using Discrete Logarithm Cryptography - **ID**: recommendation-for-pair-wise-key-establishment - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Recommendation specifies key-establishment schemes based on the discrete logarithm problem over finite fields and elliptic curves, including several variations of Diffie-Hellman (DH) and Menezes-... - **Discovery URL**: https://bidda.com/api/v1/nodes/recommendation-for-pair-wise-key-establishment.json #### Red Canary Atomic Red Team Library (1800+ ATT&CK-Mapped Atomic Tests, YAML Schema, Invoke-Atomic Execution, MITRE CALDERA Atomic Plugin Pairing, MIT License) - **ID**: redcanary-atomic-red-team-attack-tests - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Atomic Red Team is the community-developed library of portable security tests aligned with the MITRE ATT&CK framework, maintained by Red Canary at github.com/redcanaryco/atomic-red-team under the MIT ... - **Discovery URL**: https://bidda.com/api/v1/nodes/redcanary-atomic-red-team-attack-tests.json #### Risk Management for Replication Devices - **ID**: risk-management-for-replication-devices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This publication provides guidance on protecting the confidentiality, integrity, and availability of information processed, stored, or transmitted on replication devices (RDs), which include copiers, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/risk-management-for-replication-devices.json #### Romania Data Protection Law No. 190/2018 - GDPR National Implementation - **ID**: ro-lege-190-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Romania's Law No. 190/2018 on Measures Implementing Regulation (EU) 2016/679 (Legea nr. 190/2018 privind măsuri de punere în aplicare a Regulamentului (UE) 2016/679 al Parlamentului European și al Con... - **Discovery URL**: https://bidda.com/api/v1/nodes/ro-lege-190-2018.json #### Russia Federal Law on Personal Data No. 152-FZ 2006 - Roskomnadzor - **ID**: ru-fz-152-2006 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Russia's Federal Law 'On Personal Data' (Федеральный закон «О персональных данных»), Federal Law No. 152-FZ - adopted by the State Duma on 8 July 2006, signed by President Vladimir Putin on 27 July 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/ru-fz-152-2006.json #### Rwanda Law No. 60/2018 on Cybersecurity - **ID**: rw-cybersecurity-law-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Rwanda's Law No. 60/2018 of 22 August 2018 governing cybersecurity in Rwanda establishes the National Cyber Security Authority as the regulatory body for cybersecurity, designates Critical Information... - **Discovery URL**: https://bidda.com/api/v1/nodes/rw-cybersecurity-law-2018.json #### Saudi Arabia Essential Cybersecurity Controls ECC-1:2018 - Domain 1: Cybersecurity Governance Controls - **ID**: sa-ecc-2018-domain-1-cybersecurity-governance - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: Saudi Arabia Essential Cybersecurity Controls (ECC-1:2018) Domain 1 establishes the mandatory cybersecurity governance framework for government agencies and their contractors. Domain 1 (Section 5.1) c... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-ecc-2018-domain-1-cybersecurity-governance.json #### Saudi Arabia Essential Cybersecurity Controls ECC-1:2018 - Domain 2: Cybersecurity Defense Controls - **ID**: sa-ecc-2018-domain-2-cybersecurity-defense - **Category**: Cybersecurity - **Version**: 2.0.0 - **BLUF**: Saudi Arabia Essential Cybersecurity Controls (ECC-1:2018) Domain 2 (Section 5.2) contains the largest set of mandatory technical and operational controls across 16 control families: Asset Management,... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-ecc-2018-domain-2-cybersecurity-defense.json #### Saudi Arabia NCA Essential Cybersecurity Controls ECC-2:2024 - 108 Updated Controls, Saudization, and Data Localization Transfer to NDMO - **ID**: sa-national-cybersecurity-authority-ecc-2-2024-essential-cybersecurity-controls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Saudi Arabia government entities (ministries, authorities, establishments, and subsidiaries) and private-sector organisations that own, operate, or host Critical National Infrastructures must comply w... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-national-cybersecurity-authority-ecc-2-2024-essential-cybersecurity-controls.json #### Saudi Arabia NCA Essential Cybersecurity Controls (ECC-1:2018) - **ID**: sa-nca-ecc-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Saudi Arabia's National Cybersecurity Authority Essential Cybersecurity Controls (ECC-1:2018), issued by the NCA and mandatory for all government entities and private sector organisations providing cr... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-nca-ecc-2018.json #### Personal Data Protection Law (PDPL) 2021 (Updated 2023) - Kingdom of Saudi Arabia - **ID**: saudi-arabia-pdpl-2021-personal-data - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: The Saudi Arabia Personal Data Protection Law (PDPL) 2021 establishes rules for the lawful processing of personal data, including requirements for consent, data subject rights, cross-border data trans... - **Discovery URL**: https://bidda.com/api/v1/nodes/saudi-arabia-pdpl-2021-personal-data.json #### Saudi Arabian Monetary Authority (SAMA) Cybersecurity Framework - **ID**: saudi-sama-cybersecurity-framework-2017 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The SAMA Cybersecurity Framework mandates a comprehensive set of cybersecurity controls for all financial institutions regulated by the Saudi Arabian Monetary Authority (SAMA), including banks, insura... - **Discovery URL**: https://bidda.com/api/v1/nodes/saudi-sama-cybersecurity-framework-2017.json #### Solomon Islands Communications Act 2009 - Consumer Data and Personal Information Provisions - **ID**: sb-ca-2009 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Solomon Islands enacted the Communications Act 2009, which establishes the Solomon Islands Telecommunications and Spectrum Authority (SITTA) as the regulatory authority for electronic communicatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/sb-ca-2009.json #### Seychelles Data Protection Act - Commissioner Compliance Framework - **ID**: sc-dpa-2003 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Seychelles Data Protection Act (2003, as amended) establishes a consent-based framework for personal data processing, data subject rights including access and correction, and mandatory registratio... - **Discovery URL**: https://bidda.com/api/v1/nodes/sc-dpa-2003.json #### Sudan Electronic Transactions Act 2007 - Personal Data Provisions - **ID**: sd-eta-2007 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Sudan enacted the Electronic Transactions Act 2007, which includes provisions for the protection of personal data processed in the context of electronic transactions and information systems. The Act i... - **Discovery URL**: https://bidda.com/api/v1/nodes/sd-eta-2007.json #### Sweden Data Protection Act 2018 (Dataskyddslagen 2018:218) - GDPR National Implementation - **ID**: se-dataskyddslagen-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Sweden's Data Protection Act (Dataskyddslagen, SFS 2018:218, enacted 19 April 2018, entered into force 25 May 2018) is the primary national legislation supplementing the EU General Data Protection Reg... - **Discovery URL**: https://bidda.com/api/v1/nodes/se-dataskyddslagen-2018.json #### SEC EDGAR Cybersecurity Disclosures Enterprise Compliance Standard v18 - **ID**: sec-edgar-cybersecurity-disclosures-compliance-2026-18 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The SEC EDGAR Cybersecurity Disclosures require public companies to disclose material cybersecurity risks and incidents in a timely manner. Companies must assess and report on their cybersecurity poli... - **Discovery URL**: https://bidda.com/api/v1/nodes/sec-edgar-cybersecurity-disclosures-compliance-2026-18.json #### SEC EDGAR Cybersecurity Disclosures Enterprise Compliance Standard v3 - **ID**: sec-edgar-cybersecurity-disclosures-compliance-2026-3 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The SEC EDGAR Cybersecurity Disclosures require public companies to disclose material cybersecurity incidents and risks in a timely manner. Companies must assess and report on their cybersecurity gove... - **Discovery URL**: https://bidda.com/api/v1/nodes/sec-edgar-cybersecurity-disclosures-compliance-2026-3.json #### Secure Hash Standard (SHS) - **ID**: secure-hash-standard-fips-180-4 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Standard specifies secure hash algorithms - SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, SHA-512/224 and SHA-512/256 - for computing a condensed representation of electronic data (message) called a... - **Discovery URL**: https://bidda.com/api/v1/nodes/secure-hash-standard-fips-180-4.json #### Securing Property Management Systems - **ID**: securing-property-management-systems - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: In recent years criminals and other attackers have compromised the networks of several major hotel chains, exposing the information of hundreds of millions of guests. Hospitality organizations can red... - **Discovery URL**: https://bidda.com/api/v1/nodes/securing-property-management-systems.json #### Security Considerations in the System Development Life Cycle - **ID**: security-considerations-system-development-lifecycle - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The National Institute of Standards and Technology (NIST) Special Publication (SP) 800-64, Security Considerations in the System Development Life Cycle, was developed to assist federal government agen... - **Discovery URL**: https://bidda.com/api/v1/nodes/security-considerations-system-development-lifecycle.json #### Guide for Security-Focused Configuration Management of Information Systems - **ID**: security-focused-configuration-management - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guide provides guidelines for organizations responsible for managing and administering the security of federal information systems. It assumes that information security is an integral part of an ... - **Discovery URL**: https://bidda.com/api/v1/nodes/security-focused-configuration-management.json #### Singapore Cybersecurity Act 2018 (Cap. 9D, 2024 Amendment) - CII Protection and Licensing - **ID**: sg-cybersecurity-act-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Act establishes a legal framework for the oversight and maintenance of national cybersecurity in Singapore, imposing duties on owners of Critical Information Infrastructure (CII) to secure their ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-cybersecurity-act-2018.json #### Singapore Cybersecurity Act 2018 - Critical Information Infrastructure Protection and Incident Reporting - **ID**: sg-cybersecurity-act-2018-critical-information-infrastructure-protection - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Cybersecurity Act 2018 (Singapore) designates Critical Information Infrastructure (CII) across 11 essential service sectors, mandates compliance with cybersecurity codes of practice, requires mand... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-cybersecurity-act-2018-critical-information-infrastructure-protection.json #### Cybersecurity Act 2018 - Part 4 RESPONSES TO CYBERSECURITY THREATS AND INCIDENTS - **ID**: sg-cybersecurity-act-2018-part-4-critical-information - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Organizations must comply with directions from the Commissioner of Cybersecurity and incident response officers during the investigation and remediation of cybersecurity threats and incidents, includi... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-cybersecurity-act-2018-part-4-critical-information.json #### Page Not Found - Singapore Statutes Online - **ID**: sg-cybersecurity-act-2018-part-4-critical-information-infrastructure-obligations - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The provided source text indicates the requested regulatory content cannot be found and offers navigation to other parts of the Singapore Statutes Online website. - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-cybersecurity-act-2018-part-4-critical-information-infrastructure-obligations.json #### Singapore Cybersecurity (Amendment) Act 2024 - **ID**: sg-cybersecurity-amendment-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Singapore's Cybersecurity (Amendment) Act 2024 expands the Cybersecurity Act 2018 to regulate Foundational Digital Infrastructure (FDI) service providers - including cloud services and data centres - ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-cybersecurity-amendment-2024.json #### Singapore Protection from Online Falsehoods and Manipulation Act 2019 (POFMA) - **ID**: sg-pofma-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Singapore POFMA effective October 2, 2019 empowers government ministers to issue correction directions and stop communication directions against online falsehoods, requires platforms to comply within ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-pofma-2019.json #### Saint Helena Data Protection Ordinance 2018 - **ID**: sh-dpo-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Saint Helena, Ascension and Tristan da Cunha, a British Overseas Territory, enacted the Data Protection Ordinance 2018 aligned with UK data protection standards. Administered by the Governor's office ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sh-dpo-2018.json #### Slovenia Personal Data Protection Act 2022 (ZVOP-2) - GDPR National Implementation - **ID**: si-zvop2-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Slovenia's Zakon o varstvu osebnih podatkov (ZVOP-2 - Personal Data Protection Act), published in the Official Gazette of the Republic of Slovenia (Uradni list RS No. 163/22) on 30 December 2022 and e... - **Discovery URL**: https://bidda.com/api/v1/nodes/si-zvop2-2022.json #### SigmaHQ Sigma Detection Rule Format (Vendor-Agnostic YAML Signature, pySigma Converter, Splunk/Elastic/QRadar/Sentinel/Security Onion Backends, 3000+ Community Rules) - **ID**: sigmahq-sigma-detection-rule-format - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Sigma is the open, vendor-agnostic YAML signature format for describing log-based detections. The project is maintained at github.com/SigmaHQ/sigma by the SigmaHQ community and is functionally the SIE... - **Discovery URL**: https://bidda.com/api/v1/nodes/sigmahq-sigma-detection-rule-format.json #### Sigstore Keyless Signing Stack (Cosign Signing Tool, Fulcio Short-Lived Code Signing CA, Rekor Transparency Log, OIDC Identity, OCI 1.1 Container Signing, OpenSSF/Linux Foundation Governance) - **ID**: sigstore-cosign-fulcio-rekor-keyless-signing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Sigstore is the open-source software signing and transparency stack maintained under the Open Source Security Foundation (OpenSSF) within the Linux Foundation. The architecture has three primary compo... - **Discovery URL**: https://bidda.com/api/v1/nodes/sigstore-cosign-fulcio-rekor-keyless-signing.json #### Cybersecurity Act 2018 of Singapore - **ID**: singapore-cybersecurity-act-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Singapore Cybersecurity Act 2018 establishes a legal framework for the oversight and maintenance of national cybersecurity, imposing duties on owners of Critical Information Infrastructure (CII) t... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-cybersecurity-act-2018.json #### Sierra Leone Data Protection Act 2022 - **ID**: sl-dpa-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Sierra Leone's Data Protection Act 2022 establishes a national framework for the collection, storage, and processing of personal data. It creates a Data Protection Commissioner, confers rights on data... - **Discovery URL**: https://bidda.com/api/v1/nodes/sl-dpa-2022.json #### SLSA v1.0 Supply-chain Levels for Software Artifacts (OpenSSF Build Track L0, L1, L2, L3; Producer, Build Platform, and Verifier Requirements; in-toto Attestation Framework) - **ID**: slsa-v1-0-supply-chain-levels-for-software-artifacts - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: SLSA (Supply-chain Levels for Software Artifacts), version 1.0, is the OpenSSF-governed framework for assessing the trustworthiness of software build provenance and is published authoritatively at sls... - **Discovery URL**: https://bidda.com/api/v1/nodes/slsa-v1-0-supply-chain-levels-for-software-artifacts.json #### San Marino Law No. 70/2018 on Personal Data Protection - Garante Sammarinese - **ID**: sm-pdpl-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: San Marino's Law No. 70 of 23 May 2018 on Personal Data Protection (Legge 23 maggio 2018 n.70 per la tutela delle persone fisiche con riguardo al trattamento dei dati personali), enacted by the Grand ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sm-pdpl-2018.json #### Senegal Personal Data Protection Law No. 2008-12 - CDP - **ID**: sn-dp-law-2008 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Senegal's Loi No. 2008-12 du 25 janvier 2008 portant sur la protection des données à caractère personnel (Personal Data Protection Law No. 2008-12 of 25 January 2008) - published in the Journal Offici... - **Discovery URL**: https://bidda.com/api/v1/nodes/sn-dp-law-2008.json #### Somalia NCA Framework - AU Malabo Convention and Constitutional Privacy Obligations - **ID**: so-nca-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Federal Government of Somalia has established the National Communications Authority (NCA) as the regulatory body for telecommunications and electronic communications services in the Federal Republ... - **Discovery URL**: https://bidda.com/api/v1/nodes/so-nca-framework.json #### SOX IT Controls Enterprise Compliance Standard v11 - **ID**: sox-it-controls-compliance-2026-11 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Sarbanes-Oxley Act (SOX) mandates stringent IT controls to ensure the accuracy and integrity of financial reporting. Key requirements include the establishment of internal controls over financial ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sox-it-controls-compliance-2026-11.json #### SOX IT Controls Enterprise Compliance Standard v26 - **ID**: sox-it-controls-compliance-2026-26 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Sarbanes-Oxley Act (SOX) mandates stringent requirements for financial reporting and internal controls to protect shareholders and the public from accounting errors and fraudulent practices. IT co... - **Discovery URL**: https://bidda.com/api/v1/nodes/sox-it-controls-compliance-2026-26.json #### SPDX Software Package Data Exchange Version 3.0 (ISO/IEC 5962:2021, License Expressions, PackageVerificationCode, Tag/Value/JSON/RDF Serialisations, EO 14028 NTIA SBOM Minimum Elements) - **ID**: spdx-3-0-iso-iec-5962-2021-sbom-standard - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Software Package Data Exchange (SPDX) is the international open standard for representing software bills of materials (SBOMs), licence compliance information, and supply-chain provenance, maintain... - **Discovery URL**: https://bidda.com/api/v1/nodes/spdx-3-0-iso-iec-5962-2021-sbom-standard.json #### Suriname - Constitutional Privacy Rights and CARICOM Data Protection Framework - **ID**: sr-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Republic of Suriname is an independent sovereign state on the northeastern coast of South America and the only Dutch-speaking country in the Americas. Suriname is governed under the Constitution o... - **Discovery URL**: https://bidda.com/api/v1/nodes/sr-framework.json #### South Sudan NCA Framework - AU Malabo Convention and Constitutional Privacy Obligations - **ID**: ss-nca-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Republic of South Sudan, which gained independence on 9 July 2011, has established the National Communications Authority (NCA) as the regulatory authority for electronic communications and informa... - **Discovery URL**: https://bidda.com/api/v1/nodes/ss-nca-framework.json #### São Tomé and Príncipe CNTIC Framework - AU Malabo Convention and Constitutional Privacy Obligations - **ID**: st-cntic-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Democratic Republic of São Tomé and Príncipe has established the Centro Nacional de Tecnologias de Informação e Comunicação (CNTIC) as the national authority for information and communications tec... - **Discovery URL**: https://bidda.com/api/v1/nodes/st-cntic-framework.json #### El Salvador Personal Data Protection Law - IAIP Compliance Framework - **ID**: sv-pdpl-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: El Salvador Ley de Protección de Datos Personales (2021) establishes data subject rights including access, rectification, cancellation, and opposition (ARCO rights), consent-based processing obligatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/sv-pdpl-2021.json #### SWIFT Customer Security Controls Framework (CSCF) v2024 - Mandatory Controls, Advisory Controls and Independent Assessment Requirements - **ID**: swift-cscf-v2024-customer-security-controls - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The SWIFT Customer Security Controls Framework (CSCF) v2024 mandates that all SWIFT users implement a set of security controls to protect their local SWIFT environment. As per the Independent Assessme... - **Discovery URL**: https://bidda.com/api/v1/nodes/swift-cscf-v2024-customer-security-controls.json #### SWIFT Customer Security Programme (CSP) 2023 - Mandatory Security Controls, SWIFT Inspector, Independent Assessment and Attestation for Financial Messaging - **ID**: swift-csp-customer-security-programme-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The SWIFT CSP 2023 mandates all SWIFT-connected financial institutions to implement 21 mandatory security controls focused on securing the local environment, protecting the SWIFT infrastructure, and e... - **Discovery URL**: https://bidda.com/api/v1/nodes/swift-csp-customer-security-programme-2023.json #### Sint Maarten National Ordinance on Personal Data Protection 2010 - **ID**: sx-lbp-2010 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Sint Maarten, a constituent country of the Kingdom of the Netherlands since 2010 following the dissolution of the Netherlands Antilles, enacted the National Ordinance on Personal Data Protection (Land... - **Discovery URL**: https://bidda.com/api/v1/nodes/sx-lbp-2010.json #### Syria Electronic Crimes Law No. 17 of 2012 - Personal Data Provisions - **ID**: sy-ecl-2012 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Syria enacted Electronic Crimes Law No. 17 of 2012 (قانون الجرائم المعلوماتية), which includes provisions for the protection of personal data held in electronic systems and processed through informati... - **Discovery URL**: https://bidda.com/api/v1/nodes/sy-ecl-2012.json #### Eswatini Data Protection Act 2022 - **ID**: sz-dpa-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Eswatini (formerly Swaziland) enacted the Data Protection Act 2022 to regulate the collection, storage, processing, and transfer of personal data in the Kingdom. The Act establishes data protection pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/sz-dpa-2022.json #### Turks and Caicos Islands Data Protection Ordinance 2012 - **ID**: tc-dpo-2012 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Turks and Caicos Islands enacted the Data Protection Ordinance 2012, a statute aligned with UK data protection standards applicable to the territory as a British Overseas Territory. Administered b... - **Discovery URL**: https://bidda.com/api/v1/nodes/tc-dpo-2012.json #### Chad ARCEP Framework - AU Malabo Convention and Constitutional Privacy Obligations - **ID**: td-arcep-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Republic of Chad has established the Autorité de Régulation des Communications Electroniques et des Postes (ARCEP) as the national regulatory authority for electronic communications, digital servi... - **Discovery URL**: https://bidda.com/api/v1/nodes/td-arcep-framework.json #### Togo Personal Data Protection Law - APDP Compliance Framework - **ID**: tg-pdp-law-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Togo Law No. 2019-014 on Personal Data Protection (2019) establishes ECOWAS-aligned data subject rights, prior authorization requirements for sensitive processing, and a mandatory registration regime.... - **Discovery URL**: https://bidda.com/api/v1/nodes/tg-pdp-law-2019.json #### Tajikistan Law on Personal Data Protection 2018 - **ID**: tj-pdp-law-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Tajikistan enacted the Law on Personal Data Protection in 2018, establishing a framework for the collection, storage, use, transfer, and destruction of personal data. The law is administered by the au... - **Discovery URL**: https://bidda.com/api/v1/nodes/tj-pdp-law-2018.json #### Tokelau - New Zealand Administration and Pacific Privacy Framework - **ID**: tk-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Tokelau is a non-self-governing territory of New Zealand comprising three low-lying coral atolls - Atafu, Nukunonu, and Fakaofo - located in the South Pacific Ocean. Tokelau has a population of approx... - **Discovery URL**: https://bidda.com/api/v1/nodes/tk-framework.json #### Timor-Leste Law No. 5/2011 on Personal Data Protection - **ID**: tl-pdpl-2011 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Timor-Leste (East Timor) enacted Law No. 5/2011 on Personal Data Protection, establishing a comprehensive framework for the protection of personal data collected and processed in the Democratic Republ... - **Discovery URL**: https://bidda.com/api/v1/nodes/tl-pdpl-2011.json #### Turkmenistan Law on Personal Data 2015 - **ID**: tm-pdp-law-2015 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Turkmenistan enacted the Law on Personal Data (Закон Туркменистана «О персональных данных») in 2015, establishing a legal framework for the protection of personal data collected and processed by publi... - **Discovery URL**: https://bidda.com/api/v1/nodes/tm-pdp-law-2015.json #### Tunisia Organic Law on Personal Data Protection No. 2004-63 - INPDP - **ID**: tn-pdp-law-2004 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Tunisia's Organic Law No. 2004-63 of 27 July 2004 on the Protection of Personal Data (loi organique No. 2004-63 du 27 juillet 2004, portant sur la protection des données à caractère personnel) - publi... - **Discovery URL**: https://bidda.com/api/v1/nodes/tn-pdp-law-2004.json #### Tonga Communications Act 2000 - Consumer Data and Personal Information Provisions - **ID**: to-ca-2000 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Kingdom of Tonga enacted the Communications Act 2000, which establishes the Tonga Communications Board (TCB) as the regulatory authority for telecommunications and electronic communications in Ton... - **Discovery URL**: https://bidda.com/api/v1/nodes/to-ca-2000.json #### Trusted Internet of Things (IoT) Device Network-Layer Onboarding and Lifecycle Management: Enhancing Internet Protocol-Based IoT Device and Network Security - **ID**: trusted-iot-device-onboarding - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This practice guide from the National Cybersecurity Center of Excellence (NCCoE) demonstrates various mechanisms for trusted network-layer onboarding of IoT devices in Internet Protocol-based environm... - **Discovery URL**: https://bidda.com/api/v1/nodes/trusted-iot-device-onboarding.json #### TSA Security Directive 1542-21-01C: Enhancing Aviation Cybersecurity (2023 Amendment) - **ID**: tsa-aviation-cybersecurity-amendment-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This directive mandates that TSA-regulated airport and aircraft operators implement specific cybersecurity measures, including network segmentation, access controls, continuous monitoring, and mandato... - **Discovery URL**: https://bidda.com/api/v1/nodes/tsa-aviation-cybersecurity-amendment-2023.json #### Security Directive Pipeline-2021-02C - Pipeline Cybersecurity Mitigation Actions, Contingency Planning, and Testing - **ID**: tsa-pipeline-cybersecurity-directive-sd-02c-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This directive mandates that owners and operators of TSA-designated critical pipelines implement specific cybersecurity mitigation measures, establish and maintain a Cybersecurity Contingency/Response... - **Discovery URL**: https://bidda.com/api/v1/nodes/tsa-pipeline-cybersecurity-directive-sd-02c-2022.json #### Trinidad and Tobago Data Protection Act 2011 - Data Protection Commissioner - **ID**: tt-dpa-2011 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Trinidad and Tobago's Data Protection Act 2011 (Act No. 13 of 2011, as amended by Act No. 4 of 2022), is Trinidad and Tobago's primary personal data protection legislation establishing a rights-based ... - **Discovery URL**: https://bidda.com/api/v1/nodes/tt-dpa-2011.json #### Tuvalu - Constitutional Privacy Rights and Pacific Islands Forum Data Protection Framework - **ID**: tv-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Tuvalu is an independent island nation in the central Pacific Ocean and a member of the Pacific Islands Forum and the Commonwealth of Nations. The Constitution of Tuvalu establishes fundamental rights... - **Discovery URL**: https://bidda.com/api/v1/nodes/tv-framework.json #### Tanzania Cybercrime Act 2015 (Act No. 14 of 2015) - **ID**: tz-cybercrime-act-2015 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Tanzania's Cybercrime Act 2015 (Act No. 14 of 2015), enacted September 1, 2015, establishes cybercrime offences including unauthorised access, illegal interception, data interference, computer fraud, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/tz-cybercrime-act-2015.json #### Ukraine Personal Data Protection Law No. 2297-VI 2010 - Ombudsman - **ID**: ua-pdp-law-2010 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Ukraine's Law 'On Personal Data Protection' (Закон України 'Про захист персональних даних') - Law No. 2297-VI, adopted by the Verkhovna Rada (Parliament) of Ukraine on 1 June 2010, signed by President... - **Discovery URL**: https://bidda.com/api/v1/nodes/ua-pdp-law-2010.json #### UAE NESA Information Assurance Framework (IAF) - National Electronic Security Authority Standards - **ID**: uae-nesa-iaf-information-assurance-standards - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: Mandates a tiered classification system (Critical/High/Medium/Low) for information assets and implements 188 security controls across technical, administrative, and physical domains. Applies to all Cr... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-nesa-iaf-information-assurance-standards.json #### Uganda Computer Misuse Act 2011 (as amended 2022) - **ID**: ug-computer-misuse-act-2011 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Uganda's Computer Misuse Act 2011, enacted May 2011 and amended by the Computer Misuse (Amendment) Act 2022, establishes cybercrime offences including unlawful access, unauthorized interception, data ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ug-computer-misuse-act-2011.json #### UK Computer Misuse Act 1990 Section 1 — Unauthorised Access to Computer Material - **ID**: uk-computer-misuse-act-1990-section-1-unauthorised-access-computer-material - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: A person commits the basic unauthorised access offence if they cause a computer to perform any function with intent to secure access to any program or data held in any computer, or to enable such acce... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-computer-misuse-act-1990-section-1-unauthorised-access-computer-material.json #### UK Computer Misuse Act 1990 Section 3A - Making, Supplying or Obtaining Articles for Use in Cyber Offence (Programs, Data, Dual-Use Tools, Intent Belief and Possession) - **ID**: uk-computer-misuse-act-1990-section-3a-making-supplying-articles - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 3A of the Computer Misuse Act 1990 (c. 18), inserted by the Police and Justice Act 2006 section 37, creates three offences concerning articles for use in offences under sections 1, 3, or 3ZA o... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-computer-misuse-act-1990-section-3a-making-supplying-articles.json #### UK Computer Misuse Act 1990 Section 3ZA - Unauthorised Acts Causing or Creating Risk of Serious Damage (Critical National Infrastructure Cyber Offence, Life-Imprisonment Aggravator, Extraterritorial Reach) - **ID**: uk-computer-misuse-act-1990-section-3za-unauthorised-acts-serious-damage - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 3ZA of the Computer Misuse Act 1990 (c. 18), inserted by the Serious Crime Act 2015 section 41 and commenced on 3 May 2015, creates the aggravated UK cyber offence of unauthorised acts in rela... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-computer-misuse-act-1990-section-3za-unauthorised-acts-serious-damage.json #### Computer Misuse Act 1990, Section 1: Unauthorised access to computer material - **ID**: uk-computer-misuse-act-1990-sections-1-3 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation establishes a criminal offence for any person who intentionally causes a computer to perform a function to secure unauthorised access to any program or data, knowing that the access is... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-computer-misuse-act-1990-sections-1-3.json #### UK Computer Misuse Act 1990 - Unauthorised Access, Impairment, and Cybercrime Offences - **ID**: uk-computer-misuse-act-1990-unauthorized-access-cyber-offences - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Computer Misuse Act 1990 (CMA) creates five principal UK cybercrime offences: unauthorised access (Section 1); unauthorised access with intent to commit further offences (Section 2); unauthorised ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-computer-misuse-act-1990-unauthorized-access-cyber-offences.json #### UK Cyber Essentials - NCSC Certification Scheme for Baseline Cyber Hygiene - **ID**: uk-cyber-essentials-ncsc-certification-scheme - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Cyber Essentials is a UK Government-backed certification scheme administered by the National Cyber Security Centre (NCSC) that requires organisations to implement five technical controls: firewalls, s... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-cyber-essentials-ncsc-certification-scheme.json #### Cyber Essentials Plus: Illustrative Test Specification (Montpellier v3.1, April 2023) - **ID**: uk-cyber-essentials-plus-2023 - **Category**: Cybersecurity - **Version**: 3.1.0 - **BLUF**: Cyber Essentials Plus is a UK government-backed, independently verified certification requiring organizations to demonstrate compliance with five key technical controls through rigorous hands-on testi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-cyber-essentials-plus-2023.json #### UK Data (Use and Access) Act 2025 - **ID**: uk-data-use-access-act-2025 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The UK Data (Use and Access) Act 2025, which received Royal Assent on June 19, 2025, modernises UK data law by introducing smart data schemes for sector-wide data portability, establishing a trust fra... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-data-use-access-act-2025.json #### UK Data (Use and Access) Act 2025 and Digital Verification Services Trust Framework - **ID**: uk-data-use-access-act-2025-dvs-trust-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Data (Use and Access) Act 2025 (DUAA) places the UK Digital Verification Services (DVS) Trust Framework on a statutory footing and is administered by the Office for Digital Identities and Attribut... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-data-use-access-act-2025-dvs-trust-framework.json #### UK Investigatory Powers Act 2016 Section 253 - Technical Capability Notices (Secretary of State Power, Judicial Commissioner Approval, Relevant Operator Definition, Applicable Obligations Including Removal of Electronic Protection, Technical Advisory Board Consultation, Extraterritorial Effect) - **ID**: uk-investigatory-powers-act-2016-section-253-technical-capability-notices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 253 of the Investigatory Powers Act 2016 (c. 25) authorises the Secretary of State to issue technical capability notices (TCNs) requiring relevant operators (postal operators, telecommunicatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-investigatory-powers-act-2016-section-253-technical-capability-notices.json #### UK Investigatory Powers Act 2016 Section 3 - Offence of Unlawful Interception (Public/Private Telecom System or Postal Service, UK Conduct Element, Absence of Lawful Authority, Operator Consent Exception, 2 Years Indictment, DPP Consent) - **ID**: uk-investigatory-powers-act-2016-section-3-unlawful-interception-offence - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 3 of the Investigatory Powers Act 2016 (c. 25) creates the criminal offence of unlawful interception of communications. Under section 3(1), a person commits an offence if (a) the person intent... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-investigatory-powers-act-2016-section-3-unlawful-interception-offence.json #### UK National Cyber Strategy 2022 and NCSC Cyber Essentials - Baseline Controls for Preventing Common Cyber Attacks and Government System Requirements - **ID**: uk-national-cyber-strategy-2022-ncsc-baseline - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The UK NCSC's Cyber Essentials scheme requires organizations to implement five fundamental technical security controls to defend against the most common cyber threats. This government-backed certifica... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-national-cyber-strategy-2022-ncsc-baseline.json #### UK NCSC Cyber Essentials Scheme - Five Technical Controls and Certification Requirements (2023) - **ID**: uk-ncsc-cyber-essentials-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The UK NCSC Cyber Essentials scheme requires organizations to implement five fundamental technical security controls to protect against common cyber threats as a prerequisite for certification. As out... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ncsc-cyber-essentials-2023.json #### The Network and Information Systems Regulations 2018 - **ID**: uk-network-information-systems-regulations-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Network and Information Systems Regulations 2018 impose security and incident reporting obligations on Operators of Essential Services (OES) and relevant Digital Service Providers (DSPs) to ensure... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-network-information-systems-regulations-2018.json #### The Network and Information Systems Regulations 2018, Regulation 10: The security duties of operators of essential services - **ID**: uk-network-information-systems-regulations-2018-regulation-10-security-measures - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Operators of Essential Services (OES) must implement appropriate technical and organizational measures to manage security risks, prevent and minimize the impact of incidents, and ensure service contin... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-network-information-systems-regulations-2018-regulation-10-security-measures.json #### UK Network and Information Systems (NIS) Regulations 2018 - **ID**: uk-nis-regulations-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Network and Information Systems (NIS) Regulations 2018 (SI 2018/506) implement EU Directive 2016/1148 in the UK, requiring operators of essential services and relevant digital service providers to... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-nis-regulations-2018.json #### The Network and Information Systems Regulations 2018 - **ID**: uk-nis-regulations-2018-uk-nis-implementing - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation requires operators of essential services and relevant digital service providers to implement appropriate security measures for their network and information systems and to notify serio... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-nis-regulations-2018-uk-nis-implementing.json #### UK Ofcom Highly Effective Age Assurance Guidance 2025 (Online Safety Act 2023 Part 5 Section 81 Duty; Four Criteria - Technical Accuracy, Robustness, Reliability, Fairness; Compliance Deadlines 17 January 2025 Part 5 / 25 July 2025 Part 3) - **ID**: uk-ofcom-highly-effective-age-assurance-guidance-2025-osa-part-5 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Ofcom (Office of Communications) published the Guidance on highly effective age assurance and other Part 5 duties on 16 January 2025 implementing the Online Safety Act 2023 Part 5 statutory duty to us... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ofcom-highly-effective-age-assurance-guidance-2025-osa-part-5.json #### UK Ofcom Online Safety Act 2023 Illegal Content Codes of Practice 2024 - Risk Assessment Duty by 16 March 2025 and Enforcement from 17 March 2025 - **ID**: uk-ofcom-osa-illegal-content-codes-of-practice-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: In-scope user-to-user service providers and search service providers under the UK Online Safety Act 2023 must, following Ofcom's publication of the Illegal Content Codes of Practice and risk assessmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ofcom-osa-illegal-content-codes-of-practice-2024.json #### UK Online Safety Act 2023 - Ofcom Regulation of User-to-User Services and Search Engines: Illegal Content and Child Safety Duties - **ID**: uk-online-safety-act-2023-ofcom-illegal-content-duty - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Online Safety Act 2023 (c. 50) places statutory safety duties on UK-accessible user-to-user services and search engines. Services must take proportionate measures to prevent and minimise illegal c... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-ofcom-illegal-content-duty.json #### UK Online Safety Act 2023 Section 10 - Illegal Content Safety Duties of User-to-User Services (Proportionate Measures, Swift Removal, Terms of Service Disclosure, Proactive Technology) - **ID**: uk-online-safety-act-2023-section-10-illegal-content-safety-duties - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 10 of the Online Safety Act 2023 (c. 50) imposes the primary illegal content safety duty on user-to-user services - the downstream operational compliance obligation built upon the section 9 il... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-10-illegal-content-safety-duties.json #### Online Safety Act 2023 Section 12: Safety duties protecting children - **ID**: uk-online-safety-act-2023-section-12-risk-assessment-duties-services - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Providers of regulated user-to-user services likely to be accessed by children must implement proportionate measures to mitigate risks of harm, prevent children from encountering harmful content, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-12-risk-assessment-duties-services.json #### UK Online Safety Act 2023 Section 20 - Duty about Content Reporting (All Services Illegal Content, Children-Accessible Services Content Harmful to Children, Affected Person Definition, Age Verification Exception, Section 22 Cross-Reference) - **ID**: uk-online-safety-act-2023-section-20-content-reporting-duty - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 20 of the Online Safety Act 2023 (c. 50) imposes a content reporting duty on all providers of regulated user-to-user services. Under section 20(2), the provider must operate systems and proces... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-20-content-reporting-duty.json #### Online Safety Act 2023 Section 36: Duties about children’s access assessments - **ID**: uk-online-safety-act-2023-section-36-safety-duties-priority-content - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Providers of Part 3 services must conduct, document, and regularly update children's access assessments for each service to evaluate the risk of children accessing it. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-36-safety-duties-priority-content.json #### UK Online Safety Act 2023 Section 64 - User Identity Verification (Category 1 Service Duty, Optional Verification for All Adult Users, Any Process Acceptable, Terms of Service Explanation, UK Adult User Scope) - **ID**: uk-online-safety-act-2023-section-64-user-identity-verification - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 64 of the Online Safety Act 2023 (c. 50) imposes a user identity verification duty on providers of Category 1 services (designated under section 95). Under section 64(1), a provider of a Categ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-64-user-identity-verification.json #### Online Safety Act 2023, Section 7: Providers of user-to-user services: duties of care - **ID**: uk-online-safety-act-2023-section-7-duties-of-care - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This section specifies the duties of care that providers of regulated user-to-user services must comply with, establishing a baseline for all services and imposing additional duties for services likel... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-7-duties-of-care.json #### UK Online Safety Act 2023 Section 71 - Duty Not to Act Against Users Except in Accordance with Terms of Service (Category 1 Service, Takedown/Restriction/Suspension/Ban Only Per Terms, Section 10/12 Safety Duty Exception, Criminal/Civil Liability Exception, Fraudulent Advertising Exception, Consumer Content Exclusion) - **ID**: uk-online-safety-act-2023-section-71-action-against-users-only-per-terms - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 71 of the Online Safety Act 2023 (c. 50) imposes a duty on providers of Category 1 services (designated under section 95) not to act against users except in accordance with the terms of servic... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-71-action-against-users-only-per-terms.json #### UK Online Safety Act 2023 Section 9 - Illegal Content Risk Assessment Duties of User-to-User Services (Suitable and Sufficient, Schedule 3 Timing, Pre-Significant-Change Assessment, Ofcom Risk Profiles) - **ID**: uk-online-safety-act-2023-section-9-illegal-content-risk-assessment-duties - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 9 of the Online Safety Act 2023 (c. 50) imposes the foundational illegal content risk assessment duty on user-to-user services regulated under the Act - the principal upstream compliance oblig... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-9-illegal-content-risk-assessment-duties.json #### UK Online Safety (CSEA Content Reporting by Regulated User-to-User Service Providers) Regulations 2026, SI 2026/268 - NCA Reporting Duty - **ID**: uk-online-safety-csea-content-reporting-2026-si-268 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Regulated user-to-user service providers must register with the National Crime Agency, designate an organization administrator, and report detected child sexual exploitation and abuse content with Sch... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-csea-content-reporting-2026-si-268.json #### UK Privacy and Electronic Communications Regulations 2003 (PECR) - **ID**: uk-pecr-2003 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Privacy and Electronic Communications (EC Directive) Regulations 2003 (SI 2003/2426) implement Directive 2002/58/EC in the UK, prohibiting unsolicited marketing calls and electronic messages witho... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-pecr-2003.json #### Product Security and Telecommunications Infrastructure Act 2022, Part 1, Chapter 2: Duties of relevant persons, etc - **ID**: uk-product-security-telecom-infrastructure-act-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation establishes duties for manufacturers, importers, and distributors of relevant connectable products to ensure compliance with security requirements, investigate failures, take correctiv... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-product-security-telecom-infrastructure-act-2022.json #### Product Security and Telecommunications Infrastructure Act 2022 Part 1: Security requirements - **ID**: uk-product-security-telecommunications-infrastructure-act-2022-part-1-security-requirements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Act empowers the Secretary of State to specify security requirements for relevant connectable products made available to UK consumers, creating a framework for future mandatory product security s... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-product-security-telecommunications-infrastructure-act-2022-part-1-security-requirements.json #### UK Product Security and Telecommunications Infrastructure Act 2022 - IoT Security Requirements - **ID**: uk-psti-act-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This UK law requires manufacturers, importers, and distributors of consumer connectable products to meet minimum security standards, including a ban on universal default passwords, publishing a vulner... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-psti-act-2022.json #### UK Product Security and Telecommunications Infrastructure Act 2022 (PSTI) - Consumer Connectable Product Security Baseline - **ID**: uk-psti-act-2022-product-security-iot-consumer-requirements - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Part 1 of the PSTI Act 2022 (c. 46), effective April 2024, requires manufacturers, importers, and distributors of consumer connectable products (IoT devices, smartphones, routers, smart home devices) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-psti-act-2022-product-security-iot-consumer-requirements.json #### US Title 18 - 18 USC 1037 Fraud and Related Activity in Connection with Electronic Mail (CAN-SPAM Criminal Provisions) - **ID**: us-18-usc-1037-fraud-related-activity-electronic-mail-can-spam-criminal - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: 18 USC 1037 titled 'Fraud and related activity in connection with electronic mail' is the criminal provision of the CAN-SPAM Act of 2003 that criminalizes high-volume deceptive commercial email conduc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1037-fraud-related-activity-electronic-mail-can-spam-criminal.json #### US Title 18 - 18 USC 2701 Stored Communications Act Unlawful Access to Stored Communications - **ID**: us-18-usc-2701-sca-unlawful-access-stored-communications - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: 18 USC 2701 titled 'Unlawful access to stored communications' is the Stored Communications Act provision criminalizing intentional unauthorized access to electronic communication service facilities to... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2701-sca-unlawful-access-stored-communications.json #### US Title 18 - 18 USC 2702 Stored Communications Act Voluntary Disclosure of Customer Communications or Records - **ID**: us-18-usc-2702-sca-voluntary-disclosure-customer-communications-records - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: 18 USC 2702 titled 'Voluntary disclosure of customer communications or records' is the Stored Communications Act provision regulating when a provider of an electronic communication service or a remote... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2702-sca-voluntary-disclosure-customer-communications-records.json #### US Title 18 - 18 USC 2703 Stored Communications Act Required Disclosure of Customer Communications or Records - **ID**: us-18-usc-2703-sca-required-disclosure-customer-records - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: 18 USC 2703 titled 'Required disclosure of customer communications or records' is the Stored Communications Act provision setting the legal process required for governmental access to the contents of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-2703-sca-required-disclosure-customer-records.json #### US 6 CFR Part 27: Chemical Facility Anti-Terrorism Standards (CFATS) - **ID**: us-6-cfr-part-27-chemical-facility-anti-terrorism-standards - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: US 6 CFR Part 27 implements the Chemical Facility Anti-Terrorism Standards (CFATS) program administered by DHS Cybersecurity and Infrastructure Security Agency (CISA). CFATS requires high-risk chemica... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-6-cfr-part-27-chemical-facility-anti-terrorism-standards.json #### US AI Cybersecurity Clearinghouse (Sec. 2(d), EO Promoting Advanced AI Innovation and Security, 2026) - **ID**: us-ai-cybersecurity-clearinghouse-2026 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The AI Cybersecurity Clearinghouse is the voluntary federal-industry coordination body created by Section 2 of the Executive Order Promoting Advanced Artificial Intelligence Innovation and Security si... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ai-cybersecurity-clearinghouse-2026.json #### California Delete Act 2023 (SB 362) - **ID**: us-ca-delete-act-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: California SB 362 signed October 10, 2023 requires data brokers to register with the California Privacy Protection Agency and mandates the CPPA to create a universal deletion mechanism by January 1, 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-delete-act-2023.json #### Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) - **ID**: us-circia-cyber-incident-reporting-act-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) mandates that covered entities in critical infrastructure sectors report covered cyber incidents to the Cybersecurity and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-circia-cyber-incident-reporting-act-2022.json #### US Cyber Incident Reporting for Critical Infrastructure Act 2022 (CIRCIA) - 72 Hour Incident and 24 Hour Ransomware Payment Reporting to CISA, Effective on Final Rule - **ID**: us-cisa-circia-cyber-incident-reporting-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Covered entities in 16 critical infrastructure sectors subject to the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA, 6 U.S.C. 681 et seq., enacted as Division Y of the Conso... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-circia-cyber-incident-reporting-2022.json #### CISA Cross-Sector Cybersecurity Performance Goals 2022 - Baseline Cybersecurity Practices for Critical Infrastructure - **ID**: us-cisa-cpg-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This voluntary guidance from CISA establishes a common set of baseline cybersecurity goals for critical infrastructure owners and operators to reduce risks across both Information Technology (IT) and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-cpg-2022.json #### CISA Critical Infrastructure Cybersecurity - 16 Sector Protection Framework - **ID**: us-cisa-critical-infrastructure-16-sectors-cyber-resilience - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: CISA designates 16 critical infrastructure sectors under Presidential Policy Directive 21 (PPD-21). Each sector has a designated Sector Risk Management Agency (SRMA) responsible for coordinating cyber... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-critical-infrastructure-16-sectors-cyber-resilience.json #### Cybersecurity Information Sharing Act 2015 - 6 USC 1501 Federal-Private Threat Intelligence - **ID**: us-cisa-cybersecurity-information-sharing-6-usc-1501 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Sections 1500 through 1525 of title 6 of the United States Code codify the Cybersecurity Information Sharing Act of 2015, enacted as Title I of the Cybersecurity Act of 2015 (Division N of the Consoli... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-cybersecurity-information-sharing-6-usc-1501.json #### CISA Known Exploited Vulnerabilities Catalog - Binding Operational Directive 22-01 and Mandatory Remediation Timelines - **ID**: us-cisa-kev-catalog - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Binding Operational Directive (BOD) 22-01 requires U.S. Federal Civilian Executive Branch (FCEB) agencies to remediate vulnerabilities listed in the CISA-managed Known Exploited Vulnerabilities (KEV) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-kev-catalog.json #### CISA Binding Operational Directive 22-01 - Known Exploited Vulnerabilities Catalog: Federal Agency Mandatory Patch Deadlines (14-Day Critical, 30-Day High), KEV Catalog Methodology, Vendor Coordination, Private Sector Voluntary Adoption and Metrics Reporting - **ID**: us-cisa-known-exploited-vulnerabilities-bod-22-01 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: Federal civilian executive branch agencies must remediate vulnerabilities listed in the CISA Known Exploited Vulnerabilities (KEV) Catalog within 14 days for critical severity and 30 days for high sev... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-known-exploited-vulnerabilities-bod-22-01.json #### CISA Secure by Design Principles 2023 - Product Security Obligations for Software Manufacturers: Default Security Settings, Vulnerability Elimination and Transparency - **ID**: us-cisa-secure-by-design-principles-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This guidance requires software manufacturers to take ownership of customer security outcomes, embrace radical transparency and accountability, and lead from the top by implementing secure-by-design p... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-secure-by-design-principles-2023.json #### Clinger-Cohen Act 1996 - 40 USC 11101 Information Technology Management Reform - **ID**: us-clinger-cohen-act-40-usc-11101 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 11101 and following of title 40 of the United States Code codify the Clinger-Cohen Act (Information Technology Management Reform Act of 1996, Public Law 104-106 Divisions D and E), the princip... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clinger-cohen-act-40-usc-11101.json #### Clarifying Lawful Overseas Use of Data (CLOUD) Act - US Provider Obligation to Produce Data Stored Abroad, Executive Agreement Framework for Bilateral Data Access, Comity Challenge Procedure, Conflict of Laws Analysis and DOJ Guidance on Qualifying Executive Agreements - **ID**: us-cloud-act-2018-cross-border-data - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: The CLOUD Act enables the U.S. to enter into bilateral executive agreements with foreign countries that have robust privacy and civil liberties protections, allowing those countries to request electro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cloud-act-2018-cross-border-data.json #### US CMMC 2.0 Cybersecurity Maturity Model Certification - **ID**: us-cmmc-2-0-defence-contractors-levels - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This regulation requires US defence contractors to achieve Level 1, 2, or 3 certification, as outlined in FAR 52.204-21, NIST 800-171, and NIST 800-172, with specific requirements detailed in Section ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cmmc-2-0-defence-contractors-levels.json #### US Cybersecurity Maturity Model Certification (CMMC) Program Final Rule, 32 CFR Part 170, Effective 16 December 2024 - Three-Tier Certification Framework, Four-Phase Implementation, NIST SP 800-171 R2 / 800-172 Anchored Requirements, C3PAO and DIBCAC Assessment Pathways - **ID**: us-cmmc-final-rule-32-cfr-170-2024 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: On 15 October 2024 the Department of Defense published the CMMC Program final rule at 89 FR 83092, codified at 32 CFR Part 170, with an effective date of 16 December 2024. The rule operationalises the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cmmc-final-rule-32-cfr-170-2024.json #### Colorado Privacy Act 2021 (CPA) - **ID**: us-co-cpa-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Colorado SB 190 signed July 7, 2021 effective July 1, 2023 (sensitive data provisions January 1, 2024) grants Colorado residents rights to access, correction, deletion, portability, and opt-out of tar... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-co-cpa-2021.json #### US Computer Fraud and Abuse Act (18 USC 1030): Unauthorized Computer Access Offenses - **ID**: us-computer-fraud-and-abuse-act - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Computer Fraud and Abuse Act (18 U.S.C. 1030) is the principal US federal anti-hacking statute, prosecuted by the Department of Justice and supporting a private civil action. Section 1030 criminal... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-computer-fraud-and-abuse-act.json #### US Connecticut Data Privacy Act 2023 - **ID**: us-ct-ctdpa-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Connecticut Data Privacy Act grants consumers rights to access, correct, delete, and port personal data, requires opt-in consent for sensitive data and data sales related to known children under 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ct-ctdpa-2023.json #### Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) - Reporting Requirements - **ID**: us-cyber-incident-reporting-critical-infrastructure-act-2022-section-2242-reporting - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This act requires covered entities to report covered cyber incidents and ransomware payments to the Cybersecurity and Infrastructure Security Agency (CISA) to enable rapid assistance and information s... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cyber-incident-reporting-critical-infrastructure-act-2022-section-2242-reporting.json #### US Delaware Personal Data Privacy Act 2023 - **ID**: us-de-dpdpa-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Delaware Personal Data Privacy Act applies the lowest consumer count threshold among US comprehensive state privacy laws at 35,000 Delaware consumers, requires opt-in consent for sensitive data an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-de-dpdpa-2023.json #### US DOJ AI Criminal Misuse Enforcement Priority (Sec. 4, EO Promoting Advanced AI Innovation and Security, 2026) - **ID**: us-doj-ai-criminal-enforcement-priority-2026 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 4 (Protection Against Criminal Actors) of the Executive Order Promoting Advanced Artificial Intelligence Innovation and Security signed June 2, 2026 directs the Attorney General to prioritise ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-doj-ai-criminal-enforcement-priority-2026.json #### DOJ Final Rule on Bulk US Sensitive Personal Data and Government-Related Data - 28 CFR Part 202 (EO 14117 implementation) - **ID**: us-doj-bulk-sensitive-data-28cfr-202-2025 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: The DOJ Final Rule at 28 CFR Part 202, implementing Executive Order 14117 ("Preventing Access to Americans' Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Conce... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-doj-bulk-sensitive-data-28cfr-202-2025.json #### US Driver's Privacy Protection Act 1994 - **ID**: us-dppa-1994 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Driver's Privacy Protection Act restricts the use and disclosure of personal information from state motor vehicle records, permits disclosure only for fourteen enumerated permissible uses, and pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dppa-1994.json #### US Electronic Communications Privacy Act 1986 - **ID**: us-ecpa-1986 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Electronic Communications Privacy Act establishes a framework governing interception of electronic communications (Wiretap Act), government access to stored electronic communications (Stored Commu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ecpa-1986.json #### Executive Order 14028 on Improving the Nation's Cybersecurity - **ID**: us-eo-14028-cybersecurity-2021-sbom-mfa-zerotrust - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Executive Order mandates US federal agencies to modernize their cybersecurity posture by adopting Zero Trust Architecture, implementing stronger multi-factor authentication (MFA) and encryption, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-14028-cybersecurity-2021-sbom-mfa-zerotrust.json #### US Executive Order 14179 - Removing Barriers to American Leadership in Artificial Intelligence (2025) - **ID**: us-eo-14179-ai-2025 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: President Trump's Executive Order 14179, signed January 23, 2025, revokes the Biden Administration's Executive Order 14110 on AI safety and directs federal agencies to eliminate or revise Biden-era AI... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-14179-ai-2025.json #### US CNSS 30-Day Cyber Defence Prioritisation for National Security Systems (Sec. 2(a), EO Promoting Advanced AI Innovation and Security, 2026) - **ID**: us-eo-2026-sec-2a-cnss-national-security-systems-cyber-defence - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: Sec. 2(a) of the Executive Order Promoting Advanced Artificial Intelligence Innovation and Security signed June 2, 2026 directs the Committee on National Security Systems (CNSS) within 30 days of the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-2026-sec-2a-cnss-national-security-systems-cyber-defence.json #### US Secretary of War 30-Day Cyber Defence Prioritisation for Department of War Information Systems (Sec. 2(b), EO Promoting Advanced AI Innovation and Security, 2026) - **ID**: us-eo-2026-sec-2b-secretary-war-dow-information-systems-cyber-defence - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: Sec. 2(b) of the Executive Order Promoting Advanced Artificial Intelligence Innovation and Security signed June 2, 2026 directs the Secretary of War within 30 days of the order (verbatim deadline: wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-2026-sec-2b-secretary-war-dow-information-systems-cyber-defence.json #### US CISA 30-Day Binding Operational Directives + Covered Frontier Model Access for Civilian Federal Cyber Defence (Sec. 2(c), EO Promoting Advanced AI Innovation and Security, 2026) - **ID**: us-eo-2026-sec-2c-cisa-bod-civilian-federal-cyber-defence-covered-frontier-model-access - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: Sec. 2(c) of the Executive Order Promoting Advanced Artificial Intelligence Innovation and Security signed June 2, 2026 directs the Secretary of Homeland Security, through the Director of the Cybersec... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-2026-sec-2c-cisa-bod-civilian-federal-cyber-defence-covered-frontier-model-access.json #### FCC Data Breach Notification Rule Amendment 2024 (Report and Order FCC 24-31) - **ID**: us-fcc-data-breach-rule-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: FCC Report and Order FCC 24-31 adopted January 11, 2024 effective December 18, 2024 updates Part 64 CPNI rules requiring telecommunications carriers, VoIP providers, and TRS providers to notify the FC... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-data-breach-rule-2024.json #### US Fair Credit Reporting Act 1970 - **ID**: us-fcra-1970 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Fair Credit Reporting Act governs the collection, dissemination, and use of consumer credit information by consumer reporting agencies, furnishers, and users of consumer reports, granting consumer... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcra-1970.json #### US FedRAMP Moderate Baseline - Security Authorisation Requirements for Cloud Service Providers Handling Federal Data - **ID**: us-fedramp-authorization-moderate - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The US Federal Risk and Authorization Management Program (FedRAMP) Moderate baseline mandates that Cloud Service Providers (CSPs) handling federal data, specifically Controlled Unclassified Informatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fedramp-authorization-moderate.json #### Foreign Intelligence Surveillance Act 1978 - 50 USC Chapter 36 - **ID**: us-fisa-foreign-intelligence-surveillance-act-50-usc-ch36 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Chapter 36 of title 50 of the United States Code codifies the Foreign Intelligence Surveillance Act of 1978 (Public Law 95-511, as amended) and subsequent additions including the FISA Amendments Act o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fisa-foreign-intelligence-surveillance-act-50-usc-ch36.json #### US Federal Information Security Modernization Act of 2014 (Public Law 113-283) - Federal Civilian Cybersecurity Framework - **ID**: us-fisma-2014-federal-information-security-modernization-pl-113-283 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Federal Information Security Modernization Act of 2014 amended the Federal Information Security Management Act of 2002 to clarify operational authority of the Department of Homeland Security over ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fisma-2014-federal-information-security-modernization-pl-113-283.json #### US Florida Digital Bill of Rights 2023 - **ID**: us-fl-fdbr-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Florida Digital Bill of Rights establishes consumer privacy rights over personal data, prohibits social media platforms from processing personal data of children under 18 without verifiable parent... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fl-fdbr-2023.json #### US Freedom of Information Act 1966 - **ID**: us-foia-1966 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Freedom of Information Act provides any person the right to request access to federal agency records, requires agencies to respond within 20 business days, and establishes nine exemptions protecti... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-foia-1966.json #### 16 CFR Part 314 - Standards for Safeguarding Customer Information - **ID**: us-ftc-cfr-16-part-314-gramm-leach-bliley-safeguards - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Organizations must develop, implement, and maintain a comprehensive written information security program to protect customer information, which includes designating a qualified individual, conducting ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-cfr-16-part-314-gramm-leach-bliley-safeguards.json #### FTC Health Breach Notification Rule Amendment 2024 - **ID**: us-ftc-hbnr-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The FTC amended its Health Breach Notification Rule effective July 29, 2024 to explicitly cover health apps, fitness trackers, and consumer health technologies not subject to HIPAA, requiring notifica... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-hbnr-2024.json #### FTC Gramm-Leach-Bliley Safeguards Rule 2023 - **ID**: us-ftc-safeguards-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The FTC's updated Safeguards Rule under the Gramm-Leach-Bliley Act, fully effective June 9, 2023, requires non-bank financial institutions to implement a comprehensive written information security pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-safeguards-2023.json #### Health Industry Cybersecurity Practices (HICP): Managing Threats and Protecting Patients (2023 Edition) - **ID**: us-hhs-405d-healthcare-cybersecurity-practices - **Category**: Cybersecurity - **Version**: 2023.1.0 - **BLUF**: Mandated by Section 405(d) of the Cybersecurity Act of 2015, the Health Industry Cybersecurity Practices (HICP) are a voluntary set of guidelines from the U.S. Department of Health and Human Services ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hhs-405d-healthcare-cybersecurity-practices.json #### US HIPAA Omnibus Rule 2013 - Modifications to Privacy, Security, and Breach Notification Rules - **ID**: us-hipaa-omnibus-rule-2013 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The HIPAA Omnibus Rule (78 FR 5566) effective March 26, 2013 (compliance date September 23, 2013) implements HITECH Act modifications to HIPAA, extending Privacy and Security Rule obligations directly... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-omnibus-rule-2013.json #### US HIPAA Final Rule on Reproductive Health Care Privacy 2024 - **ID**: us-hipaa-reproductive-health-privacy-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The HHS Final Rule on Reproductive Health Care Privacy, published April 26, 2024 and effective June 25, 2024, amends the HIPAA Privacy Rule to prohibit covered entities and business associates from us... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-reproductive-health-privacy-2024.json #### US HIPAA Security Rule 2005 (45 CFR Parts 160 and 164 Subparts A and C) - **ID**: us-hipaa-security-rule-2005 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The HIPAA Security Rule (45 CFR Parts 160 and 164 Subparts A and C) effective April 20, 2005 requires covered entities and business associates to implement administrative, physical, and technical safe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-security-rule-2005.json #### HIPAA Security Rule 45 CFR § 164 - Technical Safeguards for Electronic Protected Health Information - **ID**: us-hipaa-security-rule-45-cfr-164-technical-safeguards - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The HIPAA Security Rule (45 C.F.R. Part 164, Subpart C) requires covered entities and business associates to implement administrative, physical, and technical safeguards to protect the confidentiality... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-security-rule-45-cfr-164-technical-safeguards.json #### US Iowa Consumer Data Protection Act 2023 - **ID**: us-ia-icdpa-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Iowa Consumer Data Protection Act is the most business-friendly US comprehensive state privacy law alongside Utah, providing consumers rights to access, delete, and port personal data and to opt o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ia-icdpa-2023.json #### Illinois Artificial Intelligence Video Interview Act 2019 (AIVEA) - **ID**: us-il-aivea-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Illinois AIVEA effective January 1, 2020 requires employers to notify job applicants before using AI to evaluate recorded video interviews, disclose the general types of AI features used in the evalua... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-il-aivea-2019.json #### US Illinois Biometric Information Privacy Act 2008 - **ID**: us-il-bipa-2008 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Illinois Biometric Information Privacy Act requires written consent and a public retention policy before collecting biometric identifiers or biometric information, prohibits sale or profit from bi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-il-bipa-2008.json #### Illinois Biometric Information Privacy Act Amendment 2023 (SB 2122) - **ID**: us-il-bipa-amendment-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Illinois SB 2122 signed May 16, 2023 limits BIPA private right of action claims to a single violation per aggrieved person regardless of the number of biometric data collection incidents, applying ret... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-il-bipa-amendment-2023.json #### US Indiana Consumer Data Protection Act 2023 - **ID**: us-in-cdpa-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Indiana Consumer Data Protection Act grants consumers rights to access, correct, delete, and port personal data and to opt out of targeted advertising, sale, and profiling, requires opt-in consent... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-in-cdpa-2023.json #### Indiana Consumer Data Protection Act (ICDPA) 2023 - **ID**: us-indiana-cdpa-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Indiana Consumer Data Protection Act (ICDPA) was enacted as Indiana Senate Bill 5 and signed into law on 1 May 2023, effective 1 January 2026. The ICDPA establishes consumer privacy rights and con... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-indiana-cdpa-2024.json #### Internet of Things Cybersecurity Improvement Act of 2020 - **ID**: us-iot-cybersecurity-improvement-act-2020 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The IoT Cybersecurity Improvement Act of 2020 requires federal agencies to only procure IoT devices that comply with minimum security standards developed by NIST and mandates that vendors adopt coordi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-iot-cybersecurity-improvement-act-2020.json #### Kentucky Consumer Data Protection Act (KY CDPA) 2024 - **ID**: us-kentucky-cdpa-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Kentucky Consumer Data Protection Act (KY CDPA) was enacted as Kentucky Senate Bill 15 and signed into law by Governor Andy Beshear on 4 April 2024, effective 1 January 2026. The KY CDPA establish... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-kentucky-cdpa-2024.json #### Kentucky Consumer Data Protection Act 2024 (HB 15) - **ID**: us-ky-cdpa-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Kentucky HB 15 signed March 24, 2024 effective January 1, 2026 grants Kentucky consumers rights to access, correct, delete, and port personal data, requires opt-in consent for sensitive data processin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ky-cdpa-2024.json #### Massachusetts Data Security Regulations 201 CMR 17.00 - **ID**: us-ma-data-security-2010 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Massachusetts 201 CMR 17.00 requires any person or entity holding personal information of Massachusetts residents to implement a comprehensive written information security program, mandates encryption... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ma-data-security-2010.json #### Maine Act to Protect the Privacy of Online Consumer Information 2019 - **ID**: us-maine-isa-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Maine's Act to Protect the Privacy of Online Consumer Information requires internet service providers to obtain opt-in consent before using, selling, or disclosing customer personal information, prohi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-maine-isa-2019.json #### US Minnesota Consumer Data Privacy Act 2024 - **ID**: us-mn-mcdpa-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Minnesota Consumer Data Privacy Act grants consumers rights to access, correct, delete, and port personal data and to opt out of targeted advertising, sale, and profiling, requires opt-in consent ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-mn-mcdpa-2024.json #### US Montana Consumer Data Privacy Act 2023 - **ID**: us-mt-mtcdpa-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Montana Consumer Data Privacy Act grants consumers rights to access, correct, delete, and port personal data and to opt out of sale and targeted advertising, requires opt-in consent for sensitive ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-mt-mtcdpa-2023.json #### National Cybersecurity Strategy of the United States of America (2023) - **ID**: us-national-cybersecurity-strategy-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This strategy establishes a whole-of-nation approach to US cybersecurity, shifting the burden of defense from end-users to the most capable organizations, including government and technology producers... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-cybersecurity-strategy-2023.json #### US Nebraska Data Privacy Act 2024 - **ID**: us-ne-ndpa-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Nebraska Data Privacy Act grants consumers rights to access, correct, delete, and port personal data and to opt out of targeted advertising, sale, and profiling, requires opt-in consent for sensit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ne-ndpa-2023.json #### NIST Cybersecurity Framework 2.0 (2024) - Six Core Functions: Govern, Identify, Protect, Detect, Respond, Recover - **ID**: us-nist-csf-2-0-cybersecurity-framework-2024 - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: The NIST Cybersecurity Framework 2.0 provides a policy framework to help organizations manage and reduce cybersecurity risk across six core functions: Govern, Identify, Protect, Detect, Respond, and R... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nist-csf-2-0-cybersecurity-framework-2024.json #### NIST Cybersecurity Framework 2.0 - Govern, Identify, Protect, Detect, Respond, Recover - **ID**: us-nist-cybersecurity-framework-2-0-csf-identify-protect - **Category**: Cybersecurity - **Version**: 2.0 - **BLUF**: NIST CSF 2.0 (February 2024) expands the original five functions with a new Govern function, providing a flexible risk-based framework for managing cybersecurity risk applicable to organizations of al... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nist-cybersecurity-framework-2-0-csf-identify-protect.json #### NIST SP 800-63-4 Digital Identity Guidelines (Revision 4, July 2025) - **ID**: us-nist-sp-800-63-4-2025-digital-identity-guidelines - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NIST Special Publication 800-63-4 is the United States federal baseline for digital identity services across enrollment, authentication, and federation. Revision 4 was finalized on 31 July 2025 and re... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nist-sp-800-63-4-2025-digital-identity-guidelines.json #### US New Jersey Data Privacy Law 2024 - **ID**: us-nj-dppl-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The New Jersey Data Privacy Law grants consumers rights to access, correct, delete, and port personal data and to opt out of targeted advertising, sale, and profiling, requires opt-in consent for sens... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nj-dppl-2024.json #### US National Security Memorandum 10 (NSM-10) — Promoting United States Leadership in Quantum Computing While Mitigating Risks to Vulnerable Cryptographic Systems (May 4, 2022) - **ID**: us-nsm-10-quantum-computing-vulnerable-cryptographic-systems-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: National Security Memorandum 10 (NSM-10), signed by President Joseph R. Biden Jr. on May 4, 2022, sets two interrelated United States policy goals: (i) 'maintain United States leadership in QIS [Quant... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nsm-10-quantum-computing-vulnerable-cryptographic-systems-2022.json #### Nevada Senate Bill 220 Online Privacy Law Amendment 2019 - **ID**: us-nv-sb220-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Nevada SB 220 signed May 29, 2019 effective October 1, 2019 amended Nevada Revised Statutes Chapter 603A to require operators of commercial websites and online services collecting personal information... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nv-sb220-2019.json #### New York State Department of Financial Services - 23 NYCRR Part 500 Cybersecurity Regulation (Enacted 1 March 2017; First Amended April 2020 to Move Annual Certification Filing to 15 April; Second Amended Effective 1 November 2023 with Class A Company Heightened Standards) - **ID**: us-ny-dfs-cybersecurity-regulation-23-nycrr-part-500 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: 23 NYCRR Part 500 - the New York State Department of Financial Services Cybersecurity Regulation - was enacted on 1 March 2017 as the first-in-the-nation comprehensive state-level cybersecurity regula... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ny-dfs-cybersecurity-regulation-23-nycrr-part-500.json #### New York SHIELD Act 2019 - **ID**: us-ny-shield-act-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: New York's Stop Hacks and Improve Electronic Data Security Act expands breach notification obligations and imposes mandatory reasonable data security requirements on any business holding private infor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ny-shield-act-2019.json #### New York City Local Law 144 on Automated Employment Decision Tools 2021 - **ID**: us-nyc-local-law-144-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: NYC Local Law 144 effective July 5, 2023 requires employers using automated employment decision tools to screen NYC-based candidates or employees to conduct annual independent bias audits, publish aud... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nyc-local-law-144-2021.json #### Ohio Consumer Privacy Act 2023 - **ID**: us-oh-ocpa-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Ohio's Consumer Privacy Act (HB 376), signed December 28, 2023 and effective October 23, 2024, grants Ohio residents rights to access, correct, delete, and opt out of targeted advertising, sale of per... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-oh-ocpa-2023.json #### US OMB Memorandum M-23-02 — Migrating to Post-Quantum Cryptography (November 18, 2022) - **ID**: us-omb-m-23-02-migrating-to-post-quantum-cryptography-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: OMB Memorandum M-23-02 'Migrating to Post-Quantum Cryptography' was issued on November 18, 2022 by Shalanda D. Young, Director of the Office of Management and Budget, to direct federal civilian Execut... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-omb-m-23-02-migrating-to-post-quantum-cryptography-2022.json #### US Oregon Consumer Privacy Act 2023 - **ID**: us-or-ocpa-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Oregon Consumer Privacy Act grants consumers rights to access, correct, delete, and port personal data and to opt out of sale and targeted advertising, requires opt-in consent for sensitive data, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-or-ocpa-2023.json #### USA PATRIOT Act 2001 - Public Law 107-56 Antiterrorism Authorities - **ID**: us-patriot-act-2001-pl-107-56 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The USA PATRIOT Act (Uniting and Strengthening America by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism Act of 2001, Public Law 107-56, enacted 26 October 2001) is the omnib... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-patriot-act-2001-pl-107-56.json #### Pen Register and Trap and Trace Act - 18 USC 3121 - **ID**: us-pen-register-trap-trace-18-usc-3121 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Section 3121 of title 18 of the United States Code, the Pen Register and Trap and Trace Devices Act (enacted as Title III of the Electronic Communications Privacy Act of 1986, Public Law 99-508, with ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pen-register-trap-trace-18-usc-3121.json #### Rhode Island Data Transparency and Privacy Protection Act (DTPPA) 2024 - **ID**: us-rhode-island-dtppa-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Rhode Island Data Transparency and Privacy Protection Act (DTPPA) was signed by Governor Daniel McKee on 29 June 2024, effective 1 January 2026. The DTPPA establishes consumer data privacy rights ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-rhode-island-dtppa-2024.json #### Rhode Island Data Transparency and Privacy Protection Act 2024 (HB 7787) - **ID**: us-ri-dtppa-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Rhode Island HB 7787 signed June 17, 2024 effective January 1, 2026 grants consumers rights to access, correct, delete, and port personal data, requires opt-in consent for sensitive data, prohibits da... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ri-dtppa-2024.json #### SEC Cybersecurity Risk Management, Strategy, Governance and Incident Disclosure Rules 2023 - **ID**: us-sec-cybersecurity-disclosure-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Mandates U.S. public companies to disclose material cybersecurity incidents on Form 8-K within four business days of determining materiality (Item 1.05) and to annually disclose their cybersecurity ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-cybersecurity-disclosure-2023.json #### SEC Regulation S-P 2024 Amendments - Privacy of Consumer Financial Information and Safeguarding Customer Information - **ID**: us-sec-regulation-sp-2024-amendments - **Category**: Cybersecurity - **Version**: 1.0.1 - **BLUF**: The SEC's May 2024 amendments to Regulation S-P (17 CFR 248.1 through 248.100) require broker-dealers, investment companies, registered investment advisers, funding portals, and transfer agents (colle... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-regulation-sp-2024-amendments.json #### US Stored Communications Act (18 USC ch 121): Stored Electronic Communications Privacy - **ID**: us-stored-communications-act - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Stored Communications Act, Title II of the Electronic Communications Privacy Act (18 U.S.C. ch. 121), protects the privacy of electronic communications held in storage by service providers and gov... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-stored-communications-act.json #### US Tennessee Information Protection Act 2023 - **ID**: us-tn-tipa-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Tennessee Information Protection Act grants consumers rights to access, correct, delete, and port personal data and to opt out of targeted advertising, sale, and profiling, requires opt-in consent... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tn-tipa-2023.json #### Texas Capture or Use of Biometric Identifier Act 2009 (CUBI) - **ID**: us-tx-cubi-2009 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Texas Business and Commerce Code Chapter 503 enacted in 2009 prohibits commercial capture of biometric identifiers including fingerprints, voiceprints, retina scans, iris scans, and face geometry with... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tx-cubi-2009.json #### US Texas Data Privacy and Security Act 2024 - **ID**: us-tx-tdpsa-2024 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Texas Data Privacy and Security Act establishes consumer rights over personal data, requires controllers to conduct data protection assessments for high-risk processing, mandates opt-in consent fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tx-tdpsa-2024.json #### US Utah Consumer Privacy Act 2022 - **ID**: us-ut-ucpa-2022 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Utah Consumer Privacy Act establishes consumer rights to access, delete, and port personal data and to opt out of sale and targeted advertising, applies to businesses with over USD 25 million in a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ut-ucpa-2022.json #### Virginia Consumer Data Protection Act 2021 (CDPA) - **ID**: us-va-cdpa-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Virginia HB 2307 signed March 2, 2021 effective January 1, 2023 establishes consumer rights (access, correction, deletion, portability, opt-out of targeted advertising/sale/profiling) for controllers ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-va-cdpa-2021.json #### US Video Privacy Protection Act 1988 - **ID**: us-vppa-1988 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Video Privacy Protection Act prohibits video service providers from knowingly disclosing personally identifiable information about their subscribers' video rental, sale, or streaming history witho... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-vppa-1988.json #### Vermont Data Broker Registration Act 2018 - **ID**: us-vt-data-broker-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Vermont's Act 171 is the first US state law to specifically regulate data brokers, requiring annual registration with the Vermont AG, mandatory disclosure of data collection practices, a consumer opt-... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-vt-data-broker-2018.json #### US Washington My Health MY Data Act 2023 - **ID**: us-wa-mhmd-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Washington My Health MY Data Act extends health data privacy protections beyond HIPAA to any entity collecting consumer health data, requires affirmative authorisation before collection or sharing... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wa-mhmd-2023.json #### Washington My Health MY Data Act 2023 (SB 5125) - **ID**: us-wa-my-health-data-act-2023 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Washington SB 5125 signed April 27, 2023 effective March 31, 2024 requires opt-in consent before collecting or sharing consumer health data not covered by HIPAA, prohibits geofencing within 2,000 feet... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wa-my-health-data-act-2023.json #### Uruguay Personal Data Protection Law No. 18.331 2008 - URCDP - **ID**: uy-dp-law-2008 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Uruguay's Ley de Protección de Datos Personales y Acción de Habeas Data (Personal Data Protection and Habeas Data Action Law) - Law No. 18.331, published in the Diario Oficial (official gazette) on 18... - **Discovery URL**: https://bidda.com/api/v1/nodes/uy-dp-law-2008.json #### Uzbekistan Law on Personal Data No. UZ-547 of 2019 - ADPD - **ID**: uz-pdp-law-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Uzbekistan's Law on Personal Data (Закон Республики Узбекистан «О персональных данных» - Qonun 'Shaxsiy ma'lumotlar to'g'risida') - Law No. UZ-547, signed by President Shavkat Mirziyoyev on 2 July 201... - **Discovery URL**: https://bidda.com/api/v1/nodes/uz-pdp-law-2019.json #### NIST SPECIAL PUBLICATION 1800-34 Validating the Integrity of Computing Devices - **ID**: validating-integrity-of-computing-devices - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The supply chains of information and communications technologies are increasingly at risk of compromise from counterfeiting, unauthorized production, tampering, theft, and insertion of unexpected soft... - **Discovery URL**: https://bidda.com/api/v1/nodes/validating-integrity-of-computing-devices.json #### Saint Vincent and the Grenadines Data Protection Act 2021 - **ID**: vc-dpa-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Saint Vincent and the Grenadines enacted the Data Protection Act 2021, a CARICOM and OECS-aligned statute establishing principles for the lawful collection, use, and disclosure of personal information... - **Discovery URL**: https://bidda.com/api/v1/nodes/vc-dpa-2021.json #### Venezuela LECDI 2001 - Habeas Data and Electronic Crimes Law Personal Data Provisions - **ID**: ve-lecdi-2001 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Venezuela established a constitutional habeas data right through Article 28 of the Bolivarian Constitution of 1999, which guarantees every person the right to access, correct, and request the deletion... - **Discovery URL**: https://bidda.com/api/v1/nodes/ve-lecdi-2001.json #### United States Virgin Islands - Federal and Territorial Privacy Rights Framework - **ID**: vi-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The United States Virgin Islands (USVI) is an unincorporated organised territory of the United States located in the Caribbean Sea. The USVI is governed under the Revised Organic Act of 1954 and has i... - **Discovery URL**: https://bidda.com/api/v1/nodes/vi-framework.json #### Vietnam Law on Cybersecurity 2018 (Law No. 24/2018/QH14) - **ID**: vn-cybersecurity-law-2018 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Vietnam Law No. 24/2018/QH14 on Cybersecurity signed June 12, 2018 effective January 1, 2019 requires enterprises providing services in Vietnam's cyberspace to store Vietnamese user data in Vietnam, v... - **Discovery URL**: https://bidda.com/api/v1/nodes/vn-cybersecurity-law-2018.json #### Vanuatu Electronic Transactions Act 2000 - Personal Data Provisions - **ID**: vu-eta-2000 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Vanuatu enacted the Electronic Transactions Act No. 24 of 2000, which establishes the legal framework for electronic commerce, digital communications, and electronic transactions in the Republic of Va... - **Discovery URL**: https://bidda.com/api/v1/nodes/vu-eta-2000.json #### Wallis and Futuna - French Data Protection Law (Loi Informatique et Libertés) Framework - **ID**: wf-lil-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Wallis and Futuna is a French overseas collectivity located in the South Pacific Ocean, comprising the islands of Wallis (Uvea), Futuna, and Alofi. Unlike French overseas departments and EU outermost ... - **Discovery URL**: https://bidda.com/api/v1/nodes/wf-lil-framework.json #### Samoa Electronic Transactions Act 2008 - Personal Data Provisions - **ID**: ws-eta-2008 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Samoa enacted the Electronic Transactions Act 2008, which establishes the legal framework for electronic commerce and digital transactions in the Independent State of Samoa (Samoa). The Act includes p... - **Discovery URL**: https://bidda.com/api/v1/nodes/ws-eta-2008.json #### Kosovo Law No. 06/L-082 on Protection of Personal Data - AIP - **ID**: xk-pdpl-2019 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Kosovo's Law No. 06/L-082 on Protection of Personal Data, adopted by the Assembly of Kosovo in 2019 and building upon earlier data protection legislation enacted since Kosovo's Declaration of Independ... - **Discovery URL**: https://bidda.com/api/v1/nodes/xk-pdpl-2019.json #### YARA Pattern-Matching Language v4.5.5 (Meta, Strings, Condition Blocks; nocase/wide/ascii/fullword/xor/base64 Modifiers; VirusTotal/EDR/Sandbox Adoption; YARA-X Rust Rewrite) - **ID**: yara-virustotal-pattern-matching-malware - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: YARA is the open-source pattern-matching language for identifying and classifying malware samples and other artifacts, maintained at github.com/VirusTotal/yara by VirusTotal (now part of Google's Thre... - **Discovery URL**: https://bidda.com/api/v1/nodes/yara-virustotal-pattern-matching-malware.json #### Yemen MOTIT Framework - Arab ICT Organisation and Constitutional Privacy Obligations - **ID**: ye-motit-framework - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Republic of Yemen has established the Ministry of Telecommunications and Information Technology (MOTIT) as the national authority for electronic communications and ICT services. The Constitution o... - **Discovery URL**: https://bidda.com/api/v1/nodes/ye-motit-framework.json #### Cybercrimes Act 19 of 2020 (Republic of South Africa) - Cybercrime Offences, Reporting Obligations, Investigation Powers, and Mutual Assistance (Gazette 45562 of 30 November 2021; Chapters 1-4, 7-9 commenced 1 December 2021) - **ID**: za-cybercrimes-act-19-of-2020 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: The Cybercrimes Act 19 of 2020 of the Republic of South Africa is the country's foundational cybercrime statute. Chapters 1, 2 (excluding Part VI), 3, 4 (excluding sections 38(1)(d), (e) and (f), 40(3... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-cybercrimes-act-19-of-2020.json #### Cybercrimes Act 19 of 2020 - **ID**: za-cybercrimes-act-2020 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This Act criminalizes a wide range of cyber offenses in South Africa and imposes a mandatory reporting duty on electronic communications service providers and financial institutions to report specific... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-cybercrimes-act-2020.json #### South Africa Cybercrimes Act 19 of 2020 Chapter 4 - SAPS Powers to Investigate, Search, Access, or Seize Electronic Evidence, Phased Commencement from 1 December 2021 - **ID**: za-cybercrimes-act-chapter-4-saps-search-seizure-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: South African organisations and individuals subject to investigation of cybercrimes by the South African Police Service (SAPS) must recognise the powers of search, access, and seizure of electronic ev... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-cybercrimes-act-chapter-4-saps-search-seizure-2021.json #### South Africa Identification Act 1997 and Draft Digital Identity Regulations 2026 - **ID**: za-identification-act-1997-digital-identity-2026 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: South Africa's national identity framework is established by the Identification Act 68 of 1997 administered by the Department of Home Affairs (DHA). The Identification Act creates the National Populat... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-identification-act-1997-digital-identity-2026.json #### Regulation of Interception of Communications and Provision of Communication-related Information Act 70 of 2002 - **ID**: za-rica-2002 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: This South African law regulates the interception of communications, requiring telecommunication service providers to verify and record the identity and address of all customers before activating a se... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-rica-2002.json #### Zambia Cybersecurity and Cybercrimes Act 2021 - **ID**: zm-cybersecurity-act-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Zambia's Cybersecurity and Cybercrimes Act 2021, enacted in 2021, establishes the Zambia Information and Communications Technology Authority as the cybersecurity regulator, designates Critical Informa... - **Discovery URL**: https://bidda.com/api/v1/nodes/zm-cybersecurity-act-2021.json #### Zambia Data Protection Act No. 3 of 2021 - ODPC - **ID**: zm-dpa-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Zambia's Data Protection Act No. 3 of 2021 - assented to on 23 March 2021 and gazetted in the Zambia Government Gazette on 24 March 2021 - is Zambia's primary personal data protection legislation, est... - **Discovery URL**: https://bidda.com/api/v1/nodes/zm-dpa-2021.json #### Zimbabwe Data Protection Act 2021 - POTRAZ Compliance Framework - **ID**: zw-dpa-2021 - **Category**: Cybersecurity - **Version**: 1.0.0 - **BLUF**: Zimbabwe Data Protection Act (No. 5 of 2021) establishes comprehensive data subject rights, mandatory data controller registration, consent-based processing obligations, and cross-border transfer cont... - **Discovery URL**: https://bidda.com/api/v1/nodes/zw-dpa-2021.json ### Data Protection & Privacy (301 nodes) #### UAE Federal Decree-Law No. 45/2021 - Personal Data Protection Law - **ID**: ae-federal-decree-law-45-2021-personal-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data establishes lawful bases for processing, data subject rights, mandatory DPO appointment for large-scale or sensitive data proce... - **Discovery URL**: https://bidda.com/api/v1/nodes/ae-federal-decree-law-45-2021-personal-data-protection.json #### UAE PDPL Federal Decree-Law 45/2021 - Article 3: Seven General Principles of Personal Data Protection - **ID**: ae-pdpl-2021-article-3-data-protection-principles - **Category**: Data Protection & Privacy - **Version**: 2.0.0 - **BLUF**: UAE Federal Decree-Law No. 45/2021 Article 3 establishes seven mandatory general principles for personal data processing: lawfulness, fairness and transparency; purpose limitation; data minimization; ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ae-pdpl-2021-article-3-data-protection-principles.json #### Albania Law on Protection of Personal Data No. 9887 of 2008 - IDPC - **ID**: al-pdpa-2008 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Albania's Law on Protection of Personal Data No. 9887 - adopted by the Assembly of the Republic of Albania on 10 March 2008 and amended significantly through subsequent legislation (including the 2012... - **Discovery URL**: https://bidda.com/api/v1/nodes/al-pdpa-2008.json #### Argentina Law 25.326 Personal Data Protection Act 2000 AAIP Data Subject Rights Cross-Border Transfer and Registration of Databases Framework - **ID**: ar-data-protection-act-25326-2000-personal-data - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Argentina Law 25.326 Personal Data Protection Act (Ley de Protección de los Datos Personales) enacted on 4 October 2000 administered by the Agencia de Acceso a la Información Pública (AAIP) establishe... - **Discovery URL**: https://bidda.com/api/v1/nodes/ar-data-protection-act-25326-2000-personal-data.json #### Argentina Ley 25.326 de Proteccion de los Datos Personales (Personal Data Protection Act) - **ID**: ar-ley-25326-proteccion-datos-personales - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Ley 25.326 de Proteccion de los Datos Personales (Argentine Personal Data Protection Act) was sancionada on 4 October 2000 and partially promulgada on 30 October 2000 by Decreto 995/2000. The Act give... - **Discovery URL**: https://bidda.com/api/v1/nodes/ar-ley-25326-proteccion-datos-personales.json #### Ley de Protección de los Datos Personales N° 25.326 - **ID**: ar-pdpa-2000 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Argentina's Personal Data Protection Law establishes the principles for processing personal data in public and private databases, requiring data controllers to obtain prior, express, and informed cons... - **Discovery URL**: https://bidda.com/api/v1/nodes/ar-pdpa-2000.json #### Argentina Personal Data Protection Act 25,326/2000 - AAIP (Agencia de Acceso a la Información Pública) Oversight, Sensitive Data, Public Registers, Automated Decisions, Cross-Border Transfer Only to Adequate Countries, Data Owner Rights and 2024 Draft Reform toward GDPR Standards - **ID**: argentina-pdpa-25326-2000-amendment-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: This regulation establishes comprehensive data protection obligations for entities processing personal data in Argentina, including requirements for lawful processing, data subject rights, sensitive d... - **Discovery URL**: https://bidda.com/api/v1/nodes/argentina-pdpa-25326-2000-amendment-2024.json #### Australia Privacy Act 1988 (2024 Reform - Privacy and Other Legislation Amendment Act) - **ID**: au-privacy-act-1988 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Australia Privacy Act 1988, as amended, regulates the handling of personal information through the 13 Australian Privacy Principles (APPs) in Schedule 1. It applies to most Australian Government a... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-privacy-act-1988.json #### Financial Transaction Reports Act 1988 - Part II Transaction reports and Part III Accounts - **ID**: au-privacy-act-1988-app-3-collection-personal-info - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This Act requires cash dealers, solicitors, and other entities to report significant cash transactions, international currency transfers, and suspect transactions to AUSTRAC, and to maintain identific... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-privacy-act-1988-app-3-collection-personal-info.json #### Australia Trusted Digital Identity Framework TDIF Accreditation Rules Identity Proofing Authentication Federation and Fraud Control for Identity Service Providers - **ID**: au-trusted-digital-identity-framework-tdif - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Australian Government Trusted Digital Identity Framework (TDIF) administered by the Department of Finance through the Digital Transformation Agency establishes a voluntary federated accreditation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-trusted-digital-identity-framework-tdif.json #### Australia Privacy Act 1988 and the Privacy Act Review Report 2022 Proposals - **ID**: australia-privacy-act-1988-2022-review - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Australian Government's 2022 Privacy Act Review proposes significant reforms, including a GDPR-style right to erasure (Proposal 18.2), an unqualified right to object to direct marketing (Proposal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-privacy-act-1988-2022-review.json #### Australia Privacy Act 1988 - Australian Privacy Principles (APPs) and Notifiable Data Breaches (NDB) Scheme - **ID**: australia-privacy-act-1988-app-notifiable-data-breaches - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Privacy Act 1988 (Cth) binds Australian Government agencies and APP entities (organisations with annual turnover >$3M plus specified smaller organisations) to 13 Australian Privacy Principles gove... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-privacy-act-1988-app-notifiable-data-breaches.json #### Åland Islands - EU GDPR and Finnish Data Protection Ombudsman Supervisory Framework - **ID**: ax-gdpr-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Åland Islands (Ahvenanmaa in Finnish) is an autonomous, demilitarized, and monolingually Swedish-speaking province of Finland located in the Baltic Sea. As an autonomous province of an EU member s... - **Discovery URL**: https://bidda.com/api/v1/nodes/ax-gdpr-2018.json #### Bosnia and Herzegovina Law on Protection of Personal Data No. 49/06 - AZLP - **ID**: ba-pdpa-2006 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Bosnia and Herzegovina's Law on Protection of Personal Data (Zakon o zaštiti ličnih podataka / Zakon o zaštiti osobnih podataka), adopted by the Parliamentary Assembly of Bosnia and Herzegovina in 200... - **Discovery URL**: https://bidda.com/api/v1/nodes/ba-pdpa-2006.json #### Belgium Data Protection Act 2018 (Loi du 30 juillet 2018) - GDPR National Implementation - **ID**: be-data-protection-act-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Belgium's Act of 30 July 2018 on the Protection of Natural Persons with Regard to the Processing of Personal Data (Loi du 30 juillet 2018 relative à la protection des personnes physiques à l'égard des... - **Discovery URL**: https://bidda.com/api/v1/nodes/be-data-protection-act-2018.json #### Bulgaria Personal Data Protection Act (ZZLD) - GDPR National Implementation - **ID**: bg-zzld-gdpr-2019 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Bulgaria's Закон за защита на личните данни (ZZLD - Personal Data Protection Act), as substantially amended by Darzhaven Vestnik (Official Gazette) Act SG 17/2019 of 26 February 2019 to align with the... - **Discovery URL**: https://bidda.com/api/v1/nodes/bg-zzld-gdpr-2019.json #### Biobanking & Genomic Data Governance under GDPR & Global Standards (2026) - **ID**: biobanking-gdpr-compliance-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Biobanks and genomic data repositories must comply with GDPR Article 9 (special category data), Article 89 (research exemptions), strict purpose limitation, data minimisation, pseudonymisation/anonymi... - **Discovery URL**: https://bidda.com/api/v1/nodes/biobanking-gdpr-compliance-2026.json #### Caribbean Netherlands (Bonaire, Sint Eustatius, Saba) - EU GDPR and Dutch Data Protection Authority Framework - **ID**: bq-gdpr-framework - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Caribbean Netherlands - comprising the islands of Bonaire, Sint Eustatius, and Saba (collectively known as the BES Islands) - are special municipalities of the Netherlands located in the Caribbean... - **Discovery URL**: https://bidda.com/api/v1/nodes/bq-gdpr-framework.json #### Brazil ANPD Resolution CD/ANPD No. 15 - Security Incident Notification under the LGPD - **ID**: br-anpd-resolution-cd-15-incident-notification - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Controllers of personal data subject to the Lei Geral de Protecao de Dados (LGPD) in Brazil must apply Resolution CD/ANPD No. 15 to the communication of security incidents involving personal data, inc... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-anpd-resolution-cd-15-incident-notification.json #### Brazil gov.br Platform Digital Identity under LGPD and Digital Government Initiatives - **ID**: br-gov-br-platform-lgpd-digital-identity - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Brazil's national digital identity platform is gov.br, operated by the Ministry of Management and Innovation in Public Services (MGI) with technical operations by the Federal Data Processing Service (... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-gov-br-platform-lgpd-digital-identity.json #### Lei Geral de Proteção de Dados Pessoais (LGPD) - Article 18: Rights of the Data Subject - **ID**: br-lgpd-13709-2018-article-18-data-subject-rights - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article establishes the fundamental right of data subjects to obtain information from the data controller about their personal data being processed, at any time and upon request. - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lgpd-13709-2018-article-18-data-subject-rights.json #### Lei Geral de Proteção de Dados Pessoais (LGPD) - Article 48 - **ID**: br-lgpd-13709-2018-article-48-security-incident-notification - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The controller must notify the national authority and the data subject of any security incident that could result in significant risk or harm to the data subjects. - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lgpd-13709-2018-article-48-security-incident-notification.json #### Lei Geral de Proteção de Dados Pessoais (LGPD) - Article 7: Lawful Bases for Processing Personal Data - **ID**: br-lgpd-13709-2018-article-7-lawful-basis-processing-personal-data - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must ensure that any processing of personal data is conducted only under one of the lawful bases specified in the regulation, such as obtaining consent from the data subject. - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lgpd-13709-2018-article-7-lawful-basis-processing-personal-data.json #### Brazil General Personal Data Protection Law 2018 (Lei Geral de Proteção de Dados Pessoais - LGPD, Law No. 13,709 of 14 August 2018) - **ID**: br-lgpd-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The LGPD (Lei Geral de Proteção de Dados Pessoais - General Personal Data Protection Law, Law No. 13,709 of 14 August 2018, as amended by Law No. 13,853 of 8 July 2019 and Law No. 14,010 of 10 June 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lgpd-2018.json #### Lei Geral de Proteção de Dados Pessoais (LGPD) - Article 41: Data Protection Officer - **ID**: br-lgpd-article-41-data-protection-officer - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations acting as data controllers must appoint a Data Protection Officer (encarregado) and publicly disclose their contact information, with this officer being responsible for handling communic... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lgpd-article-41-data-protection-officer.json #### Brazil LGPD (Lei Geral de Protecao de Dados) - Data Protection Principles and Subject Rights - **ID**: br-lgpd-law-13709-2018-data-protection-principles - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Brazil's Lei Geral de Protecao de Dados Pessoais (LGPD, Law 13,709/2018) establishes 10 lawful bases for processing personal data, grants data subjects rights of access, correction, deletion and porta... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lgpd-law-13709-2018-data-protection-principles.json #### Lei Nº 13.709/2018 (Lei Geral de Proteção de Dados Pessoais - LGPD) - Article 5: Definitions - **ID**: br-lgpd-lei-13709-article-5-definitions - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article establishes the official legal definitions for key terms used throughout the LGPD, such as personal data, sensitive data, controller, processor, and consent, which organizations must use ... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lgpd-lei-13709-article-5-definitions.json #### Lei Nº 13.709, de 14 de Agosto de 2018 (General Personal Data Protection Law - LGPD) - Chapter I: Preliminary Provisions - **ID**: br-lgpd-lei-13709-chapter-2-personal-data-processing - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This regulation establishes the territorial and material scope of Brazil's data protection law, defining which data processing activities are covered and outlining specific exemptions for purposes suc... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lgpd-lei-13709-chapter-2-personal-data-processing.json #### Lei Nº 13.709, de 14 de Agosto de 2018 (Lei Geral de Proteção de Dados Pessoais - LGPD) - Chapter I Preliminary Provisions - **ID**: br-lgpd-lei-13709-chapter-3-rights-of-data-subjects - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This regulation establishes the territorial scope and applicability of Brazil's data protection law, defining which data processing operations are subject to its rules and which specific activities ar... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lgpd-lei-13709-chapter-3-rights-of-data-subjects.json #### Lei Nº 13.709, de 14 de Agosto de 2018 (Lei Geral de Proteção de Dados Pessoais - LGPD), Chapter VII (Articles 46-51) - **ID**: br-lgpd-lei-13709-chapter-7-security-good-practices - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This regulation establishes the jurisdictional scope, applicability, and exemptions of Brazil's General Data Protection Law (LGPD), including specific prohibitions and reporting requirements for priva... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lgpd-lei-13709-chapter-7-security-good-practices.json #### Lei Nº 13.709, de 14 de Agosto de 2018 (Lei Geral de Proteção de Dados Pessoais - LGPD), Capítulo I, Disposições Preliminares (Artigos 1-4) - **ID**: br-lgpd-lei-13709-chapter-8-anpd-penalties - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This regulation establishes the territorial and material scope of Brazil's General Data Protection Law (LGPD), defining its applicability to data processing operations and outlining specific exemption... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lgpd-lei-13709-chapter-8-anpd-penalties.json #### Brazil ANVISA & LGPD - Processing of Health Data and Medical Device Regulation (2026) - **ID**: brazil-anvisa-lgpd-health-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: ANVISA regulates medical devices and SaMD under RDC 751/2022 while LGPD (Law 13.709/2018) imposes strict rules for processing sensitive health data. Requirements include explicit consent or legal basi... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-anvisa-lgpd-health-2026.json #### Brazil LGPD Compliance - **ID**: brazil-lgpd-compliance - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: Lei Geral de Proteção de Dados (LGPD) is Brazil's comprehensive data protection law (Law No. 13,709/2018), modeled after GDPR but with distinct governance requirements for the ANPD (National Data Prot... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-lgpd-compliance.json #### Lei Geral de Proteção de Dados Pessoais (LGPD) - Lei nº 13.709, de 14 de Agosto de 2018 - **ID**: brazil-lgpd-law-13709-2018-depth - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: This law governs the processing of personal data in Brazil, applying to any natural or legal person conducting data processing operations within Brazilian territory or targeting individuals located in... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-lgpd-law-13709-2018-depth.json #### Brazil LGPD Direct Marketing Requirements - ANPD Guidance: Consent as Lawful Basis for Marketing, Legitimate Interest for B2B, Data Subject Rights in Marketing Context, Children's Marketing Prohibition, Opt-Out Mechanisms and ANPD Enforcement Actions - **ID**: brazil-lgpd-marketing-consent-requirements-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: The LGPD, as interpreted by the ANPD, requires express consent for direct marketing to individuals, prohibits marketing directed at children and adolescents in digital environments under the ECA Digit... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-lgpd-marketing-consent-requirements-2021.json #### Personal Information Protection and Electronic Documents Act (S.C. 2000, c. 5) - **ID**: ca-pipeda-2000 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Canada's federal privacy law governing how private-sector organizations collect, use, and disclose personal information during commercial activities. The Act requires organizations to obtain an indivi... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-pipeda-2000.json #### Personal Information Protection and Electronic Documents Act, S.C. 2000, c. 5 - Part 1, Interpretation - **ID**: ca-pipeda-schedule-1-privacy-principles - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This act defines key terms governing the protection of personal information in the private sector, establishing foundational concepts for compliance, including the definition of a security breach whic... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-pipeda-schedule-1-privacy-principles.json #### Personal Information Protection and Electronic Documents Act, Section 7 - **ID**: ca-pipeda-section-7-collection-without-consent - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations may collect, use, or disclose personal information without an individual's knowledge or consent only under specific, legally defined circumstances such as for investigations, emergencies... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-pipeda-section-7-collection-without-consent.json #### CCPA/CPRA Enforcement - **ID**: california-ccpa-v2 - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: The California Consumer Privacy Act (CCPA), as significantly enhanced by the California Privacy Rights Act (CPRA), provides comprehensive privacy rights to California residents. It introduces the CPPA... - **Discovery URL**: https://bidda.com/api/v1/nodes/california-ccpa-v2.json #### California Telehealth Requirements & CCPA Health Data Amendments 2026 - **ID**: california-telehealth-ccpa-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: California requires in-state licensure for physicians providing telehealth to CA patients. CCPA 2026 amendments strengthen protections for sensitive health data, including stricter consent for sharing... - **Discovery URL**: https://bidda.com/api/v1/nodes/california-telehealth-ccpa-2026.json #### Canada Anti-Spam Legislation CASL 2014 - Commercial Electronic Message Consent, Unsubscribe Requirements and CRTC Enforcement - **ID**: canada-anti-spam-legislation-casl-2014-pipeda - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Canada's Anti-Spam Legislation (CASL, S.C. 2010 c. 23, in force 1 July 2014) is one of the world's strictest anti-spam regimes, applying to Commercial Electronic Messages (CEMs) sent to or from Canada... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-anti-spam-legislation-casl-2014-pipeda.json #### Canada Criminal Code Part VI (Invasion of Privacy): Definitions of Private Communication and Intercept, Interception Offence, Bodily Harm and Exceptional Circumstances Exceptions, Judicial Authorisation, and Disclosure Restrictions - **ID**: canada-criminal-code-part-vi-invasion-of-privacy - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Part VI of the Canadian Criminal Code, R.S.C. 1985, c. C-46, titled Invasion of Privacy, is the principal federal framework governing the interception of private communications in Canada, including wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-criminal-code-part-vi-invasion-of-privacy.json #### Canada PIPEDA (Personal Information Protection and Electronic Documents Act) - SC 2000, c. 5 Private Sector Data Protection Obligations - **ID**: canada-pipeda-sc-2000-c5-personal-information-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: PIPEDA (SC 2000, c. 5) governs collection, use, and disclosure of personal information in the course of commercial activities across Canada (except in provinces with substantially similar legislation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-pipeda-sc-2000-c5-personal-information-protection.json #### CCPA/CPRA - California Consumer Privacy Rights - **ID**: ccpa-cpra - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: The California Consumer Privacy Act (CCPA, effective January 1, 2020) as substantially amended by the California Privacy Rights Act (CPRA, enforceable from March 29, 2024 following litigation delays; ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ccpa-cpra.json #### CCPA/CPRA (Opt-out Sale) - **ID**: ccpa-cpra-optout-sale - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: California Civil Code § 1798.120 establishes a consumer's fundamental right to direct a business to stop selling or sharing their personal information. Fulfilling this obligation, as detailed in Calif... - **Discovery URL**: https://bidda.com/api/v1/nodes/ccpa-cpra-optout-sale.json #### CCPA/CPRA Privacy Enterprise Compliance Standard v22 - **ID**: ccpa-cpra-privacy-compliance-2026-22 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) establish comprehensive privacy rights for California residents. Key requirements include the right to know what... - **Discovery URL**: https://bidda.com/api/v1/nodes/ccpa-cpra-privacy-compliance-2026-22.json #### CCPA/CPRA Privacy Enterprise Compliance Standard v7 - **ID**: ccpa-cpra-privacy-compliance-2026-7 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) establish comprehensive privacy rights for California residents. Key requirements include the right to know what... - **Discovery URL**: https://bidda.com/api/v1/nodes/ccpa-cpra-privacy-compliance-2026-7.json #### Ley Chile - Biblioteca del Congreso Nacional Ley Chile - Biblioteca del Congreso Nacional Ley Chile Este proceso demora demasiado, es probable que su conexión esté muy lenta o que su navegador no sea compatible con nuestra aplicación - **ID**: chile-data-protection-bill-2024-new-law - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: Chile's 2024 personal data protection reform (Ley que regula la proteccion y el tratamiento de los datos personales y crea la Agencia de Proteccion de Datos Personales) updates Law 19.628 with lawful ... - **Discovery URL**: https://bidda.com/api/v1/nodes/chile-data-protection-bill-2024-new-law.json #### Personal Information Protection Law of the People's Republic of China (PIPL) - **ID**: china-pipl-2021-personal-information-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The China Personal Information Protection Law (PIPL) establishes a comprehensive data protection framework for organizations processing the personal information of individuals within the PRC, mandatin... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-pipl-2021-personal-information-protection.json #### Measures for the Standard Contract for the Outbound Transfer of Personal Information & CAC Security Assessment Triggers - **ID**: china-pipl-cross-border-transfer-rules-2023 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Under China's Personal Information Protection Law (PIPL), organizations transferring personal information outside mainland China must use one of three mechanisms: a mandatory Cyberspace Administration... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-pipl-cross-border-transfer-rules-2023.json #### Personal Information Protection Law of the People's Republic of China - Direct Marketing Obligations, Article 23-29: Opt-In Consent for Personalised Ads, Automated Decision-Making Transparency, Separate Consent for Sensitive Data, Right to Opt Out of Personalised Recommendations and Minor Protection Rules - **ID**: china-pipl-personal-information-marketing-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The PIPL requires entities conducting direct marketing in China to obtain separate, explicit opt-in consent before processing personal information for personalized advertising or automated decision-ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-pipl-personal-information-marketing-2021.json #### Cook Islands Privacy Act 2014 - **ID**: ck-privacy-act-2014 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Cook Islands enacted the Privacy Act 2014, a privacy and personal information protection statute aligned with New Zealand privacy law standards given the Cook Islands' free association status with... - **Discovery URL**: https://bidda.com/api/v1/nodes/ck-privacy-act-2014.json #### Chile Ley 21.719/2024 - New Data Protection Framework and GDPR Alignment - **ID**: cl-ley-21719-2024-data-protection-new-framework - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Chile's Ley 21.719 (enacted December 2024, effective December 2026) replaces the 1999 PDPA with a GDPR-aligned framework: 8 lawful bases including legitimate interests, data subject rights of access/c... - **Discovery URL**: https://bidda.com/api/v1/nodes/cl-ley-21719-2024-data-protection-new-framework.json #### Chile Law 21.719 on the Protection of Personal Data 2024 - GDPR-Aligned Reform with Personal Data Protection Agency, Full Effectiveness 1 December 2026 - **ID**: cl-personal-data-protection-law-21719-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Data controllers and processors operating in Chile or directing services at Chile must apply Law 21.719 on the Protection of Personal Data (approved by Congress on 26 August 2024, published on 13 Dece... - **Discovery URL**: https://bidda.com/api/v1/nodes/cl-personal-data-protection-law-21719-2024.json #### China Network Data Security Management Regulations 2024 - State Council Decree Effective 1 January 2025 - **ID**: cn-network-data-security-management-regulations-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Network data processors operating in China, including domestic and foreign-based entities that process data related to individuals or organizations in China when offering products or services, analysi... - **Discovery URL**: https://bidda.com/api/v1/nodes/cn-network-data-security-management-regulations-2024.json #### China Personal Information Protection Law 2021 - **ID**: cn-pipl-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: China's Personal Information Protection Law establishes a comprehensive personal data protection framework modelled partly on GDPR, requiring consent for processing, separate explicit consent for sens... - **Discovery URL**: https://bidda.com/api/v1/nodes/cn-pipl-2021.json #### Colombia Ley 1581/2012 - Habeas Data and Personal Data Protection (ARCO Rights) - **ID**: co-ley-1581-2012-habeas-data-personal-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Colombia's Ley Estatutaria 1581/2012 establishes fundamental ARCO data rights (Access, Rectification, Suppression, Opposition), requires prior authorisation (consent) before personal data collection, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/co-ley-1581-2012-habeas-data-personal-data-protection.json #### Colombia SIC Directive 002 of 2024 - Processing of Personal Data in the Use of Artificial Intelligence, Issued 21 August 2024 - **ID**: co-sic-directive-002-2024-ai-personal-data - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Data controllers, data processors, and users that develop or use AI based on information containing personal data in Colombia must comply with Directive 002 of 2024 issued by the Superintendence of In... - **Discovery URL**: https://bidda.com/api/v1/nodes/co-sic-directive-002-2024-ai-personal-data.json #### GDPR Data Processing Agreement (DPA) Checklist - **ID**: compliance-gdpr-dpa - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: A compliant Data Processing Agreement establishes a legally binding contract defining the processor's obligations, consistent with European Data Protection Board Guidelines 07/2020. The processor must... - **Discovery URL**: https://bidda.com/api/v1/nodes/compliance-gdpr-dpa.json #### COPPA (Marketing to Kids) - **ID**: coppa-marketing-kids - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: This operator's online service is explicitly designated as a child-directed service, thereby triggering stringent obligations under the Children's Online Privacy Protection Act, 15 U.S.C. §§ 6501-6506... - **Discovery URL**: https://bidda.com/api/v1/nodes/coppa-marketing-kids.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 23: Protection of minors - **ID**: dsa-regulation-article-23-obligations-online-platforms-protection-minors - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Providers of online platforms accessible to minors must implement appropriate and proportionate measures to ensure a high level of privacy, safety, and security for minors, and are prohibited from pre... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-23-obligations-online-platforms-protection-minors.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services (Digital Services Act) - Article 28: Protection of minors - **ID**: dsa-regulation-article-28-protection-of-minors-advertising - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Providers of online platforms accessible to minors must implement measures for their privacy, safety, and security, and are prohibited from presenting profiled advertisements to users they know with r... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-28-protection-of-minors-advertising.json #### EDPB Guidelines on GDPR in Educational Institutions - Lawful Basis, Parental Consent, Learning Management Systems and Data Minimisation - **ID**: edpb-guidelines-gdpr-educational-institutions - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Educational institutions must establish a valid lawful basis under GDPR Article 6 for processing student data, which is typically 'public task' rather than consent. For children under the age specifie... - **Discovery URL**: https://bidda.com/api/v1/nodes/edpb-guidelines-gdpr-educational-institutions.json #### Egypt Personal Data Protection Law 151 of 2020 Executive Regulations - Ministerial Decree 816 of 2025, Full Enforcement October 2026 - **ID**: eg-pdpl-executive-regulations-2025 - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: Data controllers and processors operating in Egypt must apply the Executive Regulations of the Personal Data Protection Law 151 of 2020, issued by the Minister of Communications and Information Techno... - **Discovery URL**: https://bidda.com/api/v1/nodes/eg-pdpl-executive-regulations-2025.json #### Egypt Personal Data Protection Law No. 151 of 2020 and its Executive Regulations - **ID**: egypt-data-protection-law-151-2020 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Egypt's Law No. 151 of 2020 establishes a comprehensive framework for personal data protection, requiring data controllers and processors to adhere to specific processing principles, obtain explicit c... - **Discovery URL**: https://bidda.com/api/v1/nodes/egypt-data-protection-law-151-2020.json #### Regulation (EU) 2024/1183 amending Regulation (EU) No 910/2014 as regards establishing the European Digital Identity Framework - Article 71: Protection of personal data - **ID**: eidas2-regulation-article-71-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations providing European Digital Identity Wallets must implement strict data protection measures, including data separation, purpose limitation for identifiers, and restrictions on data collec... - **Discovery URL**: https://bidda.com/api/v1/nodes/eidas2-regulation-article-71-data-protection.json #### ePrivacy (Cookie Directive) - **ID**: eprivacy-cookie-directive - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: Compliance with the ePrivacy Directive mandates a strict consent-first framework for accessing or storing information on user terminal equipment, directly reflecting Article 5(3) of Directive 2002/58/... - **Discovery URL**: https://bidda.com/api/v1/nodes/eprivacy-cookie-directive.json #### EU Data Act Regulation 2023/2854 - IoT Data Access, Business-to-Business Fairness, and Cloud Switching Rights, Applicable 12 September 2025 - **ID**: eu-data-act-regulation-2023-2854 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Manufacturers of connected products and providers of related digital services placed on the EU market, plus IaaS, PaaS, and SaaS providers, must comply with the EU Data Act (Regulation (EU) 2023/2854)... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-regulation-2023-2854.json #### Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on privacy and electronic communications) - **ID**: eu-eprivacy-directive-2002-58 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This directive, often called the 'Cookie Law,' requires providers of electronic communications services to obtain prior, informed consent from users before storing or accessing information on their te... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eprivacy-directive-2002-58.json #### Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on privacy and electronic communications) - **ID**: eu-eprivacy-directive-2002-58-marketing - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: The EU ePrivacy Directive 2002/58/EC requires prior opt-in consent for electronic direct marketing via email, SMS, or automated calls, with a limited 'soft opt-in' exception for existing customers und... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eprivacy-directive-2002-58-marketing.json #### Proposal for a Regulation of the European Parliament and of the Council concerning the respect for private life and the protection of personal data in electronic communications and repealing Directive 2002/58/EC (Regulation on Privacy and Electronic Communications) - **ID**: eu-eprivacy-regulation-proposed-2017 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The proposed ePrivacy Regulation strengthens the confidentiality of electronic communications and modernizes rules for tracking technologies, requiring user consent for processing communications data ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eprivacy-regulation-proposed-2017.json #### EU General Data Protection Regulation (GDPR) 2016/679 Article 22 - Automated Individual Decision-Making Including Profiling: Right Not to Be Subject to Solely Automated Decisions - **ID**: eu-gdpr-article-22-automated-decision-making-profiling - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations deploying automated decision systems that produce legal or similarly significant effects on individuals must either invoke a valid Article 22(2) exception (contract necessity, legal auth... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gdpr-article-22-automated-decision-making-profiling.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) - Article 22: Automated individual decision-making, including profiling - **ID**: eu-gdpr-article-22-automated-processing-profiling - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: GDPR Article 22 grants data subjects the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly sign... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gdpr-article-22-automated-processing-profiling.json #### EU GDPR (Regulation 2016/679) Article 8 - Children's Consent and Parental Authorization for Online Services - **ID**: eu-gdpr-article-8-childrens-consent-information-society-services - **Category**: Data Protection & Privacy - **Version**: 2.0 - **BLUF**: GDPR Article 8 requires parental or guardian consent for processing personal data of children under 16 (or lower member state threshold) using information society services - applicable to apps, games,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gdpr-article-8-childrens-consent-information-society-services.json #### GDPR Binding Corporate Rules (BCR) Framework - Articles 46-47 and EDPB Guidelines on BCRs - **ID**: eu-gdpr-binding-corporate-rules - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Binding Corporate Rules (BCRs) are legally binding internal rules and policies for data protection within a corporate group, allowing for the transfer of personal data internationally to members in co... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gdpr-binding-corporate-rules.json #### Regulation (EU) 2016/679 (General Data Protection Regulation) - Article 28: Processor Responsibilities in Cloud Environments - **ID**: eu-gdpr-cloud-data-processing - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Under EU GDPR Article 28, data controllers must only engage cloud service providers (processors) that offer sufficient guarantees for data protection, and this relationship must be governed by a legal... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gdpr-cloud-data-processing.json #### Commission Implementing Decision (EU) 2021/914 on standard contractual clauses for the transfer of personal data to third countries pursuant to Regulation (EU) 2016/679 - **ID**: eu-gdpr-cloud-standard-contractual-clauses-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: Establishes binding contractual obligations for data transfers from EU controllers to processors and sub-processors outside the EEA, including cloud providers. Applies to all organizations processing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gdpr-cloud-standard-contractual-clauses-2021.json #### General Data Protection Regulation (GDPR) - Safeguards and Derogations Relating to Processing for Archiving Purposes in the Public Interest, Scientific or Historical Research Purposes or Statistical Purposes - **ID**: eu-gdpr-educational-institutions-data - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: This regulation requires educational institutions processing personal data for scientific research, historical research, or statistical purposes to implement appropriate safeguards, including data min... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gdpr-educational-institutions-data.json #### Regulation (EU) 2016/679 (General Data Protection Regulation) - Article 9: Processing of special categories of personal data - **ID**: eu-gdpr-health-data-article-9 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Under Article 9(1) of the EU GDPR, the processing of special categories of personal data-including health, genetic, and biometric data-is prohibited for all controllers and processors. Processing is o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gdpr-health-data-article-9.json #### General Data Protection Regulation (EU) 2016/679 - Article 4 Definitions for Online Gaming Data Protection - **ID**: eu-gdpr-online-gaming-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: GDPR Art. 4 defines personal data, processing, profiling and related concepts; any online gaming controller or processor handling player data in the EU must treat such data as personal data and comply... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gdpr-online-gaming-data-protection.json #### EU GDPR - Research and Education Exemptions (Articles 85-91) - **ID**: eu-general-data-protection-regulation-education-research-exemptions - **Category**: Data Protection & Privacy - **Version**: 2.0.0 - **BLUF**: GDPR Articles 85-91 establish member-state derogation authority for journalistic, academic, artistic, and research processing; scientific and historical research processing is permitted under Article ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-data-protection-regulation-education-research-exemptions.json #### EU GDPR Article 89 - Research, Scientific, and Statistical Processing Exemptions - **ID**: eu-general-data-protection-regulation-research-exemptions-article-89 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: GDPR Article 89 permits Member States to provide derogations from certain data subject rights (access, rectification, restriction, objection) for scientific research, statistical purposes, and public ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-data-protection-regulation-research-exemptions-article-89.json #### GDPR Article 89 - Safeguards and Derogations Relating to Processing for Archiving Purposes in the Public Interest, Scientific or Historical Research Purposes or Statistical Purposes - **ID**: eu-general-data-protection-research-article-89 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This regulation requires that personal data processed for archiving in the public interest, scientific or historical research, or statistical purposes must be subject to appropriate safeguards ensurin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-data-protection-research-article-89.json #### General Data Protection Regulation (GDPR) - Article 45: Transfers on the basis of an adequacy decision - **ID**: gdpr-adequacy-decisions-article-45 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Under GDPR Article 45, personal data may be transferred from the EU/EEA to a third country or international organization without specific authorization if the European Commission has formally decided ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-adequacy-decisions-article-45.json #### GDPR Art 21 (Opt-out) - **ID**: gdpr-art-21-marketing-optout - **Category**: Data Protection & Privacy - **Version**: 1.1.1 - **BLUF**: GDPR Article 21 grants data subjects an absolute right to object to the processing of their personal data for direct marketing purposes. When a `data_subject_objected` flag is triggered within a conte... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-art-21-marketing-optout.json #### General Data Protection Regulation (GDPR) - Article 10: Processing of personal data relating to criminal convictions and offences - **ID**: gdpr-article-10-personal-data-criminal-convictions-offences - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must only process personal data on criminal convictions and offences if it is under the control of an official authority or authorized by Union or Member State law with appropriate safeg... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-10-personal-data-criminal-convictions-offences.json #### General Data Protection Regulation (GDPR) Article 11: Processing which does not require identification - **ID**: gdpr-article-11-processing-not-requiring-identification - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations are not required to obtain or maintain identifying information on data subjects solely to comply with the GDPR if their processing purposes do not otherwise require such identification. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-11-processing-not-requiring-identification.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 12: Transparent information, communication and modalities for the exercise of the rights of the data subject - **ID**: gdpr-article-12-transparent-information-communication - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must provide data subjects with clear, concise, and easily accessible information about data processing and facilitate the exercise of their rights in a timely and generally free-of-char... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-12-transparent-information-communication.json #### General Data Protection Regulation (GDPR) - Article 13: Information to be provided where personal data are collected from the data subject - **ID**: gdpr-article-13-information-data-collected-directly - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Controllers must provide data subjects with specific information about the processing of their personal data at the time of collection. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-13-information-data-collected-directly.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 14: Information to be provided where personal data have not been obtained from the data subject - **ID**: gdpr-article-14-information-data-not-obtained-directly - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must provide data subjects with specific information about the processing of their personal data when that data has been obtained from a source other than the data subject themselves. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-14-information-data-not-obtained-directly.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, Article 15 - **ID**: gdpr-article-15-right-of-access - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article grants data subjects the right to obtain confirmation from the controller as to whether or not personal data concerning them is being processed, and, where that is the case, access to tha... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-15-right-of-access.json #### REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) - Article 16 Right to rectification - **ID**: gdpr-article-16-right-to-rectification - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The data subject has the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-16-right-to-rectification.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) - Article 17: Right to erasure (‘right to be forgotten’) - **ID**: gdpr-article-17-right-erasure - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Under Article 17 of the EU GDPR, data subjects have the right to obtain from the controller the erasure of their personal data without undue delay, provided one of several specific grounds applies, su... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-17-right-erasure.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (United Kingdom General Data Protection Regulation), Article 18 - **ID**: gdpr-article-18-right-to-restriction-of-processing - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article grants data subjects the right to obtain from the controller the restriction of processing of their personal data under specific circumstances, requiring the data to be marked and its pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-18-right-to-restriction-of-processing.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, Article 19 - **ID**: gdpr-article-19-notification-obligation-rectification-erasure-restriction - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The controller must communicate any rectification, erasure, or restriction of processing to each recipient to whom personal data was disclosed, unless this is impossible or involves disproportionate e... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-19-notification-obligation-rectification-erasure-restriction.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data - Article 20 - Right to data portability - **ID**: gdpr-article-20-right-to-data-portability - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article grants data subjects the right to receive their personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller without hindrance... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-20-right-to-data-portability.json #### REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) - Article 21: Right to object - **ID**: gdpr-article-21-right-to-object - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must provide data subjects with the right to object to the processing of their personal data in specific situations, such as for direct marketing or processing based on legitimate intere... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-21-right-to-object.json #### GDPR Article 22 - Automated Decision-Making in Customer Experience: Individual Rights, Profiling Restrictions, Meaningful Human Review, Safeguards for Sensitive Categories and Controller Transparency Obligations - **ID**: gdpr-article-22-automated-decision-cx - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: Data subjects have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal effects or similarly significantly affect them. This right app... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-22-automated-decision-cx.json #### GDPR Article 22 - Automated Individual Decision-Making in Workflows: Prohibition, Exceptions, Safeguards, Right to Human Review and Controller Obligations - **ID**: gdpr-article-22-automated-decision-workflow - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Data subjects have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal or similarly significant effects. This prohibition under Artic... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-22-automated-decision-workflow.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, Article 23 - **ID**: gdpr-article-23-restrictions-on-data-subject-rights - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article allows for national or Union legislative measures to restrict the scope of data subject rights and controller obligations for specific, important objectives of general public interest, su... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-23-restrictions-on-data-subject-rights.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 24: Responsibility of the controller - **ID**: gdpr-article-24-controller-responsibility-accountability - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The controller must implement and be able to demonstrate appropriate technical and organisational measures to ensure processing complies with GDPR, including implementing data protection policies wher... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-24-controller-responsibility-accountability.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 25: Data protection by design and by default - **ID**: gdpr-article-25-privacy-by-design-and-by-default - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must implement appropriate technical and organisational measures to effectively integrate data protection principles into processing activities (privacy by design) and ensure that only n... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-25-privacy-by-design-and-by-default.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 26: Joint controllers - **ID**: gdpr-article-26-joint-controllers - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: When two or more controllers jointly determine the purposes and means of data processing, they must establish a transparent arrangement defining their respective responsibilities for GDPR compliance. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-26-joint-controllers.json #### Regulation (EU) 2016/679 - Article 27: Representatives of controllers or processors not established in the Union - **ID**: gdpr-article-27-representatives-of-non-eu-controllers - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Controllers or processors not established in the EU, whose processing activities relate to offering goods or services to EU data subjects, must designate in writing a representative within the Union. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-27-representatives-of-non-eu-controllers.json #### Regulation (EU) 2016/679 - Article 28: Processor - **ID**: gdpr-article-28-processor-obligations-and-contracts - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Controllers must only use data processors that provide sufficient guarantees to implement appropriate technical and organisational measures, and all processing must be governed by a binding contract o... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-28-processor-obligations-and-contracts.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 29: Processing under the authority of the controller or processor - **ID**: gdpr-article-29-processing-under-authority-of-controller-processor - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Ensures that any processor, or person acting under the authority of the controller or processor, only processes personal data based on documented instructions from the controller, unless legally requi... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-29-processing-under-authority-of-controller-processor.json #### EU GDPR Article 30 - Records of Processing Activities: Mandatory Documentation Requirements for Controllers and Processors - **ID**: gdpr-article-30-records-processing - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Under Article 30 of the GDPR, data controllers and processors must maintain a detailed, written record of their data processing activities (RoPA). This obligation applies to all organizations, with a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-30-records-processing.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 31: Cooperation with the supervisory authority - **ID**: gdpr-article-31-cooperation-with-supervisory-authority - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The controller, processor, and their representatives must cooperate with the supervisory authority in the performance of its tasks upon request. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-31-cooperation-with-supervisory-authority.json #### Regulation (EU) 2016/679 (General Data Protection Regulation) - Article 32: Security of processing - **ID**: gdpr-article-32-security-of-processing - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The controller and processor must implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, considering factors like the state of the art, cost... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-32-security-of-processing.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 33: Notification of a personal data breach to the supervisory authority - **ID**: gdpr-article-33-breach-notification-to-supervisory-authority - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must notify the competent supervisory authority of a personal data breach without undue delay, and where feasible, within 72 hours of becoming aware of it, unless the breach is unlikely ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-33-breach-notification-to-supervisory-authority.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 34: Communication of a personal data breach to the data subject - **ID**: gdpr-article-34-communication-of-breach-to-data-subjects - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must communicate a personal data breach to the affected data subjects without undue delay if the breach is likely to result in a high risk to their rights and freedoms. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-34-communication-of-breach-to-data-subjects.json #### Regulation (EU) 2016/679 (General Data Protection Regulation) - Article 35: Data protection impact assessment - **ID**: gdpr-article-35-dpia - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Under Article 35(1) of the GDPR, data controllers must conduct a Data Protection Impact Assessment (DPIA) prior to processing personal data that is likely to result in a high risk to the rights and fr... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-35-dpia.json #### REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) - Article 36 - **ID**: gdpr-article-36-prior-consultation-supervisory-authority - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must consult the relevant supervisory authority before processing personal data if a Data Protection Impact Assessment (DPIA) indicates a high risk that cannot be mitigated by the contro... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-36-prior-consultation-supervisory-authority.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) - Articles 37, 38, 39 - **ID**: gdpr-article-37-dpo - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Under Article 37 of the EU GDPR, public authorities and bodies, as well as controllers or processors whose core activities involve large-scale, regular and systematic monitoring of individuals or larg... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-37-dpo.json #### Regulation (EU) 2016/679 (General Data Protection Regulation) - Article 38: Position of the data protection officer - **ID**: gdpr-article-38-position-of-data-protection-officer - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must ensure the Data Protection Officer (DPO) is involved in all data protection matters, operates independently without penalty, and reports directly to the highest level of management. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-38-position-of-data-protection-officer.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 39: Tasks of the data protection officer - **ID**: gdpr-article-39-tasks-of-data-protection-officer - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article mandates that the Data Protection Officer (DPO) is tasked with informing and advising the controller or processor on their GDPR obligations, monitoring compliance, providing advice on dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-39-tasks-of-data-protection-officer.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data - Article 40 Codes of conduct - **ID**: gdpr-article-40-codes-of-conduct - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article obligates Member States and supervisory authorities to encourage the creation of codes of conduct by associations and other bodies to contribute to the proper application of this Regulati... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-40-codes-of-conduct.json #### Regulation (EU) 2016/679 (General Data Protection Regulation), Article 41: Monitoring of approved codes of conduct - **ID**: gdpr-article-41-monitoring-of-approved-codes-of-conduct - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: A monitoring body accredited by a supervisory authority may oversee compliance with an approved code of conduct, taking action against infringements, but this does not apply to public authorities. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-41-monitoring-of-approved-codes-of-conduct.json #### Regulation (EU) 2016/679 (General Data Protection Regulation), Article 42: Certification - **ID**: gdpr-article-42-certification-seals-and-marks - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article establishes a framework for voluntary data protection certification mechanisms, seals, and marks to help controllers and processors demonstrate compliance with the GDPR for their processi... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-42-certification-seals-and-marks.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 44: General principle for transfers - **ID**: gdpr-article-44-general-principle-for-transfers - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Any transfer of personal data to a third country or an international organisation may only take place if the conditions laid down in Chapter V of the regulation are complied with by the controller and... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-44-general-principle-for-transfers.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 45: Transfers on the basis of an adequacy decision - **ID**: gdpr-article-45-transfers-on-basis-of-adequacy-decision - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations may transfer personal data to a third country or international organization if the European Commission has formally decided that the recipient ensures an adequate level of data protectio... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-45-transfers-on-basis-of-adequacy-decision.json #### EU GDPR Article 46 - International Data Transfer Mechanisms: SCCs, BCRs, Codes of Conduct and Certification - **ID**: gdpr-article-46-transfer-mechanisms - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: In the absence of an adequacy decision under Article 45, GDPR Article 46 permits the transfer of personal data to a third country or international organization only if the controller or processor prov... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-46-transfer-mechanisms.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council - Article 47: Binding corporate rules - **ID**: gdpr-article-47-binding-corporate-rules - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article requires that Binding Corporate Rules (BCRs) used for international data transfers must be legally binding, apply to and be enforced by every member of the group of undertakings, and expr... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-47-binding-corporate-rules.json #### General Data Protection Regulation (GDPR) - Article 48: Transfers or disclosures not authorised by Union law - **ID**: gdpr-article-48-transfers-not-authorised-by-eu-law - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: A judgment from a third-country court or a decision from a third-country administrative authority requiring data transfer is only recognizable or enforceable if it is based on an international agreeme... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-48-transfers-not-authorised-by-eu-law.json #### Regulation (EU) 2016/679 (General Data Protection Regulation) - Article 5: Principles relating to processing of personal data - **ID**: gdpr-article-5-data-principles - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Article 5 of the EU GDPR establishes the seven core principles that must govern all processing of personal data for data subjects in the European Union. These principles-lawfulness, fairness and trans... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-5-data-principles.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 51: Supervisory authority - **ID**: gdpr-article-51-establishment-and-independence-supervisory-authority - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article mandates that each Member State establish one or more independent public supervisory authorities responsible for monitoring the application of this Regulation to protect the fundamental r... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-51-establishment-and-independence-supervisory-authority.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 57 - **ID**: gdpr-article-57-tasks-of-supervisory-authority - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article outlines the mandatory tasks and responsibilities of the supervisory authority within its territory, including monitoring and enforcing the regulation, handling complaints, promoting publ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-57-tasks-of-supervisory-authority.json #### REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) - Article 58 Powers - **ID**: gdpr-article-58-supervisory-authority-powers - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article requires organizations to comply with the investigative, corrective, and advisory powers of supervisory authorities, including providing access to information, premises, and processing eq... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-58-supervisory-authority-powers.json #### General Data Protection Regulation (GDPR) Article 6 - Lawfulness of processing - **ID**: gdpr-article-6 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Processing of personal data is only lawful if and to the extent that at least one of six specific legal bases applies under the General Data Protection Regulation (GDPR), such as consent, performance ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-6.json #### EU General Data Protection Regulation (GDPR) Article 6 and Recital 47 - Lawful Basis for Processing Personal Data for Direct Marketing - **ID**: gdpr-article-6-lawful-basis-marketing - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Under GDPR Article 6(1), processing personal data for marketing is only lawful if a valid basis is established, typically either explicit consent (Art. 6(1)(a)) or legitimate interest (Art. 6(1)(f)). ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-6-lawful-basis-marketing.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, Article 60 - **ID**: gdpr-article-60-cooperation-between-lead-other-supervisory-authorities - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article outlines the mandatory cooperation procedures between a lead supervisory authority and other concerned supervisory authorities to reach consensus on cross-border data processing issues, i... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-60-cooperation-between-lead-other-supervisory-authorities.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 63: Consistency mechanism - **ID**: gdpr-article-63-consistency-mechanism - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article has been repealed and no longer has effect under the UK GDPR, creating no active compliance obligations regarding the consistency mechanism. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-63-consistency-mechanism.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 7: Conditions for consent - **ID**: gdpr-article-7-conditions-for-consent - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must ensure that when processing is based on consent, that consent is demonstrable, clearly distinguishable, easy to withdraw, and freely given. - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-7-conditions-for-consent.json #### Regulation (EU) 2016/679, Article 77: Right to lodge a complaint with a supervisory authority - **ID**: gdpr-article-77-right-to-lodge-complaint-with-supervisory-authority - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must recognize and not impede a data subject's right to lodge a complaint with a supervisory authority if they believe their data protection rights under the regulation have been infring... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-77-right-to-lodge-complaint-with-supervisory-authority.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 78: Right to an effective judicial remedy against a supervisory authority - **ID**: gdpr-article-78-right-to-judicial-remedy-against-supervisory-authority - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article grants natural and legal persons the right to an effective judicial remedy against a supervisory authority's legally binding decisions, or its failure to handle or provide timely updates ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-78-right-to-judicial-remedy-against-supervisory-authority.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 79: Right to an effective judicial remedy against a controller or processor - **ID**: gdpr-article-79-right-to-judicial-remedy-against-controller-processor - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article establishes the right for data subjects to seek an effective judicial remedy against a controller or processor if they believe their GDPR rights have been infringed by non-compliant data ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-79-right-to-judicial-remedy-against-controller-processor.json #### Regulation (EU) 2016/679 Article 8: Conditions applicable to child's consent in relation to information society services - **ID**: gdpr-article-8-child-consent-digital-services - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations offering online services to children must obtain verifiable parental consent for processing the personal data of children under a specific age, which is 16 by default but can be lowered ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-8-child-consent-digital-services.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 82: Right to compensation and liability - **ID**: gdpr-article-82-right-to-compensation-and-liability - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must compensate any person who has suffered material or non-material damage due to an infringement of this Regulation, with liability assigned to the controller or processor responsible ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-82-right-to-compensation-and-liability.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council - Article 83 General conditions for imposing administrative fines - **ID**: gdpr-article-83-conditions-for-administrative-fines - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article establishes that administrative fines for GDPR infringements must be effective, proportionate, and dissuasive, and outlines the specific criteria supervisory authorities must consider whe... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-83-conditions-for-administrative-fines.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council, Article 85: Processing and freedom of expression and information - **ID**: gdpr-article-85-processing-freedom-of-expression-and-information - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must comply with national laws that reconcile data protection obligations with the right to freedom of expression and information, allowing for specific exemptions when processing person... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-85-processing-freedom-of-expression-and-information.json #### Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, Article 88 - **ID**: gdpr-article-88-processing-in-employment-context - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must utilize the features of the legislative portal to ascertain the specific rules for processing employee personal data, as the direct text of Article 88 is not provided in the source ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-88-processing-in-employment-context.json #### General Data Protection Regulation (GDPR) - Article 9: Processing of special categories of personal data - **ID**: gdpr-article-9-special-categories-sensitive-personal-data - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations are prohibited from processing personal data that reveals racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-article-9-special-categories-sensitive-personal-data.json #### GDPR Data Processing Enterprise Compliance Standard v17 - **ID**: gdpr-data-processing-compliance-2026-17 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The General Data Protection Regulation (GDPR) mandates strict guidelines for the processing of personal data within the European Union. Organizations must ensure lawful processing, obtain explicit con... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-data-processing-compliance-2026-17.json #### GDPR Data Processing Enterprise Compliance Standard v2 - **ID**: gdpr-data-processing-compliance-2026-2 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The General Data Protection Regulation (GDPR) mandates strict guidelines for the processing of personal data within the European Union (EU) and the European Economic Area (EEA). Organizations must ens... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-data-processing-compliance-2026-2.json #### GDPR DPO Requirements - **ID**: gdpr-data-protection-officer - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: The EU GDPR (General Data Protection Regulation) requires certain organizations to designate a Data Protection Officer (DPO) (Article 37). The DPO acts as an independent compliance champion, advising ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-data-protection-officer.json #### GDPR: Health Data (Art. 9) - **ID**: gdpr-health-data - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: GDPR Article 9 establishes a general prohibition on processing special categories of personal data, with 'data concerning health' (including mental health, genetic data, and biometric data used for id... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-health-data.json #### GDPR Health Data (EU) - **ID**: gdpr-health-data-compliance - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: The EU GDPR 2016/679 (General Data Protection Regulation) classifies health data as a 'special category' of personal data. Article 9 generally prohibits the processing of such data unless a specific l... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-health-data-compliance.json #### GDPR (Hospitality Specifics) - **ID**: gdpr-hospitality-nuance - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: Significant compliance deficiencies exist regarding the lawful basis for processing personal data within a hospitality context. Current configuration confirms `guest_consent_marketing_obtained` is fal... - **Discovery URL**: https://bidda.com/api/v1/nodes/gdpr-hospitality-nuance.json #### French Guiana - EU General Data Protection Regulation (GDPR) and CNIL Supervisory Framework - **ID**: gf-gdpr-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: French Guiana is a French overseas department and an EU outermost region located on the northeastern coast of South America, forming an integral part of the French Republic and the European Union. As ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gf-gdpr-2018.json #### Data Protection Act, 2012 (Act 843) - General Data Protection Principles - **ID**: gh-data-protection-act-843-2012-section-17-rights-data-subject - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must comply with Ghana's eight data protection principles, including accountability, lawfulness, purpose specification, data quality, security safeguards, and data subject participation,... - **Discovery URL**: https://bidda.com/api/v1/nodes/gh-data-protection-act-843-2012-section-17-rights-data-subject.json #### Ghana Data Protection Act 2012 (Act 843) - Data Controller Registration with Data Protection Commission, Sensitive Data Categories, Data Subject Rights, Transborder Data Flow Restrictions, Commissioner Enforcement Powers and Criminal Liability Provisions - **ID**: ghana-data-protection-act-843-2012 - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: All data controllers and processors in Ghana must register with the Data Protection Commission (DPC) and comply with data protection principles under the Data Protection Act, 2012 (Act 843), including... - **Discovery URL**: https://bidda.com/api/v1/nodes/ghana-data-protection-act-843-2012.json #### Ghana Data Protection Act Health Sector Guidelines 2026 - **ID**: ghana-data-protection-health-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Data Protection Commission guidelines require explicit consent, security certifications, and DPIAs for electronic health records and telemedicine platforms operating in Ghana. - **Discovery URL**: https://bidda.com/api/v1/nodes/ghana-data-protection-health-2026.json #### Global Anti-Spam Legislation Comparison Framework - CASL (Canada), CAN-SPAM (US), PECR (UK), GDPR Article 6 Email (EU), SPAM Act (Australia) and India IT Rules: Consent Standards, Opt-Out Windows, Penalties and B2B Exemption Variations - **ID**: global-anti-spam-legislation-casl-gdpr-comparison - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: This framework compares core email marketing compliance obligations across major jurisdictions, focusing on consent requirements (e.g., GDPR Article 6, CASL Section 6), opt-out enforcement (CAN-SPAM 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/global-anti-spam-legislation-casl-gdpr-comparison.json #### Guadeloupe - GDPR and French Data Protection Law (Loi Informatique et Libertés) - **ID**: gp-gdpr-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Guadeloupe, as an outermost region of France and the European Union under the TFEU outermost regions framework, is fully subject to the EU General Data Protection Regulation (GDPR) and the French Loi ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gp-gdpr-2018.json #### HIPAA Privacy Rule - **ID**: hipaa-privacy-rule - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: The HIPAA Privacy Rule establishes national standards governing the use and disclosure of protected health information (PHI) by covered entities and their business associates. General rules articulate... - **Discovery URL**: https://bidda.com/api/v1/nodes/hipaa-privacy-rule.json #### Hong Kong PCPD Model Personal Data Protection Framework for AI 2024 and Generative AI Employee Use Checklist 2025 - **ID**: hk-pcpd-ai-model-personal-data-protection-framework-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Hong Kong organisations that procure, implement or use AI systems including predictive AI and generative AI, processing personal data in their operation or customisation of an AI system, must apply th... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-pcpd-ai-model-personal-data-protection-framework-2024.json #### Croatia GDPR Implementation Act 2018 (NN 42/2018) - National Data Protection Implementation - **ID**: hr-gdpr-implementation-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Croatia's Zakon o provedbi Opće uredbe o zaštiti podataka (GDPR Implementation Act - Act on the Implementation of the General Data Protection Regulation), published in the Croatian Official Gazette (N... - **Discovery URL**: https://bidda.com/api/v1/nodes/hr-gdpr-implementation-2018.json #### IAB CCPA Compliance Framework - US Privacy Technical Specification: Global Privacy Control (GPC) Signal Honouring, Opt-Out of Sale/Sharing, Privacy Signal Pass-Through in RTB Auctions, CCPA/CPRA String and Publisher Liability Protections - **ID**: iab-ccpa-compliance-us-privacy-technical-spec - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: This regulation establishes a standardized contractual and technical framework for honoring consumer privacy rights under U.S. state privacy laws, particularly regarding opt-out of sale/sharing of per... - **Discovery URL**: https://bidda.com/api/v1/nodes/iab-ccpa-compliance-us-privacy-technical-spec.json #### IAB Europe Transparency and Consent Framework v2.2 - GDPR Consent for Digital Advertising: CMP Requirements, Vendor List, TC String Encoding, Legitimate Interest Assertions, Special Feature Opt-Ins and Belgian DPA Audit Requirements - **ID**: iab-europe-tcf-v2-2-gdpr-consent - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: This regulation establishes technical and policy requirements for obtaining, recording, and transmitting user consent and legitimate interest signals in digital advertising under the GDPR, specificall... - **Discovery URL**: https://bidda.com/api/v1/nodes/iab-europe-tcf-v2-2-gdpr-consent.json #### Ireland Data Protection Act 2018 - GDPR National Implementation and Lead EU DPA for Big Tech - **ID**: ie-data-protection-act-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Ireland's Data Protection Act 2018 (Acts of the Oireachtas 2018, No. 7), signed into law on 24 May 2018, is Ireland's primary national legislation supplementing the EU General Data Protection Regulati... - **Discovery URL**: https://bidda.com/api/v1/nodes/ie-data-protection-act-2018.json #### Israel Privacy Protection Law Amendment 13 of 2024 - GDPR-Aligned Reforms in Force 14 August 2025 - **ID**: il-privacy-protection-law-amendment-13-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organisations subject to the Israeli Privacy Protection Law must, from 14 August 2025, comply with the sweeping reforms in Amendment 13, including appointment of a qualified Privacy Protection Officer... - **Discovery URL**: https://bidda.com/api/v1/nodes/il-privacy-protection-law-amendment-13-2024.json #### India Aadhaar Act 2016 and Digital Personal Data Protection Act 2023 as the UIDAI Digital Identity Framework - **ID**: in-aadhaar-act-2016-dpdp-2023-uidai-digital-identity - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: India's national digital identity framework is anchored in two statutes administered by the Ministry of Electronics and Information Technology (MeitY) through the Unique Identification Authority of In... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-aadhaar-act-2016-dpdp-2023-uidai-digital-identity.json #### India Digital Personal Data Protection Act 2023 (DPDP Act, Act No. 22 of 2023) - **ID**: in-dpdp-act-2023 - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: The Digital Personal Data Protection Act 2023 (DPDP Act, Act No. 22 of 2023) is India's first comprehensive data protection legislation, receiving Presidential assent on 11 August 2023 and administere... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-dpdp-act-2023.json #### India Digital Personal Data Protection Act 2023 - Data Principal Rights and Fiduciary Obligations - **ID**: in-dpdp-act-2023-digital-personal-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: India's Digital Personal Data Protection Act 2023 (DPDP Act) establishes a rights-based framework for digital personal data: lawful consent and deemed consent bases, data principal rights of access, c... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-dpdp-act-2023-digital-personal-data-protection.json #### India Digital Personal Data Protection Rules 2025 - MeitY Gazette G.S.R. 846(E) of 13 November 2025 - **ID**: in-dpdp-rules-2025-gsr-846e - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Data Fiduciaries in India must implement the Digital Personal Data Protection Rules, 2025, notified by MeitY via Gazette Notification G.S.R. 846(E) on 13 November 2025, in a phased manner over 18 mont... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-dpdp-rules-2025-gsr-846e.json #### India DPDP Act 2023 - **ID**: india-dpdp-act - **Category**: Data Protection & Privacy - **Version**: 1.1.0 - **BLUF**: The Digital Personal Data Protection (DPDP) Act of 2023 is India's principal statute for digital personal data, prioritizing individual rights and organizational obligations. It introduces the role of... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-dpdp-act.json #### Digital Personal Data Protection Act, 2023 - **ID**: india-dpdp-act-2023-digital-personal-data - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: The Digital Personal Data Protection Act, 2023 governs the processing of digital personal data in India, requiring lawful consent, protection of children's data through parental consent, and establish... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-dpdp-act-2023-digital-personal-data.json #### The Digital Personal Data Protection Act, 2023 - **ID**: india-dpdp-act-2023-personal-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Digital Personal Data Protection Act, 2023 (DPDP Act) governs the processing of digital personal data in India, imposing obligations on Data Fiduciaries to obtain clear, specific consent (Section ... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-dpdp-act-2023-personal-data-protection.json #### India DPDP Rules 2025 - Consent Manager Registration, Significant Data Fiduciary (SDF) Criteria (Data Volume/Sensitivity/National Security Risk), Data Localisation for Critical Data, Children's Processing Age Verification and DPBI Appeal Procedures - **ID**: india-personal-data-protection-board-rules-2025 - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: The India DPDP Rules 2025 establish obligations for data fiduciaries processing personal data, including mandatory registration of Consent Managers, enhanced compliance for Significant Data Fiduciarie... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-personal-data-protection-board-rules-2025.json #### Act on the Protection of Personal Information (Act No. 57 of 2003, as amended 2022) - **ID**: japan-appi-2022-amended-personal-information - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The 2022 amended APPI mandates that businesses report specific data breaches to Japan's Personal Information Protection Commission (PPC) and notify affected individuals, generally within 72 hours for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-appi-2022-amended-personal-information.json #### Japan Act on Protection of Personal Information (APPI) - Act No. 57 of 2003 as Amended 2020/2021 - PPC Obligations and Cross-Border Transfer Rules - **ID**: japan-appi-act-57-2003-personal-information-protection-ppc - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Japan's APPI (Act No. 57 of 2003, with major 2015 and 2020 amendments effective April 2022) requires personal information handling businesses to specify and limit use of personal information to notifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-appi-act-57-2003-personal-information-protection-ppc.json #### Jordan Personal Data Protection Law 2023 - **ID**: jordan-data-protection-personal-data-law-2023 - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: This law establishes a comprehensive framework for the protection of personal data in Jordan, requiring data controllers to obtain informed consent, implement appropriate security measures, notify the... - **Discovery URL**: https://bidda.com/api/v1/nodes/jordan-data-protection-personal-data-law-2023.json #### Act on the Protection of Personal Information (APPI) as amended in 2022 - **ID**: jp-appi-2022 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The amended Japanese APPI imposes stricter obligations on businesses handling personal information of Japanese residents, including mandatory data breach reporting to the Personal Information Protecti... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-appi-2022.json #### Japan APPI Amended Order and Rules 2024 - Two-Stage Breach Reporting to PPC and Triennial Review Interim Report of 27 June 2024 - **ID**: jp-appi-amendments-2024-triennial-review-interim-report - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Business operators subject to Japan's Act on the Protection of Personal Information (APPI) must, under the amended Order and Rules, report data breaches and notify affected individuals where the breac... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-appi-amendments-2024-triennial-review-interim-report.json #### Kenya ODPC Sector-Specific Guidance Notes 2024-2025 - Communication, Education, Public Sector, Private Security, and Biometric Data - **ID**: ke-odpc-sector-guidance-notes-2024-2025 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Data controllers and processors operating in Kenya should apply the sector-specific Guidance Notes issued by the Office of the Data Protection Commissioner (ODPC) during 2024 and 2025 under the Data P... - **Discovery URL**: https://bidda.com/api/v1/nodes/ke-odpc-sector-guidance-notes-2024-2025.json #### Kuwait Data Privacy and Protection Law 2021 - CITRA (Communications and Information Technology Regulatory Authority) Oversight, Processing Conditions, Sensitive Data, Cross-Border Transfer Rules, Security Measures, 72-Hour Breach Notification and Fines up to KWD 50,000 - **ID**: kuwait-data-privacy-law-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: This regulation establishes data protection obligations for entities processing personal data in Kuwait, including requirements for lawful processing, data subject rights, breach notification within 7... - **Discovery URL**: https://bidda.com/api/v1/nodes/kuwait-data-privacy-law-2021.json #### Sri Lanka Personal Data Protection Act No. 9 of 2022 - Data Protection Authority - **ID**: lk-pdpa-2022 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Sri Lanka's Personal Data Protection Act No. 9 of 2022 (certified on 19 March 2022 and published in the Gazette Extraordinary of the Democratic Socialist Republic of Sri Lanka), is Sri Lanka's primary... - **Discovery URL**: https://bidda.com/api/v1/nodes/lk-pdpa-2022.json #### Personal Data Protection Act 2010 (Act 709) - **ID**: malaysia-pdpa-2010-personal-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Malaysia Personal Data Protection Act 2010 (PDPA) governs the processing of personal data in commercial transactions, requiring organizations ('data users') to comply with seven core Data Protecti... - **Discovery URL**: https://bidda.com/api/v1/nodes/malaysia-pdpa-2010-personal-data-protection.json #### Montenegro Law on Personal Data Protection No. 79/2017 - AZLP ME - **ID**: me-pdpa-2017 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Montenegro's Law on Personal Data Protection (Zakon o zaštiti podataka o ličnosti), adopted by the Parliament of Montenegro in 2017 as Official Gazette of Montenegro No. 79/2017 and significantly amen... - **Discovery URL**: https://bidda.com/api/v1/nodes/me-pdpa-2017.json #### Mental Health Data Privacy & Special Category Protections (Global 2026) - **ID**: mental-health-data-privacy-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Mental health data is treated as highly sensitive special category data across major jurisdictions. Strict rules apply to collection, processing, sharing, and secondary use, with heightened consent st... - **Discovery URL**: https://bidda.com/api/v1/nodes/mental-health-data-privacy-2026.json #### Federal Law on Protection of Personal Data Held by Private Parties (Ley Federal de Protección de Datos Personales en Posesión de los Particulares - LFPDPPP) - **ID**: mexico-lfpdppp-2010-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: The LFPDPPP establishes the legal framework for the protection of personal data processed by private parties in Mexico. It mandates the implementation of privacy notices (Aviso de Privacidad), require... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-lfpdppp-2010-data-protection.json #### Saint Martin (French Collectivity) - EU General Data Protection Regulation (GDPR) and CNIL Supervisory Framework - **ID**: mf-gdpr-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Saint Martin (French collectivity) is a French overseas collectivity located in the northeastern Caribbean Sea, occupying the northern portion of the island of Saint Martin, which it shares with the K... - **Discovery URL**: https://bidda.com/api/v1/nodes/mf-gdpr-2018.json #### North Macedonia Law on Personal Data Protection 2020 - DZLP - **ID**: mk-pdpa-2020 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: North Macedonia's Law on Personal Data Protection (Закон за заштита на личните податоци - ZZLP) - adopted by the Assembly of the Republic of North Macedonia in early 2020 and published in the Official... - **Discovery URL**: https://bidda.com/api/v1/nodes/mk-pdpa-2020.json #### Macao Personal Data Protection Act 2005 (Law No. 8/2005) - **ID**: mo-pdpa-2005 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Macao Special Administrative Region (SAR) of the People's Republic of China enacted the Personal Data Protection Act, Law No. 8/2005 of 22 August 2005. The Act is administered by the Office for Pe... - **Discovery URL**: https://bidda.com/api/v1/nodes/mo-pdpa-2005.json #### Martinique - GDPR and French Data Protection Law (Loi Informatique et Libertés) - **ID**: mq-gdpr-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Martinique, as an outermost region of France and the European Union under the TFEU outermost regions framework, is fully subject to the EU General Data Protection Regulation (GDPR) and the French Loi ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mq-gdpr-2018.json #### Maldives Personal Data Protection Act 2021 - **ID**: mv-pdpa-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Maldives enacted the Personal Data Protection Act 2021, establishing the first comprehensive data protection framework in the country. The Act is administered by the Communications Authority of Ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/mv-pdpa-2021.json #### Mexico LFPDPPP 2010 - Personal Data Protection in the Private Sector (ARCO Rights) - **ID**: mx-lfpdppp-2010-data-protection-private-sector - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Mexico's Ley Federal de Proteccion de Datos Personales en Posesion de los Particulares (LFPDPPP, 2010) establishes ARCO rights (Access, Rectification, Cancellation, Opposition), requires a Privacy Not... - **Discovery URL**: https://bidda.com/api/v1/nodes/mx-lfpdppp-2010-data-protection-private-sector.json #### Mexico Federal Law for the Protection of Personal Data Held by Private Parties 2025 - SABG as Regulator after INAI Suppression, Effective 21 May 2025 - **ID**: mx-lfpdppp-2025-private-sector-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Private sector data controllers processing personal data in Mexico must comply with the new Federal Law for the Protection of Personal Data Held by Private Parties enacted 20 March 2025 and entered in... - **Discovery URL**: https://bidda.com/api/v1/nodes/mx-lfpdppp-2025-private-sector-data-protection.json #### Malaysia Personal Data Protection Act 2010 (Act 709) - PDPA - **ID**: my-pdpa-2010 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Personal Data Protection Act 2010 (PDPA, Act 709) is Malaysia's primary legislation governing the processing of personal data in commercial transactions. The PDPA was enacted on 2 June 2010 and ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/my-pdpa-2010.json #### Malaysia Personal Data Protection (Amendment) Act 2024 - Three-Phase Rollout, Mandatory DPO, Breach Notification, and Removal of Whitelist System - **ID**: my-pdpa-amendment-act-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Data controllers and data processors operating in Malaysia must comply with the Personal Data Protection (Amendment) Act 2024, rolled out in three phases: from 1 January 2025 expanded sensitive person... - **Discovery URL**: https://bidda.com/api/v1/nodes/my-pdpa-amendment-act-2024.json #### New York Health Information Privacy & SHIELD Act (2026) - **ID**: new-york-health-data-privacy-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: New York’s SHIELD Act and health-specific privacy rules require reasonable security safeguards for private information (including health data), mandatory breach notification to the NY Attorney General... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-york-health-data-privacy-2026.json #### Privacy Act 2020 - **ID**: new-zealand-privacy-act-2020 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The New Zealand Privacy Act 2020 governs the collection, use, and disclosure of personal information by agencies, establishing 13 Information Privacy Principles (IPPs) under Section 22. It mandates no... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-zealand-privacy-act-2020.json #### Nigeria Data Protection Act 2023 - Data Processing Principles and Controller Obligations - **ID**: ng-ndpa-2023-nigeria-data-protection-act - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Nigeria's Data Protection Act 2023 (NDPA) establishes a comprehensive GDPR-inspired framework: 7 lawful bases for processing, data subject rights including access, rectification, deletion, portability... - **Discovery URL**: https://bidda.com/api/v1/nodes/ng-ndpa-2023-nigeria-data-protection-act.json #### Nigeria Data Protection Regulation 2019 - **ID**: ng-ndpr-2019 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Nigeria Data Protection Regulation (NDPR) governs the processing of personal data of Nigerian citizens and residents, requiring Data Controllers to process data lawfully, securely, and transparent... - **Discovery URL**: https://bidda.com/api/v1/nodes/ng-ndpr-2019.json #### Netherlands GDPR Implementation Act 2018 (Uitvoeringswet Algemene verordening gegevensbescherming - UAVG) - **ID**: nl-uavg-gdpr-implementation-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The UAVG (Uitvoeringswet Algemene verordening gegevensbescherming - Implementation Act for the General Data Protection Regulation) is the Netherlands' national statute implementing and supplementing t... - **Discovery URL**: https://bidda.com/api/v1/nodes/nl-uavg-gdpr-implementation-2018.json #### Nepal Individual Privacy Act 2018 - Ministry of Home Affairs - **ID**: np-privacy-act-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Nepal's Individual Privacy Act 2018 (Byaktigat Gupta Raakhne Sambandhi Ain, 2075 B.S.), enacted by the Federal Parliament of Nepal and authenticated by the President of Nepal, is Nepal's primary legis... - **Discovery URL**: https://bidda.com/api/v1/nodes/np-privacy-act-2018.json #### New Zealand Privacy Act 2020 - **ID**: nz-privacy-act-2020 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The New Zealand Privacy Act 2020 regulates how public and private sector agencies handle personal information through 13 Information Privacy Principles (IPPs) outlined in Section 22. It mandates the n... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-privacy-act-2020.json #### New Zealand Privacy Amendment Act 2025 - Information Privacy Principle 3A on Indirect Collection Notification, In Force 1 May 2026 - **ID**: nz-privacy-amendment-act-2025-ipp3a - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Agencies that collect personal information about an individual from a source other than the individual themselves in New Zealand must, from 1 May 2026, comply with the new Information Privacy Principl... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-privacy-amendment-act-2025-ipp3a.json #### Oman Personal Data Protection Law 2022 - Information Technology Authority (ITA) Oversight, Data Controller and Processor Obligations, Sensitive Data Categories, Data Subject Rights, Cross-Border Transfer Conditions, 72-Hour Breach Notification and Fines up to OMR 500,000 - **ID**: oman-personal-data-protection-law-2022 - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: This regulation establishes comprehensive obligations for data controllers and processors in Oman regarding the lawful processing of personal data, including requirements for consent, data subject rig... - **Discovery URL**: https://bidda.com/api/v1/nodes/oman-personal-data-protection-law-2022.json #### Philippines Republic Act 10173 - Data Privacy Act of 2012 - **ID**: ph-data-privacy-act-ra-10173 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Republic Act No. 10173, the Data Privacy Act of 2012, is the principal Philippine personal data protection statute. The Act was approved on 15 August 2012 and entered into force on 8 September 2012. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/ph-data-privacy-act-ra-10173.json #### Philippines NPC Advisory No. 2024-04 - Guidelines on Artificial Intelligence Systems Processing Personal Data, Issued 19 December 2024 - **ID**: ph-npc-advisory-2024-04-ai-personal-data - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Personal Information Controllers (PICs) and Personal Information Processors (PIPs) in the Philippines developing, testing, training, or deploying AI technologies must comply with NPC Advisory No. 2024... - **Discovery URL**: https://bidda.com/api/v1/nodes/ph-npc-advisory-2024-04-ai-personal-data.json #### Republic Act No. 10173: An Act Protecting Individual Personal Information in Information and Communications Systems in the Government and the Private Sector, Creating for this Purpose a National Privacy Commission, and for Other Purposes (Data Privacy Act of 2012) - **ID**: philippines-data-privacy-act-2012-ra-10173 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Philippines Data Privacy Act of 2012 (DPA) requires personal information controllers (PICs) and processors (PIPs) to implement organizational, physical, and technical security measures for data pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/philippines-data-privacy-act-2012-ra-10173.json #### Qatar Personal Data Privacy Protection Law No. 13 of 2016 - **ID**: qatar-pdppl-law-13-2016-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: This law establishes comprehensive data protection obligations for entities processing personal data in Qatar, including requirements for lawful processing, data subject rights, sensitive data handlin... - **Discovery URL**: https://bidda.com/api/v1/nodes/qatar-pdppl-law-13-2016-data-protection.json #### Data Protection Regulations 2021 - **ID**: qatar-qfcra-data-protection-regulations-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: These regulations apply to Data Controllers and Processors within the Qatar Financial Centre (QFC), mandating registration with the QFCRA (Article 10) and adherence to core data processing principles ... - **Discovery URL**: https://bidda.com/api/v1/nodes/qatar-qfcra-data-protection-regulations-2021.json #### Réunion - GDPR and French Data Protection Law (Loi Informatique et Libertés) - **ID**: re-gdpr-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Réunion, as an outermost region of France and the European Union under the TFEU outermost regions framework, is fully subject to the EU General Data Protection Regulation (GDPR) and the French Loi Inf... - **Discovery URL**: https://bidda.com/api/v1/nodes/re-gdpr-2018.json #### Serbia Law on Personal Data Protection 2018 - Poverenik - **ID**: rs-pdpa-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Serbia's Law on Personal Data Protection (Zakon o zaštiti podataka o ličnosti - ZZPL) - published in the Official Gazette of the Republic of Serbia No. 87/2018 and entering into force on 21 August 201... - **Discovery URL**: https://bidda.com/api/v1/nodes/rs-pdpa-2018.json #### Saudi Arabia PDPL (Royal Decree M/19/2021) - Personal Data Protection Law - **ID**: sa-pdpl-royal-decree-m19-2021-personal-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Saudi Arabia's Personal Data Protection Law (PDPL, Royal Decree M/19/2021, effective September 2023) establishes lawful bases for processing personal data of Saudi residents, grants data subject right... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-pdpl-royal-decree-m19-2021-personal-data-protection.json #### Personal Data Protection Act 2012 (2021 Amendment) - **ID**: sg-pdpa-2012 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Singapore Personal Data Protection Act (PDPA) establishes a baseline standard of protection for personal data in Singapore by governing its collection, use, disclosure, and care by private sector ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-pdpa-2012.json #### Personal Data Protection Act 2012 - Section 13 Consent required - **ID**: sg-pdpa-2012-section-13-consent-obligation-collection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: An organisation must obtain consent from an individual before collecting, using, or disclosing their personal data for a specified purpose. - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-pdpa-2012-section-13-consent-obligation-collection.json #### Personal Data Protection Act 2012 - Section 26D Duty to notify occurrence of notifiable data breach - **ID**: sg-pdpa-2012-section-26-data-breach-notification-mandatory - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations have a mandatory duty to assess data breaches and notify the Personal Data Protection Commission and affected individuals if the breach is deemed notifiable. - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-pdpa-2012-section-26-data-breach-notification-mandatory.json #### Personal Data Protection Act 2012 - Part 3 General Rules with Respect to Protection of and Accountability for Personal Data - **ID**: sg-pdpa-part-3-data-protection-obligations-main - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must implement policies and practices to comply with the Act's requirements for collecting, using, disclosing, protecting, and retaining personal data, including obtaining consent and no... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-pdpa-part-3-data-protection-obligations-main.json #### Personal Data Protection Act 2012 - Part 6A Notification of Data Breaches - **ID**: sg-pdpa-section-26a-data-breach-notification - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must assess data breaches to determine if they are notifiable and subsequently notify the Personal Data Protection Commission and affected individuals of any notifiable data breach. - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-pdpa-section-26a-data-breach-notification.json #### Singapore PDPA 2012 - Cybersecurity and Data Protection Obligations Under the Protection Obligation - **ID**: sg-personal-data-protection-act-2012-pdpa-cybersecurity-obligations - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Singapore Personal Data Protection Act 2012 (PDPA), as amended in 2020, imposes a Protection Obligation (s 24) requiring organisations to make reasonable security arrangements to protect personal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-personal-data-protection-act-2012-pdpa-cybersecurity-obligations.json #### Singapore Personal Data Protection Amendment Act 2020 - **ID**: sg-personal-data-protection-amendment-act-2020 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Personal Data Protection (Amendment) Act 2020 (No. 40 of 2020), in force 1 February 2021, substantially amends the Personal Data Protection Act 2012 to introduce mandatory data breach notification... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-personal-data-protection-amendment-act-2020.json #### Singapore Singpass and National Digital Identity Framework under the PDPA - **ID**: sg-singpass-ndi-pdpa-digital-identity - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Singpass is Singapore's National Digital Identity (NDI) platform, operated by the Government Technology Agency of Singapore (GovTech) on behalf of the Smart Nation and Digital Government Office. Singp... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-singpass-ndi-pdpa-digital-identity.json #### Personal Data Protection Act 2012 (No. 26 of 2012) as amended by the Personal Data Protection (Amendment) Act 2020 - **ID**: singapore-pdpa-2012-2020-amendment - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Singapore PDPA, as amended in 2020, mandates that organizations notify the Personal Data Protection Commission (PDPC) of a data breach within 3 calendar days (Part VIA, Section 26C) and introduces... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-pdpa-2012-2020-amendment.json #### Singapore Personal Data Protection Act 2012 (PDPA) - Data Protection Obligations, DPO Requirement, and Mandatory Breach Notification - **ID**: singapore-pdpa-2012-personal-data-protection-obligations - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Singapore's PDPA (Act 26 of 2012, as amended by PDPA Amendment Act 2020) requires organisations to appoint a Data Protection Officer (DPO), comply with nine data protection obligations, notify PDPC an... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-pdpa-2012-personal-data-protection-obligations.json #### Singapore PDPA - Processing of Personal Data in the Healthcare Sector (2026) - **ID**: singapore-pdpa-health-data-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Personal Data Protection Act (PDPA) requires organisations handling personal data (including sensitive health data) to comply with consent, purpose limitation, notification, access/correction, sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-pdpa-health-data-2026.json #### Svalbard and Jan Mayen - Norwegian GDPR Implementation and Datatilsynet Supervisory Framework - **ID**: sj-gdpr-framework - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Svalbard is a Norwegian archipelago located in the Arctic Ocean north of the Norwegian mainland, and Jan Mayen is a Norwegian island in the Arctic Ocean to the northeast of Iceland. Both are Norwegian... - **Discovery URL**: https://bidda.com/api/v1/nodes/sj-gdpr-framework.json #### Slovakia Personal Data Protection Act 2018 (Act No. 18/2018 Z. z.) - GDPR National Implementation - **ID**: sk-pdpa-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Slovakia's Zákon č. 18/2018 Z. z. o ochrane osobných údajov a o zmene a doplnení niektorých zákonov (Act No. 18/2018 Coll. on the Protection of Personal Data and on Amendments to Certain Acts), publis... - **Discovery URL**: https://bidda.com/api/v1/nodes/sk-pdpa-2018.json #### South Africa POPIA Health Data Processing Regulations 2026 - **ID**: south-africa-popia-health-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: March 2026 POPIA regulations impose strict rules on processing health information, including explicit consent, security safeguards, and cross-border transfer restrictions for responsible parties. - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-popia-health-2026.json #### South Africa POPIA - Regulations on Processing of Health Information (2026) - **ID**: south-africa-popia-health-info-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Information Regulator published specific regulations in March 2026 under Section 32 of POPIA governing the processing of health information as special personal information. Responsible parties mus... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-popia-health-info-2026.json #### Personal Data Protection Act (Republic of China, Taiwan) as amended on December 30, 2015 - **ID**: taiwan-personal-data-protection-act-2015 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Taiwan Personal Data Protection Act (PDPA) governs the collection, processing, and use of personal data by government and non-government agencies, requiring a specific purpose and consent for most... - **Discovery URL**: https://bidda.com/api/v1/nodes/taiwan-personal-data-protection-act-2015.json #### Texas Health Care Privacy Law & Data Privacy Framework (2026) - **ID**: texas-health-data-privacy-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Texas Health Care Privacy Law (HB 300 and subsequent amendments) imposes strict requirements on covered entities handling protected health information. It includes patient consent for certain disclosu... - **Discovery URL**: https://bidda.com/api/v1/nodes/texas-health-data-privacy-2026.json #### Thailand Personal Data Protection Act B.E. 2562 (2019) - PDPC Enforcement and Data Subject Rights - **ID**: th-pdpa-2019 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Thailand's Personal Data Protection Act B.E. 2562 (PDPA), published in the Royal Gazette on 27 May 2019, received Royal Assent on 24 May 2019. The PDPA was originally scheduled to enter into full forc... - **Discovery URL**: https://bidda.com/api/v1/nodes/th-pdpa-2019.json #### Personal Data Protection Act B.E. 2562 (2019) - **ID**: th-pdpa-2022 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Thailand's PDPA regulates the collection, use, and disclosure of personal data for organizations inside Thailand and those outside who process data of Thai residents. As per Section 19, data processin... - **Discovery URL**: https://bidda.com/api/v1/nodes/th-pdpa-2022.json #### Thailand PDPC Subordinate Regulations on Cross-Border Personal Data Transfers 2023/2024 - Green Route (Section 28) and Safeguard Route (Section 29), Effective 24 March 2024 - **ID**: th-pdpa-cross-border-data-transfer-regulations-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Data controllers in Thailand transferring personal data internationally must comply with the two subordinate regulations under the Personal Data Protection Act (PDPA) published in the Government Gazet... - **Discovery URL**: https://bidda.com/api/v1/nodes/th-pdpa-cross-border-data-transfer-regulations-2024.json #### Personal Data Protection Act B.E. 2562 (2019) - **ID**: thailand-pdpa-2019-personal-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Thailand's Personal Data Protection Act (PDPA) governs the collection, use, and disclosure of personal data by data controllers and processors within Thailand, and certain entities outside Thailand pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/thailand-pdpa-2019-personal-data-protection.json #### Taiwan Personal Data Protection Act 2010 (as amended 2023) - PDPC - **ID**: tw-pdpa-2023 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Taiwan's Personal Data Protection Act (個人資料保護法, PDPA) - promulgated by the President of the Republic of China on 26 May 2010, replacing the prior Computer-Processed Personal Data Protection Law (1995)... - **Discovery URL**: https://bidda.com/api/v1/nodes/tw-pdpa-2023.json #### Tanzania Personal Data Protection Act 2022 - PDPC - **ID**: tz-pdpa-2022 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Tanzania's Personal Data Protection Act, 2022 (Act No. 11 of 2022) - assented to by President Samia Suluhu Hassan in 2022 and published in the Government Gazette of Tanzania - is Tanzania's first comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/tz-pdpa-2022.json #### Abu Dhabi Global Market (ADGM) Data Protection Regulations 2021 - **ID**: uae-adgm-data-protection-regulations-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The ADGM Data Protection Regulations 2021 impose a comprehensive data protection framework on Controllers and Processors within the ADGM financial free zone, closely mirroring the EU GDPR. It mandates... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-adgm-data-protection-regulations-2021.json #### Data Protection Law DIFC Law No. 5 of 2020 - **ID**: uae-difc-data-protection-law-5-2020 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This law requires data Controllers and Processors operating within the Dubai International Financial Centre (DIFC) to implement and demonstrate a comprehensive data protection program under the accoun... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-difc-data-protection-law-5-2020.json #### Uganda Data Protection and Privacy Act 2019 - PDPO/NITA-U - **ID**: ug-pdpa-2019 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Uganda's Data Protection and Privacy Act, 2019 (Act No. 2 of 2019) - assented to by President Yoweri Museveni on 26 February 2019 and published in the Uganda Gazette No. 12 on 19 March 2019, coming in... - **Discovery URL**: https://bidda.com/api/v1/nodes/ug-pdpa-2019.json #### United Kingdom Data Protection Act 2018 (c. 12) and UK GDPR Framework - **ID**: uk-data-protection-act-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Data Protection Act 2018 (c. 12 - DPA 2018), which received Royal Assent on 23 May 2018, is the United Kingdom's national data protection statute. It operates alongside the UK GDPR (the EU General... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-data-protection-act-2018.json #### Data Protection Act 2018, PART 3 - Law Enforcement Processing - **ID**: uk-data-protection-act-2018-part-3-law-enforcement - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Establishes a data protection framework for competent authorities processing personal data for law enforcement purposes, including principles for processing, data subject rights, and controller obliga... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-data-protection-act-2018-part-3-law-enforcement.json #### Data Protection Act 2018 Section 14: Automated individual decision-making, including profiling - **ID**: uk-data-protection-act-2018-section-14-automated-decision-making - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must not make decisions based solely on automated processing that have legal or similarly significant effects on individuals, unless specific conditions are met, and must provide safegua... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-data-protection-act-2018-section-14-automated-decision-making.json #### UK Data Protection Act 2018 Section 144 - False Statements Made in Response to Information Notices (Knowingly False or Recklessly False Statement, Material Respect Test) - **ID**: uk-data-protection-act-2018-section-144-false-statements-information-notices - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Section 144 of the Data Protection Act 2018 (c. 12) creates the offence of making false statements in response to an Information Commissioner's information notice. Under section 144, it is an offence ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-data-protection-act-2018-section-144-false-statements-information-notices.json #### UK Data Protection Act 2018 Section 170 - Unlawful Obtaining etc of Personal Data (Without Controller Consent, Knowingly or Recklessly, Selling and Offering to Sell) - **ID**: uk-data-protection-act-2018-section-170-unlawful-obtaining-personal-data - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Section 170 of the Data Protection Act 2018 (c. 12) creates the UK criminal offence of unlawful obtaining, disclosure, procurement, or retention of personal data without the consent of the controller,... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-data-protection-act-2018-section-170-unlawful-obtaining-personal-data.json #### UK Data Protection Act 2018 Section 171 - Re-identification of De-identified Personal Data (Knowing or Reckless Re-identification, Controller Consent Requirement, Public Interest and Special Purposes Defences) - **ID**: uk-data-protection-act-2018-section-171-re-identification-de-identified-data - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Section 171 of the Data Protection Act 2018 (c. 12) creates the criminal offence of re-identifying de-identified personal data without the consent of the controller responsible for de-identifying the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-data-protection-act-2018-section-171-re-identification-de-identified-data.json #### Data Protection Act 2018 Section 172: Re-identification of de-identified personal data - **ID**: uk-data-protection-act-2018-section-172-offence-re-identification - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This section establishes a criminal offence for knowingly or recklessly re-identifying personal data that has been de-identified, without the consent of the controller who performed the de-identificat... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-data-protection-act-2018-section-172-offence-re-identification.json #### UK General Data Protection Regulation (UK GDPR) as tailored by the Data Protection Act 2018 - **ID**: uk-retained-gdpr - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The UK GDPR establishes the legal framework for processing personal data in the United Kingdom, requiring organizations to adhere to core principles like lawfulness, fairness, and transparency as outl... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-retained-gdpr.json #### Law No. 18,331 of 2008 on Personal Data Protection - **ID**: uruguay-law-18331-2008-personal-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: Uruguay's Law 18,331/2008 establishes a comprehensive framework for the protection of personal data, requiring data controllers to ensure lawfulness, fairness, transparency, purpose limitation, data m... - **Discovery URL**: https://bidda.com/api/v1/nodes/uruguay-law-18331-2008-personal-data-protection.json #### American Data Privacy and Protection Act (ADPPA) - **ID**: us-adppa-american-data-privacy-protection-act - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The American Data Privacy and Protection Act (ADPPA) establishes a comprehensive national data privacy framework for the U.S., requiring covered entities to adhere to data minimization principles (Sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-adppa-american-data-privacy-protection-act.json #### California AB 1008 (2024) - CCPA Amendment: AI Systems and Abstract Digital Formats of Personal Information - **ID**: us-ca-ab1008-2024-ccpa-ai-personal-information-formats - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: California Assembly Bill 1008 (Bauer-Kahan), Chapter 802 of the 2024 Statutes, amends California Civil Code Section 1798.140 - the definitions section of the California Consumer Privacy Act (CCPA) as ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab1008-2024-ccpa-ai-personal-information-formats.json #### California Civil Code § 1798.100. General Duties of Businesses that Collect Personal Information - **ID**: us-ca-ccpa-civil-code-1798-100-right-to-know-personal-information - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article requires businesses to inform consumers at or before the point of collection about the categories of personal information collected, the purposes for its use, and retention periods, and m... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ccpa-civil-code-1798-100-right-to-know-personal-information.json #### Civil Code § 1798.110: Consumers’ Right to Know What Personal Information is Being Collected. Right to Access Personal Information - **ID**: us-ca-ccpa-civil-code-1798-110-right-to-deletion-opt-out - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This article requires businesses to disclose to consumers, upon a verifiable request, the categories and specific pieces of personal information collected about them, the sources of that information, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ccpa-civil-code-1798-110-right-to-deletion-opt-out.json #### Civil Code § 1798.121. Consumers’ Right to Limit Use and Disclosure of Sensitive Personal Information - **ID**: us-ca-cpra-civil-code-1798-121-sensitive-personal-information-rights - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must provide consumers with the right to limit the use and disclosure of their sensitive personal information to purposes necessary for providing requested goods or services and must cea... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-cpra-civil-code-1798-121-sensitive-personal-information-rights.json #### California AB 1949 (2024) - CCPA Amendments for Consumers Under 18 (Children's Data Privacy) - **ID**: us-california-ab-1949-2024-childrens-data-privacy - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: California AB 1949 (chaptered September 2024) amends the California Consumer Privacy Act to strengthen protections for personal information of consumers under 18. The Act amends Civil Code Section 179... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-california-ab-1949-2024-childrens-data-privacy.json #### California Age-Appropriate Design Code Act (CAADCA) - Data Protection Impact Assessments for Services Likely to be Accessed by Children - **ID**: us-california-caadca-age-appropriate-design-2022 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The California Age-Appropriate Design Code Act (CAADCA) requires businesses providing online services likely to be accessed by children to complete, review, and document a Data Protection Impact Asses... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-california-caadca-age-appropriate-design-2022.json #### California SB 976 (2024) - Protecting Our Kids from Social Media Addiction Act - **ID**: us-california-sb-976-2024-social-media-addiction-kids - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: California SB 976 (chaptered September 20 2024) adds Chapter 24 (Sections 27000-27007) to Division 20 of the California Health and Safety Code creating the Protecting Our Kids from Social Media Addict... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-california-sb-976-2024-social-media-addiction-kids.json #### US CPRA 2023 - California Consumer Privacy Rights: Right to Opt Out of Sale/Sharing (Including Cross-Context Behavioural Advertising), Right to Limit Sensitive Personal Information, Data Minimisation for Marketing, CPPA Enforcement and Regulations - **ID**: us-ccpa-cpra-2023-marketing-rights - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: This regulation requires businesses that process personal information of California residents to provide a clear and accessible mechanism for consumers to opt out of the sale or sharing of their perso... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ccpa-cpra-2023-marketing-rights.json #### US California Consumer Privacy Act (CCPA/CPRA) - Consumer Data Rights and Business Obligations - **ID**: us-ccpa-cpra-cal-civ-code-1798-consumer-privacy-rights - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The California Consumer Privacy Act (CCPA, 2018) as amended by the California Privacy Rights Act (CPRA, 2020, enforceable July 2023) grants California consumers rights to know, delete, opt-out of sale... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ccpa-cpra-cal-civ-code-1798-consumer-privacy-rights.json #### US Children's Online Privacy Protection Act (15 USC ch 91): Parental Consent for Children's Data - **ID**: us-childrens-online-privacy-protection-act - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Children's Online Privacy Protection Act, COPPA (15 U.S.C. ch. 91), regulates the online collection of personal information from children under the age of 13, enforced by the Federal Trade Commiss... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-childrens-online-privacy-protection-act.json #### US Colorado HB24-1058 (2024) Protect Privacy of Biological Data Including Neural Data - **ID**: us-colorado-hb24-1058-2024-neural-data-privacy - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Colorado House Bill 24-1058 was signed into law by Governor Jared Polis on 17 April 2024 and is the first US state law to expressly protect neural data as sensitive personal information under a consum... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-colorado-hb24-1058-2024-neural-data-privacy.json #### Colorado Privacy Act (CPA) of 2021 - **ID**: us-colorado-privacy-act-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Colorado Privacy Act (CPA) grants Colorado residents rights over their personal data, including access, correction, deletion, and opt-out of targeted advertising, sale of personal data, or profili... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-colorado-privacy-act-2021.json #### Connecticut Data Privacy Act (CTDPA) - Public Act No. 22-15 - **ID**: us-connecticut-data-privacy-act-ctdpa-2022 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Connecticut Data Privacy Act (CTDPA) grants Connecticut residents rights to access, correct, delete, and obtain a copy of their personal data, and to opt out of the processing of personal data for... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-connecticut-data-privacy-act-ctdpa-2022.json #### Children’s Online Privacy Protection Rule (COPPA Rule) - 2023 Notice of Proposed Rulemaking - **ID**: us-coppa-2-0-proposed-rule-2023 - **Category**: Data Protection & Privacy - **Version**: 1.0.1 - **BLUF**: The FTC's proposed update to the COPPA Rule (16 C.F.R. Part 312) expands protections by requiring separate, verifiable parental consent for disclosing personal information to third parties for adverti... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-coppa-2-0-proposed-rule-2023.json #### The California Privacy Rights Act of 2020 (CPRA) - **ID**: us-cpra-california-privacy-rights-act-2020 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The California Privacy Rights Act (CPRA) amends and expands the California Consumer Privacy Act (CCPA), granting California residents new rights over their personal information, including the right to... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cpra-california-privacy-rights-act-2020.json #### Delaware Personal Data Privacy Act (House Bill 154) - **ID**: us-delaware-personal-data-privacy-act-2023 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Delaware Personal Data Privacy Act (DPDPA) establishes rights for consumers to access, correct, delete, and opt-out of the sale of their personal data, and imposes duties on data controllers who c... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-delaware-personal-data-privacy-act-2023.json #### EU-US Data Privacy Framework 2023 - Adequacy Decision and Executive Order 14086 - **ID**: us-eu-data-privacy-framework-2023 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The EU-US Data Privacy Framework (DPF) is the third successor to Safe Harbor (invalidated by Schrems I in 2015) and Privacy Shield (invalidated by Schrems II in 2020), comprising Executive Order 14086... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eu-data-privacy-framework-2023.json #### US Family Educational Rights and Privacy Act (FERPA, 20 USC 1232g): Education Record Access and Disclosure - **ID**: us-family-educational-rights-and-privacy-act - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Family Educational Rights and Privacy Act (FERPA, 20 U.S.C. 1232g) protects the privacy of student education records and is enforced by the Department of Education against educational agencies and... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-family-educational-rights-and-privacy-act.json #### US Family Educational Rights and Privacy Act (FERPA) 1974 - Department of Education - **ID**: us-family-educational-rights-privacy-act-ferpa-1974-doe - **Category**: Data Protection & Privacy - **Version**: 2.0.0 - **BLUF**: FERPA (20 U.S.C. 1232g; 34 C.F.R. Part 99) protects the privacy of student education records at institutions receiving federal funding; grants parents rights to inspect, amend, and control disclosure ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-family-educational-rights-privacy-act-ferpa-1974-doe.json #### Family Educational Rights and Privacy Act (FERPA) - Education Records, Parental Rights, Directory Information and Disclosure Conditions - **ID**: us-ferpa-family-educational-rights-privacy-act - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Family Educational Rights and Privacy Act (FERPA) is a U.S. federal law that protects the privacy of student education records and applies to all schools that receive funds under an applicable pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ferpa-family-educational-rights-privacy-act.json #### US FERPA - Family Educational Rights and Privacy Act (20 U.S.C. § 1232g) - Student Records Protection - **ID**: us-ferpa-family-educational-rights-privacy-act-20-usc-1232g - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Family Educational Rights and Privacy Act (FERPA, 20 U.S.C. § 1232g) protects the privacy of student education records at institutions receiving federal funds. Students (or parents of students und... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ferpa-family-educational-rights-privacy-act-20-usc-1232g.json #### 16 CFR Part 312 - Children's Online Privacy Protection Rule (Coppa Rule) - **ID**: us-ftc-cfr-16-part-312-coppa-rule - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This rule imposes requirements on operators of websites or online services directed to children under 13, or those with actual knowledge of collecting personal information from a child, concerning the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-cfr-16-part-312-coppa-rule.json #### US FTC COPPA Rule Amendment 2024 - **ID**: us-ftc-coppa-rule-amendment-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The FTC's 2024 amendment to the Children's Online Privacy Protection Rule, effective April 22, 2024, significantly strengthens children's online privacy by imposing data minimisation and retention lim... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-coppa-rule-amendment-2024.json #### US HIPAA Privacy Rule 2003 (45 CFR Parts 160 and 164) - **ID**: us-hipaa-privacy-rule-2003 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The HIPAA Privacy Rule (45 CFR Parts 160 and 164 Subparts A and E) effective April 14, 2003 establishes national standards for the protection of protected health information (PHI) held by covered enti... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-privacy-rule-2003.json #### Iowa Consumer Data Protection Act (SF 262) - **ID**: us-iowa-consumer-data-protection-act-2023 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Iowa Consumer Data Protection Act (ICDPA) grants Iowa residents rights to access, delete, and obtain a copy of their personal data, and to opt out of the sale of their data or its use for targeted... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-iowa-consumer-data-protection-act-2023.json #### US Kids Online Safety Act (KOSA) - S.1409 118th Congress - **ID**: us-kosa-kids-online-safety-act-s-1409 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Kids Online Safety Act (KOSA), S.1409 in the 118th Congress, establishes federal duties for covered online platforms used by minors. Section 2 defines minor as an individual under 17 and child as ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-kosa-kids-online-safety-act-s-1409.json #### Maryland Online Data Privacy Act of 2024 - **ID**: us-maryland-online-data-privacy-act-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Maryland Online Data Privacy Act of 2024 requires controllers to limit personal data collection to what is adequate, relevant, and reasonably necessary for disclosed purposes (data minimization an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-maryland-online-data-privacy-act-2024.json #### Maryland Online Data Privacy Act 2024 (MODPA) - **ID**: us-md-online-data-privacy-act-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Maryland MODPA signed May 9, 2024 effective October 1, 2025 prohibits controllers from collecting sensitive personal data beyond what is strictly necessary to provide the requested service, extends ch... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-md-online-data-privacy-act-2024.json #### Maine An Act To Protect the Privacy of Online Consumer Information 2019 - **ID**: us-me-data-privacy-act-2019 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Maine LD 946 signed June 6, 2019 effective July 1, 2020 requires broadband internet service providers to obtain explicit opt-in consent before using, selling, or disclosing a customer's personal infor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-me-data-privacy-act-2019.json #### Minnesota Consumer Data Privacy Act (MCDPA) - **ID**: us-minnesota-consumer-data-privacy-act-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Minnesota Consumer Data Privacy Act (MCDPA) grants Minnesota residents rights over their personal data, including access, correction, deletion, and opt-out of sale, profiling, or targeted advertis... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-minnesota-consumer-data-privacy-act-2024.json #### Montana Consumer Data Privacy Act - **ID**: us-montana-consumer-data-privacy-act-2023 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Montana Consumer Data Privacy Act (MCDPA) establishes rights for Montana residents to control their personal data and imposes obligations on data controllers and processors. It applies to entities... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-montana-consumer-data-privacy-act-2023.json #### Nebraska Data Privacy Act (LB 1294) - **ID**: us-nebraska-data-privacy-act-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Nebraska Data Privacy Act (NDPA) grants Nebraska residents rights to access, correct, delete, and obtain a copy of their personal data, and to opt out of the sale of personal data, targeted advert... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nebraska-data-privacy-act-2024.json #### Nevada SB 220 (2019) and SB 260 (2021) - Sale of Covered Information Opt-Out Requirements for Operators of Websites - **ID**: us-nevada-privacy-law-sb-220-2019 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This law requires operators of websites or online services who collect 'covered information' from Nevada consumers to provide a designated request address for consumers to opt-out of the 'sale' of the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nevada-privacy-law-sb-220-2019.json #### New Hampshire Privacy Act (SB 255-FN) - **ID**: us-new-hampshire-privacy-act-sb255-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The New Hampshire Privacy Act establishes rights for consumers to access, correct, delete, and obtain a copy of their personal data, and to opt out of the processing of their data for targeted adverti... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-new-hampshire-privacy-act-sb255-2024.json #### New Jersey Data Privacy Act (P.L.2023, c.266) - **ID**: us-new-jersey-data-privacy-act-njdpa-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The New Jersey Data Privacy Act (NJDPA) applies to controllers conducting business in NJ or targeting NJ residents who control or process personal data of at least 100,000 consumers, or 25,000 consume... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-new-jersey-data-privacy-act-njdpa-2024.json #### New York SAFE for Kids Act (S.7694-A 2023-24) - Stop Addictive Feeds Exploitation - **ID**: us-new-york-safe-for-kids-act-2024-addictive-feeds - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The New York Stop Addictive Feeds Exploitation (SAFE) for Kids Act, S.7694-A in the 2023-24 legislative session, adds Article 45 (Sections 1500-1508) to the New York General Business Law. The Act defi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-new-york-safe-for-kids-act-2024-addictive-feeds.json #### New Hampshire Privacy Act 2024 (SB 255) - **ID**: us-nh-privacy-act-2024 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: New Hampshire SB 255 signed March 6, 2024 effective January 1, 2025 grants consumers rights to access, correct, delete, and port their personal data, requires opt-in consent for sensitive data process... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nh-privacy-act-2024.json #### Oregon Consumer Privacy Act (SB 619) - Data Protection Assessments, Profiling Restrictions and Non-Discrimination Obligation - **ID**: us-oregon-consumer-privacy-act-2023 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Oregon Consumer Privacy Act (OCPA) requires controllers to conduct and document a Data Protection Assessment (DPA) for any processing that presents a heightened risk of harm to a consumer, includi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-oregon-consumer-privacy-act-2023.json #### US Privacy Act of 1974 - **ID**: us-privacy-act-1974 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Privacy Act of 1974 governs how US federal agencies collect, maintain, use, and disseminate personally identifiable information about individuals, grants individuals rights to access and amend the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-privacy-act-1974.json #### REAL ID Act 2005 - Public Law 109-13 - **ID**: us-real-id-act-2005-pl-109-13 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The REAL ID Act of 2005 (Public Law 109-13 Division B, enacted 11 May 2005) established federal minimum security standards for state-issued driver's licences and identification cards required for fede... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-real-id-act-2005-pl-109-13.json #### US Right to Financial Privacy Act (12 USC ch 35): Government Access to Financial Records - **ID**: us-right-to-financial-privacy-act - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Right to Financial Privacy Act (12 U.S.C. ch. 35) limits the access of Federal Government authorities to the financial records of customers held by financial institutions and requires notice to th... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-right-to-financial-privacy-act.json #### US State Privacy Law Framework - CCPA, VCDPA, CPA, CTDPA Comparative Compliance Analysis (2023) - **ID**: us-state-privacy-law-patchwork - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Businesses operating across multiple US states must comply with a patchwork of privacy laws, each granting consumers specific rights such as access, deletion, and opt-out of sale/sharing of personal d... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-state-privacy-law-patchwork.json #### Texas Data Privacy and Security Act (TDPSA) - **ID**: us-texas-data-privacy-security-act-tdpsa-2023 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Texas Data Privacy and Security Act (TDPSA) requires businesses controlling or processing Texans' personal data to obtain explicit consent before processing sensitive data (Sec. 541.101(b)) and pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-texas-data-privacy-security-act-tdpsa-2023.json #### Utah Consumer Privacy Act (UCPA) - **ID**: us-utah-consumer-privacy-act-ucpa-2022 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Utah Consumer Privacy Act (UCPA) grants Utah residents rights to access, delete, and obtain their personal data, and to opt out of the sale of personal data and targeted advertising. The act appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-utah-consumer-privacy-act-ucpa-2022.json #### Virginia Consumer Data Protection Act (CDPA) - **ID**: us-virginia-cdpa-consumer-data-protection-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Virginia Consumer Data Protection Act (CDPA) establishes a framework for controlling and processing personal data in the Commonwealth. It applies to entities that conduct business in Virginia or p... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-virginia-cdpa-consumer-data-protection-2021.json #### Washington Biometric Privacy Act 2017 (SB 1011) - **ID**: us-wa-biometric-privacy-act-2017 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Washington Chapter 19.375 RCW enacted 2017 prohibits commercial entities from enrolling biometric identifiers from Washington consumers without notice of the purpose and collection method, bars sale o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wa-biometric-privacy-act-2017.json #### British Virgin Islands Personal Data Protection Act 2021 - **ID**: vg-pdpa-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The British Virgin Islands enacted the Personal Data Protection Act 2021 (No. 13 of 2021), a comprehensive statute aligned with UK and EU data protection standards. Administered by the BVI Information... - **Discovery URL**: https://bidda.com/api/v1/nodes/vg-pdpa-2021.json #### Virginia Consumer Data Protection Act (VCDPA) - Health Data Processing Rules (2026) - **ID**: virginia-consumer-data-protection-act-health-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Virginia state-level privacy legislation governing the processing of consumer health data. While entities heavily regulated by HIPAA enjoy entity-level exemptions, non-HIPAA consumer health apps, wear... - **Discovery URL**: https://bidda.com/api/v1/nodes/virginia-consumer-data-protection-act-health-2026.json #### Vietnam Decree 13/2023/ND-CP on Personal Data Protection - Effective 1 July 2023, Three-Type Entity Classification and Cross-Border Impact Assessment - **ID**: vn-decree-13-2023-personal-data-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Domestic and foreign organizations and individuals involved in processing personal data of data subjects in Vietnam, even if processing occurs outside Vietnam, must comply with Decree 13/2023/ND-CP on... - **Discovery URL**: https://bidda.com/api/v1/nodes/vn-decree-13-2023-personal-data-protection.json #### Mayotte - GDPR and French Data Protection Law (Loi Informatique et Libertés) - **ID**: yt-gdpr-2018 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Mayotte, as a French overseas department and outermost region of the European Union since its departmentalisation in 2011 and EU outermost region status confirmed in 2014, is fully subject to the EU G... - **Discovery URL**: https://bidda.com/api/v1/nodes/yt-gdpr-2018.json #### South Africa Digital Identity Draft Regulations Identification Act 68 of 1997 Amended 2026 Smartphone Digital ID Credentials Biometric Verification and POPIA Alignment - **ID**: za-digital-identity-regulations-identification-act-1997-amended-2026 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The South African draft Digital Identity Regulations gazetted in May 2026 under the Identification Act 68 of 1997 administered by the Department of Home Affairs introduce optional smartphone-based Dig... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-digital-identity-regulations-identification-act-1997-amended-2026.json #### Protection of Personal Information Act 4 of 2013 (POPIA) - **ID**: za-popia-2013 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: The Protection of Personal Information Act (POPIA) establishes eight mandatory conditions for the lawful processing of personal information by public and private bodies in South Africa. As outlined in... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-popia-2013.json #### South Africa POPIA (Act 4 of 2013) - Eight Conditions for Lawful Processing and IO Registration - **ID**: za-popia-act-4-2013-personal-information-protection - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: South Africa's Protection of Personal Information Act (POPIA, Act 4 of 2013) sets eight conditions for lawful personal information processing, requires registration of an Information Officer (IO) with... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-popia-act-4-2013-personal-information-protection.json #### Protection of Personal Information Act (POPIA), 2013 - Section 11: Consent, justification and objection - **ID**: za-popia-section-11-grounds-processing-personal-information - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This section establishes the legal grounds under which a responsible party may lawfully process personal information, requiring at least one of six specific justifications to be met for any processing... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-popia-section-11-grounds-processing-personal-information.json #### Protection of Personal Information Act (Act 4 of 2013): Section 19 - Security measures on integrity and confidentiality of personal information - **ID**: za-popia-section-19-security-measures-controller - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: A responsible party must secure the integrity and confidentiality of personal information by implementing appropriate, reasonable technical and organisational measures to prevent its loss, damage, des... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-popia-section-19-security-measures-controller.json #### Protection of Personal Information Act (Act 4 of 2013): Section 22 - Notification of security compromises - **ID**: za-popia-section-22-notification-security-compromises - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Organizations must notify the Information Regulator and affected data subjects as soon as reasonably possible after discovering a security compromise involving personal information. - **Discovery URL**: https://bidda.com/api/v1/nodes/za-popia-section-22-notification-security-compromises.json #### Protection of Personal Information Act (POPIA), 2013 - Section 57: Duties and responsibilities of information officer - **ID**: za-popia-section-57-duties-information-officers - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: This section outlines the core duties and responsibilities of the designated Information Officer, including developing a compliance framework, conducting impact assessments, and ensuring the organizat... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-popia-section-57-duties-information-officers.json #### Zimbabwe Cybersecurity and Data Protection Act 2021 (Chapter 12:07) - **ID**: zw-cybersecurity-data-protection-act-2021 - **Category**: Data Protection & Privacy - **Version**: 1.0.0 - **BLUF**: Zimbabwe's Cybersecurity and Data Protection Act 2021 (Chapter 12:07), signed into law in July 2021, establishes a unified framework for both cybersecurity and personal data protection, designates the... - **Discovery URL**: https://bidda.com/api/v1/nodes/zw-cybersecurity-data-protection-act-2021.json ### Education & Research (110 nodes) #### The European Code of Conduct for Research Integrity (2023 Revised Edition) - **ID**: allea-european-code-research-integrity-2023 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This code establishes the foundational principles of research integrity-reliability, honesty, respect, and accountability-for all researchers, institutions, and stakeholders involved in EU-funded rese... - **Discovery URL**: https://bidda.com/api/v1/nodes/allea-european-code-research-integrity-2023.json #### Universitätsgesetz 2002 (UG) § 3 Aufgaben - **ID**: at-university-act-2002-section-3-tasks-universities-austria - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This section outlines the core tasks of Austrian universities, including advancing science and arts, providing education and professional training, fostering young academics, promoting international c... - **Discovery URL**: https://bidda.com/api/v1/nodes/at-university-act-2002-section-3-tasks-universities-austria.json #### Australia AQF and Higher Education Standards Framework - Quality and Compliance Obligations - **ID**: au-aqf-australian-qualifications-framework-higher-education-standards - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Australian Qualifications Framework (AQF, 2013) and the Higher Education Standards Framework (Threshold Standards) 2021 require registered higher education providers (HEPs) to meet mandatory stand... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-aqf-australian-qualifications-framework-higher-education-standards.json #### Australian Education Act 2013: Federal Schools Funding Framework, Grants to States and Territories, Recurrent Funding Loadings, Approving Authorities, and Compliance and Enforcement - **ID**: au-australian-education-act-2013 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Australian Education Act 2013, Act No. 67 of 2013, is the principal Commonwealth statute establishing the federal funding framework for government and non-government schools in Australia and is ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-australian-education-act-2013.json #### Disability Standards for Education 2005 - **ID**: au-disability-standards-education-2005 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Education providers must comply with standards to eliminate discrimination against students with disabilities across enrolment, participation, curriculum development, support services, and the prevent... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-disability-standards-education-2005.json #### Higher Education Support Act 2003 - **ID**: au-higher-education-support-act-2003-hesa - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This Act outlines the framework for Commonwealth funding for higher education providers, establishing quality and accountability requirements, and regulating student fees and support. - **Discovery URL**: https://bidda.com/api/v1/nodes/au-higher-education-support-act-2003-hesa.json #### National Code of Practice for Providers of Education and Training to Overseas Students 2018 - **ID**: au-national-code-overseas-students-2018 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This code establishes national standards for Australian education and training providers to ensure quality outcomes and welfare for overseas students. - **Discovery URL**: https://bidda.com/api/v1/nodes/au-national-code-overseas-students-2018.json #### National Vocational Education and Training Regulator Act 2011 - **ID**: au-nvetr-act-2011-vocational-education-regulator - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This Act establishes the National Vocational Education and Training Regulator and outlines the requirements for registration, compliance, and quality assurance for vocational education and training or... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-nvetr-act-2011-vocational-education-regulator.json #### Tertiary Education Quality and Standards Agency Act 2011 - Higher Education Standards Framework - **ID**: au-teqsa-act-2011-higher-education-standards - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This Act establishes the framework for regulating and assuring the quality of Australia's higher education sector through the Tertiary Education Quality and Standards Agency (TEQSA). - **Discovery URL**: https://bidda.com/api/v1/nodes/au-teqsa-act-2011-higher-education-standards.json #### Australia Education Services for Overseas Students Act 2000 (ESOS Act) - CRICOS Registration - **ID**: australia-education-services-overseas-students-act-2000 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Education Services for Overseas Students Act 2000 (ESOS Act) requires all Australian education providers enrolling students on student visas to be registered on the Commonwealth Register of Instit... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-education-services-overseas-students-act-2000.json #### Higher Education Support Act 2003 - **ID**: australia-higher-education-support-act-2003 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Higher Education Support Act 2003 (HESA) establishes the legal framework for Commonwealth financial support of higher education in Australia, including student assistance through HELP loans, provi... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-higher-education-support-act-2003.json #### Bologna Process - European Higher Education Area (EHEA): Three-Cycle System (Bachelor/Master/Doctoral), ECTS Credits, Diploma Supplement, Recognition of Qualifications and Quality Assurance Standards - **ID**: bologna-process-higher-education-area-2020 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation establishes the framework for the European Higher Education Area (EHEA), requiring member states to implement a three-cycle degree system, use ECTS credits, issue Diploma Supplements, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bologna-process-higher-education-area-2020.json #### DECRETO N� 11.713, DE 26 DE SETEMBRO DE 2023 - Institui a Estrat�gia Nacional de Escolas Conectadas. - **ID**: br-decreto-11713-escola-conectada-connectivity-2023 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This decree establishes the National Strategy for Connected Schools (Enec) and its Executive Committee, which is obligated to define technical parameters, set goals, and monitor the universalization o... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-decreto-11713-escola-conectada-connectivity-2023.json #### Lei N� 9.394, de 20 de Dezembro de 1996: Estabelece as diretrizes e bases da educa��o nacional - **ID**: br-ldb-lei-9394-education-framework-digital-update - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation establishes the State's duty to guarantee public education in Brazil, mandating free basic education from ages 4 to 17, specialized support for students with disabilities, and suppleme... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-ldb-lei-9394-education-framework-digital-update.json #### Lei N� 14.533, de 11 de Janeiro de 2023 - Institui a Pol�tica Nacional de Educa��o Digital (PNED) - **ID**: br-pned-lei-14533-digital-education-policy-2023 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This law establishes the National Digital Education Policy (PNED), requiring relevant entities to implement strategies for digital inclusion and education, including promoting digital skills, providin... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-pned-lei-14533-digital-education-policy-2023.json #### Canada Student Financial Assistance Act, R.S.C. 1994, c. S-22.7 - **ID**: canada-student-financial-assistance-act-1994 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Canada Student Financial Assistance Act establishes the framework for federal student financial aid, including Canada Student Loans and Grants, administered jointly by the Government of Canada and... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-student-financial-assistance-act-1994.json #### Berufsbildungsgesetz (BBiG) - Vocational Training Act - **ID**: de-berufsbildungsgesetz-vocational-training-act - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This act requires organizations to establish, manage, and document all aspects of vocational training relationships, including written contracts, minimum remuneration, trainer suitability, registratio... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-berufsbildungsgesetz-vocational-training-act.json #### Bundesgesetz über individuelle Förderung der Ausbildung (BAföG) - **ID**: de-bundesausbildungsfoerderungsgesetz-student-funding - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation establishes the procedural requirements for educational institutions and funding bodies to administer federal training assistance, including verifying applicant eligibility based on na... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-bundesausbildungsfoerderungsgesetz-student-funding.json #### Hochschulrahmengesetz (HRG) - Higher Education Framework Act - **ID**: de-hochschulrahmengesetz-higher-education-framework - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation establishes the fundamental framework for higher education institutions in Germany, covering their tasks, student admissions, personnel, and legal status, including obligations for gen... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-hochschulrahmengesetz-higher-education-framework.json #### Gesetz über befristete Arbeitsverträge in der Wissenschaft (WissZeitVG) - **ID**: de-wissenschaftszeitvertragsgesetz-academic-fixed-term - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This act establishes the legal framework, duration limits, and specific conditions for fixed-term employment contracts for academic and artistic staff at German universities and research institutions. - **Discovery URL**: https://bidda.com/api/v1/nodes/de-wissenschaftszeitvertragsgesetz-academic-fixed-term.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 March 2024 on Harmonised Rules on Artificial Intelligence (Artificial Intelligence Act) - High-Risk AI Systems in Education: Automated Grading, Access Decisions and Student Assessment Tools - **ID**: eu-ai-act-2024-high-risk-educational-applications - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The EU AI Act 2024 classifies AI systems used for automated grading, determining access to education or training programs, and evaluating students as high-risk under Article 6 and Annex III. Providers... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-2024-high-risk-educational-applications.json #### EU AI Act Article 4 - AI Literacy Obligations for Providers and Deployers - **ID**: eu-ai-act-article-4-ai-literacy-obligations-providers-deployers - **Category**: Education & Research - **Version**: 2.0 - **BLUF**: EU AI Act Article 4 requires providers and deployers of AI systems to ensure their staff and agents have sufficient AI literacy - technical knowledge, contextual understanding, and awareness of risks ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-4-ai-literacy-obligations-providers-deployers.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 March 2024 on Harmonised Rules on Artificial Intelligence (Artificial Intelligence Act) - Annex III: AI Systems Intended to Be Used as Safety Components in Educational Institutions or for Educational Evaluation and Admission - **ID**: eu-ai-act-education-high-risk-systems-annex-3 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The EU AI Act designates certain AI systems used in education - including those for student admission, performance assessment, monitoring, and learning progress prediction - as high-risk under Annex I... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-education-high-risk-systems-annex-3.json #### Regulation (EU) 2021/1060 of the European Parliament and of the Council of 24 June 2021 on the establishment of the Common Provisions Regulation and laying down common rules on the European Regional Development Fund, the European Social Fund Plus, the Cohesion Fund, the Just Transition Fund and the European Maritime, Fisheries and Aquaculture Fund and financial rules for those funds, with specific focus on education infrastructure investments under shared management 2021-2027 - **ID**: eu-cohesion-fund-education-infrastructure-2021-2027 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation establishes the legal framework for EU Cohesion Policy funding through the European Regional Development Fund (ERDF) and European Social Fund Plus (ESF+) to modernize education infrast... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cohesion-fund-education-infrastructure-2021-2027.json #### Directive (EU) 2019/790 of the European Parliament and of the Council of 17 April 2019 on copyright and related rights in the Digital Single Market and amending Directives 96/9/EC and 2001/29/EC - Articles 3 and 4: Text and Data Mining Exceptions - **ID**: eu-copyright-directive-2019-790-text-data-mining - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Articles 3 and 4 of Directive (EU) 2019/790 establish a mandatory exception to copyright for text and data mining (TDM) by research organisations and cultural heritage institutions for scientific rese... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-copyright-directive-2019-790-text-data-mining.json #### EU DigComp 2.2: A Digital Competence Framework for Citizens 2022 - **ID**: eu-digcomp-digital-competence-framework-2022 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The EU DigComp 2.2 framework defines 21 competences across 5 areas of digital literacy for citizens, establishing 8 proficiency levels and integrating AI-specific examples to guide education, training... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digcomp-digital-competence-framework-2022.json #### EU Digital Education Action Plan 2021-2027 (DEAP) - Priority Actions: High-Performance Digital Connectivity, AI Literacy and Digital Competence Frameworks - **ID**: eu-digital-education-action-plan-2021-2027-deap - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: The EU Digital Education Action Plan 2021-2027 (DEAP) establishes binding commitments for EU Member States to ensure high-performance digital connectivity in all educational institutions by 2025 and t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-education-action-plan-2021-2027-deap.json #### Directive 2005/36/EC of the European Parliament and of the Council on the recognition of professional qualifications, as amended by Directive 2013/55/EU - **ID**: eu-directive-2011-95-recognition-professional-qualifications - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: This directive establishes the legal framework for the automatic recognition of certain regulated professional qualifications (e.g., doctors, nurses, architects) across EU Member States, and sets out ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2011-95-recognition-professional-qualifications.json #### Directive (EU) 2019/790 of the European Parliament and of the Council of 17 April 2019 on copyright and related rights in the Digital Single Market and amending Directives 96/9/EC and 2001/29/EC (Text with EEA relevance) - **ID**: eu-dsm-directive-text-data-mining-education - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This Directive establishes mandatory exceptions to copyright for text and data mining (TDM) in research and educational contexts. Article 3 permits TDM by research organisations and cultural heritage ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dsm-directive-text-data-mining-education.json #### Council recommendation of 22 May 2017 on the European Qualifications Framework for lifelong learning and repealing the recommendation of the European Parliament and of the Council of 23 April 2008 on the establishment of the European Qualifications Framework for lifelong learning (2017/C 189/03) - **ID**: eu-eqf-council-recommendation-2017-nqf-referencing - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This recommendation requires EU Member States to reference their national qualifications frameworks to the European Qualifications Framework (EQF) to improve the transparency, comparability, and porta... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eqf-council-recommendation-2017-nqf-referencing.json #### Erasmus Charter for Higher Education (ECHE) 2021-2027 - **ID**: eu-erasmus-charter-higher-education-2021 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The ECHE 2021-2027 sets mandatory conditions for higher education institutions (HEIs) in Erasmus+ participating countries to engage in mobility and cooperation activities, requiring formal commitment ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-erasmus-charter-higher-education-2021.json #### Regulation (EU) 2021/817 of the European Parliament and of the Council of 20 May 2021 establishing the Erasmus+ Programme and repealing Regulations (EU) No 1288/2013 and (EU) No 1293/2013 - **ID**: eu-erasmus-programme-regulation-2021-817 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Establishes the Erasmus+ Programme for 2021-2027, governing mobility and cooperation in higher education, vocational training, school education, and adult learning. Requires participating organisation... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-erasmus-programme-regulation-2021-817.json #### EU Erasmus Regulation 2021/817 - Erasmus Plus Programme 2021-2027, Key Actions, and National Agency Implementation - **ID**: eu-erasmus-regulation-2021-817 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2021/817 of the European Parliament and of the Council establishing the Erasmus+ programme for education, training, youth and sport for 2021-2027 was published on 20 May 2021 and appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-erasmus-regulation-2021-817.json #### Regulation (EU) 2021/817 of the European Parliament and of the Council of 20 May 2021 establishing Erasmus+: the Union Programme for education and training, youth and sport and repealing Regulation (EU) No 1288/2013 - **ID**: eu-erasmus-regulation-2021-817-mobility-obligations - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation establishes the Erasmus+ Programme to promote learning mobility, cooperation, and innovative policy development in education, training, youth, and sport to strengthen European identity... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-erasmus-regulation-2021-817-mobility-obligations.json #### EU ESFRI Roadmap 2021 - European Research Infrastructures: Landmark and Project Status, Implementation Stages, Governance, Access Policy and Financial Sustainability Requirements - **ID**: eu-esfri-research-infrastructure-roadmap-2021 - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: The ESFRI Roadmap 2021 identifies research infrastructures of pan-European relevance and outlines their implementation stages, governance models, access policies, and financial sustainability requirem... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esfri-research-infrastructure-roadmap-2021.json #### Council Recommendation of 22 May 2017 on the European Qualifications Framework for lifelong learning and repealing the recommendation of the European Parliament and of the Council of 23 April 2008 on the establishment of the European Qualifications Framework for lifelong learning - **ID**: eu-european-qualifications-framework-eqf - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This recommendation establishes the European Qualifications Framework (EQF) as an eight-level reference framework based on learning outcomes to improve transparency, comparability, and portability of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-european-qualifications-framework-eqf.json #### EU European Research Area (ERA) Policy Agenda 2022-2024 - Priorities: Researcher Mobility, Knowledge Transfer, Research Assessment Reform and Open Science - **ID**: eu-european-research-area-policy-agenda-2022 - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: The ERA Policy Agenda 2022-2024 establishes binding priorities for EU Member States and associated countries to strengthen the European Research Area by enhancing researcher mobility, enabling seamles... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-european-research-area-policy-agenda-2022.json #### Regulation (EU) 2021/695 of the European Parliament and of the Council of 28 April 2021 establishing the framework programme for research and innovation, Horizon Europe, and repealing Regulations (EU) No 1290/2013 and (EU) No 1291/2013 - **ID**: eu-horizon-europe-regulation-2021-695-research - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Horizon Europe Regulation 2021/695 establishes the EU’s multiannual funding framework for research and innovation (2021-2027), mandating open science practices, ethical standards, and mission-oriented... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-horizon-europe-regulation-2021-695-research.json #### EU Horizon Europe Regulation 2021/695 - Research Ethics and Open Science - **ID**: eu-horizon-europe-regulation-2021-695-research-ethics - **Category**: Education & Research - **Version**: 2.0.0 - **BLUF**: Regulation (EU) 2021/695 establishing Horizon Europe (2021-2027) mandates ethics review for all funded research projects, requires Open Access to peer-reviewed publications and research data (FAIR pri... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-horizon-europe-regulation-2021-695-research-ethics.json #### EU Horizon Europe Open Access Mandate - Immediate Open Access for Publications (CC BY), Data Management Plans, FAIR Data Principles, Open Research Data Pilot and Beneficiary Obligations - **ID**: eu-open-access-mandate-horizon-europe - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: Horizon 2020 beneficiaries must ensure open access to all peer-reviewed scientific publications relating to their results under Article 29.2 of the Model Grant Agreement. This includes depositing the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-open-access-mandate-horizon-europe.json #### EU Open Science Policy 2021 - FAIR Data Principles, Open Access Mandates, Open Peer Review and Research Data Management Plans for Horizon Europe - **ID**: eu-open-science-policy-fair-data-principles-2021 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This policy mandates that all research data generated under Horizon Europe must be Findable, Accessible, Interoperable, and Reusable (FAIR), deposited in trusted repositories, and accompanied by a Dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-open-science-policy-fair-data-principles-2021.json #### Directive 2005/36/EC of the European Parliament and of the Council of 7 September 2005 on the recognition of professional qualifications - **ID**: eu-recognition-professional-qualifications-2005-36 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This Directive establishes automatic recognition of professional qualifications for regulated professions in seven sectors (e.g. nursing, midwifery, medicine, dentistry, veterinary medicine, architect... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-recognition-professional-qualifications-2005-36.json #### European Charter for Researchers and Code of Conduct for the Recruitment of Researchers (2005) - **ID**: eu-researcher-charter-code-of-conduct-2005 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation establishes the rights and responsibilities of researchers and research employers in the European Union, mandating transparent, merit-based recruitment and career development under Art... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-researcher-charter-code-of-conduct-2005.json #### Council Recommendation of 20 December 2012 on the validation of non-formal and informal learning - **ID**: eu-validation-non-formal-informal-learning - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This EU Recommendation requires Member States to establish national validation systems for non-formal and informal learning by aligning them with national qualifications frameworks (NQFs) and the Euro... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-validation-non-formal-informal-learning.json #### Law on Higher Education of Georgia: Article 5 - Analogy of law and justice - **ID**: ge-law-on-higher-education-2004-article-5-state-accreditation-higher-education - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Organizations must apply the legal norm governing the most similar circumstance to regulate any relationship not expressly provided for by law. - **Discovery URL**: https://bidda.com/api/v1/nodes/ge-law-on-higher-education-2004-article-5-state-accreditation-higher-education.json #### Secretaría de Educación - Contact and Departmental Information - **ID**: hn-ley-fundamental-educacion-2011-article-3-principles-education-honduras - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This node outlines the implicit obligations for maintaining accurate and publicly available contact information for various departments within the Secretaría de Educación, as detailed on its instituti... - **Discovery URL**: https://bidda.com/api/v1/nodes/hn-ley-fundamental-educacion-2011-article-3-principles-education-honduras.json #### Opći uvjeti korištenja i Zaštita privatnosti (General Terms of Use and Privacy Protection) - **ID**: hr-act-on-education-in-primary-secondary-schools-2019-article-4-education-principles - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation outlines the terms of use and privacy protection obligations for the Narodne novine d.d. website, including commitments to respect user anonymity, use voluntarily provided personal dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/hr-act-on-education-in-primary-secondary-schools-2019-article-4-education-principles.json #### Discrimination (Employment and Occupation) Convention, 1958 (No. 111) - **ID**: ilo-convention-111-discrimination-employment-education - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Requires ratifying member states to eliminate discrimination in access to education, vocational guidance, and training based on race, colour, sex, religion, political opinion, national extraction, or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-convention-111-discrimination-employment-education.json #### National Education Policy 2020 - **ID**: india-national-education-policy-nep-2020 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The National Education Policy 2020 mandates a comprehensive transformation of India's education system, including restructuring school education into a 5+3+3+4 curricular framework, establishing multi... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-national-education-policy-nep-2020.json #### The University Grants Commission Act, 1956 - **ID**: india-university-grants-commission-act-1956 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The University Grants Commission (UGC) Act, 1956 empowers the UGC to maintain standards of higher education in India, approve universities entitled to receive central funds, and regulate degree-awardi... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-university-grants-commission-act-1956.json #### ISO 21001:2018 - Educational Organizations Management Systems: Requirements and Guidance for Using EOMS to Enhance Learner Experience - **ID**: iso-21001-2018-educational-organizations-management - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: ISO 21001:2018 specifies requirements for an Educational Organization Management System (EOMS) to support competence development and enhance learner satisfaction through effective processes and stakeh... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-21001-2018-educational-organizations-management.json #### ISO/IEC 40500:2012 (WCAG 2.1) - Web Content Accessibility Guidelines for Educational Platforms: Perceivable, Operable, Understandable, Robust Criteria, Success Criteria and Conformance Levels - **ID**: iso-40500-wcag-2-1-web-accessibility-education - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: This standard requires educational platforms to conform to Web Content Accessibility Guidelines (WCAG) 2.0 to ensure web content is accessible to people with disabilities, including those with visual,... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-40500-wcag-2-1-web-accessibility-education.json #### Lov om universiteter og høyskoler (universitets- og høyskoleloven) § 4-1 Styret - **ID**: no-universities-colleges-act-2024-section-4-1-admission-requirements - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: State universities and colleges must establish a board and define its composition, election process, leadership structure, and operating procedures as outlined in Chapter 4. - **Discovery URL**: https://bidda.com/api/v1/nodes/no-universities-colleges-act-2024-section-4-1-admission-requirements.json #### OECD Frascati Manual 2015 - Measurement of Scientific, Technological and Innovation Activities: R&D Definition, Basic/Applied/Experimental Research Classification, Personnel and Expenditure Surveys - **ID**: oecd-frascati-manual-2015-rd-statistics - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The OECD Frascati Manual 2015 establishes internationally agreed definitions and measurement standards for research and development (R&D) activities, including classification into basic research, appl... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-frascati-manual-2015-rd-statistics.json #### OECD PISA 2022 Assessment Framework - Reading, Mathematics, Science, Financial Literacy, Global Competence: Construct Definition, Item Development, Sampling, Scaling and Country Reporting Methodology - **ID**: oecd-pisa-assessment-framework-education - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This framework defines the cognitive constructs, item development protocols, national sampling requirements, psychometric scaling methods, and country-level reporting standards for the Programme for I... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pisa-assessment-framework-education.json #### OECD PISA 2022 Assessment Framework - Reading, Mathematics and Science Literacy: Creative Thinking Domain, Digital Competence and Global Competence - **ID**: oecd-pisa-education-assessment-framework-2022 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The OECD PISA 2022 Assessment Framework establishes the methodological and cognitive foundations for evaluating 15-year-old students’ literacy in reading, mathematics, science, creative thinking, digi... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pisa-education-assessment-framework-2022.json #### OECD Recommendation on Artificial Intelligence in Education, Knowledge and Research 2023 - Ethical Principles, Capacity Building, Quality Assurance and Governance Frameworks - **ID**: oecd-principles-ai-in-education-recommendation-2023 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This Recommendation requires member and non-member countries to implement AI in education, knowledge and research in alignment with the OECD AI Principles, ensuring transparency, fairness, and human o... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-principles-ai-in-education-recommendation-2023.json #### OECD Recommendation on Responsible Innovation in Neurotechnology 2021 - Privacy, Cognitive Liberty, Data Governance and Ethics in Neuroscience Research - **ID**: oecd-recommendation-responsible-research-innovation-2021 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This Recommendation requires research institutions, neurotechnology developers, and public funding bodies to implement ethical safeguards for cognitive liberty, informed consent, and neurodata governa... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-recommendation-responsible-research-innovation-2021.json #### Singapore Private Education Act 2009 - CPE Registration and Quality Standards for Private Education Institutions - **ID**: sg-education-act-2022-schools-moe-framework-private-education - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Private Education Act 2009 (Cap. 247A) establishes the Council for Private Education (CPE) as the statutory body regulating private education institutions (PEIs) in Singapore. PEIs must be CPE-reg... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-education-act-2022-schools-moe-framework-private-education.json #### United Kingdom Apprenticeships, Skills, Children and Learning Act 2009: Apprenticeships and Technical Education for England, Apprenticeships (Wales), Local Authority Functions, Young People's Learning Agency, Ofqual, and Ofsted - **ID**: uk-apprenticeships-skills-children-learning-act-2009 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The United Kingdom Apprenticeships, Skills, Children and Learning Act 2009, chapter 22 of 2009, is a principal United Kingdom statute on apprenticeships, post-16 education and training, qualifications... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-apprenticeships-skills-children-learning-act-2009.json #### Children and Families Act 2014, Part 3: Children and young people with special educational needs or disabilities - **ID**: uk-children-families-act-2014-send-ehc-plans - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation requires local authorities to conduct assessments for children and young people with special educational needs and disabilities (SEND), and to prepare, maintain, and review Education, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-children-families-act-2014-send-ehc-plans.json #### United Kingdom Education Act 1996: Parental Duty to Secure Education, Pupils Educated in Accordance with Parents' Wishes, Local Authority Functions, Pupil Referral Units, Special Educational Needs, and School Attendance Offences - **ID**: uk-education-act-1996 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The United Kingdom Education Act 1996, chapter 56 of 1996, is the principal consolidating United Kingdom statute governing the school system in England and Wales and is administered by the Secretary o... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-education-act-1996.json #### United Kingdom Education Act 2002: Power to Suspend Statutory Requirements, Schools' Workforce, School Inspections, Governance, National Curriculum in England (Balanced Curriculum), and Safeguarding Duties - **ID**: uk-education-act-2002 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The United Kingdom Education Act 2002, chapter 32 of 2002, is a principal United Kingdom statute reforming and supplementing the school system in England and Wales and operates alongside the Education... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-education-act-2002.json #### Education Act 2011 - No Substantive Provisions Provided - **ID**: uk-education-act-2011-academies-governance - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The provided text is a title page for the Education Act 2011 and does not contain any specific, actionable compliance obligations regarding academy governance. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-education-act-2011-academies-governance.json #### Equality Act 2010 - Education Providers: Duty Not to Discriminate, Reasonable Adjustments for Disabled Students, Harassment, Victimisation, Single-Sex Schools Exceptions and Public Sector Equality Duty - **ID**: uk-equality-act-2010-education-providers - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Education providers in England, Wales, and Scotland must not discriminate, harass, or victimise pupils or applicants on grounds of protected characteristics (excluding age and marriage/civil partnersh... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-education-providers.json #### UK Higher Education (Freedom of Speech) Act 2023 - Duties of Registered Higher Education Providers and Students Unions - **ID**: uk-higher-education-freedom-of-speech-act-2023 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Higher Education (Freedom of Speech) Act 2023 (UK) places statutory duties on registered English higher education providers, their constituent colleges, and students unions to take reasonably prac... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-higher-education-freedom-of-speech-act-2023.json #### Higher Education (Freedom of Speech) Act 2023 - **ID**: uk-higher-education-freedom-speech-act-2023 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Act imposes statutory duties on higher education providers, student unions, and registered providers in England and Wales to secure freedom of speech and academic freedom for students, staff, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-higher-education-freedom-speech-act-2023.json #### Higher Education and Research Act 2017 - **ID**: uk-higher-education-research-act-2017-ofs - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This Act establishes the Office for Students (OfS) as the primary regulator for higher education in England, mandating registration, monitoring of conditions, and enforcement actions to protect studen... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-higher-education-research-act-2017-ofs.json #### UK Higher Education and Research Act 2017 - OfS Conditions of Registration for English Providers - **ID**: uk-higher-education-research-act-2017-ofs-conditions-registration - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Higher Education and Research Act 2017 (HERA) established the Office for Students (OfS) as the regulator for higher education in England. Registered providers must meet Conditions of Registration ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-higher-education-research-act-2017-ofs-conditions-registration.json #### Keeping children safe in education: Statutory guidance for schools and colleges - **ID**: uk-keeping-children-safe-education-2024 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This statutory guidance outlines the legal duties for schools and colleges in England to safeguard and promote the welfare of children and young people under 18. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-keeping-children-safe-education-2024.json #### Research Excellence Framework 2021: Guidance on Submissions - **ID**: uk-research-excellence-framework-ref-2021 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The UK Research Excellence Framework (REF) 2021 requires higher education institutions to submit assessments of research outputs, impact case studies, and research environment quality for national eva... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-research-excellence-framework-ref-2021.json #### Convention on the Rights of the Child - Article 28: Right to Education - **ID**: un-convention-rights-child-education-article-28 - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: States Parties must ensure the right of the child to education by making primary education compulsory and available free to all, encouraging the development of different forms of secondary education a... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-convention-rights-child-education-article-28.json #### UN SDG 4 Education 2030 Framework for Action - Inclusive Quality Education Targets: Early Childhood, Secondary, TVET, Higher Education and Adult Literacy - **ID**: un-sdg-4-education-2030-framework-action - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The UN SDG 4 Education 2030 Framework for Action establishes global targets and policy actions to ensure inclusive and equitable quality education and promote lifelong learning opportunities for all b... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-sdg-4-education-2030-framework-action.json #### Convention against Discrimination in Education - Article 1 and 2 - **ID**: unesco-convention-discrimination-education-1960 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This convention requires States Parties to proscribe and eliminate discrimination in education, defined as any distinction, exclusion, limitation, or preference based on specified grounds that impairs... - **Discovery URL**: https://bidda.com/api/v1/nodes/unesco-convention-discrimination-education-1960.json #### Convention on the Recognition of Qualifications concerning Higher Education in the European Region (Lisbon Recognition Convention) - **ID**: unesco-convention-higher-education-qualifications-1997 - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: The Lisbon Recognition Convention requires signatory states to recognize higher education qualifications obtained in other member states unless substantial differences are demonstrated, based on fair ... - **Discovery URL**: https://bidda.com/api/v1/nodes/unesco-convention-higher-education-qualifications-1997.json #### UNESCO Recommendation on Open Educational Resources (OER) 2019 - OER Definition, Policy Framework, Capacity Building, Effective Inclusive Access, Sustainability Models and International Cooperation - **ID**: unisco-recommendation-teachers-learning-2019 - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: The 2019 UNESCO Recommendation on OER requires Member States to develop supportive policies and build stakeholder capacity to create, access, re-use, adapt and redistribute Open Educational Resources ... - **Discovery URL**: https://bidda.com/api/v1/nodes/unisco-recommendation-teachers-learning-2019.json #### US 34 CFR Part 106: Nondiscrimination on the Basis of Sex in Education Programs or Activities Receiving Federal Financial Assistance (Title IX) - **ID**: us-34-cfr-part-106-title-ix-sex-discrimination-education - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: US 34 CFR Part 106 implements Title IX of the Education Amendments of 1972 prohibiting sex discrimination in education programs or activities receiving federal financial assistance. Covered entities m... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-34-cfr-part-106-title-ix-sex-discrimination-education.json #### US 34 CFR Part 99: Family Educational Rights and Privacy (FERPA) - **ID**: us-34-cfr-part-99-ferpa-student-records - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: US 34 CFR Part 99 implements the Family Educational Rights and Privacy Act (FERPA) of 1974 protecting the privacy of student education records. FERPA applies to educational agencies and institutions r... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-34-cfr-part-99-ferpa-student-records.json #### US 45 CFR Part 46: Protection of Human Subjects (Common Rule) - **ID**: us-45-cfr-part-46-common-rule-human-subjects-research - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: US 45 CFR Part 46 (the Common Rule) establishes the principal federal regulation for the protection of human subjects in research conducted or supported by 15+ federal departments and agencies. Subpar... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-45-cfr-part-46-common-rule-human-subjects-research.json #### US America COMPETES Act of 2007 (Public Law 110-69) - Federal Investment in Science Technology Engineering and Mathematics - **ID**: us-america-competes-act-2007-pl-110-69 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The America COMPETES Act of 2007 authorised sustained federal investment in basic research, science and engineering education, and innovation capacity by doubling the budgets of the National Science F... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-america-competes-act-2007-pl-110-69.json #### Patents and Inventions - Bayh-Dole Act of 1980 (35 U.S.C. §§200-212) - **ID**: us-bayh-dole-act-1980-technology-transfer - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Bayh-Dole Act allows universities, nonprofits, and small businesses to retain title to inventions made with federal research funding, provided they disclose inventions, elect to retain title, file... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bayh-dole-act-1980-technology-transfer.json #### US Carl D. Perkins Career and Technical Education Act (20 U.S.C. Chapter 44): Federal Support for Career and Technical Education - **ID**: us-carl-perkins-cte-act - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Carl D. Perkins Career and Technical Education Act, codified at 20 U.S.C. Chapter 44, is the principal federal statute providing financial support to develop the academic and technical skills of s... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-carl-perkins-cte-act.json #### 34 CFR Part 668 Subpart D - Institutional and Financial Assistance Information for Students - **ID**: us-clery-act-34-cfr-668-campus-security-reporting - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Institutions must collect, maintain, and disclose specific information regarding institutional policies, financial assistance, completion rates, campus security, crime statistics, and fire safety to s... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clery-act-34-cfr-668-campus-security-reporting.json #### 16 CFR Part 312 - Children's Online Privacy Protection Rule (Coppa Rule) - **ID**: us-coppa-16-cfr-part-312-edtech-school-operators - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Operators of online services directed to children under 13 must provide notice, obtain verifiable parental consent before collecting personal information, and uphold parental rights regarding their ch... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-coppa-16-cfr-part-312-edtech-school-operators.json #### Children's Online Privacy Protection Act - **ID**: us-coppa-childrens-online-privacy-education - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: The Children's Online Privacy Protection Act (COPPA) requires operators of commercial websites and online services directed to children under 13, or those knowingly collecting personal information fro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-coppa-childrens-online-privacy-education.json #### Children's Online Privacy Protection Act of 1998 (COPPA): Application to Operators of Online Services Used in Schools and Educational Contexts - **ID**: us-coppa-childrens-privacy-education-applications - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: Operators of online services used in K-12 education must comply with COPPA by obtaining verifiable parental consent before collecting personal information from children under 13, unless the school pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-coppa-childrens-privacy-education-applications.json #### US COPPA Children's Online Privacy Protection Act - Operator Obligations for Educational Platforms Serving Children Under 13 - **ID**: us-coppa-education-platforms-compliance - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Under the Children's Online Privacy Protection Act (COPPA), operators of online services may rely on a school to provide consent for the collection of personal information from students under 13, prov... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-coppa-education-platforms-compliance.json #### United States Department of Education Organization Act (Title 20 USC Chapter 48): Congressional Findings, Establishment of the Department, Principal Officers, Office for Civil Rights, and Transfer of Functions - **ID**: us-department-of-education-organization-act-20-usc-ch48 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Department of Education Organization Act, codified at Title 20 of the United States Code, Chapter 48 and enacted as Public Law 96-88 on October 17, 1979, is the principal federal statute establish... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-department-of-education-organization-act-20-usc-ch48.json #### US DOL Registered Apprenticeship Programme Standards - On-the-Job Learning, Related Technical Instruction, Progressively Increasing Wage Schedule, Apprentice-to-Journeyworker Ratio and EEO Requirements - **ID**: us-dol-registered-apprenticeship-education - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation establishes the core requirements for Registered Apprenticeship Programs in the United States, including paid work experience, structured on-the-job learning with mentorship, supplemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dol-registered-apprenticeship-education.json #### Universal Service Program for Schools and Libraries (E-Rate): Category 1 and Category 2 Funding, Priority System, CIPA Compliance, and Annual Discount Rates - **ID**: us-e-rate-schools-libraries-connectivity - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The E-Rate program provides discounted telecommunications, internet access, and internal connections to eligible schools and libraries in the United States, subject to annual funding caps, a two-tier ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-e-rate-schools-libraries-connectivity.json #### United States Elementary and Secondary Education Act of 1965 (Title 20 USC Chapter 70): Title I Disadvantaged Programs, State and Local Plans, Schoolwide and Targeted Assistance, Accountability, and Federal Compliance - **ID**: us-elementary-secondary-education-act-1965-title-20-ch70 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Elementary and Secondary Education Act of 1965, codified at Title 20 of the United States Code, Chapter 70, is the foundational federal statute governing federal financial assistance to elementary... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-elementary-secondary-education-act-1965-title-20-ch70.json #### Every Student Succeeds Act of 2015 - **ID**: us-essa-every-student-succeeds-act-2015 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Every Student Succeeds Act (ESSA) of 2015 requires each state educational agency to develop and implement a comprehensive accountability system for public elementary and secondary schools, includi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-essa-every-student-succeeds-act-2015.json #### US Fair Use Doctrine 17 USC 107 - Educational Copying: Four-Factor Test, Classroom Guidelines, TEACH Act Digital Distance Education, Course Packs and Library Reserves for Educational Institutions - **ID**: us-fair-use-17-usc-107-education - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation outlines the statutory framework for fair use under U.S. copyright law, specifically as it applies to educational institutions, allowing unlicensed use of copyrighted works under certa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fair-use-17-usc-107-education.json #### US FERPA (Family Educational Rights and Privacy Act) - 34 CFR Part 99 Student Education Records Privacy - **ID**: us-ferpa-34-cfr-99-student-records-privacy-rights - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: FERPA (20 USC 1232g; 34 CFR Part 99) grants parents rights over their minor children's education records at federally-funded educational agencies and institutions; rights transfer to students at age 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ferpa-34-cfr-99-student-records-privacy-rights.json #### 34 CFR Part 99 - Family Educational Rights and Privacy - **ID**: us-ferpa-34-cfr-part-99-student-privacy - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Educational agencies and institutions must protect the privacy of student education records, providing parents and eligible students with rights to inspect, review, amend records, and consent to discl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ferpa-34-cfr-part-99-student-privacy.json #### Family Educational Rights and Privacy Act of 1974, as amended, enacted as section 444 of the General Education Provisions Act, codified at 34 CFR Part 99 - **ID**: us-ferpa-family-educational-rights-privacy - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: FERPA protects the privacy of student education records by granting parents and eligible students the right to inspect, review, and request amendment of those records, and by restricting the disclosur... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ferpa-family-educational-rights-privacy.json #### Family Educational Rights and Privacy Act of 1974 (FERPA) - **ID**: us-ferpa-family-educational-rights-privacy-1974 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: FERPA protects the privacy of student education records by granting parents and eligible students (age 18 or enrolled in postsecondary education) the right to inspect, amend, and control disclosure of... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ferpa-family-educational-rights-privacy-1974.json #### 34 CFR Part 668 - Student Assistance General Provisions - **ID**: us-hea-34-cfr-668-student-assistance-general-provisions - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This regulation establishes the general provisions, standards for participation, and student eligibility requirements for institutions participating in Title IV, Higher Education Act (HEA) student ass... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hea-34-cfr-668-student-assistance-general-provisions.json #### US Higher Education Act of 1965 (20 U.S.C. Chapter 28): Federal Student Financial Assistance, Institutional Eligibility and Accountability - **ID**: us-higher-education-act-1965 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Higher Education Act of 1965, codified at 20 U.S.C. Chapter 28, is the principal federal statute governing United States postsecondary education policy, federal student financial assistance, and t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-higher-education-act-1965.json #### Individuals with Disabilities Education Act (IDEA) - 34 CFR Part 300 Assistance to States for Children with Disabilities - **ID**: us-idea-34-cfr-part-300-special-education-iep - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This Individuals with Disabilities Education Act (IDEA) implementing regulation requires states, as a condition of receiving federal assistance, to ensure that a free appropriate public education (FAP... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-idea-34-cfr-part-300-special-education-iep.json #### Individuals with Disabilities Education Act of 2004 - **ID**: us-idea-individuals-disabilities-education-act-2004 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Individuals with Disabilities Education Act (IDEA) 2004 mandates that all children with disabilities are entitled to a Free Appropriate Public Education (FAPE) designed to meet their unique needs ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-idea-individuals-disabilities-education-act-2004.json #### US Individuals with Disabilities Education Act (20 USC 1400) - Free Appropriate Public Education and IEP - **ID**: us-idea-individuals-with-disabilities-education-20-usc-1400 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Individuals with Disabilities Education Act requires state and local educational agencies receiving federal IDEA funds to provide a free appropriate public education in the least restrictive envir... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-idea-individuals-with-disabilities-education-20-usc-1400.json #### National Research Act of 1974 and The Belmont Report: Ethical Principles and Guidelines for the Protection of Human Subjects of Research - **ID**: us-national-research-act-1974-irb-belmont - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The National Research Act of 1974 mandates the establishment of Institutional Review Boards (IRBs) to oversee federally funded research involving human subjects. The Belmont Report, issued in 1979 by ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-research-act-1974-irb-belmont.json #### US No Child Left Behind Act of 2001 (Public Law 107-110) - Standards-Based K-12 Education Accountability - **ID**: us-nclb-2001-no-child-left-behind-pl-107-110 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The No Child Left Behind Act of 2001 reauthorised the Elementary and Secondary Education Act of 1965 and imposed federal accountability conditions on states receiving Title I funds including adoption ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nclb-2001-no-child-left-behind-pl-107-110.json #### United States National Science Foundation Act of 1950 (Title 42 USC Chapter 16): Foundation Functions, National Science Board, Director Authority, Grants, and Equal Opportunity Mandate - **ID**: us-nsf-act-title-42-ch16 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The National Science Foundation Act of 1950, codified at Title 42 of the United States Code, Chapter 16, is the foundational federal statute establishing the National Science Foundation and authorisin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nsf-act-title-42-ch16.json #### STEM Education Act of 2015 - National Science Foundation Program Inclusion, Informal STEM Education, Broadening Participation, and Museum/Science Center Expansion - **ID**: us-stem-education-act-2015-nsf - **Category**: Education & Research - **Version**: 1.0.1 - **BLUF**: The Act mandates that the National Science Foundation (NSF) incorporate computer science into its STEM portfolio, allocate funding for informal STEM education, set measurable broadening participation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-stem-education-act-2015-nsf.json #### US Stevenson-Wydler Technology Innovation Act of 1980 (Public Law 96-480) - Federal Laboratory Technology Transfer - **ID**: us-stevenson-wydler-tech-innovation-act-1980-pl-96-480 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The Stevenson-Wydler Technology Innovation Act of 1980 made federal laboratories responsible for transferring federally developed technology to state and local governments and the private sector, esta... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-stevenson-wydler-tech-innovation-act-1980-pl-96-480.json #### 34 CFR Part 106 - Nondiscrimination on the Basis of Sex in Education Programs or Activities Receiving Federal Financial Assistance - **ID**: us-title-ix-34-cfr-part-106-sex-discrimination - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: Recipients of Federal financial assistance must not discriminate on the basis of sex and must implement specific procedural safeguards, including appointing a coordinator, adopting grievance procedure... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-title-ix-34-cfr-part-106-sex-discrimination.json #### Marrakesh Treaty to Facilitate Access to Published Works for Persons Who Are Blind, Visually Impaired, or Otherwise Print Disabled - **ID**: wipo-marrakesh-treaty-visually-impaired-2013 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: The WIPO Marrakesh Treaty requires contracting parties to implement exceptions in copyright law allowing authorized entities to create, distribute, and cross-border exchange accessible format copies o... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-marrakesh-treaty-visually-impaired-2013.json #### Higher Education Act 101 of 1997 - **ID**: za-higher-education-act-101-1997 - **Category**: Education & Research - **Version**: 1.0.0 - **BLUF**: This act establishes a unified and nationally planned system of higher education and provides for the establishment, governance, and quality assurance of public and private higher education institutio... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-higher-education-act-101-1997.json ### Energy & Utilities (126 nodes) #### Australia National Energy Retail Law 2011 - AER Consumer Protections and Retailer Obligations - **ID**: australia-national-energy-retail-law-2011 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The National Energy Retail Law 2011 (NERL), applied in most Australian states and territories, establishes the Australian Energy Regulator (AER) as the national retail energy regulator; mandates retai... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-national-energy-retail-law-2011.json #### National Electricity Law (NEL) as applied in participating jurisdictions of the National Electricity Market (NEM) - **ID**: australia-nem-electricity-national-law-2024 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The National Electricity Law (NEL) establishes the legislative framework for Australia's National Electricity Market (NEM), mandating open access to transmission and distribution networks and setting ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-nem-electricity-national-law-2024.json #### Australia National Greenhouse and Energy Reporting Act 2007 (NGER Act) - **ID**: australia-nger-act-2007-greenhouse-energy-reporting - **Category**: Energy & Utilities - **Version**: 2.0.0 - **BLUF**: Australia's National Greenhouse and Energy Reporting Act 2007 (Cth) requires corporations that meet threshold tests (scope 1+2 emissions ≥25,000 tCO2-e or energy production/consumption ≥100 TJ at corp... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-nger-act-2007-greenhouse-energy-reporting.json #### Australia Renewable Energy (Electricity) Act 2000 - RET Scheme, LGCs, STCs and Clean Energy Regulator - **ID**: australia-renewable-energy-electricity-act-2000-ret - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Australia's Renewable Energy (Electricity) Act 2000 (Cth) (RET Act) established the Renewable Energy Target (RET) scheme to incentivise additional electricity generation from renewable sources; from 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-renewable-energy-electricity-act-2000-ret.json #### Safeguard Mechanism Reform: Declining Baseline Trajectories, Safeguard Mechanism Credits and Trade-Exposed Assistance - **ID**: australia-safeguard-mechanism-reform-act-2023 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation requires Australia's largest industrial facilities (over 100,000 tonnes CO2-e direct emissions annually) to progressively reduce their net emissions by adhering to declining baselines,... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-safeguard-mechanism-reform-act-2023.json #### Brazil ANEEL Electricity Sector Regulation - Concession Contracts, Tariff Revision and Power Quality Standards - **ID**: brazil-aneel-electricity-sector-regulation - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Brazil's National Electric Energy Agency (ANEEL - Agencia Nacional de Energia Eletrica), created by Law 9.427/1996, regulates the generation, transmission, distribution, and commercialisation of elect... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-aneel-electricity-sector-regulation.json #### Clean Electricity Regulations - **ID**: canada-clean-electricity-regulations-2035 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: These regulations require electricity-generating units with a capacity of 25 MW or more to meet a carbon dioxide emissions intensity performance standard of 30 tonnes of CO2 per gigawatt-hour (GWh) st... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-clean-electricity-regulations-2035.json #### Canada National Energy Regulator Act 2019 - Pipeline Certification, Tolls Regulation and Indigenous Consultation - **ID**: canada-national-energy-regulator-cer-act-2019 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Canada's Canadian Energy Regulator Act (S.C. 2019, c. 28, s. 10), which replaced the National Energy Board Act, established the Canadian Energy Regulator (CER) as the federal regulator for interprovin... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-national-energy-regulator-cer-act-2019.json #### Canada Nuclear Safety and Control Act (S.C. 1997, c. 9): CNSC Licensing, Prohibitions and Penalties - **ID**: canada-nuclear-safety-and-control-act - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Nuclear Safety and Control Act (S.C. 1997, c. 9) is the federal statute governing the development, production and use of nuclear energy and the possession and use of nuclear substances in Canada, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-nuclear-safety-and-control-act.json #### Interim Regulations on the Administration of Carbon Emissions Trading (State Council Decree No. 779) - **ID**: china-carbon-ets-administrative-regulations-2024 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: These regulations establish the legal framework for China's national carbon emissions trading scheme (ETS), mandating that key emitting entities annually emitting over 25,000 tonnes of CO2 equivalent ... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-carbon-ets-administrative-regulations-2024.json #### EU Bioeconomy Strategy: 2022 Progress Report on a Sustainable and Circular Bioeconomy for Europe - **ID**: eu-bioeconomy-strategy-renewable-resources-2022 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This EU strategy update requires Member States and relevant industries to prioritize sustainable biomass sourcing and apply the cascading principle for its use, ensuring high-value applications are pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-bioeconomy-strategy-renewable-resources-2022.json #### Regulation (EU) 2023/956 of the European Parliament and of the Council of 10 May 2023 establishing a carbon border adjustment mechanism - **ID**: eu-cbam-2023-956-carbon-border-adjustment - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation requires EU importers of specific carbon-intensive goods (cement, iron, steel, aluminium, fertilisers, electricity, hydrogen) to report the embedded greenhouse gas emissions of their i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cbam-2023-956-carbon-border-adjustment.json #### Regulation (EU) 2024/1252 of the European Parliament and of the Council of 11 April 2024 establishing a framework for ensuring a secure and sustainable supply of critical raw materials and amending Regulations (EU) No 168/2013, (EU) 2018/858, (EU) 2018/1724 and (EU) 2019/1020 - **ID**: eu-critical-raw-materials-act-2024-strategic-minerals - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The EU Critical Raw Materials Act establishes a framework to secure the Union's supply of strategic and critical raw materials by setting clear benchmarks for 2030: at least 10% of annual consumption ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-critical-raw-materials-act-2024-strategic-minerals.json #### EU Deforestation Regulation (EU) 2023/1115 (EUDR) - **ID**: eu-deforestation-regulation-2023-1115 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: EU Regulation 2023/1115 (EUDR) prohibits placing on the EU market or exporting from the EU certain commodities and products associated with deforestation or forest degradation after 31 December 2020. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-deforestation-regulation-2023-1115.json #### EU Drinking Water Directive 2020/2184 - Quality Standards, Risk Assessment, and Access to Water - **ID**: eu-drinking-water-directive-2020-2184-quality-standards - **Category**: Energy & Utilities - **Version**: 2.0.0 - **BLUF**: EU Drinking Water Directive (DWD) 2020/2184 (recast) establishes binding parametric values for 33 microbiological and chemical parameters and 26 indicator parameters for water intended for human consu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-drinking-water-directive-2020-2184-quality-standards.json #### EU Energy Efficiency Directive (EU) 2023/1791 (EED recast) - **ID**: eu-eed-energy-efficiency-2023-1791 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: EU Directive (EU) 2023/1791 (the Energy Efficiency Directive EED recast) is the central piece of EU energy efficiency legislation. It sets a binding EU energy consumption reduction target of 11.7% by ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eed-energy-efficiency-2023-1791.json #### Regulation (EU) 2024/1747 of the European Parliament and of the Council of 13 June 2024 amending Regulations (EU) 2019/943 and (EU) 2019/942 as well as Directives (EU) 2018/2001 and (EU) 2019/944 to improve the Union’s electricity market design - **ID**: eu-electricity-market-reform-regulation-2024-1747 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation reforms the EU's electricity market to protect consumers from price volatility and accelerate the transition to renewable energy by promoting long-term contracts, such as Power Purchas... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-market-reform-regulation-2024-1747.json #### Directive (EU) 2023/959 amending Directive 2003/87/EC to include maritime transport activities in the EU Emissions Trading System (ETS) - **ID**: eu-emissions-trading-shipping-extension-2023 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation extends the EU Emissions Trading System (ETS) to maritime transport, requiring shipping companies with ships over 5000 gross tonnage calling at EU/EEA ports to monitor, report, and sur... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-emissions-trading-shipping-extension-2023.json #### EU Energy Efficiency Directive 2023/1791 - Article 4: Binding Energy Efficiency Target and Member State Contributions - **ID**: eu-energy-efficiency-directive-2023-1791-article-4-target - **Category**: Energy & Utilities - **Version**: 2.0.0 - **BLUF**: EU Energy Efficiency Directive (EED) 2023/1791 (recast) establishes a binding EU-level energy efficiency target of at least 11.7% reduction in energy consumption by 2030 compared to 2020 reference pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-2023-1791-article-4-target.json #### EU Energy Efficiency Directive 2023/1791/EU - Recast EED - **ID**: eu-energy-efficiency-directive-2023-1791-recast - **Category**: Energy & Utilities - **Version**: 2.0.0 - **BLUF**: Directive (EU) 2023/1791 (recast EED) sets a binding EU-level energy efficiency target of at least 11.7% reduction in final energy consumption by 2030 compared to 2020 projections; requires public sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-2023-1791-recast.json #### Directive (EU) 2023/1791 Article 11: Mandatory Energy Audits for Large Enterprises - **ID**: eu-energy-efficiency-directive-2023-article-11-audits - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Under Article 11 of the EU Energy Efficiency Directive (2023/1791), large enterprises must undergo a high-quality, cost-effective energy audit at least every four years, covering a minimum of 80% of t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-2023-article-11-audits.json #### Directive (EU) 2019/944 on common rules for the internal market for electricity: Articles 28 (Vulnerable Customers) and 29 (Energy Poverty) - **ID**: eu-energy-poverty-vulnerable-consumers-directive-2023 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This directive requires EU Member States to define the concepts of 'vulnerable customers' and 'energy poverty' and to implement appropriate, targeted measures to protect these groups. Key obligations ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-poverty-vulnerable-consumers-directive-2023.json #### Regulation (EU) 2018/1999 of the European Parliament and of the Council of 11 December 2018 on the Governance of the Energy Union and Climate Action - **ID**: eu-energy-union-governance-regulation-2018-1999 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation establishes a governance mechanism for the EU's Energy Union and Climate Action goals, requiring each Member State to develop, submit, and regularly update an integrated National Energ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-union-governance-regulation-2018-1999.json #### EU Emissions Trading System Directive 2003/87/EC - Cap-and-Trade Carbon Market Compliance - **ID**: eu-ets-directive-2003-87-emissions-trading-scheme - **Category**: Energy & Utilities - **Version**: 1.0.1 - **BLUF**: Directive 2003/87/EC establishes the EU Emissions Trading System (EU ETS), the world's first major cap-and-trade scheme for greenhouse gas emissions and the world's largest carbon market by volume. Co... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ets-directive-2003-87-emissions-trading-scheme.json #### Directive (EU) 2023/959 of the European Parliament and of the Council of 10 May 2023 amending Directive 2003/87/EC establishing a system for greenhouse gas emission allowance trading within the Union and Decision (EU) 2015/1814 concerning the establishment and operation of a market stability reserve for the Union greenhouse gas emission trading scheme - **ID**: eu-ets-reform-2023-phase-iv-market-stability - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This directive mandates a steeper reduction in the EU-wide emissions cap, strengthens the Market Stability Reserve (MSR) by increasing the intake rate and invalidating allowances, and phases out free ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ets-reform-2023-phase-iv-market-stability.json #### Regulation (EU) 2024/1469 and Directive (EU) 2024/1474 on common rules for the internal markets in renewable and natural gases and in hydrogen - **ID**: eu-gas-decarbonisation-package-2024 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This package establishes a comprehensive regulatory framework for the EU's gas and hydrogen markets, creating rules for a dedicated hydrogen infrastructure, phasing out long-term contracts for unabate... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gas-decarbonisation-package-2024.json #### EU Gas Directive 2009/73/EC - Common Rules for the Internal Market in Natural Gas - **ID**: eu-gas-directive-2009-73 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: EU member states must ensure non-discriminatory third-party access to gas transmission and distribution networks, unbundle gas transmission system operators from supply and production activities, desi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gas-directive-2009-73.json #### EU Gas and Hydrogen Market Regulation 2024/1789 - Internal Market Rules for Renewable and Natural Gas - **ID**: eu-gas-hydrogen-market-regulation-2024-1789 - **Category**: Energy & Utilities - **Version**: 2.0.0 - **BLUF**: EU Gas and Hydrogen Market Regulation 2024/1789 (recast of Regulation 715/2009) establishes rules for access to natural gas and hydrogen transmission networks, LNG facilities, and storage facilities; ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gas-hydrogen-market-regulation-2024-1789.json #### EU Gas Storage Regulation 2022/1032 - 90% Underground Gas Storage Fill Target - **ID**: eu-gas-storage-regulation-2022-1032 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: EU member states with underground gas storage facilities must achieve at least 90% fill levels by November 1 each year under Regulation 2022/1032. Member states must implement certification schemes fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gas-storage-regulation-2022-1032.json #### Terms & Conditions for the Innovation Fund Pilot Auction for Renewable Hydrogen Production (H2-Auction-1-2023) - **ID**: eu-hydrogen-bank-auction-rules-2023 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation establishes the rules for the first EU Hydrogen Bank pilot auction, requiring project developers to bid for a fixed premium per kilogram of certified renewable hydrogen produced over a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-hydrogen-bank-auction-rules-2023.json #### A hydrogen strategy for a climate-neutral Europe (COM/2020/301 final) - **ID**: eu-hydrogen-strategy-2020-investment-framework - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This strategy establishes a phased investment framework for the EU to scale up renewable hydrogen, targeting the installation of at least 6 GW of renewable hydrogen electrolysers by 2024 and 40 GW by ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-hydrogen-strategy-2020-investment-framework.json #### EU Integrated National Energy and Climate Plans (NECPs) 2030 - Sector Coverage, Governance Obligations and EC Assessment Methodology - **ID**: eu-integrated-national-energy-climate-plans-2030 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: EU Member States are required to establish, submit, and regularly update integrated national energy and climate plans (NECPs) to the European Commission, detailing policies and measures across five di... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-integrated-national-energy-climate-plans-2030.json #### EU Methane Regulation 2024/1787 - Fossil Fuel Methane Emission Monitoring and Reduction - **ID**: eu-methane-regulation-2024-1787 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1787 on the reduction of methane emissions in the energy sector requires operators of oil, gas, and coal facilities in the EU to conduct mandatory leak detection and repair (LDAR)... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-methane-regulation-2024-1787.json #### EU Methane Regulation 2024/1787 - Energy Sector Methane Emissions Reduction, LDAR Surveys and Import Standards - **ID**: eu-methane-regulation-2024-1787-energy-sector - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1787 of the European Parliament and of the Council of 13 June 2024 on the reduction of methane emissions in the energy sector and amending Regulation (EU) 2019/942 (Methane Regula... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-methane-regulation-2024-1787-energy-sector.json #### Regulation (EU) 2024/1735: Establishing a framework of measures for strengthening Europe’s net-zero technology products manufacturing ecosystem (Net-Zero Industry Act) - **ID**: eu-net-zero-industry-act-2024-manufacturing-capacity - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The EU Net-Zero Industry Act establishes a benchmark for the Union's manufacturing capacity of strategic net-zero technologies, such as solar, wind, batteries, and heat pumps, to meet at least 40% of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-net-zero-industry-act-2024-manufacturing-capacity.json #### Commission Regulation (EU) on sector-specific rules for cybersecurity aspects of cross-border electricity flows (Network Code on Cybersecurity) - **ID**: eu-network-code-cybersecurity-electricity-2024 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation establishes a harmonized EU framework requiring entities involved in cross-border electricity flows to conduct comprehensive cybersecurity risk assessments for their critical assets, i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-network-code-cybersecurity-electricity-2024.json #### Council Directive 2014/87/Euratom of 8 July 2014 amending Directive 2009/71/Euratom establishing a Community framework for the nuclear safety of nuclear installations - **ID**: eu-nuclear-safety-directive-2014-87-euratom-energy - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This directive amends the EU's nuclear safety framework, requiring Member States to ensure nuclear installation operators conduct periodic safety reviews at least every 10 years and implement robust o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nuclear-safety-directive-2014-87-euratom-energy.json #### An EU Strategy to harness the potential of offshore renewable energy for a climate neutral future (COM/2020/741 final) - **ID**: eu-offshore-renewable-energy-strategy-2020 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This EU strategy establishes ambitious targets for deploying at least 60 GW of offshore wind and 1 GW of ocean energy by 2030, and 300 GW of offshore wind and 40 GW of ocean energy by 2050. It require... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-offshore-renewable-energy-strategy-2020.json #### Council Directive 2013/59/Euratom of 5 December 2013 laying down basic safety standards for protection against the dangers arising from exposure to ionising radiation - **ID**: eu-radiation-protection-bss-directive-2013-59 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This directive establishes uniform basic safety standards for the protection of the health of individuals subject to occupational, medical and public exposures against the dangers arising from ionisin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-radiation-protection-bss-directive-2013-59.json #### EU Renewable Energy Directive (EU) 2018/2001 (RED II) - **ID**: eu-red-ii-renewable-energy-2018-2001 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: EU Directive (EU) 2018/2001 (the Renewable Energy Directive II) provides the binding overall EU renewable energy target of at least 32% renewable energy in final consumption by 2030 (revised to 42.5% ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-red-ii-renewable-energy-2018-2001.json #### Regulation (EU) 2023/657 laying down rules for the exercise of the Union's rights in the implementation and enforcement of the Withdrawal Agreement and the Trade and Cooperation Agreement with the United Kingdom - **ID**: eu-reg-2023-0657-laying-down-rules-for-the-exercise-of-the-union-s-rights-in - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2023/657 lays down rules and procedures to ensure effective and timely exercise of the Union's rights under the Withdrawal Agreement and the Trade and Cooperation Agreement between the... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2023-0657-laying-down-rules-for-the-exercise-of-the-union-s-rights-in.json #### Regulation (EU) 2024/3012 establishing a Union certification framework for permanent carbon removals, carbon farming and carbon storage in products - **ID**: eu-reg-2024-3012-establishing-a-union-certification-framework-for-permanent-c - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This Regulation establishes a voluntary Union certification framework for permanent carbon removals, carbon farming and carbon storage in products. Its aim is to facilitate and encourage high-quality ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2024-3012-establishing-a-union-certification-framework-for-permanent-c.json #### Commission Implementing Regulation (EU) 2025/655 of 2 April 2025 laying down rules for application of Regulation (EU) 2023/1804 as regards specifications and procedures relating to availability and accessibility of data on alternative fuels infrastructure - **ID**: eu-reg-2025-0655-implementing-regulation-eu-2025-655-of-2-april-2025-laying-d - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/655, adopted on 2 April 2025 and applicable from 14 April 2025, lays down specifications and procedures for the availability and accessibility of data on a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0655-implementing-regulation-eu-2025-655-of-2-april-2025-laying-d.json #### Corrigendum to Commission Implementing Regulation (EU) 2025/1328 on templates for building stock data transfer - **ID**: eu-reg-2025-1328-corrigendum-to-commission-implementing-regulation-eu-2025-13 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This is a Corrigendum to Commission Implementing Regulation (EU) 2025/1328 of 30 June 2025, which implements Directive (EU) 2024/1275 of the European Parliament and of the Council. The regulation esta... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-1328-corrigendum-to-commission-implementing-regulation-eu-2025-13.json #### Commission Implementing Regulation (EU) 2025/1328 of 30 June 2025 establishing common templates for transfer of information from national energy performance of buildings databases to the EU Building Stock Observatory - **ID**: eu-reg-2025-1328-implementing-regulation-eu-2025-1328-of-30-june-2025-impleme - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/1328, adopted on 30 June 2025, implements Directive (id) 2024/1275 by establishing common templates for transferring information from national energy perfo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-1328-implementing-regulation-eu-2025-1328-of-30-june-2025-impleme.json #### Directive (EU) 2023/2413 of the European Parliament and of the Council of 18 October 2023 amending Directive (EU) 2018/2001, Regulation (EU) 2018/1999 and Directive 98/70/EC as regards the promotion of energy from renewable sources, and repealing Council Directive (EU) 2015/652 - **ID**: eu-renewable-energy-directive-2023-2413-red-iii - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This directive (RED III) mandates that by 2030, the share of energy from renewable sources in the EU's gross final consumption of energy must be at least 42.5%, with Member States collectively strivin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-renewable-energy-directive-2023-2413-red-iii.json #### Directive (EU) 2023/2413 (RED III) - Revised Renewable Energy Directive: 42.5% Binding 2030 Target, Accelerated Permitting for Renewables, 42% Renewable Hydrogen in Industry, 14.5% Transport GHG Reduction, Renewable Energy Communities and Member State Contributions - **ID**: eu-renewable-energy-directive-red-iii-2023 - **Category**: Energy & Utilities - **Version**: 1.0.1 - **BLUF**: Directive (EU) 2023/2413 of 18 October 2023 amends Directive (EU) 2018/2001 (RED II) to substantially strengthen the EU's renewable energy ambition as part of the Fit for 55 package; the binding 2030 ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-renewable-energy-directive-red-iii-2023.json #### Implementation of Smart Metering Systems under the Internal Market for Electricity Directive (EU) 2019/944 - **ID**: eu-smart-metering-implementation-directive-2022 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This framework mandates EU Member States to ensure the large-scale rollout of smart electricity meters for at least 80% of consumers by 2024, contingent upon a positive national cost-benefit analysis.... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-smart-metering-implementation-directive-2022.json #### Communication from the Commission: EU Solar Energy Strategy - **ID**: eu-solar-energy-strategy-accelerated-permitting-2022 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This EU strategy mandates accelerated permitting for solar energy projects, establishing 'renewables go-to areas' with permit decisions within one year and a maximum two-year process elsewhere, as out... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solar-energy-strategy-accelerated-permitting-2022.json #### Commission Delegated Regulation (EU) 2021/2139: Technical Screening Criteria for Energy Sector Activities' Substantial Contribution to Climate Change Mitigation - **ID**: eu-taxonomy-delegated-act-energy-2022-sustainable - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation establishes the technical screening criteria (TSC) for energy sector activities to be classified as environmentally sustainable under the EU Taxonomy. As detailed in Annex I, activitie... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-delegated-act-energy-2022-sustainable.json #### EU TEN-E Regulation 2022/869 - Trans-European Energy Infrastructure Projects - **ID**: eu-ten-e-cross-border-energy-regulation-2022-869 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2022/869 on guidelines for trans-European energy infrastructure (TEN-E recast) replaces Regulation (EU) 347/2013 and removes natural gas infrastructure from the Projects of Common Inte... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ten-e-cross-border-energy-regulation-2022-869.json #### Participation of Distributed Energy Resource Aggregations in Markets Operated by Regional Transmission Organizations and Independent System Operators - **ID**: ferc-order-2222-distributed-energy-resources-2020 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: FERC Order No. 2222 requires Regional Transmission Organizations (RTOs) and Independent System Operators (ISOs) to revise their tariffs to establish Distributed Energy Resource (DER) aggregators as a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ferc-order-2222-distributed-energy-resources-2020.json #### Managing Transmission Line Ratings: Ambient-Adjusted Ratings, Transmission Owner Obligations and OASIS Posting Requirements - **ID**: ferc-order-881-transmission-line-ratings-2021 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This final rule requires public utility transmission providers to implement Ambient-Adjusted Ratings (AAR) for near-term transmission service to improve the accuracy and transparency of transmission l... - **Discovery URL**: https://bidda.com/api/v1/nodes/ferc-order-881-transmission-line-ratings-2021.json #### Germany Energiewirtschaftsgesetz (EnWG 2005) - Energy Industry Act and Grid Access Regulation - **ID**: germany-enwg-energy-industry-act-2005 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Germany's Energiewirtschaftsgesetz (EnWG, Energy Industry Act, last amended 2023) is the primary law governing electricity and gas network regulation, grid access, balancing obligations, and consumer ... - **Discovery URL**: https://bidda.com/api/v1/nodes/germany-enwg-energy-industry-act-2005.json #### IAEA Safety Standards GSR Part 3 - Radiation Protection and Safety of Radiation Sources: International Basic Safety Standards - **ID**: iaea-gsr-part-3-radiation-protection-energy-2014 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This standard establishes the fundamental safety principles and requirements for protecting people and the environment from harmful effects of ionizing radiation in planned, existing, and emergency ex... - **Discovery URL**: https://bidda.com/api/v1/nodes/iaea-gsr-part-3-radiation-protection-energy-2014.json #### IAEA Nuclear Security Series No. 13 - Nuclear Security Recommendations on Physical Protection of Nuclear Material and Nuclear Facilities (INFCIRC/225/Revision 5) - **ID**: iaea-nss-13-physical-protection-nuclear-material - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This IAEA recommendation provides guidance to States for establishing and maintaining a national physical protection regime for nuclear material and facilities to prevent theft, sabotage, and other ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/iaea-nss-13-physical-protection-nuclear-material.json #### Net Zero by 2050: A Roadmap for the Global Energy Sector - **ID**: iea-net-zero-2050-critical-milestones - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The International Energy Agency's (IEA) Net Zero by 2050 (NZE) roadmap outlines a global pathway to achieve net-zero CO2 emissions by 2050, requiring immediate cessation of new unabated fossil fuel su... - **Discovery URL**: https://bidda.com/api/v1/nodes/iea-net-zero-2050-critical-milestones.json #### IEC 61850: Communication Networks and Systems for Power Utility Automation - Security Requirements - **ID**: iec-61850-power-utility-automation-security - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: IEC 61850, in conjunction with its security standard IEC 62351, mandates robust cybersecurity controls for power utility automation systems. It requires operators of Intelligent Electronic Devices (IE... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-61850-power-utility-automation-security.json #### IMO MARPOL Annex VI Regulation 23 & 25 - Energy Efficiency Existing Ship Index (EEXI) - **ID**: imo-energy-efficiency-existing-ships-eexi-2023 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Mandates all existing ships of 400 gross tonnage (GT) and above to calculate their attained Energy Efficiency Existing Ship Index (EEXI) and ensure it is at or below the required EEXI, a technical eff... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-energy-efficiency-existing-ships-eexi-2023.json #### India Electricity Act 2003 - CERC Tariff Regulation, Open Access and Renewable Purchase Obligation - **ID**: india-electricity-act-2003-cerc-open-access - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: India's Electricity Act 2003 (EA 2003, Act 36 of 2003, in force June 2003) replaced the Electricity Act 1948, Electricity Supply Act 1948, and Electricity Regulatory Commissions Act 1998; it establish... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-electricity-act-2003-cerc-open-access.json #### The Electricity (Amendment) Act, 2022: Amendments to Franchise Licensing, Renewable Purchase Obligations, Smart Metering, and CERC Appellate Jurisdiction - **ID**: india-electricity-amendment-act-2022 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This act amends the Electricity Act, 2003 to de-license electricity distribution by allowing multiple private franchisees in the same area of supply, mandates minimum Renewable Purchase Obligations (R... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-electricity-amendment-act-2022.json #### IRENA Renewable Capacity Statistics 2024 - Measurement Methodology, Technology Classification and National Data Reporting Guidelines - **ID**: irena-renewable-capacity-statistics-methodology-2024 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This document establishes a standardized methodology for countries and data providers to report renewable energy capacity statistics to the International Renewable Energy Agency (IRENA). It mandates t... - **Discovery URL**: https://bidda.com/api/v1/nodes/irena-renewable-capacity-statistics-methodology-2024.json #### ISO 15118 - Road Vehicles to Grid Communication Protocol: Plug-and-Charge Authentication, Smart Charging and Vehicle-to-Grid (V2G) Interface - **ID**: iso-15118-ev-charging-communication-v2g - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This standard defines the secure digital communication protocol between an Electric Vehicle (EV) and the Electric Vehicle Supply Equipment (EVSE), enabling advanced features like Plug & Charge (PnC) a... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-15118-ev-charging-communication-v2g.json #### ISO 50001:2018 - Energy Management Systems - Requirements with guidance for use - **ID**: iso-50001-2018-energy-management-systems - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: ISO 50001:2018 specifies requirements for establishing, implementing, maintaining and improving an energy management system (EnMS), enabling any organization to systematically improve energy performan... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-50001-2018-energy-management-systems.json #### Japan Electricity Business Act 1964 (Law No. 170) - METI Liberalisation and Grid Neutrality - **ID**: japan-electricity-business-act-1964-meti - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Japan's Electricity Business Act (Law No. 170 of 1964, revised through 2023) establishes METI-supervised electricity market liberalisation with full retail liberalisation since 2016; requires grid neu... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-electricity-business-act-1964-meti.json #### Kenya Energy Act No. 1 of 2019 - EPRA Licensing and Tariff Framework - **ID**: kenya-energy-act-2019-epra - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Kenya Energy Act No. 1 of 2019 establishes the Energy and Petroleum Regulatory Authority (EPRA) with licensing jurisdiction over electricity generation, transmission, distribution, retail supply, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/kenya-energy-act-2019-epra.json #### Malaysia Electricity Supply Act 1990 (Act 447) - Suruhanjaya Tenaga Licensing Framework - **ID**: malaysia-electricity-supply-act-1990-energy-commission - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Malaysia's Electricity Supply Act 1990 (Act 447, as amended through 2015) establishes Suruhanjaya Tenaga (ST - Energy Commission) as the electricity and piped gas regulator; requires ST licences for g... - **Discovery URL**: https://bidda.com/api/v1/nodes/malaysia-electricity-supply-act-1990-energy-commission.json #### Nigeria Electricity Act 2023 - NERC Licensing and Market Reform - **ID**: nigeria-electricity-act-2023-nerc - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Nigeria's Electricity Act 2023 (signed 9 June 2023) replaces the Electric Power Sector Reform Act 2005; devolves electricity regulation to states for off-grid and mini-grid activities; retains the Nig... - **Discovery URL**: https://bidda.com/api/v1/nodes/nigeria-electricity-act-2023-nerc.json #### 10 CFR Part 50: Domestic Licensing of Production and Utilization Facilities - **ID**: nrc-10-cfr-50-domestic-licensing-nuclear-facilities - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation by the U.S. Nuclear Regulatory Commission (NRC) establishes the comprehensive requirements for licensing, constructing, and operating nuclear power plants and other production/utilizat... - **Discovery URL**: https://bidda.com/api/v1/nodes/nrc-10-cfr-50-domestic-licensing-nuclear-facilities.json #### 10 CFR Part 73 - Physical Protection of Plants and Materials - **ID**: nrc-10-cfr-73-physical-security-nuclear-plants - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation requires U.S. Nuclear Regulatory Commission (NRC) licensees operating nuclear power plants or possessing special nuclear materials to establish, maintain, and implement a comprehensive... - **Discovery URL**: https://bidda.com/api/v1/nodes/nrc-10-cfr-73-physical-security-nuclear-plants.json #### OECD Principles for Energy Regulatory Frameworks - Market Design, Network Regulation, Consumer Protection and Cross-Border Coordination - **ID**: oecd-regulatory-reform-energy-sector-competition - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This framework provides guiding principles for OECD member countries to establish and maintain effective energy regulatory systems that promote competition, ensure network security, and protect consum... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-regulatory-reform-energy-sector-competition.json #### Paris Agreement 2015 - Nationally Determined Contributions, Global Stocktake and 1.5C Temperature Goal - **ID**: paris-agreement-2015-ndcs-mitigation-adaptation - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Paris Agreement is a legally binding international treaty on climate change, adopted by 196 Parties at the 21st Conference of the Parties (COP21) in Paris on 12 December 2015 and entered into forc... - **Discovery URL**: https://bidda.com/api/v1/nodes/paris-agreement-2015-ndcs-mitigation-adaptation.json #### Philippines EPIRA 2001 - Electric Power Industry Reform Act (Republic Act 9136) - **ID**: philippines-epira-2001-electricity-market - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Republic Act 9136 (EPIRA, 2001) restructured the Philippine electricity industry by privatising the National Power Corporation (NPC), establishing a competitive wholesale electricity spot market (WESM... - **Discovery URL**: https://bidda.com/api/v1/nodes/philippines-epira-2001-electricity-market.json #### Singapore Electricity Act (Cap. 89A) - Market Licensing, Transmission Access Code, Quality of Supply Standards and Grid Codes - **ID**: singapore-electricity-act-cap-89a-supply-standard - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Singapore Electricity Act (Cap. 89A) establishes the Energy Market Authority (EMA) to regulate the electricity industry, requiring any entity involved in the generation, transmission, retail, or m... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-electricity-act-cap-89a-supply-standard.json #### South Africa Electricity Regulation Act No. 4 of 2006 - NERSA Licensing and Tariff Framework - **ID**: south-africa-electricity-regulation-act-2006 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The South Africa Electricity Regulation Act No. 4 of 2006 (ERA) establishes the National Energy Regulator of South Africa (NERSA) as the independent electricity regulator with powers to license electr... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-electricity-regulation-act-2006.json #### South Africa Integrated Resource Plan 2019 - NERSA Licensing and Eskom Restructuring Framework - **ID**: south-africa-integrated-resource-plan-2019-nersa - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: South Africa's Integrated Resource Plan 2019 (IRP 2019, Government Notice 1420 in Gazette No. 42784 of 18 October 2019) sets national electricity capacity targets through 2030 including 14,400 MW wind... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-integrated-resource-plan-2019-nersa.json #### Spain Electricity Sector Law 24/2013 - Ley del Sector Electrico and CNMC Regulation - **ID**: spain-electricity-sector-law-24-2013 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Spain's Electricity Sector Law 24/2013 (Ley del Sector Electrico, amended through Royal Decree-Law 6/2022) establishes the regulatory framework for generation, transmission, distribution, and retail o... - **Discovery URL**: https://bidda.com/api/v1/nodes/spain-electricity-sector-law-24-2013.json #### Turkey Electricity Market Law No. 6446 (2013) - EPDK Licensing and Market Regulation - **ID**: turkey-electricity-market-law-6446-2013 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Turkey's Electricity Market Law No. 6446 (2013, amended through 2023) establishes the Energy Market Regulatory Authority (EPDK - Enerji Piyasasi Duzenleme Kurumu) as the independent electricity regula... - **Discovery URL**: https://bidda.com/api/v1/nodes/turkey-electricity-market-law-6446-2013.json #### UK Climate Change Act 2008 - Net Zero Target and Carbon Budgets - **ID**: uk-climate-change-act-2008 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Climate Change Act 2008 (as amended by the Climate Change Act 2008 (2050 Target Amendment) Order 2019) creates a legally binding UK target to achieve net zero greenhouse gas emissions by 2050 rela... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-climate-change-act-2008.json #### Contracts for Difference (CfD) Allocation Round 6: Core Parameters and Administrative Strike Price Methodology - **ID**: uk-contracts-for-difference-cfd-allocation-round-6 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation establishes the rules, eligibility criteria, technology groupings (Pots), budget allocations, and administrative strike prices for renewable energy projects applying for a government-b... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-contracts-for-difference-cfd-allocation-round-6.json #### UK Electricity Act 1989 - Electricity Supply Licensing and Ofgem Regulatory Framework - **ID**: uk-electricity-act-1989 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: No person may generate, transmit, distribute, or supply electricity in Great Britain without a licence granted under Section 6 of the Electricity Act 1989, except under an exemption. Ofgem (the Gas an... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-electricity-act-1989.json #### UK Energy Act 2008 - Offshore Energy Licensing, Nuclear Decommissioning, and Renewable Obligations - **ID**: uk-energy-act-2008 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Energy Act 2008 introduces: mandatory funded decommissioning programmes for new nuclear power stations; offshore gas storage and unloading facility licensing; extensions to the Renewable Obligatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-energy-act-2008.json #### UK Energy Act 2013: Electricity Market Reform, Emissions Performance Standard and the ONR - **ID**: uk-energy-act-2013 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Energy Act 2013 is a central pillar of UK electricity-market and nuclear regulation, introducing Electricity Market Reform, an Emissions Performance Standard, and the statutory Office for Nuclear ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-energy-act-2013.json #### UK Energy Security Investment Mechanism 2024 - Electricity Generator Levy Trigger Price, Investor Certainty Provisions and Renewables Exemption - **ID**: uk-energy-security-investment-mechanism-2024 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This mechanism provides investor certainty by establishing a price floor for the Electricity Generator Levy (EGL); if the average wholesale electricity price falls below a set trigger price for two co... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-energy-security-investment-mechanism-2024.json #### UK Gas Act 1986 - Gas Transportation and Supply Licensing Framework - **ID**: uk-gas-act-1986 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: No person may convey gas through pipes or supply gas to premises in Great Britain without a licence granted by Ofgem under Section 7 or 7A of the Gas Act 1986, or an applicable exemption. Ofgem regula... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gas-act-1986.json #### UK Nuclear Installations Act 1965: Site Licensing, Operator Strict Liability and Compensation Cover - **ID**: uk-nuclear-installations-act-1965 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Nuclear Installations Act 1965 is the principal UK statute governing the licensing of nuclear sites and the civil liability regime for nuclear damage, with licensing and safety regulated by the Of... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-nuclear-installations-act-1965.json #### UK Ofgem Gas and Electricity Supply Licence Conditions 2024 - Price Cap Compliance, Vulnerability Obligations, Metering Standards and Switching Rules - **ID**: uk-ofgem-supply-licence-conditions-2024 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This regulation mandates that UK-licensed gas and electricity suppliers comply with the energy price cap for default tariffs (SLC 22), identify and provide appropriate support to vulnerable customers ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ofgem-supply-licence-conditions-2024.json #### UK Petroleum Act 1998: Crown Ownership of Petroleum, Licensing, Pipelines and Offshore Decommissioning - **ID**: uk-petroleum-act-1998 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Petroleum Act 1998 consolidates the core UK law on petroleum exploitation, submarine pipelines and the decommissioning of offshore installations, administered by the Secretary of State and, for of... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-petroleum-act-1998.json #### Paris Agreement: Article 4 - Nationally Determined Contributions (NDCs) and Implementation Guidelines - **ID**: un-paris-agreement-ndc-implementation-guidelines - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Under Article 4 of the Paris Agreement, each signatory Party is required to prepare, communicate, and maintain successive Nationally Determined Contributions (NDCs) it intends to achieve, ensuring eac... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-paris-agreement-ndc-implementation-guidelines.json #### US 18 CFR Part 35: Filing of Rate Schedules and Tariffs (FERC) - **ID**: us-18-cfr-part-35-ferc-filing-rate-schedules-tariffs - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: US 18 CFR Part 35 implements Sections 205 and 206 of the Federal Power Act (FPA) governing rate schedules and tariffs filed with FERC by public utilities engaged in interstate transmission or wholesal... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-cfr-part-35-ferc-filing-rate-schedules-tariffs.json #### US 33 CFR Part 323: Permits for Discharges of Dredged or Fill Material into Waters of the United States (Section 404 Clean Water Act) - **ID**: us-33-cfr-part-323-section-404-clean-water-permits - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: US 33 CFR Part 323 implements Section 404 of the Clean Water Act (CWA) governing the discharge of dredged or fill material into waters of the United States (WOTUS) including wetlands. The US Army Corp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-33-cfr-part-323-section-404-clean-water-permits.json #### US 40 CFR Part 122: EPA Administered Permit Programs - The National Pollutant Discharge Elimination System (NPDES) - **ID**: us-40-cfr-part-122-npdes-permit-regulations - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: US 40 CFR Part 122 implements the National Pollutant Discharge Elimination System (NPDES) under Clean Water Act Section 402. NPDES permits are required for any discharge of pollutants from a point sou... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-40-cfr-part-122-npdes-permit-regulations.json #### US 40 CFR Part 261: Identification and Listing of Hazardous Waste - **ID**: us-40-cfr-part-261-rcra-hazardous-waste-identification - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: US 40 CFR Part 261 identifies solid wastes that are subject to regulation as hazardous wastes under Subtitle C of the Resource Conservation and Recovery Act (RCRA). Wastes are hazardous if they exhibi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-40-cfr-part-261-rcra-hazardous-waste-identification.json #### US 40 CFR Part 262: Standards Applicable to Generators of Hazardous Waste - **ID**: us-40-cfr-part-262-hazardous-waste-generator-standards - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: US 40 CFR Part 262 establishes standards for generators of hazardous waste under RCRA Subtitle C including the hazardous waste determination, EPA notification, manifest requirements for off-site shipm... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-40-cfr-part-262-hazardous-waste-generator-standards.json #### US Atomic Energy Act (42 USC ch 23): Nuclear Material and Facility Licensing - **ID**: us-atomic-energy-act - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Atomic Energy Act (42 U.S.C. ch. 23) is the principal US statute governing the civilian and defense use of nuclear materials and facilities. Civilian licensing and regulation are administered by t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-atomic-energy-act.json #### US Atomic Energy Act of 1954 (42 USC ch 23): NRC Licensing of Nuclear Facilities and Special Nuclear Material - **ID**: us-atomic-energy-act-1954 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Atomic Energy Act of 1954 (42 U.S.C. ch. 23) is the foundational federal statute governing the civilian use of atomic energy and nuclear material, administered for civilian purposes by the Nuclear... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-atomic-energy-act-1954.json #### 30 CFR Part 250 - Oil and Gas and Sulphur Operations in the Outer Continental Shelf (BSEE) - **ID**: us-bsee-30-cfr-250-oil-gas-sulphur-operations-ocs - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: BSEE 30 CFR Part 250 governs oil, gas, and sulphur operations on the Outer Continental Shelf, setting the authority and applicability over lessees and operators, the performance standards the Director... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bsee-30-cfr-250-oil-gas-sulphur-operations-ocs.json #### California Senate Bill 100 (SB 100) - 100 Percent Clean Electricity by 2045 - **ID**: us-ca-sb100-clean-energy-2018 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: California load-serving entities (LSEs) must procure 60% of electricity from eligible renewable sources by 31 December 2030 and 100% from renewable or zero-carbon sources by 31 December 2045, with the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-sb100-clean-energy-2018.json #### US Clean Air Act Title IV - Acid Rain Program SO2 and NOx Cap-and-Trade - **ID**: us-clean-air-act-title-iv-acid-rain-so2-nox-epa - **Category**: Energy & Utilities - **Version**: 2.0 - **BLUF**: Clean Air Act Title IV establishes the Acid Rain Program - a mandatory cap-and-trade system for sulfur dioxide (SO2) and nitrogen oxide (NOx) emissions from power plants - requiring annual allowance s... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-air-act-title-iv-acid-rain-so2-nox-epa.json #### US Deepwater Port Act of 1974 (33 USC 1501) - Federal Licensing of Deepwater Ports for Oil and Natural Gas - **ID**: us-deepwater-port-act-33-usc-1501 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Deepwater Port Act of 1974 authorises the Secretary of Transportation acting through the Maritime Administration and the United States Coast Guard to issue licenses for the ownership, construction... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-deepwater-port-act-33-usc-1501.json #### Energy Independence and Security Act of 2007 - **ID**: us-energy-independence-security-act-2007-eisa - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Energy Independence and Security Act of 2007 (EISA) mandates increased production of renewable fuels, sets new appliance and lighting efficiency standards, and promotes energy efficiency in federa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-energy-independence-security-act-2007-eisa.json #### United States Energy Policy Act of 2005 (Title 42 USC Chapter 149): Energy Efficiency, Renewable Energy, Federal Purchase Requirement, Hydroelectric Production Incentives, and Incentives for Innovative Technologies - **ID**: us-energy-policy-act-2005-42-usc-ch149 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Energy Policy Act of 2005, codified at Title 42 of the United States Code, Chapter 149, is the principal federal statute setting national energy policy and programs across energy efficiency, renew... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-energy-policy-act-2005-42-usc-ch149.json #### US Energy Policy and Conservation Act (42 USC ch 77): Strategic Petroleum Reserve and Energy Conservation - **ID**: us-energy-policy-and-conservation-act - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Energy Policy and Conservation Act of 1975 (EPCA, 42 U.S.C. ch. 77) is a foundational US energy-security and conservation statute, administered chiefly by the Department of Energy. Its domestic-su... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-energy-policy-and-conservation-act.json #### 40 CFR Part 423 - Steam Electric Power Generating Point Source Category Effluent Guidelines - **ID**: us-epa-40-cfr-423-steam-electric-effluent-guidelines - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 423 sets the effluent limitations guidelines and standards for the steam electric power generating point source category, requiring a facility to determine applicability and definition... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-423-steam-electric-effluent-guidelines.json #### US EPA Power Plant GHG Rule 2024 - Carbon Pollution Standards for New and Existing Power Plants - **ID**: us-epa-power-plant-ghg-rule-2024 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: EPA's 2024 Final Rule under Clean Air Act Section 111 sets performance standards for new and existing coal and gas-fired power plants based on carbon capture and storage (CCS) or co-firing with clean ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-power-plant-ghg-rule-2024.json #### US Federal Power Act (16 USC ch 12): FERC Licensing of Hydropower and Regulation of Wholesale Electricity in Interstate Commerce - **ID**: us-federal-power-act - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Federal Power Act (16 U.S.C. ch. 12) is the foundational federal statute governing the licensing of non-federal hydroelectric projects and the regulation of the transmission and wholesale sale of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-power-act.json #### United States Federal Power Act (Title 16 USC Chapter 12): Federal Power Commission Authority, Water Power Licensing, Interstate Electric Utility Rates, Interconnection of Facilities, and Electric Reliability - **ID**: us-federal-power-act-16-usc-ch12 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Federal Power Act, codified at Title 16 of the United States Code, Chapter 12, is the foundational federal statute governing the regulation of the development of hydroelectric power and the regula... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-power-act-16-usc-ch12.json #### US FERC Order 2222 - Distributed Energy Resource Aggregation in Wholesale Electricity Markets - **ID**: us-ferc-order-2222-distributed-energy-resource-aggregation-markets - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: FERC Order No. 2222 (September 2020) requires regional transmission organisations (RTOs) and independent system operators (ISOs) to revise their tariffs to allow distributed energy resource aggregator... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ferc-order-2222-distributed-energy-resource-aggregation-markets.json #### Pro Forma Open Access Transmission Tariff (OATT) - Non-Discriminatory Transmission Access, Ancillary Services and Interconnection Procedures - **ID**: us-ferc-pro-forma-oatt-open-access-transmission - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Mandated by the Federal Energy Regulatory Commission (FERC) under Orders No. 888 and 889, the Pro Forma Open Access Transmission Tariff (OATT) requires public utilities that own, control, or operate i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ferc-pro-forma-oatt-open-access-transmission.json #### US Geothermal Steam Act of 1970 (30 U.S.C. Chapter 23): Federal Geothermal Resource Leasing - **ID**: us-geothermal-steam-act-1970 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Geothermal Steam Act of 1970, codified at 30 U.S.C. Chapter 23 (sections 1001 through 1028), authorizes the Secretary of the Interior to lease federal lands for the development and use of geotherm... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-geothermal-steam-act-1970.json #### Infrastructure Investment and Jobs Act (IIJA) - Division D, Title I, Part 4: Grid Infrastructure and Resilience; and Title IV: Energy - **ID**: us-iija-grid-modernisation-2021 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Infrastructure Investment and Jobs Act (IIJA) allocates over $65 billion in federal funding through the Department of Energy (DOE) for electric utilities, grid operators, and states to enhance gri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-iija-grid-modernisation-2021.json #### Inflation Reduction Act of 2022 (Pub.L. 117-169) - Clean Energy Tax Credits: Investment Tax Credit §48, Production Tax Credit §45, Clean Vehicle Credit §30D, Advanced Manufacturing Credit §45X, Prevailing Wage and Domestic Content Requirements, and $369B Climate Investment - **ID**: us-inflation-reduction-act-clean-energy-2022 - **Category**: Energy & Utilities - **Version**: 1.0.1 - **BLUF**: The Inflation Reduction Act of 2022 (IRA, Pub.L. 117-169, enacted 16 August 2022) is the largest US climate investment in history, allocating approximately $369 billion in climate and clean energy pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-inflation-reduction-act-clean-energy-2022.json #### Inflation Reduction Act of 2022: Clean Energy Production Tax Credit (§45) and Investment Tax Credit (§48) - **ID**: us-ira-energy-tax-credits-2022-sections-45-48 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Inflation Reduction Act of 2022 (IRA) modifies and extends the Production Tax Credit (PTC) under IRC §45 and the Investment Tax Credit (ITC) under IRC §48 for qualifying clean energy projects. To ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ira-energy-tax-credits-2022-sections-45-48.json #### US Natural Gas Act (15 USC ch 15B): FERC Jurisdiction over Interstate Gas Transportation, Pipeline Certificates and LNG Terminals - **ID**: us-natural-gas-act - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Natural Gas Act (15 U.S.C. ch. 15B) is the federal statute regulating the transportation and wholesale sale of natural gas in interstate commerce, administered by the Federal Energy Regulatory Com... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-natural-gas-act.json #### United States Natural Gas Act (Title 15 USC Chapter 15B): Public Interest Declaration, Import/Export Authorization, Just and Reasonable Rates, Construction and Abandonment Certificates, and Civil Penalties - **ID**: us-natural-gas-act-15-usc-ch15b - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Natural Gas Act, codified at Title 15 of the United States Code, Chapter 15B, is the foundational federal statute governing the interstate transportation and wholesale sale of natural gas and is a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-natural-gas-act-15-usc-ch15b.json #### Natural Gas Act of 1938: FERC Jurisdiction over Interstate Transportation, Pipeline Certification, and Rate-Setting - **ID**: us-natural-gas-act-1938-ferc-jurisdiction - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Natural Gas Act of 1938 (NGA) grants the Federal Energy Regulatory Commission (FERC) jurisdiction over the transportation of natural gas in interstate commerce, its sale for resale, and natural ga... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-natural-gas-act-1938-ferc-jurisdiction.json #### US Pipeline Safety Law (49 USC ch 601): Pipeline Safety Standards and Enforcement - **ID**: us-natural-gas-pipeline-safety-act - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Federal pipeline safety law (49 U.S.C. ch. 601), originating in the Natural Gas Pipeline Safety Act and the Hazardous Liquid Pipeline Safety Act, governs the safety of gas and hazardous liquid pip... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-natural-gas-pipeline-safety-act.json #### Nuclear Waste Policy Act of 1982: Subtitle A - Repositories for Disposal of High-Level Radioactive Waste and Spent Nuclear Fuel & Subtitle C - Interim Storage Program - **ID**: us-nuclear-waste-policy-act-1982-repository-program - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Nuclear Waste Policy Act of 1982 establishes the federal responsibility for the permanent disposal of high-level radioactive waste and spent nuclear fuel, requiring the Department of Energy (DOE) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nuclear-waste-policy-act-1982-repository-program.json #### New York Climate Leadership and Community Protection Act (CLCPA) 2019 - **ID**: us-ny-clcpa-2019 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: New York utilities, generators, and load-serving entities must support state targets of 70% renewable electricity by 2030, 100% zero-emission electricity by 2040, and 85% reduction in statewide greenh... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ny-clcpa-2019.json #### US Outer Continental Shelf Lands Act (43 USC ch 29): Offshore Leasing, Exploration and Safety Enforcement - **ID**: us-outer-continental-shelf-lands-act - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Outer Continental Shelf Lands Act (OCSLA, 43 U.S.C. ch. 29, subchapter III) governs the leasing of the submerged lands of the outer continental shelf for the development of oil, gas and other mine... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-outer-continental-shelf-lands-act.json #### 49 CFR Part 192 - Transportation of Natural and Other Gas by Pipeline: Minimum Federal Safety Standards - **ID**: us-phmsa-49-cfr-192-gas-pipeline-safety - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: PHMSA 49 CFR Part 192 prescribes minimum federal safety standards for the transportation of natural and other gas by pipeline, requiring operators to classify pipeline locations, control corrosion thr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-phmsa-49-cfr-192-gas-pipeline-safety.json #### 49 CFR Part 195 - Transportation of Hazardous Liquids by Pipeline - **ID**: us-phmsa-49-cfr-195-hazardous-liquid-pipeline-safety - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: PHMSA 49 CFR Part 195 governs the transportation of hazardous liquids and carbon dioxide by pipeline, holding operators responsible for compliance, requiring accident reporting, a written manual of op... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-phmsa-49-cfr-195-hazardous-liquid-pipeline-safety.json #### Pipeline Safety, Regulatory Certainty, and Job Creation Act of 2011 - **ID**: us-pipeline-hazardous-materials-safety-act-2011 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: This Act mandates the Pipeline and Hazardous Materials Safety Administration (PHMSA) to strengthen pipeline safety regulations for gas and hazardous liquid pipeline operators. Key provisions require e... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pipeline-hazardous-materials-safety-act-2011.json #### US Public Utility Regulatory Policies Act (PURPA, 16 USC ch 46): Retail Ratemaking Standards and Utility Reform - **ID**: us-public-utility-regulatory-policies-act - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Public Utility Regulatory Policies Act of 1978 (PURPA, 16 U.S.C. ch. 46) reformed the regulation of electric and gas utilities to promote energy conservation, efficient use of facilities, and equi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-public-utility-regulatory-policies-act.json #### US Public Utility Regulatory Policies Act 1978 (PURPA) - Qualifying Facility Status, Mandatory Purchase Obligations and Avoided Cost Pricing - **ID**: us-purpa-1978-qualifying-facility-rules - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: The Public Utility Regulatory Policies Act of 1978 (PURPA) requires electric utilities to purchase power from and sell supplementary power to certified Qualifying Facilities (QFs) at rates based on th... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-purpa-1978-qualifying-facility-rules.json #### Vietnam Electricity Law 2022 (amended Law No. 03/2022/QH15) - Power Market Regulation - **ID**: vietnam-electricity-law-2022 - **Category**: Energy & Utilities - **Version**: 1.0.0 - **BLUF**: Vietnam's amended Electricity Law (Law No. 03/2022/QH15), effective January 2023, introduces competitive electricity market reforms including pilot direct power purchase agreements (DPPA) between rene... - **Discovery URL**: https://bidda.com/api/v1/nodes/vietnam-electricity-law-2022.json ### Financial Crime, AML & Sanctions (189 nodes) #### United Arab Emirates Federal Decree-Law No. 20 of 2018 on Anti-Money Laundering and Combating the Financing of Terrorism - **ID**: ae-aml-cft-law-2018 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Federal Decree-Law No. 20 of 2018 on Anti-Money Laundering and Combating the Financing of Terrorism and Illegal Organisations (the UAE AML/CFT Law) entered into force on 30 October 2018, replacing Fed... - **Discovery URL**: https://bidda.com/api/v1/nodes/ae-aml-cft-law-2018.json #### Australia Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (AML/CTF Act) - **ID**: au-aml-ctf-act-2006 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (AML/CTF Act) establishes Australia's primary AML/CTF regulatory framework, requiring reporting entities (financial institutions, gam... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-aml-ctf-act-2006.json #### Anti-Money Laundering and Counter-Terrorism Financing Act 2006 - Part 2 Customer Due Diligence - **ID**: au-aml-ctf-act-2006-part-2-customer-due-diligence - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This regulation outlines the requirements for reporting entities to carry out customer identification, verification, and ongoing due diligence procedures before and during the provision of designated ... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-aml-ctf-act-2006-part-2-customer-due-diligence.json #### Anti-Money Laundering and Counter-Terrorism Financing Act 2006 - Part 3 Reporting Obligations - **ID**: au-aml-ctf-act-2006-part-3-reporting-obligations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This part of the Act mandates that reporting entities must report suspicious matters, threshold transactions, and international funds transfer instructions to the AUSTRAC CEO. - **Discovery URL**: https://bidda.com/api/v1/nodes/au-aml-ctf-act-2006-part-3-reporting-obligations.json #### Australia Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth) - AUSTRAC Designated Services, Reporting and Tranche 2 Expansion - **ID**: au-amlctf-act-2006-anti-money-laundering-counter-terrorism-financing - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth) (AML/CTF Act) is the principal Australian federal statute establishing AML/CTF obligations on reporting entities providing desi... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-amlctf-act-2006-anti-money-laundering-counter-terrorism-financing.json #### Australia AML/CTF Act 2006: Anti-Money Laundering and Counter-Terrorism Financing Act - **ID**: au-austrac-aml-ctf-act-2006 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Australian Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (AML/CTF Act) establishes the AUSTRAC-administered regulatory framework for anti-money laundering and counter-terrorism fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-austrac-aml-ctf-act-2006.json #### Central Bank of Bahrain (CBB) Rulebook, Volume 1: Conventional Banks, Module FC: Financial Crime - Customer Due Diligence, PEPs, and Suspicious Transaction Reporting - **ID**: bahrain-cbb-rulebook-aml-cft-module - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The CBB Rulebook's Financial Crime (FC) Module mandates that all licensees in Bahrain implement a comprehensive, risk-based approach to AML/CFT, requiring detailed Customer Due Diligence (CDD), Enhanc... - **Discovery URL**: https://bidda.com/api/v1/nodes/bahrain-cbb-rulebook-aml-cft-module.json #### BSA SAR (Suspicious Activity) - **ID**: bank-secrecy-act-suspicious - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.1.0 - **BLUF**: The Bank Secrecy Act (BSA) requires financial institutions to file a Suspicious Activity Report (SAR) for any transaction that is suspicious, appears to involve illegal activity, or has no logical bus... - **Discovery URL**: https://bidda.com/api/v1/nodes/bank-secrecy-act-suspicious.json #### Brazil Lei 9.613 de 3 de Marco de 1998 (Anti-Money Laundering Law) as Amended by Lei 12.683/2012 - Money Laundering Offence, Obliged Persons and COAF / UIF Reporting - **ID**: br-aml-law-9613-1998-anti-money-laundering-coaf-uif - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Brazil's Lei 9.613 of 3 March 1998 (Lei de Lavagem de Dinheiro), as comprehensively amended by Lei 12.683 of 9 July 2012, is the principal federal statute criminalising money laundering in Brazil and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-aml-law-9613-1998-anti-money-laundering-coaf-uif.json #### Canada Corruption of Foreign Public Officials Act 1998 (CFPOA) - **ID**: ca-cfpoa-corruption-foreign-public-officials-act - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Corruption of Foreign Public Officials Act of Canada (Statutes of Canada 1998 chapter 34, Royal Assent 10 December 1998, in force 14 February 1999) implements the OECD Convention on Combating Brib... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-cfpoa-corruption-foreign-public-officials-act.json #### Canada Proceeds of Crime (Money Laundering) and Terrorist Financing Act 2000 (PCMLTFA) - **ID**: ca-pcmltfa-aml-2000 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.1 - **BLUF**: The Proceeds of Crime (Money Laundering) and Terrorist Financing Act (PCMLTFA, S.C. 2000, c. 17) is Canada's primary AML/CTF legislation, establishing a mandatory compliance and reporting regime admin... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-pcmltfa-aml-2000.json #### Proceeds of Crime (Money Laundering) and Terrorist Financing Act, S.C. 2000, c. 17 - Interpretation - **ID**: ca-pcmltfa-part-1-reporting-obligations-aml - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This article establishes the foundational definitions for key terms such as client, entity, money laundering offence, and terrorist activity financing offence, which are essential for interpreting com... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-pcmltfa-part-1-reporting-obligations-aml.json #### Crypto AML Travel Rule - **ID**: crypto-aml-travel-rule - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.1.0 - **BLUF**: The FATF Travel Rule (Recommendation 16), as applied to Virtual Asset Service Providers (VASPs) through FATF Guidance on Virtual Assets (2019, updated 2021), requires that originating VASPs transmit s... - **Discovery URL**: https://bidda.com/api/v1/nodes/crypto-aml-travel-rule.json #### Germany Money Laundering Act 2017 (Geldwäschegesetz, GwG, as amended) - **ID**: de-gwg-aml-2017 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Money Laundering Act 2017 (Geldwäschegesetz, GwG) is Germany's principal anti-money laundering and counter-terrorist financing statute, transposing the EU 4th Anti-Money Laundering Directive (2015... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-gwg-aml-2017.json #### Directive (EU) 2018/843 (5AMLD) - Real Estate Agent Customer Due Diligence and High-Value Transaction Reporting - **ID**: eu-5amld-real-estate-aml-due-diligence - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The EU's Fifth Anti-Money Laundering Directive (5AMLD) mandates that real estate agents, acting as intermediaries for both buyers and sellers, must perform Customer Due Diligence (CDD) for all propert... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-5amld-real-estate-aml-due-diligence.json #### EU 6th Anti-Money Laundering Directive (6AMLD) 2018/1673 - Criminal Liability for Money Laundering and Expanded Predicate Offences - **ID**: eu-6amld-directive-2018-1673-anti-money-laundering-criminal-offences - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 6AMLD (Directive 2018/1673) harmonises the criminal definition of money laundering across EU Member States, expands the list of 22 predicate offences (including cybercrime, environmental crime, and ta... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-6amld-directive-2018-1673-anti-money-laundering-criminal-offences.json #### Directive (EU) 2018/1673 of the European Parliament and of the Council of 23 October 2018 on combating money laundering by criminal law - **ID**: eu-6amld-sixth-anti-money-laundering-2018-1673 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The EU's Sixth Anti-Money Laundering Directive (6AMLD) harmonises the definition of 22 predicate criminal offenses for money laundering across all member states, extends criminal liability to legal pe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-6amld-sixth-anti-money-laundering-2018-1673.json #### EU 6th Anti-Money Laundering Directive 2018/1673 - Criminal Liability and Predicate Offences - **ID**: eu-aml-6th-directive-2018-1673-criminal-liability-money-laundering - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2018/1673 (6AMLD) harmonises criminal law provisions for money laundering across EU Member States, expanding the list of predicate offences to 22 categories, extending liability to lega... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aml-6th-directive-2018-1673-criminal-liability-money-laundering.json #### Regulation (EU) 2024/1620 of the European Parliament and of the Council of 31 May 2024 establishing the Authority for Anti-Money Laundering and Countering the Financing of Terrorism and amending Regulations (EU) No 1093/2010, (EU) No 1094/2010 and (EU) No 1095/2010 - **ID**: eu-aml-authority-amla-2024 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This regulation establishes the Authority for Anti-Money Laundering and Countering the Financing of Terrorism (AMLA) as the central EU authority for direct and indirect supervision of high-risk oblige... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aml-authority-amla-2024.json #### Directive (EU) 2018/843 of the European Parliament and of the Council of 30 May 2018 on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing (Fifth Anti-Money Laundering Directive) - Gambling Sector Provisions - **ID**: eu-aml-directive-5-gambling-sector - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.1 - **BLUF**: The Directive requires gambling service providers to apply customer due diligence for transactions equal to or above EUR 2,000 (Article 31), adopt a risk‑based approach (Article 33), identify benefici... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aml-directive-5-gambling-sector.json #### Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing - **ID**: eu-aml-package-2021-regulation-proposal - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.1 - **BLUF**: This proposal establishes directly applicable EU-wide rules to prevent money laundering and terrorist financing, expanding obligations to crypto-asset service providers, crowdfunding platforms, and mi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aml-package-2021-regulation-proposal.json #### Regulation (EU) 2024/1624 on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing - **ID**: eu-aml-regulation-2024 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This regulation establishes a unified, directly applicable Anti-Money Laundering and Counter-Financing of Terrorism (AML/CFT) rulebook for the EU, mandating obliged entities to conduct risk assessment... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aml-regulation-2024.json #### EU Anti-Money Laundering Regulation (EU) 2024/1624 - **ID**: eu-aml-regulation-2024-1624 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: EU Regulation 2024/1624 (the AML Regulation) is part of the EU AML/CFT package adopted 31 May 2024 alongside Directive 2024/1640 (AMLD6) and Regulation 2024/1620 (AMLA Regulation). The AML Regulation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aml-regulation-2024-1624.json #### Regulation (EU) 2024/1624 on preventing the use of the financial system for the purposes of money laundering or terrorist financing, and amending Regulation (EU) No 909/2014, Directive (EU) 2015/849 and other related acts - Crypto-Asset Service Providers as Obliged Entities - **ID**: eu-aml-regulation-2024-crypto-assets - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This regulation establishes that all Crypto-Asset Service Providers (CASPs) are obliged entities under EU AML rules, requiring Customer Due Diligence (CDD) on all transactions without de minimis thres... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aml-regulation-2024-crypto-assets.json #### Regulation (EU) 2024/1624 on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing - **ID**: eu-aml-regulation-2024-single-rulebook - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This regulation establishes a directly applicable single rulebook for Anti-Money Laundering and Countering the Financing of Terrorism (AML/CFT) across the EU, imposing harmonised Customer Due Diligenc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-aml-regulation-2024-single-rulebook.json #### EU Regulation 2024/1620 - Establishment of the Authority for Anti-Money Laundering and Countering the Financing of Terrorism (AMLA) - **ID**: eu-amla-regulation-2024-1620-anti-money-laundering-authority - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1620 of the European Parliament and of the Council of 31 May 2024 establishes the Authority for Anti-Money Laundering and Countering the Financing of Terrorism (AMLA), the new cen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-amla-regulation-2024-1620-anti-money-laundering-authority.json #### EU Directive 2024/1640 (AMLD6 2024) - Member State Mechanisms for AML/CFT Supervision, Beneficial Ownership Registers and Financial Intelligence Units - **ID**: eu-amld6-directive-2024-1640-aml-cft-mechanisms - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2024/1640 of the European Parliament and of the Council of 31 May 2024 on the mechanisms to be put in place by Member States for the prevention of the use of the financial system for th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-amld6-directive-2024-1640-aml-cft-mechanisms.json #### EU Online Gambling Services - Anti-Money Laundering (AML) Due Diligence Under 4AMLD - **ID**: eu-online-gambling-services-4amld-aml-due-diligence - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2015/849 (4AMLD) Article 2(1)(f) includes "providers of gambling services" as obliged entities subject to anti-money laundering and counter-terrorist financing (AML/CTF) requirements. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-online-gambling-services-4amld-aml-due-diligence.json #### Directive (EU) 2018/843 of the European Parliament and of the Council of 30 May 2018 on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing (Fifth Anti-Money Laundering Directive) - **ID**: eu-real-estate-aml-5amld-professional-obligations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.1 - **BLUF**: Real estate professionals acting in property transactions involving the purchase or sale of real estate must conduct customer due diligence (CDD) when the transaction involves a cash payment of €10,00... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-real-estate-aml-5amld-professional-obligations.json #### FATF 40 Recommendations 2023 Consolidated - AML/CFT/CPF International Standards: Risk-Based Approach, Customer Due Diligence, Beneficial Ownership, Correspondent Banking, Wire Transfer Rules and VASP Supervision - **ID**: fatf-40-recommendations-2023-consolidated - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This comprehensive set of international standards requires countries and their financial institutions to implement a risk-based approach (Recommendation 1) to combat money laundering, terrorist financ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-40-recommendations-2023-consolidated.json #### AI Agent Anti-Money Laundering (AML) Compliance - **ID**: fatf-aml-agent - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.1.0 - **BLUF**: Autonomous agents performing financial functions are subject to the same FATF risk-based approach as traditional entities. Compliance requires 'Neural AML' - embedding real-time traceability, KYC veri... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-aml-agent.json #### FATF Guidance on Beneficial Ownership of Legal Persons and Arrangements 2023 - Ultimate Beneficial Owner Definition, National Registry Requirements, Nominee Shareholders and Verification Mechanisms - **ID**: fatf-guidance-beneficial-ownership-2023 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This FATF guidance mandates countries to ensure competent authorities have timely access to adequate, accurate, and up-to-date information on the ultimate beneficial owners (UBOs) of legal persons, as... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-guidance-beneficial-ownership-2023.json #### FATF Guidance on the Risk-Based Approach for the Gambling Sector 2021 - **ID**: fatf-guidance-rba-gambling-2021 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This guidance requires gambling operators and financial intelligence units to implement risk-based anti-money laundering and counter-terrorist financing (AML/CFT) controls, including customer due dili... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-guidance-rba-gambling-2021.json #### UPDATED GUIDANCE FOR A RISK-BASED APPROACH VIRTUAL ASSETS AND VIRTUAL ASSET SERVICE PROVIDERS - **ID**: fatf-guidance-virtual-assets-vasp - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: In October 2018, the Financial Action Task Force (FATF) adopted changes to its Recommendations to explicitly clarify that they apply to financial activities involving virtual assets (VAs) and introduc... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-guidance-virtual-assets-vasp.json #### FATF Updated Guidance for a Risk-Based Approach to Virtual Assets and Virtual Asset Service Providers (2021) - **ID**: fatf-guidance-virtual-assets-vasp-2021 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This updated FATF guidance clarifies and expands the definition of Virtual Asset Service Providers (VASPs) to potentially include DeFi arrangements and requires member countries to implement Recommend... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-guidance-virtual-assets-vasp-2021.json #### FATF Methodology for assessing technical compliance with the FATF Recommendations and the effectiveness of AML/CFT systems (2022) - **ID**: fatf-methodology-mutual-evaluation-2022 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This methodology establishes the global standard for peer-review mutual evaluations of a country's anti-money laundering and counter-terrorist financing (AML/CFT) framework. It assesses both technical... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-methodology-mutual-evaluation-2022.json #### GUIDANCE ON PROLIFERATION FINANCING RISK ASSESSMENT AND MITIGATION - **ID**: fatf-pf-risk-assessment-mitigation - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This non-binding Guidance from the Financial Action Task Force (FATF) aims to develop a common understanding of the amendments to FATF Recommendation 1, which require countries and private sector enti... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-pf-risk-assessment-mitigation.json #### The FATF Recommendations - **ID**: fatf-recommendation-10-customer-due-diligence - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This standard requires countries to implement a comprehensive and consistent framework of measures to combat money laundering, terrorist financing, and the financing of proliferation of weapons of mas... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-recommendation-10-customer-due-diligence.json #### The FATF Recommendations - Recommendation 15: New Technologies - **ID**: fatf-recommendation-15-new-technologies-virtual-assets - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Countries should identify and assess the money laundering and terrorist financing risks that may arise in relation to the development of new products and new business practices, and take appropriate m... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-recommendation-15-new-technologies-virtual-assets.json #### FATF Recommendation 16: Wire Transfers (Interpretive Note for Virtual Assets) - The Travel Rule - **ID**: fatf-recommendation-16-travel-rule-crypto - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This regulation requires Virtual Asset Service Providers (VASPs) to obtain, hold, and transmit required originator and beneficiary information for virtual asset transfers at or above USD/EUR 1,000 to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-recommendation-16-travel-rule-crypto.json #### FATF Recommendation 16 - Wire Transfers and Virtual Assets Travel Rule: Originator/Beneficiary Information Requirements and VASP-to-VASP Data Transmission - **ID**: fatf-recommendation-16-travel-rule-va - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: FATF Recommendation 16 requires virtual asset service providers (VASPs) to obtain, hold, and transmit accurate originator and beneficiary information for virtual asset transfers above USD/EUR 1,000, m... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-recommendation-16-travel-rule-va.json #### The FATF Recommendations - **ID**: fatf-recommendation-20-reporting-suspicious-transactions - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The FATF Recommendations establish a comprehensive and consistent framework of measures for countries to implement in order to combat money laundering, terrorist financing, and the financing of prolif... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-recommendation-20-reporting-suspicious-transactions.json #### The FATF Recommendations - **ID**: fatf-recommendation-26-regulation-supervision-fi - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Countries must implement a comprehensive and consistent framework of measures, adapted to their particular circumstances, to combat money laundering, terrorist financing, and the financing of prolifer... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-recommendation-26-regulation-supervision-fi.json #### The FATF Recommendations: Recommendation 3 - Money Laundering Offence - **ID**: fatf-recommendation-3-money-laundering-offence - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Countries must implement a comprehensive and consistent framework of measures to combat money laundering, terrorist financing, and proliferation financing, adapting these measures to their particular ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-recommendation-3-money-laundering-offence.json #### The FATF Recommendations - Recommendation 6: Targeted Financial Sanctions Related to Terrorism & Terrorist Financing - **ID**: fatf-recommendation-6-targeted-sanctions-terrorism - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Countries must implement the FATF's comprehensive and consistent framework of measures for combating terrorist financing, adapting them to their particular legal, administrative, and operational circu... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-recommendation-6-targeted-sanctions-terrorism.json #### FATF Risk-Based Approach Guidance for the Banking Sector - **ID**: fatf-risk-based-approach-banking-sector-2014 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This guidance requires banks to implement a risk-based approach (RBA) to anti-money laundering and counter-terrorist financing (AML/CFT), mandating the identification, assessment, and mitigation of ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-risk-based-approach-banking-sector-2014.json #### FATF Recommendation 16 (Travel Rule) - **ID**: fatf-travel-rule-v2 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.1.0 - **BLUF**: FATF Recommendation 16, also known as the 'Travel Rule', is the global AML/CFT standard for virtual assets. It requires Virtual Asset Service Providers (VASPs) to collect and transmit originator and b... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-travel-rule-v2.json #### FATF Virtual Asset Red Flags - **ID**: fatf-virtual-asset-redfl - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.1.0 - **BLUF**: The FATF Virtual Asset Red Flag Indicators (2020) provides a report to assist financial institutions and Virtual Asset Service Providers (VASPs) in identifying potential money laundering and terrorist... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-virtual-asset-redfl.json #### FATF Recommendation 16 - Travel Rule for Virtual Assets 2019 (Updated 2023): Originator and Beneficiary Information Transmission Requirement (Name/Account/Address) for Transfers over USD/EUR 1,000, VASP-to-VASP Obligations, Sunrise Issue Guidance and Technical Solutions - **ID**: fatf-virtual-assets-travel-rule-recommendation-16 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.1 - **BLUF**: FATF Recommendation 16 requires Virtual Asset Service Providers (VASPs) to collect, verify, and transmit originator and beneficiary information for virtual asset transfers exceeding USD/EUR 1,000, inc... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-virtual-assets-travel-rule-recommendation-16.json #### FATF Guidance on Virtual Assets and Gaming 2019 - Travel Rule, Customer Due Diligence, Risk Assessment and AML/CFT Programme Requirements for Virtual Asset Service Providers and Gaming Platforms - **ID**: fatf-virtual-currencies-gaming-guidance-2019 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.1 - **BLUF**: The FATF Guidance 2019 obliges all Virtual Asset Service Providers (VASPs) and crypto-gaming platforms to implement the Travel Rule for crypto transfers (Section 3), conduct comprehensive Customer Due... - **Discovery URL**: https://bidda.com/api/v1/nodes/fatf-virtual-currencies-gaming-guidance-2019.json #### FCPA Anti-Bribery (US) - **ID**: fcpa-anti-bribery-compliance - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.1.1 - **BLUF**: The Foreign Corrupt Practices Act (FCPA) of 1977 is a U.S. federal law prohibiting the payment of bribes to foreign officials to assist in obtaining or retaining business. It applies to all U.S. perso... - **Discovery URL**: https://bidda.com/api/v1/nodes/fcpa-anti-bribery-compliance.json #### FinCEN Customer Due Diligence (CDD) Final Rule 2016 - Beneficial Ownership Identification, Verification Procedures and 25% Ownership Threshold for Legal Entity Customers - **ID**: fincen-cdd-beneficial-ownership-rule-2016 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The CDD Final Rule requires covered financial institutions to identify and verify the identity of beneficial owners of legal entity customers who own 25 percent or more of the entity or who control th... - **Discovery URL**: https://bidda.com/api/v1/nodes/fincen-cdd-beneficial-ownership-rule-2016.json #### Application of FinCEN’s Regulations to Certain Business Models Involving Convertible Virtual Currencies - **ID**: fincen-cvc-business-models - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Financial Crimes Enforcement Network (FinCEN) is issuing this interpretive guidance to remind persons subject to the Bank Secrecy Act (BSA) how FinCEN regulations relating to money services busine... - **Discovery URL**: https://bidda.com/api/v1/nodes/fincen-cvc-business-models.json #### Hong Kong Anti-Money Laundering and Counter-Terrorist Financing Ordinance (Cap 615) - **ID**: hk-amlo-cap-615 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Anti-Money Laundering and Counter-Terrorist Financing Ordinance (Cap 615, Ordinance No. 27 of 2011) is Hong Kong's principal AML / CTF statute. The Ordinance was in force from 1 April 2012 and has... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-amlo-cap-615.json #### Hong Kong Prevention of Bribery Ordinance (Cap 201) - **ID**: hk-prevention-of-bribery-cap-201 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Prevention of Bribery Ordinance (Cap 201) is Hong Kong's principal anti-corruption statute. Originally enacted as Ordinance No. 102 of 1970 it was in force from 14 May 1971 and has been consolidat... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-prevention-of-bribery-cap-201.json #### IOSCO Principles for Anti-Money Laundering in the Securities Sector (2009) - Risk-Based Approach for Broker-Dealers, Collective Investment Scheme Operators and Investment Managers: CDD, Suspicious Transaction Reporting - **ID**: iosco-aml-principles-securities-markets-2009 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This IOSCO guidance establishes a risk-based approach for securities firms to combat money laundering and terrorist financing, mandating robust Customer Due Diligence (CDD), ongoing monitoring, and Su... - **Discovery URL**: https://bidda.com/api/v1/nodes/iosco-aml-principles-securities-markets-2009.json #### Anti-Bribery Systems (ISO 37001) - **ID**: iso-37001-anti-bribery - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.1.0 - **BLUF**: ISO 37001 is the international standard for anti-bribery management systems (ABMS). It specifies measures to help organizations prevent, detect, and address bribery by establishing a culture of integr... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-37001-anti-bribery.json #### ISO 37001:2016 Anti-Bribery Management Systems - Requirements and Guidance for Implementation - **ID**: iso-37001-anti-bribery-2016 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: ISO 37001:2016 specifies requirements for establishing, implementing, maintaining, and improving an anti-bribery management system (ABMS) to prevent, detect, and respond to bribery. The standard, base... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-37001-anti-bribery-2016.json #### ISO 37001 (Anti-Bribery) - **ID**: iso-37001-anti-bribery-mgt - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.1.1 - **BLUF**: Conformance with the ISO 37001 standard requires establishing and maintaining a robust anti-bribery management system (ABMS). This operational framework mandates a formally documented ABMS policy and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-37001-anti-bribery-mgt.json #### Mexico Federal Law for the Prevention and Identification of Transactions with Illicitly Obtained Funds (LFPIORPI) 2012 - **ID**: mx-lfpiorpi-aml-2012 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Ley Federal para la Prevención e Identificación de Operaciones con Recursos de Procedencia Ilícita (LFPIORPI - Federal Law for the Prevention and Identification of Transactions with Illicitly Obta... - **Discovery URL**: https://bidda.com/api/v1/nodes/mx-lfpiorpi-aml-2012.json #### Netherlands Anti-Money Laundering and Counter-Terrorist Financing Act 2008 (Wet ter voorkoming van witwassen en financieren van terrorisme - Wwft) - **ID**: nl-wwft-aml-2008 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Wwft (Wet ter voorkoming van witwassen en financieren van terrorisme - Act on the Prevention of Money Laundering and Financing of Terrorism) is the Netherlands' principal anti-money laundering and... - **Discovery URL**: https://bidda.com/api/v1/nodes/nl-wwft-aml-2008.json #### Norway Finanstilsynet Crypto AML Registration 2023 - AMLA Compliance for VASPs: Registration with FSA, Anti-Money Laundering Act Obligations, Travel Rule Implementation, Suspicious Transaction Reporting and Enhanced Due Diligence for PEPs - **ID**: norway-finanstilsynet-crypto-aml-2023 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Virtual Asset Service Providers (VASPs) operating in Norway must register with Finanstilsynet and comply with the Anti-Money Laundering Act (AMLA), including implementing Travel Rule data transfers pe... - **Discovery URL**: https://bidda.com/api/v1/nodes/norway-finanstilsynet-crypto-aml-2023.json #### New Zealand Anti-Money Laundering and Countering Financing of Terrorism Act 2009 (AML/CFT Act) - **ID**: nz-aml-cft-act-2009 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.1 - **BLUF**: The Anti-Money Laundering and Countering Financing of Terrorism Act 2009 establishes New Zealand's AML/CFT regulatory framework, requiring reporting entities (banks, non-bank deposit takers, life insu... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-aml-cft-act-2009.json #### OECD Convention on Combating Bribery of Foreign Public Officials in International Business Transactions - **ID**: oecd-anti-bribery-convention-1997 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This convention requires signatory countries to criminalize the act of intentionally offering, promising, or giving any undue pecuniary or other advantage to a foreign public official to obtain or ret... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-anti-bribery-convention-1997.json #### OECD Anti-Bribery Convention 1997 - Foreign Public Official Bribery Offence and Working Group Peer Review - **ID**: oecd-anti-bribery-convention-1997-foreign-public-officials - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The OECD Convention on Combating Bribery of Foreign Public Officials in International Business Transactions, adopted on 21 November 1997 and entered into force on 15 February 1999, is the principal in... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-anti-bribery-convention-1997-foreign-public-officials.json #### Saudi Arabia Anti-Money Laundering Law - Royal Decree M/20 dated 05/02/1439H (2017) and Implementing Regulations - **ID**: sa-aml-royal-decree-m-20-2017-anti-money-laundering-law - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Anti-Money Laundering Law of the Kingdom of Saudi Arabia was issued by Royal Decree No. M/20 dated 05/02/1439H (corresponding to 25 October 2017 of the Gregorian calendar), repealing and replacing... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-aml-royal-decree-m-20-2017-anti-money-laundering-law.json #### Casino Control Act 2006 - **ID**: singapore-casino-control-act-2006-aml-exclusions - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Casino Control Act 2006 obliges all licensed casino operators in Singapore to conduct AML/CFT customer due‑diligence, enforce fit‑and‑proper assessments for licence holders, implement exclusion or... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-casino-control-act-2006-aml-exclusions.json #### Standards for Anti-Money Laundering and Combating the Financing of Terrorism and Illicit Organizations for Licensed Financial Institutions - **ID**: uae-cbuae-aml-cft-standards-2019 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This standard mandates that all Licensed Financial Institutions (LFIs) in the UAE implement a comprehensive, risk-based approach to AML/CFT, including conducting Customer Due Diligence (CDD), applying... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-cbuae-aml-cft-standards-2019.json #### UK Bribery Act 2010 - **ID**: uk-bribery-act-2010 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.1.0 - **BLUF**: The UK Bribery Act 2010 is one of the strictest anti-corruption laws in the world. It prohibits bribing, being bribed, and bribing foreign officials. Critically, it introduces a strict liability offen... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-bribery-act-2010.json #### UK Bribery Act 2010: Section 7 'Failure of commercial organisations to prevent bribery' and the 'Adequate Procedures' Defence (Six Principles) - **ID**: uk-bribery-act-2010-adequate-procedures - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Under Section 7 of the UK Bribery Act 2010, a commercial organisation faces strict liability for failing to prevent bribery by an associated person. The only defence is to prove that the organisation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-bribery-act-2010-adequate-procedures.json #### UK Bribery Act 2010 Section 1 - Offences of Bribing Another Person (Case 1 Inducement or Reward, Case 2 Knowledge of Improper Performance, Direct or Through Third Party, Strict Liability Within Cases) - **ID**: uk-bribery-act-2010-section-1-bribing-another-person - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 1 of the Bribery Act 2010 (c. 23) creates the active bribery offence - the offence of offering, promising, or giving a bribe to another person. Under section 1(1), a person 'P' is guilty if ei... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-bribery-act-2010-section-1-bribing-another-person.json #### UK Bribery Act 2010 Section 2 - Offences Relating to Being Bribed (Cases 3-6: Request, Agreement, Acceptance with Intent or Reward or Consequent Improper Performance) - **ID**: uk-bribery-act-2010-section-2-offence-of-being-bribed - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 2 of the Bribery Act 2010 (c. 23) creates the passive bribery offence - the offence of being bribed by another person, the counterpart to the section 1 active bribery offence. Section 2 establ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-bribery-act-2010-section-2-offence-of-being-bribed.json #### UK Bribery Act 2010 Section 6 - Bribery of Foreign Public Officials (FPO Definition, Intent to Influence in Official Capacity, Business Advantage Test, Written Law of Country Concerned, Public International Organisations) - **ID**: uk-bribery-act-2010-section-6-foreign-public-officials - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 6 of the Bribery Act 2010 (c. 23) creates a distinct offence of bribery of foreign public officials (FPOs) - a standalone offence with elements differing from the section 1 active bribery offe... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-bribery-act-2010-section-6-foreign-public-officials.json #### UK Bribery Act 2010 Section 7 - Failure of Commercial Organisations to Prevent Bribery (Strict Liability Corporate Offence, Associated Person Test, Adequate Procedures Defence) - **ID**: uk-bribery-act-2010-section-7-failure-prevent-bribery-corporate-offence - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 7 of the Bribery Act 2010 (c. 23) creates the foundational UK strict-liability corporate offence of failure of commercial organisations to prevent bribery - the model for all subsequent UK 'fa... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-bribery-act-2010-section-7-failure-prevent-bribery-corporate-offence.json #### UK Criminal Finances Act 2017 (c. 22): Unexplained Wealth Orders and Corporate Failure to Prevent the Facilitation of Tax Evasion - **ID**: uk-criminal-finances-act-2017 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Criminal Finances Act 2017 (c. 22) strengthens the United Kingdom's powers to recover the proceeds of crime, counter terrorist financing, and tackle money laundering, and creates new corporate cri... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-criminal-finances-act-2017.json #### UK Criminal Finances Act 2017 Section 45 - Failure to Prevent Facilitation of UK Tax Evasion (Strict Liability Corporate Offence, Reasonable Procedures Defence, Associated Person) - **ID**: uk-criminal-finances-act-2017-section-45-failure-prevent-uk-tax-evasion-facilitation - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 45 of the Criminal Finances Act 2017 (c. 22) creates the strict-liability corporate offence of failure to prevent facilitation of UK tax evasion - the second of the UK 'failure to prevent' cor... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-criminal-finances-act-2017-section-45-failure-prevent-uk-tax-evasion-facilitation.json #### UK Criminal Finances Act 2017 Section 46 - Failure to Prevent Facilitation of Foreign Tax Evasion (UK Nexus Conditions, Dual Criminality, Reasonable Procedures Defence) - **ID**: uk-criminal-finances-act-2017-section-46-failure-prevent-foreign-tax-evasion-facilitation - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 46 of the Criminal Finances Act 2017 (c. 22) creates the strict-liability corporate offence of failure to prevent facilitation of foreign tax evasion, complementing the domestic offence under ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-criminal-finances-act-2017-section-46-failure-prevent-foreign-tax-evasion-facilitation.json #### UK Economic Crime and Corporate Transparency Act 2023 (c. 56): Companies House Reform, Identity Verification and the Failure to Prevent Fraud Offence - **ID**: uk-economic-crime-corporate-transparency-act-2023 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Economic Crime and Corporate Transparency Act 2023 (c. 56) overhauls the United Kingdom's corporate transparency regime to bear down on the abuse of corporate structures for economic crime, reform... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-economic-crime-corporate-transparency-act-2023.json #### UK Fraud Act 2006 Section 11 - Obtaining Services Dishonestly (Services Available on Payment Basis, Dishonest Avoidance of Payment, Knowledge and Intent) - **ID**: uk-fraud-act-2006-section-11-obtaining-services-dishonestly - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 11 of the Fraud Act 2006 (c. 35) creates the offence of obtaining services dishonestly. The offence occurs when a person obtains services for himself or another by a dishonest act, the service... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fraud-act-2006-section-11-obtaining-services-dishonestly.json #### UK Fraud Act 2006 Section 3 - Fraud by Failing to Disclose Information (Legal Duty Threshold, Dishonest Failure, Intent to Gain or Cause Loss) - **ID**: uk-fraud-act-2006-section-3-fraud-by-failing-to-disclose - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 3 of the Fraud Act 2006 (c. 35) creates the offence of fraud by failing to disclose information. A person is in breach where he (a) dishonestly fails to disclose to another person information ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fraud-act-2006-section-3-fraud-by-failing-to-disclose.json #### UK Fraud Act 2006 Section 4 - Fraud by Abuse of Position (Position to Safeguard Financial Interests, Dishonest Abuse, Omission Sufficient) - **ID**: uk-fraud-act-2006-section-4-fraud-by-abuse-of-position - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 4 of the Fraud Act 2006 (c. 35) creates the offence of fraud by abuse of position. Under section 4(1), a person is in breach if he (a) occupies a position in which he is expected to safeguard,... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fraud-act-2006-section-4-fraud-by-abuse-of-position.json #### UK Fraud Act 2006 Section 6 - Possession Etc of Articles for Use in Frauds (Possession or Under Control of Any Article for Use in Course of or in Connection with Any Fraud) - **ID**: uk-fraud-act-2006-section-6-possession-of-articles-for-fraud - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 6 of the Fraud Act 2006 (c. 35) creates the offence of possession etc of articles for use in frauds. Under section 6(1), a person is guilty of an offence if he has in his possession or under h... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fraud-act-2006-section-6-possession-of-articles-for-fraud.json #### UK Modern Slavery Act 2015 Section 2 - Human Trafficking Offence (Arrangement/Facilitation of Travel for Exploitation, V Consent Irrelevant, Recruitment/Transportation/Harbouring/Exchange of Control, UK National Worldwide Jurisdiction, Non-UK National UK-Connected Conduct) - **ID**: uk-modern-slavery-act-2015-section-2-human-trafficking - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 2 of the Modern Slavery Act 2015 (c. 30) creates the criminal offence of human trafficking. Under section 2(1), a person commits an offence if the person arranges or facilitates the travel of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-modern-slavery-act-2015-section-2-human-trafficking.json #### UK Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017 - **ID**: uk-money-laundering-regulations-2017 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The UK Money Laundering Regulations 2017 (MLR 2017) transpose the EU Fourth Anti-Money Laundering Directive (4AMLD) into UK law and were amended by the 2019 Regulations to transpose 5AMLD. They impose... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-money-laundering-regulations-2017.json #### The Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017 (as amended) - **ID**: uk-money-laundering-regulations-2017-amended - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This regulation requires UK financial institutions, legal professionals, and other relevant persons to conduct firm-wide risk assessments (Regulation 18), apply customer due diligence (CDD) measures (... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-money-laundering-regulations-2017-amended.json #### United Kingdom Proceeds of Crime Act 2002 (POCA): Confiscation Orders, Civil Recovery of Proceeds of Unlawful Conduct, Cash Forfeiture, Restraint Orders, Money Laundering Offences (Concealing Arrangements Acquisition Use and Possession), Failure to Disclose in Regulated Sector, Tipping Off, and Authorised Disclosures - **ID**: uk-poca-proceeds-of-crime-act-2002 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Proceeds of Crime Act 2002 (POCA), chapter 29 of 2002, received Royal Assent on 24 July 2002 and is the principal United Kingdom statute providing for the confiscation and civil recovery of the pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-poca-proceeds-of-crime-act-2002.json #### Proceeds of Crime Act 2002, Part 7 - **ID**: uk-proceeds-crime-act-2002-part-7-money-laundering - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Organizations must navigate the legislative framework to identify the current in-force provisions of the Proceeds of Crime Act 2002, Part 7, while being aware of future changes and annotations. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-proceeds-crime-act-2002-part-7-money-laundering.json #### Proceeds of Crime Act 2002 (POCA) - Part 7: Money Laundering - **ID**: uk-proceeds-of-crime-act-2002-poca-aml - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The UK Proceeds of Crime Act 2002 (POCA) establishes the primary money laundering offences, including concealing, arranging, or acquiring criminal property (Sections 327-329), and mandates individuals... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-proceeds-of-crime-act-2002-poca-aml.json #### UK Proceeds of Crime Act 2002 Section 327 - Concealing etc Criminal Property (Concealment, Disguise, Conversion, Transfer, Removal from UK) - **ID**: uk-proceeds-of-crime-act-2002-section-327-concealing-criminal-property - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 327 of the Proceeds of Crime Act 2002 (c. 29) is the first of the three principal UK money laundering offences (sections 327-329) and operates as the primary statutory tool for prosecuting con... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-proceeds-of-crime-act-2002-section-327-concealing-criminal-property.json #### UK Proceeds of Crime Act 2002 Section 328 - Arrangements (Enters Into or Becomes Concerned, Acquisition Retention Use Control of Criminal Property by Another) - **ID**: uk-proceeds-of-crime-act-2002-section-328-arrangements-money-laundering - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 328 of the Proceeds of Crime Act 2002 (c. 29) is the second of the three principal UK money laundering offences. Under section 328(1), a person commits an offence if he enters into or becomes ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-proceeds-of-crime-act-2002-section-328-arrangements-money-laundering.json #### UK Proceeds of Crime Act 2002 Section 329 - Acquisition Use and Possession of Criminal Property (Adequate Consideration Defence, Authorised Disclosure) - **ID**: uk-proceeds-of-crime-act-2002-section-329-acquisition-use-possession - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 329 of the Proceeds of Crime Act 2002 (c. 29) is the third of the three principal UK money laundering offences and operates as the catch-all for prosecuting acquisition, use, or possession of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-proceeds-of-crime-act-2002-section-329-acquisition-use-possession.json #### UK Proceeds of Crime Act 2002 Section 330 - Failure to Disclose: Regulated Sector (Knowledge or Suspicion Threshold, Information in the Course of Business, NCA SAR Filing Duty, Training Defence) - **ID**: uk-proceeds-of-crime-act-2002-section-330-failure-to-disclose-regulated-sector - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 330 of the Proceeds of Crime Act 2002 (c. 29) imposes a positive disclosure duty on persons in the regulated sector to report knowledge or suspicion of money laundering to the National Crime A... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-proceeds-of-crime-act-2002-section-330-failure-to-disclose-regulated-sector.json #### UK Proceeds of Crime Act 2002 Section 333A - Tipping Off Regulated Sector (Prejudice to Investigation, Disclosure of SAR Filing, Permitted Carve-outs sections 333B-D) - **ID**: uk-proceeds-of-crime-act-2002-section-333a-tipping-off-regulated-sector - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 333A of the Proceeds of Crime Act 2002 (c. 29) creates the regulated-sector tipping-off offence and operates as the companion prohibition to the section 330/331/332 disclosure duty. Under sect... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-proceeds-of-crime-act-2002-section-333a-tipping-off-regulated-sector.json #### UK Sanctions and Anti-Money Laundering Act 2018 - **ID**: uk-samla-2018-sanctions-anti-money-laundering-act - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The UK Sanctions and Anti-Money Laundering Act 2018 (SAMLA) provides post-Brexit UK statutory authority for autonomous sanctions regimes and anti-money laundering regulations. Part 1 empowers the Secr... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-samla-2018-sanctions-anti-money-laundering-act.json #### UK Sanctions and Anti-Money Laundering Act 2018 (c. 13): Post-Brexit Powers to Make Sanctions and Money Laundering Regulations - **ID**: uk-sanctions-and-anti-money-laundering-act-2018 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Sanctions and Anti-Money Laundering Act 2018 (c. 13) is the United Kingdom's primary post-Brexit statutory framework for imposing and administering sanctions and for making money laundering and te... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sanctions-and-anti-money-laundering-act-2018.json #### Sanctions and Anti-Money Laundering Act 2018 - **ID**: uk-sanctions-anti-money-laundering-act-2018 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Sanctions and Anti-Money Laundering Act 2018 (SAMLA) empowers the UK government to impose and enforce autonomous sanctions regimes post-Brexit, including financial, trade, shipping, and immigratio... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sanctions-anti-money-laundering-act-2018.json #### UK Terrorism Act 2000 Section 15 - Terrorist Fund-Raising (Invitation, Receipt, Provision of Money or Property, Reasonable Cause to Suspect Test) - **ID**: uk-terrorism-act-2000-section-15-terrorist-fund-raising - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 15 of the Terrorism Act 2000 (c. 11) creates the primary UK terrorist financing offence and operates as the legal foundation for the UK Counter-Terrorist Financing (CTF) regime, the National C... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-terrorism-act-2000-section-15-terrorist-fund-raising.json #### UK Theft Act 1968 Section 1 - Basic Definition of Theft (Dishonest Appropriation, Property Belonging to Another, Intention to Permanently Deprive) - **ID**: uk-theft-act-1968-section-1-basic-definition-theft - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 1 of the Theft Act 1968 (c. 60) provides the foundational UK criminal definition of theft. Under section 1(1), a person is guilty of theft if he dishonestly appropriates property belonging to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-theft-act-1968-section-1-basic-definition-theft.json #### United Nations Security Council Consolidated Sanctions List - Article 41 Charter Measures, 1267 / 1989 / 2253 ISIL and Al-Qaida, 1718 DPRK, 2231 Iran, 1988 Taliban Frameworks - **ID**: un-sc-consolidated-sanctions-list-1267-2253-1718-2231 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The United Nations Security Council Consolidated Sanctions List is the aggregated list of individuals, entities, vessels and other targets subject to UN Security Council sanctions measures adopted und... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-sc-consolidated-sanctions-list-1267-2253-1718-2231.json #### US Title 18 - 18 USC 1014 Loan and Credit Applications Generally; Renewals and Discounts; Crop Insurance (False Statements) - **ID**: us-18-usc-1014-false-statements-loan-credit-applications - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 18 USC 1014 titled 'Loan and credit applications generally; renewals and discounts; crop insurance' is the principal federal criminal statute prohibiting false statements made to influence the action ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1014-false-statements-loan-credit-applications.json #### US Title 18 - 18 USC 1029 Fraud and Related Activity in Connection with Access Devices - **ID**: us-18-usc-1029-fraud-access-devices - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 18 USC 1029 titled 'Fraud and related activity in connection with access devices' is the principal federal criminal statute addressing payment card fraud, unauthorized access device trafficking, and d... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1029-fraud-access-devices.json #### US Title 18 - 18 USC 1031 Major Fraud Against the United States - **ID**: us-18-usc-1031-major-fraud-against-united-states - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 18 USC 1031 titled 'Major fraud against the United States' is the federal criminal statute targeting large-scale fraud in federal procurement, contracts, grants, loans, and similar federal economic re... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1031-major-fraud-against-united-states.json #### US Federal Criminal Code - 18 USC 1341 Frauds and Swindles (Mail Fraud) - **ID**: us-18-usc-1341-mail-fraud - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 18 USC 1341 is the federal mail fraud statute, one of the broadest federal criminal statutes by reach and one of the most heavily-charged federal offenses. The statute provides: whoever, having devise... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1341-mail-fraud.json #### US Federal Criminal Code - 18 USC 1343 Fraud by Wire, Radio, or Television (Wire Fraud) - **ID**: us-18-usc-1343-wire-fraud - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 18 USC 1343 is the federal wire fraud statute, enacted in 1952 as the electronic analogue of 18 USC 1341 (mail fraud), and is now one of the most heavily-charged federal offenses, reaching virtually a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1343-wire-fraud.json #### US Title 18 - 18 USC 1344 Bank Fraud - **ID**: us-18-usc-1344-bank-fraud - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 18 USC 1344 titled 'Bank fraud' is the federal criminal statute that prohibits schemes or artifices to defraud financial institutions or to obtain by false or fraudulent pretenses any moneys or proper... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1344-bank-fraud.json #### US Federal Criminal Code - 18 USC 1951 Hobbs Act (Interference With Commerce by Threats or Violence) - **ID**: us-18-usc-1951-hobbs-act-interference-commerce - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 18 USC 1951 is the Hobbs Act, the principal federal statute criminalizing robbery and extortion that affects interstate or foreign commerce. Subsection (a) provides: whoever in any way or degree obstr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1951-hobbs-act-interference-commerce.json #### US Federal Criminal Code - 18 USC 1952 Interstate and Foreign Travel or Transportation in Aid of Racketeering Enterprises (Travel Act) - **ID**: us-18-usc-1952-travel-act-interstate-aid-of-racketeering - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 18 USC 1952 is the Travel Act, enacted in 1961 to give federal jurisdiction over enumerated unlawful activities when interstate or foreign travel or transportation is used in their commission. Subsect... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1952-travel-act-interstate-aid-of-racketeering.json #### US Money Laundering Control Act - 18 USC 1956 Laundering of Monetary Instruments - **ID**: us-18-usc-1956-money-laundering-monetary-instruments - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 18 USC 1956 is the principal federal money laundering criminal statute. Subsection (a)(1) makes it a felony for any person who, knowing that the property involved in a financial transaction represents... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1956-money-laundering-monetary-instruments.json #### US Title 18 - 18 USC 1957 Engaging in Monetary Transactions in Property Derived from Specified Unlawful Activity - **ID**: us-18-usc-1957-monetary-transactions-criminally-derived-property - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 18 USC 1957 titled 'Engaging in monetary transactions in property derived from specified unlawful activity' is the companion federal money-laundering offense to 18 USC 1956, criminalizing the act of e... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1957-monetary-transactions-criminally-derived-property.json #### US Money Laundering Control Act - 18 USC 1960 Prohibition of Unlicensed Money Transmitting Businesses - **ID**: us-18-usc-1960-unlicensed-money-transmitting-business - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 18 USC 1960 is the federal criminal statute prohibiting unlicensed money transmitting businesses, frequently charged against operators of cryptocurrency exchanges, payment processors, and informal val... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1960-unlicensed-money-transmitting-business.json #### US Internal Revenue Code - 26 USC 6050I Returns Relating to Cash Received in Trade or Business (Form 8300 Reporting) - **ID**: us-26-usc-6050i-cash-receipts-over-10000-trade-or-business - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 26 USC 6050I titled 'Returns relating to cash received in trade or business, etc.' is the principal Internal Revenue Code provision requiring any person engaged in a trade or business who, in the cour... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-26-usc-6050i-cash-receipts-over-10000-trade-or-business.json #### US 31 CFR Chapter X: Financial Crimes Enforcement Network (FinCEN) Regulations - **ID**: us-31-cfr-chapter-x-fincen-bsa-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: US 31 CFR Chapter X contains the FinCEN regulations implementing the Bank Secrecy Act. The chapter is organised by financial institution type: banks (Part 1020), brokers/dealers (1023), futures commis... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-chapter-x-fincen-bsa-regulations.json #### US 31 CFR Part 1010: General Provisions (FinCEN Bank Secrecy Act) - **ID**: us-31-cfr-part-1010-fincen-bsa-general-provisions - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: US 31 CFR Part 1010 contains the general provisions implementing the Bank Secrecy Act (BSA) that apply across all financial institution categories regulated by FinCEN including banks, money services b... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-1010-fincen-bsa-general-provisions.json #### US 31 CFR Part 1020: Rules for Banks (FinCEN BSA) - **ID**: us-31-cfr-part-1020-fincen-banks-bsa - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: US 31 CFR Part 1020 contains BSA rules specific to banks including the Anti-Money Laundering Program rule requiring banks to develop, implement, and maintain a written AML program with the five pillar... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-1020-fincen-banks-bsa.json #### US 31 CFR Part 501: Reporting Procedures and Penalties Regulations (OFAC) - **ID**: us-31-cfr-part-501-ofac-reporting-procedures - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: US 31 CFR Part 501 establishes the reporting, procedures, and penalties framework applicable to OFAC sanctions programs including Specially Designated Nationals (SDN) List, Sectoral Sanctions Identifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-501-ofac-reporting-procedures.json #### 31 USC §§ 5311 + 5318 - Bank Secrecy Act Purpose + AML Program Four Pillars - **ID**: us-31-usc-5311-5318-bank-secrecy-act-aml-program - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 USC §§ 5311 (Declaration of Purpose) and 5318 (Compliance Program Requirements) form the substantive heart of the Bank Secrecy Act (Pub. L. 91-508, signed 26 October 1970, as substantially revised ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-usc-5311-5318-bank-secrecy-act-aml-program.json #### US Bank Secrecy Act - 31 USC 5331 Reports Relating to Coins and Currency Received in Nonfinancial Trade or Business - **ID**: us-31-usc-5331-nonfinancial-trade-business-currency-reports - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 USC 5331 titled 'Reports relating to coins and currency received in nonfinancial trade or business' is the Bank Secrecy Act provision requiring nonfinancial trades or businesses to report large cas... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-usc-5331-nonfinancial-trade-business-currency-reports.json #### US Anti-Money Laundering Act of 2020 (AMLA 2020) - NDAA FY 2021 Division F - Bank Secrecy Act Modernization and Corporate Transparency Act - **ID**: us-aml-act-2020-anti-money-laundering-act-ndaa-fy-2021-division-f - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Anti-Money Laundering Act of 2020 (AMLA 2020) is Division F of the National Defense Authorization Act for Fiscal Year 2021 (Pub. L. 116-283), enacted over presidential veto on 1 January 2021. AMLA... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-aml-act-2020-anti-money-laundering-act-ndaa-fy-2021-division-f.json #### Anti-Money Laundering Act of 2020 (AMLA 2020) - **ID**: us-anti-money-laundering-act-2020 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The AMLA 2020 significantly amends the Bank Secrecy Act (BSA) to strengthen the U.S. anti-money laundering framework. It mandates the creation of a national beneficial ownership registry for certain l... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-anti-money-laundering-act-2020.json #### US Bank Secrecy Act (31 USC ch 53 subch II): Currency Transaction Reports, AML Programs and Anti-Structuring - **ID**: us-bank-secrecy-act - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Bank Secrecy Act (31 U.S.C. ch. 53, subchapter II) is the foundational US anti-money-laundering statute, administered by the Financial Crimes Enforcement Network (FinCEN) within the Department of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bank-secrecy-act.json #### US Bank Secrecy Act 1970 -- AML Programme Requirements and Financial Intelligence Reporting - **ID**: us-bank-secrecy-act-1970 - **Category**: Financial Crime, AML & Sanctions - **Version**: 2024.1.0 - **BLUF**: The Bank Secrecy Act 1970 (31 USC 5311-5336), administered by the Financial Crimes Enforcement Network (FinCEN), requires financial institutions to maintain anti-money laundering (AML) programmes with... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bank-secrecy-act-1970.json #### US Bank Secrecy Act (BSA) 31 CFR Chapter X - Financial Institution AML Programme Requirements: Suspicious Activity Reports (SARs), Currency Transaction Reports (CTRs), Customer Identification Programme and FBAR - **ID**: us-bank-secrecy-act-31-cfr-1010-aml - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Bank Secrecy Act (BSA), codified under 31 CFR Chapter X, mandates that U.S. financial institutions establish comprehensive anti-money laundering (AML) programs to prevent financial crimes. This in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bank-secrecy-act-31-cfr-1010-aml.json #### US Bank Secrecy Act - 31 CFR Part 1010 FinCEN AML Currency Transaction & SAR Reporting - **ID**: us-bank-secrecy-act-31-cfr-1010-fincen-aml-ctr - **Category**: Financial Crime, AML & Sanctions - **Version**: 2.0 - **BLUF**: The Bank Secrecy Act (31 USC 5311) requires financial institutions to file Currency Transaction Reports (CTRs) for cash transactions over $10,000, Suspicious Activity Reports (SARs) within 30 days of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bank-secrecy-act-31-cfr-1010-fincen-aml-ctr.json #### US Bank Secrecy Act - 31 USC §§ 5311-5314 (Reports of Currency and Foreign Transactions) - **ID**: us-bsa-31-usc-5311-5314-bank-secrecy-act - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The US Bank Secrecy Act at 31 USC 5311 to 5314 establishes the statutory framework for the federal anti-money laundering regime administered by FinCEN. The provisions declare the policy of reporting c... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bsa-31-usc-5311-5314-bank-secrecy-act.json #### US Bank Secrecy Act: Anti-Money Laundering Recordkeeping and Reporting Requirements - **ID**: us-bsa-bank-secrecy-act-31-usc-5311 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Bank Secrecy Act establishes anti-money laundering recordkeeping and reporting obligations for financial institutions in the United States. It requires institutions to file reports for certain tra... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bsa-bank-secrecy-act-31-usc-5311.json #### 31 CFR Part 1020 - Rules for Banks - **ID**: us-cfr-31-part-1020-bank-secrecy-act-banks - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This regulation establishes comprehensive anti-money laundering (AML) program, customer identification, record-keeping, and reporting requirements for banks to deter and detect money laundering and te... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfr-31-part-1020-bank-secrecy-act-banks.json #### Corporate Transparency Act 2020 - 31 USC 5336 Beneficial Ownership Reporting - **ID**: us-corporate-transparency-act-2020-31-usc-5336 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 5336 of title 31 of the United States Code, the Corporate Transparency Act of 2020 (CTA, Title LXIV of the National Defense Authorization Act for Fiscal Year 2021, Public Law 116-283 enacted 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-corporate-transparency-act-2020-31-usc-5336.json #### US FBAR - FinCEN 114 Foreign Bank Account Report & 31 CFR 1010.350 Filing Requirements - **ID**: us-fbar-fincen-114-foreign-bank-account-report-31-cfr-1010 - **Category**: Financial Crime, AML & Sanctions - **Version**: 2.0 - **BLUF**: FinCEN Form 114 (FBAR) requires US persons with a financial interest in or signature authority over foreign bank accounts with aggregate value exceeding $10,000 to file annually by April 15 (6-month a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fbar-fincen-114-foreign-bank-account-report-31-cfr-1010.json #### US FBAR - FinCEN Form 114 Foreign Bank Account Reporting (Bank Secrecy Act) - **ID**: us-fbar-fincen-114-foreign-bank-accounts - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: US persons (citizens, residents, and entities) with financial interest in or signature authority over foreign financial accounts totalling more than USD 10,000 at any point during the calendar year mu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fbar-fincen-114-foreign-bank-accounts.json #### 15 U.S. Code § 78dd-1 - Prohibited foreign trade practices by issuers - **ID**: us-fcpa-15-usc-78dd-1-anti-bribery-provisions-issuers - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Prohibits issuers, their officers, directors, employees, agents, or stockholders from corruptly offering or giving anything of value to foreign officials, political parties, or candidates to obtain or... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcpa-15-usc-78dd-1-anti-bribery-provisions-issuers.json #### 15 U.S. Code § 78m - Periodical and other reports - **ID**: us-fcpa-15-usc-78m-books-records-accounting-requirements - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Issuers of registered securities must file periodical reports with the SEC, maintain accurate books and records, and devise a system of internal accounting controls to ensure authorized transactions a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcpa-15-usc-78m-books-records-accounting-requirements.json #### Foreign Corrupt Practices Act of 1977 (FCPA): Anti-Bribery and Books & Records Provisions - **ID**: us-fcpa-foreign-corrupt-practices-act-1977 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The FCPA prohibits U.S. persons and entities from offering, paying, or promising anything of value to foreign officials to obtain or retain business (15 U.S.C. §§ 78dd-1, et seq.). It also mandates th... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcpa-foreign-corrupt-practices-act-1977.json #### Beneficial Ownership Information (BOI) Reporting Rule (31 CFR § 1010.380) under the Corporate Transparency Act (CTA) - **ID**: us-fincen-beneficial-ownership-boi-rule-2024 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This rule, under the Corporate Transparency Act, requires most corporations, LLCs, and other similar entities created in or registered to do business in the United States to report information about t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fincen-beneficial-ownership-boi-rule-2024.json #### 31 CFR Part 1022 - Rules for Money Services Businesses - **ID**: us-fincen-cfr-31-part-1022-money-services-businesses - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This regulation establishes comprehensive anti-money laundering (AML) program, recordkeeping, reporting, and registration requirements for Money Services Businesses (MSBs). - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fincen-cfr-31-part-1022-money-services-businesses.json #### US FinCEN Investment Adviser AML/CFT Final Rule - Application of Bank Secrecy Act to Investment Advisers, Compliance Date 1 January 2026 - **ID**: us-fincen-investment-adviser-aml-final-rule-2024 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: SEC-registered investment advisers (RIAs) and exempt reporting advisers (ERAs) subject to the Financial Crimes Enforcement Network (FinCEN) final rule (89 FR 72156, 4 September 2024) applying the Bank... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fincen-investment-adviser-aml-final-rule-2024.json #### US FTC Safeguards Rule 16 CFR Part 314 - Financial Institutions Information Security Program with 30 Day Notification Amendment, Effective 13 May 2024 - **ID**: us-ftc-safeguards-rule-16-cfr-314-2024-amendments - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Non-bank financial institutions subject to the Federal Trade Commission's Standards for Safeguarding Customer Information (Safeguards Rule, 16 CFR Part 314) under Gramm-Leach-Bliley Act section 501(b)... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-safeguards-rule-16-cfr-314-2024-amendments.json #### Hobbs Act 1946 - 18 USC 1951 Interference with Commerce by Threats or Violence - **ID**: us-hobbs-act-18-usc-1951 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 1951 of title 18 of the United States Code, commonly known as the Hobbs Act, criminalises any obstruction, delay, or affect on commerce by robbery or extortion, and any conspiracy to do so or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hobbs-act-18-usc-1951.json #### US Foreign Narcotics Kingpin Designation Act (21 USC 1901) - Sanctions on Significant Foreign Narcotics Traffickers - **ID**: us-kingpin-act-1999-21-usc-1901 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Foreign Narcotics Kingpin Designation Act authorises the President to designate foreign individuals and entities as significant foreign narcotics traffickers playing a significant role in internat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-kingpin-act-1999-21-usc-1901.json #### Mail Fraud - 18 USC 1341 Frauds and Swindles by Postal or Private Carrier - **ID**: us-mail-fraud-18-usc-1341 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 1341 of title 18 of the United States Code criminalises any scheme or artifice to defraud or to obtain money or property by means of false or fraudulent pretenses, representations, or promises... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-mail-fraud-18-usc-1341.json #### Money Laundering Control Act 1986 - 18 USC 1956 Laundering of Monetary Instruments - **ID**: us-money-laundering-control-act-18-usc-1956 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 1956 of title 18 of the United States Code criminalises the laundering of monetary instruments where the proceeds derive from a specified unlawful activity (SUA). Enacted as section 1352(a) of... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-money-laundering-control-act-18-usc-1956.json #### 31 CFR Part 510 (North Korea Sanctions Regulations) - OFAC Blocking, Trade Prohibitions and Reporting - **ID**: us-ofac-31-cfr-510-north-korea-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 510, the North Korea Sanctions Regulations, implements the U.S. sanctions on North Korea administered by the Office of Foreign Assets Control under a series of Executive Orders and the Nor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-510-north-korea-sanctions-regulations.json #### 31 CFR Part 515 (Cuban Assets Control Regulations) - OFAC Cuba Embargo, Travel and Remittances - **ID**: us-ofac-31-cfr-515-cuban-assets-control-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 515, the Cuban Assets Control Regulations, administers the comprehensive U.S. embargo on Cuba through the Office of Foreign Assets Control under the Trading With the Enemy Act and later Cu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-515-cuban-assets-control-regulations.json #### 31 CFR Part 525 (Burma Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-525-burma-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 525, the Burma Sanctions Regulations, implements the U.S. sanctions on Burma (Myanmar) administered by the Office of Foreign Assets Control under Executive Order 14014 (86 FR 9429). All pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-525-burma-sanctions-regulations.json #### 31 CFR Part 526 (Hostages and Wrongful Detention Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-526-hostages-wrongful-detention-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 526, the Hostages and Wrongful Detention Sanctions Regulations, implements the U.S. sanctions addressing hostage-taking and the wrongful detention of United States nationals abroad adminis... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-526-hostages-wrongful-detention-sanctions-regulations.json #### 31 CFR Part 528 (International Criminal Court-Related Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-528-international-criminal-court-related-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 528, the International Criminal Court-Related Sanctions Regulations, implements the U.S. sanctions with respect to the International Criminal Court administered by the Office of Foreign As... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-528-international-criminal-court-related-sanctions-regulations.json #### 31 CFR Part 536 (Narcotics Trafficking Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-536-narcotics-trafficking-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 536, the Narcotics Trafficking Sanctions Regulations, implements the U.S. sanctions targeting significant foreign narcotics traffickers centered in Colombia administered by the Office of F... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-536-narcotics-trafficking-sanctions-regulations.json #### 31 CFR Part 546 (Sudan Stabilization Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-546-sudan-stabilization-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 546, the Sudan Stabilization Sanctions Regulations, implements the U.S. sanctions on Sudan administered by the Office of Foreign Assets Control under Executive Order 13067 (62 FR 59989), E... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-546-sudan-stabilization-sanctions-regulations.json #### 31 CFR Part 547 (Democratic Republic of the Congo Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-547-democratic-republic-congo-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 547, the Democratic Republic of the Congo Sanctions Regulations, implements the U.S. sanctions with respect to the Democratic Republic of the Congo administered by the Office of Foreign As... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-547-democratic-republic-congo-sanctions-regulations.json #### 31 CFR Part 548 (Belarus Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-548-belarus-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 548, the Belarus Sanctions Regulations, implements the U.S. sanctions on Belarus administered by the Office of Foreign Assets Control under Executive Order 13405 and Executive Order 14038.... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-548-belarus-sanctions-regulations.json #### 31 CFR Part 549 (Lebanon Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-549-lebanon-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 549, the Lebanon Sanctions Regulations, implements the U.S. sanctions with respect to Lebanon administered by the Office of Foreign Assets Control under Executive Order 13441 (72 FR 43499)... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-549-lebanon-sanctions-regulations.json #### 31 CFR Part 550 (Ethiopia Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-550-ethiopia-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 550, the Ethiopia Sanctions Regulations, implements the U.S. sanctions with respect to the conflict in Ethiopia administered by the Office of Foreign Assets Control under Executive Order 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-550-ethiopia-sanctions-regulations.json #### 31 CFR Part 551 (Somalia Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-551-somalia-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 551, the Somalia Sanctions Regulations, implements the U.S. sanctions with respect to Somalia administered by the Office of Foreign Assets Control under Executive Order 13536 (75 FR 19869)... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-551-somalia-sanctions-regulations.json #### 31 CFR Part 552 (Yemen Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-552-yemen-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 552, the Yemen Sanctions Regulations, implements the U.S. sanctions with respect to Yemen administered by the Office of Foreign Assets Control under Executive Order 13611 (77 FR 29533). Al... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-552-yemen-sanctions-regulations.json #### 31 CFR Part 553 (Central African Republic Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-553-central-african-republic-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 553, the Central African Republic Sanctions Regulations, implements the U.S. sanctions with respect to the Central African Republic administered by the Office of Foreign Assets Control und... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-553-central-african-republic-sanctions-regulations.json #### 31 CFR Part 555 (Mali Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-555-mali-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 555, the Mali Sanctions Regulations, implements the U.S. sanctions with respect to Mali administered by the Office of Foreign Assets Control under Executive Order 13882 (84 FR 37055). All ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-555-mali-sanctions-regulations.json #### 31 CFR Part 558 (South Sudan Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-558-south-sudan-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 558, the South Sudan Sanctions Regulations, implements the U.S. sanctions with respect to South Sudan administered by the Office of Foreign Assets Control under Executive Order 13664 (79 F... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-558-south-sudan-sanctions-regulations.json #### 31 CFR Part 562 (Iranian Sector and Human Rights Abuses Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-562-iranian-sector-human-rights-abuses-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 562, the Iranian Sector and Human Rights Abuses Sanctions Regulations, implements the U.S. sanctions targeting the Iranian financial sector and human rights abuses by the Government of Ira... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-562-iranian-sector-human-rights-abuses-sanctions-regulations.json #### 31 CFR Part 566 (Hizballah Financial Sanctions Regulations) - OFAC Correspondent Account Restrictions, Licensing and Reporting - **ID**: us-ofac-31-cfr-566-hizballah-financial-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 566, the Hizballah Financial Sanctions Regulations, implements the Hizballah International Financing Prevention Act of 2015 as amended, administered by the Office of Foreign Assets Control... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-566-hizballah-financial-sanctions-regulations.json #### 31 CFR Part 569 (Promoting Accountability for Assad and Regional Stabilization Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-569-promoting-accountability-assad-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 569, the Promoting Accountability for Assad and Regional Stabilization Sanctions Regulations, implements the U.S. sanctions with respect to Syria, promoting accountability for the Assad re... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-569-promoting-accountability-assad-sanctions-regulations.json #### 31 CFR Part 570 (Libyan Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-570-libyan-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 570, the Libyan Sanctions Regulations, implements the U.S. sanctions with respect to Libya administered by the Office of Foreign Assets Control under Executive Order 13566 (76 FR 11315) an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-570-libyan-sanctions-regulations.json #### 31 CFR Part 576 (Iraq Stabilization and Insurgency Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-576-iraq-stabilization-insurgency-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 576, the Iraq Stabilization and Insurgency Sanctions Regulations, implements the U.S. sanctions with respect to the stabilization of Iraq administered by the Office of Foreign Assets Contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-576-iraq-stabilization-insurgency-sanctions-regulations.json #### 31 CFR Part 578 (Cyber-Related Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-578-cyber-related-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 578, the Cyber-Related Sanctions Regulations, implements the U.S. sanctions targeting significant malicious cyber-enabled activities, administered by the Office of Foreign Assets Control u... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-578-cyber-related-sanctions-regulations.json #### 31 CFR Part 579 (Foreign Interference in U.S. Elections Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-579-foreign-interference-us-elections-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 579, the Foreign Interference in U.S. Elections Sanctions Regulations, implements the U.S. sanctions addressing foreign interference in a United States election administered by the Office ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-579-foreign-interference-us-elections-sanctions-regulations.json #### 31 CFR Part 582 (Nicaragua Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-582-nicaragua-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 582, the Nicaragua Sanctions Regulations, implements the U.S. sanctions with respect to Nicaragua administered by the Office of Foreign Assets Control under Executive Order 13851 (83 FR 61... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-582-nicaragua-sanctions-regulations.json #### 31 CFR Part 585 (Hong Kong-Related Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-585-hong-kong-related-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 585, the Hong Kong-Related Sanctions Regulations, implements the U.S. sanctions with respect to Hong Kong administered by the Office of Foreign Assets Control under Executive Order 13936 (... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-585-hong-kong-related-sanctions-regulations.json #### 31 CFR Part 586 (Chinese Military-Industrial Complex Sanctions Regulations) - OFAC Securities Investment Prohibitions, Licensing and Reporting - **ID**: us-ofac-31-cfr-586-chinese-military-industrial-complex-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 586, the Chinese Military-Industrial Complex Sanctions Regulations, implements Executive Order 13959 as amended by Executive Order 14032, administered by the Office of Foreign Assets Contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-586-chinese-military-industrial-complex-sanctions-regulations.json #### 31 CFR Part 588 (Western Balkans Stabilization Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-588-western-balkans-stabilization-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 588, the Western Balkans Stabilization Regulations, implements the U.S. sanctions with respect to the Western Balkans administered by the Office of Foreign Assets Control under Executive O... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-588-western-balkans-stabilization-regulations.json #### 31 CFR Part 589 (Ukraine-/Russia-Related Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-589-ukraine-russia-related-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 589, the Ukraine-/Russia-Related Sanctions Regulations, implements the U.S. sanctions with respect to the situation in and in relation to Ukraine, including Russia-related sanctions admini... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-589-ukraine-russia-related-sanctions-regulations.json #### 31 CFR Part 590 (Transnational Criminal Organizations Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-590-transnational-criminal-organizations-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 590, the Transnational Criminal Organizations Sanctions Regulations, implements the U.S. sanctions targeting significant transnational criminal organizations, administered by the Office of... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-590-transnational-criminal-organizations-sanctions-regulations.json #### 31 CFR Part 591 (Venezuela Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-591-venezuela-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 591, the Venezuela Sanctions Regulations, implements the U.S. sanctions on Venezuela administered by the Office of Foreign Assets Control under a series of Executive Orders, including the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-591-venezuela-sanctions-regulations.json #### 31 CFR Part 592 (Rough Diamonds Control Regulations) - OFAC Kimberley Process Import and Export Controls - **ID**: us-ofac-31-cfr-592-rough-diamonds-control-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 592, the Rough Diamonds Control Regulations, implements the Clean Diamond Trade Act and Executive Order 13312, administered by the Office of Foreign Assets Control to give effect in the Un... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-592-rough-diamonds-control-regulations.json #### 31 CFR Part 597 (Foreign Terrorist Organizations Sanctions Regulations) - OFAC Blocking, Material Support and Reporting - **ID**: us-ofac-31-cfr-597-foreign-terrorist-organizations-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 597, the Foreign Terrorist Organizations Sanctions Regulations, implements the blocking provisions tied to the designation of foreign terrorist organizations under section 219 of the Immig... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-597-foreign-terrorist-organizations-sanctions-regulations.json #### 31 CFR Part 598 (Foreign Narcotics Kingpin Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-598-foreign-narcotics-kingpin-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 598, the Foreign Narcotics Kingpin Sanctions Regulations, implements the Foreign Narcotics Kingpin Designation Act, administered by the Office of Foreign Assets Control. All property and i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-598-foreign-narcotics-kingpin-sanctions-regulations.json #### 31 CFR Part 599 (Illicit Drug Trade Sanctions Regulations) - OFAC Blocking, Licensing and Reporting - **ID**: us-ofac-31-cfr-599-illicit-drug-trade-sanctions-regulations - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 599, the Illicit Drug Trade Sanctions Regulations, implements the U.S. sanctions targeting the international illicit drug trade administered by the Office of Foreign Assets Control under E... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-31-cfr-599-illicit-drug-trade-sanctions-regulations.json #### US OFAC Economic Sanctions Compliance - SDN List, 50% Rule & Civil Penalties - **ID**: us-ofac-economic-sanctions-compliance-31-cfr-500 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.1 - **BLUF**: The US Office of Foreign Assets Control (OFAC) administers economic sanctions programs under 31 CFR Parts 500-599. All US persons (including foreign branches of US banks and US-owned/controlled foreig... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-economic-sanctions-compliance-31-cfr-500.json #### US OFAC Global Magnitsky Sanctions - 31 CFR Part 583 Blocking and Reporting Obligations Under Executive Order 13818 and the Global Magnitsky Human Rights Accountability Act - **ID**: us-ofac-glomag-magnitsky-sanctions - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Global Magnitsky Human Rights Accountability Act (Public Law 114-328, subtitle F of title XII of the National Defense Authorization Act for Fiscal Year 2017, 22 U.S.C. 10101 et seq.) authorizes sa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-glomag-magnitsky-sanctions.json #### US OFAC Iranian Financial Sanctions Regulations (IFSR) - 31 CFR Part 561 Correspondent and Payable-Through Account Restrictions Under CISADA and NDAA - **ID**: us-ofac-ifsr-iran-financial-sanctions - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Iranian Financial Sanctions Regulations (IFSR) at 31 CFR Part 561 implement secondary sanctions against foreign financial institutions that knowingly facilitate certain activities involving Iran. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-ifsr-iran-financial-sanctions.json #### US OFAC Weapons of Mass Destruction Proliferators Sanctions (NPWMD) - 31 CFR Part 544 Blocking and Reporting Obligations Under Executive Order 13382 - **ID**: us-ofac-npwmd-wmd-proliferators-sanctions - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Executive Order 13382 of June 28, 2005 (Blocking Property of Weapons of Mass Destruction Proliferators and Their Supporters) declared a national emergency under the International Emergency Economic Po... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-npwmd-wmd-proliferators-sanctions.json #### US OFAC Russian Harmful Foreign Activities Sanctions - 31 CFR Part 587 Blocking, Designation Screening and Reporting Obligations Under Executive Order 14024 - **ID**: us-ofac-russia-eo14024-sanctions - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Executive Order 14024 of April 15, 2021 (Blocking Property With Respect To Specified Harmful Foreign Activities of the Government of the Russian Federation) declared a national emergency under the Int... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-russia-eo14024-sanctions.json #### A Framework for OFAC Compliance Commitments - **ID**: us-ofac-sanctions-compliance-programme-2019 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This framework from the U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) outlines the five essential components of a risk-based sanctions compliance program (SCP): management ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-sanctions-compliance-programme-2019.json #### US OFAC Economic Sanctions Programmes and Specially Designated Nationals (SDN) List Screening - **ID**: us-ofac-sanctions-programmes-executive-orders - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: U.S. persons and entities are strictly prohibited from engaging in virtually all transactions or dealings with individuals, entities, and governments designated on the Office of Foreign Assets Control... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-sanctions-programmes-executive-orders.json #### US OFAC Specially Designated Global Terrorist (SDGT) Sanctions - 31 CFR Part 594 Blocking and Reporting Obligations Under Executive Order 13224 - **ID**: us-ofac-sdgt-global-terrorism-sanctions - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Executive Order 13224 of September 23, 2001 (Blocking Property and Prohibiting Transactions With Persons Who Commit, Threaten To Commit, or Support Terrorism) declared a national emergency under the I... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-sdgt-global-terrorism-sanctions.json #### US OFAC Specially Designated Nationals (SDN) List, the 50 Percent Rule and Blocking of Property under IEEPA and 31 CFR Chap. V (Subchapter B) - **ID**: us-ofac-sdn-list-50-percent-rule-blocking-property - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Office of Foreign Assets Control (OFAC) of the US Department of the Treasury administers and enforces US economic and trade sanctions based on US foreign policy and national security goals. The Sp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ofac-sdn-list-50-percent-rule-blocking-property.json #### RICO Organized Crime Control Act - 18 USC 1961 Racketeer Influenced and Corrupt Organizations Definitions - **ID**: us-rico-organized-crime-control-act-18-usc-1961 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 1961 of title 18 of the United States Code provides the definitional core of the Racketeer Influenced and Corrupt Organizations Act, enacted as Title IX of the Organized Crime Control Act of 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-rico-organized-crime-control-act-18-usc-1961.json #### United States Stop Trading on Congressional Knowledge (STOCK) Act of 2012 (Public Law 112-105): Definitions, Prohibition of Insider Trading by Members and Employees of Congress, Prompt Reporting of Financial Transactions, Public Disclosure of Financial Forms, Initial Public Offerings Restrictions, Post-Employment Negotiation Disclosure, and Wrongful Influence of Private Employment Decisions - **ID**: us-stock-act-2012-pl-112-105 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Stop Trading on Congressional Knowledge (STOCK) Act of 2012, Public Law 112-105 of 4 April 2012, is the principal federal statute affirming that Members of Congress and federal officials are subje... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-stock-act-2012-pl-112-105.json #### Travel Act 1961 - 18 USC 1952 Interstate and Foreign Travel in Aid of Racketeering - **ID**: us-travel-act-18-usc-1952 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 1952 of title 18 of the United States Code, the Travel Act enacted by Public Law 87-228 on 13 September 1961, criminalises travel in interstate or foreign commerce or use of the mails or any f... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-travel-act-18-usc-1952.json #### Wire Fraud - 18 USC 1343 Frauds and Swindles by Wire Communication - **ID**: us-wire-fraud-18-usc-1343 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: Section 1343 of title 18 of the United States Code criminalises any scheme or artifice to defraud or to obtain money or property by means of false or fraudulent pretenses, representations, or promises... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wire-fraud-18-usc-1343.json #### The Wolfsberg Group Anti-Money Laundering Principles for Correspondent Banking - **ID**: wolfsberg-group-aml-principles-correspondent-banking - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: This standard requires financial institutions (Correspondent Banks) to conduct risk-based due diligence on their respondent bank clients to prevent money laundering and terrorist financing. Key requir... - **Discovery URL**: https://bidda.com/api/v1/nodes/wolfsberg-group-aml-principles-correspondent-banking.json #### Financial Intelligence Centre Act 38 of 2001 - **ID**: za-fica-2001 - **Category**: Financial Crime, AML & Sanctions - **Version**: 1.0.0 - **BLUF**: The Financial Intelligence Centre Act (FICA) is South Africa's primary anti-money laundering (AML) and counter-terrorist financing (CTF) legislation, requiring accountable institutions to implement a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-fica-2001.json ### Food & Hospitality (117 nodes) #### ADA (Hospitality Accessibility) - **ID**: ada-hospitality-access - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: ADA Title III (42 U.S.C. §12181-12189) requires all places of public accommodation - including hotels, motels, restaurants, bars, and food service establishments - to provide equal access to individua... - **Discovery URL**: https://bidda.com/api/v1/nodes/ada-hospitality-access.json #### Responsible Alcohol Service - **ID**: alcohol-service-std - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Responsible alcohol service standards govern the legal and operational obligations of licensed on-premise alcohol retailers - bars, restaurants, hotels, event venues, and stadiums - to prevent service... - **Discovery URL**: https://bidda.com/api/v1/nodes/alcohol-service-std.json #### AU Food Standards Australia New Zealand - FSANZ Code Standard 3.2.2 Food Safety Practices and General Requirements - **ID**: au-food-standards-australia-new-zealand-fsanz-code-standard-3-2-2 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: FSANZ Food Safety Standard 3.2.2 requires Australian and New Zealand food businesses to implement food safety practices covering food temperature control, hygiene, sanitation, pest control, skills and... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-food-standards-australia-new-zealand-fsanz-code-standard-3-2-2.json #### Australia New Zealand Food Standards Code - **ID**: australia-fsanz-food-standards-code - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: All food sold in Australia and New Zealand must comply with the Australia New Zealand Food Standards Code, which sets requirements for food safety, labelling, premises, and specific product standards ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-fsanz-food-standards-code.json #### Brazil ANVISA Food Regulation RDC 259/2002 and RDC 360/2003 - Food Labelling and Nutritional Information: Mandatory Nutritional Table, Serving Size Standardisation, Front-of-Pack Warning Labels (RDC 429/2020), Trans Fat and Sodium Thresholds - **ID**: brazil-anvisa-food-regulation-resolution-2001 - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This regulation requires food manufacturers and importers to provide standardized nutritional labelling, including mandatory nutritional tables, serving size declarations, and front-of-pack warning la... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-anvisa-food-regulation-resolution-2001.json #### BRCGS Food Safety - **ID**: brc-food-safety-global - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance with the BRCGS Global Standard Food Safety Issue 9 mandates a comprehensive, proactive management system, fundamentally rooted in senior management commitment as defined in Section 1. This ... - **Discovery URL**: https://bidda.com/api/v1/nodes/brc-food-safety-global.json #### BRCGS Global Standard for Food Safety Issue 9 - **ID**: brc-food-safety-standard-issue-9 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The BRCGS Food Safety Standard Issue 9 requires food manufacturing sites to implement a comprehensive food safety management system, including a documented commitment from senior management (Clause 1.... - **Discovery URL**: https://bidda.com/api/v1/nodes/brc-food-safety-standard-issue-9.json #### Safe Food for Canadians Regulations - **ID**: canada-safe-food-canadians-regulations-2019 - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: The Safe Food for Canadians Regulations (SFCR) require food businesses involved in importing, exporting, manufacturing, or selling certain foods to hold a licence, develop a preventive control plan (P... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-safe-food-canadians-regulations-2019.json #### State Council Implementation Regulations on the Amendment to the People's Republic of China Food Safety Law (2021) - Provisions on Online Food Ordering Platform Liability, Special Dietary Food Registration, Agricultural Product Traceability, School Canteen Management and Administrative Penalty Increases - **ID**: china-food-safety-law-2021-amendment - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This regulation mandates online food ordering platforms to verify merchant资质 (business licenses and food operation permits), enforce traceability for agricultural products, require special dietary foo... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-food-safety-law-2021-amendment.json #### CLIA Cruise Ship Safety - **ID**: clia-cruise-ship-safety - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance for cruise ship operations mandates comprehensive adherence to multifaceted international and domestic regulations governing safety, security, health, and environmental protection. Pursuant... - **Discovery URL**: https://bidda.com/api/v1/nodes/clia-cruise-ship-safety.json #### Code of Practice for Fish and Fishery Products (CAC/RCP 52-2003) - **ID**: codex-alimentarius-fish-fishery-products-standard - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation establishes hygiene and safety requirements for the handling, processing, and distribution of fish and fishery products, with specific controls for pre-harvest, harvest, processing, co... - **Discovery URL**: https://bidda.com/api/v1/nodes/codex-alimentarius-fish-fishery-products-standard.json #### Codex Alimentarius Code - **ID**: codex-alimentarius-gen - **Category**: Food & Hospitality - **Version**: 1.1.1 - **BLUF**: Operational alignment with the Codex Alimentarius framework is achieved through stringent controls governing food safety, traceability, and international trade ethics. The configuration mandates adher... - **Discovery URL**: https://bidda.com/api/v1/nodes/codex-alimentarius-gen.json #### Codex Alimentarius General Principles of Food Hygiene CAC/RCP 1-1969 (2020 Update) - HACCP System, Prerequisite Programmes and Good Hygienic Practice - **ID**: codex-alimentarius-general-principles-hygiene-2020 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This standard establishes the foundational principles for ensuring food safety through the implementation of Good Hygienic Practices (GHP), prerequisite programmes, and the HACCP system, applicable to... - **Discovery URL**: https://bidda.com/api/v1/nodes/codex-alimentarius-general-principles-hygiene-2020.json #### Codex Alimentarius General Principles of Food Hygiene (CXC 1-1969 Rev. 2022) - HACCP System and Application Guidelines - **ID**: codex-haccp-2022 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This standard provides a systematic framework for food business operators to ensure food safety through the Hazard Analysis and Critical Control Point (HACCP) system. It mandates the application of th... - **Discovery URL**: https://bidda.com/api/v1/nodes/codex-haccp-2022.json #### Codex General Standard for Food Additives (GSFA) CODEX STAN 192-1995 (2023 Revision) - INS Numbering System, Functional Classes (Preservatives, Antioxidants, Emulsifiers), Maximum Use Levels by Food Category and Carry-Over Principle - **ID**: codex-stan-192-2023-general-food-additive-standard - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This standard establishes the conditions under which permitted food additives may be used in foods, specifying maximum use levels by food category, functional classes, and the carry-over principle. It... - **Discovery URL**: https://bidda.com/api/v1/nodes/codex-stan-192-2023-general-food-additive-standard.json #### Commission Delegated Regulation (EU) 2021/382 of 17 December 2020 amending the Annexes to Regulation (EC) No 852/2004 of the European Parliament and of the Council on the hygiene of foodstuffs as regards food allergen management, redistribution of food and food safety culture - **ID**: eu-allergen-regulation-2021-382 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation amends EU Regulation 852/2004, mandating food business operators to implement specific procedures to prevent or limit the presence of allergens listed in Annex II of Regulation (EU) No... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-allergen-regulation-2021-382.json #### Commission Regulation (EU) 2023/915 of 27 April 2023 amending Regulation (EC) No 1881/2006 as regards maximum levels of contaminants in foodstuffs - **ID**: eu-contaminants-regulation-2023-915-food-safety - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This regulation establishes legally binding maximum levels for mycotoxins, heavy metals (lead, cadmium, mercury, inorganic arsenic), nitrates, polycyclic aromatic hydrocarbons (PAHs), per- and polyflu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-contaminants-regulation-2023-915-food-safety.json #### EU Farm to Fork Strategy 2030 Targets - **ID**: eu-farm-to-fork-strategy-f2f-2030-targets - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: The EU Farm to Fork Strategy requires a 25% organic farming area, 50% reduction in pesticide use, 20% reduction in fertilisers, and 50% reduction in antimicrobials for livestock by 2030, as outlined i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-farm-to-fork-strategy-f2f-2030-targets.json #### EU Food Additives Regulation 1333/2008 - Positive List, E-Numbers, Conditions of Use, and EFSA Safety Assessment - **ID**: eu-food-additives-regulation-1333-2008 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: Regulation (EC) No 1333/2008 of the European Parliament and of the Council on food additives establishes a positive list system for food additives permitted in the European Union and the conditions un... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-food-additives-regulation-1333-2008.json #### Regulation (EC) No 852/2004 of the European Parliament and of the Council of 29 April 2004 on the hygiene of foodstuffs - **ID**: eu-food-hygiene-regulation-852-2004 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation mandates that all food business operators (FBOs) in the EU implement, maintain, and provide evidence of a permanent food safety management system based on the seven principles of Hazar... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-food-hygiene-regulation-852-2004.json #### EU Food Information to Consumers Regulation 1169/2011 - Mandatory Labelling, Allergen Disclosure, and Nutrition Declaration - **ID**: eu-food-information-consumers-regulation-1169-2011 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 1169/2011 of the European Parliament and of the Council on the provision of food information to consumers (FIC Regulation) establishes mandatory labelling and information requiremen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-food-information-consumers-regulation-1169-2011.json #### EU Food Information to Consumers Regulation 1169/2011 - Mandatory Labelling and Allergen Disclosure Requirements - **ID**: eu-food-information-consumers-regulation-1169-2011-labelling-allergens - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 1169/2011 requires mandatory food labelling disclosures including 14 allergens, nutrition information per 100g, country of origin, date marking, and net quantity, with equivalent oblig... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-food-information-consumers-regulation-1169-2011-labelling-allergens.json #### EU Food Information Regulation 1169/2011 - Mandatory Labelling, Allergen Declaration & Nutrition - **ID**: eu-food-information-regulation-1169-2011-fir-labelling-allergens - **Category**: Food & Hospitality - **Version**: 2.0 - **BLUF**: Regulation 1169/2011 mandates mandatory food information for packaged and non-prepacked food sold in EU - including allergen declarations for 14 major allergens, net quantity, best before/use-by dates... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-food-information-regulation-1169-2011-fir-labelling-allergens.json #### Regulation (EU) No 1169/2011 of the European Parliament and of the Council of 25 October 2011 on the provision of food information to consumers - **ID**: eu-food-information-regulation-1169-2011-labelling - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation mandates that all prepacked and non-prepacked foods sold to consumers in the EU must provide mandatory food information, including clear nutrition labelling, allergen highlighting, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-food-information-regulation-1169-2011-labelling.json #### Regulation (EU) No 1169/2011 of the European Parliament and of the Council of 25 October 2011 on the provision of food information to consumers - **ID**: eu-food-labelling-regulation-1169-2011 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation harmonises food labelling across the EU, requiring food business operators to provide clear, legible, and accurate information to consumers, with a primary focus on mandatory nutrition... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-food-labelling-regulation-1169-2011.json #### EU General Food Law (178/2002) - **ID**: eu-food-law-178-2002 - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Regulation (EC) No 178/2002 establishes the foundational principles and requirements of general food law, prioritizing a high level of protection for human health. Compliance hinges on strict adherenc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-food-law-178-2002.json #### EU General Food Law Regulation 178/2002 - **ID**: eu-food-safety-regulation-178-2002 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: Regulation (EC) 178/2002 establishes the general principles and requirements of EU food law, creates the European Food Safety Authority (EFSA), and sets up the Rapid Alert System for Food and Feed (RA... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-food-safety-regulation-178-2002.json #### EU General Food Law Regulation 178/2002/EC - EFSA Risk Assessment - **ID**: eu-general-food-law-regulation-178-2002-efsa-novel-food - **Category**: Food & Hospitality - **Version**: 2.0.0 - **BLUF**: Regulation (EC) No 178/2002 establishes the general principles and requirements of EU food law including the precautionary principle, the obligation to withdraw unsafe food from the market, and the Eu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-food-law-regulation-178-2002-efsa-novel-food.json #### Regulation (EU) 2024/1143 on Geographical Indications for Food, Wine and Spirits: Single Application Gateway, Enhanced Online Enforcement, Third-Country GI Recognition, Digital Product Passport and Strengthened Producer Group Rights - **ID**: eu-geographical-indications-regulation-2024-1143 - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This regulation establishes a unified EU framework for the protection and enforcement of Protected Designations of Origin (PDO), Protected Geographical Indications (PGI), and Traditional Specialities ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-geographical-indications-regulation-2024-1143.json #### Directive 2009/54/EC of the European Parliament and of the Council of 18 June 2009 on the exploitation and marketing of natural mineral waters - **ID**: eu-mineral-water-directive-2009-54-natural-spring - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This directive establishes the criteria for recognizing natural mineral waters, including their origin, composition stability, and permitted treatments. It applies to all operators exploiting and mark... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mineral-water-directive-2009-54-natural-spring.json #### Regulation (EU) 2015/2283 of the European Parliament and of the Council of 25 November 2015 on novel foods, amending Regulation (EU) No 1169/2011 of the European Parliament and of the Council and repealing Regulation (EC) No 258/97 and Commission Regulation (EC) No 1852/2001 - **ID**: eu-novel-food-catalogue-regulation-2015-2283 - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This regulation establishes a pre-market authorisation system for novel foods, defined as foods not consumed significantly in the EU before 15 May 1997, requiring a safety assessment by EFSA under Art... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-novel-food-catalogue-regulation-2015-2283.json #### Regulation (EU) 2015/2283 of the European Parliament and of the Council of 25 November 2015 on novel foods, amending Regulation (EU) No 1169/2011 of the European Parliament and of the Council and repealing Regulation (EC) No 258/97 of the European Parliament and of the Council and Commission Regulation (EC) No 1852/2001 - **ID**: eu-novel-food-regulation-2015-2283 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation requires food business operators to obtain pre-market authorization from the European Commission before placing a 'novel food' on the EU market. As defined in Article 3, this includes ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-novel-food-regulation-2015-2283.json #### EU Novel Foods Regulation 2015/2283 - Pre-Market Authorisation and Union List of Authorised Novel Foods - **ID**: eu-novel-foods-regulation-2015-2283 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2015/2283 of the European Parliament and of the Council on novel foods replaced Regulation (EC) No 258/97 and became applicable from 1 January 2018. The Regulation defines a novel food... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-novel-foods-regulation-2015-2283.json #### Regulation (EC) No 1924/2006 of the European Parliament and of the Council of 20 December 2006 on nutrition and health claims made on foods - **ID**: eu-nutrition-health-claims-regulation-1924-2006 - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This regulation establishes harmonised rules for nutrition and health claims made on foods in the EU, requiring all claims to be authorised, substantiated by scientific evidence, and not misleading to... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nutrition-health-claims-regulation-1924-2006.json #### Regulation (EU) 2017/625 of the European Parliament and of the Council of 15 March 2017 on official controls and other official activities performed to ensure the application of food and feed law, rules on animal health and welfare, plant health and plant protection products - **ID**: eu-official-controls-regulation-2017-625 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation establishes a harmonized EU framework for official controls performed by Member State competent authorities to verify business operator compliance with the agri-food chain legislation,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-official-controls-regulation-2017-625.json #### Regulation (EU) 2018/848 of the European Parliament and of the Council of 30 May 2018 on organic production and labelling of organic products and repealing Council Regulation (EC) No 834/2007 - **ID**: eu-organic-farming-regulation-2018-848 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation establishes a comprehensive legal framework for organic production and labelling within the EU, applying to all operators involved in the production, preparation, and distribution of o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-organic-farming-regulation-2018-848.json #### Regulation (EU) 2018/848 of the European Parliament and of the Council of 30 May 2018 on organic production and labelling of organic products and repealing Council Regulation (EC) No 834/2007 - **ID**: eu-organic-regulation-2018-848-implementing-rules - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation establishes the rules for organic production, labelling, and control systems within the EU, including permitted substances (Annexes I and II), conversion periods (Article 9), managemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-organic-regulation-2018-848-implementing-rules.json #### Regulation (EC) No 396/2005 of the European Parliament and of the Council of 23 February 2005 on maximum residue levels of pesticides in or on food and feed of plant and animal origin and amending Council Directive 91/414/EEC - **ID**: eu-pesticides-mrls-regulation-396-2005-depth - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This regulation establishes maximum residue levels (MRLs) for pesticides in food and feed of plant and animal origin across the EU, ensuring a high level of consumer protection and facilitating intern... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pesticides-mrls-regulation-396-2005-depth.json #### Commission Implementing Regulation (EU) 2025/1165 laying down specific rules for pet travel document and declaration for non-commercial movements of pet animals into Northern Ireland from other parts of the United Kingdom - **ID**: eu-reg-2025-1165-implementing-regulation-eu-2025-1165-of-13-june-2025-laying - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/1165, adopted on 13 June 2025, lays down specific rules for the application of Regulation (EU) 2023/1231 concerning the information to be included in the p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-1165-implementing-regulation-eu-2025-1165-of-13-june-2025-laying.json #### Regulation (EC) No 178/2002 of the European Parliament and of the Council of 28 January 2002 laying down the general principles and requirements of food law, establishing the European Food Safety Authority and laying down procedures in matters of food safety - **ID**: eu-regulation-ec-178-2002-general-food-law - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation establishes the foundational principles of EU food law, mandating that food placed on the market must be safe and that food and feed business operators are responsible for ensuring com... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-regulation-ec-178-2002-general-food-law.json #### Directive (EU) 2019/904 of the European Parliament and of the Council of 5 June 2019 on the reduction of the impact of certain plastic products on the environment - **ID**: eu-single-use-plastics-directive-2019-904-hospitality - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This directive prohibits the placing on the market of specific single-use plastic items in the hospitality sector, including tableware, expanded polystyrene food and beverage containers, and plastic s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-single-use-plastics-directive-2019-904-hospitality.json #### Regulation (EU) 2019/787 of the European Parliament and of the Council of 17 April 2019 on the definition, description, presentation, labelling and protection of geographical indications of spirit drinks, repealing Regulation (EC) No 110/2008 - **ID**: eu-spirits-drinks-regulation-2019-787-gi - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation establishes legally binding definitions, labelling requirements, and geographical indication (GI) protections for spirit drinks sold in the EU. It applies to all producers, importers, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-spirits-drinks-regulation-2019-787-gi.json #### Directive 2014/40/EU of the European Parliament and of the Council of 3 April 2014 on the approximation of the laws, regulations and administrative provisions of the Member States concerning the manufacture, presentation and sale of tobacco and related products and repealing Directive 2001/37/EC - **ID**: eu-tobacco-product-directive-2014-40-eu-hospitality - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This directive mandates that tobacco product packaging display combined health warnings and information messages covering 65% of the front and back, prohibits characterising flavours in tobacco produc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-tobacco-product-directive-2014-40-eu-hospitality.json #### Fair Trade Tourism Audit - **ID**: fair-trade-tourism - **Category**: Food & Hospitality - **Version**: 1.1.1 - **BLUF**: Fair Trade Tourism Audit evaluates an entity's operational alignment with established international standards for ethical and sustainable tourism. The protocol mandates strict adherence to core labor ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fair-trade-tourism.json #### FAO Code of Conduct for Responsible Fisheries 1995 - Ecosystem Approach, Precautionary Principle and Voluntary Compliance - **ID**: fao-code-conduct-responsible-fisheries-1995 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The Code of Conduct for Responsible Fisheries (CCRF) was unanimously adopted by the FAO Conference at its 28th Session on 31 October 1995. The Code is the foundational voluntary international instrume... - **Discovery URL**: https://bidda.com/api/v1/nodes/fao-code-conduct-responsible-fisheries-1995.json #### Guidance for Industry A Food Labeling Guide - **ID**: fda-food-labeling-guide - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This guidance is a summary of the required statements that must appear on food labels under the Federal Food, Drug, and Cosmetic Act (FD&C Act) and the Fair Packaging and Labeling Act. The Food and Dr... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-food-labeling-guide.json #### FDA Food Safety Modernization - **ID**: fda-fsma-compliance - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance with the FDA Food Safety Modernization Act is established through the implementation of several key regulatory programs. A compliant Hazard Analysis and Risk-Based Preventive Controls food ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-fsma-compliance.json #### Food Allergen Labeling Law - **ID**: food-allergen-label-law - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Regulatory frameworks governing food allergen labeling establish non-negotiable compliance obligations for manufacturers. The primary U.S. authority, the Food Allergen Labeling and Consumer Protection... - **Discovery URL**: https://bidda.com/api/v1/nodes/food-allergen-label-law.json #### FSSC 22000 (Food Packaging) - **ID**: fssc-22000-food-pack - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: FSSC 22000 certification for food packaging manufacturers establishes a comprehensive framework for food safety management, recognized by the Global Food Safety Initiative. Compliance necessitates an ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fssc-22000-food-pack.json #### FSSC 22000 Version 6 (2023) - ISO 22000 Based Food Safety System Certification Scheme Requirements - **ID**: fssc-22000-v6-food-safety - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: FSSC 22000 Version 6 is a GFSI-recognized certification scheme requiring food supply chain organizations to implement a robust Food Safety Management System (FSMS). It integrates ISO 22000:2018, secto... - **Discovery URL**: https://bidda.com/api/v1/nodes/fssc-22000-v6-food-safety.json #### GFSI Benchmarking Requirements - **ID**: gfsi-benchmarking - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Global Food Safety Initiative (GFSI) Benchmarking Requirements Version 2020.1 mandates a comprehensive framework for food safety, ensuring organisations implement and maintain a robust Food Safety Man... - **Discovery URL**: https://bidda.com/api/v1/nodes/gfsi-benchmarking.json #### GLOBALG.A.P. Integrated Farm Assurance Standard v6 2023 - Crop Base Module: Food Safety, Traceability, Environmental Management, Worker Welfare, Integrated Pest Management, Water Efficiency and Chain of Custody Certification Requirements - **ID**: globalg-a-p-certification-standard-v6-2023 - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This standard requires agricultural producers to implement a certified Integrated Farm Assurance system covering food safety, environmental protection, worker welfare, and traceability, in accordance ... - **Discovery URL**: https://bidda.com/api/v1/nodes/globalg-a-p-certification-standard-v6-2023.json #### Green Key Eco-Rating - **ID**: green-key-tourism-eco - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance with the Green Key Eco-Rating standard requires adherence to stringent environmental management and operational benchmarks, harmonized with recognized frameworks like the Global Sustainable... - **Discovery URL**: https://bidda.com/api/v1/nodes/green-key-tourism-eco.json #### GSTC Sustainability Criteria - **ID**: gstc-tourism-criteria - **Category**: Food & Hospitality - **Version**: 1.1.1 - **BLUF**: Compliance with the Global Sustainable Tourism Council (GSTC) framework necessitates a comprehensive approach to operational sustainability, integrating key principles from international agreements. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/gstc-tourism-criteria.json #### HACCP (Food Safety) - **ID**: haccp-food-safety - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance with Hazard Analysis and Critical Control Point (HACCP) systems mandates a systematic, science-based approach to food safety management, aligning with global standards like Codex Alimentari... - **Discovery URL**: https://bidda.com/api/v1/nodes/haccp-food-safety.json #### Malaysia Halal Standard MS 1500:2019 - General Requirements for Halal Certification - **ID**: halal-ms1500-2019-malaysia-standard - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This standard sets mandatory requirements for halal certification in Malaysia, including the prohibition of non-halal ingredients (Section 4.1), adherence to zabiha slaughter methods (Section 5.2), pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/halal-ms1500-2019-malaysia-standard.json #### Hospitality Liquor Licensing - **ID**: hcll-hospitality-licensing - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance within this domain mandates adherence to stringent federal, state, and international alcohol service regulations. A foundational requirement is maintaining a valid_liquor_license_active sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/hcll-hospitality-licensing.json #### Hotelstars Union Criteria - **ID**: hotel-stars-union-crit - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance with Hotelstars Union (HSU) Classification Criteria for the 2020-2025 period mandates adherence to a harmonized set of operational, digital, and quality management standards across member c... - **Discovery URL**: https://bidda.com/api/v1/nodes/hotel-stars-union-crit.json #### HOTSEC Hotel Security Logic - **ID**: hotsec-hotel-security - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: HOTSEC Hotel Security Logic enforces a comprehensive security posture for hospitality environments by integrating critical controls from leading standards and regulations. In alignment with NIST SP 80... - **Discovery URL**: https://bidda.com/api/v1/nodes/hotsec-hotel-security.json #### IATA Perishable Cargo Regulations - Chapter 17: Temperature Control Categories (Frozen/Chilled/Ambient), Packaging Standards, Pre-Cooling Requirements, Cool Chain Audit, Time-Temperature Indicators and Acceptance Checklist for Air Freight - **ID**: iata-cargo-regulations-perishable-chapter-17 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation establishes mandatory requirements for temperature control, packaging, pre-cooling, and monitoring of perishable cargo during air transport to ensure product integrity. It applies to a... - **Discovery URL**: https://bidda.com/api/v1/nodes/iata-cargo-regulations-perishable-chapter-17.json #### IATA Passenger Service (Reso) - **ID**: iata-passenger-svcs - **Category**: Food & Hospitality - **Version**: 1.1.1 - **BLUF**: Compliance with International Air Transport Association (IATA) passenger service resolutions is mandated to ensure operational uniformity and data integrity across the global air transport system. Thi... - **Discovery URL**: https://bidda.com/api/v1/nodes/iata-passenger-svcs.json #### IFS Food (International Featured) - **ID**: ifs-food-standard - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: International Featured Standards (IFS) Food certification provides a framework for ensuring food product safety and quality, aligned with the Global Food Safety Initiative's GFSI Benchmarking Requirem... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifs-food-standard.json #### Food Safety and Standards Act, 2006 - **ID**: india-fssai-food-safety-standards-act-2006 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation establishes the Food Safety and Standards Authority of India (FSSAI) and mandates science-based standards for food articles to ensure safe and wholesome food for human consumption. It ... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-fssai-food-safety-standards-act-2006.json #### Food Safety and Standards (Labelling and Display) Regulations, 2020 - **ID**: india-fssai-labelling-display-regulations-2020 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: These regulations mandate standardized front-of-pack labelling (FOPO), allergen declarations, nutritional information, date markings, non-vegetarian symbol usage, and organic claims for pre-packaged f... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-fssai-labelling-display-regulations-2020.json #### Beach Management (ISO 13009) - **ID**: iso-13009-beach-mgmt - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance with international beach operation standards necessitates a comprehensive framework for safety, environmental management, and service quality. ISO 13009:2015 requires a formalized beach man... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-13009-beach-mgmt.json #### Tourism Services (ISO 18513) - **ID**: iso-18513-tourism-svc - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance with ISO 18513 for tourism services mandates a comprehensive framework for hotel operations centered on international standardization and guest welfare, as defined by established global bes... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-18513-tourism-svc.json #### Adventure Tourism (ISO 21101) - **ID**: iso-21101-adventure-tour - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Adventure tourism providers must establish and maintain a comprehensive safety management system, confirming `safety_management_system_active` is true to align with ISO 21101. Top management holds acc... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-21101-adventure-tour.json #### Sustainable Tourism (ISO 21401) - **ID**: iso-21401-tourism-sustain - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance with the Sustainable Tourism standard necessitates the establishment and maintenance of a comprehensive sustainability management system (SMS). An organization must demonstrate a formal sus... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-21401-tourism-sustain.json #### Food Safety Mgt (ISO 22000) - **ID**: iso-22000-food-mgt - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Conformance with ISO 22000 requires a comprehensive Food Safety Management System (FSMS) built upon a documented food safety policy, as mandated by Clause 5.2, which must be communicated and understoo... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-22000-food-mgt.json #### Act on Fair Labelling and Advertising of Food, Fibre and Other Consumer Products (Food Labelling Act) - Standards for Labelling of Processed Foods, Nutrition, Health Claims, and Organic JAS Foods - **ID**: japan-food-labelling-act-2013-standards - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The Japan Food Labelling Act 2013 mandates standardized labelling of processed foods, including product name, ingredients, additives, allergens, best-before date, preservation method, and nutrition in... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-food-labelling-act-2013-standards.json #### Food Sanitation Act - Positive List for Food Contact Materials: Permitted Substances for Synthetic Resins, Labelling of Utensils and Containers, HACCP Mandatory for All Food Businesses and Manufacturer Self-Declaration System - **ID**: japan-food-sanitation-act-2021-amendment-food-contact - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This regulation establishes requirements for food contact materials, including permitted substances in synthetic resins and labelling of utensils and containers, under the Food Sanitation Act framewor... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-food-sanitation-act-2021-amendment-food-contact.json #### Kenya Food, Drugs and Chemical Substances Act (Cap 254) - **ID**: kenya-food-drugs-chemical-substances-act-cap-254 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation requires all food businesses in Kenya to register with the Kenya Bureau of Standards (KEBS) and comply with food safety standards as outlined in Article 12 of the Act. It applies to al... - **Discovery URL**: https://bidda.com/api/v1/nodes/kenya-food-drugs-chemical-substances-act-cap-254.json #### NOM-051-SCFI/SSA1-2010, as amended by the 2020 Official Mexican Standard - Specifications for the Identification, Presentation, and Advertising of Foodstuffs and Non-Alcoholic Beverages: Front-of-Pack Labelling, Nutritional Information, and Advertising Restrictions - **ID**: mexico-nom-051-food-labelling-2020 - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: Mandates front-of-pack octagonal black warning seals for foods and non-alcoholic beverages high in calories, sugars, saturated fats, trans fats, or sodium, based on thresholds defined in Article 4.1.2... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-nom-051-food-labelling-2020.json #### Food Act 2014 (New Zealand) - **ID**: new-zealand-food-act-2014-fsp - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: The Food Act 2014 requires all food businesses in New Zealand to implement a registered Food Control Plan (FCP) or a National Programme Food Safety Programme (NP-FSP) to manage food safety risks, with... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-zealand-food-act-2014-fsp.json #### National Agency for Food and Drug Administration and Control (NAFDAC) Act, as amended by the NAFDAC (Amendment) Act 2019 - **ID**: nigeria-nafdac-food-drug-administration-act-2019 - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: The NAFDAC Act 2019 mandates registration of all food, drug, cosmetic, medical device, and packaged water products prior to manufacture, import, export, or sale in Nigeria, under Section 10(1). It als... - **Discovery URL**: https://bidda.com/api/v1/nodes/nigeria-nafdac-food-drug-administration-act-2019.json #### New Zealand Food Act 2014 - Risk-Based Framework, Food Safety Programmes, and MPI Enforcement - **ID**: nz-food-act-2014 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The Food Act 2014 (New Zealand) replaced the Food Act 1981 and introduced a risk-based regulatory framework for food businesses operating in New Zealand. Part 1 of the Act establishes the purpose: to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-food-act-2014.json #### The Organic Guarantee System of IFOAM - Organics International - **ID**: oas-standards-organic-agriculture-ifoam-2020 - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This regulation establishes the global framework for organic certification through the Organic Guarantee System (OGS), defining principles, conformity assessment, and recognition mechanisms for organi... - **Discovery URL**: https://bidda.com/api/v1/nodes/oas-standards-organic-agriculture-ifoam-2020.json #### PCI-DSS (Hospitality Payment) - **ID**: pci-dss-hospitality - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Adherence to the Payment Card Industry Data Security Standard (PCI-DSS) within hospitality environments necessitates a comprehensive framework of technical and operational controls to protect cardhold... - **Discovery URL**: https://bidda.com/api/v1/nodes/pci-dss-hospitality.json #### Safe Stays (Hotel Hygiene) - **ID**: safe-stays-hotel-audit - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance with the Safe Stays (Hotel Hygiene) node mandates a comprehensive framework of verifiable sanitation and operational protocols to mitigate public health risks. The standard requires documen... - **Discovery URL**: https://bidda.com/api/v1/nodes/safe-stays-hotel-audit.json #### SG Singapore Food Agency - Food Sale and Food Regulations Cap 283 Licensing and Safety Requirements - **ID**: sg-singapore-food-agency-food-regulations-cap-283-food-safety - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: Singapore Food Agency (SFA) administers the Sale of Food Act (Cap. 283) and Food Regulations requiring food establishments to obtain SFA licences, comply with food hygiene standards, meet labelling re... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-singapore-food-agency-food-regulations-cap-283-food-safety.json #### Singapore Food Agency (SFA) Food Hygiene Regulations 2021 - Food Handler Licensing, Establishment Hygiene Standards, Temperature Control and Traceability - **ID**: singapore-food-agency-food-hygiene-regulations-2021 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The SFA Food Hygiene Regulations 2021 mandate that all food handlers in Singapore must obtain a valid food handler’s certificate, food establishments maintain prescribed hygiene standards, ensure temp... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-food-agency-food-hygiene-regulations-2021.json #### Regulations Relating to the General Hygiene Requirements for Food Premises, the Transport of Food, and Related Matters (R638) - **ID**: south-africa-r638-food-premises-regulations-2018 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The South Africa R638 Food Premises Regulations 2018 establish mandatory hygiene, infrastructure, and operational standards for all food premises and transport vehicles involved in the handling, prepa... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-r638-food-premises-regulations-2018.json #### Food Safety Basic Act (Act No. 11580, as amended by Act No. 18818), 2013 - **ID**: south-korea-food-safety-basic-act-2013 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The South Korea Food Safety Basic Act 2013 establishes a comprehensive framework for food safety management, mandating the Ministry of Food and Drug Safety (MFDS) to coordinate policy, conduct risk as... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-korea-food-safety-basic-act-2013.json #### SQF Edition 9 (Safe Quality Food) - **ID**: sqf-edition-9-safety - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance with Safe Quality Food (SQF) Edition 9 necessitates a robust, fully documented food safety management system, underpinned by senior management commitment as evidenced by a signed policy sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/sqf-edition-9-safety.json #### Tourism Disaster Resilience - **ID**: tourism-disaster-resilience - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: Compliance with tourism disaster resilience protocols mandates a comprehensive and actively managed framework for mitigating operational disruptions. A documented risk assessment is a foundational req... - **Discovery URL**: https://bidda.com/api/v1/nodes/tourism-disaster-resilience.json #### CHARTER Tri-Agency Task Force for Emergency Diagnostics - **ID**: tri-agency-task-force-diagnostics - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The Tri-Agency Task Force for Emergency Diagnostics (TTFED), with members from Centers for Disease Control and Prevention (CDC), Food and Drug Administration (FDA), and Centers for Medicare and Medica... - **Discovery URL**: https://bidda.com/api/v1/nodes/tri-agency-task-force-diagnostics.json #### CHARTER Tri-Agency Task Force for Emergency Diagnostics - **ID**: tri-agency-task-force-emergency-diagnostics - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The Tri-Agency Task Force for Emergency Diagnostics (TTFED), with members from Centers for Disease Control and Prevention (CDC), Food and Drug Administration (FDA), and Centers for Medicare and Medica... - **Discovery URL**: https://bidda.com/api/v1/nodes/tri-agency-task-force-emergency-diagnostics.json #### Federal Law No. 2 of 2008 on Food Safety in the United Arab Emirates - **ID**: uae-food-safety-law-2-2008-emirates - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This law establishes the national framework for food safety in the UAE, mandating compliance with halal requirements, food import controls, food contact material safety, country of origin labelling, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-food-safety-law-2-2008-emirates.json #### UK Agriculture Act 2020 - Environmental Land Management, Agricultural Transition, and Supply Chain Fair Dealing - **ID**: uk-agriculture-act-2020 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The Agriculture Act 2020 establishes the post-Brexit framework for agricultural support and regulation in England, replacing EU Common Agricultural Policy (CAP) direct payments with a new system of pu... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-agriculture-act-2020.json #### UK Food Safety Act 1990 - Food Safety Requirements, Due Diligence Defence, and Enforcement - **ID**: uk-food-safety-act-1990 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The Food Safety Act 1990 (UK) is the principal legislation establishing food safety requirements in the United Kingdom for food businesses. Section 8 prohibits the sale of food that fails to comply wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-food-safety-act-1990.json #### Food Safety Act 1990 (as amended by the Food Safety (Amendment) Regulations 2023) - **ID**: uk-food-safety-act-1990-amendment-2023 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The Food Safety Act 1990, as amended in 2023, imposes strict liability on food businesses for ensuring food is safe, of proper quality, and correctly labelled. It establishes enforcement powers for lo... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-food-safety-act-1990-amendment-2023.json #### UK Food Safety Act 1990 & Food Safety and Hygiene (England) Regulations 2013 - Due Diligence - **ID**: uk-food-safety-act-1990-fsa-hygiene-regulations-food-business - **Category**: Food & Hospitality - **Version**: 2.0 - **BLUF**: The UK Food Safety Act 1990 and associated Hygiene Regulations establish the legal duty for food business operators to ensure food is safe to eat, not injurious to health, and not falsely described - ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-food-safety-act-1990-fsa-hygiene-regulations-food-business.json #### UK Food Standards Agency Post-Brexit Regulatory Framework 2023 - Great Britain Food Law: GB Retained EU Law on Food Safety, UK Specific Additive Permissions, Windsor Framework for Northern Ireland, FSA Risk Assessment Independence and Food Crime Unit - **ID**: uk-food-standards-agency-fsa-post-brexit-2023 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation establishes the UK's independent food safety framework post-Brexit, requiring all food businesses in Great Britain to comply with retained EU food safety law under the European Union (... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-food-standards-agency-fsa-post-brexit-2023.json #### US 21 CFR Part 111: Current Good Manufacturing Practice in Manufacturing, Packaging, Labeling, or Holding Operations for Dietary Supplements - **ID**: us-21-cfr-part-111-dietary-supplements-cgmp - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 111 establishes the cGMP requirements for manufacturers, packagers, labelers, and holders of dietary supplements. Subparts cover personnel, physical plant and grounds, equipment and ute... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-111-dietary-supplements-cgmp.json #### US 21 CFR Part 117: Current Good Manufacturing Practice, Hazard Analysis, and Risk-Based Preventive Controls for Human Food - **ID**: us-21-cfr-part-117-fsma-preventive-controls-human-food - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 117 implements the FDA Food Safety Modernization Act (FSMA) preventive controls rule for human food. Facilities must conduct a hazard analysis identifying known or reasonably foreseeabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-117-fsma-preventive-controls-human-food.json #### US 21 CFR Part 123: Fish and Fishery Products (HACCP) - **ID**: us-21-cfr-part-123-fish-fishery-products-haccp - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 123 prescribes the procedures whereby processors of fish and fishery products must conduct a Hazard Analysis Critical Control Point (HACCP) system to ensure safe and sanitary processing... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-123-fish-fishery-products-haccp.json #### US 7 CFR Part 205: National Organic Program - **ID**: us-7-cfr-part-205-national-organic-program - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: US 7 CFR Part 205 implements the Organic Foods Production Act of 1990 (OFPA) establishing national standards for organically produced agricultural products in the United States. Subparts cover applica... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-7-cfr-part-205-national-organic-program.json #### US 7 CFR Part 273: Certification of Eligible Households (SNAP) - **ID**: us-7-cfr-part-273-snap-certification-eligible-households - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: US 7 CFR Part 273 implements the Supplemental Nutrition Assistance Program (SNAP, formerly Food Stamps) by setting eligibility standards, certification procedures, and benefit issuance. Subparts cover... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-7-cfr-part-273-snap-certification-eligible-households.json #### US 9 CFR Part 313: Humane Slaughter of Livestock - **ID**: us-9-cfr-part-313-humane-slaughter-livestock - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: US 9 CFR Part 313 implements the Humane Methods of Slaughter Act (HMSA) of 1958 (as amended 1978) requiring that livestock at federally inspected slaughter establishments be rendered insensible to pai... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-9-cfr-part-313-humane-slaughter-livestock.json #### US Animal Welfare Act (7 USC 2131) - Federal Standards for Care of Regulated Animals - **ID**: us-animal-welfare-act-7-usc-2131 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The Animal Welfare Act establishes federal humane care and treatment standards for warm-blooded animals used in research, exhibited to the public, sold as pets at the wholesale level, or transported c... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-animal-welfare-act-7-usc-2131.json #### Dietary Guidelines for Americans, 2020-2025 - **ID**: us-dietary-guidelines-americans-2020-2025 - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: Provides evidence-based dietary guidance for Americans aged 2 years and older to promote healthy eating patterns, reduce risk of chronic disease, and meet nutrient needs. Key recommendations include l... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dietary-guidelines-americans-2020-2025.json #### 21 CFR Part 101 - Food Labeling (FDA) - **ID**: us-fda-21-cfr-101-food-labeling - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: FDA 21 CFR Part 101 sets the food labeling requirements under the Federal Food, Drug, and Cosmetic Act, prescribing the principal display panel and information panel, the statement of identity, ingred... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-101-food-labeling.json #### 21 CFR Part 111 - Current Good Manufacturing Practice for Dietary Supplements (FDA) - **ID**: us-fda-21-cfr-111-dietary-supplement-cgmp - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: FDA 21 CFR Part 111 sets current good manufacturing practice for persons who manufacture, package, label, or hold dietary supplements, requiring written procedures, personnel hygiene controls, suitabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-111-dietary-supplement-cgmp.json #### US FDA Preventive Controls for Human Food - 21 CFR Part 117 Current Good Manufacturing Practice, Hazard Analysis and Risk-Based Preventive Controls Under FSMA - **ID**: us-fda-21-cfr-117-cgmp-hazard-analysis-food-safety-modernization-act - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 117 (Current Good Manufacturing Practice, Hazard Analysis, and Risk-Based Preventive Controls for Human Food) is the FDA's implementing regulation for the Preventive Controls for Human Foo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-117-cgmp-hazard-analysis-food-safety-modernization-act.json #### Food Allergen Labeling and Consumer Protection Act of 2004 - **ID**: us-fda-food-allergen-labelling-consumer-protection-2004 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: Requires all packaged foods regulated by the FDA to clearly declare the presence of any of the 'Big 9' major food allergens (milk, eggs, fish, crustacean shellfish, tree nuts, peanuts, wheat, soybeans... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-food-allergen-labelling-consumer-protection-2004.json #### Registration of Food Facilities (21 CFR Part 1, Subpart H) under the Public Health Security and Bioterrorism Preparedness and Response Act of 2002 - **ID**: us-fda-food-facility-registration - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation requires domestic and foreign facilities that manufacture, process, pack, or hold food for human or animal consumption in the United States to register with the Food and Drug Administr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-food-facility-registration.json #### US FDA Food Facility Registration - Bioterrorism Act Section 305: Mandatory Registration for Domestic and Foreign Facilities, Biennial Re-Registration, Prior Notice for Imported Food, Suspension of Registration Authority and Voluntary Qualified Importer Program (VQIP) - **ID**: us-fda-food-facility-registration-bioterrorism-act - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: The US FDA requires all domestic and foreign facilities that manufacture, process, pack, or hold food for human or animal consumption in the United States to register with the FDA under Section 305 of... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-food-facility-registration-bioterrorism-act.json #### US FDA FSMA 21 USC 2201 - Food Safety Modernization Act Preventive Controls for Human Food - **ID**: us-fda-food-safety-modernization-act-21-usc-2201-preventive-controls - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: FDA Food Safety Modernization Act (FSMA) requires food facilities to implement written food safety plans with hazard analysis, preventive controls, monitoring, corrective actions, and verification pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-food-safety-modernization-act-21-usc-2201-preventive-controls.json #### FSMA Final Rule for Preventive Controls for Human Food - 21 CFR Part 117: Hazard Analysis, Preventive Controls (Process/Allergen/Sanitation/Supply Chain), Monitoring, Corrective Actions, Verification, Recall Plan and Qualified Facility Exemption - **ID**: us-fda-fsma-preventive-controls-human-food-2016 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation requires domestic and foreign food facilities registered under section 415 of the FD&C Act to develop and implement a written food safety plan that includes hazard analysis and risk-ba... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-fsma-preventive-controls-human-food-2016.json #### Foreign Supplier Verification Programs (FSVP) for Importers of Food for Humans and Animals - 21 CFR Part 1, Subpart L - **ID**: us-fda-fsma-supplier-verification-fsvp-2017 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The FSVP rule requires U.S. importers to perform risk-based foreign supplier verification activities to ensure that imported food is produced in a manner providing the same level of public health prot... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-fsma-supplier-verification-fsvp-2017.json #### Hazard Analysis and Critical Control Point (HACCP) Systems for Fish and Fishery Products - **ID**: us-fda-hazard-analysis-ccp-seafood-21-cfr-123 - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation requires all processors of fish and fishery products to conduct a hazard analysis, identify critical control points (CCPs), establish critical limits, and implement monitoring, correct... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-hazard-analysis-ccp-seafood-21-cfr-123.json #### Standards for the Growing, Harvesting, Packing, and Holding of Produce for Human Consumption (Produce Safety Rule) - **ID**: us-fsma-2011-produce-safety-rule-21-cfr-112 - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: The FSMA Produce Safety Rule (21 CFR Part 112) establishes science-based minimum standards for the safe growing, harvesting, packing, and holding of fruits and vegetables grown for human consumption. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fsma-2011-produce-safety-rule-21-cfr-112.json #### Alcohol and Tobacco Tax and Trade Bureau (TTB) Alcohol Beverage Labeling Requirements - **ID**: us-ttb-alcohol-beverage-labelling - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: The U.S. Alcohol and Tobacco Tax and Trade Bureau (TTB), under 27 CFR Parts 4, 5, and 7, and the Alcoholic Beverage Labeling Act (ABLA), requires producers, bottlers, and importers to obtain a Certifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ttb-alcohol-beverage-labelling.json #### USTOA Tour Operator Integrity - **ID**: ustoa-tour-integrity - **Category**: Food & Hospitality - **Version**: 1.1.0 - **BLUF**: USTOA Tour Operator Integrity compliance validates an operator’s adherence to stringent standards for financial stability, consumer protection, and ethical conduct. Verification requires active USTOA ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ustoa-tour-integrity.json #### Global action plan on antimicrobial resistance - **ID**: who-global-action-plan-antimicrobial-resistance-food - **Category**: Food & Hospitality - **Version**: 1.0.0 - **BLUF**: This regulation requires nations and food-producing entities to implement a One Health approach to combat antimicrobial resistance by optimizing antimicrobial use in animal health, reducing infection ... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-global-action-plan-antimicrobial-resistance-food.json #### WHO/FAO JECFA Joint Expert Committee on Food Additives - Acceptable Daily Intake (ADI) Methodology: Toxicological Evaluation, NOAEL Determination, Safety Factors, Monograph Publication and Codex GSFA Integration for International Harmonisation - **ID**: who-jecfa-food-additive-safety-evaluations - **Category**: Food & Hospitality - **Version**: 1.0.1 - **BLUF**: This regulation outlines the scientific methodology used by JECFA to evaluate the safety of food additives, contaminants, and veterinary drug residues, establishing Acceptable Daily Intakes (ADIs) bas... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-jecfa-food-additive-safety-evaluations.json #### Agreement on the Application of Sanitary and Phytosanitary Measures (SPS Agreement) - **ID**: wto-sps-agreement-food-trade-disputes - **Category**: Food & Hospitality - **Version**: 1.0.2 - **BLUF**: The SPS Agreement requires WTO members to base food safety, animal, and plant health measures on scientific principles, apply them only to the extent necessary to protect life or health, and avoid arb... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-sps-agreement-food-trade-disputes.json ### Gaming & Gambling (104 nodes) #### Alderney eGambling Regulations 2009 - Associate and Full Certificate Requirements, Technical Standards and AML Obligations - **ID**: alderney-egambling-regulations-2009 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Alderney eGambling Regulations 2009 establish licensing, technical, and anti-money laundering (AML) requirements for operators providing online gambling services from Alderney. It applies to all a... - **Discovery URL**: https://bidda.com/api/v1/nodes/alderney-egambling-regulations-2009.json #### Belgium Gambling Act 1999 (Online Amendments 2010) - Licence Categories, Player Protection, Advertising Prohibitions and Loot Box Classification - **ID**: belgium-gambling-act-1999-online-amendments - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: This regulation governs online gambling activities in Belgium, establishing licensing requirements, player protection mechanisms, and advertising restrictions under the amended framework of the 1999 A... - **Discovery URL**: https://bidda.com/api/v1/nodes/belgium-gambling-act-1999-online-amendments.json #### Brazil Gaming Regulation Law 14.790/2023 - Fixed-Odds Sports Betting Legalisation - **ID**: brazil-gaming-regulation-law-14790-2023 - **Category**: Gaming & Gambling - **Version**: 2023-12 - **BLUF**: Brazil's Law 14.790/2023 (effective December 2023) legalises fixed-odds sports betting and online gaming in Brazil, establishing a federal licensing regime administered by the Ministry of Finance (SPA... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-gaming-regulation-law-14790-2023.json #### Lei n° 14.790, de 29 de dezembro de 2023 - Dispõe sobre a modalidade lotérica denominada apostas de quota fixa; altera as Leis n°s 5.768, de 20 de dezembro de 1971, e 13.756, de 12 de dezembro de 2018, e a Medida Provisória n° 2.158-35, de 24 de agosto de 2001; revoga dispositivos do Decreto-Lei n° 204, de 27 de fevereiro de 1967; e dá outras providências - **ID**: brazil-sports-betting-law-14790-2023 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: This law establishes the legal framework for fixed-odds betting in Brazil, authorizing its operation under prior approval by the Ministry of Finance. It applies to corporate entities seeking to operat... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-sports-betting-law-14790-2023.json #### Canada Criminal Code Part VII (Disorderly Houses, Gaming and Betting): Common Gaming House, Betting and Book-making, Lottery Schemes, and Provincial Lottery Exemption - **ID**: canada-criminal-code-part-vii-gaming-betting - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Part VII of the Canadian Criminal Code, R.S.C. 1985, c. C-46, titled Disorderly Houses, Gaming and Betting, is the principal federal criminal framework regulating gaming and betting conduct in Canada ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-criminal-code-part-vii-gaming-betting.json #### Canada iGaming Ontario - Gaming Control Act 1992 and Online Market Framework - **ID**: canada-igaming-ontario-gaming-control-act-1992 - **Category**: Gaming & Gambling - **Version**: 2.3 - **BLUF**: Ontario's iGaming market, launched 4 April 2022 under the authority of the Gaming Control Act 1992 (GCA) and the iGaming Ontario (iGO) framework, is Canada's largest regulated online gambling market. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-igaming-ontario-gaming-control-act-1992.json #### China Online Gaming Regulations 2023 - NPPA Draft Rules: Playtime Limits, Spending Caps, Minor Protection, Real-Name Registration, Anti-Addiction System and Game Approval Process - **ID**: china-online-gaming-regulations-2023-nppa - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: This regulation imposes strict playtime and spending limits on minors, mandates real-name registration, and requires implementation of an anti-addiction system for online gaming platforms operating in... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-online-gaming-regulations-2023-nppa.json #### Law 643 of 2001 - Regulation of Games of Chance and Creation of the National Gaming Authority (Coljuegos) - **ID**: colombia-coljuegos-law-643-2001 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Law 643 of 2001 establishes the state monopoly over games of chance in Colombia, grants exclusive regulatory and supervisory authority to Coljuegos, and mandates that 50% of net gaming revenues be all... - **Discovery URL**: https://bidda.com/api/v1/nodes/colombia-coljuegos-law-643-2001.json #### Colombia Coljuegos Online Gaming Regulations 2016 - Juegos de Azar Online - **ID**: colombia-coljuegos-online-gaming-regulations-2016 - **Category**: Gaming & Gambling - **Version**: 2016-04 - **BLUF**: Colombia's Coljuegos (Empresa Industrial y Comercial del Estado Administradora del Monopolio Rentístico de los Juegos de Suerte y Azar) regulates online gaming under Decree 1966/2013 and Resolution 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/colombia-coljuegos-online-gaming-regulations-2016.json #### Colombia Gambling Law 643 of 2001 - Coljuegos State Monopoly and Online Gaming Framework - **ID**: colombia-gambling-law-643-2001-coljuegos - **Category**: Gaming & Gambling - **Version**: 2.0 - **BLUF**: Colombia's Ley 643 de 2001 (Law 643 of 2001) established the state's exclusive monopoly over games of chance (juegos de suerte y azar). Coljuegos (Empresa Industrial y Comercial del Estado Administrad... - **Discovery URL**: https://bidda.com/api/v1/nodes/colombia-gambling-law-643-2001-coljuegos.json #### Curaçao Gaming Control Board National Ordinance 2023 - New Licensing Regime, Operator Obligations and Player Fund Segregation Requirements - **ID**: curacao-gaming-control-board-ordinance-2023 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: This ordinance establishes a comprehensive licensing framework for gaming operators in Curaçao, requiring strict segregation of player funds, ongoing compliance with anti-money laundering protocols, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/curacao-gaming-control-board-ordinance-2023.json #### Czech Republic Act on Gambling No. 186/2016 Sb. - Ministry of Finance Online Licensing and Technical Standards - **ID**: czech-republic-gambling-act-186-2016 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Czech Act No. 186/2016 Sb. on Gambling (Zakon o hazardnich hrach), effective 1 January 2017, replaced all prior Czech gambling legislation and established a unified licensing regime for online and lan... - **Discovery URL**: https://bidda.com/api/v1/nodes/czech-republic-gambling-act-186-2016.json #### Estonia Gambling Act 2008 (Hasartmanguseadus) - Maksu- ja Tolliamet (MTA) Licensing Framework - **ID**: estonia-gambling-act-hasartmanguseadus-2008-mta - **Category**: Gaming & Gambling - **Version**: 2.0 - **BLUF**: Estonia's Gambling Act (Hasartmanguseadus, RT I 2008, 47, 261, in force 1 January 2009) established one of the European Union's first comprehensively regulated online gambling frameworks. The Maksu- j... - **Discovery URL**: https://bidda.com/api/v1/nodes/estonia-gambling-act-hasartmanguseadus-2008-mta.json #### Directive (EU) 2018/843 of the European Parliament and of the Council of 30 May 2018 on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing (Fifth Anti-Money Laundering Directive), Article 2 - Obligations for providers of gambling services - **ID**: eu-5amld-article-2-gambling-2018 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: EU 5AMLD Article 2 mandates that providers of gambling services, including online casinos and betting platforms, must conduct customer due diligence (CDD), implement risk-based AML/CFT measures, and r... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-5amld-article-2-gambling-2018.json #### Directive (EU) 2018/1808 of the European Parliament and of the Council of 14 November 2018 amending Directive 2010/13/EU on the coordination of certain provisions laid down by law, regulation or administrative action in Member States concerning the provision of audiovisual media services (Audiovisual Media Services Directive) - **ID**: eu-audiovisual-media-services-loot-boxes-2018 - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: The amendment requires video‑sharing platform services that provide programmes or user‑generated videos as an essential functionality to be subject to the Audiovisual Media Services Directive, includi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-audiovisual-media-services-loot-boxes-2018.json #### Regulation (EU) 2022/2065 on a Single Market for Digital Services (Digital Services Act) - **ID**: eu-dsa-platform-obligations-gaming-2022 - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: The DSA obliges gaming platforms that provide intermediary services to remove illegal content, prohibit targeted advertising to minors, disclose algorithmic recommendation logic, and, if classified as... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dsa-platform-obligations-gaming-2022.json #### Regulation (EU) 2023/1114 of the European Parliament and of the Council on markets in crypto‑assets (MiCA) - **ID**: eu-micar-crypto-gaming-platforms-2023 - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: Recital (6) of Regulation (EU) 2023/1114 establishes a Union‑wide framework that obliges issuers of crypto‑assets - including in‑game tokens and NFTs offered by gaming platforms - to publish a white p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-micar-crypto-gaming-platforms-2023.json #### Directive (EU) 2015/2366 on payment services (PSD2) - Requirements for Gaming Deposit Transactions - **ID**: eu-payment-services-directive-2-gaming-deposits - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: Directive (EU) 2015/2366 (PSD2) obliges payment service providers to apply Strong Customer Authentication (SCA) to all electronic payments including online gaming deposits under Article 97, and to ref... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-payment-services-directive-2-gaming-deposits.json #### Council of Europe Convention on the Manipulation of Sports Competitions (Macolin Convention) 2014 - **ID**: eu-sports-betting-integrity-macolin-convention - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Macolin Convention obliges all Council of Europe member states to criminalise the manipulation of sports competitions (Article 3), establish national betting monitoring systems and reporting mecha... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sports-betting-integrity-macolin-convention.json #### France Loi 2010-476 / ANJ - Online Gambling Regulation (Autorité Nationale des Jeux) - **ID**: france-anj-online-gambling-loi-2010-476 - **Category**: Gaming & Gambling - **Version**: 2.0.0 - **BLUF**: France's online gambling framework (Loi n° 2010-476) opened sports betting, horse racing, and online poker to competition under ANJ licensing while maintaining La Francaise des Jeux's monopoly on casi... - **Discovery URL**: https://bidda.com/api/v1/nodes/france-anj-online-gambling-loi-2010-476.json #### Germany Interstate Gambling Treaty (Glücksspielstaatsvertrag GlüStV 2021) - Licence Regime, Online Slots and Sports Betting Rules, GGL Supervision - **ID**: germany-state-gambling-treaty-2021 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The regulation establishes a unified licensing and supervisory framework for cross-border online gambling offers in Germany, enforced by the Gemeinsame Glücksspielbehörde der Länder (GGL). It applies ... - **Discovery URL**: https://bidda.com/api/v1/nodes/germany-state-gambling-treaty-2021.json #### Gibraltar Gambling Act 2005 - Remote Gambling Licensing, Responsible Gambling and Advertising Standards - **ID**: gibraltar-gambling-act-2005 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Gibraltar Gambling Act 2005 establishes a licensing regime for remote gambling operators, requiring compliance with responsible gambling measures, anti-money laundering protocols, and advertising ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gibraltar-gambling-act-2005.json #### Gibraltar Gambling Act 2005 - GLA Licensing: Remote Gambling, Responsible Gambling Requirements, Advertising Standards, Financial Crime Obligations, Technical Standards and GLA Annual Compliance Reports - **ID**: gibraltar-gambling-act-2005-gla - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Gibraltar Gambling Act 2005 establishes a licensing regime for remote gambling operators under the supervision of the Gibraltar Licensing Authority (GLA), requiring compliance with responsible gam... - **Discovery URL**: https://bidda.com/api/v1/nodes/gibraltar-gambling-act-2005-gla.json #### Greece Law 4002/2011 - Hellenic Gaming Commission Online Gambling Licensing and Regulation - **ID**: greece-hellenic-gaming-commission-law-4002-2011 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Greece Law 4002/2011 (as amended through Law 4772/2021) establishes the Hellenic Gaming Commission (HGC/ΕΕΕΠ) as an independent regulator, requires Type 1 (sports betting) and Type 2 (online casino) B... - **Discovery URL**: https://bidda.com/api/v1/nodes/greece-hellenic-gaming-commission-law-4002-2011.json #### The Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Amendment Rules, 2023 - Regulation of Online Gaming and Recognition of Self-Regulatory Bodies - **ID**: india-meity-online-gaming-rules-2023 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The MeitY Online Gaming Rules 2023 require online gaming platforms operating in India to implement a robust self-regulatory framework, verify users as per prescribed due diligence, and distinguish bet... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-meity-online-gaming-rules-2023.json #### The Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Amendment Rules, 2023 - Regulation of Online Gaming and Recognition of Self-Regulatory Bodies - **ID**: india-online-gaming-intermediary-rules-2023 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The India Online Gaming Intermediary Rules 2023 require online gaming platforms to verify users, implement self-regulatory body (SRB) oversight, distinguish games of skill from chance, protect user de... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-online-gaming-intermediary-rules-2023.json #### India Tamil Nadu Prohibition of Online Gambling and Regulation of Online Games Act 2022 - **ID**: india-tn-online-gambling-act-2022-online-games - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Tamil Nadu Prohibition of Online Gambling and Regulation of Online Games Act 2022 was passed by the Tamil Nadu Legislative Assembly in October 2022 and received the Governor's assent on 7 April 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-tn-online-gambling-act-2022-online-games.json #### Ireland Gambling Regulation Act 2024 - Gambling Regulatory Authority of Ireland - **ID**: ireland-gambling-regulation-act-2024 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: All operators offering gambling services to persons in Ireland must hold a licence from the Gambling Regulatory Authority of Ireland (GRAI). Social impact obligations, advertising restrictions, a nati... - **Discovery URL**: https://bidda.com/api/v1/nodes/ireland-gambling-regulation-act-2024.json #### Isle of Man Gambling Supervision Act 2010 - eGaming Licence Framework, Advertising Controls and Player Fund Protection - **ID**: isle-of-man-gambling-supervision-act-2010 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Isle of Man Gambling Supervision Act 2010 establishes a licensing regime for eGaming operators, mandates strict advertising controls to prevent targeting minors, and requires segregation and prote... - **Discovery URL**: https://bidda.com/api/v1/nodes/isle-of-man-gambling-supervision-act-2010.json #### Italy ADM Online Gambling Framework - Legislative Decree 88/2015 and Consolidated Customs Act - **ID**: italy-adm-online-gambling-decree-88-2015 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Italy's Agenzia delle Dogane e dei Monopoli (ADM) regulates online gambling under Decree 88/2015, the Consolidated Customs and Monopolies Act (TULPS), and 2024 Riordino del gioco pubblico reforms: B2C... - **Discovery URL**: https://bidda.com/api/v1/nodes/italy-adm-online-gambling-decree-88-2015.json #### Japan Integrated Resort Implementation Act 2018 - Casino Administration Committee (CAC) Framework - **ID**: japan-integrated-resort-ir-implementation-act-2018-cac - **Category**: Gaming & Gambling - **Version**: 2.0 - **BLUF**: Japan's Act on Development of Specified Complex Tourist Facilities Areas (Integrated Resort Implementation Act, Act No. 80 of 27 July 2018) introduced a tightly restricted casino-within-resort model, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-integrated-resort-ir-implementation-act-2018-cac.json #### Act on Integrated Resort Facilities and Related Measures (Integrated Resort Implementation Act) 2018 - **ID**: japan-ir-implementation-act-2018 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Japan Integrated Resort (IR) Implementation Act 2018 establishes a legal framework for the operation of casino-integrated resorts in Japan, requiring strict licensing, anti-money laundering contro... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-ir-implementation-act-2018.json #### Betting Control and Licensing Act (Cap. 131) of the Laws of Kenya - **ID**: kenya-betting-control-licensing-act-cap-131 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: This regulation establishes the legal framework for licensing, regulating, and supervising betting and gaming activities in Kenya, including sports betting, online gambling, and pool betting. It appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/kenya-betting-control-licensing-act-cap-131.json #### Kenya Gambling Control Act 2023 - Betting Control and Licensing Board (BCLB) Framework - **ID**: kenya-gambling-control-act-2023-bclb - **Category**: Gaming & Gambling - **Version**: 2.0 - **BLUF**: Kenya's Gambling Control Act 2023 (Act No. 33 of 2023) repealed and replaced the Betting, Lotteries and Gaming Act (Cap. 131) and established a modernised regulatory framework for all gambling activit... - **Discovery URL**: https://bidda.com/api/v1/nodes/kenya-gambling-control-act-2023-bclb.json #### Law No. 16/2001 - Casino Concession Framework, DICJ Supervision and Gaming Operator Obligations - **ID**: macau-gaming-law-16-2001 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: This law establishes the legal framework for casino concessions in Macau, requiring all gaming operators to obtain a concession contract approved by the Chief Executive and to operate under the superv... - **Discovery URL**: https://bidda.com/api/v1/nodes/macau-gaming-law-16-2001.json #### Malta Gaming Authority - iGaming Remote Gaming Licence (MGA/RGL) - **ID**: malta-gaming-authority-igaming-remote-gaming-regulations-2004 - **Category**: Gaming & Gambling - **Version**: 2.0.0 - **BLUF**: The Malta Gaming Act (Cap. 583) and Gaming Regulations (S.L. 583.07) establish the Malta Gaming Authority (MGA) as the regulator for iGaming operators licensed in Malta; MGA licences are recognised ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/malta-gaming-authority-igaming-remote-gaming-regulations-2004.json #### Malta Gaming Authority - B2C Gaming Service Licence Requirements and Player Protection Framework - **ID**: malta-gaming-authority-mga-igaming-licence-2021 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Malta Gaming Authority (MGA) is the principal licensing authority for B2C iGaming operators globally, with MGA licences recognised across 30+ jurisdictions. MGA's Player Protection Directive (Dire... - **Discovery URL**: https://bidda.com/api/v1/nodes/malta-gaming-authority-mga-igaming-licence-2021.json #### Malta Gaming Authority (Remote Gaming) Regulations, 2018 - Licence Types (B2C/B2B), Licence Conditions, Player Protection, Responsible Gaming, Technical Standards and MGA Enforcement Powers - **ID**: malta-gaming-authority-mga-regulations-2018 - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: The MGA Regulations 2018 establish a comprehensive licensing and compliance framework for remote gaming operators in Malta, requiring adherence to strict player protection, anti-money laundering, tech... - **Discovery URL**: https://bidda.com/api/v1/nodes/malta-gaming-authority-mga-regulations-2018.json #### Malta Gaming Authority (MGA) Gaming Regulations 2018 - **ID**: malta-mga-gaming-regulations-2018 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The MGA Gaming Regulations 2018 establish licensing categories, operational standards, and player protection obligations for all gaming operators in Malta, requiring compliance with Articles 7-15 on l... - **Discovery URL**: https://bidda.com/api/v1/nodes/malta-mga-gaming-regulations-2018.json #### Malta MGA Remote Gaming Licence - Operator Obligations Under Gaming Authorisations Regulations 2018 - **ID**: malta-mga-remote-gaming-regulations-2004-licensed-operator-obligations - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Malta Gaming Authority (MGA) Gaming Authorisations Regulations (L.N. 243 of 2018) require B2C remote gambling operators to hold an MGA licence to serve EU and international markets. Operators must... - **Discovery URL**: https://bidda.com/api/v1/nodes/malta-mga-remote-gaming-regulations-2004-licensed-operator-obligations.json #### Netherlands Remote Gambling Act (KOA) 2019 - Licences, Responsible Gambling Obligations, Advertising Restrictions and CRUKS Self-Exclusion Register - **ID**: netherlands-remote-gambling-act-2019 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Netherlands Remote Gambling Act (KOA) 2019 requires all providers of online gambling services targeting Dutch players to obtain a licence from the Kansspelautoriteit and comply with strict respons... - **Discovery URL**: https://bidda.com/api/v1/nodes/netherlands-remote-gambling-act-2019.json #### Netherlands Remote Gambling Act 2021 (KOA) - Kansspelautoriteit Licensing Framework - **ID**: netherlands-remote-gambling-act-koa-2021-ksa - **Category**: Gaming & Gambling - **Version**: 2.1 - **BLUF**: The Wet kansspelen op afstand (Remote Gambling Act, KOA), which came into force on 1 October 2021, opened the Dutch online gambling market to licensed operators after a decade of prohibition. The Kans... - **Discovery URL**: https://bidda.com/api/v1/nodes/netherlands-remote-gambling-act-koa-2021-ksa.json #### Netherlands Remote Gambling Act 2021 - Regulation of Online Gambling, Licensing by the Kansspelautoriteit, Responsible Gambling Measures, Advertising Restrictions, Anti-Money Laundering Obligations, and Enforcement Powers - **ID**: netherlands-remote-gaming-act-2021-ksa - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: The Netherlands Remote Gambling Act 2021 establishes a legal framework for online gambling operators offering services to Dutch residents, requiring a license from the Kansspelautoriteit (KSA). Operat... - **Discovery URL**: https://bidda.com/api/v1/nodes/netherlands-remote-gaming-act-2021-ksa.json #### Nevada Gaming Control Act - NGC Regulations: Licence Classification, Suitability Investigations, Internal Controls, Accounting Procedures, Advertising Standards and Problem Gambling Requirements - **ID**: nevada-gaming-control-act-board-regulations - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: This regulation establishes licensing, suitability, internal control, accounting, advertising, and responsible gaming requirements for all persons and entities operating gaming activities in Nevada, p... - **Discovery URL**: https://bidda.com/api/v1/nodes/nevada-gaming-control-act-board-regulations.json #### New Jersey Division of Gaming Enforcement - Atlantic City and Online Casino Regulations: Licence Categories, Internal Control Standards, Casino Simulcasting, Internet Gaming Regulations and Audit Requirements - **ID**: new-jersey-division-gaming-enforcement-dge - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: This regulation establishes licensing, operational, and audit requirements for land-based and online gaming operators in New Jersey under N.J.A.C. 19:45-1.1 et seq. It applies to casino licensees, int... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-jersey-division-gaming-enforcement-dge.json #### Norway Gambling Act 2021 - Lotteritilsynet State Monopoly Framework - **ID**: norway-gambling-act-2021-lotteritilsynet - **Category**: Gaming & Gambling - **Version**: 2.0 - **BLUF**: Norway's Gambling Act (Lotteriloven, Act No.63 of 28 June 2019, entered into force 1 January 2021) maintains the Norwegian state monopoly gambling model. Only Norsk Tipping AS (games of chance) and No... - **Discovery URL**: https://bidda.com/api/v1/nodes/norway-gambling-act-2021-lotteritilsynet.json #### Gambling Act 2003 - **ID**: nz-gambling-act-2003 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Gambling Act 2003 establishes the legal framework for gambling activities in New Zealand, defining permitted and prohibited forms of gambling, licensing requirements for operators, and harm minimi... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-gambling-act-2003.json #### Pan European Game Information (PEGI) Rating System - Age Ratings, Content Descriptors, Online Label and Loot Box Labelling Requirements - **ID**: pegi-pan-european-game-information-system - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: The PEGI system mandates age classification (3, 7, 12, 16, 18) and content descriptors for video games distributed in 38+ European countries. It applies to all game publishers and distributors placing... - **Discovery URL**: https://bidda.com/api/v1/nodes/pegi-pan-european-game-information-system.json #### Presidential Decree No. 1869, as Amended: Charter of the Philippine Amusement and Gaming Corporation (PAGCOR) - **ID**: philippines-pagcor-charter-pd-1869 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: This regulation establishes PAGCOR as the sole government authority for licensing and regulating gaming operations in the Philippines, including land-based and online gaming (PIGO). It mandates that a... - **Discovery URL**: https://bidda.com/api/v1/nodes/philippines-pagcor-charter-pd-1869.json #### Philippines PAGCOR Charter - Presidential Decree 1869 Casino and Gaming Licensing Framework - **ID**: philippines-pagcor-presidential-decree-1869-charter - **Category**: Gaming & Gambling - **Version**: 2.0 - **BLUF**: The Philippine Amusement and Gaming Corporation (PAGCOR) was established by Presidential Decree No. 1869 of 1983 (as amended by Republic Act No. 9487 of 2007), which granted PAGCOR a franchise to oper... - **Discovery URL**: https://bidda.com/api/v1/nodes/philippines-pagcor-presidential-decree-1869-charter.json #### Poland Gambling Act 2009 (Ustawa o grach hazardowych) - Ministry of Finance Online Licensing and AML Framework - **ID**: poland-gambling-law-2009-uoogg - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Poland's Gambling Act of 19 November 2009 (Dz.U. 2009 nr 201 poz. 1540, consolidated text Dz.U. 2023 poz. 227), as fundamentally amended in 2017 (Act of 15 December 2016), established a state-controll... - **Discovery URL**: https://bidda.com/api/v1/nodes/poland-gambling-law-2009-uoogg.json #### Portugal Decreto-Lei 66/2015 - Online Gambling Regulation (SRIJ) - **ID**: portugal-srij-online-gambling-decree-66-2015 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Portugal's online gambling framework (DL 66/2015) authorises sports betting, casino games, and online poker under SRIJ licensing, with mandatory integration into the national self-exclusion register (... - **Discovery URL**: https://bidda.com/api/v1/nodes/portugal-srij-online-gambling-decree-66-2015.json #### Global Gambling Guidance Group (G4) Responsible Gambling Standards - International Benchmarks for Player Protection and Harm Minimisation Programmes - **ID**: responsible-gambling-grb-standards-2023 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: This standard establishes international benchmarks for responsible gambling programmes, requiring operators to implement evidence-based player protection measures, including risk assessment, self-excl... - **Discovery URL**: https://bidda.com/api/v1/nodes/responsible-gambling-grb-standards-2023.json #### Romania GEO 77/2009 / GEO 92/2014 - Online Gambling Regulation (ONJN) - **ID**: romania-onjn-online-gambling-geo-77-2009 - **Category**: Gaming & Gambling - **Version**: 1.1.0 - **BLUF**: Romania's online gambling framework (GEO 77/2009 as amended by GEO 92/2014) requires ONJN authorisation for all online gambling operators targeting Romanian players, with 5% GGR tax for online and 25%... - **Discovery URL**: https://bidda.com/api/v1/nodes/romania-onjn-online-gambling-geo-77-2009.json #### Casino Control Act 2006 (Cap. 33A) - **ID**: singapore-casino-control-act-2006 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Casino Control Act 2006 regulates the licensing, operation, and supervision of casinos in Singapore, including requirements for casino operators, employee licensing, anti-money laundering controls... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-casino-control-act-2006.json #### Singapore Remote Gambling Act 2014 - Online Gambling Prohibition and Exemption Framework - **ID**: singapore-remote-gambling-act-2014 - **Category**: Gaming & Gambling - **Version**: 2014-11 - **BLUF**: Singapore's Remote Gambling Act 2014 (Cap. 323A) prohibits all forms of remote gambling (online, telephone, and other electronic means) unless the operator holds an exemption issued by the Minister of... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-remote-gambling-act-2014.json #### National Gambling Act 7 of 2004 - National and Provincial Licensing, Interactive Gambling Moratorium and Problem Gambling Fund - **ID**: south-africa-national-gambling-act-7-2004 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The National Gambling Act 7 of 2004 establishes a dual-tier licensing framework for gambling activities in South Africa, requiring all operators to obtain national and provincial licenses. It imposes ... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-national-gambling-act-7-2004.json #### Game Industry Promotion Act (Act No. 10975, as amended by Act No. 18605 on January 12, 2022) - Provisions on Game Rating, Shutdown Law for Minors, Probability Disclosure, and Business Registration - **ID**: south-korea-game-industry-promotion-act - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The South Korea Game Industry Promotion Act mandates game developers and publishers to register with the Ministry of Culture, Sports and Tourism, obtain game ratings from the Game Rating and Administr... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-korea-game-industry-promotion-act.json #### Spain Gambling Act (Ley 13/2011) - DGOJ Online Gambling Licensing and Player Protection - **ID**: spain-gambling-act-ley-13-2011-dgoj - **Category**: Gaming & Gambling - **Version**: 2011-05 - **BLUF**: Spain's Ley 13/2011 de regulacion del juego (May 27, 2011) establishes the Direccion General de Ordenacion del Juego (DGOJ) as the national online gambling regulator, creates a licensing regime for on... - **Discovery URL**: https://bidda.com/api/v1/nodes/spain-gambling-act-ley-13-2011-dgoj.json #### Sweden Gambling Act 2018:1138 - Channelisation Model, Licence Conditions, Responsible Gambling Requirements and Spelinspektionen Oversight - **ID**: sweden-gambling-act-2018-1138 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: License holders must implement measures to promote responsible gambling and prevent excessive gambling as required by the Swedish Gambling Authority. This applies to all licensed gambling operators in... - **Discovery URL**: https://bidda.com/api/v1/nodes/sweden-gambling-act-2018-1138.json #### Act (2018:1138) on Gambling - Sweden Gambling Act 2018 - **ID**: sweden-gambling-act-2018-spelinspektionen - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Sweden Gambling Act 2018 mandates all licensed operators under Spelinspektionen to implement mandatory deposit limits, session time controls, self-exclusion via Spelpaus, responsible gambling meas... - **Discovery URL**: https://bidda.com/api/v1/nodes/sweden-gambling-act-2018-spelinspektionen.json #### Sweden Gambling Act 2018:1138 (Spellagen) - Spelinspektionen Licensing and Player Protection Framework - **ID**: sweden-gambling-act-2018-spellagen - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Sweden's Gambling Act 2018:1138 (Spellagen), effective 1 January 2019, established a fully re-regulated online gambling market requiring all operators targeting Swedish players to hold a Spelinspektio... - **Discovery URL**: https://bidda.com/api/v1/nodes/sweden-gambling-act-2018-spellagen.json #### Switzerland Federal Gaming Act (Geldspielgesetz/BGS) 2019 - Online Casino Licensing and Lottery Monopoly - **ID**: switzerland-geldspielgesetz-federal-gaming-act-2019 - **Category**: Gaming & Gambling - **Version**: 2019-01 - **BLUF**: Switzerland's Bundesgesetz uber Geldspiele (BGS/Geldspielgesetz), which entered into force on January 1, 2019, establishes a dual-authority regulatory framework: the Federal Gaming Board (ESBK/Commiss... - **Discovery URL**: https://bidda.com/api/v1/nodes/switzerland-geldspielgesetz-federal-gaming-act-2019.json #### Gambling Act 2005 - Licensing Framework, Gambling Commission Powers and Duties, and Consumer Protection Requirements - **ID**: uk-gambling-act-2005 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Gambling Act 2005 establishes a comprehensive regulatory framework for all forms of gambling in Great Britain, requiring operators and individuals to obtain licenses from the Gambling Commission a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gambling-act-2005.json #### UK Gambling Act 2005 - Gambling Commission Licence Conditions and Codes of Practice - **ID**: uk-gambling-act-2005-gambling-commission-licence-conditions - **Category**: Gaming & Gambling - **Version**: 2.0.0 - **BLUF**: The Gambling Act 2005 (c.19) establishes the Gambling Commission as the regulator for commercial gambling in Great Britain; operators require an operating licence; licence conditions and codes of prac... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gambling-act-2005-gambling-commission-licence-conditions.json #### Gambling Act 2005 - Licensing Objectives, Operating and Personal Licence Conditions, and Regulatory Powers - **ID**: uk-gambling-act-2005-licence-conditions - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Gambling Act 2005 establishes the legal framework for gambling regulation in Great Britain, requiring all operators and individuals providing gambling facilities to hold appropriate operating or p... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gambling-act-2005-licence-conditions.json #### UK Gambling Act 2005 - Licensing Conditions and Codes of Practice for Remote Gambling Operators - **ID**: uk-gambling-act-2005-licensing-conditions-remote-operators - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Gambling Act 2005 (UK) establishes the three licensing objectives (preventing crime, ensuring fairness, protecting children and vulnerable persons) and requires all remote gambling operators servi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gambling-act-2005-licensing-conditions-remote-operators.json #### Gambling Act 2005, Section 1: The licensing objectives - **ID**: uk-gambling-act-2005-section-1-licensing-objectives - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Organizations must ensure all gambling activities align with the three core licensing objectives: preventing crime and disorder, ensuring fair and open conduct, and protecting children and vulnerable ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gambling-act-2005-section-1-licensing-objectives.json #### Gambling Act 2005 Section 116 Review - **ID**: uk-gambling-act-2005-section-116-remote-gambling - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Gambling Commission may review an operating licence for various reasons, including suspected non-compliance or unsuitability, and must notify the licensee and allow them to make representations du... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gambling-act-2005-section-116-remote-gambling.json #### Gambling Act 2005, Section 13: Betting intermediary - **ID**: uk-gambling-act-2005-section-13-gambling-commission - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: This section defines a 'betting intermediary' as a person providing a service to facilitate bets between others and clarifies that this activity constitutes providing facilities for betting under the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gambling-act-2005-section-13-gambling-commission.json #### UK Gambling Act 2005 Section 33 - Provision of Facilities for Gambling (Operating Licence Offence) - **ID**: uk-gambling-act-2005-section-33-provision-of-facilities - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Section 33 of the UK Gambling Act 2005 (c. 19) creates the foundational operating licence offence for providing facilities for gambling without lawful authority: subsection (1) provides 'A person comm... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gambling-act-2005-section-33-provision-of-facilities.json #### Gambling Act 2005, Section 42: Cheating - **ID**: uk-gambling-act-2005-section-42-offence-cheating - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Organizations must ensure that no individual cheats at gambling or enables or assists another person to cheat, which constitutes a criminal offence regardless of whether the cheating results in a win. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gambling-act-2005-section-42-offence-cheating.json #### Gambling Act 2005, Section 67: Remote gambling - **ID**: uk-gambling-act-2005-section-67-operating-licence - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Organizations must ensure their operating licence correctly identifies whether it is a remote operating licence and that it does not improperly combine remote and non-remote gambling activities. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gambling-act-2005-section-67-operating-licence.json #### Licence Conditions and Codes of Practice (LCCP) Version effective from 6 April 2026 - **ID**: uk-gambling-commission-lccp-2024 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Licence Conditions and Codes of Practice (LCCP) sets out the legal requirements that all gambling operators licensed by the UK Gambling Commission must meet to ensure socially responsible gambling... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-gambling-commission-lccp-2024.json #### 18 USC § 1084 - Wire Act (Transmission of Wagering Information) - **ID**: us-18-usc-1084-wire-act-gambling - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: 18 USC § 1084 (Federal Wire Act, originally enacted September 13, 1961 as the Interstate Wire Act of 1961, Pub. L. 87-216) criminalizes the use of wire communication facilities for transmission of bet... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1084-wire-act-gambling.json #### 18 U.S.C. § 1953 - Interstate Transportation of Wagering Paraphernalia - **ID**: us-18-usc-1953-interstate-transportation-of-wagering-paraphernalia - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Any person other than a common carrier in the usual course of its business who knowingly carries or sends in interstate or foreign commerce any record, paraphernalia, ticket, certificate, bills, slip,... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1953-interstate-transportation-of-wagering-paraphernalia.json #### US Federal Criminal Code - 18 USC 1955 Prohibition of Illegal Gambling Businesses - **ID**: us-18-usc-1955-illegal-gambling-business - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: 18 USC 1955 is the federal criminal statute that federalizes operation of significant illegal gambling businesses violating state law. Subsection (a) provides: whoever conducts, finances, manages, sup... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1955-illegal-gambling-business.json #### 31 USC § 5363 - Unlawful Internet Gambling Enforcement Act (UIGEA) Payment Prohibition - **ID**: us-31-usc-5363-uigea-unlawful-internet-gambling - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: 31 USC § 5363 (enacted as the Unlawful Internet Gambling Enforcement Act of 2006, Pub. L. 109-347 Title VIII) prohibits any person engaged in the business of betting or wagering from knowingly accepti... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-usc-5363-uigea-unlawful-internet-gambling.json #### Arizona Event Wagering Act 2021 - Sports Betting via Tribal and Professional Team Licences - **ID**: us-arizona-sports-wagering-act-2021 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Arizona's Event Wagering Act (HB 2772, 2021; A.R.S. 5-1301 et seq.) authorises sports betting through two streams: up to 20 Professional Sports Team Event Wagering Operators licenses and tribal gaming... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-arizona-sports-wagering-act-2021.json #### US CFTC Jurisdiction over Event Contracts and Prediction Markets (2024) - **ID**: us-cftc-event-contracts-prediction-markets-2024 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Commodity Futures Trading Commission (CFTC) regulates event contracts as commodity derivatives under the Commodity Exchange Act of 1936 (CEA) as amended. Section 5c(c)(5)(C) of the CEA gives the C... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cftc-event-contracts-prediction-markets-2024.json #### Colorado Sports Betting Act 2020 - Limited Gaming Control Commission Licensing - **ID**: us-colorado-sports-wagering-act-2020 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Colorado legalised sports betting through Proposition DD (approved November 2019) and implemented through Senate Bill 20-111 and Colorado Revised Statutes 44-30-1501 et seq. The Colorado Limited Gamin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-colorado-sports-wagering-act-2020.json #### FTC Staff Perspective on Loot Boxes in Online Games: Disclosure, Deception, and Children's Privacy Under COPPA - **ID**: us-ftc-loot-boxes-children-coppa-guidance - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: This FTC guidance clarifies that loot boxes in online games targeted at or likely to be used by children under 13 must comply with the Children's Online Privacy Protection Act (COPPA) and associated d... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-loot-boxes-children-coppa-guidance.json #### Illinois Sports Wagering Act 2019 - In-Person and Online Sports Betting Licensing - **ID**: us-illinois-sports-wagering-act-2019 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Illinois sports betting operators must hold a master sports wagering licence from the Illinois Gaming Board (IGB). The Sports Wagering Act 2019 (PA 101-0031) requires in-person registration for online... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-illinois-sports-wagering-act-2019.json #### US Indian Gaming Regulatory Act (25 U.S.C. Chapter 29): Federal Framework for Gaming on Indian Lands and the Three Classes of Gaming - **ID**: us-indian-gaming-regulatory-act - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Indian Gaming Regulatory Act of 1988 (IGRA), codified at 25 U.S.C. Chapter 29, establishes the federal framework for the conduct and regulation of gaming on Indian lands and creates the National I... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-indian-gaming-regulatory-act.json #### Indiana Lawful Sports Wagering Act 2019 - Gaming Commission Licensing - **ID**: us-indiana-sports-wagering-act-2019 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Indiana's Lawful Sports Wagering Act (Senate Bill 552, 2019; IC 4-38-1 et seq.) authorises sports betting at licensed casinos and online through affiliated platforms. The Indiana Gaming Commission (IG... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-indiana-sports-wagering-act-2019.json #### Kansas Sports Wagering Act 2022 (SB 84) - KRGC Licensing and 10% Tax - **ID**: us-kansas-sports-wagering-act-2022 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Kansas Senate Bill 84 (signed May 12, 2022) enacted the Kansas Sports Wagering Act at K.S.A. 74-9801 et seq., authorising sports wagering regulated by the Kansas Racing and Gaming Commission (KRGC). T... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-kansas-sports-wagering-act-2022.json #### Massachusetts Sports Wagering Act 2022 - Chapter 23N Mobile and Retail Licensing - **ID**: us-massachusetts-sports-wagering-act-2022 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Massachusetts Chapter 126 of the Acts of 2022 (signed August 10, 2022) creates M.G.L. c. 23N and authorises sports wagering regulated by the Massachusetts Gaming Commission (MGC). Tax rates are 15% on... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-massachusetts-sports-wagering-act-2022.json #### Michigan Lawful Sports Betting Act 2019 - Online and Retail Sports Wagering Licensing - **ID**: us-michigan-lawful-sports-betting-act-2019 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Sports betting operators and internet sports betting operators in Michigan must hold licences from the Michigan Gaming Control Board (MGCB). Internet sports betting launched in January 2021. Licensed ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-michigan-lawful-sports-betting-act-2019.json #### Nevada Revised Statutes Chapter 463 - Nevada Gaming Control Act - **ID**: us-nevada-gaming-control-act-nrs-463 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Nevada Gaming Control Act (NRS Chapter 463) establishes the regulatory framework for all gaming activities in Nevada, granting the Nevada Gaming Commission and Gaming Control Board authority to li... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nevada-gaming-control-act-nrs-463.json #### New York Mobile Sports Wagering Act 2021 - PML Article 13-C Highest US Tax Rate - **ID**: us-new-york-mobile-sports-wagering-2022 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: New York's mobile sports wagering framework was enacted as Part MM of Chapter 59 of the Laws of 2021, creating Article 13-C of the Racing, Pari-Mutuel Wagering and Breeding Law (PML Section 1367 et se... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-new-york-mobile-sports-wagering-2022.json #### New Jersey Casino Control Act of 1977 (P.L. 1977, c.110) - **ID**: us-nj-casino-control-act-1977 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The New Jersey Casino Control Act of 1977 establishes the legal framework for casino gaming in Atlantic City, requiring all casino operators to obtain a license from the New Jersey Division of Gaming ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nj-casino-control-act-1977.json #### Ohio Sports Gaming Act 2021 - HB 29 Sports Wagering via ORC Chapter 3775 - **ID**: us-ohio-sports-gaming-act-2021 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Ohio H.B. 29 (2021), codified at Ohio Revised Code (ORC) Chapter 3775, authorises sports wagering regulated by the Ohio Casino Control Commission (OCCC). A 10% tax applies to gross revenue from sports... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ohio-sports-gaming-act-2021.json #### Pennsylvania Race Horse Development and Gaming Act 2004 (4 Pa.C.S.) - PGCB Licensing, Interactive Gaming Permits and Sports Wagering Requirements - **ID**: us-pa-gaming-control-board-act-2004 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: This regulation establishes licensing, operational, and compliance requirements for casino, internet-based gambling, sports wagering, video gaming terminal (VGT) gambling, and fantasy sport games in P... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pa-gaming-control-board-act-2004.json #### Murphy v. National Collegiate Athletic Association, 584 U.S. ___ (2018) - Judgment on the Professional and Amateur Sports Protection Act (PASPA) and State Authority to Legalize Sports Betting - **ID**: us-paspa-repeal-murphy-ncaa-2018-sports-betting - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: The U.S. Supreme Court in Murphy v. NCAA (2018) ruled that the Professional and Amateur Sports Protection Act (PASPA) violates the anti-commandeering doctrine of the Tenth Amendment by prohibiting sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-paspa-repeal-murphy-ncaa-2018-sports-betting.json #### Pennsylvania Sports Wagering Act 2017 (Act 42) - PGCB Licensing and 36% Revenue Tax - **ID**: us-pennsylvania-sports-wagering-act-2017 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Pennsylvania Act 42 of 2017 amended the Race Horse Development and Gaming Act to add interactive and mobile sports wagering provisions, codified at 4 Pa.C.S. Chapter 13C. The Pennsylvania Gaming Contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pennsylvania-sports-wagering-act-2017.json #### Tennessee Sports Gaming Act 2019 - Online-Only Sports Betting Licensing - **ID**: us-tennessee-sports-gaming-act-2019 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Tennessee Sports Gaming Act 2019 (Public Chapter 512; Tenn. Code Ann. 4-40-101 et seq.) established a unique online-only sports betting regime with no retail sportsbooks. The Tennessee Education L... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tennessee-sports-gaming-act-2019.json #### Unlawful Internet Gambling Enforcement Act of 2006 - Prohibitions on Financial Transactions Relating to Unlawful Internet Gambling - **ID**: us-uigea-2006-unlawful-internet-gambling - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The UIGEA prohibits gambling businesses from accepting payments for unlawful internet gambling and requires financial institutions and payment processors to establish and implement policies to identif... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-uigea-2006-unlawful-internet-gambling.json #### Unlawful Internet Gambling Enforcement Act of 2006 - **ID**: us-uigea-unlawful-internet-gambling-2006 - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: Prohibits gambling businesses from accepting payments in connection with unlawful Internet gambling; requires financial institutions and payment processors to establish and implement policies to block... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-uigea-unlawful-internet-gambling-2006.json #### Virginia Sports Betting Act 2020 - Online Sports Wagering Licensing and VSA Regulation - **ID**: us-virginia-sports-betting-act-2020 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: Virginia online sports betting operators must obtain a permit from the Virginia Lottery Board under Chapter 41 of Title 58.1 of the Code of Virginia. Mobile sports betting launched in January 2021. Op... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-virginia-sports-betting-act-2020.json #### West Virginia Sports Wagering Act 2018 (HB 2751) - Lottery Commission Licensing and 10% Tax - **ID**: us-west-virginia-sports-wagering-act-2018 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: West Virginia House Bill 2751 (signed March 27, 2018) added Article 22D to Chapter 29 of the West Virginia Code, authorising sports wagering regulated by the West Virginia Lottery Commission. West Vir... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-west-virginia-sports-wagering-act-2018.json #### United States Federal Wire Act (Title 18 USC Chapter 50): Wire Communication Facility Prohibition on Interstate Transmission of Wagering Information, Gambling Ships, and Transportation Penalties - **ID**: us-wire-act-18-usc-1084 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: The Federal Wire Act and the related federal gambling offences, codified at Title 18 of the United States Code, Chapter 50, are the principal federal criminal statutes governing interstate wagering tr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wire-act-18-usc-1084.json #### Prohibition on the Use of Wire Communication Facilities for Transmitting Wagers or Information Assisting in the Placing of Wagers on Sporting Events or Contests - **ID**: us-wire-act-1961-18-usc-1084 - **Category**: Gaming & Gambling - **Version**: 1.0.0 - **BLUF**: 18 U.S.C. § 1084 prohibits the use of wire communication facilities to transmit bets or wagers on sporting events or contests across state or international borders. It applies to any person or entity ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wire-act-1961-18-usc-1084.json #### US Wire Act 1961 - DOJ Interstate Online Gambling Prohibition - **ID**: us-wire-act-1961-doj-online-gambling-interstate - **Category**: Gaming & Gambling - **Version**: 2.0.0 - **BLUF**: The Interstate Wire Act of 1961 (18 U.S.C. 1084) prohibits the use of wire communications to transmit bets or wagers on sporting events or contests in interstate or foreign commerce; DOJ 2019 opinion ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wire-act-1961-doj-online-gambling-interstate.json #### Federal Wire Act of 1961 - Prohibition on Interstate Wire Communications for Sports Betting and Related Interpretations by the Department of Justice (2011 and 2019 Opinions) - **ID**: us-wire-act-1961-online-gambling-doj - **Category**: Gaming & Gambling - **Version**: 1.0.1 - **BLUF**: The Wire Act of 1961 prohibits the use of wire communication facilities for transmitting bets or wagers on sporting events across state lines. The Department of Justice's 2011 opinion narrowed its sco... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wire-act-1961-online-gambling-doj.json ### Immigration & Border Control (113 nodes) #### Argentina Ley de Migraciones 25.871 de 2004 - Direccion Nacional de Migraciones Visa and Residency Framework - **ID**: argentina-ley-migraciones-25871-2004-migraciones - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Argentina's Ley de Migraciones No. 25.871 (2004), regulated by Decreto 616/2010, establishes one of Latin America's most comprehensive migrant rights frameworks, recognising migration as a human right... - **Discovery URL**: https://bidda.com/api/v1/nodes/argentina-ley-migraciones-25871-2004-migraciones.json #### Australia Migration Act 1958: Lawful and Unlawful Non-Citizens, Visa Authority, Decision to Grant or Refuse, Detention, Removal, Character Cancellation, and Review of Decisions - **ID**: au-migration-act-1958 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Australian Migration Act 1958, Act No. 62 of 1958, is the principal Commonwealth statute governing the entry, presence, and removal of non-citizens from Australia and is administered by the Depart... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-migration-act-1958.json #### Australia Migration Act 1958 - Visa Framework, Detention and Removal - **ID**: australia-migration-act-1958-department-home-affairs - **Category**: Immigration & Border Control - **Version**: 4.1 - **BLUF**: The Migration Act 1958 (Cth) is Australia's principal immigration statute, governing all aspects of visas, border control, detention, and removal of non-citizens. Section 189 creates a duty for any of... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-migration-act-1958-department-home-affairs.json #### Bangladesh Passport and Travel Documents Ordinance 1973 - BIDA Work Permit and Visa Framework - **ID**: bangladesh-passport-travel-documents-ordinance-1973 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Bangladesh's Passport (Offences) Act 1952 and the Foreigners Act 1946 (as applied in Bangladesh) together with the Foreigners Order 1951 form the legislative basis for immigration control, supplemente... - **Discovery URL**: https://bidda.com/api/v1/nodes/bangladesh-passport-travel-documents-ordinance-1973.json #### Brazil Lei de Migracao 13445/2017 - Policia Federal Immigration Framework - **ID**: brazil-lei-migracao-13445-2017-policia-federal - **Category**: Immigration & Border Control - **Version**: 2.2 - **BLUF**: Lei de Migracao No.13,445 of 24 May 2017 (regulated by Decree No.9,199/2017) replaced the authoritarian Estatuto do Estrangeiro of 1980, establishing a rights-based migration framework grounded in hum... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-lei-migracao-13445-2017-policia-federal.json #### Canada Citizenship Act (RSC 1985 c C-29): Citizenship by Birth and Descent, Grant, Revocation and Offences - **ID**: ca-citizenship-act - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Citizenship Act (R.S.C. 1985, c. C-29) is Canada's principal statute governing who is a Canadian citizen and how citizenship is acquired, granted, revoked and protected, administered by Immigratio... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-citizenship-act.json #### Canada Immigration and Refugee Protection Act (IRPA): Entry, Inadmissibility, Protection and Offences - **ID**: ca-immigration-and-refugee-protection-act - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Immigration and Refugee Protection Act (IRPA), S.C. 2001, c. 27, is the principal federal statute governing immigration to and refugee protection in Canada, administered by Immigration, Refugees a... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-immigration-and-refugee-protection-act.json #### Canada Immigration and Refugee Protection Act 2001 - IRCC and CBSA Framework - **ID**: canada-irpa-immigration-refugee-protection-act-2001 - **Category**: Immigration & Border Control - **Version**: 2.8 - **BLUF**: The Immigration and Refugee Protection Act (IRPA, SC 2001 c.27) is Canada's primary immigration statute, governing all classes of immigration (economic, family, refugee), admissibility determinations,... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-irpa-immigration-refugee-protection-act-2001.json #### Cartagena Declaration on Refugees 1984 - Latin American Expanded Refugee Definition and Regional Solidarity Framework - **ID**: cartagena-declaration-refugees-1984 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Cartagena Declaration on Refugees, adopted by acclamation on 22 November 1984 at the Colloquium on the International Protection of Refugees in Central America, Mexico and Panama in Cartagena de In... - **Discovery URL**: https://bidda.com/api/v1/nodes/cartagena-declaration-refugees-1984.json #### Colombia Decreto 1067 de 2015 - Migracion Colombia Visa and International Protection Framework - **ID**: colombia-decreto-1067-2015-migracion-colombia - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Decreto Unico Reglamentario 1067 de 2015 del Sector Administrativo de Relaciones Exteriores consolidates Colombia's immigration regulatory framework. Unidad Administrativa Especial Migracion Colombia ... - **Discovery URL**: https://bidda.com/api/v1/nodes/colombia-decreto-1067-2015-migracion-colombia.json #### Egypt Law 88/2005 on Entry and Residence of Foreigners - Residency Permit and Overstay Framework - **ID**: egypt-law-88-2005-entry-residence-foreigners - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Egypt's Law No. 88 of 2005 on entry and residence of foreigners (Qanun raqam 88 li-sana 2005 bisha'n tanzim dakhal wa iqama al-ajanib) and its implementing Executive Regulations (Ministerial Decree 1/... - **Discovery URL**: https://bidda.com/api/v1/nodes/egypt-law-88-2005-entry-residence-foreigners.json #### Ethiopia Immigration Proclamation 1110/2019 - Entry, Residence and Work Permit Framework - **ID**: ethiopia-immigration-proclamation-1110-2019 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Ethiopia's Immigration Proclamation No. 1110/2019 (Federal Negarit Gazette Extraordinary Issue No.15/2019) replaced the 1966 Immigration Proclamation No. 270 and governs entry, residence and departure... - **Discovery URL**: https://bidda.com/api/v1/nodes/ethiopia-immigration-proclamation-1110-2019.json #### Regulation (EU) No 656/2014 - Surveillance of the External Sea Borders in Frontex-Coordinated Operations - **ID**: eu-celex-32014r0656 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 656/2014 establishes the rules for the surveillance of the external sea borders during operational cooperation coordinated by Frontex. It applies to border surveillance operations c... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014r0656.json #### EU Dublin III Regulation 604/2013 - Member State Responsibility for Asylum Applications and Take Charge/Take Back Procedures - **ID**: eu-dublin-iii-regulation-604-2013-asylum-responsibility - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 604/2013 of the European Parliament and of the Council of 26 June 2013 establishing the criteria and mechanisms for determining the Member State responsible for examining an applica... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dublin-iii-regulation-604-2013-asylum-responsibility.json #### EU Entry/Exit System Regulation 2017/2226 - Automated Border Management and Third-Country National Biometrics - **ID**: eu-entry-exit-system-regulation-2017-2226 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: EU Regulation 2017/2226 establishes the Entry/Exit System (EES) for systematic electronic registration of entry and exit data (including facial images and fingerprints) of third-country nationals cros... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-entry-exit-system-regulation-2017-2226.json #### EU Long-Term Residents Directive 2003/109/EC - Third-Country National Status, Equal Treatment and Mobility Rights - **ID**: eu-long-term-residents-directive-2003-109-ec - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Council Directive 2003/109/EC of 25 November 2003 concerning the status of third-country nationals who are long-term residents establishes a common EU framework granting long-term resident status to t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-long-term-residents-directive-2003-109-ec.json #### EU Schengen Borders Code Regulation 2016/399 - Internal Border Abolition, External Border Checks and Reintroduction Triggers - **ID**: eu-schengen-borders-code-regulation-2016-399 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2016/399 of the European Parliament and of the Council of 9 March 2016 on a Union Code on the rules governing the movement of persons across borders (Schengen Borders Code, SBC, codifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-schengen-borders-code-regulation-2016-399.json #### France Code de l'Entree et du Sejour des Etrangers - CESEDA Immigration Framework - **ID**: france-ceseda-code-entree-sejour-etrangers - **Category**: Immigration & Border Control - **Version**: 3.1 - **BLUF**: The Code de l'entree et du sejour des etrangers et du droit d'asile (CESEDA) consolidates all French immigration and asylum law. The 2023 Immigration Act (Loi Asile-Immigration) substantially amended ... - **Discovery URL**: https://bidda.com/api/v1/nodes/france-ceseda-code-entree-sejour-etrangers.json #### Germany Residence Act (Aufenthaltsgesetz 2004) - BAMF and Auslaenderbehoerde Framework - **ID**: germany-residence-act-aufenthaltsgesetz-2004-bamf - **Category**: Immigration & Border Control - **Version**: 3.5 - **BLUF**: The Aufenthaltsgesetz (Residence Act, AufenthG) of 30 July 2004 (as substantially amended by the Skilled Immigration Act 2020 and subsequent 2023 reforms) is Germany's primary immigration law. It esta... - **Discovery URL**: https://bidda.com/api/v1/nodes/germany-residence-act-aufenthaltsgesetz-2004-bamf.json #### Ghana Immigration Act 573 of 2000 - Ghana Immigration Service Permit and Residency Framework - **ID**: ghana-immigration-act-573-2000-ghana-immigration-service - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Ghana's Immigration Act 573 of 2000 (as amended by Immigration (Amendment) Act 2000 No. 573 and subsequent instruments) governs the entry, stay, and departure of non-Ghanaian nationals. The Ghana Immi... - **Discovery URL**: https://bidda.com/api/v1/nodes/ghana-immigration-act-573-2000-ghana-immigration-service.json #### ICAO Doc 9303 - Machine Readable Travel Documents and Biometric Data Standards - **ID**: icao-doc-9303-travel-document-standards-biometric - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: ICAO Document 9303 (8th Edition 2021) establishes the global standard for Machine Readable Travel Documents (MRTDs) including e-Passports with biometric chips (Part 9), biometric data specifications (... - **Discovery URL**: https://bidda.com/api/v1/nodes/icao-doc-9303-travel-document-standards-biometric.json #### Ireland International Protection Act 2015: Single Procedure, Refugee and Subsidiary Protection, Non-Refoulement - **ID**: ie-international-protection-act-2015 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The International Protection Act 2015 (No. 66 of 2015) is the principal Irish statute governing applications for international protection, administered by the International Protection Office and the M... - **Discovery URL**: https://bidda.com/api/v1/nodes/ie-international-protection-act-2015.json #### India Foreigners Act 1946 - Bureau of Immigration and Visa Regime - **ID**: india-foreigners-act-1946-bureau-of-immigration - **Category**: Immigration & Border Control - **Version**: 2.4 - **BLUF**: The Foreigners Act 1946 (Act No.31 of 1946) and the Registration of Foreigners Act 1939 are India's principal immigration statutes, conferring on the Central Government plenary power to regulate the e... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-foreigners-act-1946-bureau-of-immigration.json #### Indonesia Immigration Law 6 of 2011 - Ditjen Imigrasi Visa and Stay Permit Framework - **ID**: indonesia-immigration-law-6-2011-ditjen-imigrasi - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Law No. 6 of 2011 concerning Immigration (Undang-Undang Keimigrasian) is Indonesia's primary immigration statute, implemented by the Directorate General of Immigration (Ditjen Imigrasi) under the Mini... - **Discovery URL**: https://bidda.com/api/v1/nodes/indonesia-immigration-law-6-2011-ditjen-imigrasi.json #### Ireland Immigration Act 2004 - ISD Employment Permit and Residency Stamp Framework - **ID**: ireland-immigration-act-2004-inis-irishimmigration - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Ireland's Immigration Act 2004 (No. 1 of 2004), as supplemented by the Immigration Act 1999 and numerous statutory instruments, governs the entry, stay, and removal of non-EEA nationals. Immigration S... - **Discovery URL**: https://bidda.com/api/v1/nodes/ireland-immigration-act-2004-inis-irishimmigration.json #### Italy Consolidated Immigration Act D.Lgs 286/1998 - Permesso di Soggiorno and Decreto Flussi Framework - **ID**: italy-testo-unico-immigrazione-286-1998-dgimmigrazione - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Italy's Testo Unico sull'Immigrazione (D.Lgs 286/1998) is the primary statute governing entry, residence and expulsion of non-EU nationals. The Decreto Flussi sets annual work entry quotas. Non-EU wor... - **Discovery URL**: https://bidda.com/api/v1/nodes/italy-testo-unico-immigrazione-286-1998-dgimmigrazione.json #### Japan Immigration Control and Refugee Recognition Act - ISA and Residency Framework - **ID**: japan-immigration-control-refugee-recognition-act-isa - **Category**: Immigration & Border Control - **Version**: 3.0 - **BLUF**: The Immigration Control and Refugee Recognition Act (ICRRA, Act No.319 of 1951, as substantially amended in 2023) is Japan's primary immigration statute, governing entry, residence status, and deporta... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-immigration-control-refugee-recognition-act-isa.json #### Kenya Citizenship and Immigration Act 2011 - DIS and East African Community Framework - **ID**: kenya-citizenship-immigration-act-2011-dis - **Category**: Immigration & Border Control - **Version**: 2.1 - **BLUF**: The Kenya Citizenship and Immigration Act (KCIA), Cap.172A of 2011 (as amended 2022), is Kenya's principal immigration statute governing entry, residence, and deportation of foreign nationals. The Dep... - **Discovery URL**: https://bidda.com/api/v1/nodes/kenya-citizenship-immigration-act-2011-dis.json #### Malaysia Immigration Act 1959/63 - Jabatan Imigresen Employment Pass and Residency Framework - **ID**: malaysia-immigration-act-1959-63-jabatan-imigresen - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Malaysia's Immigration Act 1959/63 (Act 155) administered by Jabatan Imigresen Malaysia (Immigration Department of Malaysia) under the Home Ministry (KDN) governs entry, stay, and employment of foreig... - **Discovery URL**: https://bidda.com/api/v1/nodes/malaysia-immigration-act-1959-63-jabatan-imigresen.json #### Mexico Ley de Migracion 2011 - INM Immigration and Residency Framework - **ID**: mexico-ley-migracion-2011-inm - **Category**: Immigration & Border Control - **Version**: 2.3 - **BLUF**: The Ley de Migracion (Migration Law) of 25 May 2011 and its Regulations (Reglamento, 2012) constitute Mexico's comprehensive immigration framework, administered by the Instituto Nacional de Migracion ... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-ley-migracion-2011-inm.json #### Morocco Law 02-03 of 2003 - Entry and Stay of Foreigners and Irregular Emigration Framework - **ID**: morocco-law-02-03-foreigners-residence-entry-2003 - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Morocco's Law No. 02-03 of 11 November 2003 regarding entry and stay of foreigners in Morocco and irregular emigration and immigration (Dahir No. 1-03-196) governs foreign national entry, residence, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/morocco-law-02-03-foreigners-residence-entry-2003.json #### Netherlands Aliens Act 2000 - Verblijfsvergunning and Knowledge Migrant Framework - **ID**: netherlands-aliens-act-2000-ind - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Netherlands Aliens Act 2000 (Vreemdelingenwet 2000, Stb. 2000, 495) governs entry and residence of third-country nationals. The IND (Immigratie- en Naturalisatiedienst) handles all permit applicat... - **Discovery URL**: https://bidda.com/api/v1/nodes/netherlands-aliens-act-2000-ind.json #### New Zealand Immigration Act 2009 - INZ and Five Eyes Border Framework - **ID**: new-zealand-immigration-act-2009-inz - **Category**: Immigration & Border Control - **Version**: 2.2 - **BLUF**: The New Zealand Immigration Act 2009 (IA09) is New Zealand's primary immigration statute, consolidating all visa, entry, deportation, and refugee provisions. Immigration New Zealand (INZ), a business ... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-zealand-immigration-act-2009-inz.json #### Nigeria Immigration Act Cap. I1 2004 - NIS and CERPAC Residency Framework - **ID**: nigeria-immigration-act-cap-i1-2004-nis - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: The Nigeria Immigration Act, Cap.I1, Laws of the Federation of Nigeria 2004 (updated by Immigration Regulations 2017) governs entry, stay, and departure of all persons from the Federal Republic of Nig... - **Discovery URL**: https://bidda.com/api/v1/nodes/nigeria-immigration-act-cap-i1-2004-nis.json #### OAU Refugee Convention 1969 - Expanded Refugee Definition for Africa, Non-Refoulement and Burden Sharing - **ID**: oau-refugee-convention-1969-african-union - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Convention Governing the Specific Aspects of Refugee Problems in Africa, adopted by the Organization of African Unity (OAU, now African Union) at Addis Ababa on 10 September 1969 and entered into ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oau-refugee-convention-1969-african-union.json #### Peru Legislative Decree 1350 de 2017 - Superintendencia Nacional de Migraciones Visa and Residency Framework - **ID**: peru-legislative-decree-1350-2017-migraciones - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Legislative Decree 1350 of 2017 (Decreto Legislativo de Migraciones) and its implementing Regulation (Decreto Supremo 007-2017-IN) govern entry, residence, and departure of foreigners in Peru. The Sup... - **Discovery URL**: https://bidda.com/api/v1/nodes/peru-legislative-decree-1350-2017-migraciones.json #### Philippines Immigration Act of 1940 (Commonwealth Act 613) - Bureau of Immigration Visa and Residency Framework - **ID**: philippines-immigration-act-1940-commonwealth-act-613-bi - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: The Philippine Immigration Act of 1940 (Commonwealth Act No. 613) is the Philippines' foundational immigration statute, establishing the Bureau of Immigration (BI) under the Department of Justice (DOJ... - **Discovery URL**: https://bidda.com/api/v1/nodes/philippines-immigration-act-1940-commonwealth-act-613-bi.json #### Poland Act on Foreigners 2013 - Karta Pobytu and Schengen Residence Framework - **ID**: poland-act-on-foreigners-2013-urzad-ds-cudzoziemcow - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Poland's Act on Foreigners of 12 December 2013 (Ustawa z dnia 12 grudnia 2013 r. o cudzoziemcach, Dz.U. 2023 poz. 519 consolidated) governs third-country nationals entering and residing in Poland. The... - **Discovery URL**: https://bidda.com/api/v1/nodes/poland-act-on-foreigners-2013-urzad-ds-cudzoziemcow.json #### Romania Emergency Ordinance 194/2002 - Regime of Foreigners and Schengen Residency Framework - **ID**: romania-emergency-ordinance-194-2002-igi-immigration - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Romania's principal immigration statute is Emergency Government Ordinance 194/2002 on the Regime of Foreigners in Romania (OUG 194/2002), as substantially amended. The General Inspectorate for Immigra... - **Discovery URL**: https://bidda.com/api/v1/nodes/romania-emergency-ordinance-194-2002-igi-immigration.json #### Saudi Arabia Iqama Residence Regulations - Jawazat Sponsorship and Premium Residency Framework - **ID**: saudi-arabia-iqama-residence-regulations-jawazat - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Saudi Arabia's immigration framework is governed by the Residence Regulations (Nizham Al-Iqama) and the Foreigners' Entry and Exit System, administered by the General Directorate of Passports (Jawazat... - **Discovery URL**: https://bidda.com/api/v1/nodes/saudi-arabia-iqama-residence-regulations-jawazat.json #### Singapore Immigration Act (Cap. 133) - ICA Border Control and Pass Framework - **ID**: singapore-immigration-act-cap-133-ica - **Category**: Immigration & Border Control - **Version**: 2.9 - **BLUF**: The Singapore Immigration Act (Cap. 133, 1997 Revised Edition) is the primary statute governing entry, residence, and departure of foreign nationals in Singapore. The Immigration and Checkpoints Autho... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-immigration-act-cap-133-ica.json #### South Africa Immigration Act 13 of 2002 - DHA and BMA Border Framework - **ID**: south-africa-immigration-act-13-2002-dha - **Category**: Immigration & Border Control - **Version**: 2.6 - **BLUF**: The Immigration Act 13 of 2002 (as amended by Immigration Amendment Act 3 of 2007 and further amendments) is South Africa's primary immigration law, governing all foreign nationals entering, residing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-immigration-act-13-2002-dha.json #### Spain Organic Law on Rights and Freedoms of Foreigners 4/2000 - Arraigo, TIE and Long-Term Residency Framework - **ID**: spain-ley-organica-extranjeria-4-2000-delegacion-gobierno - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Spain's Organic Law 4/2000 (Ley de Extranjeria, reformed by LO 8/2000, 11/2003, 14/2003, 2/2009) governs rights, freedoms and social integration of non-EU foreigners. Initial authorisations require an... - **Discovery URL**: https://bidda.com/api/v1/nodes/spain-ley-organica-extranjeria-4-2000-delegacion-gobierno.json #### Sweden Aliens Act (2005:716) - Uppehallstillstand and Asylum Framework - **ID**: sweden-aliens-act-2005-716-migrationsverket - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Sweden's Aliens Act (Utlanningslag 2005:716) governs entry, residence and removal of non-EU nationals. An uppehallstillstand (residence permit) is required for stays beyond 90 days. Work permits (arbe... - **Discovery URL**: https://bidda.com/api/v1/nodes/sweden-aliens-act-2005-716-migrationsverket.json #### Switzerland Foreign Nationals and Integration Act (AIG/LEI 2005) - B-Permit, C-Permit and EU Bilateral Framework - **ID**: switzerland-foreign-nationals-integration-act-2005-sem - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Switzerland's Foreign Nationals and Integration Act (Auslandergesetz/Loi sur les etrangers et l'integration, AIG/LEI, SR 142.20, enacted 2005, significantly revised in 2019) governs admission and resi... - **Discovery URL**: https://bidda.com/api/v1/nodes/switzerland-foreign-nationals-integration-act-2005-sem.json #### Thailand Immigration Act B.E. 2522 (1979) - Immigration Bureau Visa and Residency Framework - **ID**: thailand-immigration-act-be-2522-1979-immigration-bureau - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Thailand's immigration framework is governed by the Immigration Act B.E. 2522 (1979) (Phraratchabanyat Khonnakaomuang B.E. 2522), administered by the Immigration Bureau (Samnak Ngan Khonnakaomuang) un... - **Discovery URL**: https://bidda.com/api/v1/nodes/thailand-immigration-act-be-2522-1979-immigration-bureau.json #### Turkey Law 6458 on Foreigners and International Protection 2013 - DGMM Framework - **ID**: turkey-law-6458-foreigners-international-protection-2013 - **Category**: Immigration & Border Control - **Version**: 2.1 - **BLUF**: Law No.6458 on Foreigners and International Protection (YUKK), enacted 4 April 2013, is Turkey's foundational immigration and asylum statute, replacing fragmented earlier legislation. The Directorate ... - **Discovery URL**: https://bidda.com/api/v1/nodes/turkey-law-6458-foreigners-international-protection-2013.json #### UAE Federal Law No. 6 of 1973 - ICA Entry, Residence and Golden Visa Framework - **ID**: uae-entry-residence-law-6-1973-ica - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: The UAE's immigration framework is grounded in Federal Law No. 6 of 1973 concerning entry and residence of foreigners, as significantly amended by Federal Decree-Law No. 29 of 2021. The Federal Author... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-entry-residence-law-6-1973-ica.json #### UK Asylum and Immigration (Treatment of Claimants, etc.) Act 2004: Trafficking and Document Offences, Claimant Credibility and Safe-Country Removal - **ID**: uk-asylum-and-immigration-treatment-of-claimants-act-2004 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Asylum and Immigration (Treatment of Claimants, etc.) Act 2004 strengthened United Kingdom criminal offences connected with immigration, reshaped the treatment of asylum claimants and consolidated... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-asylum-and-immigration-treatment-of-claimants-act-2004.json #### UK Borders Act 2007: Designated Officer Detention Powers, Biometric Immigration Documents and Automatic Deportation of Foreign Criminals - **ID**: uk-borders-act-2007 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The UK Borders Act 2007 strengthened immigration enforcement at the border and introduced the duty to deport foreign criminals automatically, administered by the Home Office. The opening provisions co... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-borders-act-2007.json #### UK British Nationality Act 1981: Acquisition, Naturalisation, Renunciation and Deprivation - **ID**: uk-british-nationality-act-1981 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The British Nationality Act 1981 (c. 61) is the principal UK statute defining British citizenship and related nationality statuses, administered by the Home Office. Section 1 governs acquisition of Br... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-british-nationality-act-1981.json #### UK British Nationality Act 1981 Section 1 - Acquisition by Birth or Adoption - **ID**: uk-british-nationality-act-1981-section-1-acquisition-by-birth-adoption - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: A person born in the UK (or in a qualifying territory on or after the appointed day) after commencement is a British citizen if at the time of the birth a parent is a British citizen or settled in the... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-british-nationality-act-1981-section-1-acquisition-by-birth-adoption.json #### UK Illegal Migration Act 2023: The Duty to Remove, Disregard of Claims, Detention and Modern-Slavery Provisions - **ID**: uk-illegal-migration-act-2023 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Illegal Migration Act 2023 introduced a duty on the Secretary of State to remove persons who enter the United Kingdom unlawfully and restricted the claims and protections available to them, admini... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-illegal-migration-act-2023.json #### UK Illegal Migration Act 2023 - Removal Duty and Inadmissibility of Asylum Claims - **ID**: uk-illegal-migration-act-2023-removal-duty - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Illegal Migration Act 2023 (UK) places a duty on the Secretary of State to make arrangements for the removal from the United Kingdom of persons who meet the four conditions in section 2: arrival o... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-illegal-migration-act-2023-removal-duty.json #### UK Immigration Act 1971: Leave to Enter and Remain, Deportation and Immigration Offences - **ID**: uk-immigration-act-1971 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Immigration Act 1971 is the foundational statute of United Kingdom immigration control, administered by the Secretary of State for the Home Department (the Home Office). It establishes that a pers... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-immigration-act-1971.json #### UK Immigration Act 1971 Section 3 - General Provisions for Regulation and Control - **ID**: uk-immigration-act-1971-section-3-general-provisions-regulation-control - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: A person who is not a British citizen must not enter the United Kingdom without leave granted under or made under the Immigration Act 1971. Leave to enter or remain may be granted for a limited or an ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-immigration-act-1971-section-3-general-provisions-regulation-control.json #### UK Immigration Act 1971 - Leave to Enter, Deportation and Removal Framework - **ID**: uk-immigration-act-1971-ukvi-home-office - **Category**: Immigration & Border Control - **Version**: 3.2 - **BLUF**: The Immigration Act 1971 (as substantially amended by the Nationality and Borders Act 2022 and Illegal Migration Act 2023) is the primary UK statute governing leave to enter and remain in the United K... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-immigration-act-1971-ukvi-home-office.json #### UK Immigration Act 2014: Removal Powers, Appeal Reform and the Hostile-Environment Controls (Right to Rent, Bank Accounts, Driving Licences) - **ID**: uk-immigration-act-2014 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Immigration Act 2014 restructured United Kingdom removal and appeal powers and introduced the so-called hostile-environment controls that require private actors to check immigration status, admini... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-immigration-act-2014.json #### UK Immigration Act 2016: Labour Market Enforcement, Illegal Working Offences and the Extended Hostile-Environment Controls - **ID**: uk-immigration-act-2016 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Immigration Act 2016 extended United Kingdom labour-market and illegal-working enforcement and widened the hostile-environment controls introduced by the Immigration Act 2014, administered by the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-immigration-act-2016.json #### UK Immigration, Asylum and Nationality Act 2006: Employer Civil Penalties and Offences, Passenger Information and Deprivation of Citizenship - **ID**: uk-immigration-asylum-and-nationality-act-2006 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Immigration, Asylum and Nationality Act 2006 reformed United Kingdom employer compliance, appeals, information-sharing and citizenship-deprivation powers, administered by the Home Office. The empl... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-immigration-asylum-and-nationality-act-2006.json #### UK Nationality and Borders Act 2022: Differential Treatment of Refugees, Inadmissibility, Maritime Enforcement and Offences - **ID**: uk-nationality-and-borders-act-2022 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Nationality and Borders Act 2022 is a major reform of United Kingdom nationality, asylum and immigration enforcement law, administered by the Home Office. Part 1 reforms British nationality, inclu... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-nationality-and-borders-act-2022.json #### UK Nationality and Borders Act 2022 Section 40 - Illegal Entry and Similar Offences - **ID**: uk-nationality-and-borders-act-2022-section-40-illegal-entry-offences - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 40 of the Nationality and Borders Act 2022 amends Section 24 of the Immigration Act 1971 to create and expand offences relating to illegal entry, arrival, and remaining in the United Kingdom. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-nationality-and-borders-act-2022-section-40-illegal-entry-offences.json #### UK Nationality and Borders Act 2022 - Differential Treatment of Asylum Claims, Modern Slavery Provisions and Rwanda Partnership - **ID**: uk-nationality-borders-act-2022 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Nationality and Borders Act 2022 (c.36), royal assent 28 April 2022, was the principal UK statute reshaping the post-Brexit asylum and immigration system. The Act amends the Immigration Act 1971, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-nationality-borders-act-2022.json #### UK Nationality, Immigration and Asylum Act 2002: Deprivation of Citizenship, Asylum Support, Removal and the Tribunal Appeal Right - **ID**: uk-nationality-immigration-and-asylum-act-2002 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Nationality, Immigration and Asylum Act 2002 is a principal framework for United Kingdom nationality deprivation, asylum support, removal and immigration appeals, administered by the Home Office a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-nationality-immigration-and-asylum-act-2002.json #### Ukraine Law on Legal Status of Foreigners No. 3773-VI of 2011 - SMS Residence and Visa Framework - **ID**: ukraine-law-on-legal-status-foreigners-3773-vi-2011 - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Ukraine's Law on the Legal Status of Foreigners and Stateless Persons No. 3773-VI (2011) governs entry, stay, and departure of non-Ukrainian nationals, administered by the State Migration Service of U... - **Discovery URL**: https://bidda.com/api/v1/nodes/ukraine-law-on-legal-status-foreigners-3773-vi-2011.json #### UN Convention against Torture 1984 Article 3 - Absolute Non-Refoulement to Torture and Committee Against Torture Communications - **ID**: un-cat-1984-article-3-non-refoulement-torture - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Convention against Torture and Other Cruel, Inhuman or Degrading Treatment or Punishment (CAT), adopted by UN General Assembly resolution 39/46 on 10 December 1984 and entered into force on 26 Jun... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-cat-1984-article-3-non-refoulement-torture.json #### UN Convention on the Reduction of Statelessness 1961 - Birth-Based Nationality, Loss Restrictions and State Succession - **ID**: un-convention-reduction-statelessness-1961 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Convention on the Reduction of Statelessness, adopted at New York on 30 August 1961 and entered into force on 13 December 1975, complements the 1954 Statelessness Convention by establishing rules ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-convention-reduction-statelessness-1961.json #### UN Convention Relating to the Status of Stateless Persons 1954 - Definition, Rights and UNHCR Protection Mandate - **ID**: un-convention-statelessness-1954 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Convention relating to the Status of Stateless Persons, adopted at New York on 28 September 1954 and entered into force on 6 June 1960, is the principal multilateral treaty defining who is a state... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-convention-statelessness-1954.json #### UN Global Compact for Safe, Orderly and Regular Migration 2018 - 23 Objectives and Whole-of-Government Implementation - **ID**: un-global-compact-migration-2018-23-objectives - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Global Compact for Safe, Orderly and Regular Migration (GCM) was adopted by 152 UN Member States at the Intergovernmental Conference in Marrakech, Morocco on 10-11 December 2018, and formally affi... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-global-compact-migration-2018-23-objectives.json #### UN Palermo Protocol 2000 - Trafficking in Persons Definition, Prosecution, Protection and Prevention - **ID**: un-palermo-protocol-2000-trafficking-persons - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Protocol to Prevent, Suppress and Punish Trafficking in Persons, Especially Women and Children (Palermo Protocol or Trafficking Protocol), supplementing the United Nations Convention against Trans... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-palermo-protocol-2000-trafficking-persons.json #### UN Refugee Convention 1951 and Protocol 1967 - Refugee Definition, Non-Refoulement and Rights of Refugees - **ID**: un-refugee-convention-1951-protocol-1967-non-refoulement - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Convention Relating to the Status of Refugees, adopted in Geneva on 28 July 1951 and entered into force on 22 April 1954, together with its 1967 Protocol Relating to the Status of Refugees (entere... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-refugee-convention-1951-protocol-1967-non-refoulement.json #### US Title 18 - 18 USC 1546 Fraud and Misuse of Visas, Permits, and Other Documents - **ID**: us-18-usc-1546-fraud-misuse-visas-permits-immigration-documents - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: 18 USC 1546 titled 'Fraud and misuse of visas, permits, and other documents' is the principal federal criminal statute addressing immigration document fraud and material false statements in immigratio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1546-fraud-misuse-visas-permits-immigration-documents.json #### US 8 CFR Part 214: Nonimmigrant Classes - **ID**: us-8-cfr-part-214-nonimmigrant-classes - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: US 8 CFR Part 214 establishes the requirements for the various nonimmigrant classifications (visa categories) under the Immigration and Nationality Act (INA), including B-1/B-2 visitor for business or... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-8-cfr-part-214-nonimmigrant-classes.json #### US E-Verify and Form I-9 - Employment Eligibility Verification under INA Section 274A - **ID**: us-e-verify-i9-employment-eligibility-verification - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Immigration and Nationality Act Section 274A (8 U.S.C. § 1324a) requires all US employers to verify employment eligibility using Form I-9 (Employment Eligibility Verification); E-Verify is the interne... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-e-verify-i9-employment-eligibility-verification.json #### US Fraud and Misuse of Visas, Permits and Other Documents (18 USC 1546): Document Forgery, Possession and Employment-Verification Fraud - **ID**: us-fraud-and-misuse-of-visas-18usc1546 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 1546 of Title 18 of the United States Code is the principal federal criminal statute punishing fraud and misuse of immigration documents, prosecuted by the Department of Justice and investigat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fraud-and-misuse-of-visas-18usc1546.json #### US Immigration and Nationality Act (8 USC ch 12): Employment Verification and Immigration Control - **ID**: us-immigration-and-nationality-act - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Immigration and Nationality Act (8 U.S.C. ch. 12) is the comprehensive US immigration statute, administered by the Department of Homeland Security through U.S. Citizenship and Immigration Services... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-immigration-and-nationality-act.json #### US Immigration and Nationality Act 1952 - USCIS, CBP and ICE Enforcement Framework - **ID**: us-immigration-nationality-act-1952-uscis - **Category**: Immigration & Border Control - **Version**: 5.2 - **BLUF**: The Immigration and Nationality Act (INA, 8 USC ch.12) is the foundational US immigration statute, establishing the legal bases for all visa categories, grounds of inadmissibility (8 USC 1182), deport... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-immigration-nationality-act-1952-uscis.json #### United States Immigration and Nationality Act (Title 8 USC Chapter 12): Definitions, Worldwide Immigration Levels, Visa Allocation, Asylum, Inadmissibility, Deportability, Removal Proceedings, and Improper Entry - **ID**: us-immigration-nationality-act-8-usc-ch12 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: The Immigration and Nationality Act, codified at Title 8 of the United States Code, Chapter 12, is the foundational federal statute governing the admission, presence, removal, and naturalization of al... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-immigration-nationality-act-8-usc-ch12.json #### US INA Adjustment of Status (8 USC 1255): Becoming a Lawful Permanent Resident from Within the US - **ID**: us-ina-adjustment-of-status-8usc1255 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 245 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1255, allows certain aliens already in the United States to adjust status to that of a lawful permanent resident without ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-adjustment-of-status-8usc1255.json #### US INA Admission of Nonimmigrants (8 USC 1184): Conditions, Presumption of Immigrant Status and Petitions - **ID**: us-ina-admission-of-nonimmigrants-8usc1184 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 214 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1184, governs the admission of nonimmigrants, administered by the Department of Homeland Security (US Citizenship and Imm... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-admission-of-nonimmigrants-8usc1184.json #### US INA Apprehension and Detention of Aliens (8 USC 1226): Discretionary Bond and Mandatory Detention - **ID**: us-ina-apprehension-detention-8usc1226 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 236 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1226, governs the apprehension and detention of aliens pending a decision on whether they are to be removed from the Unit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-apprehension-detention-8usc1226.json #### US INA Asylum (8 USC 1158): Eligibility, One-Year Deadline and Mandatory Bars - **ID**: us-ina-asylum-8usc1158 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 208 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1158, governs asylum in the United States and is administered by US Citizenship and Immigration Services (affirmative cla... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-asylum-8usc1158.json #### US INA Bringing In and Harboring Aliens (8 USC 1324): Smuggling, Transporting and Harboring Offences - **ID**: us-ina-bringing-in-harboring-aliens-8usc1324 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 274 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1324, is the principal federal criminal statute against alien smuggling, transporting, harboring, and inducing unlawful p... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-bringing-in-harboring-aliens-8usc1324.json #### US INA Cancellation of Removal (8 USC 1229b): Relief for Permanent and Nonpermanent Residents - **ID**: us-ina-cancellation-of-removal-8usc1229b - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 240A of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1229b, provides discretionary relief from removal known as cancellation of removal, adjudicated by immigration judges in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-cancellation-of-removal-8usc1229b.json #### US INA Conditional Permanent Resident Status for Alien Spouses (8 USC 1186a): Removal of Conditions and Waivers - **ID**: us-ina-conditional-permanent-resident-8usc1186a - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 216 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1186a, places permanent resident status obtained through a recent marriage on a conditional basis and sets the procedure ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-conditional-permanent-resident-8usc1186a.json #### US INA Definitions (8 USC 1101): Alien, Immigrant, Nonimmigrant, LPR, Refugee and Aggravated Felony - **ID**: us-ina-definitions-8usc1101 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 101 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1101, contains the definitions that govern the entire US immigration and nationality system, and the correct classificati... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-definitions-8usc1101.json #### US INA Classes of Deportable Aliens (8 USC 1227): Grounds of Removability - **ID**: us-ina-deportability-grounds - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 237 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1227, sets out the classes of aliens, present in the United States after admission, who are deportable (removable), charg... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-deportability-grounds.json #### US INA Detention and Removal After a Final Order (8 USC 1231): Removal Period and Withholding - **ID**: us-ina-detention-removal-after-final-order-8usc1231 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 241 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1231, governs the detention and removal of aliens who have been ordered removed, administered by the Department of Homela... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-detention-removal-after-final-order-8usc1231.json #### US INA Admission of Immigrants and Documentary Requirements (8 USC 1181): Immigrant Visa, Passport, Returning Residents and the Refugee Exception - **ID**: us-ina-documentary-requirements-8usc1181 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 211 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1181, sets the documentary requirements for the admission of immigrants into the United States, administered by US Custom... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-documentary-requirements-8usc1181.json #### US INA Employment Verification and Employer Sanctions (8 USC 1324a): I-9, Knowing-Hire Prohibition and Penalties - **ID**: us-ina-employment-verification - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 274A of the Immigration and Nationality Act, codified at 8 U.S.C. 1324a, makes it unlawful for an employer to employ unauthorized aliens and establishes the federal employment eligibility veri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-employment-verification.json #### US INA Inspection and Expedited Removal (8 USC 1225): Applicants for Admission, Credible Fear and Detention - **ID**: us-ina-expedited-removal-8usc1225 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 235 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1225, governs the inspection of aliens seeking to enter the United States and the expedited removal of certain inadmissib... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-expedited-removal-8usc1225.json #### US INA Admission of Temporary H-2A Agricultural Workers (8 USC 1188): Labor Certification, Recruitment and the 50-Percent Rule - **ID**: us-ina-h2a-agricultural-workers-8usc1188 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 218 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1188, governs the admission of temporary H-2A agricultural workers and conditions it on a labor certification from the Se... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-h2a-agricultural-workers-8usc1188.json #### US INA Allocation of Immigrant Visas (8 USC 1153): Family, Employment and Diversity Preferences - **ID**: us-ina-immigrant-visa-allocation-8usc1153 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 203 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1153, allocates immigrant visas among the preference categories, administered by US Citizenship and Immigration Services ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-immigrant-visa-allocation-8usc1153.json #### US INA Improper Entry and Reentry of Removed Aliens (8 USC 1325-1326): Offences and Penalties - **ID**: us-ina-improper-entry-and-reentry - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Sections 275 and 276 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1325 and 1326, create the principal federal criminal offences for unlawful entry and reentry into the United Sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-improper-entry-and-reentry.json #### US INA Grounds of Inadmissibility (8 USC 1182): Classes of Aliens Ineligible for Admission and Waivers - **ID**: us-ina-inadmissibility-grounds - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 212 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1182, sets out the classes of aliens who are ineligible to receive visas and ineligible to be admitted to the United Stat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-inadmissibility-grounds.json #### US INA Judicial Review of Orders of Removal (8 USC 1252): Petition for Review and Jurisdictional Limits - **ID**: us-ina-judicial-review-removal-8usc1252 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 242 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1252, governs judicial review of orders of removal and is the central provision determining when, where, and how a remova... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-judicial-review-removal-8usc1252.json #### US INA Loss of Nationality by Native-Born or Naturalized Citizen (8 USC 1481): Expatriating Acts, Voluntariness and Burden of Proof - **ID**: us-ina-loss-of-nationality-8usc1481 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 349 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1481, sets out the acts by which a national of the United States, whether by birth or naturalization, loses nationality, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-loss-of-nationality-8usc1481.json #### US INA Nationals and Citizens at Birth (8 USC 1401): Birthright and Citizenship by Descent - **ID**: us-ina-nationality-at-birth-8usc1401 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 301 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1401, sets out the categories of persons who are nationals and citizens of the United States at birth, administered for d... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-nationality-at-birth-8usc1401.json #### US INA Naturalization Requirements (8 USC 1427): Residence, Good Moral Character and Attachment to the Constitution - **ID**: us-ina-naturalization-8usc1427 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 316 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1427, sets the general requirements for naturalization as a US citizen, administered by US Citizenship and Immigration Se... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-naturalization-8usc1427.json #### US INA Naturalization of the Spouse of a Citizen (8 USC 1430): The Three-Year Residence Rule, Marital Union and Spouses Stationed Abroad - **ID**: us-ina-naturalization-spouse-of-citizen-8usc1430 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 319 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1430, provides the modified naturalization route for the spouse of a United States citizen and for certain spouses of cit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-naturalization-spouse-of-citizen-8usc1430.json #### US INA Numerical Limitation to Any Single Foreign State (8 USC 1152): Per-Country Caps and Nondiscrimination - **ID**: us-ina-per-country-immigration-limit-8usc1152 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 202 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1152, limits the number of immigrant visas chargeable to any single foreign state and establishes the rule against discri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-per-country-immigration-limit-8usc1152.json #### US INA Powers of Immigration Officers and Employees (8 USC 1357): Warrantless Interrogation, Arrest, Border-Area Search and 287(g) Delegation - **ID**: us-ina-powers-of-immigration-officers-8usc1357 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 287 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1357, sets out the powers of immigration officers and employees, administered by the Department of Homeland Security thro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-powers-of-immigration-officers-8usc1357.json #### US INA Procedure for Granting Immigrant Status (8 USC 1154): Petitions, Approval and the Marriage-Fraud Bars - **ID**: us-ina-procedure-granting-immigrant-status-8usc1154 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 204 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1154, sets the procedure for granting immigrant status by petition, the gateway step before an immigrant visa or adjustme... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-procedure-granting-immigrant-status-8usc1154.json #### US INA Annual Admission of Refugees (8 USC 1157): Presidential Ceiling, Emergencies and Eligibility - **ID**: us-ina-refugee-admissions-8usc1157 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 207 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1157, governs the admission of refugees to the United States from abroad, administered by US Citizenship and Immigration ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-refugee-admissions-8usc1157.json #### US INA Registration of Aliens (8 USC 1302, 1304, 1306): The Thirty-Day Duty, the Carry Requirement and the Failure-to-Register Penalties - **ID**: us-ina-registration-of-aliens-8usc1302 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Sections 262, 264 and 266 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1302, 1304 and 1306, impose the alien registration and fingerprinting regime and the penalties for non-comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-registration-of-aliens-8usc1302.json #### US INA Expedited Removal of Aliens Convicted of Aggravated Felonies (8 USC 1228): Correctional-Facility Proceedings, Administrative Removal and the Conclusive Presumption of Deportability - **ID**: us-ina-removal-of-aggravated-felons-8usc1228 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 238 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1228, provides for the expedited removal of aliens convicted of committing aggravated felonies, administered by the Depar... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-removal-of-aggravated-felons-8usc1228.json #### US INA Removal Proceedings (8 USC 1229a): Immigration Court Procedure, Rights and Burdens of Proof - **ID**: us-ina-removal-proceedings-8usc1229a - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 240 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1229a, establishes the procedure for removal proceedings before an immigration judge in the Executive Office for Immigrat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-removal-proceedings-8usc1229a.json #### US INA Revocation of Naturalization (8 USC 1451): Illegal Procurement, Concealment or Willful Misrepresentation and the Effect of Denaturalization - **ID**: us-ina-revocation-of-naturalization-8usc1451 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 340 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1451, provides for the revocation of naturalization, the civil process by which a naturalized citizen may be stripped of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-revocation-of-naturalization-8usc1451.json #### US INA Temporary Protected Status (8 USC 1254a): Designation, Eligibility and Bars - **ID**: us-ina-temporary-protected-status-8usc1254a - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 244 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1254a, creates Temporary Protected Status (TPS), under which nationals of a designated foreign state who are in the Unite... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-temporary-protected-status-8usc1254a.json #### US INA Travel Control of Citizens and Aliens (8 USC 1185): Presidential Restrictions on Entry and Departure and the Citizen Passport Requirement - **ID**: us-ina-travel-control-citizens-aliens-8usc1185 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 215 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1185, provides for travel control of citizens and aliens and confers on the President broad authority to regulate entry i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-travel-control-citizens-aliens-8usc1185.json #### US INA Visa Waiver Program (8 USC 1187): Eligibility, ESTA and Program Country Designation - **ID**: us-ina-visa-waiver-program-8usc1187 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 217 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1187, establishes the Visa Waiver Program (VWP), under which nationals of designated program countries may be admitted to... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-visa-waiver-program-8usc1187.json #### US INA Worldwide Level of Immigration (8 USC 1151): Family, Employment, Diversity Limits and Immediate Relatives - **ID**: us-ina-worldwide-immigration-level-8usc1151 - **Category**: Immigration & Border Control - **Version**: 1.0.0 - **BLUF**: Section 201 of the Immigration and Nationality Act (INA), codified at 8 U.S.C. 1151, fixes the annual worldwide levels of immigration and identifies the categories that are exempt from those levels, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ina-worldwide-immigration-level-8usc1151.json #### Vietnam Law on Entry, Exit, Transit and Residence of Foreigners No. 47/2019/QH14 - Immigration Department Framework - **ID**: vietnam-law-on-entry-exit-47-2019-immigration-department - **Category**: Immigration & Border Control - **Version**: 2.0 - **BLUF**: Law No. 47/2019/QH14 (Luat Nhap canh, Xuat canh, Qua canh, Cu tru cua nguoi nuoc ngoai tai Viet Nam) governs all aspects of foreign national entry, exit, transit, and residence in Vietnam, replacing L... - **Discovery URL**: https://bidda.com/api/v1/nodes/vietnam-law-on-entry-exit-47-2019-immigration-department.json ### Industrial IoT & Energy (104 nodes) #### ISO/IEC 19464:2014 - Information technology - Advanced Message Queuing Protocol (AMQP) v1.0 specification - **ID**: amqp-iso-iec-19464-messaging-iot - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This standard defines the Advanced Message Queuing Protocol (AMQP) v1.0, a binary wire-level protocol for reliable exchange of business messages in distributed systems, particularly applicable to Indu... - **Discovery URL**: https://bidda.com/api/v1/nodes/amqp-iso-iec-19464-messaging-iot.json #### API Standard 1164 - SCADA Security for the Oil and Natural Gas Pipeline Industry: Cyber Risk Assessment, Access Control and Patch Management - **ID**: api-std-1164-scada-pipeline-security - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: API Standard 1164 establishes cybersecurity requirements for Supervisory Control and Data Acquisition (SCADA) systems in the oil and natural gas pipeline industry, mandating risk assessments, role-bas... - **Discovery URL**: https://bidda.com/api/v1/nodes/api-std-1164-scada-pipeline-security.json #### Australia Security of Critical Infrastructure Act 2018 - 11-Sector CIRMP, Cyber Incident Reporting, and Government Assistance Powers - **ID**: au-soci-act-2018-security-of-critical-infrastructure - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: The Australian Security of Critical Infrastructure Act 2018 (Cth) (SOCI Act), significantly expanded by the Security Legislation Amendment (Critical Infrastructure) Act 2021 (SLACI) and the Security L... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-soci-act-2018-security-of-critical-infrastructure.json #### Canada Explosives Act (R.S.C. 1985, c. E-17): Licensing of Explosives Manufacture, Storage and Penalties - **ID**: canada-explosives-act - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: The Explosives Act (R.S.C. 1985, c. E-17) regulates the manufacture, storage, sale, transport, importation and possession of explosives in Canada, administered by Natural Resources Canada through the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-explosives-act.json #### Digital Twin Fidelity Audit - **ID**: digital-twin-fidelity - **Category**: Industrial IoT & Energy - **Version**: 1.1.0 - **BLUF**: Digital twin fidelity refers to the degree of accuracy with which a virtual model replicates the real-time state, behavior, and physical properties of its physical counterpart, encompassing sensor dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/digital-twin-fidelity.json #### Edge AI Security (NIST) - **ID**: edge-ai-security-nist - **Category**: Industrial IoT & Energy - **Version**: 1.1.0 - **BLUF**: Edge AI security encompasses the technical and operational controls required to securely deploy machine learning models on resource-constrained IoT and edge computing devices, where traditional cloud-... - **Discovery URL**: https://bidda.com/api/v1/nodes/edge-ai-security-nist.json #### ETSI EN 303 645 V2.1.1 - CyberSecurity for Consumer Internet of Things: Baseline Requirements - **ID**: etsi-en-303-645-iot-cybersecurity-2020 - **Category**: Industrial IoT & Energy - **Version**: 2.1.1 - **BLUF**: This European standard establishes a baseline for security in consumer Internet of Things (IoT) devices, applying to manufacturers and developers. It outlines 13 key provisions, most notably prohibiti... - **Discovery URL**: https://bidda.com/api/v1/nodes/etsi-en-303-645-iot-cybersecurity-2020.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 August 2024 on Artificial Intelligence (Artificial Intelligence Act) and amending certain Union Legislative Acts - **ID**: eu-artificial-intelligence-act-high-risk-industrial - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This regulation establishes binding requirements for high-risk AI systems used in industrial contexts, including safety components of machinery, critical infrastructure, and workplace monitoring. Comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-artificial-intelligence-act-high-risk-industrial.json #### EU ATEX Equipment Directive 2014/34/EU - **ID**: eu-atex-directive-2014-34 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Directive 2014/34/EU governs the placing on the market of equipment and protective systems intended for use in potentially explosive atmospheres (ATEX), requiring conformity assessment by a notified b... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-atex-directive-2014-34.json #### Directive 2014/34/EU of the European Parliament and of the Council of 26 February 2014 on the harmonisation of the laws of the Member States relating to equipment and protective systems intended for use in potentially explosive atmospheres - **ID**: eu-atex-directive-2014-34-explosive-atmosphere - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: The EU ATEX Directive 2014/34/EU mandates that all equipment and protective systems intended for use in potentially explosive atmospheres must meet essential health and safety requirements (EHSRs) bef... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-atex-directive-2014-34-explosive-atmosphere.json #### Regulation (EU) 2023/1542 on Batteries and Waste Batteries, Amending Regulations (EU) 2019/1020 and (EU) 2018/848, and Repealing Directive 2006/66/EC - Industrial and Energy Storage Batteries: Carbon Footprint, Recycled Content, Performance and Durability, Due Diligence and Battery Passport for IoT Energy Storage - **ID**: eu-batteries-regulation-2023-1542-iot-storage - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This regulation imposes mandatory carbon footprint declarations, recycled content thresholds, performance and durability requirements, supply chain due diligence, and digital Battery Passport obligati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-batteries-regulation-2023-1542-iot-storage.json #### Regulation (EU) 2023/1781 of the European Parliament and of the Council (EU Chips Act) - Article 12: Implementation - **ID**: eu-chips-act-article-12-crisis-mechanism-semiconductor - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article outlines the implementation framework for the Chips Initiative, assigning responsibilities to the Chips Joint Undertaking and the Commission for operational objectives, reporting, and ada... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-article-12-crisis-mechanism-semiconductor.json #### Regulation (EU) 2023/1781 on establishing a framework of measures for strengthening Europe’s semiconductor ecosystem (Chips Act) - Article 2 - **ID**: eu-chips-act-article-2-definitions - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article establishes key definitions for terms such as 'first-of-a-kind facility', 'critical sector', and 'key market actors' which are essential for interpreting and applying the obligations thro... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-article-2-definitions.json #### Regulation (EU) 2023/1781 (EU Chips Act) Article 20: Monitoring and anticipation - **ID**: eu-chips-act-article-20-monitoring-global-semiconductor-supply - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: The Commission, in consultation with the European Semiconductor Board, must conduct regular monitoring of the semiconductor value chain to identify potential disruptions, compromises, or negative effe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-article-20-monitoring-global-semiconductor-supply.json #### EU Chips Act (EU) 2023/1781 - Article 24 Emergency toolbox - **ID**: eu-chips-act-article-24-strategic-coordination - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article grants the European Commission discretionary power to take measures from an 'Emergency toolbox' to address a semiconductor crisis in the Union, contingent upon the activation of a crisis ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-article-24-strategic-coordination.json #### Regulation (EU) 2023/1781 of the European Parliament and of the Council (EU Chips Act) - Article 27: Common purchasing - **ID**: eu-chips-act-article-27-reporting-obligations - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article establishes a voluntary mechanism where the Commission, upon request from Member States during a crisis, may act as a central purchasing body for crisis-relevant semiconductor products, o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-article-27-reporting-obligations.json #### Regulation (EU) 2023/1781 (EU Chips Act) - Article 31: Designation of national competent authorities and single points of contact - **ID**: eu-chips-act-article-31-penalties - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Member States must designate and resource one or more national competent authorities and a single point of contact to ensure the application and implementation of this Regulation, and notify the Commi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-article-31-penalties.json #### Regulation (EU) 2023/1781 (EU Chips Act) Article 4: Objectives of the Initiative - **ID**: eu-chips-act-article-4-european-chips-infrastructure - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article establishes the general and operational objectives for the 'Chips for Europe' Initiative, focusing on building technological capacity, supporting research and innovation, and facilitating... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-article-4-european-chips-infrastructure.json #### Regulation (EU) 2023/1781 (EU Chips Act) Article 7: European chips infrastructure consortiums - **ID**: eu-chips-act-article-7-funding-research-innovation - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article outlines the requirements for establishing and operating a European Chips Infrastructure Consortium (ECIC) to implement actions funded under the Initiative, including its legal status, me... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-chips-act-article-7-funding-research-innovation.json #### Regulation (EC) No 1272/2008 - EU CLP Regulation: Classification, Labelling and Packaging of Substances and Mixtures - GHS Implementation, Hazard Pictograms, Harmonised Classification, C&L Inventory, Poison Centre Notification, and UFI Requirements - **ID**: eu-clp-regulation-1272-2008 - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: Regulation (EC) No 1272/2008 (CLP - Classification, Labelling and Packaging of Substances and Mixtures), applicable since 1 December 2010 for substances and 1 June 2015 for mixtures, implements the UN... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-clp-regulation-1272-2008.json #### Directive (EU) 2022/2557 of the European Parliament and of the Council of 14 December 2022 on the resilience of critical entities and repealing Council Directive 2008/114/EC (Text with EEA relevance) - **ID**: eu-critical-entities-resilience-directive-2022 - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This Directive establishes a Union framework to enhance the resilience of critical entities in sectors essential to societal and economic functions, requiring Member States to identify such entities a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-critical-entities-resilience-directive-2022.json #### Regulation (EU) 2024/2847 of the European Parliament and of the Council of 23 October 2024 on horizontal cybersecurity requirements for products with digital elements and amending Regulations (EU) No 168/2013 and (EU) 2019/1020 and Directive (EU) 2020/1828 (Cyber Resilience Act) - **ID**: eu-cyber-resilience-act-2024-iot-products - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: The EU Cyber Resilience Act 2024 establishes mandatory cybersecurity requirements for all IoT products with digital elements placed on the EU market, requiring manufacturers to implement security by d... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-2024-iot-products.json #### Regulation (EU) 2024/2847 of the European Parliament and of the Council of 23 October 2024 on horizontal cybersecurity requirements for products with digital elements and amending Regulations (EU) No 168/2013 and (EU) 2019/1020 and Directive (EU) 2020/1828 (Cyber Resilience Act) - **ID**: eu-cyber-resilience-act-iot-2024-products - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This regulation establishes mandatory cybersecurity requirements for all products with digital elements placed on the EU market, requiring manufacturers to ensure secure design, vulnerability handling... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-iot-2024-products.json #### Regulation (EU) 2023/2854 of the European Parliament and of the Council of 13 December 2023 on harmonised rules on fair access to and use of data and amending Regulation (EU) 2017/2394 and Directive (EU) 2020/1828 (Data Act) - **ID**: eu-data-act-2023-iot-data-sharing-obligations - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: The EU Data Act 2023 grants users of connected products the right to access and share data generated by their use, imposes fair, reasonable, and non-discriminatory (FRAND) data sharing obligations on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-iot-data-sharing-obligations.json #### Directive 2009/125/EC of the European Parliament and of the Council of 21 October 2009 establishing a framework for the setting of ecodesign requirements for energy-related products (recast) - **ID**: eu-ecodesign-regulation-2009-125-energy-products - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This directive establishes a framework for setting mandatory ecodesign requirements for energy-related products placed on the EU market, aiming to reduce their environmental impact throughout their li... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecodesign-regulation-2009-125-energy-products.json #### Directive 2009/125/EC of the European Parliament and of the Council of 21 October 2009 establishing a framework for the setting of ecodesign requirements for energy-related products (recast) - **ID**: eu-ecodesign-regulation-energy-related-products-2009 - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This regulation establishes a framework to improve the environmental performance of energy-related products by setting mandatory ecodesign requirements, focusing on energy efficiency, material use, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecodesign-regulation-energy-related-products-2009.json #### Directive (EU) 2019/944 of the European Parliament and of the Council of 5 June 2019 on common rules for the internal market for electricity and repealing Directive 2009/75/EC - **ID**: eu-electricity-market-directive-2019-944 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This directive establishes consumer rights, smart meter deployment, demand response mechanisms, and recognition of independent aggregators and energy communities in the EU internal electricity market.... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-market-directive-2019-944.json #### Regulation (EU) 2019/943 on the internal market for electricity - Article 15 - **ID**: eu-electricity-regulation-article-15-operational-security-standards - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article mandates the continuation of priority dispatch for certain existing power-generating facilities, specifies that this privilege is revoked upon significant modification, and ensures that p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-regulation-article-15-operational-security-standards.json #### Regulation (EU) 2019/943 on the internal market for electricity - Article 18 and Article 43 - **ID**: eu-electricity-regulation-article-18-electricity-balancing - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article establishes the procedures for transmission system operators (TSOs) to interact with regional coordination centres (RCCs), including reporting non-implementation of actions, justifying de... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-regulation-article-18-electricity-balancing.json #### Regulation (EU) 2019/943 on the internal market for electricity - Article 26: Tasks of regional coordination centres - **ID**: eu-electricity-regulation-article-26-regional-coordination-centres - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article mandates Regional Coordination Centres (RCCs) to support transmission system operators in identifying transmission capacity needs and outlines the specific procedure for assigning new adv... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-regulation-article-26-regional-coordination-centres.json #### Regulation (EU) 2019/943 on the internal market for electricity - Article 3: Definitions - **ID**: eu-electricity-regulation-article-3-definitions - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article establishes key definitions for the regulation, requiring organizations to apply terms as defined herein, including those incorporated by reference from other directives such as Directive... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-regulation-article-3-definitions.json #### Regulation (EU) 2019/943 on the internal market for electricity - Article 57: Delegated acts - **ID**: eu-electricity-regulation-article-57-delegated-acts-for-grid-codes - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article empowers the European Commission to adopt and amend delegated acts, specifically network codes and guidelines, covering critical areas of electricity market operation such as network secu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-regulation-article-57-delegated-acts-for-grid-codes.json #### Regulation (EU) 2019/943 on the internal market for electricity - Article 59 Penalties - **ID**: eu-electricity-regulation-article-59-penalties - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Member States must establish, implement, and notify the Commission of effective, proportionate, and dissuasive penalties for infringements of this regulation, ensuring national regulatory authorities ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-regulation-article-59-penalties.json #### Regulation (EU) 2019/943 of the European Parliament and of the Council on the internal market for electricity - Article 6 Balancing market - **ID**: eu-electricity-regulation-article-6-free-flow-of-electricity - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article requires that electricity balancing markets are organized to be non-discriminatory, transparent, and market-based, allowing participation from all market participants including demand res... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-regulation-article-6-free-flow-of-electricity.json #### Regulation (EU) 2019/943 on the internal market for electricity - Article 9: Forward markets - **ID**: eu-electricity-regulation-article-9-network-access-and-congestion-management - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article requires transmission system operators to provide long-term transmission rights or equivalent measures for price risk hedging across bidding zones, and ensures market operators are free t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-regulation-article-9-network-access-and-congestion-management.json #### EU Electromagnetic Compatibility Directive 2014/30/EU - **ID**: eu-electromagnetic-compatibility-directive-2014-30 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Directive 2014/30/EU harmonises the laws of Member States relating to electromagnetic compatibility (EMC) of electrical and electronic equipment, requiring all apparatus placed on the EU market to gen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electromagnetic-compatibility-directive-2014-30.json #### Directive (EU) 2018/2002 on energy efficiency - Article 11: Cost of access to metering and billing information for electricity and gas - **ID**: eu-energy-efficiency-directive-article-11-metering - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Organizations must provide final customers with free energy bills and billing information, offer an electronic option, and supply clear explanations of bill calculations upon request. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-article-11-metering.json #### DIRECTIVE (EU) 2018/2002 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 11 December 2018 amending Directive 2012/27/EU on energy efficiency, Article 12 - **ID**: eu-energy-efficiency-directive-article-12-billing-information - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Organizations must prioritize and consider energy efficiency in all energy system planning, financing, and infrastructure investment decisions, implementing improvements where they are more cost-effec... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-article-12-billing-information.json #### Directive (EU) 2018/2002 amending Directive 2012/27/EU on energy efficiency - Article 20: Availability of qualification, accreditation and certification schemes - **ID**: eu-energy-efficiency-directive-article-20-availability-qualification-schemes - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article requires Member States to ensure the availability of transparent and reliable certification, accreditation, or equivalent qualification schemes for providers of energy services, energy au... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-article-20-availability-qualification-schemes.json #### Directive (EU) 2018/2002 of the European Parliament and of the Council on energy efficiency - Article 24 - **ID**: eu-energy-efficiency-directive-article-24-energy-efficiency-obligation-schemes - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article requires the European Commission to report on the functioning of the carbon market, considering the effects of this Directive, within the State of the Energy Union report. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-article-24-energy-efficiency-obligation-schemes.json #### Directive (EU) 2018/2002 on energy efficiency - Article 3: Entry into force - **ID**: eu-energy-efficiency-directive-article-3-energy-efficiency-targets - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article establishes the legal effective date for the Directive, specifying that it enters into force on the third day following its publication in the Official Journal of the European Union. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-article-3-energy-efficiency-targets.json #### Directive (EU) 2018/2002 amending Directive 2012/27/EU on energy efficiency - Article 5: Exemplary role of public bodies' buildings - **ID**: eu-energy-efficiency-directive-article-5-exemplary-role-public-bodies - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article mandates that Member States ensure public bodies fulfill an exemplary role in energy efficiency by renovating a percentage of their building stock annually and procuring highly efficient ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-article-5-exemplary-role-public-bodies.json #### DIRECTIVE (EU) 2018/2002 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 11 December 2018 amending Directive 2012/27/EU on energy efficiency - **ID**: eu-energy-efficiency-directive-article-6-renovation-of-public-buildings - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Organizations involved in energy system planning, financing, or infrastructure investment must prioritize and consider energy efficiency improvements, especially when they are more cost-effective than... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-article-6-renovation-of-public-buildings.json #### Directive (EU) 2018/2002 on energy efficiency - Article 8: Energy audits and management systems - **ID**: eu-energy-efficiency-directive-article-8-energy-audits-and-management-systems - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article mandates that non-SME enterprises must undergo regular, independent energy audits or implement a certified energy management system to identify and promote energy-saving opportunities. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-article-8-energy-audits-and-management-systems.json #### Commission Delegated Regulation (EU) 2023/1184 of 13 March 2023 supplementing Directive (EU) 2018/2001 of the European Parliament and of the Council as regards the definition of renewable fuels of non-biological origin, the method for calculating their greenhouse gas emissions, and the rules on additionality, temporal and geographic correlation for renewable hydrogen - **ID**: eu-h2-delegated-act-renewable-fuels-industry - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This regulation establishes binding criteria for renewable hydrogen production under the EU Renewable Energy Directive, requiring additionality (new renewable capacity), hourly temporal correlation be... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-h2-delegated-act-renewable-fuels-industry.json #### Directive 2010/75/EU of the European Parliament and of the Council of 24 November 2010 on industrial emissions (integrated pollution prevention and control) - **ID**: eu-industrial-emissions-directive-2010-75-best-available - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This Directive requires industrial installations above specified thresholds to obtain environmental permits based on Best Available Techniques (BAT) conclusions, which establish emission limit values ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-industrial-emissions-directive-2010-75-best-available.json #### EU Industrial Strategy 2030 Update - Deep Tech Sovereignty, Strategic Dependencies, Industrial Alliances and Single Market Emergency Instrument - **ID**: eu-industrial-strategy-2030-deep-tech-sovereignty - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This communication outlines the European Union’s updated industrial strategy for 2030, focusing on deep tech sovereignty, reducing strategic dependencies, strengthening industrial alliances, and estab... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-industrial-strategy-2030-deep-tech-sovereignty.json #### EU Machinery Directive 2006/42/EC -- CE Marking and Safety Requirements for Machinery - **ID**: eu-machinery-directive-2006-42 - **Category**: Industrial IoT & Energy - **Version**: 2024.1.0 - **BLUF**: Directive 2006/42/EC (the Machinery Directive) sets out Essential Health and Safety Requirements (EHSRs) for machinery placed on the EU market or put into service. It applies to machinery (a product w... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-machinery-directive-2006-42.json #### Regulation (EU) 2023/1230 of the European Parliament and of the Council of 14 June 2023 on machinery, amending Regulations (EU) No 1025/2012 and (EU) 2017/745, and repealing Directive 2006/42/EC - Safety of Machinery Including Connected and AI-Enabled Machines: Essential Health and Safety Requirements, CE Marking, Technical File and Notified Body Assessment - **ID**: eu-machinery-regulation-2023-1230-safety - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This regulation establishes mandatory safety requirements for machinery placed on or put into service in the EU, including machines with connectivity, AI functions, and digital interfaces. It applies ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-machinery-regulation-2023-1230-safety.json #### Regulation (EU) 2023/1230 of the European Parliament and of the Council of 14 June 2023 on machinery, amending Regulations (EU) No 1025/2012 and (EU) 2019/1020, and repealing Directive 2006/42/EC - Safety Requirements for Machinery with AI/ML Components: Risk Assessment, Safe Design and Substantial Modification - **ID**: eu-machinery-regulation-2023-1230-safety-requirements - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This regulation establishes mandatory safety requirements for machinery placed on or put into service in the EU, with specific provisions for machinery integrating AI/ML components. It requires manufa... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-machinery-regulation-2023-1230-safety-requirements.json #### EU Network Codes for Electricity - ENTSO-E Grid Connection, Capacity Allocation, Balancing and Operational Security: Technical Requirements, Compliance Monitoring and TSO Obligations - **ID**: eu-network-codes-electricity-operations - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This regulation establishes binding technical and operational requirements for Transmission System Operators (TSOs) and connected entities across the EU electricity network, ensuring secure, interoper... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-network-codes-electricity-operations.json #### Directive (EU) 2016/1148 of the European Parliament and of the Council of 6 July 2016 on measures for a high common level of security of network and information systems across the Union - **ID**: eu-network-information-security-nis-directive-2016 - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: The EU NIS Directive establishes a framework for ensuring a high common level of network and information security across essential service operators in energy, transport, health, banking, and digital ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-network-information-security-nis-directive-2016.json #### Directive (EU) 2022/2555 of the European Parliament and of the Council of 16 December 2022 on measures for a high common level of cybersecurity across the Union, amending Directive (EU) 2016/1148 and repealing Directive (EU) 2016/1148 - **ID**: eu-nis2-critical-infrastructure-operators - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: The EU NIS2 Directive establishes binding cybersecurity and incident reporting requirements for essential and important entities operating critical infrastructure in sectors including energy, transpor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-critical-infrastructure-operators.json #### Directive (EU) 2022/2555 of the European Parliament and of the Council of 14 December 2022 on measures for a high common level of cybersecurity across the Union, amending Directive (EU) 2016/1148 and repealing Directive (EU) 2016/1148 (NIS2 Directive) - **ID**: eu-nis2-directive-2022-2555-critical-infrastructure - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: The NIS2 Directive establishes binding cybersecurity and incident reporting obligations for essential and important entities in critical sectors including energy, transport, and digital infrastructure... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-directive-2022-2555-critical-infrastructure.json #### Directive 2014/68/EU of the European Parliament and of the Council of 15 May 2014 on the harmonisation of the laws of the Member States relating to the making available on the market of pressure equipment - **ID**: eu-pressure-equipment-directive-2014-68 - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: The EU Pressure Equipment Directive (PED) 2014/68 requires manufacturers, importers, and authorized representatives to ensure that pressure equipment (vessels, piping, safety accessories, and pressure... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pressure-equipment-directive-2014-68.json #### Proposal for a Directive of the European Parliament and of the Council on liability for defective products, repealing Council Directive 85/374/EEC - **ID**: eu-products-liability-directive-2022-iot-update - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This directive establishes strict liability for producers of defective products, including software and digital services when integrated into physical goods, and extends liability coverage to include ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-products-liability-directive-2022-iot-update.json #### EU Radio Equipment Directive 2014/53/EU - Essential Requirements for IoT Wireless Devices and Cybersecurity Delegated Regulation (EU) 2022/30 - **ID**: eu-radio-equipment-directive-2014-53-iot - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: The Directive requires that all IoT radio equipment placed on the EU market meet the essential health, safety and electromagnetic compatibility requirements (Article 3, Annex I) and, per Delegated Reg... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-radio-equipment-directive-2014-53-iot.json #### Directive 2014/53/EU of the European Parliament and of the Council of 6 May 2014 on the harmonisation of the laws of the Member States relating to the making available on the market of radio equipment - **ID**: eu-radio-equipment-directive-2014-53-iot-wireless - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This directive establishes essential requirements for radio equipment placed on the EU market, including IoT and wireless devices, covering efficient spectrum use, electromagnetic compatibility, safet... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-radio-equipment-directive-2014-53-iot-wireless.json #### Regulation (EC) No 1907/2006 - EU REACH: Registration, Evaluation, Authorisation and Restriction of Chemicals - No Data No Market Principle, SVHC Candidate List, Authorisation Obligation, Restriction Procedure, and Supply Chain Communication Requirements - **ID**: eu-reach-regulation-1907-2006 - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: Regulation (EC) No 1907/2006 (REACH - Registration, Evaluation, Authorisation and Restriction of Chemicals), in force since 1 June 2007 and extensively amended, is the EU's primary chemicals regulator... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reach-regulation-1907-2006.json #### EU Renewable Energy Directive 3 (2023/2413) - Article 15: Permit-Granting Procedures - **ID**: eu-red3-directive-article-15-permit-granting-procedures - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Organizations must comply with national rules for renewable energy project authorization, which are required to be proportionate, necessary, and aligned with the 'energy efficiency first' principle. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-red3-directive-article-15-permit-granting-procedures.json #### Directive (EU) 2023/2413 - Article 16: Organisation and main principles of the permit-granting procedure - **ID**: eu-red3-directive-article-16-go-of-origin - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article requires the establishment of an organized permit-granting procedure for renewable energy projects, based on clearly defined main principles. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-red3-directive-article-16-go-of-origin.json #### Directive (EU) 2023/2413 - Article 2 - Definitions - **ID**: eu-red3-directive-article-2-definitions - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article establishes the official definitions for key terms such as 'innovative renewable energy technology', 'smart metering system', and 'domestic battery' that must be used for the interpretati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-red3-directive-article-2-definitions.json #### Directive (EU) 2023/2413 amending Directive (EU) 2018/2001 as regards the promotion of energy from renewable sources (Note: Provided text does not contain Article 20) - **ID**: eu-red3-directive-article-20-heating-and-cooling - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: The provided text outlines the Union's increased renewable energy targets, such as the 42.5% overall goal, but does not contain the specific operative text of Article 20 concerning heating and cooling... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-red3-directive-article-20-heating-and-cooling.json #### Directive (EU) 2023/2413 of the European Parliament and of the Council of 18 October 2023 amending Directive (EU) 2018/2001 as regards the promotion of energy from renewable sources - Article 29 - **ID**: eu-red3-directive-article-29-sustainability-criteria-biofuels - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Organizations must ensure their energy policies contribute to the Union's increased renewable energy targets, accelerating the green transition and reducing dependence on imported fossil fuels. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-red3-directive-article-29-sustainability-criteria-biofuels.json #### Directive (EU) 2023/2413 - Article 3: Binding Union target for the overall share of energy from renewable sources in 2030 - **ID**: eu-red3-directive-article-3-binding-target-42-5-percent-2030 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Member States must collectively ensure a minimum 42.5% share of renewable energy in the Union's gross final consumption by 2030 and implement measures for sustainable biomass production. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-red3-directive-article-3-binding-target-42-5-percent-2030.json #### DIRECTIVE (EU) 2023/2413 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 18 October 2023 amending Directive (EU) 2018/2001, Regulation (EU) 2018/1999 and Directive 98/70/EC as regards the promotion of energy from renewable sources - **ID**: eu-red3-directive-article-31-renewable-fuels-transport - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This directive establishes an increased binding Union target for the share of energy from renewable sources in the Union’s gross final consumption of energy for 2030, raising it to a minimum of 42.5% ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-red3-directive-article-31-renewable-fuels-transport.json #### DIRECTIVE (EU) 2023/2413 amending Directive (EU) 2018/2001 as regards the promotion of energy from renewable sources - Article 4: Renewable Energy Support Schemes - **ID**: eu-red3-directive-article-4-renewable-energy-support-schemes - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article outlines the requirements for Member States to design and implement support schemes for energy from renewable sources that contribute to the Union's binding 2030 target of at least a 42.5... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-red3-directive-article-4-renewable-energy-support-schemes.json #### DIRECTIVE (EU) 2023/2413 - Article 9: Guarantees of origin for energy from renewable sources - **ID**: eu-red3-directive-article-9-go-disclosure-scheme - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This article mandates Member States to establish a system for issuing, transferring, and cancelling electronic guarantees of origin (GOs) to prove to final customers the renewable source of a given qu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-red3-directive-article-9-go-disclosure-scheme.json #### Directive (EU) 2023/2413 on the Promotion of the Use of Energy from Renewable Sources - **ID**: eu-renewable-energy-directive-2023-2413 - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: Establishes a binding EU-wide target of 42.5% renewable energy by 2030 under Article 3, requiring Member States to accelerate permitting for renewable energy projects, designate 'Go-To Areas' for stre... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-renewable-energy-directive-2023-2413.json #### Directive 2012/18/EU of the European Parliament and of the Council of 4 July 2012 on the control of major-accident hazards involving dangerous substances, amending and subsequently repealing Council Directive 96/82/EC - **ID**: eu-seveso-iii-directive-2012-18-major-hazard - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: The EU Seveso III Directive requires operators of industrial sites handling dangerous substances above threshold quantities to implement a Safety Management System, develop emergency plans, and ensure... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-seveso-iii-directive-2012-18-major-hazard.json #### IEC 61131-3:2013 - Programmable controllers - Part 3: Programming languages - **ID**: iec-61131-3-programmable-logic-controllers - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: IEC 61131-3:2013 defines the mandatory syntax and semantics for the five IEC programming languages (LD - Ladder Diagram, FBD - Function Block Diagram, ST - Structured Text, IL - Instruction List, SFC ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-61131-3-programmable-logic-controllers.json #### IEC 62351 Power Systems Management and Information Exchange Security - Authentication, Encryption and Role-Based Access for Substation Protocols - **ID**: iec-62351-power-systems-cybersecurity - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: The IEC 62351 series mandates end-to-end cybersecurity controls for operational technology (OT) communication protocols within power system infrastructures, requiring robust authentication, encryption... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-62351-power-systems-cybersecurity.json #### IEC 62443-4-1:2018 Security for industrial automation and control systems - Part 4-1: Secure product development lifecycle requirements - **ID**: iec-62443-4-1-product-security-development - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: IEC 62443-4-1 mandates that product developers and maintainers implement a secure product development lifecycle covering requirements definition, secure design, implementation, verification, defect ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-62443-4-1-product-security-development.json #### IEC 62443-4-2:2019 Security for industrial automation and control systems - Part 4-2: Technical security requirements for IACS components - **ID**: iec-62443-4-2-component-security-2019 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This standard defines technical security requirements for Industrial Automation and Control System (IACS) components based on seven foundational requirements (FRs) such as identification and authentic... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-62443-4-2-component-security-2019.json #### Industrial Automation Security (IEC 62443) - **ID**: iec-62443-iacs - **Category**: Industrial IoT & Energy - **Version**: 1.1.0 - **BLUF**: Operationalizing a comprehensive Industrial Automation and Control Systems (IACS) security program, in accordance with IEC 62443-2-1, demands adherence to a stringent set of technical and procedural c... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-62443-iacs.json #### IEC 62443 Industrial Automation and Control Systems Security - Security Levels, Zones and Conduits, and IACS Security Management - **ID**: iec-62443-industrial-automation-security-standards - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: The IEC 62443 series provides a comprehensive framework for securing Industrial Automation and Control Systems (IACS) by establishing requirements for asset owners, system integrators, and product sup... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-62443-industrial-automation-security-standards.json #### Ethical Design of Agents (IEEE) - **ID**: ieee-2817-agent-ethics - **Category**: Industrial IoT & Energy - **Version**: 1.1.0 - **BLUF**: IEEE 2817-2024 is the IEEE Standard for Pilot Qualification and Assessment of Autonomous Systems in Safety-Critical Applications, providing a framework for qualifying autonomous AI agents operating in... - **Discovery URL**: https://bidda.com/api/v1/nodes/ieee-2817-agent-ethics.json #### ISA/IEC 62443 Industrial Automation and Control Systems Security Framework - Security Levels, Zones and Conduits, Risk Assessment and Lifecycle Requirements - **ID**: isa-99-iec-62443-industrial-security-framework - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This standard establishes a comprehensive security framework for Industrial Automation and Control Systems (IACS), defining Security Levels (SL), Zone and Conduit models, risk assessment methodologies... - **Discovery URL**: https://bidda.com/api/v1/nodes/isa-99-iec-62443-industrial-security-framework.json #### ISA-TR84.00.02 - Guidance on Concepts Related to ISA 84: SIS Design, Testing, Maintenance and Management of Functional Safety - **ID**: isa-tr84-00-02-sis-functional-safety-guidance - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This technical report provides non-mandatory guidance for implementing functional safety requirements in Safety Instrumented Systems (SIS) as defined in ISA-84.00.01, focusing on risk assessment, safe... - **Discovery URL**: https://bidda.com/api/v1/nodes/isa-tr84-00-02-sis-functional-safety-guidance.json #### Safety of Machinery - Safety-Related Parts of Control Systems - Part 1: General Principles for Design - **ID**: iso-13849-safety-related-control-systems-2015 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: ISO 13849-1:2015 specifies requirements for the design and integration of safety-related parts of control systems (SRP/CS) in machinery, ensuring predictable performance under fault conditions. It app... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-13849-safety-related-control-systems-2015.json #### ISO 14001:2015 - Environmental Management Systems - Requirements with Guidance for Use - **ID**: iso-14001-2015-environmental-management-industrial - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: ISO 14001:2015 requires industrial facilities to establish, implement, maintain, and continually improve an environmental management system (EMS) that identifies environmental aspects and impacts, ens... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14001-2015-environmental-management-industrial.json #### Energy Management (ISO 50001) - **ID**: iso-50001-energy - **Category**: Industrial IoT & Energy - **Version**: 1.1.0 - **BLUF**: ISO 50001:2018 is the international standard for Energy Management Systems (EnMS), providing a framework for organizations to continuously improve energy performance - energy efficiency, energy consum... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-50001-energy.json #### ISO 55001:2014 - Asset Management Systems - Requirements for Establishing, Implementing and Improving an Asset Management System - **ID**: iso-55001-2014-asset-management-industrial - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: ISO 55001:2014 specifies requirements for an asset management system (AMS) to enable organizations to manage physical assets in industrial infrastructure contexts, ensuring value realization throughou... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-55001-2014-asset-management-industrial.json #### ISO/IEC 27019:2017 Information technology - Security techniques - Information security controls for the energy utility industry - **ID**: iso-iec-27019-energy-utility-information-security - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: ISO/IEC 27019:2017 provides sector-specific guidance for implementing information security controls in the process control systems (Operational Technology) of the energy utility industry. It extends t... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-27019-energy-utility-information-security.json #### NERC CIP: Energy Cyber Infrastructure - **ID**: nerc-cip-v6-cyber - **Category**: Industrial IoT & Energy - **Version**: 1.1.0 - **BLUF**: The NERC Critical Infrastructure Protection (CIP) standards are the mandatory cybersecurity requirements for North American bulk power systems. They focus on identifying 'BES' (Bulk Electric System) C... - **Discovery URL**: https://bidda.com/api/v1/nodes/nerc-cip-v6-cyber.json #### NIST Cybersecurity Framework Version 2.0: Improving Critical Infrastructure Cybersecurity - **ID**: nist-csf-critical-infrastructure-cybersecurity-v2 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: The NIST Cybersecurity Framework (CSF) 2.0 provides a policy framework of cybersecurity outcomes organized into six core functions-Identify, Protect, Detect, Respond, Recover, and Govern-to manage and... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-csf-critical-infrastructure-cybersecurity-v2.json #### NIST SP 1800-10 - Protecting Information and System Integrity in Industrial Control System Environments: Cybersecurity for the Manufacturing Sector - **ID**: nist-sp-1800-10-industrial-control-ot-security - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This publication provides a reference architecture and implementation guidance for securing industrial control systems (ICS) in the manufacturing sector by applying cybersecurity capabilities such as ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-1800-10-industrial-control-ot-security.json #### NIST SP 800-82 Rev 3: Guide to Operational Technology (OT) Security - **ID**: nist-sp-800-82-ics-security - **Category**: Industrial IoT & Energy - **Version**: 3.0.0 - **BLUF**: This guide provides tailored cybersecurity guidance for securing Industrial Control Systems (ICS) and Operational Technology (OT), addressing their unique requirements for performance, reliability, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-82-ics-security.json #### NIST SP 800-82 Rev 3 Guide to Operational Technology Security 2023 - OT Threats, Vulnerabilities, Risk Management and Recommended Practices - **ID**: nist-sp-800-82-r3-ot-ics-security-guide-2023 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This guide provides comprehensive recommendations for securing Operational Technology (OT) and Industrial Control Systems (ICS) by establishing a tailored risk management program and applying security... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-82-r3-ot-ics-security-guide-2023.json #### NIST Special Publication 800-82 Revision 3: Guide to Industrial Control Systems (ICS) Security - **ID**: nist-sp-800-82r3-ics-ot-security-2023 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This publication provides guidelines for securing Industrial Control Systems (ICS), including Supervisory Control and Data Acquisition (SCADA) systems, Distributed Control Systems (DCS), and other con... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-82r3-ics-ot-security-2023.json #### Smart Grid Security Framework - **ID**: nistir-7628-smartgrid - **Category**: Industrial IoT & Energy - **Version**: 1.1.0 - **BLUF**: NISTIR 7628 Revision 1 (2014) provides the definitive cybersecurity guidelines for smart grid systems, covering all functional domains from bulk generation to consumer premises. It defines 189 high-le... - **Discovery URL**: https://bidda.com/api/v1/nodes/nistir-7628-smartgrid.json #### OPC UA IEC 62541 - Unified Architecture for Industrial Communication: Service-Oriented Architecture, Information Model, Security Mechanisms, Transport Protocols and PubSub Extension for IIoT - **ID**: opc-ua-iec-62541-industrial-communication - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: This standard defines a platform-independent, service-oriented architecture for secure and scalable industrial communication, integrating all functionality from OPC Classic into OPC Unified Architectu... - **Discovery URL**: https://bidda.com/api/v1/nodes/opc-ua-iec-62541-industrial-communication.json #### OT/ICS Purdue Reference Model - Zone-Based Security Architecture, DMZ Design and Communication Path Controls for Industrial Networks - **ID**: ot-ics-purdue-model-zone-based-security - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: The Purdue Model for Industrial Control Systems (ICS) security is an architectural framework that mandates a hierarchical, zone-based network segmentation to isolate critical operational technology (O... - **Discovery URL**: https://bidda.com/api/v1/nodes/ot-ics-purdue-model-zone-based-security.json #### UK Product Security and Telecommunications Infrastructure Act 2022 - Part 1 Relevant Connectable Products - **ID**: uk-psti-act-2022-relevant-connectable-products-security - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Part 1 of the UK Product Security and Telecommunications Infrastructure Act 2022 (c.46) and the Product Security and Telecommunications Infrastructure (Security Requirements for Relevant Connectable P... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-psti-act-2022-relevant-connectable-products-security.json #### CHIPS and Science Act of 2022 (Pub.L. 117-167) - $52.7B Semiconductor Manufacturing Incentives, 25% Investment Tax Credit, 10-Year China Guardrails Prohibiting Expansion in Foreign Countries of Concern, National Semiconductor Technology Center, and $200B Science Investment - **ID**: us-chips-science-act-2022 - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: The CHIPS and Science Act (Pub.L. 117-167, enacted 9 August 2022) provides approximately $52.7 billion in federal funding for US semiconductor manufacturing, research, and workforce development, plus ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-chips-science-act-2022.json #### Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS) Advisory Framework - **ID**: us-cisa-ics-cert-advisory-framework - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: CISA requires owners and operators of industrial control systems to publish, score, and coordinate mitigation of vulnerabilities through formal advisories, including product identification, mitigation... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisa-ics-cert-advisory-framework.json #### Cybersecurity Capability Maturity Model (C2M2) Version 2.1 - **ID**: us-doe-c2m2-cybersecurity-maturity-model - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: The C2M2 provides a structured framework for organizations to evaluate and improve cybersecurity capabilities across IT and OT environments using 10 domains and 4 Maturity Indicator Levels (MILs 0-3).... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-doe-c2m2-cybersecurity-maturity-model.json #### EPA Risk Management Program Rule 2024 (40 CFR Part 68) - Accident Prevention Programme, Emergency Response Co-ordination and Third-Party Compliance Audits - **ID**: us-epa-risk-management-program-rule-2024 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This regulation requires owners and operators of stationary sources that handle regulated substances above threshold quantities to develop and implement a Risk Management Program (RMP) that includes h... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-risk-management-program-rule-2024.json #### FCC 47 CFR Part 8 Subpart B - Cybersecurity Labeling Program for IoT Products (US Cyber Trust Mark) - **ID**: us-fcc-47-cfr-part-8-subpart-b-cyber-trust-mark-consumer-iot-labeling - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: 47 CFR Part 8 Subpart B (sections 8.201 through 8.222) implements the US Cyber Trust Mark - the voluntary Federal Communications Commission cybersecurity labeling program for consumer Internet of Thin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-47-cfr-part-8-subpart-b-cyber-trust-mark-consumer-iot-labeling.json #### NERC CIP Standards - Bulk Electric System Cybersecurity: CIP-002 through CIP-014, BES Cyber System Classification, Electronic Security Perimeters, Access Management and Incident Reporting - **ID**: us-nerc-cip-standards-bulk-electric-system - **Category**: Industrial IoT & Energy - **Version**: 1.0.1 - **BLUF**: The NERC CIP Standards mandate cybersecurity protections for the Bulk Electric System (BES) across North America, requiring entities to identify and safeguard critical cyber assets through risk-based ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nerc-cip-standards-bulk-electric-system.json #### NIST IR 8228 - Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks - **ID**: us-nist-ir-8228-iot-cyber-privacy-risk-considerations-2019 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Organisations deploying Internet of Things devices should treat IoT cybersecurity and privacy risk management as a three-tier objective covering Protect Device Security, Protect Data Security, and Pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nist-ir-8228-iot-cyber-privacy-risk-considerations-2019.json #### NIST SP 800-82 Revision 3 - Guide to Operational Technology (OT) Security - **ID**: us-nist-sp-800-82-rev-3-ot-security-guide - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: Organizations operating Operational Technology systems must establish an OT cybersecurity program built from the ten program elements in Section 3.3 of NIST SP 800-82 Revision 3 - governance, cross-fu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nist-sp-800-82-rev-3-ot-security-guide.json #### Process Safety Management of Highly Hazardous Chemicals - **ID**: us-osha-process-safety-management-1910-119 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: This regulation requires employers operating processes involving threshold quantities of highly hazardous chemicals to implement a comprehensive process safety management (PSM) program, including proc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-osha-process-safety-management-1910-119.json #### Toxic Substances Control Act - Chemical Risk Evaluation, Prioritization, Safety Standards, and Fees for Industrial Chemical Manufacturing (2016 Reform) - **ID**: us-tsca-toxic-substances-chemical-safety-2016 - **Category**: Industrial IoT & Energy - **Version**: 1.0.0 - **BLUF**: The 2016 Lautenberg Chemical Safety Act amended the Toxic Substances Control Act (TSCA) to require EPA to evaluate existing chemicals for unreasonable risk, prioritize them as high- or low-priority, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tsca-toxic-substances-chemical-safety-2016.json ### Insurance & Risk (122 nodes) #### AU APRA CPS 234 - Information Security for APRA-Regulated Banking, Insurance, and Superannuation Entities - **ID**: au-apra-cps-234-information-security-banking-insurance-superannuation - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: APRA Prudential Standard CPS 234 requires all APRA-regulated entities (banks, insurers, superannuation funds) to implement an information security capability commensurate with threats, classify and pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-apra-cps-234-information-security-banking-insurance-superannuation.json #### Insurance Act 1973 (Cth) - APRA Prudential Regulation of General Insurers (Australia) - **ID**: au-apra-insurance-act-1973-general-insurance - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The Insurance Act 1973 (Cth) is the Commonwealth statute under which the Australian Prudential Regulation Authority (APRA) prudentially regulates general insurance in Australia. A body corporate or Ll... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-apra-insurance-act-1973-general-insurance.json #### Prudential Standard GPS 310 Audit and Related Matters - **ID**: au-apra-prudential-standard-gps-310-audit-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This standard requires Australian general insurers and Level 2 insurance groups to establish and maintain robust internal audit, external audit, and actuarial review functions, as mandated by the Boar... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-apra-prudential-standard-gps-310-audit-2023.json #### Australia Insurance Act 1973 - Authorisation Supervision and Capital of General Insurers - **ID**: au-insurance-act-1973 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The Insurance Act 1973 requires entities carrying on general insurance business in Australia to be authorised by the Australian Prudential Regulation Authority unless an exception applies, authorises ... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-insurance-act-1973.json #### Prudential Standard CPS 220 - Risk Management - **ID**: australia-apra-cps-220-risk-management - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: APRA Prudential Standard CPS 220 mandates that all general insurers and life companies establish and maintain a robust risk management framework overseen by the Board and a dedicated Risk Committee, w... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-apra-cps-220-risk-management.json #### Prudential Standard CPS 234 - Information Security - **ID**: australia-apra-cps-234-information-security-insurance - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: APRA CPS 234 mandates that regulated insurers maintain an information security capability commensurate with their risk profile, implement a formal policy framework, classify information security incid... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-apra-cps-234-information-security-insurance.json #### APRA Prudential Standard GPS 220 - Risk Management Requirements for General Insurers (2023 Update) - **ID**: australia-apra-gps-220-risk-management-general-insurers - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This standard requires all APRA-regulated general insurers and Level 2 insurance groups to establish and maintain a comprehensive Risk Management Framework (RMF) and a Risk Management Strategy (RMS). ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-apra-gps-220-risk-management-general-insurers.json #### Prudential Standard LPS 110 Capital Adequacy - **ID**: australia-apra-lps-110-capital-adequacy-life - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This standard requires Australian life insurance companies to maintain a capital base that exceeds their Prescribed Capital Amount (PCA) at all times, as mandated by the Life Insurance Act 1995. The c... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-apra-lps-110-capital-adequacy-life.json #### Commercial Insurer Solvency Self-Assessment (CISSA): Framework, Methodology and Submission Requirements - **ID**: bermuda-bma-cissa-commercial-insurer-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This framework requires all Bermuda-registered commercial insurers (Classes 3A, 3B, 4, IGB, and Long-Term Classes C, D, and E) to conduct and document an annual Commercial Insurer Solvency Self-Assess... - **Discovery URL**: https://bidda.com/api/v1/nodes/bermuda-bma-cissa-commercial-insurer-2023.json #### Resolution CNSP 553/2023 - Open Insurance Framework: Data Sharing Obligation for Insurers, API Standards, Customer Consent Management, Regulatory Sandbox for Insurtechs and SUSEP Supervisory Technology Deployment - **ID**: brazil-susep-resolution-553-2023-insurance - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: SUSEP Resolution 553 of 2023 establishes the Open Insurance Brazil (OPIN) framework, mandating insurers and brokers to share customer data via standardised APIs with prior, explicit customer consent; ... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-susep-resolution-553-2023-insurance.json #### Circular SUSEP Nº 667, de 2 de julho de 2021: Dispõe sobre os critérios para cálculo do capital requerido baseado nos riscos de subscrição, de crédito, de mercado e operacional, e sobre o capital mínimo requerido das sociedades seguradoras, das entidades abertas de previdência complementar, das sociedades de capitalização e dos resseguradores locais. - **ID**: brazil-susep-solvency-regulation-circular-2021 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation establishes a Solvency II-based framework for Brazilian insurance companies, open private pension entities, capitalization companies, and local reinsurers, defining the methodology for... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-susep-solvency-regulation-circular-2021.json #### Insurance Companies Act (S.C. 1991, c. 47) - OSFI Prudential Regulation of Federal Insurers (Canada) - **ID**: ca-osfi-insurance-companies-act-1991 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The Insurance Companies Act (S.C. 1991, c. 47) is the federal statute under which the Office of the Superintendent of Financial Institutions (OSFI) regulates federally incorporated and authorised insu... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-osfi-insurance-companies-act-1991.json #### OSFI Guideline E-19 - Own Risk and Solvency Assessment (ORSA) - **ID**: canada-osfi-e19-own-risk-solvency-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This guideline requires all federally regulated insurers (FRIs) in Canada to establish and maintain a comprehensive Own Risk and Solvency Assessment (ORSA) process. As per Section 1.1, the ORSA must a... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-osfi-e19-own-risk-solvency-2023.json #### Solvency Regulatory Rules for Insurance Companies (II) - C-ROSS Phase II - **ID**: china-cbirc-c-ross-ii-solvency-2022 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation establishes the China Risk-Oriented Solvency System (C-ROSS) Phase II, a comprehensive three-pillar framework mandating quantitative capital requirements, qualitative risk management s... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-cbirc-c-ross-ii-solvency-2022.json #### EIOPA Guidelines on Stress Testing for Institutions for Occupational Retirement Provision (IORPs) - 2022 Methodology and Scenarios - **ID**: eiopa-guidelines-pension-stress-testing-2022 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: These guidelines mandate that National Competent Authorities (NCAs) ensure participating Institutions for Occupational Retirement Provision (IORPs) conduct a stress test to assess their resilience aga... - **Discovery URL**: https://bidda.com/api/v1/nodes/eiopa-guidelines-pension-stress-testing-2022.json #### Commission Implementing Regulation (EU) 2015/2452 of 2 December 2015 laying down implementing technical standards with regard to the procedures, formats and templates for the solvency and financial condition report in accordance with Directive 2009/138/EC of the European Parliament and of the Council - **ID**: eu-commission-implementing-regulation-2015-2452-solvency - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation establishes the mandatory procedures, formats, and quantitative reporting templates (QRTs) that insurance and reinsurance undertakings must use for their annual and quarterly Solvency ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-commission-implementing-regulation-2015-2452-solvency.json #### Commission Delegated Regulation (EU) 2016/2067 of 2 September 2016 amending Delegated Regulation (EU) 2015/35 concerning the calculation of regulatory capital requirements for several categories of assets held by insurance and reinsurance undertakings - **ID**: eu-delegated-regulation-2016-2067-spread-market-risk - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation amends the Solvency II framework (Delegated Regulation 2015/35) by specifying updated standard parameters for calculating the Solvency Capital Requirement (SCR) for spread risk on bond... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-delegated-regulation-2016-2067-spread-market-risk.json #### Commission Delegated Regulation (EU) 2016/467 of 30 September 2015 amending Commission Delegated Regulation (EU) 2015/35 concerning the calculation of regulatory capital requirements for several categories of assets held by insurance and reinsurance undertakings - **ID**: eu-delegated-regulation-2016-467-non-life-premium-risk - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation amends the Solvency II framework (Delegated Regulation 2015/35) by updating the standard formula for calculating the Solvency Capital Requirement (SCR) for non-life premium and reserve... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-delegated-regulation-2016-467-non-life-premium-risk.json #### Directive 2002/92/EC of the European Parliament and of the Council of 9 December 2002 on insurance mediation - **ID**: eu-distance-selling-insurance-directive-2002-92 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This directive requires insurance intermediaries to provide consumers with specific, clear pre-contractual information and grants a 14-day right of cancellation for insurance contracts concluded at a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-distance-selling-insurance-directive-2002-92.json #### Guidelines on the own risk and solvency assessment - **ID**: eu-eiopa-guidelines-orsa-2015 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: These guidelines require all insurance and reinsurance undertakings under the Solvency II Directive to implement and maintain an Own Risk and Solvency Assessment (ORSA) process to continuously assess ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eiopa-guidelines-orsa-2015.json #### EU Insurance Distribution Directive 2016/97/EU - Insurance Intermediary Registration, Conduct of Business, and IBIPs - **ID**: eu-idd-insurance-distribution-directive-2016-97 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2016/97 of the European Parliament and of the Council on insurance distribution (IDD), in force from 1 October 2018, replaces the Insurance Mediation Directive 2002/92/EC. The IDD exten... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-idd-insurance-distribution-directive-2016-97.json #### Directive (EU) 2016/97 of the European Parliament and of the Council of 20 January 2016 on insurance distribution (recast) - **ID**: eu-insurance-distribution-directive-2016-97 - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: This Directive establishes harmonized rules for insurance distribution across the EU, requiring distributors to provide pre-contractual information via the Insurance Product Information Document (IPID... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-insurance-distribution-directive-2016-97.json #### Proposal for a Directive of the European Parliament and of the Council establishing a framework for the recovery and resolution of insurance and reinsurance undertakings and amending Directives 2002/47/EC, 2004/25/EC, 2007/36/EC, 2014/59/EU and (EU) 2017/1132 - **ID**: eu-insurance-recovery-resolution-directive-2021 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This Directive requires EU insurance and reinsurance undertakings to create and maintain pre-emptive recovery plans to address scenarios of significant financial distress, and establishes a harmonised... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-insurance-recovery-resolution-directive-2021.json #### Directive (EU) 2016/2341 of the European Parliament and of the Council of 14 December 2016 on the activities and supervision of institutions for occupational retirement provision (IORPs) (recast) - **ID**: eu-iorp-ii-cross-border-transfers-2016 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This directive establishes harmonized EU rules for Institutions for Occupational Retirement Provision (IORPs), focusing on governance, risk management, investment freedom, and information disclosure t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-iorp-ii-cross-border-transfers-2016.json #### Directive (EU) 2021/2118 of the European Parliament and of the Council of 24 November 2021 amending Directive 2009/103/EC relating to insurance against civil liability in respect of the use of motor vehicles, and the enforcement of the obligation to insure against such liability - **ID**: eu-motor-insurance-directive-2021-2118-revision - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This directive amends the EU Motor Insurance framework to enhance protection for victims of traffic accidents, particularly in cases of insurer insolvency, by establishing harmonized compensation mech... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-motor-insurance-directive-2021-2118-revision.json #### Directive (EU) 2021/2118 of the European Parliament and of the Council of 2 December 2021 on the approximation of the laws of the Member States relating to insurance against civil liability in respect of the use of motor vehicles and the enforcement of the obligation to insure such liability - **ID**: eu-motor-insurance-sixth-directive-2021-2118 - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: This Directive establishes minimum insurance coverage amounts for civil liability arising from motor vehicle use, mandates coverage for electric vehicle battery fire risks, requires Member States to e... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-motor-insurance-sixth-directive-2021-2118.json #### EU Natural Catastrophe Insurance Gap - European Commission Discussion Framework and Market Development Recommendations (2024) - **ID**: eu-natural-catastrophe-insurance-framework-2024 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This European Commission framework provides non-binding recommendations for EU Member States and insurers to close the natural catastrophe (NatCat) insurance protection gap by enhancing risk preventio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-natural-catastrophe-insurance-framework-2024.json #### Directive (EU) 2016/2341 of the European Parliament and of the Council of 14 December 2016 on the activities and supervision of institutions for occupational retirement provision (IORPs) (recast) - **ID**: eu-occupational-pensions-iorp-ii-2016-2341 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This directive establishes prudential, governance, and transparency requirements for Institutions for Occupational Retirement Provision (IORPs) across the EU, including mandatory Own Risk Assessment (... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-occupational-pensions-iorp-ii-2016-2341.json #### Directive (EU) 2016/2341 (IORP II) Article 18: Investment Rules for Institutions for Occupational Retirement Provision - **ID**: eu-occupational-pensions-iorp-investment-limits-2016 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: Under Article 18 of the IORP II Directive, EU Member States must ensure that Institutions for Occupational Retirement Provision (IORPs) invest their assets according to the 'prudent person' principle,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-occupational-pensions-iorp-investment-limits-2016.json #### Directive 2005/68/EC of the European Parliament and of the Council of 16 November 2005 on Reinsurance - **ID**: eu-reinsurance-directive-2005-68-ec-consolidated - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This directive establishes the prudential and supervisory framework for reinsurance undertakings operating within the EU, including requirements for authorisation, capital adequacy, governance, and cr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reinsurance-directive-2005-68-ec-consolidated.json #### Regulation (EU) 2019/2088 of the European Parliament and of the Council of 27 November 2019 on sustainability-related disclosures in the financial services sector - **ID**: eu-sfdr-insurance-based-investment-products-2022 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation requires providers of Insurance-Based Investment Products (IBIPs), including unit-linked and with-profit policies, to classify financial products under Article 6, 8, or 9 of SFDR and d... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sfdr-insurance-based-investment-products-2022.json #### Directive 2009/138/EC (Solvency II) - Pillar 2: System of Governance (Articles 40-50) - **ID**: eu-solvency-ii-2009-138-pillar-2-governance - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: EU Solvency II Pillar 2 (Articles 40-50) mandates that all EU insurance and reinsurance undertakings establish and maintain an effective system of governance. This system must ensure sound and prudent... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-2009-138-pillar-2-governance.json #### EU Solvency II Directive 2009/138/EC - EIOPA Prudential Supervision - **ID**: eu-solvency-ii-directive-2009-138-ec-eiopa - **Category**: Insurance & Risk - **Version**: 2.0.0 - **BLUF**: Directive 2009/138/EC (Solvency II) establishes the EU prudential framework for insurance and reinsurance undertakings, requiring risk-based capital adequacy (Solvency Capital Requirement), the Own Ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-directive-2009-138-ec-eiopa.json #### EU Solvency II Directive 2009/138/EC - Solvency Capital Requirement & Own Funds for Insurers - **ID**: eu-solvency-ii-directive-2009-138-ec-insurance-capital-scr - **Category**: Insurance & Risk - **Version**: 2.0 - **BLUF**: Solvency II Directive 2009/138/EC establishes a three-pillar risk-based capital framework for EU insurers: Pillar 1 quantitative requirements (SCR, MCR), Pillar 2 governance and ORSA, Pillar 3 reporti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-directive-2009-138-ec-insurance-capital-scr.json #### EU Solvency II Directive 2009/138 - Insurance Capital Requirements and Risk-Based Supervision - **ID**: eu-solvency-ii-directive-2009-138-insurance-capital-requirements - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: Directive 2009/138/EC (Solvency II) establishes a risk-based capital framework for EU insurance and reinsurance undertakings, comprising three pillars: quantitative requirements (Pillar 1), governance... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-directive-2009-138-insurance-capital-requirements.json #### EU Solvency II Directive 2009/138/EC - Pillar 2: System of Governance and Risk Management - **ID**: eu-solvency-ii-directive-pillar-2-governance-risk - **Category**: Insurance & Risk - **Version**: 2.0.0 - **BLUF**: EU Solvency II Directive (2009/138/EC) Pillar 2 requires insurers to maintain an effective system of governance proportionate to the nature, scale, and complexity of their business. Core requirements ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-directive-pillar-2-governance-risk.json #### EU Solvency II Directive 2009/138/EC - Pillar 3: Supervisory Reporting and Public Disclosure - **ID**: eu-solvency-ii-directive-pillar-3-reporting-disclosure - **Category**: Insurance & Risk - **Version**: 2.0.0 - **BLUF**: EU Solvency II Directive (2009/138/EC) Pillar 3 requires insurers to submit regular supervisory reports to national competent authorities and to publish annual public disclosures. Core documents are: ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-directive-pillar-3-reporting-disclosure.json #### Commission Delegated Regulation (EU) 2015/35 of 10 October 2014 supplementing Directive 2009/138/EC of the European Parliament and of the Council on the taking-up and pursuit of the business of Insurance and Reinsurance (Solvency II) - **ID**: eu-solvency-ii-level-2-delegated-regulation-2015-35 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation provides detailed implementing rules for the Solvency II Directive, specifying the standard formula for calculating the Solvency Capital Requirement (SCR), methods for calculating the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-level-2-delegated-regulation-2015-35.json #### EU Solvency II Directive 2009/138/EC - Pillar 1: Solvency Capital Requirement (SCR) and Minimum Capital Requirement (MCR) - **ID**: eu-solvency-ii-pillar-1-scr-mcr-capital-requirements - **Category**: Insurance & Risk - **Version**: 2.0.0 - **BLUF**: EU Solvency II Directive 2009/138/EC (as amended by Omnibus II Directive 2014/51/EU and the 2023 Solvency II Review Directive 2025/2) establishes a risk-based Pillar 1 framework for insurance and rein... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-pillar-1-scr-mcr-capital-requirements.json #### Implementing Technical Standards on Supervisory Reporting under Solvency II Directive (EU) 2023/894 and Disclosure Requirements (EU) 2023/895 - Quantitative Reporting Templates for Pillar 3 - **ID**: eu-solvency-ii-pillar-3-qrt-reporting-2024 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation mandates all insurance and reinsurance undertakings, special purpose vehicles, and third-country branches subject to Solvency II to submit standardized quantitative and qualitative dis... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-pillar-3-qrt-reporting-2024.json #### Directive 2009/138/EC (Solvency II) Pillar 3: Public Disclosure (Solvency and Financial Condition Report - SFCR) and Supervisory Reporting (Regular Supervisory Report - RSR) - **ID**: eu-solvency-ii-pillar-3-sfcr-rsf-reporting - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: Under Solvency II Pillar 3, EU insurance and reinsurance undertakings must annually disclose a public Solvency and Financial Condition Report (SFCR) detailing their business performance, governance, r... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-pillar-3-sfcr-rsf-reporting.json #### Directive (EU) 2023/2 of the European Parliament and of the Council of 15 December 2022 amending Directive 2009/138/EC as regards the long-term equity investment category, the extrapolation method, group supervision, cross-border business, run-off and proportionality for small insurers - **ID**: eu-solvency-ii-review-2025-directive - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: This directive amends Solvency II to introduce a new long-term equity investment capital treatment, revise the extrapolation method for longevity risk, enhance group supervision, facilitate cross-bord... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency-ii-review-2025-directive.json #### DIRECTIVE 2009/138/EC OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 25 November 2009 on the taking-up and pursuit of the business of Insurance and Reinsurance (Solvency II) - Article 256 - **ID**: eu-solvency2-directive-article-256-group-solvency-calculation-governance - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This article's compliance obligations regarding group solvency calculation governance cannot be determined as the provided regulatory text does not contain the enacted provisions of Article 256. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency2-directive-article-256-group-solvency-calculation-governance.json #### Solvency II Directive 2009/138/EC - Article 37 Capital add-on - **ID**: eu-solvency2-directive-article-37-capital-add-on-supervisory-powers - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: Supervisory authorities may, in exceptional circumstances following a supervisory review, impose a capital add-on for an insurance or reinsurance undertaking, provided the decision states the reasons. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency2-directive-article-37-capital-add-on-supervisory-powers.json #### Solvency II Directive 2009/138/EC - Article 44: Risk management - **ID**: eu-solvency2-directive-article-44-risk-management-system-requirements - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: Insurance and reinsurance undertakings must establish and maintain an effective, continuous risk-management system to identify, measure, monitor, manage, and report all individual and aggregated risks... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency2-directive-article-44-risk-management-system-requirements.json #### Directive 2009/138/EC of the European Parliament and of the Council on the taking-up and pursuit of the business of Insurance and Reinsurance (Solvency II) - Article 48: Actuarial function - **ID**: eu-solvency2-directive-article-48-actuarial-function-requirements - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: Insurance and reinsurance undertakings must establish and maintain an effective actuarial function responsible for coordinating technical provision calculations, ensuring methodology appropriateness, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solvency2-directive-article-48-actuarial-function-requirements.json #### US Federal Insurance Office Annual Report 2023 - Insurance Market Competitiveness, Climate Risks and Affordability Assessment - **ID**: fio-annual-report-insurance-us-market-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This annual report, mandated by the Dodd-Frank Act, assesses the U.S. insurance market, providing key findings and recommendations to Congress and state regulators on climate-related financial risk, i... - **Discovery URL**: https://bidda.com/api/v1/nodes/fio-annual-report-insurance-us-market-2023.json #### Hong Kong Insurance Authority - Prudential Standards for Authorised Insurers: Solvency, Governance and Risk Management Framework (2023) - **ID**: hong-kong-ia-prudential-standards-insurers-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This framework mandates that all authorized insurers in Hong Kong establish and maintain a comprehensive risk-based capital adequacy and risk management system, encompassing a three-pillar approach to... - **Discovery URL**: https://bidda.com/api/v1/nodes/hong-kong-ia-prudential-standards-insurers-2023.json #### IAIS Application Paper on the Supervision of Climate-Related Risks in the Insurance Sector - **ID**: iais-application-paper-climate-risk-insurance-2021 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This paper provides guidance for insurance supervisors to encourage and assess how insurers manage climate-related risks, focusing on the use of scenario analysis to evaluate resilience (Section 4) an... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-application-paper-climate-risk-insurance-2021.json #### IAIS ComFrame Prescribed Capital Requirement (PCR) - Group Capital Calculation for Internationally Active Insurance Groups (IAIGs) 2023 - **ID**: iais-comframe-pcr-quantitative-requirements-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation establishes the Prescribed Capital Requirement (PCR), a consolidated group-level quantitative capital standard for Internationally Active Insurance Groups (IAIGs), ensuring they hold s... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-comframe-pcr-quantitative-requirements-2023.json #### IAIS Holistic Framework for Systemic Risk in the Insurance Sector - Activities-Based and Entity-Based Measures (2022 Update) - **ID**: iais-holistic-framework-systemic-risk-insurance-2022 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This framework requires insurance supervisors to implement a comprehensive, activities-based approach to monitor and mitigate systemic risk across the entire insurance sector, complemented by an entit... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-holistic-framework-systemic-risk-insurance-2022.json #### Insurance Core Principles (ICP) 1 - Objectives, Powers and Responsibilities of the Supervisor: Insurance Supervisory Authority Legal Basis, Operational Independence, Accountability, Transparency, Professional Standards and International Cooperation - **ID**: iais-icp-1-objectives-powers-responsibilities - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: ICP 1 establishes the foundational requirements for an effective insurance supervisory authority, mandating a clear legal basis, operational independence, accountability, transparency, professional co... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-icp-1-objectives-powers-responsibilities.json #### IAIS Insurance Core Principle 14: Valuation - **ID**: iais-icp-14-valuation-solvency-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This principle requires insurance supervisors to establish requirements for the valuation of assets and liabilities for solvency purposes, ensuring they reflect their economic value. As per ICP 14.1, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-icp-14-valuation-solvency-2023.json #### Insurance Core Principle 17 - Group-Wide Supervision: Group Supervisor Identification, Group Supervisory College, Group Capital Requirement, Intragroup Transactions, Contagion Risk Assessment and Crisis Management Group Cooperation - **ID**: iais-icp-17-group-wide-supervision - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: IAIS ICP 17 establishes requirements for effective group-wide supervision of insurance groups, mandating the identification of a group supervisor, formation of a group supervisory college, assessment ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-icp-17-group-wide-supervision.json #### IAIS Insurance Core Principle 25: Supervisory Cooperation and Coordination - **ID**: iais-icp-25-supervisory-cooperation-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This principle requires insurance supervisors to cooperate and coordinate with other domestic and international supervisors, particularly for internationally active insurance groups (IAIGs). As per IC... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-icp-25-supervisory-cooperation-2023.json #### Insurance Core Principle 4 - Licensing: Criteria for Authorisation of Insurers, Fit and Proper Assessment, Business Plan Requirements, Initial Capital, Qualified Shareholders and Ongoing Licence Conditions - **ID**: iais-icp-4-licensing-insurers - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: IAIS ICP 4 establishes the minimum requirements for the authorisation and ongoing supervision of insurers, including fit and proper assessments of controllers and key personnel, business plan viabilit... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-icp-4-licensing-insurers.json #### Insurance Core Principle 8 - Risk Management and Internal Controls - **ID**: iais-icp-8-risk-management-internal-controls - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: IAIS ICP 8 requires insurers to establish and maintain a comprehensive enterprise risk management (ERM) framework, including an Own Risk and Solvency Assessment (ORSA), internal control systems, an in... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-icp-8-risk-management-internal-controls.json #### IAIS Issues Paper on Cyber Risk to the Insurance Sector (2022) - Accumulation Risk, Systemic Exposure and Supervisory Expectations - **ID**: iais-supervisory-material-cyber-risk-insurance-2022 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This IAIS Issues Paper outlines supervisory expectations for insurers to enhance their governance and risk management frameworks for cyber underwriting, focusing on managing accumulation risk and syst... - **Discovery URL**: https://bidda.com/api/v1/nodes/iais-supervisory-material-cyber-risk-insurance-2022.json #### Amendments to IFRS 17 Insurance Contracts: Transition Relief, Risk Mitigation Option and Annual Cohort Exemption (June 2020) - **ID**: iasb-ifrs-17-amendments-2020-transition - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: These amendments to IFRS 17 provide optional reliefs for entities during the initial transition to the standard, primarily concerning the grouping of contracts into annual cohorts and the accounting f... - **Discovery URL**: https://bidda.com/api/v1/nodes/iasb-ifrs-17-amendments-2020-transition.json #### IFRS 17 Insurance Contracts - Effective Implementation (January 2023): Measurement Models, Contractual Service Margin and Onerous Contracts - **ID**: iasb-ifrs-17-insurance-effective-date-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: Effective for annual reporting periods beginning on or after January 1, 2023, IFRS 17 mandates that all entities issuing insurance contracts adopt a new accounting model for their recognition, measure... - **Discovery URL**: https://bidda.com/api/v1/nodes/iasb-ifrs-17-insurance-effective-date-2023.json #### IFRS 17 Insurance Contracts - **ID**: ifrs-17-insurance-contracts-implementation-2023 - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: IFRS 17 requires entities to recognise, measure, present, and disclose insurance contracts using a current measurement model that reflects the risk-adjusted present value of future cash flows and the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-17-insurance-contracts-implementation-2023.json #### IRDAI Information and Cybersecurity Guidelines, 2026 - **ID**: india-insurance-regulatory-irda-regulations-2024 - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: This regulation mandates all insurers to implement robust information and cybersecurity frameworks to protect policyholder data and ensure system integrity, in accordance with the IRDAI Information an... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-insurance-regulatory-irda-regulations-2024.json #### India IRDAI Insurance Act 1938 (as amended) - Regulatory Framework for Insurers: Registration, Solvency Margins and Investment Norms (2024) - **ID**: india-irdai-insurance-act-1938-regulations-2024 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This framework, under the Insurance Act 1938 and IRDAI Act 1999, mandates that all insurers in India maintain a minimum solvency ratio of 150% (Section 64VA) and adhere to prescribed investment norms ... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-irdai-insurance-act-1938-regulations-2024.json #### Insurance Regulatory and Development Authority of India (IRDAI) Regulations 2024 - Bima Trinity: Bima Vistaar (Universal Coverage), Bima Sugam (Digital Platform), Bima Vahak (Women Agents Network), FDI Limit Increase to 100%, and 30-Day Claim Settlement Mandate - **ID**: india-irdai-insurance-regulatory-authority-2024 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation mandates all general and life insurers in India to implement Bima Vistaar for universal insurance coverage, adopt Bima Sugam for digital policy issuance and servicing, onboard women ag... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-irdai-insurance-regulatory-authority-2024.json #### Insurance Web Aggregator Registration, Product Neutral Display Obligation, Revenue Caps on Referral Fees, Comparison Tool Standards, No Recommendation Bias, Data Protection of Policyholder Information and Annual Reporting - **ID**: india-irdai-insurance-web-aggregator-regulations-2017 - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: This regulation governs the operation of insurance web aggregators in India, mandating registration with IRDAI, neutral product display, prohibition of biased recommendations, data protection of polic... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-irdai-insurance-web-aggregator-regulations-2017.json #### Lloyd's Market Bulletin Y5387 - Cyber Aggregation Management: Policy Wording, Sublimit Requirements and Reporting Framework (2023) - **ID**: lloyd-market-bulletin-y5387-cyber-aggregation-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This bulletin mandates that Lloyd's managing agents ensure all standalone cyber policies explicitly state coverage for cyber-attacks, whether malicious or not, and manage aggregation risk through spec... - **Discovery URL**: https://bidda.com/api/v1/nodes/lloyd-market-bulletin-y5387-cyber-aggregation-2023.json #### London Market Association (LMA) Model Cyber Liability Clauses 2021 - Coverage Scope, Exclusions and Notification Requirements - **ID**: lma-model-clauses-cyber-liability-2021 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The London Market Association (LMA) provides standardized model clauses for cyber liability insurance policies to clarify coverage scope, define key exclusions, and establish notification duties for i... - **Discovery URL**: https://bidda.com/api/v1/nodes/lma-model-clauses-cyber-liability-2021.json #### NAIC Accelerated Underwriting Model Bulletin 2022 - AI/ML in Insurance Underwriting: Fair Treatment Principles, External Data Source Governance, Model Validation, Disparate Impact Testing, Consumer Transparency Disclosure and Regulatory File Review Standards - **ID**: naic-accelerated-underwriting-model-bulletin-2022 - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: This guidance establishes a regulatory framework for insurers using accelerated underwriting (AU) techniques involving external data, predictive models, and AI/ML, requiring adherence to sound actuari... - **Discovery URL**: https://bidda.com/api/v1/nodes/naic-accelerated-underwriting-model-bulletin-2022.json #### NAIC Insurance Data Security Model Law 668 - Cybersecurity Program, Risk Assessment and Incident Notification for Insurers - **ID**: naic-cybersecurity-model-law-668-insurance - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This model law requires insurance licensees to develop, implement, and maintain a comprehensive written information security program based on an ongoing risk assessment, as mandated by Section 4. It a... - **Discovery URL**: https://bidda.com/api/v1/nodes/naic-cybersecurity-model-law-668-insurance.json #### NAIC Market Conduct Annual Statement (MCAS) 2023 - Standardised Market Conduct Data Collection for Life, Health and Property/Casualty Insurers - **ID**: naic-market-conduct-annual-statement-mcas-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The NAIC Market Conduct Annual Statement (MCAS) requires life, health, and property/casualty insurers exceeding specified premium thresholds to annually submit standardized data on their market conduc... - **Discovery URL**: https://bidda.com/api/v1/nodes/naic-market-conduct-annual-statement-mcas-2023.json #### NAIC Insurance Data Security Model Law (Model No. 668) - Information Security Program, Risk Assessment, Third-Party Oversight, Cybersecurity Event Notification, and Annual Certification - **ID**: naic-model-act-data-security-insurance-2017 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: Requires all licensed insurers, reinsurers, and other covered financial institutions operating in the U.S. insurance sector to implement a comprehensive information security program based on risk asse... - **Discovery URL**: https://bidda.com/api/v1/nodes/naic-model-act-data-security-insurance-2017.json #### NAIC Model Bulletin on the Use of Artificial Intelligence by Insurance Companies (Adopted December 2023; Aligned with NAIC Principles of Artificial Intelligence Adopted at the 2020 Summer National Meeting; Developed by the Big Data and Artificial Intelligence (H) Working Group) - **ID**: naic-model-bulletin-ai-systems-insurers-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The NAIC Model Bulletin on the Use of Artificial Intelligence by Insurance Companies is the National Association of Insurance Commissioners' authoritative guidance for state insurance regulators and i... - **Discovery URL**: https://bidda.com/api/v1/nodes/naic-model-bulletin-ai-systems-insurers-2023.json #### NAIC Risk-Based Capital for Health Organizations - Model Regulation (2023) - **ID**: naic-model-rbc-health-insurance-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This model regulation requires U.S. health organizations, including insurers and HMOs, to calculate and maintain capital above a minimum formula-based threshold, known as the Risk-Based Capital (RBC) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/naic-model-rbc-health-insurance-2023.json #### NAIC Risk-Based Capital for Life Insurance Companies - Model Regulation and Annual RBC Report Requirements (2023) - **ID**: naic-model-rbc-life-insurance-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This model regulation requires U.S. life insurance companies to calculate and report their Risk-Based Capital (RBC) annually to state regulators, ensuring they hold sufficient capital to support their... - **Discovery URL**: https://bidda.com/api/v1/nodes/naic-model-rbc-life-insurance-2023.json #### NAIC Risk-Based Capital for Property and Casualty Insurance Companies - Model Regulation (2023) - **ID**: naic-model-rbc-property-casualty-2023 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This model regulation requires property and casualty insurers to maintain capital commensurate with their overall risk profile, calculated via a specific formula. It establishes four levels of regulat... - **Discovery URL**: https://bidda.com/api/v1/nodes/naic-model-rbc-property-casualty-2023.json #### NAIC Privacy of Consumer Financial and Health Information Regulation (Model #672) - **ID**: naic-privacy-protection-model-regulation-672 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This model regulation requires insurance licensees to provide consumers with a clear privacy notice regarding their information-sharing practices and to offer an 'opt-out' right before sharing nonpubl... - **Discovery URL**: https://bidda.com/api/v1/nodes/naic-privacy-protection-model-regulation-672.json #### NAIC Producer Licensing Model Act - State Insurance Licence Requirements: Lines of Authority, Continuing Education, Nonresident Reciprocity, Background Checks, Appointments, Termination Reporting and NIPR Portal Compliance - **ID**: naic-producer-licensing-model-act - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This model act establishes uniform standards for the licensing and regulation of insurance producers across U.S. states, requiring background checks, pre-licensing education, continuing education, app... - **Discovery URL**: https://bidda.com/api/v1/nodes/naic-producer-licensing-model-act.json #### NAICOM Guidelines on Microinsurance in Nigeria (2021 Edition) - Three-Tier Licensing Framework, Premium Caps, Simplified Policy Wordings, Community Agent Networks, Takaful Integration, and Mobile Channel Authorisation - **ID**: nigeria-naicom-guidelines-microinsurance-2021 - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: These guidelines establish a regulatory framework for microinsurance operations in Nigeria, requiring insurers to obtain one of three license tiers (Unit, State, or National), cap premiums at 5% of mo... - **Discovery URL**: https://bidda.com/api/v1/nodes/nigeria-naicom-guidelines-microinsurance-2021.json #### OECD Policy Framework for Disaster Risk Financing - Sovereign Risk Transfer, Contingent Credit and Parametric Insurance Instruments - **ID**: oecd-policy-framework-disaster-risk-financing-2017 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This OECD framework provides governments with a strategic approach for developing a comprehensive disaster risk financing strategy to enhance financial resilience against natural and man-made catastro... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-policy-framework-disaster-risk-financing-2017.json #### OECD Recommendation on Good Practices for Insurance Claim Management - Fair Settlement, Transparency and Anti-Fraud Standards - **ID**: oecd-recommendation-insurance-good-practices-2004 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This OECD recommendation establishes non-binding principles for insurers and intermediaries in member countries to ensure fair, transparent, and timely settlement of insurance claims, and to effective... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-recommendation-insurance-good-practices-2004.json #### Insurance Act - Licensing, Supervision and Governance of Insurers and Insurance Brokers in Singapore - **ID**: singapore-mas-insurance-act-2023-amendments - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: This regulation governs the licensing and operation of insurers and insurance brokers in Singapore under the Insurance Act, requiring compliance with prudential, governance, and conduct standards set ... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-mas-insurance-act-2023-amendments.json #### MAS Notice MAS 124 - Valuation and Capital Framework for Insurers: Risk-Based Capital (RBC 2) Requirements - **ID**: singapore-mas-notice-mas-124-insurance-valuation - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This notice establishes the Risk-Based Capital (RBC 2) framework for all licensed insurers in Singapore, mandating specific methodologies for the valuation of assets and liabilities and the maintenanc... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-mas-notice-mas-124-insurance-valuation.json #### MAS Technology Risk Management Guidelines for Insurance Licensees (2021) - **ID**: singapore-mas-technology-risk-guidelines-insurance-2021 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: These guidelines by the Monetary Authority of Singapore (MAS) mandate that all licensed insurers establish a robust technology risk management framework, holding the Board and Senior Management accoun... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-mas-technology-risk-guidelines-insurance-2021.json #### Joint Standard 2 of 2020: Governance and Operational Risk Requirements for Insurers - **ID**: south-africa-pa-joint-standard-2-2020-insurance - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This Joint Standard mandates that South African insurers and their controlling companies establish and maintain a comprehensive governance framework and an operational risk management framework. It se... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-pa-joint-standard-2-2020-insurance.json #### FINMA Circular 2023/1 - Corporate Governance for Insurers: Board Responsibilities, Risk Committee and Internal Controls - **ID**: swiss-finma-circular-2023-insurance-corporate-governance - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This circular mandates that Swiss insurance companies establish a robust corporate governance framework, defining the ultimate responsibility of the Board of Directors for the overall business strateg... - **Discovery URL**: https://bidda.com/api/v1/nodes/swiss-finma-circular-2023-insurance-corporate-governance.json #### TCFD Insurance Sector Guidance 2021 - Climate Risk Disclosure: Physical Risk Scenario Analysis, Transition Risk Assessment (Stranded Asset Exposure), Climate Metrics (Weighted Average Carbon Intensity), Governance Structure and Forward-Looking Statement Requirements - **ID**: tcfd-insurance-sector-guidance-2021 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This guidance requires insurance organizations to disclose climate-related financial risks and opportunities in line with the TCFD’s four-pillar framework-governance, strategy, risk management, and me... - **Discovery URL**: https://bidda.com/api/v1/nodes/tcfd-insurance-sector-guidance-2021.json #### UK FCA General Insurance Pricing Practices PS21/5 - Renewal Pricing Rules and Fair Value Assessment - **ID**: uk-fca-general-insurance-pricing-practices-ps21-5-fair-value - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: FCA Policy Statement PS21/5 requires home and motor insurance providers to price renewal quotes at no more than what would be offered to an equivalent new customer, eliminating loyalty pricing penalty... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fca-general-insurance-pricing-practices-ps21-5-fair-value.json #### Insurance Product Governance - General Insurance and Pure Protection: Target Market Identification, Product Approval Process, Stress Scenario Testing of Value, Distribution Strategy, Regular Review and Manufacturer Responsibility in Multi-Party Chains - **ID**: uk-fca-product-governance-insurance-2023 - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: This regulation requires UK insurance manufacturers to establish and maintain a product governance framework ensuring products are designed for a clearly defined target market, approved via a formal p... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fca-product-governance-insurance-2023.json #### UK Insurance Act 2015 - **ID**: uk-insurance-act-2015 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The UK Insurance Act 2015 modernises UK commercial insurance contract law, replacing key provisions of the Marine Insurance Act 1906 in the non-consumer context. The Act introduces the duty of fair pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-insurance-act-2015.json #### UK PRA Rulebook - Insurance General Application and Fundamental Rules for UK Insurers - **ID**: uk-pra-rulebook-insurance-general-application - **Category**: Insurance & Risk - **Version**: 2.0.0 - **BLUF**: The UK Prudential Regulation Authority (PRA) Rulebook, as amended following Brexit via the Solvency UK framework (effective 31 December 2024), sets binding prudential requirements for UK-authorised in... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-pra-rulebook-insurance-general-application.json #### UK PRA Rulebook - Insurance General Application: Solvency II Onshoring, UK-Specific Adjustments to SCR/MCR Calculation, Risk Margin Reform (2024), TMTP Approval, Matching Adjustment Requirements and Internal Model Approval Process - **ID**: uk-pra-rulebook-insurance-general-solvency-ii - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: This regulation establishes the UK Prudential Regulation Authority’s (PRA) onshored Solvency II framework, requiring insurers to calculate Solvency Capital Requirement (SCR) and Minimum Capital Requir... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-pra-rulebook-insurance-general-solvency-ii.json #### UN Principles for Sustainable Insurance 2023 Update - ESG Integration: Climate Change Underwriting Guidelines, Nature-Related Risk Assessment, Social Inclusion in Insurance, PSI Signatory Reporting Framework and TNFD Integration for Insurers - **ID**: un-principles-sustainable-insurance-psi-2023-update - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: The UNEP FI Principles for Sustainable Insurance (PSI) establish a global framework for insurers to identify, assess, manage, and monitor environmental, social, and governance (ESG) risks and opportun... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-principles-sustainable-insurance-psi-2023-update.json #### UNEP FI Principles for Sustainable Insurance (PSI) - A Global Framework for the Insurance Industry to Address Environmental, Social and Governance Risks and Opportunities - **ID**: un-principles-sustainable-insurance-unepfi-2012 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The Principles for Sustainable Insurance (PSI) provide a voluntary global framework for insurers to manage Environmental, Social, and Governance (ESG) issues as risk managers, insurers, and investors.... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-principles-sustainable-insurance-unepfi-2012.json #### Sendai Framework for Disaster Risk Reduction 2015-2030 - **ID**: un-sendai-framework-disaster-risk-insurance-2030 - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: Requires national governments and participating states to promote investment in disaster risk reduction (DRR) through risk insurance and pooling mechanisms, including sovereign parametric insurance, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-sendai-framework-disaster-risk-insurance-2030.json #### Patient Protection and Affordable Care Act; Health Insurance Market Rules; Rate Review (45 CFR Parts 144, 147, 153, 154, 156, and 158) - **ID**: us-aca-insurance-market-reforms-2010 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation requires health insurance issuers in the individual and small group markets to provide guaranteed availability of coverage to all applicants (45 CFR §147.104), use modified community r... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-aca-insurance-market-reforms-2010.json #### United States Patient Protection and Affordable Care Act (ACA / PPACA) (Public Law 111-148, 2010): Title I Quality Affordable Health Care, Health Insurance Market Reforms, Dependent Coverage to Age 26, Prohibition of Preexisting Condition Exclusions, Title II Medicaid Expansion, Title V Workforce, Title VI Transparency, Section 1501 Individual Responsibility, and Section 1513 Employer Shared Responsibility - **ID**: us-aca-ppaca-2010-pl-111-148 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The Patient Protection and Affordable Care Act, Public Law 111-148 of 23 March 2010, commonly known as the Affordable Care Act or PPACA, and as supplemented by the Health Care and Education Reconcilia... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-aca-ppaca-2010-pl-111-148.json #### Dodd-Frank Act Section 502: Federal Insurance Office Authorities and Data Collection Powers - **ID**: us-dodd-frank-federal-insurance-office-section-502 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: Section 502 of the Dodd-Frank Act establishes the Federal Insurance Office (FIO) within the U.S. Department of the Treasury, granting it authority to monitor all aspects of the insurance industry, ide... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dodd-frank-federal-insurance-office-section-502.json #### US Dodd-Frank Title VI - Federal Insurance Office (FIO) Oversight - **ID**: us-dodd-frank-title-vi-insurance-federal-insurance-office - **Category**: Insurance & Risk - **Version**: 2.0.0 - **BLUF**: Title VI of the Dodd-Frank Act (2010) establishes the Federal Insurance Office (FIO) within Treasury to monitor the insurance industry for systemic risk, coordinate US insurance policy internationally... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dodd-frank-title-vi-insurance-federal-insurance-office.json #### US Employee Retirement Income Security Act (ERISA, 29 USC ch 18): Fiduciary Duties, Disclosure and Enforcement - **ID**: us-employee-retirement-income-security-act - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The Employee Retirement Income Security Act of 1974 (ERISA, 29 U.S.C. ch. 18) sets federal minimum standards for most private-sector employee benefit plans, administered by the Employee Benefits Secur... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-employee-retirement-income-security-act.json #### Employee Retirement Income Security Act 1974 - 29 USC 1001 - **ID**: us-erisa-29-usc-1001 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: Section 1001 of title 29 of the United States Code, the congressional findings and declaration of policy of the Employee Retirement Income Security Act of 1974 (ERISA, Public Law 93-406, enacted 2 Sep... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-erisa-29-usc-1001.json #### Federal Crop Insurance Act (7 U.S.C. §§ 1501-1524) - **ID**: us-federal-crop-insurance-act-1938-7-usc-1501 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This Act authorizes the Federal Crop Insurance Corporation (FCIC) to provide federally subsidized crop insurance to agricultural producers through approved private insurance providers (AIPs). It manda... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-crop-insurance-act-1938-7-usc-1501.json #### 45 CFR Part 156 - Health Insurance Issuer Standards under the Affordable Care Act, Including QHP Standards (HHS) - **ID**: us-hhs-45-cfr-156-health-insurance-issuer-qhp-standards - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: HHS 45 CFR Part 156 sets the health insurance issuer standards under the Affordable Care Act, including the qualified health plan certification standards, requiring an issuer to maintain a single risk... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hhs-45-cfr-156-health-insurance-issuer-qhp-standards.json #### NAIC Long-Term Care Insurance Model Regulation 641 - Rate Stability Standards, Contingent Nonforfeiture and Benefit Triggers - **ID**: us-long-term-care-insurance-rate-stability-model-641 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This model regulation establishes standards for long-term care insurance rate stability, requiring insurers to submit an actuarial certification with initial filings and justify any subsequent rate in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-long-term-care-insurance-rate-stability-model-641.json #### US McCarran-Ferguson Act (15 USC ch 20): State Regulation of Insurance and the Antitrust Exemption - **ID**: us-mccarran-ferguson-act - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The McCarran-Ferguson Act (15 U.S.C. ch. 20) establishes that the regulation and taxation of the business of insurance is primarily a matter for the States, and provides a limited federal antitrust ex... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-mccarran-ferguson-act.json #### United States McCarran-Ferguson Act (Title 15 USC Chapter 20): Declaration of Policy, State Regulation and Taxation of Insurance, Sherman Act Applicability to Insurance, Effect on Other Laws, and Definitions - **ID**: us-mccarran-ferguson-act-15-usc-ch20 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The McCarran-Ferguson Act, codified at Title 15 of the United States Code, Chapter 20, is the foundational federal statute establishing state regulation of the business of insurance as the dominant re... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-mccarran-ferguson-act-15-usc-ch20.json #### US McCarran-Ferguson Act 1945 - State Primacy in Insurance Regulation and Antitrust Exemption Framework - **ID**: us-mccarran-ferguson-act-1945-insurance-regulation - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The McCarran-Ferguson Act establishes that the regulation of the business of insurance is primarily the responsibility of individual states, not the federal government. Under 15 U.S.C. § 1012(b), it g... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-mccarran-ferguson-act-1945-insurance-regulation.json #### US Paul Wellstone and Pete Domenici Mental Health Parity and Addiction Equity Act of 2008 - Group Health Plan Parity Requirements - **ID**: us-mhpaea-2008-mental-health-parity-addiction-equity - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The Mental Health Parity and Addiction Equity Act of 2008 prohibits group health plans and group and individual health insurance coverage that offer mental health and substance use disorder benefits f... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-mhpaea-2008-mental-health-parity-addiction-equity.json #### NAIC Credit Insurance Model Act - Consumer Credit Insurance: Eligibility Requirements, Coverage Limits, Premium Rates, Termination Provisions, Claims Procedures, Loss Ratio Standards and Commissioner Review Authority - **ID**: us-naic-credit-insurance-model-act - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This model act establishes uniform standards for credit insurance policies tied to consumer loans, requiring insurers to meet eligibility criteria, adhere to maximum premium rates, maintain minimum lo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naic-credit-insurance-model-act.json #### US NAIC Insurance Holding Company System Regulatory Act - Group Supervision & ORSA - **ID**: us-naic-insurance-holding-company-system-regulatory-act - **Category**: Insurance & Risk - **Version**: 2.0 - **BLUF**: The NAIC Insurance Holding Company System Regulatory Act requires registration, disclosure, and pre-approval of transactions within insurance holding company groups - including ORSA filing for groups ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naic-insurance-holding-company-system-regulatory-act.json #### NAIC Life Insurance Illustrations Model Regulation 582 - **ID**: us-naic-life-insurance-illustrations-model-582 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This model regulation establishes standards for life insurance policy illustrations to protect consumers from misleading projections of policy performance. It requires insurers, per Section 11, to hav... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naic-life-insurance-illustrations-model-582.json #### US NAIC Insurance Data Security Model Law (#668) - Cybersecurity Program and Incident Response Requirements - **ID**: us-naic-model-law-insurance-data-security - **Category**: Insurance & Risk - **Version**: 2.0.0 - **BLUF**: The National Association of Insurance Commissioners (NAIC) Insurance Data Security Model Law (Model #668), enacted in 2017 and adopted by over 25 US states (including South Carolina, Michigan, Ohio, C... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naic-model-law-insurance-data-security.json #### US NAIC Insurance Data Security Model Law 668 - Cybersecurity Program and Breach Notification for Insurers - **ID**: us-naic-model-laws-insurance-data-security-model-law-668 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: NAIC Insurance Data Security Model Law (MDL-668) requires insurance licensees to implement a comprehensive information security program, conduct annual risk assessments, manage third-party service pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naic-model-laws-insurance-data-security-model-law-668.json #### NAIC Unfair Trade Practices Act Model 880 - Prohibited Insurance Conduct: Misrepresentation, False Advertising, Unfair Discrimination, Rebating, Unfair Claims Settlement Practices, Coercion and Intimidation in Insurance Markets - **ID**: us-naic-unfair-trade-practices-model-act - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: This model act prohibits insurers, agents, and brokers from engaging in misrepresentation, false advertising, unfair discrimination, rebating, unfair claims settlement practices, and coercion in insur... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-naic-unfair-trade-practices-model-act.json #### US National Flood Insurance Program (NFIP) Reforms - Risk Rating 2.0: Individual Property Risk Assessment Replacing Zone-Based Rates, Actuarially Sound Pricing, Rate Increase Caps, Community Rating System, Private Flood Insurance Comparison and FEMA Affordability Study - **ID**: us-national-flood-insurance-program-nfip-reforms - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: The National Flood Insurance Program (NFIP), established by the National Flood Insurance Act (NFIA) of 1968, provides flood insurance to property owners, renters, and businesses in participating commu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-flood-insurance-program-nfip-reforms.json #### Biggert-Waters Flood Insurance Reform Act of 2012 (BW-12) - **ID**: us-nfip-biggert-waters-2012-flood-insurance - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The Biggert-Waters Flood Insurance Reform Act of 2012 (BW-12) requires the National Flood Insurance Program (NFIP) to raise insurance rates to reflect true flood risk and phase out most subsidized pre... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nfip-biggert-waters-2012-flood-insurance.json #### Pension Protection Act 2006 - Public Law 109-280 - **ID**: us-pension-protection-act-2006-pl-109-280 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The Pension Protection Act of 2006 (PPA, Public Law 109-280, enacted 17 August 2006) substantially restructured the US private pension and retirement plan framework. Title I (Funding Rules for Single-... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pension-protection-act-2006-pl-109-280.json #### SECURE 2.0 Act 2022 - Public Law 117-328 Retirement Reform Expansion - **ID**: us-secure-2-0-act-2022-pl-117-328 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The SECURE 2.0 Act of 2022 (Division T of the Consolidated Appropriations Act 2023, Public Law 117-328, enacted 29 December 2022) is the most significant US retirement reform since the SECURE Act of 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-secure-2-0-act-2022-pl-117-328.json #### SECURE Act 2019 - Public Law 116-94 Retirement Savings Reform - **ID**: us-secure-act-2019-pl-116-94 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The Setting Every Community Up for Retirement Enhancement Act of 2019 (SECURE Act, Division O of the Further Consolidated Appropriations Act 2020, Public Law 116-94, enacted 20 December 2019) material... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-secure-act-2019-pl-116-94.json #### Nonadmitted and Reinsurance Reform Act of 2010 (NRRA) - Home State Regulation, Surplus Lines Tax Allocation and Uniform Eligibility Standards - **ID**: us-surplus-lines-reform-nonadmitted-reinsurance-act - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: The Nonadmitted and Reinsurance Reform Act of 2010 (NRRA), enacted as part of the Dodd-Frank Act, establishes the insured's "home state" as the sole jurisdiction for regulating and taxing nonadmitted ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-surplus-lines-reform-nonadmitted-reinsurance-act.json #### Terrorism Risk Insurance Program Reauthorization Act of 2019 - Extension of the Terrorism Risk Insurance Program Through December 31, 2027 - **ID**: us-terrorism-risk-insurance-act-tria-2022-extension - **Category**: Insurance & Risk - **Version**: 1.0.1 - **BLUF**: The Terrorism Risk Insurance Act (TRIA), as extended by the Terrorism Risk Insurance Program Reauthorization Act of 2019, mandates that insurers offer terrorism risk coverage in commercial property an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-terrorism-risk-insurance-act-tria-2022-extension.json #### Viatical Settlements Model Act - **ID**: us-viatical-life-settlements-model-naic-697 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This model act establishes a comprehensive regulatory framework for viatical and life settlement transactions, requiring the licensing of providers and brokers (Section 3), mandating specific disclosu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-viatical-life-settlements-model-naic-697.json #### Liability Risk Retention Act of 1986 - Risk Retention Groups and Purchasing Groups: Domicile State Regulation, Multi-State Access Without Additional Licensing, Mandatory Disclosures, Solvency Requirements and NAIC Risk Retention Database - **ID**: usa-risk-retention-group-act-1986 - **Category**: Insurance & Risk - **Version**: 1.0.0 - **BLUF**: This regulation establishes the legal framework for risk retention groups (RRGs) and purchasing groups under 15 U.S. Code Chapter 65, allowing them to operate nationwide without needing to be licensed... - **Discovery URL**: https://bidda.com/api/v1/nodes/usa-risk-retention-group-act-1986.json ### Legal & IP Sovereignty (622 nodes) #### ABA Model Rules (Conduct) - **ID**: aba-model-rules-conduct - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Compliance with fundamental ABA Model Rules of Professional Conduct is operationalized through a stringent set of configurable controls. The duty of competence, as articulated in ABA Model Rule 1.1, C... - **Discovery URL**: https://bidda.com/api/v1/nodes/aba-model-rules-conduct.json #### Engineers Ethics (ACEC) - **ID**: acec-ethics-eng - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The American Council of Engineering Companies (ACEC) Code of Ethics establishes the binding professional obligations for licensed engineers and consulting firms. Engineers must hold paramount the safe... - **Discovery URL**: https://bidda.com/api/v1/nodes/acec-ethics-eng.json #### UAE Federal Decree-Law No. 45 of 2021 on Personal Data Protection (PDPL) - **ID**: ae-pdpl-2021 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UAE PDPL establishes a comprehensive data protection framework governing the processing of personal data for individuals within the UAE, applying to any controller or processor located in the UAE ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ae-pdpl-2021.json #### UAE PDPL Federal Decree-Law 45/2021 - Article 10: Cross-Border Personal Data Transfer Conditions - **ID**: ae-pdpl-2021-article-10-cross-border-data-transfer - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: UAE Federal Decree-Law No. 45/2021 Article 10 prohibits transferring personal data outside the UAE unless one of four conditions is met: the destination country provides an adequate level of protectio... - **Discovery URL**: https://bidda.com/api/v1/nodes/ae-pdpl-2021-article-10-cross-border-data-transfer.json #### UAE PDPL Federal Decree-Law 45/2021 - Article 6: Rights of Data Subjects - **ID**: ae-pdpl-2021-article-6-data-subject-rights - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: UAE Federal Decree-Law No. 45/2021 Article 6 grants data subjects six enforceable rights: right to be informed of processing; right to access their personal data; right to correction of inaccurate dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/ae-pdpl-2021-article-6-data-subject-rights.json #### African Union Convention on Cyber Security and Personal Data Protection (Malabo Convention) - **ID**: africa-union-cdp-convention-2014 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This convention establishes a unified legal framework for African Union member states to regulate electronic transactions, promote cybersecurity, and protect personal data. As per Article 1, its objec... - **Discovery URL**: https://bidda.com/api/v1/nodes/africa-union-cdp-convention-2014.json #### AI-IP: Guidance on Authorship - **ID**: ai-ip-copyright - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The US Copyright Office's AI Policy Statement (February 2023) and subsequent guidance (March 2023) establish that copyright protection requires human authorship - purely AI-generated content without h... - **Discovery URL**: https://bidda.com/api/v1/nodes/ai-ip-copyright.json #### AICPA Code of Ethics - **ID**: aicpa-code-ethics - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The AICPA Code of Professional Conduct (ET §0.300) establishes binding ethical standards for Certified Public Accountants in public practice and business. The Code requires CPAs to maintain independen... - **Discovery URL**: https://bidda.com/api/v1/nodes/aicpa-code-ethics.json #### American Convention on Human Rights 1969 - Pact of San José - **ID**: american-convention-human-rights-1969 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The American Convention on Human Rights (ACHR, Pact of San José, 1969 - 25 State Parties as of April 2026, in force 1978) is the primary human rights treaty in the Inter-American system, establishing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/american-convention-human-rights-1969.json #### APEC Cross-Border Privacy Rules (CBPR) System - Accountability Agent Certification, Nine Information Privacy Principles, Global CBPR Forum and Interoperability with GDPR and Other Frameworks - **ID**: apec-cbpr-cross-border-privacy-rules-system - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The APEC CBPR System is a voluntary, accountability-based framework that facilitates cross-border data transfers for certified organizations operating within participating APEC economies. It requires ... - **Discovery URL**: https://bidda.com/api/v1/nodes/apec-cbpr-cross-border-privacy-rules-system.json #### APEC Cross-Border Privacy Rules (CBPR) System - **ID**: apec-cbpr-system-2011 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The APEC CBPR System is a voluntary, accountability-based framework that facilitates privacy-respecting data transfers among APEC member economies by requiring certified organizations to implement dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/apec-cbpr-system-2011.json #### UNCITRAL Arbitration Rules - **ID**: arbitration-uncitral-rules - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Invocation of the UNCITRAL Arbitration Rules establishes a specific procedural framework for dispute resolution, though several critical parameters remain undefined. The governing instrument currently... - **Discovery URL**: https://bidda.com/api/v1/nodes/arbitration-uncitral-rules.json #### Australian Consumer Law (ACL) - Consumer Guarantees and Unfair Contract Terms - **ID**: au-acl-competition-consumer-act-2010-schedule2-consumer-guarantees - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Schedule 2 of the Competition and Consumer Act 2010 (Cth) establishes non-excludable consumer guarantees for goods and services, prohibits unfair contract terms in standard-form consumer and small-bus... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-acl-competition-consumer-act-2010-schedule2-consumer-guarantees.json #### AU Competition and Consumer Act 2010 - Australian Consumer Law Consumer Guarantees and Misleading Conduct - **ID**: au-competition-consumer-act-2010-acl-consumer-guarantees-misleading-conduct - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Australian Consumer Law (ACL), Schedule 2 of the Competition and Consumer Act 2010 (CCA), provides consumer protection law applying uniformly across Australia. Consumer guarantees under the ACL en... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-competition-consumer-act-2010-acl-consumer-guarantees-misleading-conduct.json #### Copyright Act 1968 - Section 36 Infringement by doing acts comprised in copyright - **ID**: au-copyright-act-1968-section-36-infringement-copyright-original-works - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Organizations must not, without the license of the copyright owner, perform or authorize the performance in Australia of any act exclusively reserved for the copyright owner of a literary, dramatic, m... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-copyright-act-1968-section-36-infringement-copyright-original-works.json #### Corporations Act 2001 - Federal Register of Legislation Version Management - **ID**: au-corporations-act-2001-chapter-2d-directors-duties - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This node outlines the procedural requirements for managing, filtering, and accessing different versions and amendments of the Corporations Act 2001 as presented in the Federal Register of Legislation... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-corporations-act-2001-chapter-2d-directors-duties.json #### Australia Corporations Act 2001 - Directors' Duties (Part 2D.1) - **ID**: au-corporations-act-2001-directors-duties - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: Part 2D.1 of the Corporations Act 2001 (Cth) prescribes the fundamental duties of officers and directors of corporations, applicable to directors, company secretaries, and other officers who participa... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-corporations-act-2001-directors-duties.json #### Corporations Act 2001 - Part 2D.1 Duties and powers of officers of corporations - **ID**: au-corporations-act-2001-part-2d1-officers-duties - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The provided source text is a generic homepage for the Federal Register of Legislation and contains no extractable compliance obligations from the Corporations Act 2001 Part 2D.1. - **Discovery URL**: https://bidda.com/api/v1/nodes/au-corporations-act-2001-part-2d1-officers-duties.json #### Australia Crimes Act 1914 - Federal Criminal Law Code - **ID**: au-crimes-act-1914 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Crimes Act 1914 (Commonwealth, Act No. 12 of 1914, originally enacted 29 October 1914 with extensive amendment since) is the foundational federal criminal statute of Australia, jointly administere... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-crimes-act-1914.json #### Australia Spam Act 2003 - Commercial Electronic Message Consent and Unsubscribe Requirements - **ID**: au-spam-act-2003-commercial-electronic-messages-consent - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Spam Act 2003 (Cth) prohibits sending unsolicited commercial electronic messages (CEMs) to Australian accounts without express or inferred consent, requires accurate sender identification in every... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-spam-act-2003-commercial-electronic-messages-consent.json #### Competition and Consumer Act 2010 - Part IV Cartel Conduct, Section 46 Misuse of Market Power, and Merger Review - **ID**: australia-competition-consumer-act-2010 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Prohibits corporations from engaging in cartel conduct such as price fixing (Part IV, Division 1), misusing substantial market power for anti-competitive purposes (Section 46), or undertaking mergers ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-competition-consumer-act-2010.json #### Notifiable Data Breaches (NDB) Scheme under Part IIIC of the Privacy Act 1988 - **ID**: australia-notifiable-data-breaches-scheme-2018 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Notifiable Data Breaches (NDB) scheme, under Part IIIC of Australia's Privacy Act 1988, requires entities to notify individuals and the Office of the Australian Information Commissioner (OAIC) of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-notifiable-data-breaches-scheme-2018.json #### Bahrain Personal Data Protection Law No. 30 of 2018 - **ID**: bahrain-pdp-law-30-2018 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Bahrain's Personal Data Protection Law (PDPL) establishes a comprehensive data protection framework for organizations processing personal data, mandating adherence to eight core principles outlined in... - **Discovery URL**: https://bidda.com/api/v1/nodes/bahrain-pdp-law-30-2018.json #### Bar Standards Board (UK) - **ID**: bar-standards-board-uk - **Category**: Legal & IP Sovereignty - **Version**: 1.1.1 - **BLUF**: Compliance with Bar Standards Board regulations necessitates strict adherence to a framework governing professional conduct, data security, and financial integrity. Core Duty 6 establishes an uncompro... - **Discovery URL**: https://bidda.com/api/v1/nodes/bar-standards-board-uk.json #### Berne Convention (Copyright) - **ID**: berne-convention-literary-artistic - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The Berne Convention for the Protection of Literary and Artistic Works (1886) is the foundational international treaty for copyright. It provides 'Automatic Protection'-meaning copyright exists as soo... - **Discovery URL**: https://bidda.com/api/v1/nodes/berne-convention-literary-artistic.json #### Bahrain Personal Data Protection Law Decree No.30/2018 - Article 3: Conditions for Lawful Processing - **ID**: bh-pdpl-2018-article-3-processing-conditions - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: Bahrain Personal Data Protection Law (Legislative Decree No. 30 of 2018) Article 3 establishes six lawful conditions for processing personal data: data subject's explicit consent; necessity for perfor... - **Discovery URL**: https://bidda.com/api/v1/nodes/bh-pdpl-2018-article-3-processing-conditions.json #### Bahrain Personal Data Protection Law Decree No.30/2018 - Data Subject Rights: Access, Correction, Erasure and Objection - **ID**: bh-pdpl-2018-data-subject-rights - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: Bahrain Personal Data Protection Law (Legislative Decree No. 30 of 2018) establishes comprehensive data subject rights modelled on GDPR Articles 15-21: right to access personal data held; right to cor... - **Discovery URL**: https://bidda.com/api/v1/nodes/bh-pdpl-2018-data-subject-rights.json #### Lei Nº 13.146, de 6 de Julho de 2015 - Institui a Lei Brasileira de Inclusão da Pessoa com Deficiência (Estatuto da Pessoa com Deficiência) - **ID**: br-lei-inclusao-13146-digital-accessibility-obligations - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Organizations must understand the legal definitions of disability and accessibility, and when conducting a disability evaluation, it must be a biopsychosocial assessment performed by a multidisciplina... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lei-inclusao-13146-digital-accessibility-obligations.json #### Canada Business Corporations Act 1985 (R.S.C. 1985, c. C-44) - Corporate Governance - **ID**: ca-cbca-corporations-act-1985 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Canada Business Corporations Act (CBCA, R.S.C. 1985, c. C-44) governs the formation, governance, and dissolution of federally incorporated companies in Canada, establishing the framework for corpo... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-cbca-corporations-act-1985.json #### Canada Investment Canada Act 1985 - **ID**: ca-investment-canada-act-1985 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Investment Canada Act (R.S.C. 1985, c. 28 (1st Supp.)), last significantly amended by the Budget Implementation Act 2023, requires non-Canadian investors to file a notification or application for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-investment-canada-act-1985.json #### Canada Patent Act 1985 - **ID**: ca-patent-act-1985 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Patent Act (R.S.C. 1985, c. P-4), last substantially amended by the Comprehensive Economic and Trade Agreement Implementation Act 2017 and the Budget Implementation Act 2018, grants inventors a 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-patent-act-1985.json #### CFA Ethics & Proficiency - **ID**: cfa-ethics-standards - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Operational adherence to this node establishes rigorous conformity with foundational principles of the CFA Institute Code of Ethics and Standards of Professional Conduct. The system mandates robust co... - **Discovery URL**: https://bidda.com/api/v1/nodes/cfa-ethics-standards.json #### Federal Act of 25 September 2020 on Data Protection (Data Protection Act, FADP) - **ID**: ch-nfadp-2023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The revised Swiss Federal Act on Data Protection (nFADP) governs the processing of personal data by private entities and federal bodies, strengthening data protection principles and aligning them more... - **Discovery URL**: https://bidda.com/api/v1/nodes/ch-nfadp-2023.json #### Anti-Monopoly Law of the People's Republic of China (2022 Amendment) - **ID**: china-anti-monopoly-law-amended-2022 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This law strengthens China's antitrust regime by significantly increasing penalties for violations, introducing a 'safe harbor' for certain vertical agreements, and explicitly prohibiting undertakings... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-anti-monopoly-law-amended-2022.json #### China CAC Security Assessment for Outbound Data Transfers 2022 - **ID**: china-cac-security-assessment-outbound-2022 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation requires organizations transferring personal information of 100,000 or more individuals, or important data, outside of China to undergo a security assessment and file with the Cyberspa... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-cac-security-assessment-outbound-2022.json #### China CAC Generative AI & Algorithmic Registry - **ID**: cn-cac-genai-measures - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Mandatory security assessment and algorithmic filing requirements for public-facing generative AI services and agents operating within or interacting with mainland China. - **Discovery URL**: https://bidda.com/api/v1/nodes/cn-cac-genai-measures.json #### Statutory Law 1581 of 2012 by which general provisions for the protection of personal data are dictated (Habeas Data) - **ID**: co-habeas-data-2012 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This law establishes the general principles and provisions for the protection of personal data in Colombia, applying to any entity processing personal data within Colombian territory. It mandates that... - **Discovery URL**: https://bidda.com/api/v1/nodes/co-habeas-data-2012.json #### Protocol amending the Convention for the Protection of Individuals with regard to the Processing of Personal Data (Convention 108+) - **ID**: coe-convention-108-plus - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Convention 108+ is a binding international treaty requiring signatory nations to establish a legal framework for protecting personal data processed by both public and private entities. It mandates cor... - **Discovery URL**: https://bidda.com/api/v1/nodes/coe-convention-108-plus.json #### Germany Aktiengesetz Stock Corporation Act - Two-Tier Board Governance and Shareholder Rights - **ID**: de-aktiengesetz-stock-corporation-act - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Aktiengesetz governs the legal form of the German stock corporation by setting out the two-tier board structure with management board running the day to day business and supervisory board appointi... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-aktiengesetz-stock-corporation-act.json #### Germany Federal Data Protection Act 2018 (Bundesdatenschutzgesetz, BDSG) - **ID**: de-bdsg-2018 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Federal Data Protection Act 2018 (Bundesdatenschutzgesetz, BDSG) is Germany's principal data protection statute, entering into force on 25 May 2018 to supplement and implement the EU General Data ... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-bdsg-2018.json #### Delaware Corporate Law - **ID**: delaware-corporate-law-basics - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Delaware General Corporation Law (DGCL) is the leading U.S. corporate law, chosen by over 60% of Fortune 500 companies. It is defined by its enabling nature and the expertise of the Delaware Court of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/delaware-corporate-law-basics.json #### REGULATION (EU) 2022/2065 Article 24: Transparency reporting obligations for providers of intermediary services - **ID**: dsa-regulation-article-24-online-interface-restrictions - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Providers of intermediary services must publish detailed annual transparency reports on their content moderation activities, including data on government orders, user notices, own-initiative actions, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-24-online-interface-restrictions.json #### REGULATION (EU) 2022/2065 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 19 October 2022 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 25 - **ID**: dsa-regulation-article-25-advertising-transparency - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Providers of online platforms must ensure that for each advertisement, recipients can clearly identify it as an ad, who it's on behalf of, who paid for it, and the main parameters used for targeting t... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-25-advertising-transparency.json #### REGULATION (EU) 2022/2065 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 19 October 2022 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 26 - **ID**: dsa-regulation-article-26-recommender-systems-transparency - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Providers of online platforms using recommender systems must transparently disclose the main parameters used for recommendations and provide users with options to modify or influence them. - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-26-recommender-systems-transparency.json #### REGULATION (EU) 2022/2065 on a Single Market For Digital Services and amending Directive 2000/31/EC (Digital Services Act) - Article 27: Online protection of minors - **ID**: dsa-regulation-article-27-targeted-advertising-obligations - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Organizations providing online platforms accessible to minors must implement appropriate measures for their privacy, safety, and security, and are prohibited from presenting advertisements based on pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/dsa-regulation-article-27-targeted-advertising-obligations.json #### DTSA (Trade Secret Protection) - **ID**: dtsa-trade-secret-protection - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The Defend Trade Secrets Act (DTSA) of 2016 is a U.S. federal law extending the Economic Espionage Act of 1996 to provide a private right of action for trade secret misappropriation. It provides a sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/dtsa-trade-secret-protection.json #### European Convention on Human Rights - ECHR 1950 - **ID**: echr-1950-european-convention-human-rights - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The ECHR binds 46 Council of Europe member states to protect 15 fundamental rights enforceable before the ECtHR in Strasbourg; businesses in signatory jurisdictions must align employee monitoring, dat... - **Discovery URL**: https://bidda.com/api/v1/nodes/echr-1950-european-convention-human-rights.json #### Egypt Personal Data Protection Law No. 151 of 2020 - **ID**: eg-pdl-2020 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Egypt's Personal Data Protection Law (PDPL) establishes a comprehensive framework for the processing of personal data of individuals in Egypt, requiring explicit consent for data collection and proces... - **Discovery URL**: https://bidda.com/api/v1/nodes/eg-pdl-2020.json #### Directive 2013/11/EU on alternative dispute resolution for consumer disputes and Regulation (EU) No 524/2013 on online dispute resolution for consumer disputes - **ID**: eu-adr-online-dispute-resolution-2013 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This framework requires EU-based traders in online sales or service contracts to inform consumers about available Alternative Dispute Resolution (ADR) entities and provide an easily accessible electro... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-adr-online-dispute-resolution-2013.json #### EU Antitrust & Competition Law - **ID**: eu-antitrust-competition-law - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: EU Antitrust and Competition Law (based on Articles 101 and 102 of the TFEU) is the primary framework for ensuring fair competition within the EU's internal market. It prohibits cartels, anti-competit... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-antitrust-competition-law.json #### Directive 2014/104/EU of the European Parliament and of the Council of 26 November 2014 on certain rules governing actions for damages under national law for infringements of the competition law provisions of the Member States and of the European Union - **ID**: eu-antitrust-damages-directive-2014-104 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This directive establishes the right for any person or business who has suffered harm from an infringement of EU or national competition law to claim full compensation from the infringing undertaking ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-antitrust-damages-directive-2014-104.json #### Directive (EU) 2024/1260 of the European Parliament and of the Council of 24 April 2024 on asset recovery and confiscation and amending Directive 2014/42/EU - **ID**: eu-asset-recovery-confiscation-directive-2024-1260 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Directive requires EU Member States to establish harmonized rules for tracing, freezing, managing, and confiscating property derived from criminal activities. It mandates the establishment of Ass... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-asset-recovery-confiscation-directive-2024-1260.json #### EU Brussels Ia Regulation 1215/2012 - Jurisdiction and Recognition of Judgments - **ID**: eu-brussels-ia-regulation-1215-2012 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 1215/2012 (Brussels Ia / Brussels Recast) sets unified EU rules for determining which member state's courts have jurisdiction in civil and commercial disputes and provides for automati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-brussels-ia-regulation-1215-2012.json #### Council Directive 72/418/EEC of 6 December 1972 amending the Directives of 14 June 1966 on the marketing of beet seed, of fodder-crop seed, of cereal seed, of seed potatoes, the Directive of 30 June 1969 on the marketing of oleaginous and fibrous plant seed, and the Directives of 29 September 1970 on the marketing of vegetable seed and on the Common Catalogue of Varieties of Agricultural Plant Species - **ID**: eu-celex-31972l0418 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Directive 72/418/EEC, adopted by the Council of the European Communities on 6 December 1972 and published in Official Journal L 287 on 26 December 1972, amends a series of earlier Directives g... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31972l0418.json #### Regulation (EEC) No 2351/72 of the Commission of 8 November 1972 supplementing Regulation (EEC) Nos 100/72 and 1574/72 as regards the denaturing process for sugar - **ID**: eu-celex-31972r2351 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation supplements Regulations (EEC) No 100/72 and 1574/72 to provide a more precise description of the denaturing process for sugar intended for animal feed. It specifies the use of ferric o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31972r2351.json #### 75/4/EEC: Commission Recommendation of 27 November 1974 to the Danish Government concerning draft Orders implementing Council Regulations (EEC) No 2829/72, No 117/66/EEC, (EEC) No 516/72, (EEC) No 517/72 and Commission Regulations (EEC) No 1016/68 and (EEC) No 1172/72 - **ID**: eu-celex-31975h0004 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Recommendation, issued on 27 November 1974 and published in Official Journal L 002 on 4 January 1975, addresses the Danish Government's draft Orders implementing a series of Council an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31975h0004.json #### 76/963/EEC: Commission Decision of 7 December 1976 on the implementation of the reform of agricultural structures in the French Republic pursuant to Title I of Directive 72/161/EEC (Only the French text is authentic) - **ID**: eu-celex-31976d0963 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Decision of 7 December 1976 concerns the implementation of the reform of agricultural structures in the French Republic pursuant to Title I of Council Directive 72/161/EEC of 17 April ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31976d0963.json #### 78/945/EEC: Commission Decision of 31 October 1978 authorizing the Italian Republic not to apply Community treatment to essential oils, not terpeneless, of citrus fruit: orange oil, falling within subheading 33.01 ex A of the Common Customs Tariff (NIMEXE code 33.01-12), originating in Brazil and in free circulation in the other Member States - **ID**: eu-celex-31978d0945 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision 78/945/EEC, adopted on 31 October 1978 and published in Official Journal L 327 on 22 November 1978, authorizes the Italian Republic not to apply Community treatment to essential oi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31978d0945.json #### 79/68/EEC: Commission Decision of 12 December 1978 relating to a proceeding under Article 85 of the EEC Treaty (IV/29.430 - Kawasaki) (Only the English and German texts are authentic) - **ID**: eu-celex-31979d0068 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision 79/68/EEC, adopted on 12 December 1978, concerns a proceeding under Article 85 of the EEC Treaty against Kawasaki Motors (UK) Ltd and Kawasaki Motoren GmbH. The Decision finds that... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31979d0068.json #### 79/638/EEC: Commission Decision of 4 July 1979 refusing to accept the scientific character of the apparatus described as 'PMS data acquisition system, model DAS-32' - **ID**: eu-celex-31979d0638 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Decision of 4 July 1979 (79/638/EEC) concerns the refusal to accept the scientific character of the apparatus described as the 'PMS data acquisition system, model DAS-32.' The Decision... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31979d0638.json #### 80/764/EEC: Commission Decision of 8 July 1980 establishing the schedule of tables and definitions relating to intermediate statistical surveys of are - **ID**: eu-celex-31980d0764 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision 80/764/EEC, adopted on 8 July 1980 by the Commission of the European Communities, establishes the schedule of tables and definitions relating to intermediate statistical surveys of... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31980d0764.json #### 83/610/EEC: Commission Decision of 5 December 1983 relating to a proceeding under Article 85 of the EEC Treaty (IV/30.668 - Murat) (Only the French text is authentic) - **ID**: eu-celex-31983d0610 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision 83/610/EEC was adopted on 5 December 1983 by the Commission of the European Communities following a proceeding under Article 85 of the EEC Treaty. The decision concerns a notificat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31983d0610.json #### Council Regulation (EEC) No 2006/84 of 9 July 1984 providing for direct cooperation between the authorities of the Member States of the European Economic Community responsible for the prevention of fraud and the competent authorities in the Swiss Confederation - **ID**: eu-celex-31984r2006 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Regulation (EEC) No 2006/84, adopted on 9 July 1984 and published in the Official Journal of the European Communities on 14 July 1984, approves an exchange of letters between the European Econ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31984r2006.json #### 85/208/EEC: Commission Decision of 25 March 1985 amending Decision 80/686/EEC setting up an Advisory Committee on the Control and Reduction of Pollution Caused by Hydrocarbons Discharged at Sea - **ID**: eu-celex-31985d0208 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision 85/208/EEC amends Decision 80/686/EEC to extend the terms of reference of the Advisory Committee on the Control and Reduction of Pollution Caused by Hydrocarbons Discharged at ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31985d0208.json #### 85/598/EEC: Commission Decision of 12 December 1985 on the implementation of the reform of agricultural structures in Belgium pursuant to Council Directive 75/268/EEC (Only the French and Dutch texts are authentic) - **ID**: eu-celex-31985d0598 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision 85/598/EEC, adopted on 12 December 1985 by the Commission of the European Communities, concerns the implementation of the reform of agricultural structures in Belgium pursuant to C... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31985d0598.json #### Commission Decision on Anti-Competitive Cartels (MELDOC) - **ID**: eu-celex-31986d0596 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This landmark Commission Decision under Article 85 of the EEC Treaty (now Article 101 TFEU) strictly prohibits cartel arrangements, price-fixing, and the division of markets. Specifically addressing t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31986d0596.json #### Council Regulation (Euratom, ECSC, EEC) No 2151/87 of 20 July 1987 adjusting the weightings applicable to the remuneration and pensions of officials and other servants of the European Communities - **ID**: eu-celex-31987r2151 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Regulation (Euratom, ECSC, EEC) No 2151/87, adopted on 20 July 1987 by the Council of the European Communities, adjusts the weightings applicable to the remuneration and pensions of officials ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31987r2151.json #### 89/208/EEC: Council Decision of 27 February 1989 on the conclusion of the Protocol to the Agreement establishing an association between the European economic community and Malta consequent on the accession of the kingdom of Spain and the Portuguese republic to the community - **ID**: eu-celex-31989d0208 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Council Decision of 27 February 1989 approves, on behalf of the European Economic Community, the Protocol to the Agreement establishing an Association between the European Economic Community and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31989d0208.json #### Special Report No 1/89 on the agrimonetary system accompanied by the replies of the Commission - **ID**: eu-celex-31989y0524-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Special Report No 1/89, issued by the Court of Auditors pursuant to Article 206(a) paragraph 4 of the EEC Treaty, records the results of an examination of the agrimonetary system of the European Commu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31989y0524-01.json #### Commission Regulation (EEC) No 2246/91 of 26 July 1991 opening a standing invitation to tender for the sale of unprocessed dried grapes (sultanas) from the 1989 harvest intended for specific uses - **ID**: eu-celex-31991r2246 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EEC) No 2246/91, adopted on 26 July 1991, opens a standing invitation to tender for the sale of unprocessed dried grapes (sultanas) from the 1989 harvest held by Greek storage a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31991r2246.json #### Council Regulation (ECSC, EEC, Euratom) No 3832/91 of 19 December 1991 amending the Staff Regulations of Officials and the Conditions of Employment of Other Servants of the European Communities with regard to the contribution to the pension scheme - **ID**: eu-celex-31991r3832 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Regulation (ECSC, EEC, Euratom) No 3832/91, adopted on 19 December 1991 by the Council of the European Communities, amends the Staff Regulations of Officials and the Conditions of Employment o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31991r3832.json #### Commission Regulation (EEC) No 1597/92 of 23 June 1992 amending Regulation (EEC) No 1822/77 laying down detailed rules for the collection of the co-responsibility levy introduced in respect of milk and milk products - **ID**: eu-celex-31992r1597 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EEC) No 1597/92, adopted on 23 June 1992, amends Regulation (EEC) No 1822/77 to update the detailed rules for the collection of the co-responsibility levy on milk and milk produ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31992r1597.json #### COMMISSION DECISION of 23.09.1993 declaring a concentration to be compatible with the common market (Case No IV/M.360 - ARVIN / SOGEFI) according to Council Regulation (EEC) No 4064/89 (Only the English text is authentic) - **ID**: eu-celex-31993m0360 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission declared the concentration between Arvin Industries Inc. and Sogefi S.p.A. compatible with the common market under Council Regulation (EEC) No 4064/89. The decision pertains to... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31993m0360.json #### 94/50/ECSC: Commission Decision of 20 December 1993 concerning the conclusion on behalf of the European Coal and Steel Community of the Additional Protocol to the interim Agreement on trade and trade-related matters between the European Economic Community and the European Coal and Steel Community and the Republic of Poland and to the Europe Agreement between the European Communities and their Member States and the Republic of Poland - **ID**: eu-celex-31994d0050 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Decision, adopted on 20 December 1993 and published in Official Journal L 025 on 29 January 1994, concerns the conclusion on behalf of the European Coal and Steel Community (ECSC) of t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31994d0050.json #### 95/115/EC: Council Decision of 30 March 1995 authorizing the Federal Republic of Germany to conclude with the Republic of Poland an agreement containing measures derogating from Articles 2 and 3 of the Sixth Directive 77/388/EEC on the harmonization of the laws of the Member States relating to turnover taxes - **ID**: eu-celex-31995d0115 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Council Decision of 30 March 1995 authorizes the Federal Republic of Germany to conclude with the Republic of Poland an agreement containing measures derogating from Articles 2 and 3 of the Sixth... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31995d0115.json #### 96/4/EC: Commission Decision of 13 December 1995 authorizing a method for grading pig carcases in Austria (Only the German text is authentic) - **ID**: eu-celex-31996d0004 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision authorizes the use of the 'Zwei-Punkte-Meßverfahren (ZP)' method for grading pig carcases in Austria, as the only method compliant with Regulation (EEC) No 3220/84. It applies ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31996d0004.json #### 97/754/ECSC: Commission Decision of 30 April 1997 concerning the application to the steel firm Ferdofin Srl of Italian Law No 95/1979 on receivership arrangements for large firms in crisis (Only the Italian text is authentic) (Text with EEA relevance) - **ID**: eu-celex-31997d0754 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Decision of 30 April 1997, adopted under the Treaty establishing the European Coal and Steel Community (ECSC) and Commission Decision No 2496/96/ECSC, concerns the application of Itali... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31997d0754.json #### COMMISSION DECISION of 13/11/1997 declaring a concentration to be compatible with the common market (Case No IV/M.975 - ALBACOM/BT/ENI/MEDIASET) according to Council Regulation (EEC) No 4064/89 (Only the English text is authentic) - **ID**: eu-celex-31997m0975 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Decision of 13 November 1997 declares a concentration compatible with the common market under Council Regulation (EEC) No 4064/89. The operation concerns the acquisition by ENI of a 35... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31997m0975.json #### Commission Decision No 1401/97/ECSC of 7 July 1997 on administering certain restrictions on imports of certain steel products from Ukraine - **ID**: eu-celex-31997s1401 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision No 1401/97/ECSC, adopted on 7 July 1997 under the Treaty establishing the European Coal and Steel Community, establishes the administrative framework for managing quantitative rest... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31997s1401.json #### Council Resolution of 4 December 1997 concerning the report on the state of women's health in the European Community - **ID**: eu-celex-31997y1230-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Council of the European Union, referring to the Commission report of 19 July 1995 on the state of health in the European Community and the Council's conclusions of 30 November 1995, welcomes the C... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31997y1230-01.json #### Commission Decision 98/693/EC: Spanish Plan Renove Industrial Aid for Commercial Vehicles - **ID**: eu-celex-31998d0693 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision 98/693/EC concerns the Spanish Plan Renove Industrial system of aid for the purchase of commercial vehicles from August 1994 to December 1996. The aid consists of a subsidy of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31998d0693.json #### COMMISSION DECISION of 01/02/1999 declaring a concentration to be compatible with the common market (Case No IV/M.1400 - REXAM/PLM) according to Council Regulation (EEC) No 4064/89 (Only the English text is authentic) - **ID**: eu-celex-31999m1400 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission declared the acquisition of PLM AB by Rexam Plc compatible with the common market under Council Regulation No 4064/89. The operation involves Rexam acquiring sole control over ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31999m1400.json #### COMMISSION DECISION of 05/05/1999 declaring a concentration to be compatible with the common market (Case No IV/M.1479 - THOMSON/BANCO ZARAGOZANO/CAJA MADRID/INDRA) according to Council Regulation (EEC) No 4064/89 (Only the English text is authentic) - **ID**: eu-celex-31999m1479 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 31 March 1999, the Commission received a notification of a proposed concentration pursuant to Article 4 of Council Regulation (EEC) No 4064/89 by which the undertakings Thomson-CSF, Caja de Ahorros... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31999m1479.json #### COMMISSION DECISION of 02/06/1999 declaring a concentration to be compatible with the common market (Case No IV/M.1484 - ALSTOM/ABB) according to Council Regulation (EEC) No 4064/89 (Only the English text is authentic) - **ID**: eu-celex-31999m1484 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 27 April 1999, the Commission received a notification of a proposed concentration pursuant to Article 4 of Council Regulation (EEC) No 4064/89, as amended by Council Regulation (EEC) No 1310/97, by... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31999m1484.json #### COMMISSION DECISION of 30/09/1999 declaring a concentration to be compatible with the common market (Case No IV/M.1649 - GEFCO/KN ELAN) according to Council Regulation (EEC) No 4064/89 (Only the German text is authentic) - **ID**: eu-celex-31999m1649 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 30 August 1999, the Commission received a notification of a proposed concentration pursuant to Article 4 of Council Regulation (EEC) No 4064/89 (Merger Regulation) by which the undertaking Gefco De... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31999m1649.json #### COMMISSION DECISION of 21/08/2000 declaring a concentration to be compatible with the common market (Case No IV/M.1952 - RWE/IBERDROLA/TARRAGONA POWER JV) according to Council Regulation (EEC) No 4064/89 (Only the English text is authentic) - **ID**: eu-celex-32000m1952 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 14 July 2000, the Commission received a notification of a proposed concentration by which RWE AG (Germany) and Iberdrola S.A. (Spain) will establish a full-function joint venture, Tarragona Power S... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32000m1952.json #### COMMISSION DECISION of 29/08/2000 declaring a concentration to be compatible with the common market (Case No IV/M.2095 - SEXTANT/DIEHL) according to Council Regulation (EEC) No 4064/89 (Only the English text is authentic) - **ID**: eu-celex-32000m2095 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 27 July 2000, the Commission received a notification of a proposed concentration pursuant to Article 4 of Council Regulation (EEC) No 4064/89 ('the Merger Regulation') by which the undertakings Tho... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32000m2095.json #### Commission Decision of 30/11/2000 declaring a concentration to be compatible with the common market (Case No IV/M.2105 - 4* SJPC / SCP DE MILO / DE MILO) according to Council Regulation (EEC) No 4064/89 (Only the English text is authentic) - **ID**: eu-celex-32000m2105 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision of 30/11/2000 declares a concentration involving SJPC, SCP De Milo, and de Milo to be compatible with the common market under Council Regulation (EEC) No 4064/89. The concentra... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32000m2105.json #### COMMISSION DECISION of 28/09/2000 declaring a concentration to be compatible with the common market (Case No IV/M.2115 - CARREFOUR/GB) according to Council Regulation (EEC) No 4064/89 (Only the French text is authentic) - **ID**: eu-celex-32000m2115 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This is a Commission Decision dated 28 September 2000 declaring a concentration to be compatible with the common market under Case No IV/M.2115 - CARREFOUR/GB - pursuant to Council Regulation (EEC) No... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32000m2115.json #### Council Resolution on the Rights of Air Passengers - **ID**: eu-celex-32000y1014-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Council Resolution establishes foundational principles for air passenger rights within the European Union, prompting airlines and airports to adopt voluntary commitments to improve service qualit... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32000y1014-01.json #### Council Opinion of 12 February 2001 on the 2000 update of Ireland's stability programme, 2001-2003 - **ID**: eu-celex-32001a0309-07 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Council of the European Union examined the 2000 update of Ireland's stability programme, covering the period 2001-2003. The Council noted Ireland's rapid economic growth, with real GDP growth of 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32001a0309-07.json #### Commission Opinion on Radioactive Waste Disposal from ASTRA Research Reactor - **ID**: eu-celex-32001a1218-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission received general data relating to the plan for the disposal of radioactive waste from the decommissioning and dismantling of the ASTRA research reactor in Austria. The Commissi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32001a1218-01.json #### Decision of the Director of Europol of 3 July 2000 adapting the amounts mentioned in the Europol Staff Regulations to the euro - **ID**: eu-celex-32001d0228-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Director of Europol, acting pursuant to the Council Decision of 2 December 1999 amending the Council Act of 3 December 1998 laying down the Staff Regulations applicable to Europol employees, issue... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32001d0228-01.json #### 2001/287/EC: Commission Decision of 2 April 2001 recognising in principle the completeness of the dossier submitted for detailed examination in view of the possible inclusion of mesosulfuron methyl in Annex I to Council Directive 91/414/EEC concerning the placing of plant-protection products on the market (Text with EEA relevance) (notified under document number C(2001) 1000) - **ID**: eu-celex-32001d0287 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision of 2 April 2001 recognizes in principle the completeness of the dossier submitted by Aventis for the inclusion of mesosulfuron methyl in Annex I to Council Directive 91/414/EEC... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32001d0287.json #### COMMISSION DECISION of 17/04/2001 declaring a concentration to be compatible with the common market (Case No IV/M.2281 - ENDESA/CDF/SNET (see ECSC.1352)) according to Council Regulation (EEC) No 4064/89 (Only the French text is authentic) - **ID**: eu-celex-32001m2281 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision of 17/04/2001 declares a concentration involving ENDESA, CDF, and SNET to be compatible with the common market under Council Regulation (EEC) No 4064/89. This decision applies ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32001m2281.json #### COMMISSION DECISION of 02/08/2001 declaring a concentration to be compatible with the common market (Case No IV/M.2513 - RWE/KÄRNTNER ENERGIE HOLDING) according to Council Regulation (EEC) No 4064/89 (Only the German text is authentic) - **ID**: eu-celex-32001m2513 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Decision, issued on 02/08/2001, declares a concentration to be compatible with the common market under Council Regulation (EEC) No 4064/89. The case in question is Case No IV/M.2513, i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32001m2513.json #### Interinstitutional Agreement of 20 November 2002 between the European Parliament and the Council concerning access by the European Parliament to sensi - **ID**: eu-celex-32002q1130-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Interinstitutional Agreement, concluded on 20 November 2002 between the European Parliament and the Council, governs access by the European Parliament to sensitive information - defined as inform... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32002q1130-01.json #### European Parliament Decision 2003/408/EC on Discharge for 2001 Budget - **ID**: eu-celex-32003b0408 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Parliament Decision 2003/408/EC concerns the discharge of the European Commission in respect of the implementation of the general budget of the European Union for the 2001 financial year.... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32003b0408.json #### 2003/36/ECSC - Commission Decision of 7 May 2002 authorising RAG Aktiengesellschaft to acquire control of Saarbergwerke AG and Preussag Anthrazit GmbH (Case COMP/ECSC.1350 - RAG/Saarbergwerke/Preussag Anthrazit II) (Text with EEA relevance) (notified under document number C(2002) 1436) - **ID**: eu-celex-32003d0036 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision 2003/36/ECSC, adopted on 7 May 2002 and published in Official Journal L 012 on 17 January 2003, authorises RAG Aktiengesellschaft to acquire exclusive control of Saarbergwerke AG (... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32003d0036.json #### 2003/282/EC: Commission Decision of 27 November 2002 on the State aid implemented by Germany for Doppstadt GmbH (notified under document number C(2002) 4482) (Text with EEA relevance) - **ID**: eu-celex-32003d0282 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission's decision addresses the State aid implemented by Germany for Doppstadt GmbH, a company involved in the production of carrier vehicles and environmental-engineering equipment. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32003d0282.json #### 2003/753/EC: Decision No 191 of 18 June 2003 concerning the replacement of forms E 111 and E 111 B by the European health insurance card (Text with relevance for the EEA and for the EU/Switzerland Agreement.) - **ID**: eu-celex-32003d0753 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The decision introduces the European health insurance card to replace forms E 111 and E 111 B for accessing healthcare during temporary stays in Member States other than the competent State or State o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32003d0753.json #### Commission Decision of 10/04/2003 declaring a concentration to be compatible with the common market (Case No COMP/M.3139 - CARLYLE / BREED TECHNOLOGIES) according to Council Regulation (EEC) No 4064/89 (Only the English text is authentic) - **ID**: eu-celex-32003m3139 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision of 10/04/2003 declares the concentration between Carlyle Management Group I, L.P. and Breed Technologies, Inc. to be compatible with the common market. The notification was mad... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32003m3139.json #### Commission Decision of 17/06/2003 declaring a concentration to be compatible with the common market (Case No COMP/M.3158 - DE AGOSTINI INVEST / TORO ASSICURAZIONI) according to Council Regulation (EEC) No 4064/89 (Only the Italian text is authentic) - **ID**: eu-celex-32003m3158 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision of 17/06/2003 declares the concentration between DE AGOSTINI INVEST and TORO ASSICURAZIONI to be compatible with the common market under Council Regulation (EEC) No 4064/89. Th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32003m3158.json #### Commission Decision of 09/09/2003 declaring a concentration to be compatible with the common market (Case No COMP/M.3250 - PERMIRA III / GOLDMAN SACHS GROUP / BLACKSTONE GROUP / DEBENHAMS) according to Council Regulation (EEC) No 4064/89 (Only the English text is authentic) - **ID**: eu-celex-32003m3250 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 7 August 2003, the European Commission received notification of a proposed concentration pursuant to Article 4 of Council Regulation (EEC) No. 4064/89, by which Permira Europe III (UK), GS Capital ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32003m3250.json #### Commission Regulation (EC) No 1413/2003 of 7 August 2003 suspending Regulation (EC) No 935/2003 opening an invitation to tender for the refund on rye exports to certain third countries - **ID**: eu-celex-32003r1413 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EC) No 1413/2003, adopted by the Commission of the European Communities on 7 August 2003, suspends the tendering procedure established under Regulation (EC) No 935/2003, which h... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32003r1413.json #### 2004/60/EC: Commission Decision of 23 December 2003 on the continuation in the year 2004 of Community comparative trials and tests on propagating material of ornamental plants of Chamaecyparis, Ligustrum vulgare, Euphorbia fulgens and bulbs of flowers (Narcissus) under Council Directive 98/56/EC started in 2003 - **ID**: eu-celex-32004d0060 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision 2004/60/EC mandates the continuation in 2004 of Community comparative trials and tests on propagating material of ornamental plants of Chamaecyparis, Ligustrum vulgare, Euphorb... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32004d0060.json #### 2004/114/EC: Commission Decision of 29 October 2003 on measures in favour of non-profit harbours for recreational crafts, the Netherlands (Text with EEA relevance) (notified under document number C(2003) 3890) - **ID**: eu-celex-32004d0114 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision addresses measures in favour of non-profit harbours for recreational crafts in the Netherlands, specifically in Enkhuizen, Nijkerk, and Wieringermeer. The decision examines whe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32004d0114.json #### Council Decision 2004/811/CFSP of 5 July 2004 concerning the conclusion of the Agreement between the European Union and the Kingdom of Norway on the participation of the Kingdom of Norway in the European Union Police Mission (EUPOL ‘Proxima’) in the former Yugoslav Republic of Macedonia - **ID**: eu-celex-32004d0811 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision 2004/811/CFSP of 5 July 2004 approves the Agreement between the European Union and the Kingdom of Norway on the participation of the Kingdom of Norway in the European Union Police Mis... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32004d0811.json #### Commission Decision of 25/06/2004 declaring a concentration to be compatible with the common market (Case No COMP/M.3429 - NOKIA / METSO / AVANTONE (4064)) according to Council Regulation (EEC) No 4064/89 (Only the English text is authentic) - **ID**: eu-celex-32004m3429 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 25 June 2004, the European Commission decided not to oppose the notified concentration involving NOKIA / METSO / AVANTONE and declared it compatible with the common market. This decision is based o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32004m3429.json #### Commission Decision of 18/08/2004 declaring a concentration to be compatible with the common market (Case No COMP/M.3525 - ALPINVEST / 3i / CID/JV) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32004m3525 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 18 August 2004, the European Commission decided not to oppose a notified concentration involving ALPINVEST/3i/CID/JV and declared it compatible with the common market. This decision is based on Art... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32004m3525.json #### 2005/960/EC,Euratom: Commission Decision of 15 November 2005 amending its Rules of Procedure - **ID**: eu-celex-32005d0960 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision of 15 November 2005 (2005/960/EC, Euratom) amends the Rules of Procedure of the European Commission, replacing Articles 1 to 28 with the text set out in the Annex to this Decis... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32005d0960.json #### Council Common Position 2005/304/CFSP of 12 April 2005 concerning conflict prevention, management and resolution in Africa and repealing Common Position 2004/85/CFSP - **ID**: eu-celex-32005e0304 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The EU Common Position 2005/304/CFSP outlines the European Union's strategy for conflict prevention, management, and resolution in Africa. It emphasizes African ownership of these processes, coordinat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32005e0304.json #### Commission Directive 2005/62/EC of 30 September 2005 implementing Directive 2002/98/EC of the European Parliament and of the Council as regards Community standards and specifications relating to a quality system for blood establishments (Text with EEA relevance) - **ID**: eu-celex-32005l0062 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: COMMISSION DIRECTIVE 2005/62/EC implements Directive 2002/98/EC by establishing Community standards and specifications for a quality system in blood establishments. It applies to all blood establishme... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32005l0062.json #### Commission Decision of 15/06/2005 declaring a concentration to be compatible with the common market (Case No COMP/M.3797 - CGE/AMGA/SMAT/SAP) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32005m3797 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision of 15/06/2005 declares a concentration involving Compagnie Générale des Eaux (CGE), Azienda Mediterranea Gas e Acqua S.p.A (AMGA), Societa’ Metropolitana Acque Torino S.p.A. (S... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32005m3797.json #### Commission Decision on Concentration Compatibility - **ID**: eu-celex-32005m4006 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission received a notification of a proposed concentration by Credit Agricole SA and Banca Intesa SpA to acquire joint control of Nextra Investment Management SpA. The Commission concluded tha... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32005m4006.json #### 2006/314/EC: Commission Decision of 16 March 2006 approving the Member States’ survey programmes for avian influenza in poultry and wild birds during 2006 (notified under document number C(2006) 780) - **ID**: eu-celex-32006d0314 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision 2006/314/EC, adopted on 16 March 2006 and published in the Official Journal of the European Union on 29 April 2006 (L 116/61), approves the Member States' survey programmes for avi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32006d0314.json #### Commission Decision 2006/335/EC: Authorisation for Poland to Prohibit Genetically Modified Maize - **ID**: eu-celex-32006d0335 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission has authorised the Republic of Poland to prohibit the use of 16 genetically modified varieties of maize with the genetic modification MON 810, listed in the Common catalogue of... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32006d0335.json #### 2006/747/EC: Commission Decision of 26 April 2006 on State Aid which France is planning to implement for Euromoteurs (C 1/2005 (ex N 426/2004)) (notified under document number C(2006) 1540) (Text with EEA relevance) - **ID**: eu-celex-32006d0747 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Decision (2006/747/EC), adopted on 26 April 2006 and published in the Official Journal of the European Union (L 307/213), declares incompatible with the common market the state aid whi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32006d0747.json #### Commission Decision of 18/08/2006 declaring a concentration to be compatible with the common market (Case No COMP/M.4283 - FOGECA / MAPFRE / JV) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32006m4283 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission decided not to oppose the notified concentration between Korsnäs and Assidomän Cartonboard, declaring it compatible with the common market. This decision is based on Article 6(... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32006m4283.json #### Commission Regulation (EC) No 76/2006 of 17 January 2006 amending for the 61st time Council Regulation (EC) No 881/2002 imposing certain specific restrictive measures directed against certain persons and entities associated with Usama bin Laden, the Al-Qaida network and the Taliban, and repealing Council Regulation (EC) No 467/2001 - **ID**: eu-celex-32006r0076 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EC) No 76/2006, adopted on 17 January 2006 and published in the Official Journal of the European Union (L 12/7) on 18 January 2006, constitutes the 61st amendment to Council Reg... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32006r0076.json #### Council Regulation (EC) No 2027/2006 of 19 December 2006 on the conclusion of the Fisheries partnership agreement between the European Community and the Republic of Cape Verde - **ID**: eu-celex-32006r2027 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Council Regulation (EC) No 2027/2006 approves the Fisheries Partnership Agreement between the European Community and the Republic of Cape Verde. This agreement provides Community fishermen with fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32006r2027.json #### Council opinion of 27 February 2007 on the updated stability programme of Finland, 2006-2010 - **ID**: eu-celex-32007a0328-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 27 February 2007, the Council of the European Union examined the updated stability programme of Finland, covering the period 2006 to 2010, pursuant to Council Regulation (EC) No 1466/97 on the stre... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32007a0328-01.json #### 2007/332/EC: Commission Decision of 23 April 2007 on public service obligations on certain routes to and from Sardinia under Article 4 of Council Regulation (EEC) No 2408/92 on access for Community air carriers to intra-Community air routes (notified under document number C(2007) 1712) - **ID**: eu-celex-32007d0332 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision addresses public service obligations (PSOs) imposed by the Italian Republic on 16 routes connecting Sardinia with mainland Italy. These PSOs ensure adequate provision of schedu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32007d0332.json #### 2007/839/EC: Council Decision of 29 November 2007 concerning the conclusion of the Agreement between the European Community and Ukraine on readmission of persons - **ID**: eu-celex-32007d0839 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Agreement between the European Community and Ukraine on the readmission of persons establishes procedures for the identification and safe return of individuals who do not meet the conditions for e... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32007d0839.json #### Commission Decision of 26/06/2007 declaring a concentration to be compatible with the common market (Case No COMP/M.4704 - BRIDGEPOINT / GAMBRO HEALTHCARE) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32007m4704 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 26 June 2007, the Commission decided not to oppose the above notified concentration and to declare it compatible with the common market. This decision concerns Case COMP/M.4704 - Bridgepoint/Gambro... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32007m4704.json #### Commission Decision of 18/10/2007 declaring a concentration to be compatible with the common market (Case No COMP/M.4916 - GE MONEY / BPH) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32007m4916 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 17 October 2007, the Commission decided not to oppose the above notified concentration and to declare it compatible with the common market. This decision concerns Case COMP/M.4879, involving Jabil ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32007m4916.json #### 2008/170/EC: Commission Decision of 27 February 2008 on the adoption of the work plan for 2008 for the implementation of the second programme of Community action in the field of health (2008-2013), and on the selection, award and other criteria for financial contributions to the actions of this programme (Text with EEA relevance) - **ID**: eu-celex-32008d0170 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision 2008/170/EC, adopted on 27 February 2008, establishes the Annual Work Plan for 2008 for the implementation of the second programme of Community action in the field of health (2008-... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32008d0170.json #### 2008/189/EC: Council Decision of 18 February 2008 on the conclusion of the Agreement between the European Community and the Government of Georgia on certain aspects of air services - **ID**: eu-celex-32008d0189 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Council of the European Union, by Decision 2008/189/EC of 18 February 2008, approved the Agreement between the European Community and the Government of Georgia on certain aspects of air services. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32008d0189.json #### Council Decision on the conclusion of the Agreement between the European Community and the Republic of Panama on certain aspects of air services - **ID**: eu-celex-32008d0305 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Council Decision of 18 February 2008 concludes the Agreement between the European Community and the Republic of Panama on certain aspects of air services. The Agreement aims to establish a sound l... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32008d0305.json #### Commission Regulation (EC) No 782/2008 of 5 August 2008 approving non-minor amendments to the specification for a name entered in the register of protected designations of origin and protected geographical indications (Laguiole (PDO)) - **ID**: eu-celex-32008r0782 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EC) No 782/2008, adopted on 5 August 2008 by the Commission of the European Communities, approves non-minor amendments to the product specification for the protected designation... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32008r0782.json #### 2009/367/EC: Commission Decision of 29 April 2009 on the clearance of the accounts of the paying agencies of Member States concerning expenditure financed by the European Agricultural Guarantee Fund (EAGF) for the 2008 financial year (notified under document number C(2009) 3217) - **ID**: eu-celex-32009d0367 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision of 29 April 2009 addresses the clearance of accounts for Member States' paying agencies concerning expenditure financed by the European Agricultural Guarantee Fund (EAGF) for t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32009d0367.json #### Commission Directive 2009/8/EC of 10 February 2009 amending Annex I to Directive 2002/32/EC of the European Parliament and of the Council as regards maximum levels of unavoidable carry-over of coccidiostats or histomonostats in non-target feed (Text with EEA relevance) - **ID**: eu-celex-32009l0008 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The directive establishes maximum levels for unavoidable carry-over of coccidiostats and histomonostats in non-target feed to ensure animal and public health protection. It applies to feed business op... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32009l0008.json #### Directive 2009/45/EC of the European Parliament and of the Council of 6 May 2009 on safety rules and standards for passenger ships (Recast) (Text with EEA relevance) - **ID**: eu-celex-32009l0045 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive 2009/45/EC establishes a uniform level of safety of life and property on new and existing passenger ships and high-speed passenger craft when engaged on domestic voyages within the European ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32009l0045.json #### Commission Regulation (EC) No 573/2009 of 29 June 2009 initiating a new exporter review of Council Regulation (EC) No 1338/2006 imposing a definitive anti-dumping duty on imports of chamois leather originating in the People’s Republic of China, repealing the duty with regard to imports from one exporting producer in this country and making these imports subject to registration - **ID**: eu-celex-32009r0573 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EC) No 573/2009, adopted on 29 June 2009, initiates a 'new exporter' review pursuant to Article 11(4) of Council Regulation (EC) No 384/96 (the basic Regulation) concerning the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32009r0573.json #### Commission Regulation (EC) No 1176/2009 of 30 November 2009 entering a name in the register of protected designations of origin and protected geographical indications (Redykołka (PDO)) - **ID**: eu-celex-32009r1176 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: COMMISSION REGULATION (EC) No 1176/2009 enters the name 'Redykołka' into the register of protected designations of origin and protected geographical indications (PDO). This regulation applies to agric... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32009r1176.json #### 2010/107/CFSP: Council Decision 2010/107/CFSP of 22 February 2010 extending the mandate of the European Union Special Representative for the Middle East peace process - **ID**: eu-celex-32010d0107 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision 2010/107/CFSP, adopted on 22 February 2010 and published in the Official Journal of the European Union (L 46/8), extends the mandate of Mr Marc OTTE as the European Union Special Repr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32010d0107.json #### 2010/352/: Commission Decision of 22 June 2010 on a Union financial contribution towards Member States’ fisheries control, inspection and surveillance programmes for 2010 (notified under document C(2010) 3940) - **ID**: eu-celex-32010d0352 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Decision provides for a Union financial contribution for 2010 towards expenditure incurred by Member States for 2010 in implementing the monitoring and control systems applicable to the common fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32010d0352.json #### 2010/357/: Commission Decision of 2 December 2009 on the State aid C 39/08 (ex N 148/08) planned by Romania for training by Ford Craiova (notified under document C(2009) 9350) (Text with EEA relevance) - **ID**: eu-celex-32010d0357 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission approved a EUR 57 million State aid from Romania to Ford Romania SA for a comprehensive 5-year training programme. The aid supports training for both existing and future employ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32010d0357.json #### Commission Decision of 17/02/2010 declaring a concentration to be compatible with the common market (Case No COMP/M.5780 - ALLIANZ / ING / ALLEE CENTER) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32010m5780 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 17 February 2010, the European Commission decided not to oppose the notified concentration involving Allianz, ING, and Allee Center, declaring it compatible with the common market. This decision is... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32010m5780.json #### Commission Decision of 26/03/2010 declaring a concentration to be compatible with the common market (Case No COMP/M.5794 - RAMSAY HEALTH CARE / PREDICA / GROUPE PROCLIF) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32010m5794 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 25 March 2010, the Commission decided not to oppose the above notified concentration and to declare it compatible with the common market. This decision concerns Case COMP/M.5817 - Triton Fund III/A... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32010m5794.json #### Commission Decision of 09/08/2010 declaring a concentration to be compatible with the common market (Case No COMP/M.5826 - ANGLO IRISH BANK / RBS / ARNOTTS) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32010m5826 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission has declared a concentration involving Anglo Irish Bank, RBS, and Arnotts Holdings Limited to be compatible with the common market under Council Regulation (EC) No 139/2004. Th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32010m5826.json #### Commission Decision of 30/09/2010 declaring a concentration to be compatible with the common market (Case No COMP/M.5958 - GS / TPG / ONTEX) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32010m5958 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 26 August 2010, the European Commission received a notification of a proposed concentration pursuant to Article 4 of Council Regulation (EC) No 139/2004, by which Goldman Sachs Group, Inc. and TPG ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32010m5958.json #### Commission Regulation (EU) No 260/2010 of 25 March 2010 entering a name in the register of protected designations of origin and protected geographical indications (Chirimoya de la Costa tropical de Granada-Málaga (PDO)) - **ID**: eu-celex-32010r0260 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission has adopted Regulation (EU) No 260/2010 to enter the name 'Chirimoya de la Costa tropical de Granada-Málaga' into the register of protected designations of origin and protected... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32010r0260.json #### Commission Regulation (EU) No 372/2010 of 30 April 2010 amending for the 126th time Council Regulation (EC) No 881/2002 imposing certain specific restrictive measures directed against certain persons and entities associated with Usama bin Laden, the Al-Qaida network and the Taliban - **ID**: eu-celex-32010r0372 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EU) No 372/2010, adopted on 30 April 2010, amends for the 126th time Council Regulation (EC) No 881/2002, which imposes certain specific restrictive measures directed against ce... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32010r0372.json #### Commission Regulation (EU) No 791/2010 of 6 September 2010 amending Regulation (EC) No 474/2006 establishing the Community list of air carriers which are subject to an operating ban within the Community Text with EEA relevance - **ID**: eu-celex-32010r0791 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EU) No 791/2010 amends Regulation (EC) No 474/2006, establishing the Community list of air carriers subject to an operating ban within the European Union. This regulation applie... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32010r0791.json #### 2011/286/EU: Decision of the European Parliament and of the Council of 2 May 2011 on mobilisation of the European Union Solidarity Fund, in accordance with point 26 of the Interinstitutional Agreement of 17 May 2006 between the European Parliament, the Council and the Commission on budgetary discipline and sound financial management - **ID**: eu-celex-32011d0286 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Union has created a European Union Solidarity Fund (the 'Fund') to show solidarity with the population of regions struck by disasters. This Decision, adopted by the European Parliament an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32011d0286.json #### 2011/464/EU: Council Decision of 18 July 2011 on the signing, on behalf of the Union, of the Agreement between the European Union and New Zealand amending the Agreement on mutual recognition in relation to conformity assessment between the European Community and New Zealand - **ID**: eu-celex-32011d0464 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision 2011/464/EU, adopted on 18 July 2011 and published in the Official Journal of the European Union (L 195/1) on 27 July 2011, authorises the signing, on behalf of the European Union, of... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32011d0464.json #### Council Implementing Decision of 11 October 2011 amending Implementing Decision 2011/344/EU on granting Union financial assistance to Portugal - **ID**: eu-celex-32011d0683 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Council of the European Union has amended Implementing Decision 2011/344/EU to extend maturities and reduce the interest rate margin for financial assistance granted to Portugal. The Union shall m... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32011d0683.json #### Commission Implementing Decision of 1 July 2011 concerning the financing for the year 2011 of activities in the veterinary field related to the European Union's information policy, support of international organisations, disease notification and computerisation of veterinary procedures - **ID**: eu-celex-32011d0702-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Implementing Decision, adopted on 1 July 2011 and published in the Official Journal of the European Union (C 193/3), establishes the annual work programme and financing decision for Eu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32011d0702-01.json #### Council Decision 2011/857/CFSP of 19 December 2011 amending and extending Joint Action 2005/889/CFSP on establishing a European Union Border Assistance Mission for the Rafah Crossing Point (EU BAM Rafah) - **ID**: eu-celex-32011d0857 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision 2011/857/CFSP, adopted on 19 December 2011 and published in the Official Journal of the European Union (L 338/52) on 21 December 2011, amends and extends Joint Action 2005/889/CFSP on... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32011d0857.json #### Commission Implementing Directive 2011/46/EU of 14 April 2011 amending Council Directive 91/414/EEC to include hexythiazox as active substance and amending Commission Decision 2008/934/EC Text with EEA relevance - **ID**: eu-celex-32011l0046 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Directive 2011/46/EU, adopted on 14 April 2011 and published in the Official Journal of the European Union (L 101/20) on 15 April 2011, amends Council Directive 91/414/EEC to i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32011l0046.json #### Commission Decision of 23/11/2011 declaring a concentration to be compatible with the common market (Case No COMP/M.6357 - KONINKLIJKE PHILIPS / INDAL GROUP) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32011m6357 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 17 October 2011, the European Commission received notification of a proposed concentration pursuant to Article 4 of the Merger Regulation by which Koninklijke Philips Electronics N.V. (Philips, the... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32011m6357.json #### Commission Implementing Regulation (EU) No 382/2011 of 18 April 2011 entering a name in the register of traditional specialities guaranteed ( ‘Kiełbasa myśliwska’ (TSG)) - **ID**: eu-celex-32011r0382 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) No 382/2011, adopted on 18 April 2011 and published in the Official Journal of the European Union (L 103/6), enters the name 'Kiełbasa myśliwska' into the regis... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32011r0382.json #### Council Implementing Regulation (EU) No 824/2011 of 12 August 2011 terminating the partial reopening of the anti-dumping interim review investigation concerning imports of polyethylene terephthalate (PET) film originating in India - **ID**: eu-celex-32011r0824 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The regulation terminates the partial reopening of the anti-dumping interim review investigation concerning imports of polyethylene terephthalate (PET) film originating in India, specifically manufact... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32011r0824.json #### Council Regulation (EU) No 1295/2011 of 13 December 2011 amending Regulation (EU) No 1284/2009 imposing certain specific restrictive measures in respect of the Republic of Guinea - **ID**: eu-celex-32011r1295 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Regulation (EU) No 1295/2011 amends Regulation (EU) No 1284/2009 to impose specific restrictive measures in respect of the Republic of Guinea. These measures are in response to the violent cra... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32011r1295.json #### Council Decision 2012/174/CFSP of 23 March 2012 amending Joint Action 2008/851/CFSP on a European Union military operation to contribute to the deterrence, prevention and repression of acts of piracy and armed robbery off the Somali coast - **ID**: eu-celex-32012d0174 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision 2012/174/CFSP, adopted on 23 March 2012 and published in the Official Journal of the European Union (L 89/69, 27.3.2012), amends Joint Action 2008/851/CFSP governing the EU military o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32012d0174.json #### 2012/257/EU: Commission Decision of 11 May 2012 concerning the non-inclusion of naled for product type 18 in Annex I, IA or IB to Directive 98/8/EC of the European Parliament and of the Council concerning the placing of biocidal products on the market (notified under document C(2012) 3050) Text with EEA relevance - **ID**: eu-celex-32012d0257 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission has decided not to include naled for product type 18 in Annex I, IA or IB to Directive 98/8/EC, which concerns the placing of biocidal products on the market. This decision app... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32012d0257.json #### 2012/535/EU: Commission Implementing Decision of 26 September 2012 on emergency measures to prevent the spread within the Union of Bursaphelenchus xylophilus (Steiner et Buhrer) Nickle et al. (the pine wood nematode) (notified under document C(2012) 6543) - **ID**: eu-celex-32012d0535 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Decision 2012/535/EU, adopted on 26 September 2012 and published in the Official Journal of the European Union on 2 October 2012, establishes emergency measures to prevent the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32012d0535.json #### Commission Implementing Regulation (EU) No 34/2012 of 17 January 2012 amending for the 163rd time Council Regulation (EC) No 881/2002 imposing certain specific restrictive measures directed against certain persons and entities associated with the Al-Qaida network - **ID**: eu-celex-32012r0034 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation amends Annex I to Council Regulation (EC) No 881/2002, updating the list of persons, groups, and entities associated with the Al-Qaida network subject to the freezing of funds and econ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32012r0034.json #### Commission Regulation (EU) No 555/2012 of 22 June 2012 amending Regulation (EC) No 184/2005 of the European Parliament and of the Council on Community statistics concerning balance of payments, international trade in services and foreign direct investment, as regards the update of data requirements and definitions - **ID**: eu-celex-32012r0555 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: COMMISSION REGULATION (EU) No 555/2012 amends Regulation (EC) No 184/2005 concerning Community statistics on balance of payments, international trade in services, and foreign direct investment. The re... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32012r0555.json #### Commission Regulation (EU) No 556/2012 of 26 June 2012 amending Annex III to Regulation (EC) No 396/2005 of the European Parliament and of the Council as regards maximum residue levels for spinosad in or on raspberries Text with EEA relevance - **ID**: eu-celex-32012r0556 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The regulation amends Annex III to Regulation (EC) No 396/2005 to set temporary maximum residue levels (MRLs) for spinosad in or on raspberries. This amendment was necessitated by an unexpected outbre... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32012r0556.json #### Regulation (EU) No 651/2012 of the European Parliament and of the Council of 4 July 2012 on the issuance of euro coins - **ID**: eu-celex-32012r0651 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 651/2012 establishes binding rules for the issuance of euro coins by Member States whose currency is the euro, addressing the lack of mandatory provisions that previously resulted i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32012r0651.json #### Commission Implementing Regulation (EU) No 841/2012 of 18 September 2012 concerning the authorisation of Lactobacillus plantarum (NCIMB 41028) and Lactobacillus plantarum (NCIMB 30148) as feed additives for all animal species Text with EEA relevance - **ID**: eu-celex-32012r0841 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) No 841/2012, adopted on 18 September 2012 and entering into force on 19 November 2012, authorises the micro-organisms Lactobacillus plantarum (NCIMB 41028) and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32012r0841.json #### 2013/402/EU: Commission Decision of 16 April 2013 on the measure SA.20112 (C 35/2006) implemented by Sweden for Konsum Jämtland Ekonomisk Förening (notified under document C(2013) 1913) Text with EEA relevance - **ID**: eu-celex-32013d0402 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission assessed whether the sale of a plot of land by the Municipality of Åre to Konsum Jämtland Ekonomisk Förening constituted illegal state aid under Article 107(1) of the Treaty on... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32013d0402.json #### 2013/478/EU: Commission Decision of 27 September 2013 amending Decision 1999/352/EC, ECSC, Euratom establishing the European Anti-fraud Office - **ID**: eu-celex-32013d0478 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Decision amends the 1999/352/EC, ECSC, Euratom Decision to update the European Anti-fraud Office's (OLAF) mandate and operational framework. It emphasizes the protection of the Union’s ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32013d0478.json #### Commission Decision of 19/06/2013 declaring a concentration to be compatible with the common market (Case No COMP/M.6921 - IBM ITALIA / UBIS) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32013m6921 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 14 May 2013, the European Commission received notification of a proposed concentration pursuant to Article 4 of Council Regulation (EC) No 139/2004 by which the undertaking IBM Italia S.p.A., a who... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32013m6921.json #### Commission Regulation (EU) No 107/2013 of 5 February 2013 amending Annex I to Directive 2002/32/EC of the European Parliament and of the Council as regards maximum levels for melamine in canned pet food Text with EEA relevance - **ID**: eu-celex-32013r0107 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EU) No 107/2013, adopted on 5 February 2013 and published in the Official Journal of the European Union (L 35/1) on 6 February 2013, amends Annex I to Directive 2002/32/EC on un... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32013r0107.json #### Commission Implementing Regulation (EU) No 269/2013 of 18 March 2013 approving non-minor amendments to the specification for a name entered in the register of protected designations of origin and protected geographical indications (Danablu (PGI)) - **ID**: eu-celex-32013r0269 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) No 269/2013, adopted on 18 March 2013 and published in the Official Journal of the European Union on 22 March 2013 (L 82/45), approves non-minor amendments to t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32013r0269.json #### Commission Implementing Regulation (EU) No 323/2013 of 9 April 2013 adding to the 2013 fishing quotas certain quantities withheld in the year 2012 pursuant to Article 4(2) of Council Regulation (EC) No 847/96 - **ID**: eu-celex-32013r0323 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation adds certain quantities of fishing quotas withheld in 2012 to the 2013 fishing quotas, as per Article 4(2) of Council Regulation (EC) No 847/96. Member States may request the Commissio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32013r0323.json #### Commission Implementing Regulation (EU) No 1185/2013 of 21 November 2013 entering a name in the register of protected designations of origin and protected geographical indications (Pâté de Campagne Breton (PGI)) - **ID**: eu-celex-32013r1185 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) No 1185/2013, adopted on 21 November 2013, enters the name 'Pâté de Campagne Breton' into the EU register of protected designations of origin and protected geog... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32013r1185.json #### Commission Implementing Regulation (EU) No 1186/2013 of 21 November 2013 entering a name in the register of protected designations of origin and protected geographical indications (Orkney Scottish Island Cheddar (PGI)) - **ID**: eu-celex-32013r1186 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) No 1186/2013, adopted on 21 November 2013 and published in the Official Journal of the European Union (L 313/40), enters the name 'Orkney Scottish Island Chedda... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32013r1186.json #### Council Implementing Decision 2014/142/CFSP of 14 March 2014 implementing Decision 2011/486/CFSP concerning restrictive measures directed against certain individuals, groups, undertakings and entities in view of the situation in Afghanistan - **ID**: eu-celex-32014d0142 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Implementing Decision 2014/142/CFSP, adopted on 14 March 2014 and published in the Official Journal of the European Union (L 76/46), implements Decision 2011/486/CFSP concerning restrictive me... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014d0142.json #### 2014/517/EU: Council Decision of 14 April 2014 on the signing, on behalf of the European Union and its Member States, and provisional application of the Protocol to the Stabilisation and Association Agreement between the European Communities and their Member States, of the one part, and the Republic of Serbia, of the other part, to take account of the accession of the Republic of Croatia to the European Union - **ID**: eu-celex-32014d0517 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Council Decision (2014/517/EU), adopted at Luxembourg on 14 April 2014, authorises the signing on behalf of the European Union and its Member States of the Protocol to the Stabilisation and Assoc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014d0517.json #### 2014/842/EU, Euratom: Commission Implementing Decision of 26 November 2014 amending Decision 2005/818/EC, Euratom authorising the Republic of Hungary to use certain approximate estimates for the calculation of the VAT own resources base (notified under document C(2014) 8923) - **ID**: eu-celex-32014d0842 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission has authorized Hungary to use a fixed percentage of 0.18% of the intermediate base for calculating the VAT own resources base for transactions related to passenger transport, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014d0842.json #### 2014/117/EU: Commission Recommendation of 3 March 2014 on the establishment and implementation of the Production and Marketing Plans pursuant to Regulation (EU) No 1379/2013 of the European Parliament and of the Council on the common organisation of the markets in fishery and aquaculture products - **ID**: eu-celex-32014h0117 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Recommendation provides detailed guidance on the structure, format, and implementation of production and marketing plans for fishery and aquaculture producer organisations under Regulat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014h0117.json #### Commission Implementing Regulation (EU) No 154/2014 of 19 February 2014 amending Implementing Regulation (EU) No 540/2011 as regards the conditions of approval of the active substance extract from tea tree Text with EEA relevance - **ID**: eu-celex-32014r0154 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The regulation amends the conditions of approval for the active substance extract from tea tree under Regulation (EC) No 1107/2009. It requires Member States to amend or withdraw existing authorisatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014r0154.json #### Council Regulation (EU) No 827/2014 of 23 July 2014 amending Regulation (EC) No 974/98 as regards the introduction of the euro in Lithuania - **ID**: eu-celex-32014r0827 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Regulation (EU) No 827/2014, adopted by the Council of the European Union on 23 July 2014, amends Regulation (EC) No 974/98 to extend to Lithuania the existing provisions on the introduction o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014r0827.json #### Corrigendum to Commission Delegated Regulation (EU) No 906/2014 of 11 March 2014 supplementing Regulation (EU) No 1306/2013 of the European Parliament and of the Council with regard to public intervention expenditure ( OJ L 255, 28.8.2014) - **ID**: eu-celex-32014r0906r-02 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The corrigendum to Commission Delegated Regulation (EU) No 906/2014 addresses specific textual errors in Annex I, part I, points 2 and 3. It replaces references to 'point (a)' with 'point 1' and 'poin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014r0906r-02.json #### Commission Implementing Regulation (EU) No 921/2014 of 25 August 2014 amending Implementing Regulation (EU) No 540/2011 as regards the conditions of approval of the active substance tebuconazole Text with EEA relevance - **ID**: eu-celex-32014r0921 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) No 921/2014, adopted on 25 August 2014 and published in the Official Journal of the European Union on 26 August 2014, amends Implementing Regulation (EU) No 540... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014r0921.json #### Commission Implementing Regulation (EU) No 1049/2014 of 30 July 2014 on technical characteristics of information and publicity measures pursuant to Regulation (EU) No 514/2014 of the European Parliament and of the Council laying down general provisions on the Asylum, Migration and Integration Fund and on the instrument for financial support for police cooperation, prevention and combating crime and crisis management - **ID**: eu-celex-32014r1049 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) No 1049/2014, adopted on 30 July 2014 and published in the Official Journal of the European Union on 7 October 2014, establishes the technical characteristics t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014r1049.json #### Council Decision (CFSP) 2015/2096 of 16 November 2015 on the position of the European Union relating to the Eighth Review Conference of the Convention on the Prohibition of the Development, Production and Stockpiling of Bacteriological (Biological) and Toxin Weapons and on Their Destruction (BTWC) - **ID**: eu-celex-32015d2096 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (CFSP) 2015/2096, adopted by the Council of the European Union on 16 November 2015 and published in the Official Journal of the European Union on 20 November 2015, establishes the off... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32015d2096.json #### Commission Implementing Decision (EU) 2015/2251 of 26 November 2015 confirming or amending the average specific emission of CO2 and specific emissions targets for manufacturers of passenger cars for the calendar year 2014 pursuant to Regulation (EC) No 443/2009 of the European Parliament and of the Council (notified under document C(2015) 8348) - **ID**: eu-celex-32015d2251 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Decision (EU) 2015/2251, adopted on 26 November 2015 and published in the Official Journal of the European Union (L 318/53), confirms or amends the average specific emissions o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32015d2251.json #### Commission Implementing Regulation (EU) 2015/722 of 5 May 2015 concerning the authorisation of taurine as a feed additive for Canidae, Felidae, Mustelidae and carnivorous fish (Text with EEA relevance) - **ID**: eu-celex-32015r0722 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The regulation authorizes taurine as a feed additive for Canidae, Felidae, Mustelidae, and carnivorous fish, classifying it under 'nutritional additives'. It specifies conditions for use, including ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32015r0722.json #### Commission Regulation (EU) 2015/1378 of 11 August 2015 amending Annex II to Regulation (EC) No 1333/2008 of the European Parliament and of the Council as regards the use of riboflavins (E 101) and carotenes (E 160a) in dried potato granules and flakes (Text with EEA relevance) - **ID**: eu-celex-32015r1378 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The regulation amends Annex II to Regulation (EC) No 1333/2008 to authorize the use of riboflavins (E 101) and carotenes (E 160a) in dried potato granules and flakes. These additives are deemed safe a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32015r1378.json #### Commission Implementing Regulation (EU) 2015/2082 of 18 November 2015 concerning the non-approval of Arctium lappa L. (aerial parts) as a basic substance in accordance with Regulation (EC) No 1107/2009 of the European Parliament and of the Council concerning the placing of plant protection products on the market (Text with EEA relevance) - **ID**: eu-celex-32015r2082 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2015/2082, adopted at Brussels on 18 November 2015 and published in the Official Journal of the European Union on 19 November 2015, establishes the non-approval... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32015r2082.json #### Commission Implementing Decision (EU) 2016/107 of 27 January 2016 not approving cybutryne as an existing active substance for use in biocidal products for product-type 21 (Text with EEA relevance) - **ID**: eu-celex-32016d0107 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission has decided not to approve cybutryne as an active substance for use in biocidal products for product-type 21, which includes antifouling products. This decision is based on the... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32016d0107.json #### Commission Implementing Decision (EU) 2016/109 of 27 January 2016 not to approve PHMB (1600; 1.8) as an existing active substance for use in biocidal products for product-types 1, 6 and 9 (Text with EEA relevance) - **ID**: eu-celex-32016d0109 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Decision (EU) 2016/109, adopted at Brussels on 27 January 2016 by the European Commission under authority of Regulation (EU) No 528/2012 concerning the making available on the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32016d0109.json #### Commission Implementing Decision (EU) 2016/170 of 5 February 2016 authorising methods for grading pig carcasses in Finland (notified under document C(2016) 658) - **ID**: eu-celex-32016d0170 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Decision (EU) 2016/170, adopted on 5 February 2016 and published in the Official Journal of the European Union (L 32/163) on 9 February 2016, authorises specific methods for gr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32016d0170.json #### Decision on mobilisation of European Globalisation Adjustment Fund for Greece application EGF/2015/011 GR/Supermarket Larissa - **ID**: eu-celex-32016d0990 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Decision (EU) 2016/990 of the European Parliament and of the Council, adopted on 8 June 2016, mobilises the European Globalisation Adjustment Fund (EGF) to provide a financial contribution of EUR 6,46... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32016d0990.json #### Commission Implementing Decision (EU) 2016/1925 of 31 October 2016 repealing Implementing Decision (EU) 2016/17 authorising the United Kingdom to prohibit on its territory the marketing of a variety of hemp listed in the Common Catalogue of varieties of agricultural plant species, pursuant to Council Directive 2002/53/EC (notified under document C(2016) 6860) - **ID**: eu-celex-32016d1925 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Decision (EU) 2016/1925, adopted at Brussels on 31 October 2016 by the European Commission, repeals Implementing Decision (EU) 2016/17, which had previously authorised the Unit... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32016d1925.json #### Commission Decision of 17/11/2016 declaring a concentration to be compatible with the common market (Case No COMP/M.8217 - CPPIB / HAMMERSON / GRAND CENTRAL) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32016m8217 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 21 October 2016, the European Commission received notification of a proposed concentration pursuant to Article 4 of the Merger Regulation by which the Canada Pension Plan Investment Board ('CPPIB',... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32016m8217.json #### Commission Decision of 30/11/2016 declaring a concentration to be compatible with the common market (Case No COMP/M.8218 - EGERIA INDUSTRIALS / CLONDALKIN) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32016m8218 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission has approved the acquisition of Clondalkin Group Holdings B.V. by Egeria Industrials AG under the simplified procedure of the Merger Regulation. The decision confirms the opera... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32016m8218.json #### Commission Implementing Regulation (EU) 2016/930 of 1 June 2016 entering a name in the register of protected designations of origin and protected geographical indications (Fogaça da Feira (PGI)) - **ID**: eu-celex-32016r0930 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2016/930, adopted on 1 June 2016 and published in the Official Journal of the European Union on 14 June 2016, formally enters the name 'Fogaça da Feira' into th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32016r0930.json #### Commission Delegated Regulation (EU) 2016/1611 of 7 July 2016 on reviewing the scale for missions by officials and other servants of the European Union in the Member States - **ID**: eu-celex-32016r1611 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Delegated Regulation (EU) 2016/1611, adopted on 7 July 2016, reviews the scale for missions by officials and other servants of the European Union in the Member States. It replaces the s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32016r1611.json #### Decision (EU) 2017/1372 of the European Parliament and of the Council of 14 July 2017 on the mobilisation of the European Globalisation Adjustment Fund following an application from Spain - EGF/2017/001 ES/Castilla y León mining - **ID**: eu-celex-32017d1372 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Decision (EU) 2017/1372, adopted by the European Parliament and the Council on 14 July 2017 and published in the Official Journal of the European Union (L 193/2) on 25 July 2017, mobilises the Europea... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32017d1372.json #### Council Decision (EU) 2017/1967 of 23 October 2017 on the position to be adopted, on behalf of the European Union, within the EEA Joint Committee concerning an amendment to Protocol 31 to the EEA Agreement, on cooperation in specific fields outside the four freedoms (The Union's preparatory action on defence research) - **ID**: eu-celex-32017d1967 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (EU) 2017/1967, adopted on 23 October 2017 and published in the Official Journal of the European Union on 28 October 2017, establishes the position of the European Union within the EE... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32017d1967.json #### Council Decision (CFSP) 2017/2283 of 11 December 2017 in support of a global reporting mechanism on illicit small arms and light weapons and other illicit conventional weapons and ammunition to reduce the risk of their illicit trade (‘iTrace III’) - **ID**: eu-celex-32017d2283 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The iTrace III project aims to combat the destabilizing impact of the diversion and trafficking of small arms and light weapons (SALW) and other conventional weapons. It focuses on providing policy-ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32017d2283.json #### Commission Decision of 15/12/2017 declaring a concentration to be compatible with the common market (Case No COMP/M.8705 - BC PARTNERS / CERAMTEC) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32017m8705 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 17 November 2017, the European Commission received notification of a proposed concentration pursuant to Article 4 of the Merger Regulation by which BC Partners Holdings Limited (United Kingdom) acq... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32017m8705.json #### European Central Bank Decision on Delegation of Power to Adopt Own Funds Decisions - **ID**: eu-celex-32018d0010-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Central Bank has made a decision regarding the delegation of power to adopt own funds decisions. This decision, dated 15 March 2018, is identified as Decision (EU) 2018/546 and is also kn... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018d0010-01.json #### Decision (EU) 2018/1675 of the European Parliament and of the Council of 2 October 2018 on the mobilisation of the European Globalisation Adjustment Fund following an application from the Netherlands - EGF/2018/001 NL/Financial service activities - **ID**: eu-celex-32018d1675 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Decision (EU) 2018/1675, adopted by the European Parliament and the Council on 2 October 2018 and published in the Official Journal of the European Union on 12 November 2018, authorises the mobilisati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018d1675.json #### Commission Implementing Decision (EU) 2018/1985 of 13 December 2018 not approving Willaertia magna c2c maky as an active substance for use in biocidal products of product-type 11 (Text with EEA relevance.) - **ID**: eu-celex-32018d1985 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Decision (EU) 2018/1985, adopted on 13 December 2018 and published in the Official Journal of the European Union on 14 December 2018, formally declines to approve the microorga... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018d1985.json #### Commission Decision on Concentration Compatibility with the Common Market - **ID**: eu-celex-32018m8597 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission received notification of a proposed concentration by APG Asset Management N.V. and Ardian S.A.S. to acquire joint control of a portfolio of ten undertakings. The Commission con... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018m8597.json #### Commission Decision of 06/04/2018 declaring a concentration to be compatible with the common market (Case No COMP/M.8848 - CATHAY CAPITAL PRIVATE EQUITY / EQUISTONE PARTNERS EUROPE / E WINKEMANN) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32018m8848 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 12 March 2018, the European Commission received notification of a proposed concentration pursuant to Article 4 of the Merger Regulation by which Cathay Capital Private Equity SAS (CCPE) (France) an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018m8848.json #### Commission Decision of 04/07/2018 declaring a concentration to be compatible with the common market (Case No COMP/M.8866 - MEC / MITSUI / SDPSK / JV) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32018m8866 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission received notification of a proposed concentration involving Mitsubishi Estate Co. Ltd. (MEC), Mitsui & Co., Ltd. (Mitsui), and Sime Darby Property (Sungai Kapar) Sdn Bhd (SDPSK... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018m8866.json #### Commission Decision of 11/09/2018 declaring a concentration to be compatible with the common market (Case No COMP/M.9074 - TOTAL S.A. / PONT SUR SAMBRE AND TOUL POWER) according to Council Regulation (EC) No 139/2004 (Only the English text is authentic) - **ID**: eu-celex-32018m9074 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 20 August 2018, the European Commission received notification of a proposed concentration pursuant to Article 4 of the Merger Regulation by which Total S.A. ('Total', France) acquires, within the m... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018m9074.json #### Corrigendum to Council Implementing Regulation (EU) 2018/12 of 8 January 2018 implementing Regulation (EU) 2017/1509 concerning restrictive measures against the Democratic People's Republic of Korea (OJ L 4, 9.1.2018) - **ID**: eu-celex-32018r0012r-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This corrigendum, published in the Official Journal of the European Union on 9 February 2018 (L 36/38), corrects an error in Council Implementing Regulation (EU) 2018/12 of 8 January 2018, which imple... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018r0012r-01.json #### Commission Regulation (EU) 2018/455 of 16 March 2018 laying down additional responsibilities and tasks for the European Union reference laboratory for fish and crustacean diseases and amending Annex VII to Regulation (EC) No 882/2004 of the European Parliament and of the Council (Text with EEA relevance.) - **ID**: eu-celex-32018r0455 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EU) 2018/455, adopted on 16 March 2018 and entering into force on 1 July 2018, designates Danmarks Tekniske Universitet, Veterinærinstituttet Afdeling for Diagnostik og Beredska... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018r0455.json #### Commission Implementing Regulation (EU) 2018/507 of 26 March 2018 amending Annex I to Council Regulation (EEC) No 2658/87 on the tariff and statistical nomenclature and on the Common Customs Tariff - **ID**: eu-celex-32018r0507 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2018/507, adopted on 26 March 2018 and published in the Official Journal of the European Union on 27 March 2018, amends Annex I to Council Regulation (EEC) No 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018r0507.json #### Commission Implementing Regulation (EU) 2018/1559 of 17 October 2018 concerning the authorisation of cumin tincture (Cuminum cyminum L.) as a feed additive for all animal species (Text with EEA relevance.) - **ID**: eu-celex-32018r1559 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2018/1559, adopted on 17 October 2018 and published in the Official Journal of the European Union on 18 October 2018, authorises cumin tincture (Cuminum cyminum... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018r1559.json #### Commission Implementing Regulation (EU) 2018/1709 of 13 November 2018 specifying the technical characteristics of the 2020 ad hoc module on accidents at work and other work-related health problems as regards the labour force sample survey pursuant to Council Regulation (EC) No 577/98 (Text with EEA relevance.) - **ID**: eu-celex-32018r1709 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation specifies the technical characteristics of the 2020 ad hoc module on accidents at work and other work-related health problems as part of the labour force sample survey. It applies to M... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018r1709.json #### Commission Implementing Regulation (EU) 2018/1785 of 15 November 2018 concerning the classification of certain goods in the Combined Nomenclature - **ID**: eu-celex-32018r1785 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The regulation concerns the classification of certain goods in the Combined Nomenclature, specifically insulated cables used in telecommunication networks. It applies to goods described in the Annex, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018r1785.json #### Commission Regulation (EU) 2018/1847 of 26 November 2018 amending Annex V to Regulation (EC) No 1223/2009 of the European Parliament and of the Council on cosmetic products (Text with EEA relevance.) - **ID**: eu-celex-32018r1847 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EU) 2018/1847, adopted on 26 November 2018 and published in the Official Journal of the European Union on 27 November 2018, amends Annex V to Regulation (EC) No 1223/2009 on cos... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018r1847.json #### Council Regulation (EU) 2018/2004 of 17 December 2018 amending Regulation (EU) 2016/44 concerning restrictive measures in view of the situation in Libya - **ID**: eu-celex-32018r2004 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation amends Regulation (EU) 2016/44 to implement updated restrictive measures against Libya as per UN Security Council Resolution 2441 (2018). It targets natural or legal persons designated... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018r2004.json #### Commission Implementing Decision (EU) 2019/874 of 22 May 2019 on the clearance of the accounts of the paying agencies of Member States concerning expenditure financed by the European Agricultural Guarantee Fund (EAGF) for financial year 2018 (notified under document C(2019) 3820) - **ID**: eu-celex-32019d0874 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Decision (EU) 2019/874, adopted on 22 May 2019 and published in the Official Journal of the European Union (L 140/115), clears the accounts of the paying agencies of EU Member ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32019d0874.json #### Council Decision (EU) 2019/1578 of 20 September 2019 on the position to be adopted on behalf of the European Union within the Committee on Trade and Sustainable Development established by the Free Trade Agreement between the European Union and its Member States, of the one part, and the Republic of Korea, of the other part, as regards the Panel of Experts referred to in Article 13.15 of the Agreement - **ID**: eu-celex-32019d1578 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Council Decision (EU) 2019/1578 establishes the position to be adopted on behalf of the European Union within the EU-Korea Committee on Trade and Sustainable Development regarding the list of expe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32019d1578.json #### Council Decision (EU) 2019/2172 of 5 December 2019 establishing that no effective action has been taken by Hungary in response to the Council Recommendation of 14 June 2019 - **ID**: eu-celex-32019d2172 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (EU) 2019/2172, adopted on 5 December 2019 and published in the Official Journal of the European Union (L 329/91) on 19 December 2019, formally establishes that Hungary has not taken ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32019d2172.json #### Commission Implementing Regulation (EU) 2019/149 of 30 January 2019 amending Implementing Regulations (EU) 2015/1108 and (EU) No 540/2011 as regards the conditions of use of vinegar as a basic substance (Text with EEA relevance.) - **ID**: eu-celex-32019r0149 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2019/149, adopted on 30 January 2019 and published in the Official Journal of the European Union on 31 January 2019, amends Implementing Regulations (EU) 2015/1... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32019r0149.json #### Regulation (EU) 2019/473 of the European Parliament and of the Council of 19 March 2019 on the European Fisheries Control Agency (codification) - **ID**: eu-celex-32019r0473 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2019/473 establishes the European Fisheries Control Agency ('the Agency'), the objective of which is to organise the operational coordination of fisheries control and inspection activi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32019r0473.json #### Regulation (EU) 2019/816 of the European Parliament and of the Council of 17 April 2019 establishing a centralised system for the identification of Member States holding conviction information on third-country nationals and stateless persons (ECRIS-TCN) to supplement the European Criminal Records Information System and amending Regulation (EU) 2018/1726 - **ID**: eu-celex-32019r0816 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2019/816 establishes ECRIS-TCN, a centralised system at the Union level for identifying which Member States hold criminal records information on third-country nationals and stateless p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32019r0816.json #### Regulation (EU) 2019/1243 of the European Parliament and of the Council of 20 June 2019 adapting a number of legal acts providing for the use of the regulatory procedure with scrutiny to Articles 290 and 291 of the Treaty on the Functioning of the European Union (Text with EEA relevance) - **ID**: eu-celex-32019r1243 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation adapts a number of legal acts providing for the use of the regulatory procedure with scrutiny to Articles 290 and 291 of the Treaty on the Functioning of the European Union. It applies... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32019r1243.json #### Corrigendum to Commission Regulation (EU) 2019/2117 of 29 November 2019 amending Council Regulation (EC) No 338/97 on the protection of species of wild fauna and flora by regulating trade therein (Official Journal of the European Union L 320 of 11 December 2019) - **ID**: eu-celex-32019r2117r-02 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The corrigendum amends Commission Regulation (EU) 2019/2117, which regulates international trade in fibre from vicuñas and their derivative products. It applies to any person or entity processing vicu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32019r2117r-02.json #### Commission Implementing Regulation (EU) 2019/2171 of 17 December 2019 initiating an investigation concerning possible circumvention of anti-dumping measures imposed by Implementing Regulation (EU) 2019/1267 on imports of tungsten electrodes originating in the People’s Republic of China by imports of tungsten electrodes consigned from India, Laos and Thailand, whether declared as originating in India, Laos and Thailand or not, and making such imports subject to registration - **ID**: eu-celex-32019r2171 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission, acting on its own initiative pursuant to Articles 13(3) and 14(5) of Regulation (EU) 2016/1036 (the basic Regulation), has initiated an investigation into the possible circumv... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32019r2171.json #### Council Decision (EU) 2020/457 of 27 March 2020 on the position to be taken on behalf of the European Union in the International Grains Council concerning the accession of the Republic of Serbia to the Grains Trade Convention, 1995 - **ID**: eu-celex-32020d0457 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (EU) 2020/457, adopted on 27 March 2020 and published in the Official Journal of the European Union (L 97/12) on 30 March 2020, establishes the position to be taken on the Union's beh... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32020d0457.json #### Decision (EU) 2020/1268 of the European Parliament and of the Council of 15 July 2020 on the mobilisation of the Contingency Margin in 2020 to provide continued humanitarian support to refugees in Turkey - **ID**: eu-celex-32020d1268 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Decision (EU) 2020/1268, adopted by the European Parliament and the Council on 15 July 2020 and published in the Official Journal of the European Union on 11 September 2020, mobilises the Contingency ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32020d1268.json #### European Council Decision 2020/2049: Appointment of ECB Executive Board Member - **ID**: eu-celex-32020d2049 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Council Decision 2020/2049 appoints Mr Frank ELDERSON as a member of the Executive Board of the European Central Bank for a term of eight years, starting from 15 December 2020. The decisi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32020d2049.json #### Council Decision (EU) 2020/2060 of 7 December 2020 on the position to be taken on behalf of the European Union within the Trade Committee established under the Interim Partnership Agreement between the European Community, of the one part, and the Pacific States, of the other part, as regards the amendment to that Agreement to take account of the accession of the Independent State of Samoa and of Solomon Islands - **ID**: eu-celex-32020d2060 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (EU) 2020/2060, adopted at Brussels on 7 December 2020 and published in the Official Journal of the European Union (L 424/23) on 15 December 2020, establishes the position to be taken... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32020d2060.json #### Corrigendum to Council Implementing Regulation (EU) 2020/116 of 27 January 2020 implementing Article 12(1) of Regulation (EU) 2017/1770 concerning restrictive measures in view of the situation in Mali (Official Journal of the European Union L 22 of 28 January 2020) - **ID**: eu-celex-32020r0116r-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This corrigendum, published in the Official Journal of the European Union on 20 February 2020 (LI 47/8), corrects a typographical error in Council Implementing Regulation (EU) 2020/116 of 27 January 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32020r0116r-01.json #### Commission Delegated Regulation (EU) 2020/686 of 17 December 2019 supplementing Regulation (EU) 2016/429 of the European Parliament and of the Council as regards the approval of germinal product establishments and the traceability and animal health requirements for movements within the Union of germinal products of certain kept terrestrial animals (Text with EEA relevance) (Text with EEA relevance) - **ID**: eu-celex-32020r0686 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation supplements Regulation (EU) 2016/429 as regards the approval of germinal product establishments and the traceability and animal health requirements for movements within the Union of ge... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32020r0686.json #### Commission Implementing Regulation (EU) 2020/1318 of 22 September 2020 amending Implementing Regulations (EU) 2020/21 and (EU) No 2020/194 as regards the dates of application in response to the COVID‐19 pandemic - **ID**: eu-celex-32020r1318 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2020/1318 amends Implementing Regulations (EU) 2020/21 and (EU) No 2020/194 to postpone the dates of application in response to the COVID-19 pandemic. The regul... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32020r1318.json #### Commission Implementing Regulation (EU) 2020/2235 of 16 December 2020 laying down rules for the application of Regulations (EU) 2016/429 and (EU) 2017/625 of the European Parliament and of the Council as regards model animal health certificates, model official certificates and model animal health/official certificates, for the entry into the Union and movements within the Union of consignments of certain categories of animals and goods, official certification regarding such certificates and repealing Regulation (EC) No 599/2004, Implementing Regulations (EU) No 636/2014 and (EU) 2019/628, Directive 98/68/EC and Decisions 2000/572/EC, 2003/779/EC and 2007/240/EC (Text with EEA relevance) - **ID**: eu-celex-32020r2235 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation lays down rules regarding animal health certificates, official certificates, and animal health/official certificates required for the entry into the Union, movements within the Union, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32020r2235.json #### Commission Decision of 15 December 2020 instructing the central administrator to enter changes into the international credit entitlement tables in the European Union Transaction Log 2021/C 115/01 - **ID**: eu-celex-32021d0331-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Decision, adopted on 15 December 2020 and published in the Official Journal of the European Union (C 115/1) on 31 March 2021, instructs the central administrator of the Union Registry ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32021d0331-01.json #### Council Decision (CFSP) 2021/353 of 25 February 2021 amending Decision 2012/642/CFSP concerning restrictive measures against Belarus - **ID**: eu-celex-32021d0353 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: COUNCIL DECISION (CFSP) 2021/353 amends Decision 2012/642/CFSP concerning restrictive measures against Belarus. The decision extends the restrictive measures until 28 February 2022 and amends the titl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32021d0353.json #### Council Decision of 6 September 2021 adopting the Council’s position on the draft general budget of the European Union for the financial year 2022 2021/C 360 I/01 - **ID**: eu-celex-32021d0908-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: On 6 September 2021, the Council of the European Union adopted its position on the draft general budget of the European Union for the financial year 2022, as submitted by the Commission on 9 July 2021... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32021d0908-01.json #### Council Decision (EU) 2021/925 of 7 June 2021 on the position to be taken on behalf of the European Union in the World Forum for Harmonisation of Vehicle Regulations of the United Nations Economic Commission for Europe as regards the proposals for modifications to UN Regulations Nos 13, 13-H, 24, 30, 41, 49, 79, 83, 95, 101, 124, 129, 134, 137 and 157, and the proposals for modifications to Global Technical Regulations Nos 4 and 9 - **ID**: eu-celex-32021d0925 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (EU) 2021/925, adopted at Luxembourg on 7 June 2021, establishes the position to be taken on behalf of the European Union in the 184th session of the UNECE World Forum for Harmonisati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32021d0925.json #### Commission Delegated Regulation (EU) 2021/115 of 27 November 2020 amending Annex I to Regulation (EU) 2019/1021 of the European Parliament and of the Council as regards perfluorooctanoic acid (PFOA), its salts and PFOA-related compounds (Text with EEA relevance) - **ID**: eu-celex-32021r0115 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation (EU) 2021/115, adopted on 27 November 2020 and published in the Official Journal of the European Union on 2 February 2021 (L 36/7), amends Annex I to Regulation (EU) 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32021r0115.json #### Commission Implementing Regulation (EU) 2021/125 of 28 January 2021 entering a name in the register of protected designations of origin and protected geographical indications (‘Huile de noix du Périgord’ (PDO)) - **ID**: eu-celex-32021r0125 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2021/125, adopted at Brussels on 28 January 2021, enters the name 'Huile de noix du Périgord' into the register of protected designations of origin and protecte... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32021r0125.json #### Regulation (EU) 2021/522 of the European Parliament and of the Council of 24 March 2021 establishing a Programme for the Union’s action in the field of health (‘EU4Health Programme’) for the period 2021-2027, and repealing Regulation (EU) No 282/2014 (Text with EEA relevance) - **ID**: eu-celex-32021r0522 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The EU4Health Programme, established by Regulation (EU) 2021/522, aims to improve public health across the European Union for the period 2021-2027. It focuses on enhancing health systems' resilience, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32021r0522.json #### Commission Implementing Regulation (EU) 2021/1379 of 19 August 2021 concerning the non-renewal of approval of the active substance famoxadone, in accordance with Regulation (EC) No 1107/2009 of the European Parliament and of the Council concerning the placing of plant protection products on the market, and amending Commission Implementing Regulation (EU) No 540/2011 (Text with EEA relevance) - **ID**: eu-celex-32021r1379 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission has decided not to renew the approval of the active substance famoxadone under Regulation (EC) No 1107/2009 concerning the placing of plant protection products on the market. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32021r1379.json #### Commission Regulation (EU) 2021/1917 of 3 November 2021 amending Annex I to Regulation (EC) No 1334/2008 of the European Parliament and of the Council as regards the inclusion of 2-(4-methylphenoxy)-N-(1H-pyrazol-3-yl)-N-(thiophen-2-ylmethyl)acetamide in the Union list of flavourings (Text with EEA relevance) - **ID**: eu-celex-32021r1917 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EU) 2021/1917, adopted on 3 November 2021 and published in the Official Journal of the European Union (L 389/15) on 4 November 2021, amends Annex I to Regulation (EC) No 1334/20... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32021r1917.json #### Commission Delegated Regulation (EU) 2021/2103 of 19 August 2021 laying down detailed rules on the operation of the web portal, pursuant to Article 49(6) of Regulation (EU) 2019/818 of the European Parliament and of the Council - **ID**: eu-celex-32021r2103 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation lays down detailed rules on the operation of a web portal established by Regulation (EU) 2019/818. The web portal facilitates the exercise of rights to information, access, rectificati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32021r2103.json #### Council Decision (EU) 2022/2003 of 13 October 2022 on the position to be adopted on behalf of the European Union in the International Grains Council with respect to amending the Rules of Procedure under the Grains Trade Convention, 1995, as regards the external auditor’s contract period - **ID**: eu-celex-32022d2003 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (EU) 2022/2003, adopted on 13 October 2022 and published in the Official Journal of the European Union (L 274/67) on 24 October 2022, establishes the position to be adopted on behalf ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32022d2003.json #### Commission Implementing Regulation (EU) 2022/270 of 23 February 2022 correcting Implementing Regulation (EU) 2021/1410 concerning the authorisation of a preparation of Bacillus licheniformis DSM 28710 as a feed additive for laying hens, minor poultry species for laying, poultry species for breeding and ornamental birds (holder of authorisation Huvepharma NV) (Text with EEA relevance) - **ID**: eu-celex-32022r0270 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2022/270, adopted on 23 February 2022 and published in the Official Journal of the European Union (L 43/7), corrects a prior authorisation instrument - Implemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32022r0270.json #### Council Regulation (EU) 2022/877 of 3 June 2022 amending Regulation (EC) No 765/2006 concerning restrictive measures in view of the situation in Belarus and the involvement of Belarus in the Russian aggression against Ukraine - **ID**: eu-celex-32022r0877 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: COUNCIL REGULATION (EU) 2022/877 amends Regulation (EC) No 765/2006 concerning restrictive measures in view of the situation in Belarus and the involvement of Belarus in the Russian aggression against... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32022r0877.json #### Commission Implementing Regulation (EU) 2022/958 of 14 June 2022 entering a name in the register of protected designations of origin and protected geographical indications (‘Äkta Gränna Polkagrisar’ (PGI)) - **ID**: eu-celex-32022r0958 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Commission Implementing Regulation (EU) 2022/958 enters the name ‘Äkta Gränna Polkagrisar’ into the register of protected geographical indications (PGI). This regulation applies to Sweden’s applic... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32022r0958.json #### Regulation (EU) 2022/992 of the European Parliament and of the Council of 8 June 2022 amending Regulation (EU) 2016/1628 as regards the extension of the empowerment of the Commission to adopt delegated acts (Text with EEA relevance) - **ID**: eu-celex-32022r0992 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2022/992 amends Regulation (EU) 2016/1628 to extend the empowerment of the Commission to adopt delegated acts. This regulation applies to the European Union and its Member States, focu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32022r0992.json #### Commission Implementing Regulation (EU) 2022/1359 of 27 July 2022 amending Council Regulation (EC) No 2368/2002 implementing the Kimberley Process certification scheme for the international trade in rough diamonds - **ID**: eu-celex-32022r1359 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2022/1359, adopted on 27 July 2022 and published in the Official Journal of the European Union (L 205/99), amends Council Regulation (EC) No 2368/2002, which im... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32022r1359.json #### Commission Implementing Regulation (EU) 2022/2047 of 24 October 2022 correcting Implementing Regulation (EU) 2021/2325 as regards the recognition of certain control authorities and control bodies for the purpose of importing organic products into the Union - **ID**: eu-celex-32022r2047 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation corrects Implementing Regulation (EU) 2021/2325 regarding the recognition of certain control authorities and control bodies for importing organic products into the European Union. It a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32022r2047.json #### Commission Implementing Regulation (EU) 2022/2049 of 24 October 2022 amending Implementing Regulation (EU) 2021/2325 as regards the recognition of certain control authorities and control bodies for the purpose of importing organic products into the Union - **ID**: eu-celex-32022r2049 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation amends Implementing Regulation (EU) 2021/2325 to update the list of recognized control authorities and control bodies for importing organic products into the European Union. It address... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32022r2049.json #### Commission Delegated Regulation (EU) 2022/2579 of 10 June 2022 supplementing Directive 2013/36/EU of the European Parliament and of the Council with regard to regulatory technical standards specifying the information to be provided by an undertaking in the application for authorisation in accordance with Article 8a of that Directive (Text with EEA relevance) - **ID**: eu-celex-32022r2579 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation (EU) 2022/2579, adopted on 10 June 2022 and published in the Official Journal of the European Union on 29 December 2022, establishes regulatory technical standards spec... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32022r2579.json #### Council Decision (CFSP) 2023/252 of 4 February 2023 amending Decision 2014/512/CFSP concerning restrictive measures in view of Russia’s actions destabilising the situation in Ukraine - **ID**: eu-celex-32023d0252 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (CFSP) 2023/252, adopted on 4 February 2023 and published in the Official Journal of the European Union (LI 32/11), amends Decision 2014/512/CFSP concerning restrictive measures in vi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023d0252.json #### Council Decision Appointing EU-OSHA Management Board Members for Luxembourg - **ID**: eu-celex-32023d0601-01 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Council of the European Union appointed one member and one alternate member of the Management Board of the European Agency for Safety and Health at Work for Luxembourg, as per Council Decision of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023d0601-01.json #### Commission Decision (Euratom) 2023/1112 of 17 July 2020 on the notification of changes to the Euratom delineated peaceful nuclear programme in Annex A to the Agreement for cooperation in the peaceful uses of nuclear energy between the European Atomic Energy Community and the United States of America - **ID**: eu-celex-32023d1112 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision (Euratom) 2023/1112, adopted on 17 July 2020 and published in the Official Journal of the European Union on 7 June 2023 (L 147/156), approves the notification of changes to the Eur... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023d1112.json #### Commission Implementing Decision (EU) 2023/1212 of 21 June 2023 renewing the authorisation for placing on the market of products containing, consisting of or produced from genetically modified soybean MON 87701 pursuant to Regulation (EC) No 1829/2003 of the European Parliament and of the Council (notified under document C(2023) 3944) (Only the text in Dutch is authentic) (Text with EEA relevance) - **ID**: eu-celex-32023d1212 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission has renewed the authorisation for placing on the market of products containing, consisting of, or produced from genetically modified soybean MON 87701. This decision applies to... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023d1212.json #### Council Decision (CFSP) 2023/1306 of 26 June 2023 in support of a project on a zone free of weapons of mass destruction in the Middle East (ME WMDFZ) in an evolving regional security environment - **ID**: eu-celex-32023d1306 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (CFSP) 2023/1306, adopted on 26 June 2023, authorises the European Union to support a project implemented by the United Nations Institute for Disarmament Research (UNIDIR) aimed at ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023d1306.json #### Council Decision (EU) 2023/2821 of 4 December 2023 on the position to be adopted, on behalf of the European Union, within the EEA Joint Committee concerning the amendment to Annexes V (Free movement of workers) and VI (Social security) and Protocol 31 (On cooperation in specific fields outside the four freedoms) to the EEA Agreement (ELA Regulation) - **ID**: eu-celex-32023d2821 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (EU) 2023/2821, adopted at Brussels on 4 December 2023 and published in the Official Journal of the European Union on 14 December 2023, establishes the position to be adopted on behal... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023d2821.json #### Commission Delegated Regulation EU 2023/167 amending multiannual rolling planning - **ID**: eu-celex-32023r0167 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation EU 2023/167 amends Delegated Regulation EU 2020/256 to establish a multiannual rolling planning for the collection of data under Regulation EU 2019/1700 from 2021 to 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023r0167.json #### Commission Implementing Regulation (EU) 2023/216 of 1 February 2023 approving the low-risk active substance Trichoderma atroviride AGR2 in accordance with Regulation (EC) No 1107/2009 of the European Parliament and of the Council concerning the placing of plant protection products on the market, and amending Commission Implementing Regulation (EU) No 540/2011 (Text with EEA relevance) - **ID**: eu-celex-32023r0216 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2023/216, adopted on 1 February 2023 and published in the Official Journal of the European Union (L 30/7) on 2 February 2023, approves the active substance Tric... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023r0216.json #### Regulation (EU) 2023/851 of the European Parliament and of the Council of 19 April 2023 amending Regulation (EU) 2019/631 as regards strengthening the CO2 emission performance standards for new passenger cars and new light commercial vehicles in line with the Union’s increased climate ambition (Text with EEA relevance) - **ID**: eu-celex-32023r0851 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The regulation amends Regulation (EU) 2019/631 to strengthen CO2 emission performance standards for new passenger cars and light commercial vehicles, aligning with the EU's increased climate ambition.... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023r0851.json #### Commission Implementing Regulation (EU) 2023/972 of 10 May 2023 authorising the placing on the market of aqueous ethanolic extract of Labisia pumila as a novel food and amending Implementing Regulation (EU) 2017/2470 (Text with EEA relevance) - **ID**: eu-celex-32023r0972 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2023/972, adopted on 10 May 2023 and entering into force on the twentieth day following its publication in the Official Journal of the European Union (effective... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023r0972.json #### Commission Delegated Regulation (EU) 2023/996 of 23 February 2023 amending Regulation (EU) 2021/821 of the European Parliament and of the Council as regards the list of dual-use items - **ID**: eu-celex-32023r0996 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation (EU) 2023/996, adopted on 23 February 2023 and published in the Official Journal of the European Union on 25 May 2023, amends Regulation (EU) 2021/821 by replacing Anne... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023r0996.json #### Commission Implementing Regulation (EU) 2023/1139 of 8 June 2023 amending for the 336th time Council Regulation (EC) No 881/2002 imposing certain specific restrictive measures directed against certain persons and entities associated with the ISIL (Da'esh) and Al-Qaida organisations - **ID**: eu-celex-32023r1139 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation amends Annex I to Council Regulation (EC) No 881/2002, which imposes specific restrictive measures against persons and entities associated with ISIL (Da'esh) and Al-Qaida. The amendmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023r1139.json #### Commission Implementing Regulation (EU) 2023/2117 of 12 October 2023 laying down the necessary rules and detailed requirements for the functioning and management of a repository of information pursuant to Regulation (EU) 2018/1139 of the European Parliament and of the Council - **ID**: eu-celex-32023r2117 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation lays down the rules and procedures for the functioning and management of a repository of information necessary to ensure effective cooperation between the European Union Aviation Safet... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023r2117.json #### Commission Delegated Regulation EU 2023/2462 supplementing Regulation EU 2019/1022 - **ID**: eu-celex-32023r2462 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation EU 2023/2462 specifies details of the landing obligation for certain demersal stocks in the western Mediterranean Sea, supplementing Regulation EU 2019/1022. The regula... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023r2462.json #### Commission Delegated Regulation (EU) 2023/2465 of 17 August 2023 supplementing Regulation (EU) No 1308/2013 of the European Parliament and of the Council as regards marketing standards for eggs, and repealing Commission Regulation (EC) No 589/2008 - **ID**: eu-celex-32023r2465 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation supplements Regulation (EU) No 1308/2013 with rules on the marketing standards for eggs of hens of the Gallus gallus species, except eggs for hatching. It covers classification criteri... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32023r2465.json #### Commission Decision of 30 September 2024 approving on behalf of the European Union, the position to be taken as regards amendments to Annexes 10-A and 10-B to the Free Trade Agreement between the European Union and the Republic of Singapore - **ID**: eu-celex-32024d05871 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision C/2024/5871, adopted on 30 September 2024 and published in the Official Journal of the European Union on 1 October 2024, approves on behalf of the European Union the position to be... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024d05871.json #### Council Decision (CFSP) 2024/1470 of 21 May 2024 amending Decision 2014/512/CFSP concerning restrictive measures in view of Russia’s actions destabilising the situation in Ukraine - **ID**: eu-celex-32024d1470 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (CFSP) 2024/1470, adopted on 21 May 2024 and published in the Official Journal of the European Union on 22 May 2024, amends Decision 2014/512/CFSP to introduce additional exceptional ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024d1470.json #### Commission Decision (EU) 2024/2549 of 29 November 2023 on State aid SA.57543 and SA.58342 (2020/NN) (ex 2020/N), implemented by the Kingdom of Denmark and the Kingdom of Sweden for Scandinavian Airlines System AB (notified under document C(2023) 8356) - **ID**: eu-celex-32024d2549 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Decision (EU) 2024/2549, adopted on 29 November 2023 and published in the Official Journal of the European Union on 1 October 2024, concerns State aid cases SA.57543 and SA.58342 implemente... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024d2549.json #### Council Decision (CFSP) 2024/2846 of 5 November 2024 amending Decision (CFSP) 2021/509 establishing a European Peace Facility - **ID**: eu-celex-32024d2846 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (CFSP) 2024/2846, adopted on 5 November 2024 at Brussels and signed by Council President VARGA M., amends Decision (CFSP) 2021/509 establishing a European Peace Facility. The Decision... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024d2846.json #### Council Decision (EU) 2024/2911 of 5 November 2024 on the position to be taken on behalf of the European Union within the Council of Members of the International Olive Council (IOC) as regards one method of analysis and the IOC trade standard for olive oils and olive pomace oils - **ID**: eu-celex-32024d2911 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (EU) 2024/2911, adopted on 5 November 2024 and published in the Official Journal of the European Union (L series), establishes the position to be taken on behalf of the European Union... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024d2911.json #### Council Decision (EU) 2024/2998 of 5 November 2024 on the position to be taken on behalf of the European Union within the Joint Committee established by the Convention on a common transit procedure as regards the adoption of a decision amending Appendices III and IIIa to that Convention concerning the accession of Georgia - **ID**: eu-celex-32024d2998 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (EU) 2024/2998, adopted at Brussels on 5 November 2024, establishes the position to be taken on behalf of the European Union within the Joint Committee established by the Convention o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024d2998.json #### Council Decision (Euratom) 2024/3030 of 2 December 2024 approving the position to be taken on behalf of Euratom in the Energy Charter Conference - **ID**: eu-celex-32024d3030 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (Euratom) 2024/3030, adopted on 2 December 2024 and published in the Official Journal of the European Union on 9 December 2024, approves the position to be taken on behalf of Euratom ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024d3030.json #### Directive (EU) 2024/3019 of the European Parliament and of the Council of 27 November 2024 concerning urban wastewater treatment (recast) (Text with EEA relevance) - **ID**: eu-celex-32024l3019 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2024/3019, published in the Official Journal of the European Union on 12 December 2024, recasts Council Directive 91/271/EEC and establishes a comprehensive legal framework for the coll... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024l3019.json #### Directive (EU) 2024/3101 of the European Parliament and of the Council of 27 November 2024 amending Directive 2005/35/EC as regards ship-source pollution and on the introduction of administrative penalties for infringements (Text with EEA relevance) - **ID**: eu-celex-32024l3101 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Directive (EU) 2024/3101 amends Directive 2005/35/EC to strengthen the enforcement of international standards on pollution from ships and introduce administrative penalties for infringements. It a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024l3101.json #### Commission Regulation (EU) 2024/1081 of 8 May 2024 correcting certain language versions of Annex II to Regulation (EC) No 1333/2008 of the European Parliament and of the Council on food additives - **ID**: eu-celex-32024r1081 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Regulation (EU) 2024/1081, adopted on 8 May 2024 and published in the Official Journal of the European Union on 13 May 2024, is a correcting act targeting specific language versions of Anne... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024r1081.json #### Regulation (EU) 2024/1258 of the European Parliament and of the Council of 24 April 2024 amending Regulation (EC) No 561/2006 as regards minimum requirements on minimum breaks and daily and weekly rest periods in the occasional passenger transport sector and as regards Member States’ power to impose penalties for infringements of Regulation (EU) No 165/2014 committed in another Member State or in a third country - **ID**: eu-celex-32024r1258 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1258 amends Regulation (EC) No 561/2006 to introduce specific rules for minimum breaks and rest periods for drivers engaged in occasional road passenger transport services. The re... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024r1258.json #### Commission Delegated Regulation (EU) 2024/1401 of 7 March 2024 amending Delegated Regulation (EU) 2022/2104 supplementing Regulation (EU) No 1308/2013 of the European Parliament and of the Council as regards marketing standards for olive oil - **ID**: eu-celex-32024r1401 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation (EU) 2024/1401 amends Delegated Regulation (EU) 2022/2104, which supplements Regulation (EU) No 1308/2013 regarding marketing standards for olive oil. The regulation up... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024r1401.json #### Commission Implementing Regulation (EU) 2024/1922 of 12 July 2024 setting out the template for the collection by the Member States of the data and the information referred to in Article 6(5), points (a) to (d), of Regulation (EU) 2023/1230 of the European Parliament and of the Council - **ID**: eu-celex-32024r1922 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2024/1922, adopted on 12 July 2024 and published in the Official Journal of the European Union on 15 July 2024, establishes a standardised template to be used b... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32024r1922.json #### Commission Decision (EU) 2025/429 of 30 April 2024 on the measure State aid SA.58207 (2021/N) which Czechia is planning to implement to support the construction and operation of a new nuclear power plant at the Dukovany site (notified under document C(2024) 2858) - **ID**: eu-celex-32025d0429 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission has approved a state aid measure by Czechia to support the construction and operation of a new nuclear power plant (NPP) at the Dukovany site. The aid consists of a Purchase Co... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025d0429.json #### Council Decision of 16 September 2025 replacing a full member of the Advisory Committee on Safety and Health at Work for the Netherlands - **ID**: eu-celex-32025d05171 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Council Decision of 16 September 2025 (C/2025/5171), adopted by the Council of the European Union, replaces a full member of the Advisory Committee on Safety and Health at Work for the Netherland... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025d05171.json #### Decision (EU) 2025/1228 of the European Parliament and of the Council of 17 June 2025 amending Council Decision 2003/17/EC as regards the equivalence of field inspections carried out in the Republic of Moldova on seed-producing fodder plant crops and on the equivalence of fodder plant seed produced in the Republic of Moldova, and as regards the equivalence of field inspections carried out in Ukraine on seed-producing beet crops and seed-producing oil plant crops and on the equivalence of beet seed and oil plant seed produced in Ukraine (Text with EEA relevance) - **ID**: eu-celex-32025d1228 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Decision amends Council Decision 2003/17/EC to grant equivalence to field inspections and seed certification systems in the Republic of Moldova and Ukraine. Specifically, it recognizes the equiva... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025d1228.json #### Commission Implementing Decision (EU) 2025/1483 of 31 July 2025 amending Implementing Decision (EU) 2025/1160 concerning certain emergency measures relating to sheep pox and goat pox in Bulgaria (notified under document C(2025) 5466) - **ID**: eu-celex-32025d1483 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The European Commission has amended Implementing Decision (EU) 2025/1160 to address the spread of sheep pox and goat pox in Bulgaria. This decision mandates the establishment of restricted zones, incl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025d1483.json #### Council Decision (CFSP) 2025/1555 of 25 July 2025 amending Decision (CFSP) 2021/1277 concerning restrictive measures in view of the situation in Lebanon - **ID**: eu-celex-32025d1555 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (CFSP) 2025/1555, adopted at Brussels on 25 July 2025, amends Decision (CFSP) 2021/1277 concerning restrictive measures in view of the situation in Lebanon. The original Decision (CFS... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025d1555.json #### Commission Implementing Decision (EU) 2025/1886 of 17 September 2025 on the clearance of the accounts of paying agencies in Italy and Slovakia concerning expenditure financed by the European Agricultural Guarantee Fund (EAGF) for financial year 2020 (notified under document C(2025) 6267) - **ID**: eu-celex-32025d1886 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Decision (EU) 2025/1886, adopted at Brussels on 17 September 2025 and published in the Official Journal of the European Union on 19 September 2025, clears the accounts of two s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025d1886.json #### Council Decision (EU) 2025/2465 of 24 November 2025 on the signing, on behalf of the Union, of the Agreement on Digital Trade between the European Union and the Republic of Korea - **ID**: eu-celex-32025d2465 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Council Decision (EU) 2025/2465, adopted on 24 November 2025 and published in the Official Journal of the European Union on 3 December 2025, authorises the signing of the Agreement on Digital Trade be... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025d2465.json #### Commission Delegated Regulation (EU) 2025/300 of 10 October 2024 supplementing Regulation (EU) 2023/1114 of the European Parliament and of the Council with regard to regulatory technical standards on information to be exchanged between competent authorities - **ID**: eu-celex-32025r0300 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation establishes the technical standards for the exchange of information between competent authorities in the European Union regarding crypto-assets. It applies to competent authorities res... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025r0300.json #### Commission Implementing Regulation (EU) 2025/623 of 28 March 2025 establishing, pursuant to Regulation (EU) 2024/573 of the European Parliament and of the Council minimum requirements for certificates of natural persons and the conditions for the mutual recognition of such certificates as regards the recovery of fluorinated greenhouse gas-based solvents from equipment and repealing Commission Regulation (EC) No 306/2008 - **ID**: eu-celex-32025r0623 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation establishes minimum requirements for certificates of natural persons recovering fluorinated greenhouse gas-based solvents from equipment and specifies the conditions for mutual recogni... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025r0623.json #### Commission Delegated Regulation (EU) 2025/2190 of 22 September 2025 amending Annex I to Regulation (EU) 2021/1060 of the European Parliament and of the Council as regards the nomenclature for the dimensions and codes for the types of intervention for the ERDF, the ESF+, the Cohesion Fund and the JTF - **ID**: eu-celex-32025r2190 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation amends Annex I to Regulation (EU) 2021/1060 to include new types of intervention for the European Regional Development Fund (ERDF), the European Social Fund Plus (ESF+), the Cohesion F... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025r2190.json #### Commission Implementing Regulation (EU) 2025/2537 of 16 December 2025 designating a European Union reference laboratory for public health on respiratory viruses - **ID**: eu-celex-32025r2537 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/2537, adopted on 16 December 2025 and published in the Official Journal of the European Union on 17 December 2025, designates a consortium of laboratories ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025r2537.json #### Commission Implementing Regulation (EU) 2025/2599 of 11 December 2025 opening a tariff quota for the year 2026 for the import into the Union of certain goods originating in Norway resulting from the processing of agricultural products covered by Regulation (EU) No 510/2014 of the European Parliament and of the Council - **ID**: eu-celex-32025r2599 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/2599, adopted on 11 December 2025 and published in the Official Journal of the European Union on 17 December 2025, opens a duty-free tariff quota for the y... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025r2599.json #### Commission Implementing Regulation (EU) 2026/96 of 15 January 2026 concerning the authorisation of celery seed essential oil from Apium graveolens L. and caraway essential oil from Carum carvi L. as feed additives for certain animal species - **ID**: eu-celex-32026r0096 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2026/96, adopted on 15 January 2026 and published in the Official Journal of the European Union (L series, 2026/96, 16.1.2026), authorises celery seed essential... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32026r0096.json #### Commission Implementing Regulation (EU) 2026/372 of 20 February 2026 amending Implementing Regulation (EU) No 540/2011 as regards the extension of the approval periods of the active substances 1-decanol, 1-naphthylacetamide, 1-naphthylacetic acid, 6-benzyladenine, aluminium sulfate, boscalid, dodine, esfenvalerate, eugenol, fenpyroximate, fluazifop-P, fluazinam, fluometuron, fluopyram, flutolanil, geraniol, malathion, penoxsulam, pinoxaden, prohexadione, proquinazid, prosulfuron, pyrethrins, pyridaben, pyrimethanil, sintofen, spiroxamine, sulphur and thymol - **ID**: eu-celex-32026r0372 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2026/372, adopted on 20 February 2026 and published in the Official Journal of the European Union (L series, 23.2.2026), amends Implementing Regulation (EU) No ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32026r0372.json #### Commission Implementing Regulation (EU) 2026/525 of 11 March 2026 amending Implementing Regulation (EU) 2023/2834 as regards fixing representative prices in the poultrymeat and egg sectors and for egg albumin - **ID**: eu-celex-32026r0525 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2026/525, adopted on 11 March 2026 and published in the Official Journal of the European Union on 12 March 2026, amends Implementing Regulation (EU) 2023/2834 b... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32026r0525.json #### Commission Implementing Regulation (EU) 2026/530 of 10 March 2026 on exceptional support measures for the sheepmeat and pigmeat sectors in Hungary - **ID**: eu-celex-32026r0530 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation provides Union part-financing equivalent to 60% of the expenditure borne by Hungary to support the sheepmeat and pigmeat markets affected by outbreaks of foot and mouth disease between... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32026r0530.json #### Commission Implementing Regulation (EU) 2026/705 of 20 March 2026 establishing model identification documents and model declarations for non-commercial movements of pet animals - **ID**: eu-celex-32026r0705 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2026/705, adopted on 20 March 2026 and published in the Official Journal of the European Union on 27 March 2026, establishes model identification documents and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32026r0705.json #### Council Directive 86/653/EEC of 18 December 1986 on the coordination of the laws of the Member States relating to self-employed commercial agents - **ID**: eu-commercial-agents-directive-1986 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This directive harmonizes EU Member State laws for self-employed commercial agents, establishing their rights and obligations regarding remuneration, and mandating a system for either indemnity or com... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-commercial-agents-directive-1986.json #### Directive (EU) 2019/1151 of the European Parliament and of the Council of 20 November 2019 on a framework for the cross-border conversion, merger and division of companies, and on the cross-border transfer of the registered office of companies with limited liability - **ID**: eu-company-law-digitalisation-directive-2019-1151 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: This Directive establishes harmonised rules for cross-border conversions, mergers, divisions, and registered office transfers of limited liability companies within the EU, ensuring legal certainty and... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-company-law-digitalisation-directive-2019-1151.json #### Directive (EU) 2019/790 of the European Parliament and of the Council of 17 April 2019 on copyright and related rights in the Digital Single Market and amending Directives 96/9/EC and 2001/29/EC - **ID**: eu-copyright-dsm-directive-2019-790 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This directive modernizes EU copyright law, establishing a mandatory exception for text and data mining (TDM) for scientific research (Article 3) and creating a new liability regime for online content... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-copyright-dsm-directive-2019-790.json #### EU Data Act Regulation 2023/2854 data sharing cloud switching and public sector access - **ID**: eu-data-act-2023-2854 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Regulation EU 2023/2854 of the European Parliament and of the Council on harmonised rules on fair access to and use of data, known as the Data Act. Published on 22 December 2023, it applies from 12 Se... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-2854.json #### Judgment of the Court (Grand Chamber) of 16 July 2020, Data Protection Commissioner v Facebook Ireland Limited and Maximillian Schrems, Case C-311/18 (Schrems II) - **ID**: eu-data-border-transfers-schrems-ii - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Court of Justice of the European Union (CJEU) invalidated the EU-US Privacy Shield framework for transatlantic data transfers, finding it did not provide adequate protection from US surveillance l... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-border-transfers-schrems-ii.json #### Commission Decision 91/305/EEC - State Aid to Mactac SA - **ID**: eu-decision-91-305-state-aid-belgium - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Decision addresses investment aid proposed by the Belgian Government for Mactac SA, a manufacturer of self-adhesive products. The European Commission assessed the aid under Article 93(... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-decision-91-305-state-aid-belgium.json #### Commission Decision (Case No IV/M.1683) - Coca-Cola/Kar-Tess Group Merger - **ID**: eu-decision-m1683-coca-cola-merger-control - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Decision under the EU Merger Regulation evaluates the concentration involving the acquisition of Coca-Cola Beverages plc by Hellenic Bottling Company S.A. It applies strict antitrust s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-decision-m1683-coca-cola-merger-control.json #### Regulation (EU) 2022/1925 of the European Parliament and of the Council of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019/1937 and (EU) 2020/1828 (Digital Markets Act) - **ID**: eu-digital-markets-act-2022-1925 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Digital Markets Act establishes ex ante rules for gatekeeper-designated digital platforms to ensure fair and contestable markets in the EU. It applies to large online platforms meeting specific qu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-markets-act-2022-1925.json #### Regulation (EU) 2022/1925 of the European Parliament and of the Council of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019/1937 and (EU) 2020/1828 (Digital Markets Act) - **ID**: eu-digital-markets-act-2022-1925-gatekeepers - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The EU Digital Markets Act (DMA) designates large online platforms providing core platform services (CPS) as 'gatekeepers' if they meet specific quantitative thresholds, such as an annual EEA turnover... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-markets-act-2022-1925-gatekeepers.json #### Directive (EU) 2022/993 of the European Parliament and of the Council of 8 June 2022 on the minimum level of training of seafarers (codification) - **ID**: eu-dir-2022-0993-on-the-minimum-level-of-training-of-seafarers-codification - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Directive codifies Directive 2008/106/EC on the minimum level of training of seafarers, incorporating the STCW Convention into Union law. It applies to seafarers serving on seagoing ships flying ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2022-0993-on-the-minimum-level-of-training-of-seafarers-codification.json #### Directive 2022/2381 on improving gender balance among directors of listed companies - **ID**: eu-dir-2022-2381-on-improving-the-gender-balance-among-directors-of-listed-co - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2022/2381 aims to improve gender balance on boards of listed companies in the EU by setting minimum requirements. By 30 June 2026, listed companies must ensure that members of the under... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2022-2381-on-improving-the-gender-balance-among-directors-of-listed-co.json #### Directive (EU) 2024/2810 on multiple-vote share structures in companies that seek admission to trading on a multilateral trading facility - **ID**: eu-dir-2024-2810-on-multiple-vote-share-structures-in-companies-that-seek-adm - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2024/2810 requires Member States to ensure that companies whose shares are not already admitted to trading on a regulated market or an MTF have the right to adopt or modify a multiple-v... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2024-2810-on-multiple-vote-share-structures-in-companies-that-seek-adm.json #### Directive (EU) 2024/2823 on the legal protection of designs (recast) - harmonizing registered design rights across Member States - **ID**: eu-dir-2024-2823-on-the-legal-protection-of-designs-recast - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2024/2823 recasts Directive 98/71/EC to harmonize substantive and procedural design law across Member States. It defines a 'design' as the appearance of a product resulting from feature... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2024-2823-on-the-legal-protection-of-designs-recast.json #### Corrigendum to Directive (EU) 2024/2831 on improving working conditions in platform work - **ID**: eu-dir-2024-2831-corrigendum-to-directive-eu-2024-2831-of-23-october-2024-on - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This instrument is a corrigendum issued by the European Union to correct a textual error in Directive (EU) 2024/2831 of the European Parliament and of the Council of 23 October 2024 on improving worki... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2024-2831-corrigendum-to-directive-eu-2024-2831-of-23-october-2024-on.json #### Directive (EU) 2024/2841 establishing the European Disability Card and the European Parking Card for persons with disabilities - **ID**: eu-dir-2024-2841-establishing-the-european-disability-card-and-the-european-p - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Directive establishes a framework of common rules and conditions, including a common standardised model, for a European Disability Card as proof of recognised disability status or entitlement to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2024-2841-establishing-the-european-disability-card-and-the-european-p.json #### Directive (EU) 2024/1760 of the European Parliament and of the Council of 13 June 2024 on combating corruption, replacing Council Framework Decision 2003/568/JHA and the Convention on the fight against corruption involving officials of the European Communities or officials of Member States of the European Union and amending Directive (EU) 2017/1371 of the European Parliament and of the Council - **ID**: eu-directive-combating-corruption-2024-1760 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This directive establishes minimum EU-wide rules for defining criminal offences and penalties for corruption, applying to both public and private sectors. It mandates Member States to criminalise a wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-combating-corruption-2024-1760.json #### Regulation (EU) 2022/1925 (Digital Markets Act) Articles 5-7: Obligations for Gatekeepers - **ID**: eu-dma-articles-5-7-gatekeeper-obligations - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The EU Digital Markets Act (DMA) imposes direct, non-negotiable obligations on designated 'gatekeeper' platforms to ensure fair and contestable digital markets. Key prohibitions under Article 5 includ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dma-articles-5-7-gatekeeper-obligations.json #### Commission Implementing Regulation (EU) No 1269/2013 of 5 December 2013 amending Regulation (EC) No 802/2004 implementing Council Regulation (EC) No 139/2004 on the control of concentrations between undertakings - **ID**: eu-ec-merger-implementing-regulation-1269-2013 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation specifies the procedural rules and information requirements for notifying mergers and acquisitions to the European Commission. It defines the content of the mandatory notification form... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ec-merger-implementing-regulation-1269-2013.json #### Regulation (EU) 2024/1183 of the European Parliament and of the Council of 11 April 2024 amending Regulations (EU) No 910/2014 and (EU) 2018/1724 as regards the establishment of a European Digital Identity Framework - **ID**: eu-eidas-regulation-2024 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation establishes a legal framework for a European Digital Identity Wallet (EUDI Wallet), requiring EU Member States to issue at least one EUDI Wallet to citizens and residents free of charg... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eidas-regulation-2024.json #### EU eIDAS Regulation 910/2014 - Electronic Identification and Trust Services for Electronic Transactions - **ID**: eu-electronic-identification-eidas-regulation-910-2014-trust-services - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 910/2014 (eIDAS) establishes a cross-border framework for electronic identification and trust services in the EU, including qualified electronic signatures (QES), qualified electron... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electronic-identification-eidas-regulation-910-2014-trust-services.json #### EU European Accessibility Act 2019/882 - Accessibility Requirements for Digital Products and Services - **ID**: eu-european-accessibility-act-2019-882-digital-product-service-requirements - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2019/882 (European Accessibility Act) mandates accessibility requirements for a broad range of products and services sold or provided in the EU from 28 June 2025, covering computers, sm... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-european-accessibility-act-2019-882-digital-product-service-requirements.json #### Regulation (EU) 2022/2560 of the European Parliament and of the Council of 14 December 2022 on foreign subsidies distorting the internal market - **ID**: eu-foreign-subsidies-regulation-2022-2560 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation requires undertakings to notify the European Commission of concentrations (mergers and acquisitions) and participation in public procurement procedures when they have received signific... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-foreign-subsidies-regulation-2022-2560.json #### EU General Product Safety Regulation (GPSR) 2023/988 - Consumer Product Safety, Traceability, and Online Marketplace Obligations - **ID**: eu-general-product-safety-regulation-2023-988-market-surveillance - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The GPSR (Regulation EU 2023/988), which replaced the General Product Safety Directive 2001/95/EC from December 2024, extends product safety obligations to online marketplaces, requires unique product... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-product-safety-regulation-2023-988-market-surveillance.json #### Commission Regulations (EU) 2023/1066 on Research & Development Agreements and (EU) 2023/1067 on Specialisation Agreements (Horizontal Block Exemption Regulations) - **ID**: eu-horizontal-block-exemption-regulations-2023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: These regulations provide a 'safe harbour' under Article 101(3) TFEU, exempting certain horizontal cooperation agreements from EU competition rules, provided the parties' combined market share does no... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-horizontal-block-exemption-regulations-2023.json #### EU Insolvency Regulation (Recast) 2015/848 - **ID**: eu-insolvency-regulation-2015-848 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2015/848 of the European Parliament and of the Council on insolvency proceedings (Recast), applicable from 26 June 2017, establishes the rules for determining which Member State's cour... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-insolvency-regulation-2015-848.json #### Directive 2004/48/EC of the European Parliament and of the Council on the enforcement of intellectual property rights - Article 13: Damages - **ID**: eu-ip-enforcement-directive-2004-48-article-13-damages-ip-infringement - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Organizations found to have knowingly engaged in intellectual property infringement must, upon court order initiated by the injured party, pay damages appropriate to the actual prejudice suffered by t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ip-enforcement-directive-2004-48-article-13-damages-ip-infringement.json #### Directive 2004/48/EC on the enforcement of intellectual property rights - Article 6 Evidence - **ID**: eu-ip-enforcement-directive-2004-48-article-6-evidence-disclosure - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Organizations must be prepared to present evidence within their control when ordered by a judicial authority in an intellectual property dispute, provided the requesting party has substantiated their ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ip-enforcement-directive-2004-48-article-6-evidence-disclosure.json #### Directive 2011/7/EU of the European Parliament and of the Council of 16 February 2011 on combating late payment in commercial transactions - **ID**: eu-late-payment-directive-2011 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This directive establishes harmonized EU rules for commercial transactions between undertakings (B2B) and between undertakings and public authorities, mandating payment periods generally not exceeding... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-late-payment-directive-2011.json #### Commission Notice on Immunity from fines and reduction of fines in cartel cases (2006/C 298/11) - **ID**: eu-leniency-programme-2006-cartel-immunity - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This notice grants total immunity from fines to the first undertaking to disclose its participation in a secret cartel to the European Commission, provided it submits decisive evidence (Point 8(a)). S... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-leniency-programme-2006-cartel-immunity.json #### Council Regulation (EC) No 139/2004 of 20 January 2004 on the control of concentrations between undertakings (the EC Merger Regulation) - **ID**: eu-merger-regulation-139-2004-ecmr - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation requires undertakings to notify the European Commission of concentrations (mergers, acquisitions) that meet specific turnover thresholds, establishing a 'Community dimension' (Article ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-merger-regulation-139-2004-ecmr.json #### Regulation (EU) 2019/1150 of the European Parliament and of the Council of 20 June 2019 on promoting fairness and transparency for business users of online intermediation services - **ID**: eu-platform-to-business-regulation-2019-1150 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation requires providers of online intermediation services (e.g., marketplaces, app stores) and online search engines to ensure fairness and transparency for their business users. Key obliga... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-platform-to-business-regulation-2019-1150.json #### Directive (EU) 2019/1023 on Preventive Restructuring Frameworks (EU Restructuring Directive): Pre-Insolvency Moratorium, Cross-Class Cram-Down, 3-Year Debt Discharge for Entrepreneurs, and Second Chance Framework for Honest Debtors - **ID**: eu-preventive-restructuring-directive-2019-1023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: Directive (EU) 2019/1023 (Restructuring Directive), transposition deadline 17 July 2021 (with extensions to 17 July 2022 and, for specific provisions, 17 July 2024), harmonises preventive restructurin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-preventive-restructuring-directive-2019-1023.json #### Directive (EU) 2024/2853 of the European Parliament and of the Council of 11 September 2024 on liability for defective products - **ID**: eu-product-liability-directive-2024 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This directive establishes a strict, no-fault liability regime for economic operators whose defective products, including software and AI systems, cause material damage to a natural person, as defined... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-product-liability-directive-2024.json #### Directive (EU) 2024/2853 of the European Parliament and of the Council of 23 October 2024 on liability for defective products and repealing Council Directive 85/374/EEC (Text with EEA relevance) - **ID**: eu-product-liability-directive-2024-2853 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: This Directive establishes strict liability for economic operators for damage caused by defective products, including software and AI systems, and introduces reversal of the burden of proof in cases o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-product-liability-directive-2024-2853.json #### EU Product Liability Directive 2024/2853 - Defective Product Liability Including AI and Software - **ID**: eu-product-liability-directive-2024-2853-defective-products-ai - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2024/2853 modernises the original 1985 Product Liability Directive to cover digital products including AI systems, software, and connected devices, introduces a rebuttable presumption o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-product-liability-directive-2024-2853-defective-products-ai.json #### Regulation (EU) 2022/1280 laying down specific and temporary measures concerning driver documents issued by Ukraine in view of Russia's invasion of Ukraine - **ID**: eu-reg-2022-1280-laying-down-specific-and-temporary-measures-in-view-of-russi - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation lays down specific and temporary measures applicable to driver documents issued by Ukraine and held by persons enjoying temporary protection or adequate protection under national law i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2022-1280-laying-down-specific-and-temporary-measures-in-view-of-russi.json #### Regulation (EU) 2022/2192 of the European Parliament and of the Council of 9 November 2022 laying down specific provisions for the 2014-2020 cooperation programmes supported by the European Neighbourhood Instrument and under the European territorial cooperation goal, following programme implementation disruption - **ID**: eu-reg-2022-2192-laying-down-specific-provisions-for-the-2014-2020-cooperatio - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation lays down specific provisions for thirteen cross-border cooperation programmes governed by Regulation (EU) No 232/2014 and two transnational cooperation programmes governed by Regulati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2022-2192-laying-down-specific-provisions-for-the-2014-2020-cooperatio.json #### Regulation (EU) 2023/675 of the European Parliament and of the Council of 15 March 2023 laying down conservation and management measures for the conservation of southern bluefin tuna - **ID**: eu-reg-2023-0675-laying-down-conservation-and-management-measures-for-the-con - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation implements into Union law conservation and management measures established under the Convention for the Conservation of Southern Bluefin Tuna (CCSBT) that are binding on the Union. It ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2023-0675-laying-down-conservation-and-management-measures-for-the-con.json #### Regulation (EU) 2024/792 of the European Parliament and of the Council of 29 February 2024 establishing the Ukraine Facility - **ID**: eu-reg-2024-0792-establishing-the-ukraine-facility - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation establishes the Ukraine Facility, an exceptional medium-term single instrument for the period 2024 to 2027, providing bilateral Union support to Ukraine. The Facility's overall maximum... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2024-0792-establishing-the-ukraine-facility.json #### Regulation (EU) 2024/897 amending management, conservation and control measures for ICCAT area and bluefin tuna plan - **ID**: eu-reg-2024-0897-amending-regulation-eu-2017-2107-laying-down-management-cons - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/897, adopted on 13 March 2024, amends Regulation (EU) 2017/2107 and Regulation (EU) 2023/2053 to implement ICCAT conservation and enforcement recommendations from 2017, 2018, 2019... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2024-0897-amending-regulation-eu-2017-2107-laying-down-management-cons.json #### Regulation (EU) 2024/903 of the European Parliament and of the Council of 13 March 2024 laying down measures for a high level of public sector interoperability across the Union (Interoperable Europe Act) - **ID**: eu-reg-2024-0903-laying-down-measures-for-a-high-level-of-public-sector-inter - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation establishes a legal framework for cross-border interoperability of network and information systems used to provide or manage public services in the Union, aiming to enable public admin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2024-0903-laying-down-measures-for-a-high-level-of-public-sector-inter.json #### Commission Implementing Regulation (EU) 2024/1435 of 24 May 2024 laying down rules for the application of Regulation (EU) 2023/988 as regards establishing the template for a recall notice - **ID**: eu-reg-2024-1435-implementing-regulation-eu-2024-1435-of-24-may-2024-laying-d - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2024/1435, adopted on 24 May 2024, establishes the template for a product safety recall notice under Article 36 of Regulation (EU) 2023/988 on general product s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2024-1435-implementing-regulation-eu-2024-1435-of-24-may-2024-laying-d.json #### Regulation (EU) 2024/1449 of the European Parliament and of the Council of 14 May 2024 on establishing the Reform and Growth Facility for the Western Balkans - **ID**: eu-reg-2024-1449-on-establishing-the-reform-and-growth-facility-for-the-weste - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1449 establishes the Reform and Growth Facility for the Western Balkans for the period 2024 to 2027. The Facility aims to support the enlargement process by accelerating alignment... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2024-1449-on-establishing-the-reform-and-growth-facility-for-the-weste.json #### Commission Regulation (EU) 2024/1487 defining data requirements for approval of safeners and synergists and establishing a work programme for gradual review - **ID**: eu-reg-2024-1487-regulation-eu-2024-1487-of-29-may-2024-defining-data-require - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation establishes a work programme for the gradual review of safeners and synergists already on the market and defines data requirements for their approval. By 19 July 2024, the Commission s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2024-1487-regulation-eu-2024-1487-of-29-may-2024-defining-data-require.json #### Commission Delegated Regulation (EU) 2025/292 supplementing Regulation (EU) 2023/1114 with regulatory technical standards establishing a template document for cooperation arrangements between competent authorities and supervisory authorities of third countries - **ID**: eu-reg-2025-0292-delegated-regulation-eu-2025-292-of-26-september-2024-supple - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Delegated Regulation (EU) 2025/292, adopted on 26 September 2024, supplements Regulation (EU) 2023/1114 on markets in crypto-assets by establishing a template document for cooperation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0292-delegated-regulation-eu-2025-292-of-26-september-2024-supple.json #### Commission Implementing Regulation (EU) 2025/339 of 19 February 2025 laying down rules for implementation of Article 6a of Regulation (EU) 2020/2220 as regards monitoring and evaluation, presentation of rural development programmes and annual implementation reports - **ID**: eu-reg-2025-0339-implementing-regulation-eu-2025-339-of-19-february-2025-layi - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/339, adopted on 19 February 2025, lays down rules for implementing Article 6a of Regulation (EU) 2020/2220, which introduced a new measure providing except... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0339-implementing-regulation-eu-2025-339-of-19-february-2025-layi.json #### Commission Implementing Regulation (EU) 2025/341 of 20 February 2025 laying down rules for the implementation of Article 6a of Regulation (EU) 2020/2220 as regards checks and penalties - **ID**: eu-reg-2025-0341-implementing-regulation-eu-2025-341-of-20-february-2025-layi - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/341, adopted on 20 February 2025, lays down rules for the implementation of Article 6a of Regulation (EU) 2020/2220 as regards checks and penalties. The me... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0341-implementing-regulation-eu-2025-341-of-20-february-2025-layi.json #### Commission Implementing Regulation (EU) 2025/486 of 17 March 2025 laying down rules for the application of Regulation (EU) 2023/956 as regards the conditions and procedures related to the status of authorised CBAM declarant - **ID**: eu-reg-2025-0486-implementing-regulation-eu-2025-486-of-17-march-2025-laying - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/486, adopted on 17 March 2025 and published on 18 March 2025, lays down detailed rules for the application of Regulation (EU) 2023/956 establishing a carbo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0486-implementing-regulation-eu-2025-486-of-17-march-2025-laying.json #### Regulation (EU) 2025/535 of the European Parliament and of the Council of 18 March 2025 establishing the Reform and Growth Facility for the Republic of Moldova - **ID**: eu-reg-2025-0535-establishing-the-reform-and-growth-facility-for-the-republic - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation establishes the Reform and Growth Facility for the Republic of Moldova for 2025-2027. The Facility provides assistance for Union-related reforms, including inclusive and sustainable so... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0535-establishing-the-reform-and-growth-facility-for-the-republic.json #### Commission Implementing Regulation (EU) 2025/1093 of 22 May 2025 laying down rules for the application of Regulation (EU) 2023/1115 as regards a list of countries presenting low or high risk of producing non-compliant relevant commodities - **ID**: eu-reg-2025-1093-implementing-regulation-eu-2025-1093-of-22-may-2025-laying-d - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/1093, adopted on 22 May 2025 and published on 23 May 2025, lays down rules for applying Regulation (EU) 2023/1115 regarding a list of countries that presen... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-1093-implementing-regulation-eu-2025-1093-of-22-may-2025-laying-d.json #### Commission Implementing Regulation (EU) 2025/1127 of 6 June 2025 laying down rules for identifying neighbouring container transhipment ports - **ID**: eu-reg-2025-1127-implementing-regulation-eu-2025-1127-of-6-june-2025-laying-d - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/1127, adopted on 6 June 2025, lays down rules for identifying neighbouring container transhipment ports under Article 2(2) of Regulation (EU) 2023/1805 on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-1127-implementing-regulation-eu-2025-1127-of-6-june-2025-laying-d.json #### Commission Implementing Regulation (EU) 2025/1310 of 3 July 2025 laying down technical specifications of data requirements for ICT usage and e-commerce for reference year 2026 - **ID**: eu-reg-2025-1310-implementing-regulation-eu-2025-1310-of-3-july-2025-laying-d - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/1310, adopted on 3 July 2025 and published on 4 July 2025, lays down the technical specifications of data requirements and deadlines for submission of annu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-1310-implementing-regulation-eu-2025-1310-of-3-july-2025-laying-d.json #### Commission Implementing Regulation (EU) 2025/1338 of 10 July 2025 laying down implementing technical standards for the functionalities of the European single access point - **ID**: eu-reg-2025-1338-implementing-regulation-eu-2025-1338-of-10-july-2025-laying - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/1338 of 10 July 2025 lays down implementing technical standards for the application of Regulation (EU) 2023/2859 with regard to the functionalities of the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-1338-implementing-regulation-eu-2025-1338-of-10-july-2025-laying.json #### Commission Implementing Regulation (EU) 2025/1420 laying down rules for the establishment and operation of interoperability regulatory sandboxes - **ID**: eu-reg-2025-1420-implementing-regulation-eu-2025-1420-of-17-july-2025-laying - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/1420 of 17 July 2025 lays down rules for the application of Regulation (EU) 2024/903 (Interoperable Europe Act), specifically regarding the establishment a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-1420-implementing-regulation-eu-2025-1420-of-17-july-2025-laying.json #### Commission Implementing Regulation (EU) 2025/1467 laying down technical specifications for the EU SoHO Platform to exchange information concerning substances of human origin - **ID**: eu-reg-2025-1467-implementing-regulation-eu-2025-1467-of-18-july-2025-laying - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Commission Implementing Regulation (EU) 2025/1467 of 18 July 2025 lays down rules for the application of Regulation (EU) 2024/1938 as regards the technical specifications for the EU SoHO Platform... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-1467-implementing-regulation-eu-2025-1467-of-18-july-2025-laying.json #### Commission Implementing Regulation (EU) 2025/1566 of 29 July 2025 laying down rules for application of Regulation (EU) No 910/2014 as regards reference standards for identity and attribute verification for qualified certificates and qualified electronic attestations of attributes - **ID**: eu-reg-2025-1566-implementing-regulation-eu-2025-1566-of-29-july-2025-laying - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/1566, adopted on 29 July 2025, establishes reference standards for verifying the identity and attributes of the person to whom a qualified certificate or a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-1566-implementing-regulation-eu-2025-1566-of-29-july-2025-laying.json #### Commission Implementing Regulation (EU) 2025/1929 laying down rules for binding date and time to data and establishing accuracy of time sources for qualified electronic time stamps - **ID**: eu-reg-2025-1929-implementing-regulation-eu-2025-1929-of-29-september-2025-la - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2025/1929 of 29 September 2025 lays down rules for the application of Regulation (EU) No 910/2014 regarding the binding of date and time to data and establishin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-1929-implementing-regulation-eu-2025-1929-of-29-september-2025-la.json #### Commission Implementing Regulation (EU) 2026/2 of 9 February 2026 laying down rules for the application of Regulation (EU) 2024/1781 as regards the details and format for the disclosure of information on discarded unsold consumer products - **ID**: eu-reg-2026-0002-implementing-regulation-eu-2026-2-of-9-february-2026-laying - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Regulation establishes the details and format for the disclosure of information on discarded unsold consumer products, applicable to large enterprises and, from 19 July 2030, medium-sized enterpr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2026-0002-implementing-regulation-eu-2026-2-of-9-february-2026-laying.json #### Commission Delegated Regulation (EU) 2026/59 of 6 January 2026 establishing a derogation from Article 43(1) of Regulation (EU) 2016/2031 as regards import conditions for wood packaging material in the form of ammunition boxes originating in the United States of America - **ID**: eu-reg-2026-0059-delegated-regulation-eu-2026-59-of-6-january-2026-establishi - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation (EU) 2026/59, adopted on 6 January 2026, establishes a derogation from Article 43(1) of Regulation (EU) 2016/2031 for wood packaging material in the form of ammunition ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2026-0059-delegated-regulation-eu-2026-59-of-6-january-2026-establishi.json #### Commission Implementing Regulation (EU) 2026/344 of 6 October 2025 laying down rules for the application of Regulation (EU) No 1308/2013 as regards marketing standards for poultrymeat - **ID**: eu-reg-2026-0344-implementing-regulation-eu-2026-344-of-6-october-2025-laying - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This implementing regulation lays down common rules for the application of marketing standards for poultrymeat under Delegated Regulation (EU) 2026/343. It sets out rules on checks of anatomical confo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2026-0344-implementing-regulation-eu-2026-344-of-6-october-2025-laying.json #### Commission Implementing Regulation (EU) 2026/387 of 23 February 2026 establishing the format of the European technical assessment pursuant to Regulation (EU) 2024/3110 of the European Parliament and of the Council - **ID**: eu-reg-2026-0387-implementing-regulation-eu-2026-387-of-23-february-2026-esta - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Commission Implementing Regulation (EU) 2026/387, adopted on 23 February 2026, establishes the format of the European technical assessment (ETA) under Regulation (EU) 2024/3110 on construction product... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2026-0387-implementing-regulation-eu-2026-387-of-23-february-2026-esta.json #### Council Regulation (EC) 1197/98 - ECB Staff Taxation - **ID**: eu-regulation-1197-98-ecb-staff-tax - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Council Regulation amends the conditions and procedures for applying the tax for the benefit of the European Communities. Specifically, it extends the application of this internal EU tax to the s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-regulation-1197-98-ecb-staff-tax.json #### Commission Implementing Regulation (EU) 2019/2171 - Anti-Dumping Investigation - **ID**: eu-regulation-2019-2171-anti-dumping-tungsten - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Implementing Regulation initiates an ex-officio investigation into the possible circumvention of anti-dumping measures on tungsten electrodes originating in the People's Republic of China. It tar... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-regulation-2019-2171-anti-dumping-tungsten.json #### Directive (EU) 2020/1828 of the European Parliament and of the Council of 25 November 2020 on representative actions for the protection of the collective interests of consumers and repealing Directive 2009/22/EC - **ID**: eu-representative-actions-directive-2020 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This directive establishes a harmonised EU-wide mechanism for consumer collective redress, allowing designated 'qualified entities' to bring representative actions against traders for infringements of... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-representative-actions-directive-2020.json #### EU Directive 2019/1023 on Preventive Restructuring Frameworks, Discharge of Debt and Disqualifications (Restructuring and Insolvency Directive) - **ID**: eu-restructuring-insolvency-directive-2019-1023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2019/1023 of the European Parliament and of the Council of 20 June 2019 on preventive restructuring frameworks, on discharge of debt and disqualifications, and on measures to increase t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-restructuring-insolvency-directive-2019-1023.json #### EU Rome I Regulation 593/2008 - Applicable Law for Contractual Obligations - **ID**: eu-rome-i-regulation-593-2008 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: Regulation (EC) 593/2008 (Rome I) determines which national law governs contractual obligations in cross-border civil and commercial matters within the EU. It allows parties to freely choose the appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-rome-i-regulation-593-2008.json #### EU Rome II Regulation 864/2007 - Applicable Law for Non-Contractual Obligations - **ID**: eu-rome-ii-regulation-864-2007 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: Regulation (EC) 864/2007 (Rome II) establishes uniform EU rules for determining which country's law governs non-contractual obligations - principally tort (delict), unjust enrichment, negotiorum gesti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-rome-ii-regulation-864-2007.json #### EU Shareholder Rights Directive II - Directive 2017/828/EU (SRD II) - **ID**: eu-shareholder-rights-directive-ii-2017-828 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2017/828 (SRD II) strengthens shareholder engagement in listed EU companies by requiring institutional investors and asset managers to develop and publicly disclose stewardship/engageme... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-shareholder-rights-directive-ii-2017-828.json #### Commission Implementing Decision (EU) 2021/914 of 4 June 2021 on standard contractual clauses for the transfer of personal data to third countries pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council - **ID**: eu-standard-contractual-clauses-2021 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: These Standard Contractual Clauses (SCCs) provide a legal mechanism under GDPR for transferring personal data from the EU/EEA to third countries lacking an adequacy decision. Data exporters and import... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-standard-contractual-clauses-2021.json #### EU State Aid TFEU Articles 107-108 - Selective Advantage Test, Notification Obligation, General Block Exemption Regulation (GBER), De Minimis Thresholds and Recovery of Unlawful Aid with Interest - **ID**: eu-state-aid-article-107-108-tfeu-framework - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Under Article 107(1) of the Treaty on the Functioning of the European Union (TFEU), any aid granted by an EU Member State or through state resources which distorts or threatens to distort competition ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-state-aid-article-107-108-tfeu-framework.json #### EU Takeover Directive 2004/25/EC - Mandatory Bid and Squeeze-Out - **ID**: eu-takeover-directive-2004-25 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive 2004/25/EC harmonises EU rules on public takeover bids for companies listed on EU regulated markets - mandating a mandatory bid obligation when acquiring 30% or more of voting rights (thresh... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-takeover-directive-2004-25.json #### Commission Regulation (EU) No 316/2014 of 21 March 2014 on the application of Article 101(3) of the Treaty on the Functioning of the European Union to categories of technology transfer agreements - **ID**: eu-technology-transfer-block-exemption-316-2014 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation provides a 'safe harbour' from EU competition law for technology transfer agreements (e.g., patent and know-how licensing) between parties whose market shares do not exceed 20% for com... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-technology-transfer-block-exemption-316-2014.json #### Treaty on the Functioning of the European Union (TFEU) Article 101 - Prohibition of Anti-Competitive Agreements - **ID**: eu-tfeu-article-101-cartel-prohibition - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Article 101(1) of the TFEU prohibits all agreements, decisions, and concerted practices between undertakings which may affect trade between EU Member States and which have as their object or effect th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-tfeu-article-101-cartel-prohibition.json #### Guidance on the Commission's enforcement priorities in applying Article 102 of the Treaty on the Functioning of the European Union to abusive exclusionary conduct by dominant undertakings - **ID**: eu-tfeu-article-102-abuse-of-dominance - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Under Article 102 of the TFEU, undertakings holding a dominant position within the EU internal market are prohibited from abusing that position, particularly through conduct that excludes competitors ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-tfeu-article-102-abuse-of-dominance.json #### Directive (EU) 2016/943 of the European Parliament and of the Council of 8 June 2016 on the protection of undisclosed know-how and business information (trade secrets) against their unlawful acquisition, use and disclosure - **ID**: eu-trade-secrets-directive-2016 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This directive establishes a harmonized EU-wide legal framework for protecting trade secrets by defining what constitutes a trade secret (Article 2) and outlining what constitutes unlawful acquisition... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-trade-secrets-directive-2016.json #### Directive (EU) 2016/943 of the European Parliament and of the Council of 8 June 2016 on the protection of undisclosed know-how and business information (trade secrets) against their unlawful acquisition, use and disclosure - **ID**: eu-trade-secrets-directive-2016-943 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This directive establishes a harmonized legal framework across the EU for protecting trade secrets against unlawful acquisition, use, and disclosure. It applies to any natural or legal person lawfully... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-trade-secrets-directive-2016-943.json #### Directive (EU) 2016/943 on the protection of undisclosed know-how and business information (trade secrets) against their unlawful acquisition, use and disclosure - Article 10 - **ID**: eu-trade-secrets-directive-2016-943-article-10-remedies-infringement - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Organizations holding trade secrets may request judicial authorities to order provisional and precautionary measures against alleged infringers, including cessation of use, prohibition of infringing g... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-trade-secrets-directive-2016-943-article-10-remedies-infringement.json #### Directive (EU) 2016/943 on the protection of undisclosed know-how and business information (trade secrets) against their unlawful acquisition, use and disclosure - Article 4 - **ID**: eu-trade-secrets-directive-2016-943-article-4-lawful-acquisition-trade-secrets - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This article establishes the right for trade secret holders to apply for legal measures, procedures, and remedies to prevent or obtain redress for the unlawful acquisition, use, or disclosure of their... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-trade-secrets-directive-2016-943-article-4-lawful-acquisition-trade-secrets.json #### EU Trade Secrets Directive 2016/943 - Unlawful Acquisition, Disclosure & Civil Remedies - **ID**: eu-trade-secrets-directive-2016-943-ip-protection - **Category**: Legal & IP Sovereignty - **Version**: 2.0 - **BLUF**: Directive 2016/943 harmonizes EU trade secret protection by defining lawful secrecy standards, prohibiting unlawful acquisition or disclosure, and providing civil injunction and damages remedies - cri... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-trade-secrets-directive-2016-943-ip-protection.json #### EU Trade Secrets Directive 2016/943 - Protection Against Misappropriation and Civil Remedies - **ID**: eu-trade-secrets-directive-2016-943-misappropriation-protection-civil-remedies - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2016/943 harmonises trade secret protection across EU Member States, defining trade secrets as information that is secret, has commercial value because it is secret, and has been subjec... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-trade-secrets-directive-2016-943-misappropriation-protection-civil-remedies.json #### EU Trade Mark Regulation 2017/1001 -- EUTM Registration and Enforcement at EUIPO - **ID**: eu-trademark-regulation-2017-1001 - **Category**: Legal & IP Sovereignty - **Version**: 2024.1.0 - **BLUF**: Regulation (EU) 2017/1001 (the EU Trade Mark Regulation, EUTMR) codifies the EU Trade Mark (EUTM) system administered by the European Union Intellectual Property Office (EUIPO) in Alicante. A single E... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-trademark-regulation-2017-1001.json #### EU Unified Patent Court Agreement - UPCA 2012 and Unitary Patent System - **ID**: eu-unified-patent-court-agreement-2012 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Unified Patent Court (UPC) became operational on 1 June 2023, creating a specialist pan-European patent court with jurisdiction over European patents and EU Unitary Patents across 18 participating... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-unified-patent-court-agreement-2012.json #### Commission Implementing Decision (EU) 2023/1795 on the adequate level of protection of personal data under the EU-US Data Privacy Framework - **ID**: eu-us-dpf-2023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This adequacy decision under GDPR Article 45 establishes the EU-US Data Privacy Framework (DPF) as a valid mechanism for transferring personal data from the EU/EEA to US organizations that self-certif... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-us-dpf-2023.json #### Commission Regulation (EU) 2022/720 of 10 May 2022 on the application of Article 101(3) of the Treaty on the Functioning of the European Union to categories of vertical agreements and concerted practices - **ID**: eu-vertical-block-exemption-regulation-2022-720 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation provides a 'safe harbour' for vertical agreements between suppliers and buyers, exempting them from the EU's prohibition on anti-competitive agreements under Article 101(1) TFEU. The e... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-vertical-block-exemption-regulation-2022-720.json #### EU Whistleblower Protection Directive 2019/1937 - Internal Reporting Channels, Anti-Retaliation, and Competent Authority Procedures - **ID**: eu-whistleblower-directive-2019-1937-reporting-channels-protection - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2019/1937 requires private entities with 50+ employees and public sector bodies to establish secure internal reporting channels for EU law violations, protects whistleblowers from all f... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-whistleblower-directive-2019-1937-reporting-channels-protection.json #### France Loi Informatique et Libertés 1978 (Law No. 78-17, as amended by Law No. 2018-493 implementing GDPR) - **ID**: fr-loi-informatique-liberte-1978 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Loi Informatique et Libertés (Law No. 78-17 of 6 January 1978 on Data Processing, Data Files, and Individual Liberties) is France's foundational data protection statute, one of the world's first s... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-loi-informatique-liberte-1978.json #### France Sapin II Anti-Corruption Law 2016 (Law No. 2016-1691 of 9 December 2016 on Transparency, Fight against Corruption, and Modernisation of Economic Life) - **ID**: fr-sapin-ii-anticorruption-2016 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Sapin II Anti-Corruption Law (Law No. 2016-1691 of 9 December 2016 on Transparency, Fight against Corruption, and Modernisation of Economic Life - Loi relative à la transparence, à la lutte contre... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-sapin-ii-anticorruption-2016.json #### Facing Facts: Best Practices For Common Uses of Facial Recognition Technologies - **ID**: ftc-facing-facts-facial-recognition - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: In October 2012, the Federal Trade Commission's Bureau of Consumer Protection issued a staff report titled 'Facing Facts: Best Practices For Common Uses of Facial Recognition Technologies.' This repor... - **Discovery URL**: https://bidda.com/api/v1/nodes/ftc-facing-facts-facial-recognition.json #### US GAAP Framework - **ID**: gaap-us-framework - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: United States Generally Accepted Accounting Principles establish the definitive standards for financial accounting and reporting as promulgated by the Financial Accounting Standards Board. This framew... - **Discovery URL**: https://bidda.com/api/v1/nodes/gaap-us-framework.json #### Data Protection Act, 2012 (Act 843) - **ID**: gh-dpa-2012 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Ghana Data Protection Act 2012 (Act 843) governs the processing of personal data by establishing the Data Protection Commission and mandating compliance with eight core data protection principles ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gh-dpa-2012.json #### Hague Adoption Convention 1993 - Intercountry Adoption Subsidiarity Principle and Central Authority Cooperation - **ID**: hague-adoption-convention-1993-intercountry-adoption - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Convention on Protection of Children and Co-operation in respect of Intercountry Adoption (Hague Adoption Convention) was adopted by the Hague Conference on Private International Law on 29 May 199... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-adoption-convention-1993-intercountry-adoption.json #### Hague Apostille Convention 1961 - Abolishing the Requirement of Legalisation for Foreign Public Documents - **ID**: hague-apostille-convention-1961 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Apostille Convention (125 State Parties, the largest Hague Conference convention as of April 2026) abolishes the multi-step legalisation chain for public documents exchanged between Contracting St... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-apostille-convention-1961.json #### Hague Child Abduction Convention 1980 - Civil Aspects of International Child Abduction - **ID**: hague-child-abduction-convention-1980 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Hague Convention on the Civil Aspects of International Child Abduction (1980) - 103 Contracting States - creates a Central Authority network and mandatory prompt-return mechanism for children wron... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-child-abduction-convention-1980.json #### Hague Convention on Choice of Court Agreements 2005 - Exclusive Jurisdiction Clauses, Recognition and Enforcement of Foreign Judgments in Civil and Commercial Matters - **ID**: hague-choice-of-court-convention-2005 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Convention requires courts in Contracting States to respect exclusive choice of court agreements in international civil or commercial matters and to recognize and enforce judgments from the chose... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-choice-of-court-convention-2005.json #### Hague Convention 1954 Protection of Cultural Property in Armed Conflict (with 1999 Second Protocol) - **ID**: hague-convention-1954-cultural-property-armed-conflict - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Convention for the Protection of Cultural Property in the Event of Armed Conflict (Hague Convention 1954) was adopted in The Hague on 14 May 1954 and entered into force on 7 August 1956. It is the... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-convention-1954-cultural-property-armed-conflict.json #### Hague Evidence Convention 1970 - Taking of Evidence Abroad in Civil or Commercial Matters - **ID**: hague-convention-evidence-1970 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Hague Evidence Convention (Convention on the Taking of Evidence Abroad in Civil or Commercial Matters, 1970 - 64 Contracting Parties as of April 2026) establishes the primary international mechani... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-convention-evidence-1970.json #### Hague Convention on the Service Abroad of Judicial and Extrajudicial Documents in Civil or Commercial Matters (1965) - **ID**: hague-convention-service-abroad - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This international treaty establishes a standardized and efficient method for serving legal documents between signatory countries in civil or commercial matters. It requires each state to designate a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-convention-service-abroad.json #### Hague Evidence Convention 1970 - Taking of Evidence Abroad in Civil or Commercial Matters and Letters of Request - **ID**: hague-evidence-convention-1970-letters-of-request - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Convention on the Taking of Evidence Abroad in Civil or Commercial Matters (Hague Evidence Convention) was adopted by the Hague Conference on Private International Law on 18 March 1970 and entered... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-evidence-convention-1970-letters-of-request.json #### Hague Judgments Convention 2019 - Recognition and Enforcement of Foreign Civil Judgments - **ID**: hague-judgments-convention-2019 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Hague Convention on the Recognition and Enforcement of Foreign Judgments in Civil or Commercial Matters 2019 (HCCH Judgments Convention) entered into force 1 September 2023 - the first multilatera... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-judgments-convention-2019.json #### Hague Service Convention 1965 - Service of Documents Abroad in Civil or Commercial Matters - **ID**: hague-service-convention-1965 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Hague Service Convention (Convention on the Service Abroad of Judicial and Extrajudicial Documents in Civil or Commercial Matters, 1965 - 83 Contracting Parties as of April 2026) is the primary in... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-service-convention-1965.json #### Hong Kong Companies Ordinance (Cap 622) - **ID**: hk-companies-ordinance-cap-622 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Companies Ordinance (Cap 622, Ordinance No. 28 of 2012) is Hong Kong's principal corporate law statute. The Ordinance was in force from 3 March 2014, replacing the predecessor Companies Ordinance ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-companies-ordinance-cap-622.json #### Personal Data (Privacy) Ordinance (Cap. 486) as amended by the Personal Data (Privacy) (Amendment) Ordinance 2021 - **ID**: hong-kong-pdpo-2021-amendment - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This amendment to Hong Kong's Personal Data (Privacy) Ordinance (PDPO) introduces a two-tiered anti-doxxing regime under Section 64, criminalizing the non-consensual disclosure of personal data with i... - **Discovery URL**: https://bidda.com/api/v1/nodes/hong-kong-pdpo-2021-amendment.json #### Audit Quality (ISQM 1) - **ID**: iaasb-isqm-1-quality - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Compliance with International Standard on Quality Management 1 requires the establishment and operation of a comprehensive System of Quality Management (SOQM). Central to this framework is governance ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iaasb-isqm-1-quality.json #### ICC Rules of Arbitration (2021) - **ID**: icc-arbitration-rules-2021 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The ICC Rules of Arbitration provide a comprehensive framework for conducting international commercial arbitrations, governing the entire process from the initial request to the final award. These rul... - **Discovery URL**: https://bidda.com/api/v1/nodes/icc-arbitration-rules-2021.json #### Incoterms 2020 Master - **ID**: icc-incoterms-master - **Category**: Legal & IP Sovereignty - **Version**: 1.1.1 - **BLUF**: Adherence to the eleven official trade terms within the International Chamber of Commerce Incoterms® 2020 rules is systematically enforced, defining critical obligations, costs, and the transfer of ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/icc-incoterms-master.json #### ICSID Convention 1965 - Settlement of Investment Disputes - **ID**: icsid-convention-1965-investment-disputes - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The ICSID Convention establishes the International Centre for Settlement of Investment Disputes under World Bank auspices, providing the primary international arbitration framework for investor-state ... - **Discovery URL**: https://bidda.com/api/v1/nodes/icsid-convention-1965-investment-disputes.json #### Indonesia Personal Data Protection Law (UU PDP) No. 27 of 2022 - **ID**: id-pdp-law-2022 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Indonesia's Personal Data Protection (PDP) Law establishes a comprehensive framework for processing the personal data of Indonesian subjects, applicable to entities both within and outside Indonesia. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/id-pdp-law-2022.json #### IFAC Ethics for Accountants - **ID**: ifac-ethics-accountants - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Compliance with the IESBA International Code of Ethics for Professional Accountants is operationalized through the acknowledgment of five fundamental principles: integrity, objectivity, professional c... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifac-ethics-accountants.json #### IFRS Global Standards - **ID**: ifrs-global-accounting - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Comprehensive adherence to International Financial Reporting Standards is mandated to ensure global financial integrity and transparency. This control framework requires strict application of foundati... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-global-accounting.json #### IIA Internal Audit (IPPF) - **ID**: iia-internal-audit-ippf - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Operational integrity and governance are upheld through rigorous adherence to the Institute of Internal Auditors' International Professional Practices Framework (IPPF), which establishes mandatory gui... - **Discovery URL**: https://bidda.com/api/v1/nodes/iia-internal-audit-ippf.json #### ILO Fundamental Rights at Work - **ID**: ilo-fundamental-rights-work - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The ILO Declaration on Fundamental Principles and Rights at Work (1998, amended 2022) identifies five categories of fundamental principles and rights that all ILO Member States must respect and promot... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-fundamental-rights-work.json #### India Companies Act 2013 (Act No. 18 of 2013) - **ID**: in-companies-act-2013 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Companies Act 2013 (Act No. 18 of 2013) is India's principal statute governing the incorporation, management, and dissolution of companies, receiving Presidential assent on 29 August 2013 and admi... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-companies-act-2013.json #### India MeitY IT Rules (Synthetic Content Amendment) - **ID**: in-meity-synthetic-content - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Mandatory disclosure, verification, and visual/audio labelling requirements for AI-generated synthetic content by Significant Social Media Intermediaries (SSMIs) operating in India. - **Discovery URL**: https://bidda.com/api/v1/nodes/in-meity-synthetic-content.json #### The Arbitration and Conciliation Act, 1996 (as amended by Act No. 37 of 2021) - **ID**: india-arbitration-conciliation-act-1996-amendment-2021 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The 2021 amendment to India's Arbitration and Conciliation Act introduces mandatory automatic stay of arbitral awards upon filing of a challenge if fraud or public policy violation is alleged, establi... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-arbitration-conciliation-act-1996-amendment-2021.json #### Foreign Contribution (Regulation) Act, 2010 - **ID**: india-foreign-contribution-regulation-act-2010-fcra - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Foreign Contribution (Regulation) Act, 2010 regulates the acceptance and utilization of foreign contribution or foreign hospitality by individuals, associations, and NGOs in India. It mandates pri... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-foreign-contribution-regulation-act-2010-fcra.json #### Law of the Republic of Indonesia Number 27 of 2022 concerning Personal Data Protection (UU PDP) - **ID**: indonesia-pdp-law-2022-personal-data - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Indonesia's Personal Data Protection Law (UU PDP) requires data controllers and processors to obtain a valid lawful basis for processing personal data of Indonesian subjects, fulfill data subject righ... - **Discovery URL**: https://bidda.com/api/v1/nodes/indonesia-pdp-law-2022-personal-data.json #### ISDS (Investor-State Dispute) - **ID**: isds-investor-state-dispute - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Investor-State Dispute Settlement (ISDS) is an international legal mechanism that allows foreign investors to bring claims against a host state for alleged violations of a bilateral investment treaty ... - **Discovery URL**: https://bidda.com/api/v1/nodes/isds-investor-state-dispute.json #### Audit Guidelines (ISO 19011) - **ID**: iso-19011-audit-guidelines - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Compliance with this node ensures the establishment and management of a systematic audit programme guided by the core principles articulated in ISO 19011:2018. A foundational requirement is that an `a... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-19011-audit-guidelines.json #### Project Management (ISO 21500) - **ID**: iso-21500-project-mgt - **Category**: Legal & IP Sovereignty - **Version**: 1.1.1 - **BLUF**: Conformance with this node mandates adherence to structured project management principles benchmarked against ISO 21500. Enterprise initiatives must be formally authorized via an evidence-based requir... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-21500-project-mgt.json #### Biz Continuity (ISO 22301) - **ID**: iso-22301-biz-continuity - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Compliance with this node mandates the implementation and maintenance of a comprehensive Business Continuity Management System (BCMS) in alignment with ISO 22301 requirements. Top management must form... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-22301-biz-continuity.json #### ISO/IEC 27701:2019 Security techniques - Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management - Requirements and guidelines - **ID**: iso-27701-privacy-information-management - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This international standard specifies requirements for establishing, implementing, maintaining, and continually improving a Privacy Information Management System (PIMS) as an extension to an ISO/IEC 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27701-privacy-information-management.json #### Risk Management (ISO 31000) - **ID**: iso-31000-risk-mgt - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Organizational compliance with established international risk management principles necessitates a structured, integrated, and dynamic approach to identifying, analyzing, and treating uncertainty. The... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-31000-risk-mgt.json #### Compliance Mgt (ISO 37301) - **ID**: iso-37301-compliance - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Effective implementation of an ISO 37301 compliant framework mandates demonstrated leadership and commitment from top management and its governing body, evidenced by verified commitment and a publishe... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-37301-compliance.json #### ISO 37301:2021 Compliance Management Systems - Requirements with Guidance for Use - **ID**: iso-37301-compliance-2021 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: ISO 37301:2021 provides a certifiable framework for establishing, implementing, maintaining, and continually improving a Compliance Management System (CMS). It requires organizations to integrate comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-37301-compliance-2021.json #### ISO 37301 (Compliance MS) - **ID**: iso-37301-compliance-ms - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: ISO 37301:2021 is the global standard for Compliance Management Systems (CMS). It specifies requirements and provides guidelines for establishing, developing, implementing, evaluating, maintaining, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-37301-compliance-ms.json #### Collaborative Ops (ISO 44001) - **ID**: iso-44001-collaborative - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Operationalizing collaborative business relationships under ISO 44001 demands rigorous adherence to a structured framework for joint activities and governance. Compliance mandates an active relationsh... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-44001-collaborative.json #### Lab Competence (ISO 17025) - **ID**: iso-iec-17025-lab - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Compliance with ISO 17025 necessitates a comprehensive framework for establishing and maintaining laboratory competence. The standard mandates that formal, documented competence requirements exist for... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-17025-lab.json #### Open Source (ISO 5230) - **ID**: iso-iec-5230-openchain - **Category**: Legal & IP Sovereignty - **Version**: 1.1.1 - **BLUF**: ISO/IEC 5230:2020 (OpenChain) is the international standard for open source software license compliance, defining the minimum requirements for a quality open source compliance program that enables org... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-5230-openchain.json #### Italy Decreto Legislativo 231/2001 - Disciplina della responsabilita amministrativa delle persone giuridiche (Corporate Criminal Liability) - **ID**: it-d-lgs-231-2001-corporate-criminal-liability - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Decreto Legislativo 8 giugno 2001 n. 231 establishes the administrative (quasi-criminal) liability of legal persons, companies and unincorporated associations for predicate offences committed in their... - **Discovery URL**: https://bidda.com/api/v1/nodes/it-d-lgs-231-2001-corporate-criminal-liability.json #### Japan Companies Act 2005 (Act No. 86 of 2005, Kaisha-hō) - Corporate Governance - **ID**: jp-companies-act-2005 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Companies Act 2005 (Act No. 86 of 2005, Kaisha-hō, enforced 1 May 2006) is Japan's primary legislation governing the formation, administration, and dissolution of stock companies (kabushiki-kaisha... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-companies-act-2005.json #### The Data Protection Act, 2019 (No. 24 of 2019) - **ID**: ke-dpa-2019 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Kenya Data Protection Act (DPA) governs the processing of personal data, establishing the Office of the Data Protection Commissioner and outlining the rights of data subjects. It applies to data c... - **Discovery URL**: https://bidda.com/api/v1/nodes/ke-dpa-2019.json #### South Korea PIPA - **ID**: korea-pipa-standard - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The Personal Information Protection Act (PIPA) of South Korea is one of the world's strictest data protection regimes, mandating specific opt-in consent for sensitive information and imposing criminal... - **Discovery URL**: https://bidda.com/api/v1/nodes/korea-pipa-standard.json #### South Korea Personal Information Protection Act (PIPA) 2020 Amendment - Data 3 Act and 2023 Amendments - **ID**: kr-personal-information-protection-act-pipa-2020 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Personal Information Protection Act (PIPA) is South Korea's primary data privacy law, originally enacted in 2011 and substantially amended by the Data 3 Act in 2020 (effective August 2020) and fur... - **Discovery URL**: https://bidda.com/api/v1/nodes/kr-personal-information-protection-act-pipa-2020.json #### Personal Information Protection Act (as amended 2023) - **ID**: kr-pipa-2023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The 2023 amendment to South Korea's Personal Information Protection Act (PIPA) introduces significant new data subject rights, including the right to data portability (Article 35-2) and rights concern... - **Discovery URL**: https://bidda.com/api/v1/nodes/kr-pipa-2023.json #### Kuwait Personal Data Protection Law No.2/2023 - Rights of Personal Data Subjects - **ID**: kw-pdpl-2023-data-subject-rights - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: Kuwait Personal Data Protection Law No. 2 of 2023 grants data subjects comprehensive rights: right to be informed of processing; right to access their personal data; right to correct inaccurate data; ... - **Discovery URL**: https://bidda.com/api/v1/nodes/kw-pdpl-2023-data-subject-rights.json #### Kuwait Personal Data Protection Law No.2/2023 - Lawful Conditions for Processing Personal Data - **ID**: kw-pdpl-2023-lawful-processing-conditions - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: Kuwait Personal Data Protection Law No. 2 of 2023 requires that all processing of personal data be based on a lawful condition: explicit consent of the data subject; necessity for the performance of a... - **Discovery URL**: https://bidda.com/api/v1/nodes/kw-pdpl-2023-lawful-processing-conditions.json #### Conveyancing Quality (UK) - **ID**: law-society-conveyancing - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Evaluation of a firm's adherence to UK conveyancing standards necessitates a multi-faceted compliance assessment, centered on the Law Society Conveyancing Quality Scheme Core Practice Management Stand... - **Discovery URL**: https://bidda.com/api/v1/nodes/law-society-conveyancing.json #### Madrid System (Trademarks) - **ID**: madrid-system-trademarks - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Compliance with the Madrid System for the International Registration of Marks is affirmed based on current data parameters. The application fulfills essential procedural and jurisdictional prerequisit... - **Discovery URL**: https://bidda.com/api/v1/nodes/madrid-system-trademarks.json #### Mauritius Data Protection Act 2017 - **ID**: mu-dpa-2017 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Mauritius Data Protection Act 2017 (DPA) establishes a comprehensive legal framework for the protection of personal data, closely aligned with the EU's GDPR. It applies to all data controllers and... - **Discovery URL**: https://bidda.com/api/v1/nodes/mu-dpa-2017.json #### Federal Law on Protection of Personal Data Held by Private Parties (Ley Federal de Protección de Datos Personales en Posesión de los Particulares) - **ID**: mx-lfpdppp-2010 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This law regulates the processing of personal data by private entities in Mexico, mandating adherence to principles of legality, consent, information, quality, purpose, loyalty, proportionality, and r... - **Discovery URL**: https://bidda.com/api/v1/nodes/mx-lfpdppp-2010.json #### New York Convention 1958 - Recognition and Enforcement of Foreign Arbitral Awards - **ID**: new-york-convention-1958-foreign-arbitral-awards - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Convention on the Recognition and Enforcement of Foreign Arbitral Awards, adopted on 10 June 1958 in New York and entered into force on 7 June 1959, has 172 Parties and is universally regarded as ... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-york-convention-1958-foreign-arbitral-awards.json #### Protecting PII (NIST 800-122) - **ID**: nist-800-122-pii - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: NIST Special Publication 800-122 (Guide to Protecting the Confidentiality of Personally Identifiable Information) provides a comprehensive framework for federal agencies and their contractors to ident... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-800-122-pii.json #### NIST Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management - **ID**: nist-privacy-framework-1-0 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The NIST Privacy Framework is a voluntary tool for organizations to manage privacy risk by structuring a risk-based approach through its Core (Functions, Categories, Subcategories), Profiles, and Impl... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-privacy-framework-1-0.json #### Notary Public Standards - **ID**: notary-public-standard - **Category**: Legal & IP Sovereignty - **Version**: 1.1.1 - **BLUF**: Compliance with established Notary Public Standards mandates rigorous adherence to procedural and documentary requirements for all notarial acts. A fundamental prerequisite is the satisfactory identif... - **Discovery URL**: https://bidda.com/api/v1/nodes/notary-public-standard.json #### New Zealand Companies Act 1993 - Incorporation Duties of Directors and Insolvency - **ID**: nz-companies-act-1993 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Companies Act 1993 governs the incorporation, management, and liquidation of companies in New Zealand by providing for share allotments and shareholder rights, fundamental duties of directors incl... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-companies-act-1993.json #### OECD Competition Assessment Principles 2019 - Regulatory Impact Assessment for Competition Policy, Market Study Toolkit, Sector Screening and OECD Competition Law and Policy Peer Review Framework - **ID**: oecd-competition-assessment-principles-2019 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This OECD framework provides a methodology for governments and regulators to identify and assess unnecessary restraints on market competition within existing or proposed laws and regulations. It requi... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-competition-assessment-principles-2019.json #### OECD Corporate Governance - **ID**: oecd-corporate-governance-principles - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The G20/OECD Principles of Corporate Governance are the international standard for corporate governance. Revised in 2023, they provide a framework for policy makers and corporations to ensure institut... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-corporate-governance-principles.json #### OECD Guidelines (Multinationals) - **ID**: oecd-guidelines-multinational-ent - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The OECD Guidelines for Multinational Enterprises on Responsible Business Conduct (RBC) are the most comprehensive international standard on business conduct. Revised in 2023, they provide recommendat... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-guidelines-multinational-ent.json #### OECD Guidelines on the Protection of Privacy and Transborder Flows of Personal Data (2013 Revision) - **ID**: oecd-privacy-guidelines-2013 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The OECD Privacy Guidelines establish eight core principles for the protection of personal data in both public and private sectors, promoting international data flows while upholding privacy rights. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-privacy-guidelines-2013.json #### Oman Personal Data Protection Law Royal Decree No.6/2022 - Rights of Personal Data Subjects - **ID**: om-pdpl-2022-data-subject-rights - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: Oman Personal Data Protection Law (Royal Decree No. 6/2022) grants data subjects enforceable rights: right to be informed of processing; right to access personal data held; right to correct inaccurate... - **Discovery URL**: https://bidda.com/api/v1/nodes/om-pdpl-2022-data-subject-rights.json #### Oman Personal Data Protection Law Royal Decree No.6/2022 - Lawful Conditions for Processing Personal Data - **ID**: om-pdpl-2022-lawful-processing-conditions - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: Oman Personal Data Protection Law (Royal Decree No. 6/2022) establishes lawful conditions for personal data processing, requiring one of: explicit consent of the data subject; necessity for a contract... - **Discovery URL**: https://bidda.com/api/v1/nodes/om-pdpl-2022-lawful-processing-conditions.json #### Paris Convention (IP) - **ID**: paris-convention-industrial-property - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The Paris Convention for the Protection of Industrial Property (1883) is the foundational international treaty for IP rights. It introduced the 'Right of Priority' and 'National Treatment', ensuring t... - **Discovery URL**: https://bidda.com/api/v1/nodes/paris-convention-industrial-property.json #### PCAOB Auditing Standards - **ID**: pcaob-audit-standards - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Adherence to Public Company Accounting Oversight Board (PCAOB) auditing standards is substantiated through a meticulous review of engagement criteria. Foundational requirements are met, as the firm’s ... - **Discovery URL**: https://bidda.com/api/v1/nodes/pcaob-audit-standards.json #### Data Privacy Act of 2012 (Republic Act No. 10173) - **ID**: ph-dpa-2012 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Philippines Data Privacy Act of 2012 (DPA) governs the processing of all personal information, establishing the rights of data subjects and the obligations of personal information controllers (PIC... - **Discovery URL**: https://bidda.com/api/v1/nodes/ph-dpa-2012.json #### PMI Code of Ethics - **ID**: pmi-code-ethics - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Compliance with the Project Management Institute Code of Ethics necessitates a rigorous adherence to four foundational values: Responsibility, Respect, Fairness, and Honesty, as mandated by governing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/pmi-code-ethics.json #### Personal Data Privacy Protection Law No. 13 of 2016 - **ID**: qa-pdppl-2016 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Qatar's PDPPL governs the processing of personal data for individuals within the state, mandating that data controllers obtain explicit consent, adhere to principles of legality and transparency, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/qa-pdppl-2016.json #### Qatar PDPPL Law No.13/2016 - Article 4: Conditions for Lawful Personal Data Processing - **ID**: qa-pdppl-2016-article-4-conditions-lawful-processing - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: Qatar Personal Data Privacy Protection Law No. 13 of 2016 Article 4 establishes the conditions under which personal data may be lawfully processed. Processing requires the data subject's explicit writ... - **Discovery URL**: https://bidda.com/api/v1/nodes/qa-pdppl-2016-article-4-conditions-lawful-processing.json #### Qatar PDPPL Law No.13/2016 - Article 9: Rights of Personal Data Subjects - **ID**: qa-pdppl-2016-article-9-data-subject-rights - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: Qatar Personal Data Privacy Protection Law No. 13 of 2016 Article 9 grants data subjects five enforceable rights: right to access their personal data; right to correct inaccurate or incomplete data; r... - **Discovery URL**: https://bidda.com/api/v1/nodes/qa-pdppl-2016-article-9-data-subject-rights.json #### RICS Valuation - Global - **ID**: rics-valuation-global - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Compliance with the RICS Valuation - Global standards mandates a comprehensive set of procedural and documentary requirements for all valuation assignments. This framework verifies that the individual... - **Discovery URL**: https://bidda.com/api/v1/nodes/rics-valuation-global.json #### Rome Statute of the International Criminal Court - 1998 - **ID**: rome-statute-1998-international-criminal-court - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Rome Statute establishes the ICC's jurisdiction over genocide (Article 6), crimes against humanity (Article 7 - 11 categories including enslavement and forced labour), and war crimes (Article 8 - ... - **Discovery URL**: https://bidda.com/api/v1/nodes/rome-statute-1998-international-criminal-court.json #### Rwanda Law No. 058/2021 of 13/10/2021 on Protection of Personal Data and Privacy - **ID**: rw-pdp-2021 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This law establishes the legal framework for the protection of personal data and privacy for natural persons in Rwanda, applying to any data controller or processor in Rwanda and those outside Rwanda ... - **Discovery URL**: https://bidda.com/api/v1/nodes/rw-pdp-2021.json #### Saudi Arabia Personal Data Protection Law (PDPL) Royal Decree M/19 2021 - **ID**: sa-pdpl-2021 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Saudi Personal Data Protection Law (PDPL) establishes the primary requirements for organizations that process the personal data of Saudi residents, mandating a legal basis for processing, such as ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-pdpl-2021.json #### Saudi Arabia PDPL Royal Decree M/19 - Article 5: Conditions and Lawful Bases for Personal Data Processing - **ID**: sa-pdpl-2021-article-5-lawful-processing-bases - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: Saudi Arabia Personal Data Protection Law (Royal Decree No. M/19, 2021) Article 5 establishes the conditions under which personal data may be lawfully processed. Processing is lawful only where: the d... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-pdpl-2021-article-5-lawful-processing-bases.json #### Saudi Arabia PDPL Royal Decree M/19 - Article 8: Rights of Personal Data Subjects - **ID**: sa-pdpl-2021-article-8-data-subject-rights - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: Saudi Arabia Personal Data Protection Law (Royal Decree No. M/19, 2021) Article 8 grants data subjects four core rights: right to be informed of what personal data is collected and the purpose; right ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-pdpl-2021-article-8-data-subject-rights.json #### Sarbanes-Oxley Act (SOX) - **ID**: sarbanes-oxley-act-sox - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The Sarbanes-Oxley Act of 2002 (SOX) is a U.S. federal law that set new or expanded requirements for all U.S. public company boards, management, and public accounting firms. It was enacted in response... - **Discovery URL**: https://bidda.com/api/v1/nodes/sarbanes-oxley-act-sox.json #### SOX 404 (Controls Audit) - **ID**: sarbannes-oxley-404 - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Sarbanes-Oxley Section 404 compliance centers on a robust framework for Internal Control over Financial Reporting (ICFR). Effective adherence is demonstrated when management's annual ICFR assessment i... - **Discovery URL**: https://bidda.com/api/v1/nodes/sarbannes-oxley-404.json #### Saudi Arabia Personal Data Protection Law (PDPL) Royal Decree M/19 of 9/2/1443H - **ID**: saudi-ndmo-pdpl-2021-personal-data - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Saudi Personal Data Protection Law (PDPL), enforced by the Saudi Data & AI Authority (SDAIA) via the National Data Management Office (NDMO), governs the processing of personal data for individuals... - **Discovery URL**: https://bidda.com/api/v1/nodes/saudi-ndmo-pdpl-2021-personal-data.json #### Regulation S-P: Privacy of Consumer Financial Information and Safeguarding Customer Information - **ID**: sec-regulation-s-p-safeguarding - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Securities and Exchange Commission is adopting rule amendments to Regulation S-P that are designed to modernize and enhance the protections that Regulation S-P provides by addressing the expanded ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sec-regulation-s-p-safeguarding.json #### Singapore Companies Act 1967 (Cap. 50) - Corporate Governance and Director Duties - **ID**: sg-companies-act-1967 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Companies Act 1967 (Cap. 50) is Singapore's primary legislation governing the formation, administration, and winding up of companies, administered by the Accounting and Corporate Regulatory Author... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-companies-act-1967.json #### Singapore Insolvency Restructuring and Dissolution Act 2018 - **ID**: sg-insolvency-restructuring-dissolution-act-2018 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Insolvency, Restructuring and Dissolution Act 2018 (Singapore, No. 40 of 2018), in force 30 July 2020, consolidates all corporate and personal insolvency law in Singapore into a single statute, in... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-insolvency-restructuring-dissolution-act-2018.json #### Competition Act 2004 (Cap. 50B) - **ID**: singapore-competition-act-2004-cccs - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Singapore Competition Act 2004 prohibits agreements that prevent, restrict, or distort competition (Section 34), the abuse of a dominant market position (Section 47), and mergers that substantiall... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-competition-act-2004-cccs.json #### Singapore Patents Act Cap 221 & Trade Marks Act Cap 332 - IPOS Filing & IP Protection - **ID**: singapore-patents-act-cap-221-ipos-filing - **Category**: Legal & IP Sovereignty - **Version**: 2.0 - **BLUF**: Singapore's Patents Act (Cap 221) and Trade Marks Act (Cap 332) administered by IPOS establish a 20-year patent term with novelty and inventive step requirements, and a trade mark registration system ... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-patents-act-cap-221-ipos-filing.json #### Smart Contract Audit (SWC) - **ID**: smart-contract-audit-swc - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The Smart Contract Weakness Classification (SWC) Registry is the authoritative taxonomy of smart contract security vulnerabilities, maintained by the Ethereum security community and analogous to the C... - **Discovery URL**: https://bidda.com/api/v1/nodes/smart-contract-audit-swc.json #### SOA Code of Conduct - **ID**: soa-code-conduct - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Compliance with the Society of Actuaries (SOA) Code of Conduct necessitates a multifaceted verification process. An actuary must be qualified for an assignment and demonstrate complete adherence to al... - **Discovery URL**: https://bidda.com/api/v1/nodes/soa-code-conduct.json #### SOC 2 Trust Services Criteria for AI Environments - **ID**: soc2-security-criterion - **Category**: Legal & IP Sovereignty - **Version**: 1.1.1 - **BLUF**: SOC 2 (System and Organization Controls) Trust Services Criteria (TSC) for AI environments require rigorous mapping of security, availability, processing integrity, confidentiality, and privacy to the... - **Discovery URL**: https://bidda.com/api/v1/nodes/soc2-security-criterion.json #### Act on the Protection of Personal Information (as amended by Act No. 19234, Mar. 14, 2023) - **ID**: south-korea-pipa-2023-amendment - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This amendment to South Korea's Personal Information Protection Act (PIPA) expands the mandatory designation of a Data Protection Officer (DPO) to smaller entities based on revenue and data volume (Ar... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-korea-pipa-2023-amendment.json #### SRA Code of Conduct (UK) - **ID**: sra-code-conduct-uk - **Category**: Legal & IP Sovereignty - **Version**: 1.1.1 - **BLUF**: Compliance with the Solicitors Regulation Authority (SRA) Code of Conduct for Firms mandates a comprehensive operational framework to uphold the rule of law and the proper administration of justice. F... - **Discovery URL**: https://bidda.com/api/v1/nodes/sra-code-conduct-uk.json #### Law on Protection of Personal Data No. 6698 - **ID**: tr-kvkk-2016 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Turkish Law on Protection of Personal Data (KVKK) governs the processing of personal data for natural persons whose data is processed in Turkey. It requires data controllers to adhere to principle... - **Discovery URL**: https://bidda.com/api/v1/nodes/tr-kvkk-2016.json #### UAE Federal Law No. 15 of 2020 on Consumer Protection and its Executive Regulations - **ID**: uae-federal-consumer-protection-law-15-2020 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This law requires all suppliers in the UAE to ensure products and services are safe, provide clear and accurate information, and refrain from false or misleading advertising, establishing strict liabi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-federal-consumer-protection-law-15-2020.json #### UAE Federal Personal Data Protection Law (PDPL) Federal Decree-Law No. 45 of 2021 - Data Subject Rights, Processing Conditions, Cross-Border Transfer Rules, Controller Obligations and UAE Data Office Supervisory Role - **ID**: uae-pdpl-federal-decree-45-2021 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This law establishes the UAE's federal data protection framework, requiring controllers and processors to obtain data subject consent for processing personal data (Article 6), granting subjects specif... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-pdpl-federal-decree-45-2021.json #### UK Arbitration Act 2025 - Modernisation of Arbitration Act 1996 Including Governing Law Default and Summary Disposal Powers, Royal Assent 24 February 2025 - **ID**: uk-arbitration-act-2025-c-4 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Parties to UK-seated arbitrations, arbitral institutions, arbitrators, and counsel must, from the staggered commencement of the Arbitration Act 2025 (Royal Assent 24 February 2025), apply the amendmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-arbitration-act-2025-c-4.json #### UK Bribery Act 2010 Section 1 — Offences of Bribing Another Person - **ID**: uk-bribery-act-2010-section-1-offences-bribing-another-person - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: A person (P) commits an offence if P offers, promises or gives a financial or other advantage to another person, and either (Case 1) P intends the advantage to induce improper performance of a relevan... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-bribery-act-2010-section-1-offences-bribing-another-person.json #### UK Bribery Act 2010 Section 6 — Bribery of Foreign Public Officials - **ID**: uk-bribery-act-2010-section-6-bribery-foreign-public-officials - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: A person (P) who bribes a foreign public official (F) is guilty of an offence if P's intention is to influence F in F's capacity as a foreign public official AND P intends to obtain or retain business... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-bribery-act-2010-section-6-bribery-foreign-public-officials.json #### United Kingdom Companies Act 2006: Company Formation, Directors' General Duties (Sections 170-177), Members and Resolutions, Accounts and Audit, Share Capital, Unfair Prejudice Petition, and Statutory Auditors - **ID**: uk-companies-act-2006 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The United Kingdom Companies Act 2006, chapter 46 of 2006, is the principal United Kingdom statute consolidating and reforming company law for companies registered in the United Kingdom and is adminis... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-companies-act-2006.json #### UK Companies Act 2006 - General Duties of Directors (Sections 170-177) - **ID**: uk-companies-act-2006-directors-duties-sections-170-177 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UK Companies Act 2006 Part 10 Chapter 2 (Sections 170-177) codifies seven general duties owed by directors to the company: act within powers (S171); promote the success of the company (S172); exer... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-companies-act-2006-directors-duties-sections-170-177.json #### Competition Act 1998: Chapter I (Anti-Competitive Agreements) & Chapter II (Abuse of Dominant Position) Prohibitions - **ID**: uk-competition-act-1998-chapter-i-ii - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UK Competition Act 1998 prohibits agreements that prevent, restrict, or distort competition (Chapter I, Section 2) and the abuse of a dominant market position (Chapter II, Section 18). Infringemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-competition-act-1998-chapter-i-ii.json #### Copyright, Designs and Patents Act 1988, Section 94: Moral rights not assignable - **ID**: uk-copyright-designs-patents-act-1988-section-94-moral-rights-authors - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Organizations must ensure that moral rights conferred by Chapter IV of the Act are never assigned, as they are legally non-assignable. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-copyright-designs-patents-act-1988-section-94-moral-rights-authors.json #### Digital Markets, Competition and Consumers Act 2024 - Strategic Market Status (SMS) Designation, Pro-Competition Interventions, Conduct Requirements and Online Choice Architecture Rules - **ID**: uk-digital-markets-competition-consumers-act-2024 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Act empowers the UK's Competition and Markets Authority (CMA) to designate undertakings with 'Strategic Market Status' (SMS) in digital activities, imposing tailored conduct requirements and pro-... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-digital-markets-competition-consumers-act-2024.json #### Data Protection Act 2018 - **ID**: uk-dpa-2018 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UK Data Protection Act 2018 (DPA 2018) governs the processing of personal data in the UK, supplementing and tailoring the UK General Data Protection Regulation (UK GDPR). It applies to data contro... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-dpa-2018.json #### UK Enterprise Act 2002 - Merger Control: Substantial Lessening of Competition (SLC) Test, CMA Phase 1 (25 Working Days)/Phase 2 Review, Jurisdictional Thresholds and Divestiture Remedies - **ID**: uk-enterprise-act-2002-merger-control - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UK Enterprise Act 2002 empowers the Competition and Markets Authority (CMA) to review mergers that meet specific jurisdictional thresholds to assess whether they may result in a substantial lessen... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-enterprise-act-2002-merger-control.json #### UK Fraud Act 2006 - Statutory Offences of Fraud by False Representation Failure to Disclose and Abuse of Position - **ID**: uk-fraud-act-2006 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Fraud Act 2006 created a general offence of fraud committed in three ways including fraud by false representation, fraud by failing to disclose information when there is a legal duty to do so, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fraud-act-2006.json #### UK Fraud Act 2006 Section 1 — Fraud (General Offence) - **ID**: uk-fraud-act-2006-section-1-fraud-general-offence - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: A person is guilty of fraud if in breach of any of the three component offences: Section 2 (fraud by false representation), Section 3 (fraud by failing to disclose information), or Section 4 (fraud by... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fraud-act-2006-section-1-fraud-general-offence.json #### UK Fraud Act 2006 - Section 2 Fraud by False Representation - **ID**: uk-fraud-act-2006-section-2-fraud-by-false-representation - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 2 of the Fraud Act 2006 (UK) defines the offence of fraud by false representation. Subsection (1) provides that a person is in breach of this section if he (a) dishonestly makes a false repres... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fraud-act-2006-section-2-fraud-by-false-representation.json #### UK Human Rights Act 1998 - Domestic Incorporation of ECHR Rights - **ID**: uk-human-rights-act-1998 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Human Rights Act 1998 (1998 chapter 42, Royal Assent 9 November 1998, principal commencement 2 October 2000) gives further effect in United Kingdom domestic law to the rights and freedoms guarante... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-human-rights-act-1998.json #### UK Insolvency Act 1986 - **ID**: uk-insolvency-act-1986 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UK Insolvency Act 1986 (as amended by the Insolvency Act 2000, Enterprise Act 2002, Corporate Insolvency and Governance Act 2020) is the principal legislation governing corporate and personal inso... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-insolvency-act-1986.json #### UK Insolvency Act 1986 - Section 238 Transactions at an Undervalue (England and Wales) - **ID**: uk-insolvency-act-1986-section-238-transactions-at-undervalue - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 238 of the Insolvency Act 1986 (UK) is the England and Wales antecedent-transaction provision allowing an office-holder to challenge transactions at an undervalue entered into by the company b... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-insolvency-act-1986-section-238-transactions-at-undervalue.json #### UK Insolvency Act 1986 - Section 239 Preferences (England and Wales) - **ID**: uk-insolvency-act-1986-section-239-preferences - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 239 of the Insolvency Act 1986 (UK) is the England and Wales antecedent-transaction provision allowing an office-holder to challenge preferences given by the company before the onset of insolv... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-insolvency-act-1986-section-239-preferences.json #### UK Insolvency Act 1986 - Section 423 Transactions Defrauding Creditors - **ID**: uk-insolvency-act-1986-section-423-transactions-defrauding-creditors - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 423 of the Insolvency Act 1986 (UK) is the transactions-defrauding-creditors provision that allows a victim of a transaction at an undervalue to apply to the court for an order to restore the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-insolvency-act-1986-section-423-transactions-defrauding-creditors.json #### UK Intellectual Property Act 2014 - Design Rights, Registered Designs, and Unregistered Design Rights - **ID**: uk-intellectual-property-act-2014-design-rights-registered-unregistered - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UK Intellectual Property Act 2014 amended the Registered Designs Act 1949 and the Copyright, Designs and Patents Act 1988 (CDPA) to strengthen UK design protection. The UK provides three forms of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-intellectual-property-act-2014-design-rights-registered-unregistered.json #### UK Modern Slavery Act 2015 - Section 54 Transparency in Supply Chains - **ID**: uk-modern-slavery-act-2015-section-54-tisc - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: UK Modern Slavery Act 2015 Section 54 requires commercial organisations carrying on a business or part of a business in the UK with a total turnover of GBP 36 million or more to prepare a slavery and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-modern-slavery-act-2015-section-54-tisc.json #### Online Safety Act 2023, Section 189: Repeals in connection with offences under sections 179 and 181 - **ID**: uk-online-safety-act-2023-section-189-ofcom-codes - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This section repeals specific provisions concerning false and malicious communications within the Communications Act 2003, the Malicious Communications Act 1988, and the Malicious Communications (Nort... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-189-ofcom-codes.json #### Online Safety Act 2023, Section 34: Record-keeping and review duties - **ID**: uk-online-safety-act-2023-section-34-safety-duties - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Regulated search services must create and maintain detailed records of risk assessments and compliance measures, and regularly review their compliance with safety duties. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-section-34-safety-duties.json #### UK Public Order Act 2023 - Locking-On, Tunnelling, and Critical National Infrastructure Offences - **ID**: uk-public-order-act-2023-protest-restrictions - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Public Order Act 2023 (UK) creates new criminal offences targeting disruptive protest tactics. Section 1 creates the offence of locking on whereby a person attaches themselves to another person, o... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-public-order-act-2023-protest-restrictions.json #### UK Theft Act 1968 - **ID**: uk-theft-act-1968 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UK Theft Act 1968 (England and Wales; Scotland and Northern Ireland have separate provisions) codifies the principal property offences including theft (Section 1), robbery (Section 8), burglary (S... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-theft-act-1968.json #### Trade Marks Act 1994 Section 10: Infringement of registered trade mark. - **ID**: uk-trade-marks-act-1994-section-10-infringement-registered-trade-mark - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Organizations must not use a sign in the course of trade that is identical or similar to a registered trade mark in a manner that causes a likelihood of confusion, takes unfair advantage of its reputa... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-trade-marks-act-1994-section-10-infringement-registered-trade-mark.json #### Financial Services and Markets Act 2000 (Consolidated) - **ID**: uk-ukpga-2000-8-fsma-2000 - **Category**: Legal & IP Sovereignty - **Version**: 2.0.0 - **BLUF**: Consolidated node for all parts of the Financial Services and Markets Act 2000. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukpga-2000-8-fsma-2000.json #### UK Equality Act 2010 - Part 11 Advancement of equality - **ID**: uk-ukpga-2010-15-part-11-advancement-of-equality - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Outlines the Public Sector Equality Duty (PSED), requiring public authorities to have due regard to the need to eliminate discrimination, advance equality of opportunity, and foster good relations bet... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukpga-2010-15-part-11-advancement-of-equality.json #### UK Data Protection Act 2018 - **ID**: uk-ukpga-2018-12 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UK Data Protection Act 2018 is an Act to make provision for the regulation of the processing of information relating to individuals; to make provision in connection with the Information Commission... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukpga-2018-12.json #### UK Data Protection Act 2018 Part 3 Law Enforcement Processing - **ID**: uk-ukpga-2018-12-part-3-law-enforcement-processing - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Part 3 of the UK Data Protection Act 2018 governs the processing of personal data by competent authorities for law enforcement purposes. It transposes the EU Law Enforcement Directive (LED) into UK la... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukpga-2018-12-part-3-law-enforcement-processing.json #### UK Data Protection Act 2018 - PART 5: The Information Commissioner - **ID**: uk-ukpga-2018-12-part-5-the-information-commissioner - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: PART 5 of the UK Data Protection Act 2018 establishes the office, functions, and powers of the Information Commissioner as the independent regulatory authority for data protection and information righ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukpga-2018-12-part-5-the-information-commissioner.json #### UK Data Protection Act 2018 - Part 6: Enforcement of data protection legislation by the Information Commissioner - **ID**: uk-ukpga-2018-12-part-6-enforcement - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Part 6 of the UK Data Protection Act 2018 (sections 142-189) provides the statutory enforcement powers of the Information Commissioner's Office (ICO) under the UK General Data Protection Regulation an... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukpga-2018-12-part-6-enforcement.json #### UK Data Protection, Privacy and Electronic Communications (Amendments etc.) (EU Exit) Regulations 2019 - **ID**: uk-uksi-2019-419 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UK Data Protection, Privacy and Electronic Communications (Amendments etc.) (EU Exit) Regulations 2019 make amendments to legislation in relation to the regulation of the processing of personal da... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-uksi-2019-419.json #### UK Victims and Prisoners Act 2024 - Victims Code Statutory Footing and Infected Blood Compensation Scheme, Royal Assent 24 May 2024 - **ID**: uk-victims-and-prisoners-act-2024 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Criminal justice agencies in England and Wales (police forces, the Crown Prosecution Service, HMCTS, probation services, Youth Offending Teams, the Parole Board) and bodies providing services to victi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-victims-and-prisoners-act-2024.json #### UN CAT 1984 - Convention Against Torture and Other Cruel, Inhuman or Degrading Treatment or Punishment - **ID**: un-cat-1984-convention-against-torture - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Convention Against Torture and Other Cruel, Inhuman or Degrading Treatment or Punishment (CAT), adopted by the UN General Assembly on 10 December 1984 (Resolution 39/46) and entering into force on... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-cat-1984-convention-against-torture.json #### United Nations Convention on Contracts for the International Sale of Goods (CISG) - **ID**: un-cisg-1980 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The CISG establishes a uniform framework for international commercial contracts for the sale of goods, automatically applying when parties have their places of business in different Contracting States... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-cisg-1980.json #### United Nations Convention against Corruption (UNCAC) - **ID**: un-convention-against-corruption-uncac-2003 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UN Convention against Corruption is a legally binding multilateral treaty that obligates States Parties to implement comprehensive anti-corruption measures, including the criminalization of offens... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-convention-against-corruption-uncac-2003.json #### UN Convention on the Rights of the Child 1989 - Article 3 Best Interests, Article 12 Participation and General Principles - **ID**: un-convention-rights-of-child-1989-article-3-best-interests - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Convention on the Rights of the Child (CRC), adopted by UN General Assembly resolution 44/25 on 20 November 1989 and entered into force on 2 September 1990, is the most widely ratified human right... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-convention-rights-of-child-1989-article-3-best-interests.json #### UN Genocide Convention 1948 - Genocide Definition Article II and Obligation to Prevent and Punish - **ID**: un-genocide-convention-1948-prevention-punishment - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Convention on the Prevention and Punishment of the Crime of Genocide was adopted by UN General Assembly resolution 260 A (III) on 9 December 1948 and entered into force on 12 January 1951. It was ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-genocide-convention-1948-prevention-punishment.json #### UN Global Digital Compact (Data Governance) - **ID**: un-global-digital-compact - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Enterprises must align their governance frameworks with principles articulated in the United Nations Global Digital Compact under Objective 4, which champions a people-centric approach to data emphasi... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-global-digital-compact.json #### UN Guiding Principles (BHR) - **ID**: un-guiding-principles-business-hr - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The United Nations Guiding Principles on Business and Human Rights (UNGP or 'Ruggie Principles') are the authoritative global standard for preventing and addressing the risk of adverse human rights im... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-guiding-principles-business-hr.json #### UN ICCPR 1966 - International Covenant on Civil and Political Rights - **ID**: un-iccpr-1966-civil-political-rights - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The International Covenant on Civil and Political Rights (ICCPR), adopted by the UN General Assembly on 16 December 1966 (Resolution 2200A (XXI)) and entering into force on 23 March 1976, has 174 Stat... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-iccpr-1966-civil-political-rights.json #### UN ICERD 1965 - International Convention on the Elimination of All Forms of Racial Discrimination - **ID**: un-icerd-1965-racial-discrimination - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The International Convention on the Elimination of All Forms of Racial Discrimination (ICERD), adopted by the UN General Assembly on 21 December 1965 (Resolution 2106 (XX)) and entering into force on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-icerd-1965-racial-discrimination.json #### UN Convention Against Transnational Organized Crime (UNTOC) 2000 - Palermo Convention - **ID**: un-palermo-convention-2000-transnational-organized-crime - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The United Nations Convention against Transnational Organized Crime (UNTOC), also known as the Palermo Convention, was adopted by the UN General Assembly on 15 November 2000 (Resolution 55/25) and ent... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-palermo-convention-2000-transnational-organized-crime.json #### UN SDG Corporate Mapping - **ID**: un-sdg-corporate-mapping - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The UN SDG Corporate Mapping framework aligns corporate activities and ESG reporting with the 17 United Nations Sustainable Development Goals (SDGs). it focuses on SDGs 8 (Decent Work), 12 (Responsibl... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-sdg-corporate-mapping.json #### UN Singapore Convention on Mediation - UNSCM 2019 - **ID**: un-singapore-convention-mediation-2019 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Singapore Convention on Mediation (UN Convention on International Settlement Agreements Resulting from Mediation, 2019 - 14 Parties, 58 signatories including USA, China, India, EU states as of Apr... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-singapore-convention-mediation-2019.json #### Universal Declaration of Human Rights 1948 - 30 Articles of Fundamental Rights and Customary International Law Status - **ID**: un-udhr-1948-universal-declaration-human-rights - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Universal Declaration of Human Rights (UDHR) was adopted by UN General Assembly resolution 217 A (III) on 10 December 1948 in Paris with 48 States voting in favour, none against, and 8 abstentions... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-udhr-1948-universal-declaration-human-rights.json #### UN Convention Against Corruption (UNCAC) 2003 - Anti-Corruption Due Diligence and Compliance - **ID**: un-uncac-2003-anti-corruption-due-diligence-compliance - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UN Convention Against Corruption (UNCAC, UNODC 2003), ratified by 190 parties, is the primary international anti-corruption instrument establishing mandatory criminalisation of bribery of national... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-uncac-2003-anti-corruption-due-diligence-compliance.json #### UNCITRAL Model Law (Arbitration) - **ID**: uncitral-model-law-arbitration - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The UNCITRAL Model Law on International Commercial Arbitration (1985, amended 2006) is the global standard for the legislative framework of international arbitration. It is designed to assist States i... - **Discovery URL**: https://bidda.com/api/v1/nodes/uncitral-model-law-arbitration.json #### UNCITRAL Model Law on International Commercial Arbitration (1985), with amendments as adopted in 2006 - **ID**: uncitral-model-law-arbitration-2006 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UNCITRAL Model Law provides a globally recognized legal framework for international commercial arbitration, enabling parties to resolve disputes outside of national courts. It establishes rules fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/uncitral-model-law-arbitration-2006.json #### UNCITRAL Model Law on Cross-Border Insolvency 1997 - COMI and Foreign Recognition - **ID**: uncitral-model-law-cross-border-insolvency-1997 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UNCITRAL Model Law on Cross-Border Insolvency (1997) provides a framework enacted in 60+ jurisdictions (including US Chapter 15, UK Cross-Border Insolvency Regulations 2006, Australian Corporation... - **Discovery URL**: https://bidda.com/api/v1/nodes/uncitral-model-law-cross-border-insolvency-1997.json #### UNCITRAL Model Law on Electronic Commerce (1996) with additional article 5 bis as adopted in 1998 - **ID**: uncitral-model-law-electronic-commerce-1996 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Model Law ensures that electronic messages are not denied legal effect, validity, or enforceability solely because they are in electronic form, and establishes functional equivalence between elec... - **Discovery URL**: https://bidda.com/api/v1/nodes/uncitral-model-law-electronic-commerce-1996.json #### UNCITRAL Model Law on Electronic Commerce (1996): Article 5 Legal recognition of data messages - **ID**: uncitral-model-law-electronic-commerce-1996-article-5-legal-recognition - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Organizations must not deny legal effect, validity, or enforceability to information solely on the grounds that it is in electronic form, ensuring equal treatment with paper-based documents. - **Discovery URL**: https://bidda.com/api/v1/nodes/uncitral-model-law-electronic-commerce-1996-article-5-legal-recognition.json #### UNCITRAL Model Law on International Commercial Arbitration (1985), with amendments as adopted in 2006 - Article 7 - **ID**: uncitral-model-law-international-commercial-arbitration-2006 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This article modernizes the formal requirements for an arbitration agreement, ensuring it conforms with international contract practices for validity and enforceability. - **Discovery URL**: https://bidda.com/api/v1/nodes/uncitral-model-law-international-commercial-arbitration-2006.json #### UNCITRAL Model Law on International Commercial Arbitration (1985), with amendments as adopted in 2006 - **ID**: uncitral-model-law-intl-commercial-arb-2006 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Model Law governs the constitution of arbitral tribunals, the validity of arbitration agreements, the use of interim measures, and the recognition and enforcement of arbitral awards in internatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/uncitral-model-law-intl-commercial-arb-2006.json #### UNIDROIT Principles of International Commercial Contracts 2016 - **ID**: unidroit-principles-commercial-contracts-2016 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The UNIDROIT Principles provide a non-binding set of general rules for international commercial contracts, which parties can choose to govern their agreement, establishing a neutral framework for cont... - **Discovery URL**: https://bidda.com/api/v1/nodes/unidroit-principles-commercial-contracts-2016.json #### US Federal Criminal Code - 18 USC 1001 Statements or Entries Generally (False Statements to Federal Officers) - **ID**: us-18-usc-1001-false-statements-federal-officers - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1001 is the federal false-statements statute, one of the most heavily-charged federal offenses, reaching false statements made to federal investigators, federal regulators, federal benefit prog... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1001-false-statements-federal-officers.json #### US Title 18 - 18 USC 1028 Fraud and Related Activity in Connection with Identification Documents, Authentication Features, and Information - **ID**: us-18-usc-1028-fraud-identification-documents-authentication-features - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1028 titled 'Fraud and related activity in connection with identification documents, authentication features, and information' is the principal federal criminal statute addressing identificatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1028-fraud-identification-documents-authentication-features.json #### US Title 18 - 18 USC 1028A Aggravated Identity Theft - **ID**: us-18-usc-1028a-aggravated-identity-theft - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1028A titled 'Aggravated identity theft' is the federal criminal provision imposing a mandatory consecutive sentence on defendants who use another person's means of identification during and in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1028a-aggravated-identity-theft.json #### US Title 18 - 18 USC 1349 Attempt and Conspiracy to Commit Any Offense Under Chapter 63 (Mail Fraud, Wire Fraud, Bank Fraud, Health Care Fraud) - **ID**: us-18-usc-1349-attempt-and-conspiracy-to-commit-chapter-63-offense - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1349 titled 'Attempt and conspiracy' is the federal criminal provision created by section 902(a) of the Sarbanes-Oxley Act of 2002 (Public Law 107-204) that establishes parity between completed... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1349-attempt-and-conspiracy-to-commit-chapter-63-offense.json #### US Federal Criminal Code - 18 USC 1503 Influencing or Injuring Officer or Juror Generally (Obstruction of Justice in Judicial Proceedings) - **ID**: us-18-usc-1503-obstruction-judicial-proceedings - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1503 is the foundational federal obstruction of justice statute applicable to judicial proceedings. The operative clause provides: whoever corruptly, or by threats or force, or by any threateni... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1503-obstruction-judicial-proceedings.json #### US Federal Criminal Code - 18 USC 1505 Obstruction of Proceedings Before Departments, Agencies, and Committees - **ID**: us-18-usc-1505-obstruction-proceedings-departments-agencies-committees - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1505 is the federal obstruction statute applicable to agency administrative proceedings and congressional inquiries. The statute contains two main prohibitions. The first provision criminalizes... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1505-obstruction-proceedings-departments-agencies-committees.json #### US Federal Criminal Code - 18 USC 1512 Tampering With a Witness, Victim, or an Informant - **ID**: us-18-usc-1512-tampering-with-witness-victim-informant - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1512 is the federal witness tampering statute, frequently charged in white-collar investigations alongside 18 USC 1503 and 1505. The statute spans multiple subsections each defining a distinct ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1512-tampering-with-witness-victim-informant.json #### US Sarbanes-Oxley Act - 18 USC 1519 Destruction, Alteration, or Falsification of Records in Federal Investigations and Bankruptcy - **ID**: us-18-usc-1519-destruction-falsification-records-federal-investigations - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1519 was enacted by section 802 of the Sarbanes-Oxley Act of 2002 and is the most expansive federal records-destruction obstruction statute. The full text provides: whoever knowingly alters, de... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1519-destruction-falsification-records-federal-investigations.json #### US Title 18 - 18 USC 1521 Retaliating Against a Federal Judge or Federal Law Enforcement Officer by False Claim or Slander of Title - **ID**: us-18-usc-1521-false-lien-retaliation-federal-judges-officers - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1521 titled 'Retaliating against a Federal judge or Federal law enforcement officer by false claim or slander of title' is the federal criminal statute that prohibits the filing of false liens ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1521-false-lien-retaliation-federal-judges-officers.json #### US Federal Criminal Code - 18 USC 1623 False Declarations Before Grand Jury or Court - **ID**: us-18-usc-1623-false-declarations-grand-jury-court - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1623 is the federal false declarations statute applicable to proceedings before federal grand juries and federal courts. Subsection (a) provides that whoever under oath (or in any declaration, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1623-false-declarations-grand-jury-court.json #### US Title 18 - 18 USC 1962 RICO Prohibited Activities (Substantive Racketeering Offenses) - **ID**: us-18-usc-1962-rico-prohibited-activities - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1962 titled 'Prohibited activities' is the substantive Racketeer Influenced and Corrupt Organizations (RICO) Act provision setting out the four substantive racketeering offenses. Subsection (a)... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1962-rico-prohibited-activities.json #### US Title 18 - 18 USC 1964 RICO Civil Remedies (Treble Damages and Equitable Relief) - **ID**: us-18-usc-1964-rico-civil-remedies - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 1964 titled 'Civil remedies' is the Racketeer Influenced and Corrupt Organizations (RICO) Act provision granting district court jurisdiction to prevent and restrain violations of 18 USC 1962 an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1964-rico-civil-remedies.json #### US Federal Criminal Code - 18 USC 371 Conspiracy to Commit Offense or to Defraud United States - **ID**: us-18-usc-371-conspiracy-to-commit-offense-or-defraud-united-states - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: 18 USC 371 is the federal general conspiracy statute. The verbatim text provides: if two or more persons conspire either to commit any offense against the United States, or to defraud the United State... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-371-conspiracy-to-commit-offense-or-defraud-united-states.json #### US 27 CFR Part 478: Commerce in Firearms and Ammunition - **ID**: us-27-cfr-part-478-atf-commerce-firearms-ammunition - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: US 27 CFR Part 478 implements the Gun Control Act of 1968 (18 USC Chapter 44) covering Federal Firearms Licensees (FFLs) including dealers manufacturers and importers of firearms and ammunition. FFLs ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-27-cfr-part-478-atf-commerce-firearms-ammunition.json #### US 37 CFR Part 1: Rules of Practice in Patent Cases (USPTO) - **ID**: us-37-cfr-part-1-uspto-patent-rules-practice - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: US 37 CFR Part 1 governs the procedural rules for prosecuting patent applications and reissue applications before the United States Patent and Trademark Office (USPTO). Part 1 covers patent applicatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-37-cfr-part-1-uspto-patent-rules-practice.json #### Antiterrorism and Effective Death Penalty Act 1996 - 28 USC 2244 Habeas Corpus Restrictions - **ID**: us-aedpa-1996-habeas-corpus-28-usc-2244 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 2244 of title 28 of the United States Code, as substantially amended by the Antiterrorism and Effective Death Penalty Act of 1996 (AEDPA, Public Law 104-132, enacted 24 April 1996), imposes st... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-aedpa-1996-habeas-corpus-28-usc-2244.json #### US American Recovery and Reinvestment Act of 2009 (Public Law 111-5) - Federal Stimulus and Recipient Reporting Framework - **ID**: us-american-recovery-reinvestment-act-2009-pl-111-5 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The American Recovery and Reinvestment Act of 2009 appropriated approximately 787 billion dollars in tax cuts, transfer payments, infrastructure, energy, education, and health spending to mitigate the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-american-recovery-reinvestment-act-2009-pl-111-5.json #### Anti-Deficiency Act - 31 USC 1341 Prohibition on Obligations Exceeding Appropriations - **ID**: us-anti-deficiency-act-31-usc-1341 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 1341 of title 31 of the United States Code, the operative core of the Anti-Deficiency Act, prohibits any officer or employee of the United States government or the District of Columbia from ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-anti-deficiency-act-31-usc-1341.json #### US Civil Asset Forfeiture Reform Act of 2000 (Public Law 106-185) - Federal Civil Forfeiture Procedure - **ID**: us-cafra-2000-civil-asset-forfeiture-reform-pl-106-185 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Civil Asset Forfeiture Reform Act of 2000 substantially restructured federal civil forfeiture procedure by shifting the burden of proof from the property owner to the government under a prepondera... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cafra-2000-civil-asset-forfeiture-reform-pl-106-185.json #### US CAN-SPAM Act 2003 - Commercial Email Identification, Opt-Out, and Sender Requirements - **ID**: us-can-spam-act-2003-commercial-email-requirements - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The CAN-SPAM Act of 2003 (15 U.S.C. § 7701) sets requirements for commercial electronic mail messages in interstate commerce: prohibition on deceptive headers and subject lines, mandatory physical pos... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-can-spam-act-2003-commercial-email-requirements.json #### Civil Rights Act 1964 Title VI - 42 USC 2000d Federal Financial Assistance Nondiscrimination - **ID**: us-civil-rights-act-1964-title-vi-42-usc-2000d - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 2000d of title 42 of the United States Code, codifying section 601 of Title VI of the Civil Rights Act of 1964 (Public Law 88-352, enacted 2 July 1964, 78 Stat. 252), prohibits any program or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-civil-rights-act-1964-title-vi-42-usc-2000d.json #### US CLOUD Act of 2018 - Lawful Overseas Use of Data and Executive Agreements - **ID**: us-clarifying-lawful-overseas-use-of-data-cloud-act-2018-v2 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Clarifying Lawful Overseas Use of Data (CLOUD) Act of 2018 was enacted as Division V of the Consolidated Appropriations Act of 2018 (Public Law 115-141), signed into law on 23 March 2018. The Act ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clarifying-lawful-overseas-use-of-data-cloud-act-2018-v2.json #### Clarifying Lawful Overseas Use of Data (CLOUD) Act 2018 - **ID**: us-cloud-act-2018 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The CLOUD Act requires U.S.-based communication and cloud service providers to produce user data requested by U.S. law enforcement through a valid legal process (warrant, subpoena), regardless of wher... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cloud-act-2018.json #### US Comprehensive Crime Control Act of 1984 (Public Law 98-473) - Federal Sentencing Reform and Bail Reform - **ID**: us-comprehensive-crime-control-act-1984-pl-98-473 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Comprehensive Crime Control Act of 1984 enacted the Sentencing Reform Act creating the United States Sentencing Commission and the federal sentencing guidelines system, abolished federal parole fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-comprehensive-crime-control-act-1984-pl-98-473.json #### Computer Fraud and Abuse Act of 1986, 18 U.S.C. § 1030 - **ID**: us-computer-fraud-abuse-act-1986 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The CFAA prohibits unauthorized access to protected computers and obtaining information, committing fraud, or causing damage through such access. It applies to individuals, organizations, and entities... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-computer-fraud-abuse-act-1986.json #### US Congressional Budget and Impoundment Control Act of 1974 (Public Law 93-344) - Congressional Budget Process and Limits on Presidential Impoundment - **ID**: us-congressional-budget-impoundment-control-act-1974-pl-93-344 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Congressional Budget and Impoundment Control Act of 1974 established the modern congressional budget process by creating the House and Senate Budget Committees, the Congressional Budget Office, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-congressional-budget-impoundment-control-act-1974-pl-93-344.json #### US Copyright Act 17 USC 512 - DMCA Safe Harbor for Online Service Providers and Takedown Notices - **ID**: us-copyright-act-17-usc-512-dmca-safe-harbor-online-service-providers - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 512 of the Digital Millennium Copyright Act (DMCA) provides safe harbor protection from copyright liability for online service providers (OSPs) that host, transmit, cache, or link to user-gene... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-copyright-act-17-usc-512-dmca-safe-harbor-online-service-providers.json #### US Federal Trade Secret Protection (18 USC ch 90): Economic Espionage, Theft and the DTSA Civil Action - **ID**: us-defend-trade-secrets-act - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Chapter 90 of Title 18 (18 U.S.C. ch. 90) is the federal trade-secret protection regime, combining the criminal Economic Espionage Act of 1996 with the civil Defend Trade Secrets Act of 2016 (DTSA), e... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-defend-trade-secrets-act.json #### Defend Trade Secrets Act of 2016 (18 U.S.C. § 1836) - **ID**: us-defend-trade-secrets-act-2016 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The DTSA creates a federal civil cause of action for trade secret misappropriation (18 U.S.C. § 1836(a)), authorizes ex‑parte seizure orders (§ 1836(b)), and provides whistleblower protection (§ 1836(... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-defend-trade-secrets-act-2016.json #### United States Defend Trade Secrets Act of 2016 (Title 18 USC Chapter 90): Economic Espionage, Theft of Trade Secrets, Exceptions to Prohibitions, Criminal Forfeiture, Orders to Preserve Confidentiality, Civil Proceedings with Private Right of Action and Civil Seizure, Conduct Outside the United States, and Definitions - **ID**: us-defend-trade-secrets-act-2016-18-usc-ch90 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Defend Trade Secrets Act of 2016 (DTSA), Public Law 114-153 of 11 May 2016, codified at Title 18 of the United States Code, Chapter 90, amends the Economic Espionage Act of 1996 to create a federa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-defend-trade-secrets-act-2016-18-usc-ch90.json #### Digital Millennium Copyright Act Section 512 - Limitations on Liability for Copyright Infringement by Online Service Providers - **ID**: us-dmca-section-512-safe-harbor-1998 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: This regulation establishes safe harbor protections from copyright liability for online service providers that meet specific conditions, including expeditious removal of infringing material upon recei... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dmca-section-512-safe-harbor-1998.json #### US DMCA Title II Safe Harbor - 17 USC 512 Online Service Provider Notice-and-Takedown - **ID**: us-dmca-title-ii-safe-harbor-17-usc-512 - **Category**: Legal & IP Sovereignty - **Version**: 2.0 - **BLUF**: Section 512 of the DMCA provides conditional safe harbor from copyright infringement liability for online service providers (OSPs) operating notice-and-takedown systems, repeat infringer policies, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dmca-title-ii-safe-harbor-17-usc-512.json #### 2023 Merger Guidelines - **ID**: us-doj-ftc-merger-guidelines-2023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The 2023 Merger Guidelines describe how the Department of Justice (DOJ) and Federal Trade Commission (FTC) analyze mergers and acquisitions to determine compliance with U.S. antitrust laws. They estab... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-doj-ftc-merger-guidelines-2023.json #### US Economic Espionage Act of 1996 (18 USC 1831) - Federal Criminal Theft of Trade Secrets - **ID**: us-economic-espionage-act-1996-18-usc-1831 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Economic Espionage Act of 1996 criminalised the misappropriation of trade secrets under federal law with two principal offenses: economic espionage benefiting a foreign government, instrumentality... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-economic-espionage-act-1996-18-usc-1831.json #### US ESIGN Act (15 USC ch 96): Legal Validity of Electronic Signatures and Records - **ID**: us-esign-act - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Electronic Signatures in Global and National Commerce Act, ESIGN (15 U.S.C. ch. 96), establishes the legal validity of electronic signatures, contracts and records in transactions affecting inters... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-esign-act.json #### Electronic Signatures in Global and National Commerce Act (E-SIGN Act) of 2000 - Electronic Records and Signatures in Commerce: Legal Equivalence, Consumer Consent, Retention Requirements and Federal Override - **ID**: us-esign-act-2000-electronic-records-signatures - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The E-SIGN Act grants legal equivalence to electronic records and signatures in interstate and foreign commerce, provided that consumer consent is obtained and certain disclosure requirements are met ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-esign-act-2000-electronic-records-signatures.json #### Electronic Signatures in Global and National Commerce Act (ESIGN Act) of 2000 - **ID**: us-esign-act-2000-electronic-signatures - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The ESIGN Act requires that any contract, signature, or record used in interstate or foreign commerce may not be denied legal effect solely because it is electronic (15 U.S.C. § 7003) and mandates cle... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-esign-act-2000-electronic-signatures.json #### US Executive Order 14117 Preventing Access to Americans' Bulk Sensitive Personal Data by Countries of Concern (2024) - **ID**: us-executive-order-14117-personal-data-2024 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Executive Order 14117, signed on 28 February 2024 and published in the Federal Register on 1 March 2024, directs the US Department of Justice (DOJ) National Security Division to issue regulations rest... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-executive-order-14117-personal-data-2024.json #### US False Claims Act (31 USC ch 37): Liability for False Claims and Qui Tam Enforcement - **ID**: us-false-claims-act - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The False Claims Act (31 U.S.C. ch. 37, subchapter III) is the principal US statute for combating fraud against the Federal Government, enforced by the Department of Justice and through private whistl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-false-claims-act.json #### Federal Advisory Committee Act - 5 USC Chapter 10 - **ID**: us-federal-advisory-committee-act-5-usc-ch10 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Chapter 10 of title 5 of the United States Code (sections 1001 through 1014), as recodified by Public Law 117-286 in December 2022 (formerly 5 USC Appendix), codifies the Federal Advisory Committee Ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-advisory-committee-act-5-usc-ch10.json #### US Federal Arbitration Act (FAA) 1925 - Validity and Enforcement of Arbitration Agreements in US Federal and State Courts - **ID**: us-federal-arbitration-act-1925 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The US Federal Arbitration Act (FAA) mandates that written arbitration agreements in contracts involving maritime transactions or interstate/foreign commerce are valid, irrevocable, and enforceable in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-arbitration-act-1925.json #### Federal Property and Administrative Services Act 1949 - 40 USC 101 - **ID**: us-federal-property-administrative-services-act-40-usc-101 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 101 of title 40 of the United States Code, derived from the Federal Property and Administrative Services Act of 1949 (Public Law 81-152, enacted 30 June 1949, 63 Statutes at Large 378), declar... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-property-administrative-services-act-40-usc-101.json #### US Federal Tort Claims Act (28 USC 1346) - Waiver of Federal Sovereign Immunity for Torts - **ID**: us-federal-tort-claims-act-28-usc-1346 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Federal Tort Claims Act provides a limited waiver of federal sovereign immunity allowing private parties to sue the United States in federal district court for money damages arising from negligent... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-tort-claims-act-28-usc-1346.json #### Florida Digital Bill of Rights (FDBR) (Chapter 501, Part IV, Florida Statutes) - **ID**: us-florida-digital-bill-rights-fdbr-2023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Florida Digital Bill of Rights (FDBR) grants Florida consumers rights to control their personal data held by large for-profit online platforms, defined as 'controllers' with over $1 billion in glo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-florida-digital-bill-rights-fdbr-2023.json #### Foreign Assistance Act 1961 - 22 USC 2151 Congressional Findings on Development Cooperation - **ID**: us-foreign-assistance-act-1961-22-usc-2151 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 2151 of title 22 of the United States Code, the Foreign Assistance Act of 1961 (Public Law 87-195, enacted 4 September 1961), establishes the foundational congressional findings and policy on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-foreign-assistance-act-1961-22-usc-2151.json #### US Foreign Corrupt Practices Act (15 USC 78dd-1 et seq): Anti-Bribery and Accounting Controls - **ID**: us-foreign-corrupt-practices-act - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Foreign Corrupt Practices Act (15 U.S.C. 78dd-1 et seq.) prohibits the bribery of foreign officials to obtain or retain business and requires accurate books, records and internal accounting contro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-foreign-corrupt-practices-act.json #### United States Foreign Sovereign Immunities Act of 1976 (FSIA) (Title 28 USC Chapter 97): Findings and Declaration of Purpose, Definitions of Foreign State and Agency or Instrumentality, Immunity of Foreign State from Jurisdiction, General Exceptions to Jurisdictional Immunity, Terrorism Exception, Counterclaims, Immunity from Attachment and Execution, and Exceptions to Attachment Immunity - **ID**: us-fsia-foreign-sovereign-immunities-act-28-usc-ch97 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Foreign Sovereign Immunities Act of 1976 (FSIA), Public Law 94-583 of 21 October 1976, codified at Title 28 of the United States Code, Part IV, Chapter 97 (Jurisdictional Immunities of Foreign Sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fsia-foreign-sovereign-immunities-act-28-usc-ch97.json #### 16 CFR Part 436 - Disclosure Requirements and Prohibitions Concerning Franchising (FTC) - **ID**: us-ftc-16-cfr-436-franchise-disclosure-rule - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: FTC 16 CFR Part 436 (the Franchise Rule) governs pre-sale franchise disclosure, requiring a franchisor to furnish a Franchise Disclosure Document within the required timeframe with a compliant cover p... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-16-cfr-436-franchise-disclosure-rule.json #### US FTC Act Section 5 (15 USC 45) - Unfair or Deceptive Acts or Practices Prohibition and Enforcement - **ID**: us-ftc-act-section-5-15-usc-45-unfair-deceptive-practices - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: FTC Act Section 5 (15 USC 45) prohibits unfair or deceptive acts or practices (UDAP) in or affecting commerce. The FTC applies this authority to data security failures, privacy misrepresentations, AI ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-act-section-5-15-usc-45-unfair-deceptive-practices.json #### Federal Trade Commission Act Section 5 (15 U.S.C. § 45): Unfair Methods of Competition, as clarified by the 2022 Policy Statement - **ID**: us-ftc-act-section-5-unfair-competition - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 5 of the FTC Act (15 U.S.C. § 45(a)(1)) prohibits "unfair methods of competition" in commerce, empowering the FTC to take enforcement action against conduct that is coercive, exploitative, col... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-act-section-5-unfair-competition.json #### Global Privacy Control (GPC) Legal Status Across US State Privacy Laws - Technical Signal Requirements and Controller Compliance Obligations - **ID**: us-global-privacy-control-legal-status-states - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Controllers subject to specific US state privacy laws, such as the California Consumer Privacy Act (CCPA), must treat the browser-based Global Privacy Control (GPC) signal as a valid, legally binding ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-global-privacy-control-legal-status-states.json #### Government in the Sunshine Act 1976 - 5 USC 552b Open Meetings of Federal Agencies - **ID**: us-government-in-sunshine-act-5-usc-552b - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 552b of title 5 of the United States Code, codifying the Government in the Sunshine Act (Public Law 94-409, enacted 13 September 1976), requires that every portion of every meeting of a federa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-government-in-sunshine-act-5-usc-552b.json #### Hart-Scott-Rodino Antitrust Improvements Act of 1976 (15 U.S.C. § 18a) - Premerger Notification Requirements - **ID**: us-hart-scott-rodino-hsr-premerger-notification - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Hart-Scott-Rodino (HSR) Act requires parties to certain mergers and acquisitions that meet or exceed specific jurisdictional thresholds to file a notification with the Federal Trade Commission (FT... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hart-scott-rodino-hsr-premerger-notification.json #### Illinois Biometric Information Privacy Act (740 ILCS 14/15) - Section 15: Written Policy, Retention Schedule, Informed Consent, and Prohibition on Profiting - **ID**: us-illinois-bipa-biometric-information-privacy - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Illinois Biometric Information Privacy Act (BIPA) requires private entities to develop a publicly available written policy establishing a data retention schedule and destruction guidelines for bio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-illinois-bipa-biometric-information-privacy.json #### Inspector General Act 1978 - 5 USC Chapter 4 - **ID**: us-inspector-general-act-5-usc-ch4 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Chapter 4 of title 5 of the United States Code (sections 401 through 424), as recodified by Public Law 117-286 in December 2022 (formerly 5 USC Appendix), codifies the Inspector General Act of 1978 (P... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-inspector-general-act-5-usc-ch4.json #### US Juvenile Justice and Delinquency Prevention Act (34 USC 11101) - Federal Standards and Funding for State Juvenile Justice - **ID**: us-juvenile-justice-delinquency-prevention-act-34-usc-11101 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Juvenile Justice and Delinquency Prevention Act establishes federal standards conditioning state receipt of formula grants on compliance with four core protections, namely deinstitutionalisation o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-juvenile-justice-delinquency-prevention-act-34-usc-11101.json #### US Lanham Act (15 USC ch 22): Trademark Registration, Infringement and False Designation of Origin - **ID**: us-lanham-act - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Lanham Act (15 U.S.C. ch. 22) is the principal US federal trademark statute, governing the registration and protection of trademarks and the law of unfair competition, administered for registratio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-lanham-act.json #### United States Lanham Act / Trademark Act of 1946 (Title 15 USC Chapter 22): Principal Register Registration, Cancellation and Opposition, Infringement Remedies, False Designations of Origin and Dilution, and Madrid Protocol - **ID**: us-lanham-act-15-usc-ch22 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Lanham Act, also known as the Trademark Act of 1946 and codified at Title 15 of the United States Code, Chapter 22, is the principal federal statute governing trademarks, service marks, and unfair... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-lanham-act-15-usc-ch22.json #### Lobbying Disclosure Act 1995 - 2 USC Chapter 26 Disclosure of Lobbying Activities - **ID**: us-lobbying-disclosure-act-2-usc-ch26 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Chapter 26 of title 2 of the United States Code (sections 1601 through 1614) codifies the Lobbying Disclosure Act of 1995, as amended by the Honest Leadership and Open Government Act of 2007, requirin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-lobbying-disclosure-act-2-usc-ch26.json #### US No Electronic Theft Act of 1997 (Public Law 105-147) - Criminal Copyright Infringement Without Commercial Motive - **ID**: us-net-act-1997-no-electronic-theft-pl-105-147 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The No Electronic Theft Act of 1997 amended Title 17 and Title 18 of the United States Code to extend federal criminal copyright infringement to acts undertaken without commercial purpose or private f... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-net-act-1997-no-electronic-theft-pl-105-147.json #### US Omnibus Budget Reconciliation Act of 1981 (Public Law 97-35) - Federal Spending Reduction and Block Grant Consolidation - **ID**: us-omnibus-budget-reconciliation-act-1981-pl-97-35 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Omnibus Budget Reconciliation Act of 1981 enacted the largest single-year reduction in federal domestic spending in modern US history by consolidating 77 categorical grant programs into nine block... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-omnibus-budget-reconciliation-act-1981-pl-97-35.json #### US Patent Act (35 USC): Patentability, Novelty, Non-Obviousness and Infringement - **ID**: us-patent-act - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Patent Act (35 U.S.C.) governs the grant and enforcement of US patents, administered for examination and grant by the United States Patent and Trademark Office (USPTO). Section 100 supplies the de... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-patent-act.json #### US Presidential Records Act (44 USC 2201) - Public Ownership of Presidential Records - **ID**: us-presidential-records-act-44-usc-2201 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Presidential Records Act establishes public ownership of records created or received by the President and Vice President in the course of constitutional, statutory, and ceremonial duties, requires... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-presidential-records-act-44-usc-2201.json #### 17 CFR Part 248 - Regulation S-P: Privacy of Consumer Financial Information and Safeguarding Personal Information - **ID**: us-sec-cfr-17-part-248-regulation-s-p-privacy - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This regulation requires financial institutions to provide consumers with privacy notices, offer opt-out mechanisms for information sharing, and establish procedures to safeguard customer information. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-cfr-17-part-248-regulation-s-p-privacy.json #### Sherman Antitrust Act (15 U.S.C. §§ 1-2) - **ID**: us-sherman-antitrust-act-sections-1-2 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Sherman Antitrust Act prohibits anticompetitive business practices, making it illegal under Section 1 to form contracts, combinations, or conspiracies in restraint of trade (e.g., price-fixing), a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sherman-antitrust-act-sections-1-2.json #### Tennessee Information Protection Act (TIPA) - **ID**: us-tennessee-information-protection-act-tipa-2023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Tennessee Information Protection Act (TIPA) applies to controllers who conduct business in Tennessee or produce products/services for its residents, exceed $25 million in annual revenue, and eithe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tennessee-information-protection-act-tipa-2023.json #### Trafficking Victims Protection Act 2000 - 22 USC 7101 - **ID**: us-trafficking-victims-protection-act-22-usc-7101 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Section 7101 of title 22 of the United States Code, the Trafficking Victims Protection Act of 2000 (TVPA, Public Law 106-386 Division A, enacted 28 October 2000), establishes the principal US federal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-trafficking-victims-protection-act-22-usc-7101.json #### US Violence Against Women Act of 1994 (Public Law 103-322) - Federal Response to Gender-Based Violence - **ID**: us-vawa-violence-against-women-act-1994-pl-103-322 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Violence Against Women Act of 1994 was enacted as part of the Violent Crime Control and Law Enforcement Act and created federal grant programs to support state and local prosecution of crimes of v... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-vawa-violence-against-women-act-1994-pl-103-322.json #### Washington My Health My Data Act (MHMDA) - **ID**: us-washington-my-health-my-data-act-2023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Washington My Health My Data Act (MHMDA) imposes strict obligations on entities collecting or processing 'consumer health data,' requiring separate, explicit consumer consent for collection, shari... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-washington-my-health-my-data-act-2023.json #### Vienna Convention on the Law of Treaties 1969 - VCLT - **ID**: vclt-vienna-convention-law-of-treaties-1969 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Vienna Convention on the Law of Treaties (VCLT, 1969 - 116 Parties, entered into force 1980) is the foundational framework governing the formation, interpretation, amendment, invalidity, and termi... - **Discovery URL**: https://bidda.com/api/v1/nodes/vclt-vienna-convention-law-of-treaties-1969.json #### Vienna Convention on Consular Relations (VCCR 1963) - **ID**: vienna-convention-consular-relations-1963 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Vienna Convention on Consular Relations, done at Vienna on 24 April 1963 and in force since 19 March 1967, governs consular relations between States with 182 parties and codifies the rights and du... - **Discovery URL**: https://bidda.com/api/v1/nodes/vienna-convention-consular-relations-1963.json #### Vienna Convention on Diplomatic Relations (VCDR 1961) - **ID**: vienna-convention-diplomatic-relations-1961 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Vienna Convention on Diplomatic Relations, done at Vienna on 18 April 1961 and in force since 24 April 1964, is the principal multilateral instrument governing diplomatic relations between States,... - **Discovery URL**: https://bidda.com/api/v1/nodes/vienna-convention-diplomatic-relations-1961.json #### Decree No. 13/2023/ND-CP on the Protection of Personal Data - **ID**: vietnam-pdp-decree-13-2023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Vietnam's Decree 13/2023/ND-CP establishes a comprehensive data protection framework requiring data controllers and processors to obtain explicit data subject consent for processing personal and sensi... - **Discovery URL**: https://bidda.com/api/v1/nodes/vietnam-pdp-decree-13-2023.json #### Decree No. 13/2023/ND-CP on Personal Data Protection - **ID**: vn-pdpd-2023 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: Vietnam's Decree 13/2023/ND-CP establishes a comprehensive data protection framework requiring explicit consent for processing personal data and mandating impact assessments for cross-border transfers... - **Discovery URL**: https://bidda.com/api/v1/nodes/vn-pdpd-2023.json #### WIPO Conversation on Intellectual Property and Artificial Intelligence - Compliance Obligations for AI-Generated IP Ownership, AI Inventorship in Patent Law, and Copyright in AI-Assisted Creative Works - **ID**: wipo-conversation-ai-ip-policy-2020 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for AI-generated IP ownership, inventorship in patent law, and copyright in AI-assisted works under WIPO frameworks, with overlapping requirements from the EU... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-conversation-ai-ip-policy-2020.json #### WIPO Copyright Treaty (WCT): Protection of Authors' Rights in the Digital Environment - **ID**: wipo-copyright-digital-agenda - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The WIPO Copyright Treaty (WCT) requires signatory nations to provide copyright protection for works in the digital environment, mandating legal remedies against the circumvention of Technological Pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-copyright-digital-agenda.json #### WIPO Copyright Treaty (WCT) - **ID**: wipo-copyright-treaty-1996 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This international treaty extends copyright protection to the digital environment, requiring contracting parties to provide legal remedies against the circumvention of technological protection measure... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-copyright-treaty-1996.json #### WIPO Hague System (Designs) - **ID**: wipo-hague-design-system - **Category**: Legal & IP Sovereignty - **Version**: 1.1.1 - **BLUF**: The Hague System (administered by WIPO) allows for the international registration of industrial designs through a single application. It covers up to 100 industrial design-active countries, providing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-hague-design-system.json #### WIPO Madrid System - International Trademark Registration Protocol (Madrid Protocol) - **ID**: wipo-madrid-system-international-trademark-registration-protocol - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Madrid System for the International Registration of Marks, governed by the Madrid Protocol (1989) and administered by WIPO, allows trademark owners to seek protection in up to 130 countries throug... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-madrid-system-international-trademark-registration-protocol.json #### WIPO Madrid System (Trademarks) - **ID**: wipo-madrid-trademark-system - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The Madrid System (administered by WIPO) is a centrally-managed international trademark registration system. It allows trademark owners to protect their brand in up to 130 countries through a single a... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-madrid-trademark-system.json #### Marrakesh Treaty to Facilitate Access to Published Works for Persons Who Are Blind, Visually Impaired or Otherwise Print Disabled - **ID**: wipo-marrakesh-treaty-2013 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This treaty requires contracting parties to introduce a standard set of limitations and exceptions to domestic copyright law to permit the reproduction, distribution, and making available of published... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-marrakesh-treaty-2013.json #### WIPO Patent Cooperation Treaty (PCT) 1970 - International Patent Application Filing Procedure and National Phase Entry - **ID**: wipo-patent-cooperation-treaty-1970 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Patent Cooperation Treaty (PCT) enables applicants to seek patent protection for an invention in multiple countries simultaneously by filing a single international patent application with a single... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-patent-cooperation-treaty-1970.json #### WIPO PCT (International Patents) - **ID**: wipo-pct-international-patent - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: The Patent Cooperation Treaty (PCT) is an international treaty administered by WIPO. It provides a unified procedure for filing patent applications to protect inventions in each of its contracting sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-pct-international-patent.json #### WIPO PCT (Patent Rules) - **ID**: wipo-pct-patent-rules - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Compliance with the Patent Cooperation Treaty (PCT) framework mandates strict adherence to procedural and formal requirements for securing an international filing date and facilitating subsequent nati... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-pct-patent-rules.json #### WIPO Performances and Phonograms Treaty (WPPT) - **ID**: wipo-performances-phonograms-treaty-1996 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This international treaty grants performers (actors, musicians) and producers of phonograms (sound recordings) specific economic and moral rights in the digital environment. It establishes the exclusi... - **Discovery URL**: https://bidda.com/api/v1/nodes/wipo-performances-phonograms-treaty-1996.json #### WTO Anti-Dumping Agreement 1994 - Agreement on Implementation of Article VI of GATT - **ID**: wto-anti-dumping-agreement-1994-ada - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The WTO Anti-Dumping Agreement (ADA, 1994) governs the conditions under which WTO Members may impose anti-dumping duties (ADDs) on imports sold at less than normal value (dumping margin): investigator... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-anti-dumping-agreement-1994-ada.json #### WTO SCM Agreement 1994 - Subsidies and Countervailing Measures - **ID**: wto-scm-agreement-1994-subsidies-countervailing - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The WTO Agreement on Subsidies and Countervailing Measures (SCM Agreement, 1994) defines subsidies as financial contributions by governments or public bodies conferring a benefit (Article 1), classifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-scm-agreement-1994-subsidies-countervailing.json #### WTO TBT Agreement 1995 - Technical Barriers to Trade - **ID**: wto-tbt-agreement-1995-technical-barriers-trade - **Category**: Legal & IP Sovereignty - **Version**: 1.0.1 - **BLUF**: The Agreement on Technical Barriers to Trade (TBT Agreement), which entered into force on 1 January 1995 as part of the WTO Marrakesh Agreement, is the primary multilateral rule set governing the use ... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-tbt-agreement-1995-technical-barriers-trade.json #### Competition Act 89 of 1998 - **ID**: za-competition-act-89-1998 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Act prohibits anti-competitive practices, including cartel conduct (Section 4), abuse of a dominant market position such as excessive or predatory pricing (Section 8), and requires notification a... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-competition-act-89-1998.json #### Consumer Protection Act 68 of 2008 - **ID**: za-cpa-2008 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Act establishes the fundamental rights of consumers in South Africa, including rights to equality, privacy, choice, disclosure, and fair and honest dealing. As outlined in Section 3, it aims to p... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-cpa-2008.json #### Electronic Communications and Transactions Act (ECTA) 25 of 2002 - **ID**: za-ecta-2002 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: This Act provides a legal framework for electronic transactions and communications in South Africa, establishing the legal validity of data messages and electronic signatures under Chapter III. It app... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-ecta-2002.json #### King V Corporate Governance: Autonomous Systems - **ID**: za-king-v-tech-gov - **Category**: Legal & IP Sovereignty - **Version**: 1.1.0 - **BLUF**: Board-level accountability and oversight frameworks for the deployment, ethical monitoring, and risk management of autonomous AI agents within corporate environments. - **Discovery URL**: https://bidda.com/api/v1/nodes/za-king-v-tech-gov.json #### Promotion of Access to Information Act (PAIA) 2 of 2000 - **ID**: za-paia-2000 - **Category**: Legal & IP Sovereignty - **Version**: 1.0.0 - **BLUF**: The Promotion of Access to Information Act (PAIA) gives effect to the constitutional right of access to any information held by the State and any information held by a private body that is required fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-paia-2000.json ### Logistics & Supply Chain (116 nodes) #### ADR Agreement 1957 - European Agreement Concerning the International Carriage of Dangerous Goods by Road - **ID**: adr-agreement-1957-dangerous-goods-road - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The European Agreement concerning the International Carriage of Dangerous Goods by Road (ADR, 1957 - 54 Contracting Parties as of 2025) creates a uniform regulatory framework for road transport of dan... - **Discovery URL**: https://bidda.com/api/v1/nodes/adr-agreement-1957-dangerous-goods-road.json #### Australia Heavy Vehicle National Law 2012 - NHVR Chain of Responsibility and Fatigue Management - **ID**: australia-heavy-vehicle-national-law-2012-nhvr - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: Australia's Heavy Vehicle National Law (HVNL) 2012 (Queensland Act No. 24 of 2012, adopted by most states and territories) administered by the National Heavy Vehicle Regulator (NHVR) establishes a Cha... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-heavy-vehicle-national-law-2012-nhvr.json #### Autonomous Trucking V2V Security - **ID**: autonomous-trucking-v2v - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Compliance with this node ensures secure vehicle-to-vehicle (V2V) communications for autonomous trucking platoons by enforcing a comprehensive suite of cybersecurity controls derived from established ... - **Discovery URL**: https://bidda.com/api/v1/nodes/autonomous-trucking-v2v.json #### BIMCO Standard Charter Party Clauses - GENCON 1994, NYPE 2015 and Laytime/Demurrage Standard Terms - **ID**: bimco-standard-charter-party-terms - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: BIMCO standard charter party clauses provide legally vetted, industry-accepted contractual frameworks for the hire of a vessel, defining the rights and responsibilities of shipowners and charterers. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/bimco-standard-charter-party-terms.json #### Brazil ANTT Road Freight Transport Law 10.233/2001 - RNTRC Registration and TAC Driver Framework - **ID**: brazil-antt-road-freight-law-10233-2001 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: Brazil's Law 10.233 of 5 June 2001 created the National Land Transportation Agency (ANTT - Agencia Nacional de Transportes Terrestres) and established the legal framework for road freight transport au... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-antt-road-freight-law-10233-2001.json #### C-TPAT Minimum Security Criteria - **ID**: c-tpat-minimum-security - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: The Customs-Trade Partnership Against Terrorism (C-TPAT) is a voluntary public-private sector partnership program where members work with U.S. Customs and Border Protection (CBP) to protect the supply... - **Discovery URL**: https://bidda.com/api/v1/nodes/c-tpat-minimum-security.json #### Canada Transportation Act 1996 - Railway Freight Access, Revenue Entitlement and Canadian Transportation Agency - **ID**: canada-transportation-act-1996-cta-railway-freight - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: Canada's Canada Transportation Act (CTA, S.C. 1996, c. 10, as amended 2018 and 2023) administered by the Canadian Transportation Agency (CTA-Agency) and Transport Canada establishes the competitive fr... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-transportation-act-1996-cta-railway-freight.json #### China Express Delivery Service Regulations 2018 - State Post Bureau Licensing, Consumer Rights and Last-Mile Delivery - **ID**: china-express-delivery-service-regulations-2018 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: China's Express Delivery Service Regulations 2018 (Order No. 697 of the State Council, effective 1 May 2018, revised 2022) administered by the State Post Bureau (SPB) regulate the fast-growing express... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-express-delivery-service-regulations-2018.json #### CMR Convention 1956 - Convention on the Contract for the International Carriage of Goods by Road - **ID**: cmr-convention-1956-road-carriage-goods - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The CMR Convention (1956 - 58 Contracting States as of 2025) governs all contracts for the international carriage of goods by road for reward between two Contracting States (Article 1), mandatorily ap... - **Discovery URL**: https://bidda.com/api/v1/nodes/cmr-convention-1956-road-carriage-goods.json #### Cold Chain Integrity Triage - **ID**: cold-chain-integrity-logic - **Category**: Logistics & Supply Chain - **Version**: 1.1.1 - **BLUF**: Automated compliance verification for temperature-sensitive assets is governed by a stringent rule set designed to meet international regulatory standards. The system enforces good distribution practi... - **Discovery URL**: https://bidda.com/api/v1/nodes/cold-chain-integrity-logic.json #### COTIF/CIM 1999 - Uniform Rules for International Rail Carriage of Goods (Appendix B) - **ID**: cotif-cim-1999-rail-carriage-goods - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The Uniform Rules concerning the Contract for International Carriage of Goods by Rail (CIM) are Appendix B to the Convention concerning International Carriage by Rail (COTIF 1980) as amended by the Pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/cotif-cim-1999-rail-carriage-goods.json #### Comprehensive and Progressive Agreement for Trans-Pacific Partnership, Chapter 14 - Electronic Commerce - **ID**: cptpp-chapter-14-electronic-commerce-2018 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: Prohibits CPTPP member states from requiring data localization for cross-border electronic transactions and mandates recognition of electronic signatures and authentication methods in trade-related di... - **Discovery URL**: https://bidda.com/api/v1/nodes/cptpp-chapter-14-electronic-commerce-2018.json #### TAPA Transport Security Requirements - **ID**: customs-tapa-transport-sec - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Compliance with Transported Asset Protection Association (TAPA) Trucking Security Requirements (TSR) at Level 1 is mandatory for all in-scope transport operations, demanding a multi-layered security p... - **Discovery URL**: https://bidda.com/api/v1/nodes/customs-tapa-transport-sec.json #### German LkSG - Lieferkettensorgfaltspflichtengesetz 2021: Supply Chain Due Diligence Obligations, Risk Analysis, Prevention and Remediation Measures, BAFA Enforcement, Annual Reporting, and Interaction with EU CSDDD - **ID**: de-lksg-supply-chain-due-diligence-act-2021 - **Category**: Logistics & Supply Chain - **Version**: 1.0.1 - **BLUF**: The German Lieferkettensorgfaltspflichtengesetz (LkSG, Supply Chain Due Diligence Act), enacted 16 July 2021 (BGBl. I S. 2959), is the first major national EU-member supply chain due diligence law; ap... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-lksg-supply-chain-due-diligence-act-2021.json #### Drone Delivery Corridor Security - **ID**: drone-delivery-corridor - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Compliance within designated drone delivery corridors mandates a multi-layered approach to operational integrity and airspace safety, unifying stringent technical and procedural controls. Operations m... - **Discovery URL**: https://bidda.com/api/v1/nodes/drone-delivery-corridor.json #### ADR Agreement 2023 - Dangerous Goods Road Transport Classification, Packaging & Documentation - **ID**: eu-adr-agreement-dangerous-goods-road-transport-un-classification - **Category**: Logistics & Supply Chain - **Version**: 2.0 - **BLUF**: The ADR Agreement (European Agreement concerning the International Carriage of Dangerous Goods by Road) governs classification, packaging, labelling, vehicle marking, driver training, and transport do... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-adr-agreement-dangerous-goods-road-transport-un-classification.json #### EU Critical Raw Materials Act 2024/1252 - Strategic Raw Materials Supply Chain and Benchmarks - **ID**: eu-critical-raw-materials-act-2024-1252-strategic-supply-chain - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1252 (Critical Raw Materials Act) establishes a list of 34 critical and 17 strategic raw materials, sets 2030 supply chain benchmarks (domestic extraction 10%, processing 40%, rec... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-critical-raw-materials-act-2024-1252-strategic-supply-chain.json #### Commission Implementing Regulation (EU) 2015/2447 of 24 November 2015 laying down detailed rules for implementing certain provisions of Regulation (EU) No 952/2013 of the European Parliament and of the Council laying down the Union Customs Code - **ID**: eu-customs-code-implementing-regulation-2015 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The regulation requires electronic storage, exchange and processing of customs information, designates the competent authority for assigning a single EORI number per operator, obliges full computerisa... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-customs-code-implementing-regulation-2015.json #### Regulation (EU) 2023/1115 of the European Parliament and of the Council of 31 May 2023 on the making available on the Union market and the export from the Union of certain commodities and products associated with deforestation and forest degradation and repealing Regulation (EU) No 995/2010 - **ID**: eu-deforestation-regulation-2023 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: This regulation prohibits placing relevant commodities (cattle, cocoa, coffee, oil palm, rubber, soya, wood) and derived products on the EU market or exporting them unless they are deforestation-free,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-deforestation-regulation-2023.json #### Directive (EU) 2022/1999 on uniform procedures for checks on the transport of dangerous goods by road (codification) - **ID**: eu-dir-2022-1999-on-uniform-procedures-for-checks-on-the-transport-of-dangero - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2022/1999 codifies and replaces Council Directive 95/50/EC, establishing uniform procedures for Member States to carry out checks on the transport of dangerous goods by road. The Direct... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2022-1999-on-uniform-procedures-for-checks-on-the-transport-of-dangero.json #### Directive (EU) 2022/2561 on the initial qualification and periodic training of drivers of certain road vehicles for the carriage of goods or passengers (codification) - **ID**: eu-dir-2022-2561-on-the-initial-qualification-and-periodic-training-of-driver - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2022/2561 codifies and replaces Directive 2003/59/EC on the initial qualification and periodic training of drivers of certain road vehicles for the carriage of goods or passengers. It a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2022-2561-on-the-initial-qualification-and-periodic-training-of-driver.json #### Regulation (EU) 2024/3015 of the European Parliament and of the Council of 24 October 2024 on prohibiting products made with forced labour on the Union market - **ID**: eu-forced-labour-regulation-2024 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: This regulation prohibits economic operators from placing or making available products made with forced labour on the EU market or exporting them, as mandated by Article 3. It establishes a framework ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-forced-labour-regulation-2024.json #### EU Mobility Package I (Regulations 2020/1054, 2020/1055, 2020/1056) - Cabotage, Driving Time and eCMR - **ID**: eu-mobility-package-i-road-transport-2020 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: EU Mobility Package I, comprising Regulations (EU) 2020/1054 (driving time and tachograph), 2020/1055 (access to market for road transport) and 2020/1056 (electronic consignment notes - eCMR), entered... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mobility-package-i-road-transport-2020.json #### EU Deforestation Regulation 2023/1115 - Supply Chain Due Diligence for Deforestation-Free Commodities - **ID**: eu-regulation-2023-1115-deforestation-regulation - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: EU Regulation 2023/1115 prohibits placing on or exporting from the EU market seven commodities (cattle, cocoa, coffee, palm oil, soya, wood, rubber) and derived products unless produced on land not de... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-regulation-2023-1115-deforestation-regulation.json #### EU Corporate Sustainability Due Diligence Directive 2024/1760 - Supply Chain Human Rights and Environmental Risk Management - **ID**: eu-supply-chain-due-diligence-directive-2024-1760-csddd - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: EU Directive 2024/1760 (CSDDD) requires large companies to identify, prevent, mitigate, and account for actual and potential human rights and environmental adverse impacts in their own operations and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-supply-chain-due-diligence-directive-2024-1760-csddd.json #### Regulation (EU) No 952/2013 of the European Parliament and of the Council of 9 October 2013 laying down the Union Customs Code (recast) - **ID**: eu-union-customs-code-952-2013 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: This regulation establishes the legal framework for customs procedures in the European Union, including customs declarations, customs debt, authorised economic operator (AEO) status, and binding decis... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-union-customs-code-952-2013.json #### Fleet Telematics Audit Protocol - **ID**: fleet-telematic-audit - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Fleet Telematics Audit Protocol establishes a comprehensive framework for verifying compliance with critical cybersecurity, data privacy, and operational mandates. The system enforces stringent cybers... - **Discovery URL**: https://bidda.com/api/v1/nodes/fleet-telematic-audit.json #### Freight Forwarding Ethics (FIATA) - **ID**: freight-forwarder-fiata - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Freight forwarding operations must exhibit strict adherence to a comprehensive ethical framework grounded in international standards. All engagements mandate `requires_fiata_standard_documents`, with ... - **Discovery URL**: https://bidda.com/api/v1/nodes/freight-forwarder-fiata.json #### GS1 EPCIS: Supply Chain Visibility - **ID**: gs1-epcis-transparency - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Compliance with global supply chain visibility mandates requires strict adherence to standardized data exchange protocols and security controls. This node enforces alignment with the GS1 EPC Informati... - **Discovery URL**: https://bidda.com/api/v1/nodes/gs1-epcis-transparency.json #### Hague-Visby Rules - **ID**: hague-visby-rules - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: The Hague-Visby Rules are a set of international rules for the carriage of goods by sea. They define the rights and duties of the carrier and holder of a bill of lading, particularly regarding the lia... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-visby-rules.json #### Protocol to amend the International Convention for the Unification of certain Rules of Law relating to Bills of Lading (Hague-Visby Rules 1968) - **ID**: hague-visby-rules-1968 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The Hague-Visby Rules establish a mandatory international framework governing the liability of sea carriers for loss or damage to cargo under a bill of lading. It defines the carrier's minimum duties,... - **Discovery URL**: https://bidda.com/api/v1/nodes/hague-visby-rules-1968.json #### IATA Dangerous Goods Regulations (DGR) - **ID**: iata-dangerous-goods - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Assessment against the International Air Transport Association Dangerous Goods Regulations (DGR) confirms the consignment's adherence to standards derived from ICAO Annex 18. Compliance is predicated ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iata-dangerous-goods.json #### ICAO Annex 17: Aviation Security - **ID**: icao-annex-17-security - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Compliance with ICAO Annex 17 mandates each Contracting State establish a National Civil Aviation Security Programme (NCASP) managed by an appropriate authority, consistent with Standard 3.1.1. The pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/icao-annex-17-security.json #### ICAO safety management system (SMS) - **ID**: icao-safety-mgt-system - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: An organization's compliance with the International Civil Aviation Organization (ICAO) safety management system framework mandates a systematic approach to managing safety, including necessary organiz... - **Discovery URL**: https://bidda.com/api/v1/nodes/icao-safety-mgt-system.json #### ILO Convention No. 138 - Minimum Age for Admission to Employment (1973) - **ID**: ilo-convention-138-minimum-age-1973 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: Convention 138 requires that no person be employed under the minimum age set by the member state (Article 1), that hazardous work be prohibited for persons below the hazardous‑work age (Article 2), an... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-convention-138-minimum-age-1973.json #### IMO 2020 Sulphur Limit - **ID**: imo-2020-sulphur-limit - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: IMO 2020 refers to the significant reduction in the global limit for sulphur content in ships' fuel oil, from 3.50% m/m to 0.50% m/m. This MARPOL Annex VI regulation aims to improve air quality and pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-2020-sulphur-limit.json #### International Management Code for the Safe Operation of Ships and for Pollution Prevention (International Safety Management (ISM) Code) 2018 Edition - **ID**: imo-ism-code-2018 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The International Safety Management (ISM) Code provides a mandatory international standard for the safe management and operation of ships and for pollution prevention, requiring applicable shipowners ... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-ism-code-2018.json #### International Ship and Port Facility Security (ISPS) Code - **ID**: imo-isps-code-2003 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The ISPS Code mandates a comprehensive security framework for international shipping, requiring ships and port facilities to conduct security assessments and develop corresponding security plans. As p... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-isps-code-2003.json #### International Convention on Load Lines, 1966, as Amended by the Protocol of 1988 - **ID**: imo-llc-1966-load-lines - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: This convention prescribes the minimum freeboard for ships on international voyages, preventing overloading to ensure vessel stability and safety. As per Article 13 and Annex I, all applicable vessels... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-llc-1966-load-lines.json #### MARPOL: Marine Pollution Prevention - **ID**: imo-marpol-pollution - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Compliance with the International Convention for the Prevention of Pollution from Ships is confirmed across all applicable annexes based on governing maritime regulations. Pertaining to Annex I, the v... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-marpol-pollution.json #### International Code for Ships Operating in Polar Waters (Polar Code) - **ID**: imo-polar-code-2017 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The IMO Polar Code provides mandatory requirements for ship design, construction, equipment, operations, training, and environmental protection to ensure the safety of ships and the protection of the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-polar-code-2017.json #### International Convention for the Safety of Life at Sea (SOLAS), 1974, as amended, Consolidated Edition 2020, Chapter XI-2: Special measures to enhance maritime security - **ID**: imo-solas-consolidated-2020 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: This regulation mandates specific security measures for ships and port facilities to prevent acts of terrorism against shipping. As per Regulation XI-2/3, it requires compliance with the International... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-solas-consolidated-2020.json #### SOLAS: Safety of Life at Sea - **ID**: imo-solas-safety-at-sea - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Vessel conformity with the International Convention for Safety of Life at Sea (SOLAS) mandates rigorous verification of critical operational, structural, and procedural controls. This node's assessmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-solas-safety-at-sea.json #### STCW: Seafarer Competency Standards - **ID**: imo-stcw-seafarer-training - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Compliance with the International Convention on Standards of Training, Certification and Watchkeeping for Seafarers (STCW) mandates a comprehensive verification of personnel qualifications and operati... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-stcw-seafarer-training.json #### Incoterms 2020: CIP (Carriage Insurance Paid) - **ID**: incoterms-2020-cip-v2 - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Carriage Insurance Paid (CIP) under the Incoterms® 2020 framework dictates that a seller fulfills its delivery obligation and completes the transfer of risk once goods are handed to the initial carrie... - **Discovery URL**: https://bidda.com/api/v1/nodes/incoterms-2020-cip-v2.json #### Incoterms: DDP Compliance - **ID**: incoterms-2020-ddp-logic - **Category**: Logistics & Supply Chain - **Version**: 1.1.1 - **BLUF**: Delivered Duty Paid (DDP) is the maximum-obligation Incoterm for the seller. The seller delivers the goods at the disposal of the buyer at the named place of destination, cleared for import, and inclu... - **Discovery URL**: https://bidda.com/api/v1/nodes/incoterms-2020-ddp-logic.json #### Incoterms 2020: DDP (Delivered Duty Paid) - **ID**: incoterms-2020-ddp-v2 - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Incoterms 2020 rule DDP (Delivered Duty Paid) imposes the maximum obligation upon the seller, who assumes all costs and risks until the goods are delivered to the named destination, ready for unloadin... - **Discovery URL**: https://bidda.com/api/v1/nodes/incoterms-2020-ddp-v2.json #### Incoterms 2020: EXW (Ex Works) - **ID**: incoterms-2020-exw - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Ex Works (EXW) under the ICC Incoterms® 2020 rules establishes a transaction imposing maximum obligation on the buyer and minimal responsibility on the seller, whose delivery duty consistent with prin... - **Discovery URL**: https://bidda.com/api/v1/nodes/incoterms-2020-exw.json #### Incoterms: FAS (Free Alongside Ship) - **ID**: incoterms-2020-fca-logic - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Free Alongside Ship (FAS) is a maritime-only Incoterm where the seller delivers the goods when they are placed alongside the vessel nominated by the buyer at the named port of shipment. FAS 2020 requi... - **Discovery URL**: https://bidda.com/api/v1/nodes/incoterms-2020-fca-logic.json #### Incoterms 2020: FCA (Free Carrier) - **ID**: incoterms-2020-fca-v2 - **Category**: Logistics & Supply Chain - **Version**: 1.1.1 - **BLUF**: Free Carrier (FCA) compliance mandates the seller deliver goods cleared for export, as `seller_export_customs_clearance_required` is true, unto a carrier designated by the buyer. A critical operationa... - **Discovery URL**: https://bidda.com/api/v1/nodes/incoterms-2020-fca-v2.json #### Incoterms: FOB Risk Transfer - **ID**: incoterms-2020-fob-logic - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Free On Board (FOB) is an Incoterm limited to sea and inland waterway transport. Under FOB 2020, the seller delivers the goods on board the vessel nominated by the buyer at the named port of shipment,... - **Discovery URL**: https://bidda.com/api/v1/nodes/incoterms-2020-fob-logic.json #### National Logistics Policy 2022 - **ID**: india-national-logistics-policy-2022 - **Category**: Logistics & Supply Chain - **Version**: 1.0.1 - **BLUF**: The National Logistics Policy 2022 establishes a framework for reducing logistics costs in India to 8% of GDP through integration of the PM Gati Shakti National Master Plan, implementation of the Unif... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-national-logistics-policy-2022.json #### Agentic Economic Order Quantity - **ID**: inventory-eoq-deterministic - **Category**: Logistics & Supply Chain - **Version**: 1.1.1 - **BLUF**: The Economic Order Quantity (EOQ) model is a deterministic inventory optimization formula that calculates the optimal order quantity that minimizes total inventory cost (ordering cost + holding cost) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/inventory-eoq-deterministic.json #### International Plant Protection Convention - IPPC 1997 - **ID**: ippc-1997-international-plant-protection - **Category**: Logistics & Supply Chain - **Version**: 1.0.1 - **BLUF**: The IPPC (184 Contracting Parties as of April 2026, administered by FAO) establishes the global framework for phytosanitary measures protecting plant resources from pests and diseases, implementing WT... - **Discovery URL**: https://bidda.com/api/v1/nodes/ippc-1997-international-plant-protection.json #### ISM Code (Vessel Safety) - **ID**: ism-code-vessel-safety - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: The International Safety Management (ISM) Code provides an international standard for the safe management and operation of ships and for pollution prevention. It requires the 'Company' to establish a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ism-code-vessel-safety.json #### Remanufactured Goods (ISO 20245) - **ID**: iso-20245-remanufactured - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Compliance with remanufacturing standards necessitates a comprehensive, documented process and verifiable end-product quality. The core operational requirement mandates that a product undergoes full d... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20245-remanufactured.json #### Supply Chain Security (ISO 28000) - **ID**: iso-28000-supply-chain - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: ISO 28000 is the specification for security management systems in the supply chain. It provides a formal framework to assess and manage security risks, such as theft, terrorism, and piracy, aimed at e... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-28000-supply-chain.json #### Road Traffic Safety (ISO 39001) - **ID**: iso-39001-road-traffic - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Adherence to the ISO 39001:2012 standard for Road Traffic Safety (RTS) management systems requires a comprehensive, documented framework designed to eliminate or significantly reduce death and serious... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-39001-road-traffic.json #### ISPS Code (Vessel Security) - **ID**: isps-code-vessel-security - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: The International Ship and Port Facility Security (ISPS) Code is a mandatory set of measures to enhance the security of ships and port facilities. It provides a standardized framework for evaluating r... - **Discovery URL**: https://bidda.com/api/v1/nodes/isps-code-vessel-security.json #### Japan Road Freight Transport Business Act 1989 (Law 83) - MLIT Licensing and 2024 Hours Reform - **ID**: japan-road-freight-transport-business-act-1989 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: Japan's Road Freight Transport Business Act (Law No. 83 of 1989, Unchugyoho) administered by the Ministry of Land, Infrastructure, Transport and Tourism (MLIT) regulates road freight business licensin... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-road-freight-transport-business-act-1989.json #### Kanban Replenishment Algorithm - **ID**: kanban-replenishment - **Category**: Logistics & Supply Chain - **Version**: 1.1.1 - **BLUF**: Compliance with this node's Kanban Replenishment Algorithm mandates adherence to a comprehensive set of security protocols and operational thresholds designed for ensuring supply chain integrity and d... - **Discovery URL**: https://bidda.com/api/v1/nodes/kanban-replenishment.json #### Last-Mile Delivery Ethics - **ID**: last-mile-algorithm-ethics - **Category**: Logistics & Supply Chain - **Version**: 1.1.1 - **BLUF**: Operational governance of last-mile delivery activities necessitates rigorous adherence to established ethical and performance standards. This compliance framework ensures all logistical operations, f... - **Discovery URL**: https://bidda.com/api/v1/nodes/last-mile-algorithm-ethics.json #### 3PL Service Provider Selection - **ID**: logistics-3pl-matrix - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Selection of Third-Party Logistics (3PL) service providers mandates a rigorous due diligence process aligned with established cybersecurity and operational resilience frameworks. This control enforces... - **Discovery URL**: https://bidda.com/api/v1/nodes/logistics-3pl-matrix.json #### Automated 3PL Performance SLAs - **ID**: logistics-3pl-slas - **Category**: Logistics & Supply Chain - **Version**: 1.1.1 - **BLUF**: Third-Party Logistics (3PL) Service Level Agreements (SLAs) define the contractually binding performance thresholds that logistics service providers must meet for order fulfillment, warehousing, trans... - **Discovery URL**: https://bidda.com/api/v1/nodes/logistics-3pl-slas.json #### Bonded Warehouse Audit Protocol - **ID**: logistics-bonded-warehouse - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Mandatory compliance protocols for bonded warehouse operations are established to ensure strict adherence to international and national customs regulations. Under the authority of 19 U.S.C. § 1555 and... - **Discovery URL**: https://bidda.com/api/v1/nodes/logistics-bonded-warehouse.json #### Logistics Carbon Accounting (GLEC) - **ID**: logistics-carbon-glec - **Category**: Logistics & Supply Chain - **Version**: 1.1.1 - **BLUF**: Logistics carbon accounting practices demonstrate strong methodological alignment with the Global Logistics Emissions Council (GLEC) Framework and full compliance with ISO 14083 standards. The operati... - **Discovery URL**: https://bidda.com/api/v1/nodes/logistics-carbon-glec.json #### Automated HS Classification - **ID**: logistics-hs-classification - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: The Harmonized System (HS) Classification node provides a deterministic logic framework based on the WCO General Rules for the Interpretation (GRI) to classify goods for global customs, ensuring accur... - **Discovery URL**: https://bidda.com/api/v1/nodes/logistics-hs-classification.json #### Automated HS Code Classification - **ID**: logistics-hs-codes - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: The Harmonized System (HS) is the international nomenclature for classifying traded products, administered by the World Customs Organization (WCO) and used by over 200 countries as the basis for custo... - **Discovery URL**: https://bidda.com/api/v1/nodes/logistics-hs-codes.json #### Just-In-Time (JIT) Inventory Logic - **ID**: logistics-jit-inventory - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Just-In-Time (JIT) Inventory Logic codifies the essential operational and technical controls governing automated inventory management to ensure full compliance and mitigate risk. The node's configurat... - **Discovery URL**: https://bidda.com/api/v1/nodes/logistics-jit-inventory.json #### ISPS Code: Port Facility Security - **ID**: port-facility-security-isps - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Compliance with International Ship and Port Facility Security (ISPS) Code requirements for a port facility mandates a comprehensive security framework. A qualified Port Facility Security Officer (PFSO... - **Discovery URL**: https://bidda.com/api/v1/nodes/port-facility-security-isps.json #### Responsible Business Alliance (RBA) Code of Conduct Version 7.0 2021 - Labour, Health and Safety, Environment, Ethics and Management System Standards for Supply Chains - **ID**: responsible-business-alliance-code-conduct-v7 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The RBA Code of Conduct sets social, environmental, and ethical standards for global supply chains, applicable across industries with a focus on electronics. It requires adherence to international nor... - **Discovery URL**: https://bidda.com/api/v1/nodes/responsible-business-alliance-code-conduct-v7.json #### Reverse Logistics & Circularity - **ID**: reverse-logistics-circular - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Compliance for returned asset disposition is governed by a multi-stage evaluation process to ensure regulatory adherence and maximize value recovery. Initial triage assesses an item’s physical state u... - **Discovery URL**: https://bidda.com/api/v1/nodes/reverse-logistics-circular.json #### Rotterdam Convention on Prior Informed Consent for Hazardous Chemicals 2004 - PIC - **ID**: rotterdam-convention-pic-chemicals-2004 - **Category**: Logistics & Supply Chain - **Version**: 1.0.1 - **BLUF**: The Rotterdam Convention on Prior Informed Consent Procedure for Certain Hazardous Chemicals and Pesticides in International Trade (2004 - 168 Parties as of April 2026) requires exporting countries to... - **Discovery URL**: https://bidda.com/api/v1/nodes/rotterdam-convention-pic-chemicals-2004.json #### United Nations Convention on Contracts for the International Carriage of Goods Wholly or Partly by Sea (The Rotterdam Rules) - **ID**: rotterdam-rules-2008 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The Rotterdam Rules establish a modern, uniform legal framework governing the rights and obligations of parties to a contract for international door-to-door carriage that includes a sea leg. It extend... - **Discovery URL**: https://bidda.com/api/v1/nodes/rotterdam-rules-2008.json #### Rotterdam Rules (UN Convention) - **ID**: rotterdam-rules-maritime - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: The Rotterdam Rules (2008) constitute the United Nations Convention on Contracts for the International Carriage of Goods Wholly or Partly by Sea. They modernize the maritime liability regime by coveri... - **Discovery URL**: https://bidda.com/api/v1/nodes/rotterdam-rules-maritime.json #### SCOR DS: Fulfillment - **ID**: scor-fulfill - **Category**: Logistics & Supply Chain - **Version**: 1.1.1 - **BLUF**: SCOR DS (Supply Chain Operations Reference - Digital Standard) Fulfill covers all processes involved in executing customer orders from receipt through delivery and returns. Maintained by ASCM (Associa... - **Discovery URL**: https://bidda.com/api/v1/nodes/scor-fulfill.json #### SCOR DS: Orchestration - **ID**: scor-orchestrate - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: SCOR DS Orchestrate is the meta-level planning process in the Supply Chain Operations Reference Digital Standard that coordinates strategy, governance, data flows, and performance management across al... - **Discovery URL**: https://bidda.com/api/v1/nodes/scor-orchestrate.json #### Singapore Road Transport Act Cap. 276 - LTA Vehicle Registration, Commercial Vehicle Permits and Certificate of Entitlement - **ID**: singapore-road-transport-act-cap-276-lta - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: Singapore's Road Transport Act (Cap. 276, originally enacted 1961, consolidated 2004, administered by the Land Transport Authority (LTA)) governs vehicle registration, licensing, and the Certificate o... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-road-transport-act-cap-276-lta.json #### Smart Container IoT Tracking - **ID**: smart-container-iot - **Category**: Logistics & Supply Chain - **Version**: 1.1.1 - **BLUF**: Smart Container IoT Tracking systems must adhere to stringent security and data privacy standards for ensuring regulatory compliance across global supply chains. As mandated by leading frameworks like... - **Discovery URL**: https://bidda.com/api/v1/nodes/smart-container-iot.json #### Bullwhip Effect Mitigation - **ID**: supply-chain-bullwhip - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: The Bullwhip Effect (Lee, Padmanabhan & Whang, 1997 - Sloan Management Review) describes the amplification of demand variability as orders propagate upstream in a supply chain - small fluctuations in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/supply-chain-bullwhip.json #### Incoterms 2020 Risk Allocation Matrix - **ID**: supply-chain-incoterms - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Standardized international trade terms defining the responsibilities, costs, and transfer of risk between sellers and buyers for the distribution of goods. - **Discovery URL**: https://bidda.com/api/v1/nodes/supply-chain-incoterms.json #### Supply Chain Risk Triage Protocol - **ID**: supply-chain-risk-triage - **Category**: Logistics & Supply Chain - **Version**: 1.1.1 - **BLUF**: The Supply Chain Risk Triage Protocol mandates an immediate escalation and review process upon detection of specific high-risk conditions within the procurement and component lifecycle. This automated... - **Discovery URL**: https://bidda.com/api/v1/nodes/supply-chain-risk-triage.json #### TAPA Trucking Security (TSR) - **ID**: tapa-tsr-2023 - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: The TAPA Trucking Security Requirements (TSR) is the leading global security standard for the transportation of high-value assets by road. It defines three levels of security (Level 1, 2, and 3) for v... - **Discovery URL**: https://bidda.com/api/v1/nodes/tapa-tsr-2023.json #### TIR Convention 1975 - Customs Transit by Road (TIR Carnet System) - **ID**: tir-convention-1975-customs-transit - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The Customs Convention on the International Transport of Goods under Cover of TIR Carnets (TIR Convention 1975, UNTS Vol. 1079 No. 16515) is the cornerstone of international customs transit by road. I... - **Discovery URL**: https://bidda.com/api/v1/nodes/tir-convention-1975-customs-transit.json #### UK Modern Slavery Act 2015 Section 54 — Transparency in Supply Chains - **ID**: uk-modern-slavery-act-2015-section-54-transparency-in-supply-chains - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: A commercial organisation supplying goods or services with total turnover of at least the prescribed threshold (currently £36 million) must publish a slavery and human trafficking statement for each f... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-modern-slavery-act-2015-section-54-transparency-in-supply-chains.json #### UN Global Compact Supply Chain Sustainability Guide - Value Chain Governance, Supplier Engagement, Social and Environmental Standards and Grievance Mechanisms - **ID**: un-global-compact-supply-chain-sustainability - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: This guide requires businesses to integrate the Ten Principles of the UN Global Compact into their supply chain governance, including human rights, labor, environment, and anti-corruption standards, w... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-global-compact-supply-chain-sustainability.json #### US 49 CFR Part 172: Hazardous Materials Table, Special Provisions, Communications, Emergency Response Information, Training Requirements, and Security Plans - **ID**: us-49-cfr-part-172-hazmat-table-communications - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: US 49 CFR Part 172 sets out the Hazardous Materials Table (49 CFR 172.101) which lists hazardous materials by proper shipping name, hazard class, identification number, packing group, label and placar... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-49-cfr-part-172-hazmat-table-communications.json #### US 49 CFR Part 173: Shippers - General Requirements for Shipments and Packagings - **ID**: us-49-cfr-part-173-shippers-general-requirements - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: US 49 CFR Part 173 sets out the requirements for offerors of hazardous materials for transportation including general packaging requirements, hazard class definitions, packaging authorization by hazar... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-49-cfr-part-173-shippers-general-requirements.json #### US C-TPAT Minimum Security Criteria 2021 - Customs-Trade Partnership Against Terrorism: Physical Security, Access Controls, Cybersecurity and Supply Chain Security Plans - **ID**: us-ctpat-minimum-security-criteria-2021 - **Category**: Logistics & Supply Chain - **Version**: 1.0.1 - **BLUF**: This regulation requires U.S. importers, carriers, manufacturers, and other trade entities to implement comprehensive supply chain security measures aligned with CTPAT’s Minimum Security Criteria to m... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ctpat-minimum-security-criteria-2021.json #### US CBP C-TPAT - Customs-Trade Partnership Against Terrorism Supply Chain Security Criteria and Certification - **ID**: us-customs-trade-partnership-against-terrorism-c-tpat-supply-chain-security - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: CBP C-TPAT certification requires importers, carriers, and brokers to implement minimum supply chain security criteria covering business partner requirements, physical security, personnel security, pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-customs-trade-partnership-against-terrorism-c-tpat-supply-chain-security.json #### 49 CFR Part 107 - Hazardous Materials Program Procedures (PHMSA) - **ID**: us-dot-phmsa-49-cfr-107-hazardous-materials-program-procedures - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: PHMSA 49 CFR Part 107 sets the program procedures for the Hazardous Materials Regulations, governing applications for and processing of special permits and party status, the standards and procedures f... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dot-phmsa-49-cfr-107-hazardous-materials-program-procedures.json #### US DOT PHMSA 49 CFR Part 172 - Hazardous Materials Shipping Regulations, Marking & Placarding - **ID**: us-dot-phmsa-49-cfr-172-hazmat-shipping-marking-labelling - **Category**: Logistics & Supply Chain - **Version**: 2.0 - **BLUF**: US DOT PHMSA Hazardous Materials Regulations (49 CFR Parts 171-180) govern classification, packaging, marking, labelling, placarding, and documentation for hazardous materials in US domestic and inter... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dot-phmsa-49-cfr-172-hazmat-shipping-marking-labelling.json #### 49 CFR Part 173 - Shippers - General Requirements for Shipments and Packagings (PHMSA) - **ID**: us-dot-phmsa-49-cfr-173-shippers-general-requirements - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: PHMSA 49 CFR Part 173 sets the shipper requirements of the Hazardous Materials Regulations, requiring offerors to classify each material by hazard class and division, screen out forbidden materials, f... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dot-phmsa-49-cfr-173-shippers-general-requirements.json #### 49 CFR Part 178 - Specifications for Packagings (PHMSA) - **ID**: us-dot-phmsa-49-cfr-178-packaging-specifications - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: PHMSA 49 CFR Part 178 sets the specifications for packagings used to transport hazardous materials, requiring manufacturers and offerors to use packagings that meet the applicable DOT specification or... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dot-phmsa-49-cfr-178-packaging-specifications.json #### 49 CFR Part 180 - Continuing Qualification and Maintenance of Packagings (PHMSA) - **ID**: us-dot-phmsa-49-cfr-180-packaging-requalification-maintenance - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: PHMSA 49 CFR Part 180 sets the continuing qualification and maintenance requirements for packagings used to transport hazardous materials, requiring periodic requalification, repair, and marking of sp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dot-phmsa-49-cfr-180-packaging-requalification-maintenance.json #### 49 CFR Part 365 - Rules Governing Applications for Operating Authority (FMCSA) - **ID**: us-fmcsa-49-cfr-365-motor-carrier-operating-authority - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: FMCSA 49 CFR Part 365 governs applications for motor carrier, broker, and freight forwarder operating authority, requiring an applicant to start the application process with the correct form, select t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmcsa-49-cfr-365-motor-carrier-operating-authority.json #### 49 CFR Part 382 - Controlled Substances and Alcohol Use and Testing (FMCSA) - **ID**: us-fmcsa-49-cfr-382-controlled-substances-alcohol-testing - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: FMCSA 49 CFR Part 382 requires motor carriers to test commercial driver license holders for controlled substances and alcohol, defining prohibited conduct, the testing procedures conducted under 49 CF... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmcsa-49-cfr-382-controlled-substances-alcohol-testing.json #### 49 CFR Part 383 - Commercial Driver License Standards; Requirements and Penalties (FMCSA) - **ID**: us-fmcsa-49-cfr-383-commercial-drivers-license-standards - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: FMCSA 49 CFR Part 383 sets the commercial driver license standards, requiring a single license, the correct license class and endorsements for the vehicle and cargo, notification of convictions, suspe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmcsa-49-cfr-383-commercial-drivers-license-standards.json #### 49 CFR Part 384 - State Compliance with Commercial Driver License Program (FMCSA) - **ID**: us-fmcsa-49-cfr-384-state-cdl-program-compliance - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: FMCSA 49 CFR Part 384 sets the standards a State must meet to comply with the commercial driver license program, requiring a conforming testing program and test standards, correct license issuance and... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmcsa-49-cfr-384-state-cdl-program-compliance.json #### 49 CFR Part 391 - Qualifications of Drivers and Longer Combination Vehicle Driver-Instructors (FMCSA) - **ID**: us-fmcsa-49-cfr-391-qualifications-of-drivers - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: FMCSA 49 CFR Part 391 sets the qualifications of commercial motor vehicle drivers, requiring carriers to confirm general driver qualifications, apply disqualification rules, obtain an employment appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmcsa-49-cfr-391-qualifications-of-drivers.json #### 49 CFR Part 393 - Parts and Accessories Necessary for Safe Operation (FMCSA) - **ID**: us-fmcsa-49-cfr-393-parts-accessories-safe-operation - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: FMCSA 49 CFR Part 393 sets the parts and accessories necessary for safe operation of commercial motor vehicles, requiring operable lamps and reflective devices, service, parking, and emergency brake s... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmcsa-49-cfr-393-parts-accessories-safe-operation.json #### 49 CFR Part 395 - Hours of Service of Drivers (FMCSA) - **ID**: us-fmcsa-49-cfr-395-hours-of-service-drivers - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: FMCSA 49 CFR Part 395 sets the hours-of-service rules for commercial motor vehicle drivers, limiting maximum driving time and on-duty windows for property-carrying and passenger-carrying drivers, requ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmcsa-49-cfr-395-hours-of-service-drivers.json #### 49 CFR Part 396 - Inspection, Repair, and Maintenance (FMCSA) - **ID**: us-fmcsa-49-cfr-396-inspection-repair-maintenance - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: FMCSA 49 CFR Part 396 requires motor carriers to systematically inspect, repair, and maintain commercial motor vehicles and intermodal equipment, prohibit operation of unsafe vehicles, prepare driver ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmcsa-49-cfr-396-inspection-repair-maintenance.json #### 49 CFR Part 397 - Transportation of Hazardous Materials; Driving and Parking Rules (FMCSA) - **ID**: us-fmcsa-49-cfr-397-hazmat-driving-parking-routing - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: FMCSA 49 CFR Part 397 sets the driving, parking, and routing rules for the transportation of hazardous materials, requiring carriers and drivers to comply with the Federal motor carrier safety regulat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmcsa-49-cfr-397-hazmat-driving-parking-routing.json #### US FMCSA Motor Carrier Safety Regulations (49 CFR Parts 390-399) - Hours of Service and ELD Compliance - **ID**: us-fmcsa-motor-carrier-safety-regulations-49-cfr - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The US Federal Motor Carrier Safety Administration (FMCSA) administers 49 CFR Parts 390-399 (Federal Motor Carrier Safety Regulations); mandates Hours of Service (HOS) limits of 11 driving hours withi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmcsa-motor-carrier-safety-regulations-49-cfr.json #### US Hazardous Materials Transportation Act (49 USC ch 51): Hazmat Regulation, Registration and Penalties - **ID**: us-hazardous-materials-transportation-act - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The Hazardous Materials Transportation Act (49 U.S.C. ch. 51) governs the transportation of hazardous materials in commerce in the United States, administered by the Pipeline and Hazardous Materials S... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hazardous-materials-transportation-act.json #### Merchant Marine Act of 1920, Section 27 (Jones Act): Coastwise Trade Laws and US-Flag Vessel Requirements - **ID**: us-jones-act-1920 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The Jones Act, codified at 46 U.S.C. § 55102, mandates that all goods transported by water between two points in the United States (coastwise trade) must be carried on vessels that are U.S.-flagged, U... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-jones-act-1920.json #### Title 33, Code of Federal Regulations - Navigation and Navigable Waters - **ID**: us-tsb-coast-guard-33-cfr - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: This regulation establishes comprehensive safety and security requirements for vessels, port facilities, and navigable waterways within U.S. jurisdiction, mandating specific security plans, vessel ins... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tsb-coast-guard-33-cfr.json #### Uyghur Forced Labor Prevention Act (UFLPA) - **ID**: us-uyghur-forced-labor-prevention-act - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The Uyghur Forced Labor Prevention Act (UFLPA) establishes a rebuttable presumption that all goods mined, produced, or manufactured wholly or in part in China's Xinjiang Uyghur Autonomous Region (XUAR... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-uyghur-forced-labor-prevention-act.json #### Warehouse Management (WMS) Logic - **ID**: warehouse-wms-optimization - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: Warehouse Management (WMS) logic must be configured to enforce stringent controls over inventory, operational processes, and system integrity, aligning with governing supply chain regulations and indu... - **Discovery URL**: https://bidda.com/api/v1/nodes/warehouse-wms-optimization.json #### Revised Kyoto Convention 1999 - WCO International Customs Simplification and Harmonisation - **ID**: wco-revised-kyoto-convention-1999 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The Revised Kyoto Convention (RKC) - formally the International Convention on the Simplification and Harmonization of Customs Procedures as amended by the Protocol of Amendment of 26 June 1999 - is th... - **Discovery URL**: https://bidda.com/api/v1/nodes/wco-revised-kyoto-convention-1999.json #### WCO SAFE Framework - **ID**: wco-safe-framework - **Category**: Logistics & Supply Chain - **Version**: 1.1.0 - **BLUF**: The SAFE Framework of Standards to Secure and Facilitate Global Trade (SAFE Framework) provides a global standard for supply chain security and trade facilitation, built on three pillars: Customs-to-C... - **Discovery URL**: https://bidda.com/api/v1/nodes/wco-safe-framework.json #### WCO SAFE Framework - Authorized Economic Operator Programme and Mutual Recognition Arrangements - **ID**: wco-safe-framework-authorized-economic-operator-aeo-programme - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The WCO SAFE Framework of Standards establishes the Authorized Economic Operator (AEO) concept requiring operators to meet security and compliance standards in exchange for customs facilitation benefi... - **Discovery URL**: https://bidda.com/api/v1/nodes/wco-safe-framework-authorized-economic-operator-aeo-programme.json #### SAFE Framework of Standards - **ID**: wco-safe-framework-standards - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: The SAFE Framework of Standards to Secure and Facilitate Global Trade, adopted by World Customs Organization (WCO) Members, establishes principles and standards as a minimal threshold for Customs admi... - **Discovery URL**: https://bidda.com/api/v1/nodes/wco-safe-framework-standards.json #### WTO Trade Facilitation Agreement (TFA) 2017 - Customs Procedures, Border Agency Cooperation, Freedom of Transit and Special Provisions for Developing Countries - **ID**: wto-trade-facilitation-agreement-2017 - **Category**: Logistics & Supply Chain - **Version**: 1.0.1 - **BLUF**: The WTO Trade Facilitation Agreement (TFA), which entered into force on 22 February 2017, requires member countries to expedite the movement, release, and clearance of goods across borders, including ... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-trade-facilitation-agreement-2017.json #### South Africa Economic Regulation of Transport Amendment Act 10 of 2025 - Schedule 1 Citation Correction to 2024 - **ID**: za-economic-regulation-of-transport-amendment-act-10-of-2025 - **Category**: Logistics & Supply Chain - **Version**: 1.0.0 - **BLUF**: Regulated transport operators in South Africa, the Transport Economic Regulator, and the Transport Economic Council must apply citations of the Economic Regulation of Transport Act in the form correct... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-economic-regulation-of-transport-amendment-act-10-of-2025.json ### Maritime & Shipping (113 nodes) #### Athens Convention 2002 - Passenger Ship Liability for Death, Injury, and Luggage - **ID**: athens-convention-2002-passenger-ship - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Athens Convention relating to the Carriage of Passengers and their Luggage by Sea 1974 as amended by the 2002 Protocol (entered into force 23 April 2014) establishes the global liability regime fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/athens-convention-2002-passenger-ship.json #### Australia Marine Safety (Domestic Commercial Vessel) National Law Act 2012 - AMSA Framework - **ID**: australia-amsa-marine-safety-domestic-vessels-2012 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Australia's Marine Safety (Domestic Commercial Vessel) National Law Act 2012 creates a uniform national framework administered by AMSA (Australian Maritime Safety Authority) for all domestic commercia... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-amsa-marine-safety-domestic-vessels-2012.json #### BIMCO GENCON 2022 Charter Party - Voyage Charter Standard Terms: Laytime Calculation, Demurrage and Dispatch, Safe Port Warranty, Cargo Care Obligations, Lien on Cargo, General Average (York-Antwerp Rules), Arbitration Clause and BIMCO Dispute Resolution Clause - **ID**: bimco-gencon-cp-2022-charter-party - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: This charter party governs voyage chartering arrangements between shipowners and charterers, establishing obligations for laytime, demurrage, safe port warranty, cargo care, lien on cargo, and dispute... - **Discovery URL**: https://bidda.com/api/v1/nodes/bimco-gencon-cp-2022-charter-party.json #### Canada Shipping Act, 2001 (S.C. 2001, c. 26): Vessel Registration, Safety, Crewing and Pollution Prevention - **ID**: canada-canada-shipping-act-2001 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Canada Shipping Act, 2001 (S.C. 2001, c. 26) is the principal federal statute governing marine safety, vessel registration, crewing and the prevention of pollution from vessels in Canadian waters,... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-canada-shipping-act-2001.json #### China Maritime Safety Administration (MSA) - Vessel Traffic Service, Pollution Response and Port State Control - **ID**: china-maritime-safety-administration-msa-regulations - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: China's Maritime Safety Administration (MSA - Haishi Ju) under the Ministry of Transport administers maritime safety through the Maritime Traffic Safety Law (2021 revision, effective 1 September 2021)... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-maritime-safety-administration-msa-regulations.json #### EU EMSA Regulation 1406/2002 European Maritime Safety Agency Technical Assistance and Inspections - **ID**: eu-emsa-regulation-1406-2002-maritime-safety-agency - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Regulation (EC) No 1406/2002 establishes the European Maritime Safety Agency (EMSA) to provide technical assistance and coordinate EU-level responses to maritime safety, pollution prevention, and resp... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-emsa-regulation-1406-2002-maritime-safety-agency.json #### Regulation (EU) 2023/957 of the European Parliament and of the Council of 10 May 2023 amending Directive 2003/87/EC so as to improve and extend the EU Emissions Trading System to include maritime transport, and Regulation (EU) 2023/1805 on the use of renewable and low-carbon fuels in maritime transport and amending Directive 2009/16/EC - **ID**: eu-eu-ets-maritime-2024-shipping - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: This regulation requires ship operators of vessels above 5,000 gross tonnage (GT) conducting voyages within, to, or from EU ports to monitor, report, and surrender EU ETS allowances for CO2 emissions ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eu-ets-maritime-2024-shipping.json #### EU MRV Regulation 2015/757 - Maritime CO2 Emissions Monitoring, Reporting and Verification Framework - **ID**: eu-mrv-regulation-2015-757-maritime-ghg-monitoring - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2015/757 (MRV Regulation) requires ships of 5,000 GT and above calling at EU/EEA ports to monitor and report CO2 emissions, fuel consumption, distance travelled, and cargo carried on a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mrv-regulation-2015-757-maritime-ghg-monitoring.json #### Regulation (EU) 2015/757 of the European Parliament and of the Council - Article 11: Content of the emissions report - **ID**: eu-mrv-shipping-regulation-article-11-annual-reporting-obligations - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Companies must annually submit a verified emissions report for each ship by 30 April, containing specific ship and company data, monitoring method information, and annual monitoring results. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mrv-shipping-regulation-article-11-annual-reporting-obligations.json #### Regulation (EU) 2015/757 Article 13: Scope of verification activities and verification report - **ID**: eu-mrv-shipping-regulation-article-13-verification-by-accredited-verifier - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Organizations must have their monitoring plan and emissions report assessed by a verifier, correct any identified non-conformities, and obtain a satisfactory verification report. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mrv-shipping-regulation-article-13-verification-by-accredited-verifier.json #### Regulation (EU) 2015/757 on the monitoring, reporting and verification of carbon dioxide emissions from maritime transport, Article 19 - **ID**: eu-mrv-shipping-regulation-article-19-document-of-compliance - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Member States must ensure ships flying their flag comply with monitoring and reporting requirements, using the Document of Compliance as evidence, and must check for this document during port inspecti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mrv-shipping-regulation-article-19-document-of-compliance.json #### Regulation (EU) 2015/757 on the monitoring, reporting and verification of carbon dioxide emissions from maritime transport - Article 20 - **ID**: eu-mrv-shipping-regulation-article-20-enforcement - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: This article mandates Member States to establish and enforce a system of penalties, including potential expulsion orders, for ships failing to comply with monitoring and reporting obligations. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mrv-shipping-regulation-article-20-enforcement.json #### Regulation (EU) 2015/757 of the European Parliament and of the Council - Article 3 Definitions - **ID**: eu-mrv-shipping-regulation-article-3-definitions - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: This article establishes the official definition of 'CO2 emissions' as the release of CO2 into the atmosphere by ships, which must be used for all purposes of this Regulation. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mrv-shipping-regulation-article-3-definitions.json #### Regulation (EU) 2015/757 on the monitoring, reporting and verification of carbon dioxide emissions from maritime transport - Article 5: Methods for monitoring CO2 emissions and other relevant information - **ID**: eu-mrv-shipping-regulation-article-5-monitoring-methodology - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Companies must determine CO2 emissions for each of their ships using one of the methods specified in Annex I and monitor other relevant information according to the rules in Annex II. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mrv-shipping-regulation-article-5-monitoring-methodology.json #### Regulation (EU) 2015/757 of the European Parliament and of the Council - Article 8: Monitoring of activities within a reporting period - **ID**: eu-mrv-shipping-regulation-article-8-monitoring-plan - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Companies must monitor CO2 emissions for each ship on both a per-voyage and annual basis, using an assessed monitoring plan and specified methods from Annex I. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mrv-shipping-regulation-article-8-monitoring-plan.json #### Regulation (EU) 2017/352 - Article 11: Transparency of financial relations - **ID**: eu-port-services-regulation-article-11-charges-for-port-infrastructure - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Organizations receiving public funds for port services must maintain a transparent accounting system that clearly separates and identifies the source, allocation, and use of those funds across differe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-port-services-regulation-article-11-charges-for-port-infrastructure.json #### Regulation (EU) 2017/352 - Article 13: Port infrastructure charges - **ID**: eu-port-services-regulation-article-13-transparency-financial-relations - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: This article mandates that Member States levy a port infrastructure charge, sets rules for its structure and level, and requires port managing bodies to transparently inform users about charges and an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-port-services-regulation-article-13-transparency-financial-relations.json #### Regulation (EU) 2017/352 of the European Parliament and of the Council - Article 17 Relevant authorities - **ID**: eu-port-services-regulation-article-17-complaints-procedure - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Member States must ensure port users and stakeholders are informed of relevant authorities, notify the Commission of these authorities and any subsequent changes, and the Commission must publish this ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-port-services-regulation-article-17-complaints-procedure.json #### Regulation (EU) 2017/352 on establishing a framework for the provision of port services and common rules on the financial transparency of ports - Article 21: Transitional measures - **ID**: eu-port-services-regulation-article-21-workers-rights - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Organizations must amend any port service contracts concluded before 15 February 2017 that are not limited in time to ensure they comply with this Regulation by the deadline of 1 July 2025. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-port-services-regulation-article-21-workers-rights.json #### REGULATION (EU) 2017/352 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 15 February 2017 establishing a framework for the provision of port services and common rules on the financial transparency of ports - Article 24 Penalties - **ID**: eu-port-services-regulation-article-24-penalties - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Organizations must be aware of and comply with the effective, proportionate, and dissuasive penalties established by Member States for infringements of this Regulation. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-port-services-regulation-article-24-penalties.json #### Regulation (EU) 2017/352 on establishing a framework for the provision of port services and common rules on the financial transparency of ports - Article 3: Organisation of port services - **ID**: eu-port-services-regulation-article-3-definitions - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: This article outlines the potential conditions that may be imposed on port service providers for market access and mandates that terms of access to port facilities must be fair, reasonable, and non-di... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-port-services-regulation-article-3-definitions.json #### Regulation (EU) 2017/352 on port services and financial transparency of ports - Article 4: Minimum requirements - **ID**: eu-port-services-regulation-article-4-freedom-to-provide-port-services - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: This article allows port authorities to set transparent, objective, and non-discriminatory minimum requirements for port service providers, covering areas like professional qualifications, financial c... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-port-services-regulation-article-4-freedom-to-provide-port-services.json #### Regulation (EU) 2017/352 on establishing a framework for the provision of port services and common rules on the financial transparency of ports - Article 6: Limitations on the number of providers of port services - **ID**: eu-port-services-regulation-article-6-market-access-port-services - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: This article permits the managing body of a port or a competent authority to optionally limit the number of port service providers based on specific reasons, such as scarcity of space or obstruction o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-port-services-regulation-article-6-market-access-port-services.json #### Regulation (EU) 2017/352 on establishing a framework for the provision of port services and common rules on the financial transparency of ports - Article 8: Internal operator - **ID**: eu-port-services-regulation-article-8-requirements-public-service-obligations - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: This article outlines the conditions under which a port's managing body or competent authority may provide port services through an 'internal operator', defining the necessary control and operational ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-port-services-regulation-article-8-requirements-public-service-obligations.json #### Directive 2009/16/EC of the European Parliament and of the Council of 23 April 2009 on port State control - **ID**: eu-port-state-control-directive-2009-16 - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: This Directive establishes a harmonized EU-wide port State control (PSC) regime requiring all ships calling at EU ports to undergo risk-based inspections based on their ship risk profile (Article 5). ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-port-state-control-directive-2009-16.json #### EU Port Reception Facilities Directive 2019/883 Ship Waste Delivery and No-Special-Fee System - **ID**: eu-port-waste-reception-facilities-directive-2019-883 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2019/883 requires EU ports to provide adequate reception facilities for all ship-generated waste, mandates a no-special-fee system for MARPOL Annex V waste (garbage) making delivery to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-port-waste-reception-facilities-directive-2019-883.json #### Regulation (EU) No 1257/2013 on ship recycling and amending the Regulation (EC) No 1013/2006 and Directive 2009/16/EC - **ID**: eu-ship-recycling-regulation-1257-2013 - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The EU Ship Recycling Regulation 1257/2013 establishes strict requirements for the safe and environmentally sound recycling of ships flying the flag of EU Member States. It mandates the creation of an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ship-recycling-regulation-1257-2013.json #### EU Ship Recycling Regulation 1257/2013 - Hazardous Materials Inventory & Approved Facility - **ID**: eu-ship-recycling-regulation-1257-2013-hong-kong-convention - **Category**: Maritime & Shipping - **Version**: 2.0 - **BLUF**: EU Ship Recycling Regulation 1257/2013 (mirroring Hong Kong Convention) requires EU-flagged ships to maintain an Inventory of Hazardous Materials (IHM) certified by flag state, and ensures ship recycl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ship-recycling-regulation-1257-2013-hong-kong-convention.json #### EU Sulphur Directive 2016/802 Marine Fuel Sulphur Content Limits and Compliance - **ID**: eu-sulphur-content-marine-fuels-directive-2016-802 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2016/802 sets maximum sulphur content limits in marine fuels used in EU territorial waters and ports: 0.10% m/m in EU Sulphur Emission Control Areas (SECAs) including Baltic Sea, North ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sulphur-content-marine-fuels-directive-2016-802.json #### France Code des Transports Maritime - Seafarer Employment, DGTM Flag Registration and Cabotage - **ID**: france-code-des-transports-maritime-seafarer-employment - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: France's Code des transports (Transport Code, consolidated in 2010) governs maritime activities in its 5th Book (Activites maritimes, Articles L5000 onwards); the maritime employment provisions (Artic... - **Discovery URL**: https://bidda.com/api/v1/nodes/france-code-des-transports-maritime-seafarer-employment.json #### ICPC Recommendations - International Cable Protection Committee Best Practices: Submarine Cable Route Planning, Burial Depth Guidelines, Fishermen Liaison Programs, Cable Fault Repair Procedures, National Legislation Recommendations and IMO Circular MSC/Circ.1Cable - **ID**: icpc-recommendations-submarine-cable-protection - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: This regulation outlines best practices for the protection of submarine telecommunications and power cables through route planning, burial depth, stakeholder engagement, and repair protocols. It appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/icpc-recommendations-submarine-cable-protection.json #### IMO Anti-Fouling Systems Convention 2001 (AFS) - Harmful Coating Prohibition and Compliance - **ID**: imo-afs-convention-2001-anti-fouling-systems - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The IMO International Convention on the Control of Harmful Anti-Fouling Systems on Ships (AFS Convention 2001, entered into force 2008) prohibits the application of organotin-based anti-fouling paint ... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-afs-convention-2001-anti-fouling-systems.json #### IMO Guidelines on Maritime Autonomous Surface Ships (MASS) 2022 - Degrees of Automation (D1-D4), Regulatory Scoping Exercise Outcomes, Interaction with SOLAS/COLREGS/STCW, Remote Control Centre Requirements and Roadmap to MASS Code by 2028 - **ID**: imo-autonomous-ships-mass-guidelines-2022 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: This regulation establishes a framework for the safe, secure, and environmentally sound operation of Maritime Autonomous Surface Ships (MASS) across four defined degrees of autonomy. It applies to fla... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-autonomous-ships-mass-guidelines-2022.json #### IMO Ballast Water Management Convention 2004 (BWM) - Invasive Species Prevention & D-2 Standard Compliance - **ID**: imo-ballast-water-management-convention-2004-bwm - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The International Convention for the Control and Management of Ships' Ballast Water and Sediments (BWM Convention 2004), which entered into force on 8 September 2017, requires all ships to manage thei... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-ballast-water-management-convention-2004-bwm.json #### International Convention on Civil Liability for Bunker Oil Pollution Damage (BUNKER) - **ID**: imo-bunker-convention-2001-civil-liability - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Convention requires registered owners of ships over 1,000 gross tonnage to maintain compulsory insurance or financial security for pollution damage caused by bunker oil spills, with direct action ... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-bunker-convention-2001-civil-liability.json #### IMO Cape Town Agreement 2012 - International Agreement on the Implementation of the Provisions of the Torremolinos Protocol of 1993 - **ID**: imo-cape-town-agreement-2012-fishing-vessel-safety - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Cape Town Agreement of 2012 on the Implementation of the Provisions of the 1993 Torremolinos Protocol relating to the 1977 Torremolinos International Convention for the Safety of Fishing Vessels a... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-cape-town-agreement-2012-fishing-vessel-safety.json #### International Convention on Civil Liability for Oil Pollution Damage, 1992 Protocol - **ID**: imo-clc-1992-civil-liability-oil-pollution - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The 1992 CLC Protocol establishes strict liability for shipowners of seagoing oil-carrying vessels over 2,000 tons for pollution damage occurring in the territory, territorial sea, or exclusive econom... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-clc-1992-civil-liability-oil-pollution.json #### COLREGs 1972 - International Regulations for Preventing Collisions at Sea - **ID**: imo-colregs-1972-collision-regulations - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The Convention on the International Regulations for Preventing Collisions at Sea 1972 (COLREGs), adopted by IMO and in force since 15 July 1977, establishes the universal right-of-way rules, navigatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-colregs-1972-collision-regulations.json #### IMO FAL Convention 1965 - Convention on Facilitation of International Maritime Traffic - **ID**: imo-fal-convention-1965-maritime-facilitation - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The FAL Convention 1965 (Convention on Facilitation of International Maritime Traffic) establishes standardised procedures and documentation for the arrival, stay, and departure of ships, persons, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-fal-convention-1965-maritime-facilitation.json #### Hague-Visby Rules 1968 - Carrier Liability Under Bills of Lading and Package Limitations of Liability - **ID**: imo-hague-visby-rules-bill-of-lading - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Hague-Visby Rules consist of the International Convention for the Unification of Certain Rules of Law relating to Bills of Lading (Hague Rules), adopted at Brussels on 25 August 1924 and entered i... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-hague-visby-rules-bill-of-lading.json #### IMO HNS Convention 2010 - International Convention on Liability and Compensation for HNS - **ID**: imo-hns-convention-2010 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The HNS Convention 2010 (Protocol to the 1996 HNS Convention) establishes a two-tier liability and compensation system for damage caused by hazardous and noxious substances carried by sea: the shipown... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-hns-convention-2010.json #### Hong Kong International Convention for the Safe and Environmentally Sound Recycling of Ships - **ID**: imo-hong-kong-convention-ship-recycling-2009 - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The Hong Kong Convention requires ships to carry an Inventory of Hazardous Materials (IHM) verified through initial, renewal, and final surveys, and mandates ship recycling facilities to develop a Shi... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-hong-kong-convention-ship-recycling-2009.json #### International Code for the Construction and Equipment of Ships Carrying Dangerous Chemicals in Bulk (IBC Code): Ship Type 1/2/3 Classification, Tank Location Requirements, Cargo Containment, Vapour Detection, Fire Fighting Systems and Cargo Information Card - **ID**: imo-ibc-code-chemical-tankers - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The IBC Code establishes mandatory design, construction, and operational standards for chemical tankers carrying dangerous chemicals in bulk, classified into Ship Types 1, 2, and 3 based on hazard lev... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-ibc-code-chemical-tankers.json #### IMO IGC Code 2014 - International Code for Construction and Equipment of Ships Carrying Liquefied Gases in Bulk - **ID**: imo-igc-code-2014-liquefied-gas-carriers - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The 2014 IGC Code (International Code for the Construction and Equipment of Ships Carrying Liquefied Gases in Bulk) is the mandatory international safety standard for gas carrier vessels carrying liqu... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-igc-code-2014-liquefied-gas-carriers.json #### IMO IMSBC Code 2020 - International Maritime Solid Bulk Cargoes Code - **ID**: imo-imsbc-code-2020-solid-bulk-cargoes - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The IMSBC Code (International Maritime Solid Bulk Cargoes Code) is the mandatory international standard for the safe loading, carriage, and discharge of solid bulk cargoes. Effective from 1 January 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-imsbc-code-2020-solid-bulk-cargoes.json #### IMO ISM Code - International Safety Management System SOLAS Chapter IX Ship Operations and Shore Management - **ID**: imo-international-safety-management-code-ism-solas-ix - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The IMO International Safety Management Code (ISM Code) requires shipping companies to implement a documented Safety Management System covering policies, responsibilities, procedures, emergency prepar... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-international-safety-management-code-ism-solas-ix.json #### IMO ISPS Code 2002 - International Ship and Port Facility Security - **ID**: imo-international-ship-and-port-facility-security-code-isps-2002 - **Category**: Maritime & Shipping - **Version**: 2.0.0 - **BLUF**: The International Ship and Port Facility Security (ISPS) Code (2002 SOLAS amendments, Chapter XI-2) requires contracting governments, shipping companies, and port facilities to assess security risks a... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-international-ship-and-port-facility-security-code-isps-2002.json #### IMO Convention on Limitation of Liability for Maritime Claims (LLMC 1976/1996) - Shipowner Liability Cap - **ID**: imo-llmc-1976-limitation-liability-maritime-claims - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The IMO Convention on Limitation of Liability for Maritime Claims (LLMC 1976, as amended by the 1996 Protocol with revised limits effective 2015) provides shipowners, salvors, and their insurers the r... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-llmc-1976-limitation-liability-maritime-claims.json #### Convention on Limitation of Liability for Maritime Claims (LLMC) 1976, as amended by the 1996 Protocol and 2012 Amendments - Limitation of Liability for Maritime Claims: Limitation Fund Calculation (SDR per GT for Property/Personal Injury), Passengers Claims, Conduct Barring Limitation, Barrier Constitution and Distribution Rules - **ID**: imo-llmc-1976-protocol-1996-limitation-liability - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The LLMC 1976, as amended by the 1996 Protocol and 2012 amendments, establishes the conditions under which shipowners and salvors may limit their liability for maritime claims, including loss of life,... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-llmc-1976-protocol-1996-limitation-liability.json #### International Convention on Load Lines, 1966, as modified by the Protocol of 1988 - **ID**: imo-load-lines-convention-1966-protocol-88 - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: This regulation establishes minimum freeboard requirements for ships engaged in international voyages to ensure watertight integrity and safety against overloading, with specific provisions for zones,... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-load-lines-convention-1966-protocol-88.json #### Maritime Labour Convention 2006 (MLC 2006) - Seafarer Rights, Minimum Standards & Port State Control - **ID**: imo-maritime-labour-convention-2006-mlc - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The Maritime Labour Convention 2006 (MLC 2006), which entered into force on 20 August 2013, consolidates over 65 ILO maritime labour instruments and establishes the global minimum employment and welfa... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-maritime-labour-convention-2006-mlc.json #### IMO MARPOL 73/78 Annex I - Oil Pollution Prevention: Oily Bilge Water & Oil Record Book - **ID**: imo-marpol-73-78-annex-i-oil-pollution-prevention-oily-water - **Category**: Maritime & Shipping - **Version**: 2.0 - **BLUF**: MARPOL 73/78 Annex I prohibits discharge of oil and oily mixtures from ships into the sea - mandatory Oil Record Book entries for all machinery space operations, oily water separator requirements, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-marpol-73-78-annex-i-oil-pollution-prevention-oily-water.json #### IMO MARPOL 73/78 Annex VI - 2020 Global Sulphur Cap 0.5% and ECA Emissions Compliance for Ships - **ID**: imo-marpol-73-78-annex-vi-sulphur-cap-2020-air-pollution-ships - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: MARPOL Annex VI requires ships to use fuel oil with sulphur content not exceeding 0.50% m/m globally from 1 January 2020 (0.10% in Emission Control Areas), comply with NOx Tier III standards in design... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-marpol-73-78-annex-vi-sulphur-cap-2020-air-pollution-ships.json #### MARPOL Annex II - Regulations for the Control of Pollution by Noxious Liquid Substances in Bulk - **ID**: imo-marpol-annex-ii-noxious-liquid-substances - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: MARPOL Annex II regulates the discharge into the sea of noxious liquid substances (NLS) carried in bulk by ships. It entered into force on 6 April 1987 under the MARPOL Protocol 1978 and was substanti... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-marpol-annex-ii-noxious-liquid-substances.json #### MARPOL Annex III - Prevention of Pollution by Harmful Substances Carried by Sea in Packaged Form - **ID**: imo-marpol-annex-iii-packaged-harmful-substances - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: MARPOL 73/78 Annex III establishes minimum standards for packing, marking, labelling, documentation, stowage, quantity limitations, and exceptions for harmful substances carried by sea in packaged for... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-marpol-annex-iii-packaged-harmful-substances.json #### MARPOL Annex IV - Prevention of Pollution by Sewage from Ships - **ID**: imo-marpol-annex-iv-sewage-pollution - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: MARPOL 73/78 Annex IV regulates the discharge of sewage from ships, prohibiting discharge within 12 nautical miles of the nearest land except where the ship has an approved sewage treatment plant in o... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-marpol-annex-iv-sewage-pollution.json #### MARPOL Annex V - Prevention of Pollution by Garbage from Ships - **ID**: imo-marpol-annex-v-garbage-pollution - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: MARPOL 73/78 Annex V prohibits the discharge of all garbage into the sea (plastics, food waste, domestic wastes, cooking oil, incinerator ash, operational waste, cargo residues, and fishing gear) with... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-marpol-annex-v-garbage-pollution.json #### IMO MSC-FAL.1/Circ.3/Rev.3 Guidelines on Maritime Cyber Risk Management - **ID**: imo-msc-fal-1-circ-3-maritime-cybersecurity-2017 - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: This regulation requires shipping companies to integrate cyber risk management into their Safety Management Systems (SMS) as defined by the ISM Code, ensuring operational resilience to cyber threats b... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-msc-fal-1-circ-3-maritime-cybersecurity-2017.json #### IMO Nairobi International Convention on the Removal of Wrecks 2007 - **ID**: imo-nairobi-wreck-removal-convention-2007 - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The Nairobi Wreck Removal Convention (NWRC, 2007 - 64 Contracting States as of April 2026, in force 2015) is the first binding international instrument requiring registered owners of ships of 300 GT o... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-nairobi-wreck-removal-convention-2007.json #### IMO International Convention on Oil Pollution Preparedness, Response and Co-operation 1990 (OPRC Convention) - **ID**: imo-oprc-convention-1990-oil-pollution-preparedness - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The OPRC Convention 1990 requires ships, offshore units, and coastal States to maintain oil pollution emergency plans, establish national reporting and response systems, and co-operate internationally... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-oprc-convention-1990-oil-pollution-preparedness.json #### IMO OPRC-HNS Protocol 2000 - Preparedness and Response to Pollution Incidents Involving Hazardous and Noxious Substances - **ID**: imo-oprc-hns-protocol-2000-hazardous-substances - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The OPRC-HNS Protocol 2000 extends the OPRC 1990 oil pollution framework to hazardous and noxious substances (HNS), requiring States Parties to establish national HNS pollution emergency plans, mainta... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-oprc-hns-protocol-2000-hazardous-substances.json #### IMO Polar Code 2017 - International Code for Ships Operating in Polar Waters, Polar Ship Certificate and Operational Restrictions - **ID**: imo-polar-code-2017-msc-385-94-resolution - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The International Code for Ships Operating in Polar Waters (Polar Code) was adopted by the International Maritime Organization (IMO) through Resolution MSC.385(94) of 21 November 2014 (safety provisio... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-polar-code-2017-msc-385-94-resolution.json #### IMO International Convention on Maritime Search and Rescue 1979 (SAR Convention) - **ID**: imo-sar-convention-1979-maritime-rescue - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The SAR Convention 1979 establishes a globally co-ordinated maritime search and rescue framework dividing the world's oceans into Search and Rescue Regions (SRRs), each served by a 24/7 Rescue Coordin... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-sar-convention-1979-maritime-rescue.json #### IMO International Convention on Maritime Search and Rescue (SAR 1979) - Rescue Coordination Framework - **ID**: imo-sar-convention-1979-maritime-search-rescue - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The IMO International Convention on Maritime Search and Rescue (SAR 1979, as amended by 1998 Annex amendments) establishes the global framework for maritime search and rescue coordination, dividing oc... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-sar-convention-1979-maritime-search-rescue.json #### International Convention on Standards of Training, Certification and Watchkeeping for Seafarers, 1978, as amended (Manila Amendments 2010) - **ID**: imo-stcw-convention-1978-2010-manila - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The STCW Convention, as amended by the 2010 Manila Amendments, establishes mandatory minimum standards for training, certification, and watchkeeping for seafarers worldwide, including requirements for... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-stcw-convention-1978-2010-manila.json #### IMO Convention for the Suppression of Unlawful Acts Against the Safety of Maritime Navigation 1988 (SUA Convention) - **ID**: imo-sua-convention-1988-maritime-security - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The SUA Convention 1988 criminalises unlawful acts against the safety of ships - including seizing control, destroying or endangering vessels, and committing violence against persons on board - and re... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-sua-convention-1988-maritime-security.json #### International Convention on Tonnage Measurement of Ships 1969 - Gross and Net Tonnage Calculation, Measurement Rules for Internal Spaces, Enclosed Spaces, Open Spaces and Exempted Spaces, ITC Certificate and Relationship to Port Dues and Manning Regulations - **ID**: imo-tonnage-convention-1969-measurement - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: This regulation establishes a universal system for calculating gross tonnage (GT) and net tonnage (NT) for ships built on or after 18 July 1982, based on the moulded volume of all enclosed spaces and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-tonnage-convention-1969-measurement.json #### India Merchant Shipping Act 1958 - DGSHIPPING Survey, Certification and Colombo MOU Port State Control - **ID**: india-merchant-shipping-act-1958-dgshipping - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: India's Merchant Shipping Act 1958 (Act 44 of 1958, as amended through the Merchant Shipping (Amendment) Act 2016) administered by the Directorate General of Shipping (DG Shipping) regulates Indian-fl... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-merchant-shipping-act-1958-dgshipping.json #### Indonesia Shipping Law No. 17/2008 - Cabotage Principle and DJPLP Port Authority Framework - **ID**: indonesia-shipping-law-17-2008-djplp - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Indonesia's Law No. 17 of 2008 on Shipping (Undang-Undang Pelayaran) enforces the asas cabotase (cabotage principle) reserving domestic sea cargo transport exclusively for Indonesian-flagged vessels a... - **Discovery URL**: https://bidda.com/api/v1/nodes/indonesia-shipping-law-17-2008-djplp.json #### International Convention on Salvage 1989 - Maritime Salvage Law and Special Compensation - **ID**: international-salvage-convention-1989 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The International Convention on Salvage 1989 (entered into force 14 July 1996) is the primary international treaty governing maritime salvage operations - the rescue of ships and their cargoes from pe... - **Discovery URL**: https://bidda.com/api/v1/nodes/international-salvage-convention-1989.json #### IOPC FUND 1992 - International Oil Pollution Compensation Fund Convention and Supplementary Fund Protocol - **ID**: iopc-fund-1992-oil-pollution-compensation - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The International Convention on the Establishment of an International Fund for Compensation for Oil Pollution Damage, 1992 (Fund Convention 1992) establishes the International Oil Pollution Compensati... - **Discovery URL**: https://bidda.com/api/v1/nodes/iopc-fund-1992-oil-pollution-compensation.json #### Liberia Ship Registry (LISCR) - World's Second Largest Open Ship Registry Regulatory Framework - **ID**: liberia-ship-registry-liscr - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Liberia Ship Registry, administered by the Liberian International Ship and Corporate Registry (LISCR LLC) on behalf of the Republic of Liberia, is the world's second largest ship registry with ove... - **Discovery URL**: https://bidda.com/api/v1/nodes/liberia-ship-registry-liscr.json #### London Maritime Arbitrators Association Terms 2021 - Arbitration Agreement Formation, Tribunal Appointment Procedures, Interlocutory Applications, Security for Costs, LMAA Small Claims Procedure (SCP), Intermediate Claims Procedure (ICP) and Award Enforcement via New York Convention - **ID**: lmaa-london-maritime-arbitration-terms-2021 - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The LMAA Terms 2021 govern the conduct of maritime arbitration in London, including procedures for tribunal appointment, interlocutory applications, and cost security. It applies to parties agreeing t... - **Discovery URL**: https://bidda.com/api/v1/nodes/lmaa-london-maritime-arbitration-terms-2021.json #### London Protocol 1996 - Prevention of Marine Pollution by Dumping of Wastes - **ID**: london-protocol-1996-marine-dumping - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The London Protocol 1996 (Protocol to the Convention on the Prevention of Marine Pollution by Dumping of Wastes and Other Matter 1972 - 53 Contracting Parties as of April 2026, in force 2006) replaced... - **Discovery URL**: https://bidda.com/api/v1/nodes/london-protocol-1996-marine-dumping.json #### Marshall Islands Ship Registry (RMIS) - Republic of the Marshall Islands Maritime Administrator - **ID**: marshall-islands-ship-registry-rmis - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Republic of the Marshall Islands (RMI) Ship Registry, administered by the Republic of the Marshall Islands Maritime Administrator (RMIS) through International Registries Inc. (IRI) offices worldwi... - **Discovery URL**: https://bidda.com/api/v1/nodes/marshall-islands-ship-registry-rmis.json #### ILO Maritime Labour Convention 2006 - Seafarer Employment Agreements, Working Hours, and Living Standards - **ID**: mlc-2006-maritime-labour-convention-seafarer-employment-conditions - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The ILO Maritime Labour Convention 2006 (MLC 2006) establishes minimum working and living standards for seafarers including maximum hours of work, minimum rest periods, repatriation rights, seafarer e... - **Discovery URL**: https://bidda.com/api/v1/nodes/mlc-2006-maritime-labour-convention-seafarer-employment-conditions.json #### New Zealand Maritime Transport Act 1994 -- Ship Registration, Safety, Pollution, and Maritime Levies - **ID**: nz-maritime-transport-act-1994 - **Category**: Maritime & Shipping - **Version**: 2024.1.0 - **BLUF**: The Maritime Transport Act 1994 (MTA) is the principal New Zealand statute governing maritime safety, the New Zealand Register of Ships, maritime pollution prevention, and maritime levies. The Act is ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-maritime-transport-act-1994.json #### Panama Maritime Authority Ship Registry (AMP) - World's Largest Open Ship Registry Regulatory Framework - **ID**: panama-maritime-authority-ship-registry - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Panama Maritime Authority (Autoridad Marítima de Panamá, AMP) administers the world's largest ship registry, with over 8,000 vessels of more than 220 million gross tonnes registered as at 2024 - a... - **Discovery URL**: https://bidda.com/api/v1/nodes/panama-maritime-authority-ship-registry.json #### Paris Memorandum of Understanding on Port State Control 1982 - Ship Inspection Targeting and Detention Framework - **ID**: paris-memorandum-port-state-control-1982 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Paris MOU on Port State Control (1982, 27 European and North Atlantic member states) coordinates ship inspections by port authorities to verify compliance with international maritime conventions (... - **Discovery URL**: https://bidda.com/api/v1/nodes/paris-memorandum-port-state-control-1982.json #### Philippines Maritime Industry Authority Act PD 474 - MARINA Vessel Registration, Manning and Seafarer Certification - **ID**: philippines-marina-merchant-shipping-act-pd-474 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Maritime Industry Authority (MARINA) was established under Presidential Decree (PD) 474 (1974) as the primary government body regulating the Philippine maritime industry; Republic Act 9295 (Domest... - **Discovery URL**: https://bidda.com/api/v1/nodes/philippines-marina-merchant-shipping-act-pd-474.json #### Singapore Merchant Shipping Act (Cap. 179) - MPA Maritime Regulatory Framework - **ID**: singapore-mpa-merchant-shipping-act-cap-179 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Singapore's Merchant Shipping Act (Cap. 179) administered by MPA (Maritime and Port Authority of Singapore) governs vessel registration under the Singapore Registry of Ships (SRS), port state control ... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-mpa-merchant-shipping-act-cap-179.json #### UK Marine and Coastal Access Act 2009 - **ID**: uk-marine-coastal-access-act-2009 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The UK Marine and Coastal Access Act 2009 (MCAA) is the principal Act establishing the legal framework for marine planning and management in UK waters. The Act creates the Marine Management Organisati... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-marine-coastal-access-act-2009.json #### UK Merchant Shipping Act 1995 -- Ship Registration, Safety Standards, and Marine Pollution Liability - **ID**: uk-merchant-shipping-act-1995 - **Category**: Maritime & Shipping - **Version**: 2024.1.0 - **BLUF**: The Merchant Shipping Act 1995 (MSA 1995) is the principal UK statute governing merchant shipping, ship registration, maritime safety, and liability for oil pollution. Part II establishes the UK Ship ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-merchant-shipping-act-1995.json #### Merchant Shipping Act 1995 - **ID**: uk-merchant-shipping-act-1995-c21 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Merchant Shipping Act 1995 establishes the legal framework for the registration, operation, safety, and crewing of British ships, including requirements for seaworthiness, manning, and liability. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-merchant-shipping-act-1995-c21.json #### UK Sea Fish (Conservation) Act 1967 (c.84): Size Limits, Gear Regulation and Boat Licensing - **ID**: uk-sea-fish-conservation-act-1967 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Sea Fish (Conservation) Act 1967 (c. 84) is a principal statute for the conservation of sea fish in United Kingdom waters, regulating the size of fish that may be taken, the gear that may be used,... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sea-fish-conservation-act-1967.json #### UK Sea Fisheries (Shellfish) Act 1967 (c.83): Several and Regulating Orders for Shellfish Fisheries - **ID**: uk-sea-fisheries-shellfish-act-1967 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Sea Fisheries (Shellfish) Act 1967 (c. 83) provides for the establishment and protection of shellfish fisheries in England and Wales through several and regulating orders, administered by the fish... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sea-fisheries-shellfish-act-1967.json #### UN Agreement on Marine Biological Diversity of Areas Beyond National Jurisdiction - BBNJ 2023 (High Seas Treaty) - **ID**: un-bbnj-agreement-2023-marine-biodiversity - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The BBNJ Agreement (adopted June 2023, 106+ signatures as of April 2026, not yet in force - requires 60 ratifications) establishes the first comprehensive international legal framework for conservatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-bbnj-agreement-2023-marine-biodiversity.json #### UN Fish Stocks Agreement - UNFSA 1995 (Straddling and Highly Migratory Stocks) - **ID**: un-fish-stocks-agreement-1995 - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The UNFSA (92 State Parties as of April 2026) implements UNCLOS Articles 63-64 by establishing binding conservation and management obligations for straddling and highly migratory fish stocks on the hi... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-fish-stocks-agreement-1995.json #### UN Hamburg Rules 1978 - United Nations Convention on the Carriage of Goods by Sea - **ID**: un-hamburg-rules-1978-sea-carriage - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Hamburg Rules 1978 modernised sea cargo liability by imposing fault-based liability on carriers for all cargo (including deck cargo and live animals), extending the carrier's period of responsibil... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-hamburg-rules-1978-sea-carriage.json #### United Nations Convention on the Law of the Sea of 10 December 1982 - Part II: Territorial Sea and Contiguous Zone - **ID**: unclos-part-ii-territorial-sea-contiguous-zone - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: This regulation establishes the legal framework for the territorial sea, extending up to 12 nautical miles from the baseline, where coastal States exercise sovereignty subject to the right of innocent... - **Discovery URL**: https://bidda.com/api/v1/nodes/unclos-part-ii-territorial-sea-contiguous-zone.json #### United Nations Convention on the Law of the Sea of 10 December 1982, Part V - Exclusive Economic Zone - **ID**: unclos-part-v-exclusive-economic-zone - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: Part V of UNCLOS grants coastal States sovereign rights over the exploration, exploitation, conservation, and management of living and non-living resources within an exclusive economic zone (EEZ) exte... - **Discovery URL**: https://bidda.com/api/v1/nodes/unclos-part-v-exclusive-economic-zone.json #### UNCLOS Part VII - High Seas (Articles 86-120): Freedom of Navigation, Jurisdiction, and Conservation - **ID**: unclos-part-vii-high-seas - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: UNCLOS Part VII (Articles 86-120) establishes the legal regime for the high seas - the area of ocean beyond national jurisdiction (beyond Exclusive Economic Zones and the territorial sea). Key princip... - **Discovery URL**: https://bidda.com/api/v1/nodes/unclos-part-vii-high-seas.json #### UNCLOS Part XII - Protection and Preservation of the Marine Environment (Articles 192-237) - **ID**: unclos-part-xii-marine-environment-protection-1982 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: UNCLOS Part XII (Articles 192-237) establishes the foundational international legal framework for protection and preservation of the marine environment; imposes a general obligation on all states to p... - **Discovery URL**: https://bidda.com/api/v1/nodes/unclos-part-xii-marine-environment-protection-1982.json #### US 33 CFR Part 100: Marine Events of National and International Significance and Regattas - **ID**: us-33-cfr-part-100-marine-events-regattas-parades - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: US 33 CFR Part 100 governs the Coast Guard regulation of regattas marine parades and other marine events that pose potential hazards to navigation safety of life and property in waters of the United S... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-33-cfr-part-100-marine-events-regattas-parades.json #### US 33 CFR Part 165: Regulated Navigation Areas and Limited Access Areas - **ID**: us-33-cfr-part-165-regulated-navigation-areas-limited-access - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: US 33 CFR Part 165 governs the establishment of Regulated Navigation Areas (RNAs), safety zones, security zones, and naval vessel protection zones (NVPZ) in US navigable waters by the Coast Guard. Coa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-33-cfr-part-165-regulated-navigation-areas-limited-access.json #### US 50 CFR Part 600: Magnuson-Stevens Act Provisions - **ID**: us-50-cfr-part-600-magnuson-stevens-fishery-management - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: US 50 CFR Part 600 implements the Magnuson-Stevens Fishery Conservation and Management Act (MSA) of 1976 (as amended 2006) by establishing the framework for federal management of fisheries in the US E... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-50-cfr-part-600-magnuson-stevens-fishery-management.json #### Vessels Carrying Oil, Noxious Liquid Substances, Garbage, Municipal or Commercial Waste, and Ballast Water - **ID**: us-act-prevent-pollution-ships-33-cfr-151 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: This regulation implements MARPOL 73/78 and related environmental protocols in U.S. waters, requiring vessels to maintain oil record books, garbage management plans, and ballast water management syste... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-act-prevent-pollution-ships-33-cfr-151.json #### US Coast Guard Vessel Documentation 46 CFR 67 - Jones Act Cabotage and US Coastwise Trade Restrictions - **ID**: us-coast-guard-vessel-documentation-46-cfr-67-jones-act-cabotage - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Jones Act (46 USC Chapter 551) requires that merchandise transported by water between US ports be carried on vessels that are US-built, US-owned, US-registered, and crewed by US citizens or perman... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-coast-guard-vessel-documentation-46-cfr-67-jones-act-cabotage.json #### 46 U.S.C. § 55102 - Vessels Required To Be Built in the United States for Coastwise Trade - **ID**: us-jones-act-cabotage-46-usc-55102 - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: 46 U.S.C. § 55102 mandates that vessels engaged in coastwise trade - the transportation of merchandise or passengers between points in the United States - must be U.S.-built, U.S.-owned, U.S.-flagged,... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-jones-act-cabotage-46-usc-55102.json #### US Longshore and Harbor Workers' Compensation Act (33 USC ch 18): Maritime Workers' Compensation - **ID**: us-longshore-and-harbor-workers-compensation-act - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Longshore and Harbor Workers' Compensation Act (33 U.S.C. ch. 18) provides a no-fault workers' compensation system for maritime workers injured on the navigable waters of the United States and adj... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-longshore-and-harbor-workers-compensation-act.json #### US Magnuson-Stevens Fishery Conservation and Management Act (16 USC ch 38): Federal Fishery Management and the EEZ - **ID**: us-magnuson-stevens-fishery-conservation-and-management-act - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Magnuson-Stevens Fishery Conservation and Management Act (16 U.S.C. ch. 38) is the primary federal statute governing the management of marine fisheries in US federal waters, administered by the Na... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-magnuson-stevens-fishery-conservation-and-management-act.json #### US Merchant Marine Act of 1936 (46 USC 50101) - National Maritime Policy and Maritime Administration - **ID**: us-merchant-marine-act-1936-46-usc-50101 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Merchant Marine Act of 1936 declared that it is necessary for the national defense and the development of foreign and domestic commerce of the United States to have a merchant marine sufficient to... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-merchant-marine-act-1936-46-usc-50101.json #### Oil Pollution Act of 1990 (OPA) - **ID**: us-oil-pollution-act-1990-opa-90 - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: The Oil Pollution Act (OPA) of 1990 requires oil storage facilities and vessels to submit response plans for large discharges and mandates the development of Area Contingency Plans for regional oil sp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-oil-pollution-act-1990-opa-90.json #### US Ocean Shipping Reform Act of 2022 (Public Law 117-146) - Container Shipping Practices and FMC Oversight - **ID**: us-osra-2022-ocean-shipping-reform-pl-117-146 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Ocean Shipping Reform Act of 2022 amended the Shipping Act of 1984 to expand Federal Maritime Commission oversight of ocean common carrier practices by prohibiting unreasonable refusal to deal or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-osra-2022-ocean-shipping-reform-pl-117-146.json #### US Shipping Act of 1984 (46 USC ch 401): Ocean Carrier Agreements, Tariffs and FMC Regulation - **ID**: us-shipping-act-1984 - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The Shipping Act of 1984 (46 U.S.C. ch. 401 and related chapters) regulates the ocean liner shipping trades to and from the United States, administered by the Federal Maritime Commission (FMC). Sectio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-shipping-act-1984.json #### 33 CFR Part 104 - Maritime Security: Vessels (USCG) - **ID**: us-uscg-33-cfr-104-maritime-security-vessels - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: USCG 33 CFR Part 104 implements the Maritime Transportation Security Act for vessels, requiring covered vessels to complete a Vessel Security Assessment, develop and obtain approval of a Vessel Securi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-uscg-33-cfr-104-maritime-security-vessels.json #### 33 CFR Part 105 - Maritime Security: Facilities (USCG) - **ID**: us-uscg-33-cfr-105-maritime-security-facilities - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: USCG 33 CFR Part 105 implements the Maritime Transportation Security Act for waterfront facilities, requiring covered facilities to complete a Facility Security Assessment, develop and obtain approval... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-uscg-33-cfr-105-maritime-security-facilities.json #### 33 CFR Part 154 - Facilities Transferring Oil or Hazardous Material in Bulk (USCG) - **ID**: us-uscg-33-cfr-154-marine-oil-transfer-facilities - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: USCG 33 CFR Part 154 sets the oil pollution prevention requirements for marine transfer facilities, requiring covered facilities to submit a letter of intent and undergo examinations, maintain an appr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-uscg-33-cfr-154-marine-oil-transfer-facilities.json #### 33 CFR Part 155 - Oil or Hazardous Material Pollution Prevention Regulations for Vessels (USCG) - **ID**: us-uscg-33-cfr-155-vessel-oil-pollution-prevention - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: USCG 33 CFR Part 155 sets the oil pollution prevention requirements for vessels, requiring covered vessels to carry discharge removal equipment for their size class, provide emergency control, towing,... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-uscg-33-cfr-155-vessel-oil-pollution-prevention.json #### 33 CFR Part 165 - Regulated Navigation Areas and Limited Access Areas (USCG) - **ID**: us-uscg-33-cfr-165-regulated-navigation-limited-access-areas - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: USCG 33 CFR Part 165 establishes the framework for regulated navigation areas and limited and controlled access areas, setting the procedures to establish and notify areas, the use of geographic coord... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-uscg-33-cfr-165-regulated-navigation-limited-access-areas.json #### 46 CFR Part 197 - General Provisions (Commercial Diving Operations) (USCG) - **ID**: us-uscg-46-cfr-197-commercial-diving-operations - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: USCG 46 CFR Part 197 sets the safety standards for commercial diving operations from vessels and facilities subject to Coast Guard jurisdiction, requiring designation of a person-in-charge and diving ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-uscg-46-cfr-197-commercial-diving-operations.json #### US Coast Guard 46 CFR - Vessel Inspection and Certification: COI (Certificate of Inspection) Requirements by Vessel Type, Annual/Drydock/Underwater Surveys, Structural Fire Protection, Life-Saving Appliances, Stability Letters and USCG Alternative Compliance Program - **ID**: us-uscg-46-cfr-inspection-certification - **Category**: Maritime & Shipping - **Version**: 1.0.1 - **BLUF**: This regulation establishes the requirements for the issuance and maintenance of Certificates of Inspection (COI) for vessels subject to Coast Guard jurisdiction, including mandatory annual, drydock, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-uscg-46-cfr-inspection-certification.json #### York-Antwerp Rules 2016 - International Rules for General Average - **ID**: york-antwerp-rules-2016-general-average - **Category**: Maritime & Shipping - **Version**: 1.0.0 - **BLUF**: The York-Antwerp Rules 2016 (YAR 2016) are the internationally accepted standard for adjusting general average - the ancient maritime law principle by which extraordinary sacrifices or expenditures ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/york-antwerp-rules-2016-general-average.json ### Medical & Healthcare (338 nodes) #### 3D-Printed / Additively Manufactured Medical Devices - Regulatory & Quality Requirements (2026) - **ID**: 3d-printed-medical-devices-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Additively manufactured (3D-printed) medical devices require specific regulatory controls covering design validation, material qualification, process validation, post-processing, sterility assurance, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/3d-printed-medical-devices-2026.json #### AI-Enabled Pharmacovigilance Systems - Global Governance & Validation Requirements (2026) - **ID**: ai-pharmacovigilance-governance-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: AI systems used for signal detection, adverse event processing, literature monitoring, and risk assessment in pharmacovigilance must meet stringent validation, explainability, bias mitigation, human o... - **Discovery URL**: https://bidda.com/api/v1/nodes/ai-pharmacovigilance-governance-2026.json #### AI in Radiology & Medical Imaging - Governance, Validation & Clinical Use (2026) - **ID**: ai-radiology-imaging-governance-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Clinical governance framework for the deployment and ongoing use of Artificial Intelligence in radiology and medical imaging. It addresses algorithmic bias, continuous monitoring for model drift, phys... - **Discovery URL**: https://bidda.com/api/v1/nodes/ai-radiology-imaging-governance-2026.json #### Argentina ANMAT Medical Device Registration & Local Agent Requirements 2026 - **ID**: argentina-anmat-md-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: ANMAT updated Resolution 2026 strengthens risk classification alignment with IMDRF, mandatory local representative for foreign manufacturers, and enhanced post-market surveillance. Class III/IV device... - **Discovery URL**: https://bidda.com/api/v1/nodes/argentina-anmat-md-2026.json #### Australia My Health Records Act 2012 - National Digital Health Record System - **ID**: au-my-health-records-act-2012 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The My Health Records Act 2012 (Commonwealth, Act No. 63 of 2012) establishes Australia's national digital health record system administered by the Australian Digital Health Agency as System Operator ... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-my-health-records-act-2012.json #### Australia Therapeutic Goods Act 1989 -- TGA Registration, Medical Device Conformity, and Advertising - **ID**: au-therapeutic-goods-act-1989 - **Category**: Medical & Healthcare - **Version**: 2024.1.0 - **BLUF**: The Therapeutic Goods Act 1989 (TGA Act) establishes the Therapeutic Goods Administration (TGA) as Australia's regulator for medicines, medical devices, biologicals, and other therapeutic goods. No pe... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-therapeutic-goods-act-1989.json #### AU Therapeutic Goods Act 1989 (TGA) - Medical Device Conformity Assessment and ARTG Inclusion - **ID**: au-therapeutic-goods-act-1989-tga-medical-device-conformity-assessment - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Therapeutic Goods Administration (TGA) regulates medical devices in Australia under the Therapeutic Goods Act 1989 and Therapeutic Goods (Medical Devices) Regulations 2002. Devices must be include... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-therapeutic-goods-act-1989-tga-medical-device-conformity-assessment.json #### My Health Record Act 2012 (Australia) - Data Governance and Secondary Use Controls - **ID**: australia-myhealthrecord-act-2012-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The My Health Record Act 2012 governs the collection, use, and disclosure of health information in Australia’s national digital health record system. It includes strict rules for primary use (healthca... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-myhealthrecord-act-2012-2026.json #### Guidance on Digital Health Technologies - Software as a Medical Device (SaMD) Classification, Advertising Rules and Post-Market Monitoring - **ID**: australia-tga-digital-health-guidance-2023 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: This guidance outlines the Therapeutic Goods Administration's (TGA) regulatory framework for Software as a Medical Device (SaMD) in Australia, including classification rules based on risk, advertising... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-tga-digital-health-guidance-2023.json #### Australia TGA - Therapeutic Goods (Medical Devices) Regulations 2002 (2026 Reforms) - **ID**: australia-tga-medical-device-regulation-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Therapeutic Goods Administration (TGA) regulates medical devices and SaMD under the Therapeutic Goods Act 1989 and Regulations 2002. 2026 reforms introduce strengthened cybersecurity requirements,... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-tga-medical-device-regulation-2026.json #### Canada Health Act 1984 (R.S.C. 1985, c. C-6) - National Health Insurance Criteria - **ID**: ca-canada-health-act-1984 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: The Canada Health Act (R.S.C. 1985, c. C-6) establishes the federal criteria and conditions that provincial and territorial health insurance plans must satisfy to receive full federal cash contributio... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-canada-health-act-1984.json #### CA Health Canada Medical Devices Regulations SOR/98-282 - Licence and Safety Requirements - **ID**: ca-health-canada-medical-devices-regulations-sir-sor-98-282 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Health Canada regulates medical devices in Canada under the Medical Devices Regulations (SOR/98-282) made under the Food and Drugs Act. Class II, III, and IV devices require a Medical Device Licence (... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-health-canada-medical-devices-regulations-sir-sor-98-282.json #### California Confidentiality of Medical Information Act (CMIA) - Civil Code §§ 56-56.245 (2026) - **ID**: california-cmia-health-data-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The CMIA provides California-specific protections for medical information beyond HIPAA. It imposes strict consent requirements for disclosure, prohibits sale of medical information, requires breach no... - **Discovery URL**: https://bidda.com/api/v1/nodes/california-cmia-health-data-2026.json #### Canada PHIPA / PIPEDA - Health Information Protection (Ontario & Federal Alignment 2026) - **ID**: canada-phipa-federal-health-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Ontario’s Personal Health Information Protection Act (PHIPA) and federal PIPEDA govern health information. Key obligations include consent, safeguards, breach notification (to affected individuals and... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-phipa-federal-health-2026.json #### Switzerland Federal Health Insurance Act 1994 (KVG/LAMal) - SR 832.10 - **ID**: ch-kvg-krankenversicherungsgesetz-1994 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: The Swiss Federal Health Insurance Act (Krankenversicherungsgesetz, KVG; SR 832.10) establishes the compulsory basic health insurance (Grundversicherung/assurance de base) regime in Switzerland, requi... - **Discovery URL**: https://bidda.com/api/v1/nodes/ch-kvg-krankenversicherungsgesetz-1994.json #### China NMPA - Regulation on AI Medical Devices and SaMD (2026) - **ID**: china-nmpa-ai-medical-devices-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The National Medical Products Administration (NMPA) regulates AI-enabled medical devices and Software as a Medical Device under the Medical Device Regulation and specific AI guidelines. Requirements i... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-nmpa-ai-medical-devices-2026.json #### Clinical Decision Support (CDS) AI Systems - Global Governance & Regulatory Obligations (2026) - **ID**: clinical-decision-support-ai-governance-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: AI-powered Clinical Decision Support systems are subject to stringent oversight when they influence diagnosis, treatment, or patient management. Requirements include rigorous clinical validation, tran... - **Discovery URL**: https://bidda.com/api/v1/nodes/clinical-decision-support-ai-governance-2026.json #### Combination Products (Drug-Device) - Regulatory Governance & Lifecycle Requirements (2026) - **ID**: combination-products-drug-device-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Combination products (e.g., drug-eluting stents, prefilled syringes, digital therapeutics with drug components) require coordinated regulatory oversight under primary mode of action (PMOA). Manufactur... - **Discovery URL**: https://bidda.com/api/v1/nodes/combination-products-drug-device-2026.json #### Companion Diagnostics (CDx) - IVDR & Global Regulatory Requirements (2026) - **ID**: companion-diagnostics-ivdr-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Regulatory framework governing Companion Diagnostics (CDx) under the EU In Vitro Diagnostic Medical Devices Regulation (IVDR) 2017/746. It addresses the co-development of drugs and CDx, requiring Noti... - **Discovery URL**: https://bidda.com/api/v1/nodes/companion-diagnostics-ivdr-2026.json #### Connected Health Ecosystems & IoMT Security Framework (2026) - **ID**: connected-health-ecosystems-security-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Comprehensive cybersecurity architecture for the Internet of Medical Things (IoMT) and connected health ecosystems. It addresses the vulnerabilities introduced when legacy medical devices, consumer we... - **Discovery URL**: https://bidda.com/api/v1/nodes/connected-health-ecosystems-security-2026.json #### DICOM Imaging Standard - **ID**: dicom-imaging-standard - **Category**: Medical & Healthcare - **Version**: 1.1.1 - **BLUF**: DICOM (Digital Imaging and Communications in Medicine) is the international standard for medical imaging and related information. It specifies the network protocols for image exchange (PACS/RIS integr... - **Discovery URL**: https://bidda.com/api/v1/nodes/dicom-imaging-standard.json #### Digital Therapeutics (DTx) Regulatory Framework - FDA, EMA & Global Convergence 2026 - **ID**: digital-therapeutics-dtx-framework-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Comprehensive guidance on evidence standards, reimbursement pathways, and post-market surveillance for prescription digital therapeutics. Emphasizes clinical validation equivalent to traditional thera... - **Discovery URL**: https://bidda.com/api/v1/nodes/digital-therapeutics-dtx-framework-2026.json #### Digital Therapeutics (DTx) - Regulatory Classification & Market Access (2026) - **ID**: digital-therapeutics-dtx-regulation-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Digital Therapeutics are software-driven interventions that deliver evidence-based therapeutic treatments for medical conditions. They are regulated as medical devices (often SaMD) in most jurisdictio... - **Discovery URL**: https://bidda.com/api/v1/nodes/digital-therapeutics-dtx-regulation-2026.json #### Regulation (EC) No 1394/2007 of the European Parliament and of the Council of 13 November 2007 on advanced therapy medicinal products and amending Directive 2001/83/EC and Regulation (EC) No 726/2004 - **ID**: eu-advanced-therapy-medicinal-products-1394-2007 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes a harmonized EU framework for advanced therapy medicinal products (ATMPs), including gene therapies, somatic cell therapies, and tissue-engineered products. It mandates a s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-advanced-therapy-medicinal-products-1394-2007.json #### EU AI Act - High-Risk AI Systems in Medical Devices & Healthcare (2026) - **ID**: eu-ai-act-high-risk-medical-ai-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Under the EU AI Act, most AI systems used in medical devices, clinical decision support, patient risk assessment, and biometric categorization are classified as high-risk. Providers must comply with s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-high-risk-medical-ai-2026.json #### Regulation (EU) No 536/2014 on clinical trials on medicinal products for human use - Article 58: Archiving of the clinical trial master file - **ID**: eu-clinical-trials-regulation-2014-536-article-58-safety-reporting - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Sponsors and investigators must archive the content of the clinical trial master file for a minimum of 25 years after the trial's conclusion, while ensuring subjects' medical files are archived in com... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-clinical-trials-regulation-2014-536-article-58-safety-reporting.json #### Regulation (EU) No 536/2014 on clinical trials on medicinal products for human use (CTR), focusing on AI-Assisted Clinical Trials and Data Management - **ID**: eu-clinical-trials-regulation-2022 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation harmonizes the processes for clinical trials in the EU, requiring that all electronic systems, including AI/ML models, used for generating, processing, or storing trial data be validat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-clinical-trials-regulation-2022.json #### Regulation (EU) No 536/2014 of the European Parliament and of the Council of 16 April 2014 on clinical trials on medicinal products for human use, and repealing Directive 2001/20/EC - **ID**: eu-clinical-trials-regulation-536-2014 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation harmonises the assessment and supervision processes for clinical trials throughout the European Union, mandating a single application via the EU Portal and Database for all interventio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-clinical-trials-regulation-536-2014.json #### Commission Regulation (EC) No 507/2006 of 29 March 2006 on the conditional marketing authorisation for medicinal products for human use falling within the scope of Regulation (EC) No 726/2004 of the European Parliament and of the Council - **ID**: eu-conditional-marketing-authorisation-507-2006 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes a framework for granting conditional marketing authorisation (CMA) to medicinal products that address an unmet medical need, based on a positive risk-benefit balance with l... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-conditional-marketing-authorisation-507-2006.json #### EU Clinical Trials Information System (CTIS) Under CTR 536/2014 - Centralised Submission Portal, Transparency Publication Rules and Multi-Member State Trial Coordination and Assessment - **ID**: eu-ctis-clinical-trials-information-system-2022 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Clinical Trials Information System (CTIS) is the mandatory single entry point for sponsors and regulators to submit, assess, and supervise clinical trials in the European Economic Area (EEA) under... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctis-clinical-trials-information-system-2022.json #### Regulation (EU) No 536/2014 - Clinical Trials Regulation (CTR) - Key Obligations (2026 Full Application) - **ID**: eu-ctr-536-2014-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The EU Clinical Trials Regulation 536/2014 harmonises the assessment and supervision of clinical trials across the EU/EEA through a single submission via the Clinical Trials Information System (CTIS).... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ctr-536-2014-2026.json #### Regulation on the European Health Data Space (EHDS) - **ID**: eu-ehds-regulation-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The European Health Data Space (EHDS) Regulation establishes a harmonized framework for the secondary use of electronic health data for research, innovation, and public policy across the EU, mandating... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ehds-regulation-2024.json #### Regulation (EU) 2025/327 - European Health Data Space - Data Governance & Secondary Use - **ID**: eu-ehds-regulation-2025 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Regulation (EU) 2025/327 establishes the European Health Data Space (EHDS) to create a common framework for the primary and secondary use of electronic health data across EU Member States. For pri... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ehds-regulation-2025.json #### Regulation (EU) 2025/327 of the European Parliament and of the Council of 11 February 2025 on the European Health Data Space and amending Directive 2011/24/EU and Regulation (EU) 2024/2847 (Text with EEA relevance) - **ID**: eu-european-health-data-space-regulation-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: This regulation establishes the European Health Data Space (EHDS) to enable individuals' access and control over their electronic health data across EU Member States, and to facilitate secondary use o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-european-health-data-space-regulation-2024.json #### Directive 2011/62/EU of the European Parliament and of the Council of 8 June 2011 amending Directive 2001/83/EC on the Community code relating to medicinal products for human use, as regards the prevention of the entry into the legal supply chain of falsified medicinal products - **ID**: eu-falsified-medicines-directive-2011-62 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Directive 2011/62/EU mandates that prescription medicines bear safety features, specifically a unique identifier (UI) in a 2D barcode and an anti-tampering device (ATD), to prevent falsified products ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-falsified-medicines-directive-2011-62.json #### Directive 2011/62/EU amending Directive 2001/83/EC on the Community code relating to medicinal products for human use, as regards the prevention of the entry into the legal supply chain of falsified medicinal products - Article 54a - **ID**: eu-falsified-medicines-directive-2011-62-article-54a-safety-features - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Organizations must place safety features, including a unique identifier and an anti-tampering device, on the packaging of most prescription medicinal products and certain high-risk non-prescription me... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-falsified-medicines-directive-2011-62-article-54a-safety-features.json #### Guideline on good pharmacovigilance practices (GVP) Module VI - Management and reporting of suspected adverse reactions to medicinal products (Rev 3) - **ID**: eu-gvp-module-vi-adverse-reaction-reporting - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation requires Marketing Authorisation Holders (MAHs) in the EU to record all suspected adverse reactions and report them electronically to the EudraVigilance database. As per section VI.C.,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gvp-module-vi-adverse-reaction-reporting.json #### Regulation on the European Health Data Space (EHDS) - **ID**: eu-health-data-space-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The EHDS Regulation establishes a framework for the primary use (patient care) and secondary use (research, innovation, policy-making) of electronic health data across the EU. It mandates interoperabi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-health-data-space-2024.json #### Directive 2001/83/EC of the European Parliament and of the Council of 6 November 2001 on the Community code relating to medicinal products for human use (Consolidated) - **ID**: eu-human-medicines-directive-2001-83-ec - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This directive establishes the comprehensive EU regulatory framework for medicinal products for human use, mandating that no product can be placed on the market without a valid Marketing Authorisation... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-human-medicines-directive-2001-83-ec.json #### EU In Vitro Diagnostics Regulation 2017/746 -- IVD Classification, Performance Evaluation, and Market Authorisation - **ID**: eu-in-vitro-diagnostics-regulation-2017-746 - **Category**: Medical & Healthcare - **Version**: 2024.1.0 - **BLUF**: Regulation (EU) 2017/746 (IVDR) replaces Directive 98/79/EC and establishes a stricter classification and conformity assessment framework for in vitro diagnostic medical devices placed on the EU marke... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-in-vitro-diagnostics-regulation-2017-746.json #### Regulation (EU) 2017/746 on in vitro diagnostic medical devices - Article 10: General obligations of manufacturers - **ID**: eu-ivd-regulation-2017-746-article-10-general-obligations-manufacturers - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Manufacturers must ensure that any in vitro diagnostic medical devices they place on the market or put into service have been designed and manufactured in full accordance with the requirements of Regu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ivd-regulation-2017-746-article-10-general-obligations-manufacturers.json #### EU IVDR 2017/746 (Diagnostics) - **ID**: eu-ivdr-2017-746 - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: EU Regulation 2017/746 (In-Vitro Diagnostic Medical Device Regulation - IVDR) is the primary framework for diagnostic devices in the European Union. It replaces the previous 98/79/EC directive and dra... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ivdr-2017-746.json #### Regulation (EU) 2017/746 - In Vitro Diagnostic Medical Devices Regulation (IVDR) - Key Obligations (2026) - **ID**: eu-ivdr-2017-746-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The EU IVDR establishes a risk-based classification (Class A-D) for in vitro diagnostic medical devices with stringent requirements for performance evaluation, clinical evidence, quality management sy... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ivdr-2017-746-2026.json #### EU MDR 2017/745 (Devices) - **ID**: eu-mdr-2017-745 - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: EU Regulation 2017/745 (Medical Device Regulation - MDR) is the primary framework for medical device compliance in the European Union. It replaces the previous MDD/AIMDD directives, introducing more r... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-2017-745.json #### Regulation (EU) 2017/745 Annex VIII: Classification Rules for Medical Devices - **ID**: eu-mdr-2017-745-classification-rules - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2017/745 requires manufacturers to classify medical devices into one of four risk classes (I, IIa, IIb, III) according to the 22 rules outlined in Annex VIII, which determines the requ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-2017-745-classification-rules.json #### Regulation (EU) 2017/745 on Medical Devices (MDR) - Article 61 & Annex XIV: Clinical Evaluation - **ID**: eu-mdr-2017-745-clinical-evaluation - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Under EU MDR Article 61, manufacturers must conduct a systematic and planned clinical evaluation for all medical devices to confirm conformity with General Safety and Performance Requirements (GSPRs),... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-2017-745-clinical-evaluation.json #### Regulation (EU) 2017/745 on medical devices, Chapter VII: Post-Market Surveillance, Vigilance and Market Surveillance (Articles 83-99) - **ID**: eu-mdr-2017-745-post-market-surveillance - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation requires manufacturers of medical devices placed on the EU market to establish, document, and maintain a post-market surveillance (PMS) system for each device. As outlined in Article 8... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-2017-745-post-market-surveillance.json #### EU MDR Annex IX - Conformity Assessment Procedures for High-Risk Devices - **ID**: eu-mdr-annex-ix-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Detailed procedures for Class IIb and III devices including QMS audits, technical documentation review, and clinical evaluation consultation. 2026 amendments strengthen scrutiny for AI/ML components u... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-annex-ix-2026.json #### EU MDR Annex XIV - Clinical Investigation Requirements for Medical Devices (2026) - **ID**: eu-mdr-annex-xiv-clinical-investigation-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Legal framework under Annex XIV of the EU Medical Device Regulation (MDR) governing how clinical investigations must be designed, authorized, and conducted to demonstrate the safety and clinical perfo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-annex-xiv-clinical-investigation-2026.json #### EU MDR Article 61 - Clinical Evaluation Requirements (2026) - **ID**: eu-mdr-article-61-clinical-evaluation-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Under the EU Medical Device Regulation (MDR) 2017/745, Article 61 dictates that clinical evaluation must be a continuous process throughout the lifecycle of a medical device. It mandates that manufact... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-article-61-clinical-evaluation-2026.json #### EU MDR Clinical Evaluation & Clinical Investigation Requirements (2026) - **ID**: eu-mdr-clinical-evaluation-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Strict requirements under the EU Medical Device Regulation (MDR) for conducting clinical evaluations. It mandates a continuous, methodologically sound process to collect, appraise, and analyze clinica... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-clinical-evaluation-2026.json #### EU MDR Post-Market Clinical Follow-up (PMCF) - Detailed Requirements (2026) - **ID**: eu-mdr-post-market-clinical-follow-up-pmcf-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: PMCF under the EU MDR is a continuous, proactive process to collect and evaluate clinical data from the use of a CE-marked device. It confirms the safety and performance throughout the device's expect... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-post-market-clinical-follow-up-pmcf-2026.json #### EU Medical Device Regulation 2017/745 - Conformity Assessment and Post-Market Surveillance - **ID**: eu-mdr-regulation-2017-745-medical-device-conformity-assessment - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2017/745 (MDR) replaces the Medical Devices Directive 93/42/EEC and imposes stricter requirements for medical device conformity assessment, clinical evaluation, unique device identific... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-2017-745-medical-device-conformity-assessment.json #### Regulation (EU) 2017/745 on medical devices - Article 1: Subject matter and scope - **ID**: eu-mdr-regulation-article-1-subject-matter-and-scope - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This article establishes the scope of the regulation by defining which products are covered and explicitly excluding certain categories such as advanced therapy medicinal products, cosmetics, food, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-1-subject-matter-and-scope.json #### Regulation (EU) 2017/745 on medical devices - Article 10: General obligations of manufacturers - **ID**: eu-mdr-regulation-article-10-general-obligations-of-manufacturers - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Manufacturers must ensure their medical devices are designed and manufactured in compliance with this Regulation, maintaining a risk management system, technical documentation, and fulfilling UDI and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-10-general-obligations-of-manufacturers.json #### REGULATION (EU) 2017/745 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 5 April 2017 on medical devices - Article 11 Authorised representative - **ID**: eu-mdr-regulation-article-11-authorized-representatives - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Requires non-EU medical device manufacturers to designate a sole authorised representative within the Union, defining their specific legal and administrative responsibilities for regulatory compliance... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-11-authorized-representatives.json #### REGULATION (EU) 2017/745 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 5 April 2017 on medical devices - Article 13: General obligations of authorised representatives - **ID**: eu-mdr-regulation-article-13-general-obligations-authorized-representative - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This article mandates that non-EU medical device manufacturers must appoint a sole authorised representative within the Union, and specifies the representative's obligations to verify manufacturer com... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-13-general-obligations-authorized-representative.json #### REGULATION (EU) 2017/745 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 5 April 2017 on medical devices - Article 14: General obligations of importers - **ID**: eu-mdr-regulation-article-14-general-obligations-of-importers - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Importers must verify that medical devices comply with EU regulations, including CE marking, labeling, and UDI assignment, before placing them on the Union market, and must maintain records and cooper... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-14-general-obligations-of-importers.json #### Regulation (EU) 2017/745 of the European Parliament and of the Council on medical devices, Article 15: Person responsible for regulatory compliance - **ID**: eu-mdr-regulation-article-15-general-obligations-of-distributors - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Manufacturers and authorised representatives must appoint or have permanent access to a person responsible for regulatory compliance who meets specific expertise qualifications and is tasked with over... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-15-general-obligations-of-distributors.json #### REGULATION (EU) 2017/745 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 5 April 2017 on medical devices - Article 16: Cases in which obligations of manufacturers apply to importers, distributors or other persons - **ID**: eu-mdr-regulation-article-16-cases-in-which-obligations-of-manufacturers-apply - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This article specifies the conditions under which importers, distributors, or other persons assume the full legal obligations of a medical device manufacturer when they modify, rebrand, or change the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-16-cases-in-which-obligations-of-manufacturers-apply.json #### Regulation (EU) 2017/745 on medical devices - Article 17: EU declaration of conformity - **ID**: eu-mdr-regulation-article-17-eu-declaration-of-conformity - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Organizations must draw up, maintain, and continuously update an EU declaration of conformity for any medical device placed on the market, affirming it meets all requirements of this Regulation. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-17-eu-declaration-of-conformity.json #### Regulation (EU) 2017/745 on medical devices - Article 18: Implant card and information to be supplied to the patient with an implanted device - **ID**: eu-mdr-regulation-article-18-ce-marking-of-conformity - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Manufacturers of implantable medical devices must provide specific device and safety information, including an implant card, with the device, and health institutions must make this information availab... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-18-ce-marking-of-conformity.json #### Regulation (EU) 2017/745 on medical devices, Article 2 - Definitions - **ID**: eu-mdr-regulation-article-2-definitions - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This article defines 'common specifications' (CS) as a specific set of technical or clinical requirements, distinct from a standard, that provides a method for complying with legal obligations for a d... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-2-definitions.json #### Regulation (EU) 2017/745 on medical devices - Article 22: Systems and procedure packs - **ID**: eu-mdr-regulation-article-22-systems-and-procedure-packs - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Natural or legal persons must draw up a statement when combining CE-marked devices with other devices or products to be placed on the market as a system or procedure pack. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-22-systems-and-procedure-packs.json #### Regulation (EU) 2017/745 on medical devices - Article 26: Medical devices nomenclature - **ID**: eu-mdr-regulation-article-26-classification-of-devices - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The European Commission must ensure an internationally recognised medical devices nomenclature is available free of charge for manufacturers and others required to use it to facilitate the functioning... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-26-classification-of-devices.json #### Regulation (EU) 2017/745 of the European Parliament and of the Council on medical devices - Article 60: Derogation from the conformity assessment procedures - **ID**: eu-mdr-regulation-article-60-performance-evaluation-and-pmcf - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This article establishes a derogation process allowing competent authorities to authorize the placing on the market or putting into service of a specific device for which conformity assessment procedu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-60-performance-evaluation-and-pmcf.json #### Regulation (EU) 2017/745 on medical devices - Article 61: Clinical evaluation - **ID**: eu-mdr-regulation-article-61-common-specifications - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Organizations must plan, conduct, and document a clinical evaluation for medical devices to confirm conformity with safety and performance requirements, based on sufficient clinical evidence. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-61-common-specifications.json #### REGULATION (EU) 2017/745 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 5 April 2017 on medical devices - Article 63: Clinical investigations - **ID**: eu-mdr-regulation-article-63-clinical-investigations - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This article establishes the fundamental requirement that clinical investigations must be designed, conducted, recorded, and reported in accordance with this Regulation and scientific and ethical prin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-63-clinical-investigations.json #### REGULATION (EU) 2017/745 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 5 April 2017 on medical devices - Article 83 Analysis of serious incidents and field safety corrective actions - **ID**: eu-mdr-regulation-article-83-registration-of-manufacturers - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Manufacturers must cooperate with competent authorities and notified bodies to perform a centrally coordinated analysis of serious incidents, providing all necessary documentation to assess health ris... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-83-registration-of-manufacturers.json #### Regulation (EU) 2017/745 on medical devices - Article 87: Unique Device Identification system - **ID**: eu-mdr-regulation-article-87-unique-device-identification - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Organizations must establish and maintain a Unique Device Identification (UDI) system for all applicable medical devices to ensure traceability and transparency throughout the supply chain. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-regulation-article-87-unique-device-identification.json #### EU MDR Annex II & III - Technical Documentation Requirements (2026) - **ID**: eu-mdr-technical-documentation-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Comprehensive requirements for compiling the Technical Documentation (TD) file required to demonstrate a medical device conforms to the General Safety and Performance Requirements (GSPR) under the EU ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mdr-technical-documentation-2026.json #### MDCG 2019-11 Guidance on Qualification and Classification of Software in Regulation (EU) 2017/745 - MDR and Regulation (EU) 2017/746 - IVDR - **ID**: eu-medical-device-ai-guidance-2021 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guidance provides criteria for qualifying software as a Medical Device (MDSW) or In Vitro Diagnostic (IVD) Medical Device and outlines the risk-based classification rules under EU MDR and IVDR. M... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-medical-device-ai-guidance-2021.json #### EU Medical Devices Regulation (MDR) 2017/745 -- CE Marking and Market Surveillance for Medical Devices - **ID**: eu-medical-devices-regulation-2017-745 - **Category**: Medical & Healthcare - **Version**: 2024.1.0 - **BLUF**: Regulation (EU) 2017/745 (MDR) governs the placing on the EU market of medical devices and accessories. It replaced MDD 93/42/EEC and AIMD 90/385/EEC and applied fully from 26 May 2021 (with extended ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-medical-devices-regulation-2017-745.json #### Regulation (EU) 2017/745 on medical devices - Article 10: General obligations of manufacturers - **ID**: eu-medical-devices-regulation-2017-745-article-10-general-obligations-manufacturers - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Manufacturers must ensure that any medical device they place on the market or put into service has been designed and manufactured in full compliance with the requirements of Regulation (EU) 2017/745. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-medical-devices-regulation-2017-745-article-10-general-obligations-manufacturers.json #### Regulation (EU) 2017/745 on medical devices - Article 83: Post-market surveillance system of the manufacturer - **ID**: eu-medical-devices-regulation-2017-745-article-83-post-market-surveillance - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Manufacturers must establish, document, implement, and maintain a post-market surveillance system for each medical device, proportionate to its risk class, to actively collect and analyze data on its ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-medical-devices-regulation-2017-745-article-83-post-market-surveillance.json #### EU Medical Devices Regulation 2017/745 - CE Marking, Clinical Evaluation & Post-Market Surveillance - **ID**: eu-medical-devices-regulation-2017-745-mdr-ce-marking - **Category**: Medical & Healthcare - **Version**: 2.0 - **BLUF**: EU MDR 2017/745 (fully applicable May 2021) replaces MDD/AIMDD with a risk-based classification system (Class I-III), mandatory clinical evaluation, post-market clinical follow-up, and EUDAMED registr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-medical-devices-regulation-2017-745-mdr-ce-marking.json #### EU Medical Devices Regulation 2017/745 (MDR) - Conformity Assessment and CE Marking - **ID**: eu-medical-devices-regulation-2017-745-mdr-conformity-assessment - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2017/745 (MDR) replaced Directive 93/42/EEC from May 2021, establishing enhanced conformity assessment requirements for medical devices placed on the EU market. Higher-risk devices (Cl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-medical-devices-regulation-2017-745-mdr-conformity-assessment.json #### Directive (EU) 2022/2555 (NIS2) - Cybersecurity Requirements for Health Sector Entities (2026) - **ID**: eu-nis2-health-sector-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: NIS2 Directive classifies hospitals, clinics, manufacturers of critical medical devices, and other health entities as essential or important entities. It mandates comprehensive cybersecurity risk mana... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-health-sector-2026.json #### Regulation (EC) No 141/2000 of the European Parliament and of the Council of 16 December 1999 on orphan medicinal products - **ID**: eu-orphan-medicinal-products-141-2000 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes the criteria and procedure for designating medicinal products as 'orphan medicinal products' for rare diseases, defined as those affecting not more than five in 10,000 pers... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-orphan-medicinal-products-141-2000.json #### Regulation (EC) No 1901/2006 of the European Parliament and of the Council of 12 December 2006 on medicinal products for paediatric use and amending Regulation (EEC) No 1768/92, Directive 2001/20/EC, Directive 2001/83/EC and Regulation (EC) No 726/2004 - **ID**: eu-paediatric-regulation-1901-2006 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation requires pharmaceutical companies to submit a Paediatric Investigation Plan (PIP) detailing the development of a medicine for children as part of their marketing authorisation applicat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-paediatric-regulation-1901-2006.json #### Regulation (EU) No 1235/2010 of the European Parliament and of the Council of 15 December 2010 amending, as regards pharmacovigilance of medicinal products for human use, Regulation (EC) No 726/2004 laying down Community procedures for the authorisation and supervision of medicinal products for human and veterinary use and establishing a European Medicines Agency, and Regulation (EC) No 1394/2007 on advanced therapy medicinal products - **ID**: eu-pharmacovigilance-regulation-1235-2010 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation strengthens and rationalizes the EU system for monitoring the safety of medicines by establishing the Pharmacovigilance Risk Assessment Committee (PRAC) and mandating centralized proce... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pharmacovigilance-regulation-1235-2010.json #### Commission Regulation (EC) No 1234/2008 of 24 November 2008 concerning the examination of variations to the terms of marketing authorisations for medicinal products for human use and veterinary medicinal products - **ID**: eu-variation-regulation-1234-2008-centralised - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes the procedures and conditions for managing post-approval changes (variations) to marketing authorisations for medicinal products in the EU, classifying them as minor (Type ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-variation-regulation-1234-2008-centralised.json #### FDA 21 CFR Part 11 (Records) - **ID**: fda-21-cfr-part-11-records - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: FDA 21 CFR Part 11 establishes the U.S. requirements for electronic records and electronic signatures. It defines the criteria under which the FDA considers electronic records, electronic signatures, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-21-cfr-part-11-records.json #### FDA 21 CFR Part 820 (QSR) - **ID**: fda-21-cfr-part-820-qsr - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: FDA 21 CFR Part 820 is the Quality System Regulation (QSR) governing the manufacture and design of medical devices in the United States. It requires medical device manufacturers to establish a quality... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-21-cfr-part-820-qsr.json #### FDA 21 CFR Part 11 - Electronic Records and Electronic Signatures - **ID**: fda-21cfr-part11-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 11 establishes criteria under which the FDA considers electronic records, electronic signatures, and handwritten signatures executed to electronic records to be trustworthy, reliable, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-21cfr-part11-2026.json #### Artificial Intelligence/Machine Learning (AI/ML)-Based Software as a Medical Device (SaMD) Action Plan - **ID**: fda-ai-ml-samd-action-plan - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This Action Plan outlines the U.S. Food and Drug Administration's (FDA) multi-pronged approach to advance its oversight of Artificial Intelligence/Machine Learning (AI/ML)-Based Software as a Medical ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-ai-ml-samd-action-plan.json #### Artificial Intelligence/Machine Learning (AI/ML)-Based Software as a Medical Device (SaMD) Action Plan - **ID**: fda-aiml-samd-action-plan - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This Action Plan from the U.S. Food & Drug Administration (FDA) outlines a five-part strategy to regulate Artificial Intelligence/Machine Learning (AI/ML)-Based Software as a Medical Device (SaMD). De... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-aiml-samd-action-plan.json #### FDA Breakthrough Devices Program - Expedited Pathways & Requirements (2026) - **ID**: fda-breakthrough-devices-program-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The FDA Breakthrough Devices Program provides expedited development, assessment, and review for devices that provide more effective treatment or diagnosis of life-threatening or irreversibly debilitat... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-breakthrough-devices-program-2026.json #### FDA Clinical Decision Support (CDS) Software Guidance Update - January 2026 Final - **ID**: fda-cds-software-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The FDA issued the final Clinical Decision Support Software guidance in January 2026, refining the 21st Century Cures Act criteria for when CDS functions are excluded from the definition of a medical ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-cds-software-2026.json #### FDA Clinical Decision Software - **ID**: fda-clinical-decision-support - **Category**: Medical & Healthcare - **Version**: 1.1.1 - **BLUF**: The FDA Guidance on Clinical Decision Support (CDS) Software (2022) provides the criteria under which software functions are NOT considered medical devices under Section 520(o)(1)(E) of the FD&C Act. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-clinical-decision-support.json #### FDA Section 524B - Cybersecurity in Medical Devices (2026 Enforcement) - **ID**: fda-cybersecurity-medical-devices-524b-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Section 524B of the FD&C Act requires manufacturers of cyber devices to design, develop, and maintain processes to ensure cybersecurity throughout the device lifecycle. Key obligations include cyberse... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-cybersecurity-medical-devices-524b-2026.json #### Cybersecurity in Medical Devices: Quality Management System Considerations and Content of Premarket Submissions - **ID**: fda-cybersecurity-medical-devices-premarket - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: With the increasing integration of wireless, Internet- and network-connected capabilities, the need for robust cybersecurity controls to ensure medical device safety and effectiveness has become more ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-cybersecurity-medical-devices-premarket.json #### FDA De Novo Classification Process for Novel Medical Devices (2026) - **ID**: fda-de-novo-classification-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The FDA De Novo classification process provides a pathway to classify novel medical devices for which there is no legally marketed predicate device, but whose risk profile is low to moderate (Class I ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-de-novo-classification-2026.json #### Guidance for Industry Electronic Source Data in Clinical Investigations - **ID**: fda-electronic-source-data - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guidance provides recommendations to sponsors, Contract Research Organizations (CROs), clinical investigators, and others involved in the capture, review, and retention of electronic source data ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-electronic-source-data.json #### FDA-EMA-CIOMS AI in Pharmacovigilance Principles 2026 - **ID**: fda-ema-ai-pv-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Joint principles and CIOMS WG XIV guidance emphasize human oversight, bias mitigation, and validation of AI for signal detection and adverse event processing. - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-ema-ai-pv-2026.json #### Marketing Submission Recommendations for a Predetermined Change Control Plan for Artificial Intelligence/Machine Learning (AI/ML)-Enabled Device Software Functions - **ID**: fda-predetermined-change-control-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This FDA guidance enables manufacturers of AI/ML-based medical devices to pre-authorize a set of planned modifications within a Predetermined Change Control Plan (PCCP) as part of a premarket submissi... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-predetermined-change-control-2024.json #### FRAMEWORK FOR FDA’S REAL WORLD EVIDENCE PROGRAM - **ID**: fda-real-world-evidence-program - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Pursuant to the 21st Century Cures Act, which added section 505F to the Federal Food, Drug, and Cosmetic Act (FD&C Act), the Food and Drug Administration (FDA) has created a framework for evaluating t... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-real-world-evidence-program.json #### FDA Software as a Medical Device (SaMD) Action Plan and AI/ML-Based SaMD Guidance 2022 - Predetermined Change Control Plan (PCCP) and Algorithmic Transparency Requirements - **ID**: fda-samd-action-plan-2022 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: This guidance establishes principles for the regulation of Software as a Medical Device (SaMD), including risk categorization, quality management, and clinical evaluation, as developed by the Internat... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-samd-action-plan-2022.json #### FDA Software as a Medical Device (SaMD) Premarket Review Framework (2026 Update) - **ID**: fda-samd-premarket-review-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The FDA regulates Software as a Medical Device (SaMD), including AI/ML-enabled software, using a risk-based approach for premarket submissions (510(k), De Novo, or PMA). Manufacturers must provide com... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-samd-premarket-review-2026.json #### FDA Software as a Medical Device (SaMD) Risk Matrix - **ID**: fda-samd-risk - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: A risk-based framework for classifying software intended for medical purposes independently of hardware, based on IMDRF categorizations and FDA safety standards. - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-samd-risk.json #### Proposed Regulatory Framework for Modifications to Artificial Intelligence/Machine Learning (AI/ML)-Based Software as a Medical Device (SaMD) - **ID**: fda-software-as-medical-device-2019 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This FDA discussion paper outlines a Total Product Lifecycle (TPLC) approach for AI/ML-based medical software, proposing a Predetermined Change Control Plan (PCCP) that allows manufacturers to manage ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-software-as-medical-device-2019.json #### GCC Health Data Harmonization Framework & Cross-Border Sharing (2026) - **ID**: gcc-health-data-harmonization-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Gulf Cooperation Council (GCC) Health Data Harmonization Framework promotes interoperability, unified standards for electronic health records, and secure cross-border data sharing while respecting... - **Discovery URL**: https://bidda.com/api/v1/nodes/gcc-health-data-harmonization-2026.json #### Germany Digital Act (DigiG) & DiGA Framework - Digital Health Applications (2026) - **ID**: germany-digig-diga-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Digital Act (DigiG) and Digital Healthcare Act (DVG) expand reimbursement for Digital Health Applications (DiGA) under statutory health insurance. Manufacturers must demonstrate safety, performanc... - **Discovery URL**: https://bidda.com/api/v1/nodes/germany-digig-diga-2026.json #### Global Clinical Trial Data Sharing & Transparency Obligations (2026) - **ID**: global-clinical-trial-data-sharing-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Sponsors must comply with increasing requirements for clinical trial data transparency, including registration, summary results posting (ClinicalTrials.gov, EudraCT, etc.), individual participant data... - **Discovery URL**: https://bidda.com/api/v1/nodes/global-clinical-trial-data-sharing-2026.json #### Global Pharmacovigilance Database Interoperability & Data Sharing (2026) - **ID**: global-pharmacovigilance-database-interoperability-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Regulatory requirements for the electronic exchange of pharmacovigilance information, specifically Individual Case Safety Reports (ICSRs), between pharmaceutical companies, national regulators, and gl... - **Discovery URL**: https://bidda.com/api/v1/nodes/global-pharmacovigilance-database-interoperability-2026.json #### Good Machine Learning Practice for Medical Device Development: Guiding Principles - **ID**: good-machine-learning-practice-medical-devices - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The U.S. Food and Drug Administration (FDA), Health Canada, and the United Kingdom’s Medicines and Healthcare products Regulatory Agency (MHRA) have jointly identified 10 guiding principles that can i... - **Discovery URL**: https://bidda.com/api/v1/nodes/good-machine-learning-practice-medical-devices.json #### Good Clinical Practice (GCP) - **ID**: gxp-clinical-practice - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: Good Clinical Practice (GCP) is an international ethical and scientific quality standard for designing, conducting, recording, and reporting trials that involve human subjects. Based on the ICH E6(R2)... - **Discovery URL**: https://bidda.com/api/v1/nodes/gxp-clinical-practice.json #### Good Mfg Practice (GMP) - **ID**: gxp-mfg-practice - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: Good Manufacturing Practice (GMP) (21 CFR Parts 210 and 211) is the primary U.S. and global standard for ensuring that pharmaceutical and medical device products are consistently produced and controll... - **Discovery URL**: https://bidda.com/api/v1/nodes/gxp-mfg-practice.json #### Health AI Bias Detection, Mitigation & Fairness Assurance (2026) - **ID**: health-ai-bias-mitigation-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Regulatory expectations and technical standards for detecting and mitigating algorithmic bias in medical AI. Prevents discriminatory health outcomes by mandating representative training datasets, cont... - **Discovery URL**: https://bidda.com/api/v1/nodes/health-ai-bias-mitigation-2026.json #### Adversarial Robustness & Cybersecurity for Health AI Systems (2026) - **ID**: health-ai-cybersecurity-adversarial-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Specialized cybersecurity framework addressing vulnerabilities unique to AI in healthcare, such as adversarial attacks (pixel perturbations altering diagnoses), data poisoning, and model inversion. It... - **Discovery URL**: https://bidda.com/api/v1/nodes/health-ai-cybersecurity-adversarial-2026.json #### AI/ML Model Lifecycle Management in Healthcare (2026) - **ID**: health-ai-lifecycle-management-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Total Product Lifecycle (TPLC) management for AI/ML-based Medical Devices, incorporating Good Machine Learning Practice (GMLP). It covers requirements for continuous post-market surveillance, algorith... - **Discovery URL**: https://bidda.com/api/v1/nodes/health-ai-lifecycle-management-2026.json #### Health AI Transparency & Explainability Requirements (2026) - **ID**: health-ai-transparency-explainability-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: AI systems in healthcare must provide appropriate transparency and explainability to clinicians, patients, and regulators. This includes model cards, technical documentation, local and global interpre... - **Discovery URL**: https://bidda.com/api/v1/nodes/health-ai-transparency-explainability-2026.json #### Blockchain for Health Data Interoperability & Patient-Controlled Records (2026) - **ID**: health-blockchain-interoperability-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Blockchain and distributed ledger technologies enable secure, patient-controlled health records with verifiable provenance, immutable audit trails, and selective disclosure. Governance must address da... - **Discovery URL**: https://bidda.com/api/v1/nodes/health-blockchain-interoperability-2026.json #### Health Data Anonymisation, Pseudonymisation & De-identification Techniques (2026) - **ID**: health-data-anonymisation-pseudonymisation-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Technical and legal standards for stripping health data of identifiable markers to enable secondary research and AI training without violating patient privacy. Distinguishes between pseudonymisation (... - **Discovery URL**: https://bidda.com/api/v1/nodes/health-data-anonymisation-pseudonymisation-2026.json #### Health Data Breach Notification - Global Timelines & Obligations (2026) - **ID**: health-data-breach-notification-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Regulatory requirements for managing, investigating, and reporting breaches of Protected Health Information (PHI). Dictates strict reporting timelines to authorities (e.g., 72 hours under GDPR, 60 day... - **Discovery URL**: https://bidda.com/api/v1/nodes/health-data-breach-notification-2026.json #### Health Data Ethics Committees & Oversight Governance (2026) - **ID**: health-data-ethics-committees-governance-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Governance framework for Institutional Review Boards (IRBs) and specialized Health Data Access Committees (DACs) overseeing the secondary use of clinical data. Ensures that research and AI model train... - **Discovery URL**: https://bidda.com/api/v1/nodes/health-data-ethics-committees-governance-2026.json #### Health Data Quality Framework & Governance (2026) - **ID**: health-data-quality-framework-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: A comprehensive framework ensuring that health data utilized for clinical care, secondary research, and AI model training meets strict quality dimensions including completeness, consistency, accuracy,... - **Discovery URL**: https://bidda.com/api/v1/nodes/health-data-quality-framework-2026.json #### HIPAA Breach Notification Rule - **ID**: hipaa-breach-notification - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: A breach of unsecured protected health information, as defined under 45 CFR § 164.402, has been confirmed following a risk assessment that did not demonstrate a low probability of compromise. Given th... - **Discovery URL**: https://bidda.com/api/v1/nodes/hipaa-breach-notification.json #### HIPAA Security Rule - **ID**: hipaa-security-rule - **Category**: Medical & Healthcare - **Version**: 1.1.1 - **BLUF**: The HIPAA Security Rule (45 CFR Part 160 and Part 164) establishes U.S. national standards for the protection of Electronic Protected Health Information (ePHI). It focuses on ensure the confidentialit... - **Discovery URL**: https://bidda.com/api/v1/nodes/hipaa-security-rule.json #### Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009 - **ID**: hitech-act-2009 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The HITECH Act strengthens HIPAA privacy and security rules by requiring public notification for breaches of unsecured Protected Health Information (PHI), increasing penalties for non-compliance, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hitech-act-2009.json #### HL7 FHIR Interoperability (Release 4) - **ID**: hl7-fhir-interop - **Category**: Medical & Healthcare - **Version**: 1.1.1 - **BLUF**: Standardized RESTful API architecture for electronic health information exchange, using modular Resources to enable computable healthcare data across disparate systems. - **Discovery URL**: https://bidda.com/api/v1/nodes/hl7-fhir-interop.json #### HL7 FHIR R4 (4.0.1) Implementation Guide - RESTful API Specification for Health Data Exchange and Resource Types - **ID**: hl7-fhir-r4-implementation - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This standard requires healthcare systems to implement a RESTful API for exchanging electronic health information using a defined set of data structures called 'Resources'. Conformance, as defined in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hl7-fhir-r4-implementation.json #### HL7 FHIR Release 5 (R5) - Governance, Interoperability, and Compliance Obligations - **ID**: hl7-fhir-r5-governance-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: HL7 FHIR R5 is the global standard for exchanging healthcare information electronically. Organisations implementing FHIR must ensure semantic interoperability, security (OAuth2, SMART-on-FHIR), privac... - **Discovery URL**: https://bidda.com/api/v1/nodes/hl7-fhir-r5-governance-2026.json #### HL7 FHIR v4 (Interoperability) - **ID**: hl7-fhir-v4-interop - **Category**: Medical & Healthcare - **Version**: 1.1.1 - **BLUF**: HL7 FHIR (Fast Healthcare Interoperability Resources) Release 4 is the global standard for electronic healthcare data exchange. It defines a set of 'Resources' that represent granular clinical and adm... - **Discovery URL**: https://bidda.com/api/v1/nodes/hl7-fhir-v4-interop.json #### WHO International Classification of Diseases 11th Revision (ICD-11) 2022 - Global Standard for Diagnostic Coding - **ID**: icd-11-classification-2022 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The ICD-11 is the global standard for diagnostic health information, requiring WHO Member States and healthcare entities to use its updated coding system for recording and reporting mortality and morb... - **Discovery URL**: https://bidda.com/api/v1/nodes/icd-11-classification-2022.json #### ICH E6(R3) Good Clinical Practice Guideline (2026) - **ID**: ich-e6-r3-gcp-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: ICH E6(R3) provides the international ethical and scientific quality standard for designing, conducting, recording, and reporting clinical trials involving human participants. It emphasises quality-by... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-e6-r3-gcp-2026.json #### ICH Harmonised Guideline Good Clinical Practice (GCP) E6(R3) - **ID**: ich-e6-r3-good-clinical-practice-2023 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guideline establishes unified standards for clinical trials to protect human subjects and ensure data integrity, applying to sponsors, investigators, and institutions. It mandates a quality-by-de... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-e6-r3-good-clinical-practice-2023.json #### ICH E8(R1) General Considerations for Clinical Studies - **ID**: ich-e8-r1-general-considerations-clinical-2021 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guideline requires sponsors of clinical studies to proactively build quality into study design and conduct using a risk-based approach, focusing on factors critical to ensuring patient safety and... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-e8-r1-general-considerations-clinical-2021.json #### ICH E9(R1) Addendum on Estimands and Sensitivity Analysis in Clinical Trials to the Guideline on Statistical Principles for Clinical Trials - **ID**: ich-e9-r1-estimands-sensitivity-analysis-2019 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This addendum requires clinical trial sponsors to precisely define the 'estimand' (the treatment effect to be estimated) using a structured framework and conduct sensitivity analyses to assess the rob... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-e9-r1-estimands-sensitivity-analysis-2019.json #### ICH Harmonised Guideline Good Clinical Practice (GCP) E6(R3) - **ID**: ich-gcp-e6-r3-2023 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guideline provides a unified standard for the European Union, Japan, USA, and other regions on the conduct of clinical trials, emphasizing a quality-by-design and risk-based approach to protect h... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-gcp-e6-r3-2023.json #### ICH Q10 Pharmaceutical Quality System - **ID**: ich-q10-pharmaceutical-quality-system-2008 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guideline provides a model for a pharmaceutical quality system (PQS) that applies throughout the product lifecycle, complementing regional GMPs by enhancing product quality and availability. It r... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q10-pharmaceutical-quality-system-2008.json #### ICH Q12 Technical and Regulatory Considerations for Pharmaceutical Product Lifecycle Management - **ID**: ich-q12-lifecycle-management-2019 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guideline provides a framework for managing post-approval Chemistry, Manufacturing, and Controls (CMC) changes for pharmaceutical products, enabling a more predictable and efficient regulatory pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q12-lifecycle-management-2019.json #### ICH Q1A(R2) Stability Testing of New Drug Substances and Drug Products - **ID**: ich-q1a-stability-testing-new-drugs-2003 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guideline defines the core stability data package required for a new drug substance or drug product registration application within the ICH regions, specifying storage conditions, study durations... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q1a-stability-testing-new-drugs-2003.json #### ICH Q7 Good Manufacturing Practice Guide for Active Pharmaceutical Ingredients - **ID**: ich-q7-gmp-active-pharmaceutical-ingredients-2000 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guide provides Good Manufacturing Practice (GMP) principles for manufacturing Active Pharmaceutical Ingredients (APIs), requiring a comprehensive quality management system to ensure APIs meet pur... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q7-gmp-active-pharmaceutical-ingredients-2000.json #### ICH Harmonised Tripartite Guideline Q8(R2) Pharmaceutical Development - **ID**: ich-q8-r2-pharmaceutical-development-2009 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guideline requires pharmaceutical manufacturers to implement a systematic, science- and risk-based approach to product development, known as Quality by Design (QbD). This involves defining a Qual... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q8-r2-pharmaceutical-development-2009.json #### ICH Harmonised Guideline Q9(R1) Quality Risk Management - **ID**: ich-q9-r1-quality-risk-management-2023 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guideline requires pharmaceutical manufacturers to implement a systematic, science-based Quality Risk Management (QRM) process throughout the product lifecycle to ensure patient safety and produc... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q9-r1-quality-risk-management-2023.json #### ICH S9 Nonclinical Evaluation for Anticancer Pharmaceuticals - **ID**: ich-s9-nonclinical-evaluation-anticancer-2009 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guideline provides recommendations on the necessary nonclinical studies to support the development of anticancer pharmaceuticals in patients with advanced disease and limited therapeutic options.... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-s9-nonclinical-evaluation-anticancer-2009.json #### IEC 62304 - Medical Device Software Lifecycle Processes (2026) - **ID**: iec-62304-medical-device-software-lifecycle-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The globally recognized foundational standard defining the lifecycle processes required for developing medical device software. It mandates a rigorous, risk-based approach to software architecture, de... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-62304-medical-device-software-lifecycle-2026.json #### IEC 62304 (Medical Software) - **ID**: iec-62304-medical-software - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: IEC 62304 is the international standard for medical device software lifecycle processes. It defines the framework of processes, activities, and tasks for the safe design and maintenance of medical sof... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-62304-medical-software.json #### IEC 62304:2006+AMD1:2015 Medical Device Software - Software Life Cycle Processes for Safety Classification - **ID**: iec-62304-medical-software-lifecycle - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This international standard defines the life cycle requirements for medical device software, mandating a risk-based approach where all software is assigned a safety class (A, B, or C) based on its pot... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-62304-medical-software-lifecycle.json #### IEC 82304-1 (Health Software) - **ID**: iec-82304-1-health-software - **Category**: Medical & Healthcare - **Version**: 1.1.1 - **BLUF**: IEC 82304-1:2016 is the international standard for general health software product safety. It is designed for software products that do not have dedicated hardware and are used in health environments ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iec-82304-1-health-software.json #### Illinois BIPA Biometric & Health AI Compliance 2026 - **ID**: illinois-bipa-health-ai-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: BIPA requires explicit consent for biometric data collection in health AI tools (facial recognition, voice analysis). 2026 enforcement focuses on telehealth and digital therapeutics. - **Discovery URL**: https://bidda.com/api/v1/nodes/illinois-bipa-health-ai-2026.json #### IMDRF SaMD Risk Framework - **ID**: imdrf-samd-risk-framework - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: The IMDRF Software as a Medical Device (SaMD) Risk Categorization Framework provides a globally harmonized method for classifying the risk of independent medical software. It categorizes SaMD into fou... - **Discovery URL**: https://bidda.com/api/v1/nodes/imdrf-samd-risk-framework.json #### India Ayushman Bharat Digital Mission (ABDM) - Health Data Management and Governance Policy - **ID**: india-abdm-health-data-governance-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: ABDM creates a federated digital health ecosystem with ABHA (Ayushman Bharat Health Account), consent managers, and standardised data exchange. The Health Data Management Policy enforces patient conse... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-abdm-health-data-governance-2026.json #### India CDSCO - Medical Devices Rules 2017 (2026 Amendments) & Risk-Based Regulation - **ID**: india-cdsco-medical-device-rules-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Central Drugs Standard Control Organisation (CDSCO) regulates medical devices under the Medical Devices Rules 2017 (amended 2026). Devices are classified into Classes A-D with increasing regulator... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-cdsco-medical-device-rules-2026.json #### Ayushman Bharat Digital Mission (ABDM) 2021 - Health ID (ABHA Number), Health Facility Registry (HFR), Healthcare Professionals Registry (HPR), Unified Health Interface (UHI), Personal Health Records (PHR) Linked Consent Manager and ABDM Sandbox API Gateway - **ID**: india-national-health-authority-abdm-2021 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: The ABDM 2021 framework establishes a national digital health ecosystem in India requiring all healthcare providers, facilities, and technology systems to register with designated ABDM registries and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-national-health-authority-abdm-2021.json #### Informed Consent in Digital Health & AI-Driven Care (2026 Standards) - **ID**: informed-consent-digital-health-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Informed consent in digital health environments must be specific, granular, freely given, and easily revocable. It requires clear disclosure of AI involvement, data uses (including secondary and inter... - **Discovery URL**: https://bidda.com/api/v1/nodes/informed-consent-digital-health-2026.json #### International Medical Device Regulatory Harmonization - IMDRF & Global Alignment (2026) - **ID**: international-medical-device-harmonization-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Strategic framework detailing the guidelines and standards set forth by the International Medical Device Regulators Forum (IMDRF) to accelerate international medical device harmonization. Key initiati... - **Discovery URL**: https://bidda.com/api/v1/nodes/international-medical-device-harmonization-2026.json #### ISMP Medication Safety - **ID**: ismp-medication-safety - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: The ISMP (Institute for Safe Medication Practices) Best Practices provide a set of consensus-based national standards for reducing medication errors in hospitals and healthcare settings. They focus on... - **Discovery URL**: https://bidda.com/api/v1/nodes/ismp-medication-safety.json #### ISO 13485:2016 Medical devices - Quality management systems - Requirements for regulatory purposes - **ID**: iso-13485-2016-medical-qms - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: ISO 13485:2016 specifies requirements for a quality management system (QMS) for organizations involved in the lifecycle of a medical device. It requires organizations to demonstrate their ability to p... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-13485-2016-medical-qms.json #### ISO 13485 (Medical QMS) - **ID**: iso-13485-medical-qms - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: ISO 13485:2016 is the global standard for Medical Device Quality Management Systems (QMS). It specifies requirements for a QMS where an organization needs to demonstrate its ability to provide medical... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-13485-medical-qms.json #### Medical Quality (ISO 13485) - **ID**: iso-13485-qms - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: ISO 13485:2016 is the internationally recognized Quality Management System standard specifically designed for organizations in the medical device industry, covering the full lifecycle of medical devic... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-13485-qms.json #### ISO 14971 (Medical Risk) - **ID**: iso-14971-medical-risk - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: ISO 14971:2019 is the international standard for the application of risk management to medical devices. It provides a framework for manufacturers to identify hazards, estimate and evaluate risks, cont... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14971-medical-risk.json #### ISO 15189 (Medical Labs) - **ID**: iso-15189-medical-labs - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: ISO 15189:2022 is the international standard for medical laboratories, specifying requirements for quality and competence. It addresses both the technical competence of the laboratory and its ability ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-15189-medical-labs.json #### ISO 15378:2017 Primary packaging materials for medicinal products - Particular requirements for the application of ISO 9001:2015, with reference to Good Manufacturing Practice (GMP) - **ID**: iso-15378-2017-pharmaceutical-packaging-gmp - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This standard specifies Good Manufacturing Practice (GMP) requirements for the quality management system (QMS) of manufacturers of primary packaging materials for medicinal products. It integrates ISO... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-15378-2017-pharmaceutical-packaging-gmp.json #### ISO 27799 (Health InfoSec) - **ID**: iso-27799-health-info-sec - **Category**: Medical & Healthcare - **Version**: 1.1.0 - **BLUF**: ISO 27799:2016 (Health informatics - Information security management in health using ISO/IEC 27002) is the primary standard for implementing ISO 27001 in healthcare. It provides specific guidance on t... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27799-health-info-sec.json #### ISO 27799:2025 - Health Informatics - Information Security Management in Health - **ID**: iso-27799-health-informatics-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: ISO 27799 provides healthcare-specific guidance on implementing ISO/IEC 27002 controls within an Information Security Management System (ISMS). It addresses unique risks in health informatics includin... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-27799-health-informatics-2026.json #### Japan PMDA - Software as a Medical Device (SaMD) and AI Medical Device Guidelines (2026) - **ID**: japan-pmda-samd-ai-guidelines-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Pharmaceuticals and Medical Devices Agency (PMDA) regulates Software as a Medical Device (SaMD) and AI/ML-based medical devices under the Pharmaceutical and Medical Device Act. Requirements includ... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-pmda-samd-ai-guidelines-2026.json #### Kenya Digital Health Act 2024 & Data Protection (Health Data) Regulations (2026) - **ID**: kenya-digital-health-act-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Kenya Digital Health Act 2024 establishes the legal framework for digital health services, electronic health records, telemedicine, and the Kenya Health Information Exchange (KHIE). It mandates in... - **Discovery URL**: https://bidda.com/api/v1/nodes/kenya-digital-health-act-2026.json #### Laboratory Developed Tests (LDTs) - FDA Oversight & Global Alignment (2026) - **ID**: laboratory-developed-tests-ldt-regulation-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The FDA’s final rule on Laboratory Developed Tests brings most LDTs under medical device regulation with phased enforcement. Requirements include registration, listing, adverse event reporting, qualit... - **Discovery URL**: https://bidda.com/api/v1/nodes/laboratory-developed-tests-ldt-regulation-2026.json #### Malaysia Medical Device Authority (MDA) SaMD & Digital Health Framework 2026 - **ID**: malaysia-mda-samd-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: MDA aligns SaMD classification with IMDRF while requiring local registration and cybersecurity testing. 2026 guidance introduces fast-track for AI-enabled devices with reference approvals from FDA, CE... - **Discovery URL**: https://bidda.com/api/v1/nodes/malaysia-mda-samd-2026.json #### EU MDR Annex XIV - Clinical Evaluation and Post-Market Clinical Follow-up - **ID**: mdr-annex-xiv-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Requirements for clinical evaluation plans, clinical investigations, and continuous post-market clinical follow-up (PMCF). 2026 updates strengthen requirements for AI/ML devices and real-world evidenc... - **Discovery URL**: https://bidda.com/api/v1/nodes/mdr-annex-xiv-2026.json #### EU MDR Annex XVI - Products Without Intended Medical Purpose - **ID**: mdr-annex-xvi-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Requirements for aesthetic devices, wellness products, and other non-medical purpose items that fall under MDR scope. 2026 clarifications address AI-enabled wellness tools and common specifications. - **Discovery URL**: https://bidda.com/api/v1/nodes/mdr-annex-xvi-2026.json #### Medical Device ESG & Sustainability Requirements (2026) - **ID**: medical-device-esg-sustainability-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Medical device manufacturers face growing ESG obligations including carbon footprint reporting, sustainable design, conflict minerals due diligence, plastic reduction, circular economy principles (rem... - **Discovery URL**: https://bidda.com/api/v1/nodes/medical-device-esg-sustainability-2026.json #### Medical Device Post-Market Surveillance (PMS) & Vigilance Systems - Global Requirements (2026) - **ID**: medical-device-post-market-surveillance-pms-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Manufacturers must maintain proactive, systematic post-market surveillance systems to monitor device performance, detect trends, and take corrective actions. This includes Periodic Safety Update Repor... - **Discovery URL**: https://bidda.com/api/v1/nodes/medical-device-post-market-surveillance-pms-2026.json #### Medical Device Remanufacturing, Refurbishment & Reprocessing - Regulatory Requirements (2026) - **ID**: medical-device-remanufacturing-refurbishment-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Remanufacturing and refurbishment of single-use and reusable medical devices are strictly regulated. Entities must meet original manufacturer standards for safety and performance, including full repro... - **Discovery URL**: https://bidda.com/api/v1/nodes/medical-device-remanufacturing-refurbishment-2026.json #### Reprocessing of Single-Use Medical Devices - Regulatory & Safety Requirements (2026) - **ID**: medical-device-single-use-reprocessing-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Strict regulatory controls governing the reprocessing (cleaning, disinfection, and sterilization) of medical devices originally labeled by the OEM as 'single-use'. Reprocessors are legally treated as ... - **Discovery URL**: https://bidda.com/api/v1/nodes/medical-device-single-use-reprocessing-2026.json #### Medical Device Software Validation & Lifecycle Processes - IEC 62304 (2026) - **ID**: medical-device-software-validation-iec62304-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: IEC 62304 specifies lifecycle requirements for the development of medical software and software within medical devices. It mandates a risk-based software safety classification (Class A, B, C) which de... - **Discovery URL**: https://bidda.com/api/v1/nodes/medical-device-software-validation-iec62304-2026.json #### Medical Device Supply Chain Due Diligence & Resilience Requirements (2026) - **ID**: medical-device-supply-chain-due-diligence-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Manufacturers must conduct robust supply chain due diligence covering cybersecurity, forced labour, conflict minerals, environmental compliance, and single points of failure. NIS2, DORA, EU MDR, FDA, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/medical-device-supply-chain-due-diligence-2026.json #### Medical Device Usability Engineering & Human Factors Validation (2026) - **ID**: medical-device-usability-human-factors-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Regulatory framework governing the application of usability engineering (human factors) to medical devices to minimize use errors and use-associated risks. Mandated by FDA and EU MDR, it requires manu... - **Discovery URL**: https://bidda.com/api/v1/nodes/medical-device-usability-human-factors-2026.json #### Mexico COFEPRIS Medical Device Regulations & Equivalency Route 2026 - **ID**: mexico-cofepris-md-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: COFEPRIS expanded equivalency pathway recognizes FDA, EMA, and IMDRF approvals for faster registration. 2026 reforms include 10-year renewals for low-risk devices and hybrid inspections. - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-cofepris-md-2026.json #### mHealth Apps & Mobile Medical Applications - Global Regulatory Framework (2026) - **ID**: mhealth-apps-regulation-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Mobile health applications are regulated as medical devices when they have diagnostic, therapeutic, or monitoring functions. Requirements include risk classification, clinical validation, cybersecurit... - **Discovery URL**: https://bidda.com/api/v1/nodes/mhealth-apps-regulation-2026.json #### Michigan Telehealth Licensure, Consent & Reimbursement Rules 2026 - **ID**: michigan-telehealth-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Michigan allows out-of-state providers to deliver telehealth with proper registration and patient consent. 2026 updates include expanded private payer parity, strengthened informed consent requirement... - **Discovery URL**: https://bidda.com/api/v1/nodes/michigan-telehealth-2026.json #### New York Telehealth & SHIELD Act Health Data Updates 2026 - **ID**: new-york-telehealth-shield-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: New York mandates full licensure for telehealth providers serving NY patients. The SHIELD Act requires reasonable security measures for private health information with expanded breach notification. 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-york-telehealth-shield-2026.json #### New Zealand Health Information Privacy Code 2020 & Health Act Amendments (2026) - **ID**: new-zealand-health-information-privacy-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Health Information Privacy Code 2020 (HIPC) sets 13 rules governing the collection, use, storage, disclosure, and access to health information. It applies to all health agencies and requires reaso... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-zealand-health-information-privacy-2026.json #### Considerations for Design, Development, and Analytical Validation of Next Generation Sequencing (NGS) - Based In Vitro Diagnostics (IVDs) Intended to Aid in the Diagnosis of Suspected Germline Diseases - **ID**: ngs-ivds-germline-diseases - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guidance document describes one part of FDA’s efforts to create a flexible and adaptive regulatory approach to the oversight of next generation sequencing (NGS)-based tests. As a step toward this... - **Discovery URL**: https://bidda.com/api/v1/nodes/ngs-ivds-germline-diseases.json #### NHS Data Security and Protection Toolkit (DSPT) - **ID**: nhs-data-security-protection-toolkit - **Category**: Medical & Healthcare - **Version**: 6.0.0 - **BLUF**: The NHS Data Security and Protection Toolkit (DSPT) is a mandatory annual self-assessment for all organizations with access to NHS patient data in England, measuring performance against the 10 Nationa... - **Discovery URL**: https://bidda.com/api/v1/nodes/nhs-data-security-protection-toolkit.json #### Nigeria National Digital Health Strategy & NDH Data Governance Framework (2026) - **ID**: nigeria-ndh-digital-health-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The National Digital Health Strategy (2021-2025, extended 2026) and NDH framework establish governance for electronic health records, telemedicine, unique health identifiers, and data exchange. Health... - **Discovery URL**: https://bidda.com/api/v1/nodes/nigeria-ndh-digital-health-2026.json #### Nigeria NDPA Health Data Protection & NDPC Enforcement Guidelines 2026 - **ID**: nigeria-ndpa-health-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Nigeria Data Protection Act (NDPA) 2023 with 2026 NDPC guidelines impose strict obligations on processing health data, including lawful basis, explicit consent for sensitive data, mandatory Data Prote... - **Discovery URL**: https://bidda.com/api/v1/nodes/nigeria-ndpa-health-2026.json #### Cybersecurity of Genomic Data - **ID**: nist-ir-8432-genomic-data - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This report describes current practices in cybersecurity and privacy risk management for protecting genomic data. Genomic data's unique characteristics, such as being immutable and containing informat... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-ir-8432-genomic-data.json #### NIST Post-Quantum Cryptography Migration for HIPAA-Covered Entities 2026 - **ID**: nist-pqc-hipaa-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Guidance recommends phased migration to FIPS 203-205 algorithms to protect PHI against future quantum threats. Healthcare systems must inventory cryptographic usage and plan hybrid transitions. - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-pqc-hipaa-2026.json #### Ohio Telehealth Licensure, Reimbursement & Privacy Rules 2026 - **ID**: ohio-telehealth-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Ohio permits out-of-state licensed providers to deliver telehealth services with registration. 2026 updates include full reimbursement parity for private payers, expanded audio-only coverage, and alig... - **Discovery URL**: https://bidda.com/api/v1/nodes/ohio-telehealth-2026.json #### Orphan / Rare Disease Medical Devices - Special Regulatory Pathways & Incentives (2026) - **ID**: orphan-rare-disease-medical-devices-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Devices intended for rare diseases or small patient populations benefit from expedited pathways, fee waivers, tax credits, market exclusivity incentives, and flexible clinical evidence requirements. R... - **Discovery URL**: https://bidda.com/api/v1/nodes/orphan-rare-disease-medical-devices-2026.json #### Patient-Generated Health Data (PGHD) - Regulatory, Privacy & Clinical Integration (2026) - **ID**: patient-generated-health-data-pghd-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Guidance on the integration, validation, and privacy protection of Patient-Generated Health Data (PGHD) from wearables, apps, and home medical devices into clinical electronic health records (EHRs) an... - **Discovery URL**: https://bidda.com/api/v1/nodes/patient-generated-health-data-pghd-2026.json #### Pediatric Medical Devices - Special Regulatory & Ethical Governance (2026) - **ID**: pediatric-medical-devices-governance-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Pediatric medical devices require heightened regulatory scrutiny due to anatomical, physiological, and developmental differences in children. Key obligations include age-appropriate design, dedicated ... - **Discovery URL**: https://bidda.com/api/v1/nodes/pediatric-medical-devices-governance-2026.json #### Pennsylvania Telehealth Licensure & Parity Requirements 2026 - **ID**: pennsylvania-telehealth-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Pennsylvania allows out-of-state providers to deliver telehealth under temporary registration with full licensure parity for reimbursement. 2026 updates strengthen audio-only coverage and data securit... - **Discovery URL**: https://bidda.com/api/v1/nodes/pennsylvania-telehealth-2026.json #### AI Signal Detection in Pharmacovigilance - FDA/EMA Best Practices 2026 - **ID**: pharmacovigilance-ai-signal-detection-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Detailed framework for validation, qualification, and ongoing performance monitoring of AI/ML systems used for adverse event signal detection, case processing, and aggregate reporting. - **Discovery URL**: https://bidda.com/api/v1/nodes/pharmacovigilance-ai-signal-detection-2026.json #### ICH E2E Pharmacovigilance Planning & Global Pharmacovigilance Obligations (2026) - **ID**: pharmacovigilance-ich-e2e-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: ICH E2E and related guidelines establish international standards for pharmacovigilance planning, risk management plans (RMPs), signal detection, periodic benefit-risk evaluation reports (PBRERs), and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/pharmacovigilance-ich-e2e-2026.json #### Philippines FDA SaMD & Digital Health Registration Framework 2026 - **ID**: philippines-fda-samd-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Philippine FDA aligns with ASEAN MDD and IMDRF for SaMD classification. 2026 updates introduce reliance pathways on reference regulators and mandatory cybersecurity assessments for connected devices. - **Discovery URL**: https://bidda.com/api/v1/nodes/philippines-fda-samd-2026.json #### PIC/S Guide to Good Manufacturing Practice for Medicinal Products Part I, Part II and Annexes (PE 009-17) - **ID**: pic-s-pe009-17-gmp-guide-medicinal-products - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This guide establishes harmonized Good Manufacturing Practice (GMP) standards for medicinal products and active pharmaceutical ingredients (APIs), requiring manufacturers to implement a comprehensive ... - **Discovery URL**: https://bidda.com/api/v1/nodes/pic-s-pe009-17-gmp-guide-medicinal-products.json #### Precision Medicine & Genomic Data Governance Framework (2026) - **ID**: precision-medicine-genomic-governance-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Precision medicine and large-scale genomic data require specialized governance covering explicit consent for secondary use, data sharing agreements, re-identification risk mitigation, return of result... - **Discovery URL**: https://bidda.com/api/v1/nodes/precision-medicine-genomic-governance-2026.json #### Quantum-Safe Encryption & Post-Quantum Cryptography for Health Data (2026) - **ID**: quantum-safe-health-data-encryption-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: With advancing quantum computing capabilities, health organisations must transition to post-quantum cryptography (PQC) algorithms (e.g., CRYSTALS-Kyber, Dilithium) to protect sensitive health data. Th... - **Discovery URL**: https://bidda.com/api/v1/nodes/quantum-safe-health-data-encryption-2026.json #### Quantum-Safe Encryption Migration for Protected Health Information (PHI) 2026 - **ID**: quantum-safe-phi-migration-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: NIST-recommended migration plan to post-quantum cryptography (PQC) algorithms for HIPAA-covered entities protecting electronic PHI in transit and at rest. - **Discovery URL**: https://bidda.com/api/v1/nodes/quantum-safe-phi-migration-2026.json #### Rare Disease Digital Endpoints & Decentralized Clinical Trials Framework 2026 - **ID**: rare-disease-digital-endpoints-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: FDA and EMA joint guidance supports use of digital endpoints (wearables, apps, AI-derived biomarkers) in rare disease trials. Emphasizes validation, patient-centric design, and real-world data integra... - **Discovery URL**: https://bidda.com/api/v1/nodes/rare-disease-digital-endpoints-2026.json #### Real-World Evidence (RWE) in Regulatory Decision-Making - Global Framework (2026) - **ID**: real-world-evidence-rwe-regulatory-use-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Real-World Evidence from electronic health records, claims data, registries, wearables, and digital sources is increasingly accepted for regulatory decisions including approval, label expansion, post-... - **Discovery URL**: https://bidda.com/api/v1/nodes/real-world-evidence-rwe-regulatory-use-2026.json #### Regulatory Intelligence & Horizon Scanning for Medical & Health Technologies (2026) - **ID**: regulatory-intelligence-horizon-scanning-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: A foundational compliance process requiring medical device manufacturers and health tech developers to systematically monitor, analyse, and adapt to emerging regulatory changes across global jurisdict... - **Discovery URL**: https://bidda.com/api/v1/nodes/regulatory-intelligence-horizon-scanning-2026.json #### Russia Federal Law No. 152-FZ - Personal Data (Health Data) & Digital Health Regulations (2026) - **ID**: russia-fz-152-health-data-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Federal Law No. 152-FZ on Personal Data classifies health data as special category data requiring explicit written consent or other legal grounds. The law mandates data localisation (storage in Russia... - **Discovery URL**: https://bidda.com/api/v1/nodes/russia-fz-152-health-data-2026.json #### Rwanda Digital Health Framework & Data Protection Law (2026) - **ID**: rwanda-digital-health-framework-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Rwanda’s Digital Health Framework and Law No. 058/2021 on Protection of Personal Data and Privacy classify health data as sensitive. The framework mandates the Rwanda Health Information Exchange (RHIE... - **Discovery URL**: https://bidda.com/api/v1/nodes/rwanda-digital-health-framework-2026.json #### Rwanda Data Protection & Digital Health Sovereignty Law 2026 - **ID**: rwanda-digital-health-sovereignty-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Rwanda's 2026 framework mandates data localisation for critical health records, strict consent for cross-border transfers, and government oversight of digital health platforms. - **Discovery URL**: https://bidda.com/api/v1/nodes/rwanda-digital-health-sovereignty-2026.json #### Saudi Arabia SFDA - Digital Health Technologies, AI Medical Devices & PDPL Health Data Rules (2026) - **ID**: saudi-arabia-sfda-digital-health-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Saudi Food and Drug Authority (SFDA) regulates digital health technologies, Software as a Medical Device, and AI medical devices under the Medical Devices Law. Combined with the Personal Data Prot... - **Discovery URL**: https://bidda.com/api/v1/nodes/saudi-arabia-sfda-digital-health-2026.json #### Secondary Use of Health Data - Governance, Ethics & Compliance Framework (2026) - **ID**: secondary-use-health-data-governance-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Secondary use of health data (research, AI training, public health, commercial purposes) requires robust governance including lawful basis assessment, transparency, data minimisation, pseudonymisation... - **Discovery URL**: https://bidda.com/api/v1/nodes/secondary-use-health-data-governance-2026.json #### Singapore Healthcare Services Act 2020 (No. 3 of 2020) - Healthcare Provider Licensing - **ID**: sg-healthcare-services-act-2020 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: The Healthcare Services Act 2020 (HSA 2020, No. 3 of 2020) is Singapore's consolidated framework for the licensing and regulation of healthcare service providers, replacing the Private Hospitals and M... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-healthcare-services-act-2020.json #### Singapore HSA Software as a Medical Device (SaMD) Regulatory Framework 2026 - **ID**: singapore-hsa-samd-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: HSA aligns SaMD regulation with IMDRF, with risk-based classification and streamlined pathways referencing FDA/CE approvals. 2026 updates include enhanced AI/ML change management and cybersecurity req... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-hsa-samd-2026.json #### SNOMED CT International Edition - Clinical Terminology Standard for Electronic Health Record Data Capture - **ID**: snomed-ct-clinical-terminology - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: SNOMED CT is a comprehensive, multilingual clinical healthcare terminology that provides a standardized way to represent clinical information in electronic health records (EHRs). It requires healthcar... - **Discovery URL**: https://bidda.com/api/v1/nodes/snomed-ct-clinical-terminology.json #### South Korea Digital Medical Products Act (DMPA) & MFDS AI Medical Device Guidelines (2026) - **ID**: south-korea-mfds-digital-medical-products-act-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Digital Medical Products Act (enforced 2025 with key provisions from January 2026) and MFDS guidelines regulate digital medical devices, SaMD, and generative AI medical devices. Requirements inclu... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-korea-mfds-digital-medical-products-act-2026.json #### Synthetic Data Generation & Governance in Healthcare (2026) - **ID**: synthetic-data-health-governance-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Synthetic data (artificially generated data that mimics real health data) is increasingly used for AI training, testing, and research while reducing privacy risks. Governance requires validation of st... - **Discovery URL**: https://bidda.com/api/v1/nodes/synthetic-data-health-governance-2026.json #### Telemedicine & Cross-Border Healthcare Delivery - Global Compliance Framework (2026) - **ID**: telemedicine-cross-border-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Cross-border telemedicine services must navigate licensing, data protection, reimbursement, liability, and quality standards across jurisdictions. Key challenges include lawful basis for international... - **Discovery URL**: https://bidda.com/api/v1/nodes/telemedicine-cross-border-2026.json #### Texas & Florida Telehealth Registration & Parity Rules 2026 - **ID**: texas-florida-telehealth-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Texas and Florida allow out-of-state providers to register for telehealth without full in-state licensure under specific conditions, including liability coverage and scope limits. Both states maintain... - **Discovery URL**: https://bidda.com/api/v1/nodes/texas-florida-telehealth-2026.json #### UAE Federal Decree-Law on Health Data & Dubai Health Authority (DHA) Digital Health Regulations (2026) - **ID**: uae-dhia-health-data-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The UAE Federal Decree on Health Data and DHA regulations govern the collection, processing, sharing, and protection of health data across the federation. Health data is classified as sensitive, requi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-dhia-health-data-2026.json #### Unique Device Identification (UDI) Systems - Global Implementation & Compliance (2026) - **ID**: udi-system-medical-devices-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The UDI system requires manufacturers to assign a globally unique identifier to each medical device model/version, place it on the label/packaging/device, and submit data to regulatory databases (GUDI... - **Discovery URL**: https://bidda.com/api/v1/nodes/udi-system-medical-devices-2026.json #### UK Care Act 2014 Section 42 - Local Authority Safeguarding Enquiries (Adult Care and Support Needs, Abuse or Neglect Risk, Inability to Protect Self, Duty to Make Enquiries) - **ID**: uk-care-act-2014-section-42-local-authority-safeguarding-enquiries - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Section 42 of the Care Act 2014 (c. 23) imposes the foundational statutory adult safeguarding duty on local authorities in England - the operative provision for prosecuting safeguarding adults at risk... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-care-act-2014-section-42-local-authority-safeguarding-enquiries.json #### UK Care Act 2014 Section 9 — Assessment of an Adult's Needs for Care and Support - **ID**: uk-care-act-2014-section-9-assessment-adults-needs-for-care-and-support - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Where it appears to a local authority that an adult may have needs for care and support, the authority must carry out a needs assessment, regardless of the authority's view of the adult's needs level ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-care-act-2014-section-9-assessment-adults-needs-for-care-and-support.json #### Care Act 2014 Section 9: Needs assessment - **ID**: uk-care-act-2014-section-9-needs-assessment-requirements - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Local authorities must conduct a needs assessment for any adult who appears to have needs for care and support, involving the adult and their carer, and considering specific factors like well-being, d... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-care-act-2014-section-9-needs-assessment-requirements.json #### UK Children Act 1989 Section 17 — Provision of Services for Children in Need, Their Families and Others - **ID**: uk-children-act-1989-section-17-services-for-children-in-need - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Every local authority has a general duty to safeguard and promote the welfare of children within their area who are in need, and to promote the upbringing of such children by their families, by provid... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-children-act-1989-section-17-services-for-children-in-need.json #### United Kingdom Health and Care Act 2022: NHS England Renaming, Establishment of Integrated Care Boards and Integrated Care Partnerships, Workforce Planning Reporting, Care Quality Commission Reviews of Integrated Care Systems, Regulation of Local Authority Adult Social Care Functions, and Advertising of Less Healthy Food and Drink - **ID**: uk-health-and-care-act-2022 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Health and Care Act 2022, chapter 31 of 2022, received Royal Assent on 28 April 2022 and is the principal United Kingdom statute reorganising the National Health Service in England by establishing... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-health-and-care-act-2022.json #### Health and Social Care Act 2008, Section 20: Regulation of regulated activities - **ID**: uk-health-and-social-care-act-2008-section-20-registration-requirements - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Organizations carrying on regulated activities must comply with regulations established by the Secretary of State concerning service quality, safety, personnel fitness, premises, record-keeping, and t... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-health-and-social-care-act-2008-section-20-registration-requirements.json #### UK MHRA Medical Device Registration - UK MDR 2002 Post-Brexit Requirements - **ID**: uk-medicines-healthcare-products-regulatory-agency-mhra-device-registration - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Following Brexit, the UK Medicines and Healthcare products Regulatory Agency (MHRA) has separate medical device registration requirements from the EU MDR. Manufacturers must register with MHRA before ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-medicines-healthcare-products-regulatory-agency-mhra-device-registration.json #### UK Mental Capacity Act 2005 Section 1 - The Principles (Presumption of Capacity, All Practicable Steps, Unwise Decision Not Incapacity, Best Interests, Least Restrictive Option) - **ID**: uk-mental-capacity-act-2005-section-1-principles - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Section 1 of the Mental Capacity Act 2005 (c. 9) establishes the five foundational principles that govern the entire MCA 2005 regime in England and Wales - the operative principles applied by all heal... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mental-capacity-act-2005-section-1-principles.json #### UK Mental Capacity Act 2005 Section 2 — People Who Lack Capacity - **ID**: uk-mental-capacity-act-2005-section-2-people-who-lack-capacity - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: A person lacks capacity in relation to a matter if, at the material time, they are unable to make a decision for themselves in relation to that matter because of an impairment of, or a disturbance in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mental-capacity-act-2005-section-2-people-who-lack-capacity.json #### UK Mental Capacity Act 2005 Section 3 — Inability to Make Decisions - **ID**: uk-mental-capacity-act-2005-section-3-inability-to-make-decisions - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: For the purposes of Section 2, a person is unable to make a decision if they are unable to understand, retain, use or weigh the relevant information, or communicate the decision by any means. Informat... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mental-capacity-act-2005-section-3-inability-to-make-decisions.json #### UK Mental Health Act 1983 Section 1 - Application of Act and Definition of Mental Disorder (Any Disorder or Disability of the Mind, Learning Disability Aggression Qualification, Drug Alcohol Exclusion) - **ID**: uk-mental-health-act-1983-section-1-application-mental-disorder - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Section 1 of the Mental Health Act 1983 (c. 20) provides the foundational definitions of mental disorder for the entire MHA 1983 framework - the gateway provision determining who may be detained, trea... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mental-health-act-1983-section-1-application-mental-disorder.json #### Mental Health Act 1983 Section 2: Admission for assessment - **ID**: uk-mental-health-act-1983-section-2-admission-assessment - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This section establishes the legal grounds and procedural requirements for the compulsory admission and detention of a patient in a hospital for assessment, based on recommendations from two medical p... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mental-health-act-1983-section-2-admission-assessment.json #### UK Mental Health Act 1983 Section 3 — Admission for Treatment - **ID**: uk-mental-health-act-1983-section-3-admission-for-treatment - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: A patient may be admitted to hospital and detained for treatment under Section 3 on the grounds that they are suffering from mental disorder of a nature or degree which makes hospital treatment approp... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mental-health-act-1983-section-3-admission-for-treatment.json #### UK MHRA - AI as a Medical Device (AIaMD) and Software as a Medical Device (SaMD) Framework (2026) - **ID**: uk-mhra-ai-medical-devices-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Medicines and Healthcare products Regulatory Agency (MHRA) regulates AI as a Medical Device and SaMD under the Medical Devices Regulations 2002 (as amended). Key requirements include risk classifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mhra-ai-medical-devices-2026.json #### UK MHRA Medical Devices Regulations 2002 - Post-Brexit CE/UKCA Marking & Clinical Investigation - **ID**: uk-mhra-medical-devices-regulations-2002-si-2002-618 - **Category**: Medical & Healthcare - **Version**: 2.0 - **BLUF**: UK Medicines and Healthcare products Regulatory Agency (MHRA) requires UKCA marking from July 2024 for Great Britain medical devices, transitioning from EU CE marking acceptance - manufacturers must r... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mhra-medical-devices-regulations-2002-si-2002-618.json #### US Title 18 - 18 USC 1347 Health Care Fraud - **ID**: us-18-usc-1347-health-care-fraud - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 18 USC 1347 titled 'Health care fraud' is the federal criminal statute that prohibits schemes or artifices to defraud any health care benefit program or to obtain by false or fraudulent pretenses any ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1347-health-care-fraud.json #### 21 CFR Part 11 - Electronic Records; Electronic Signatures - **ID**: us-21-cfr-part-11-electronic-records-electronic-signatures - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes the US Food and Drug Administration (FDA) criteria under which electronic records and electronic signatures are considered trustworthy, reliable, and equivalent to paper re... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-11-electronic-records-electronic-signatures.json #### US 21 CFR Part 50: Protection of Human Subjects (FDA-Regulated Research) - **ID**: us-21-cfr-part-50-protection-human-subjects-fda - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 50 establishes FDA regulations for the protection of human subjects in clinical investigations regulated by FDA including investigations supporting marketing applications for drugs biol... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-50-protection-human-subjects-fda.json #### 21 CFR Part 803 - Medical Device Reporting - **ID**: us-21-cfr-part-803-medical-device-reporting-mdr - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes mandatory requirements for manufacturers, importers, and user facilities of medical devices to report certain device-related adverse events and product problems to the FDA. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-803-medical-device-reporting-mdr.json #### US 21 CFR Part 806: Medical Devices - Reports of Corrections and Removals - **ID**: us-21-cfr-part-806-corrections-removals-medical-devices - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 806 requires manufacturers and importers of medical devices to report to FDA corrections and removals undertaken to reduce a risk to health or to remedy a violation of the FDCA. The reg... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-806-corrections-removals-medical-devices.json #### US 21 CFR Part 814: Premarket Approval of Medical Devices - **ID**: us-21-cfr-part-814-premarket-approval-medical-devices - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 814 sets requirements for Premarket Approval (PMA) applications for Class III medical devices and supplements. PMA is the most stringent FDA device pathway requiring scientific evidence... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-814-premarket-approval-medical-devices.json #### US 21 CFR Part 822: Postmarket Surveillance for Medical Devices - **ID**: us-21-cfr-part-822-postmarket-surveillance - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 822 implements FDA Section 522 postmarket surveillance authority for medical devices. FDA may order surveillance for Class II or III devices whose failure could have serious consequence... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-822-postmarket-surveillance.json #### 21st Century Cures Act: Interoperability, Information Blocking, and the ONC Health IT Certification Program (45 CFR Parts 170 and 171) - **ID**: us-21st-century-cures-act-2016 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation prohibits practices likely to interfere with, prevent, or materially discourage the access, exchange, or use of electronic health information (EHI) by healthcare providers, health IT d... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21st-century-cures-act-2016.json #### 42 CFR Part 2 - Confidentiality of Substance Use Disorder Patient Records (2024 Final Rule) - **ID**: us-42-cfr-part-2-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation modifies the confidentiality rules for substance use disorder (SUD) patient records from federally assisted programs, primarily by permitting a single patient consent for all future us... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42-cfr-part-2-2024.json #### 42 CFR Part 2: Confidentiality of Substance Use Disorder Patient Records - **ID**: us-42-cfr-part-2-substance-use-disorder-confidentiality - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes strict confidentiality requirements for patient records related to substance use disorder treatment from federally assisted programs, governing how and when patient-identif... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42-cfr-part-2-substance-use-disorder-confidentiality.json #### US 42 CFR Part 422: Medicare Advantage Program - **ID**: us-42-cfr-part-422-medicare-advantage - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: US 42 CFR Part 422 implements the Medicare Advantage (Part C) program by which Medicare beneficiaries may enroll in managed care plans offered by private organizations under contract with CMS. Part 42... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42-cfr-part-422-medicare-advantage.json #### US 42 CFR Part 423: Voluntary Medicare Prescription Drug Benefit (Part D) - **ID**: us-42-cfr-part-423-medicare-part-d-prescription-drug - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: US 42 CFR Part 423 implements Medicare Part D the voluntary prescription drug benefit established by the Medicare Modernization Act of 2003. Stand-alone prescription drug plans (PDPs) and Medicare Adv... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42-cfr-part-423-medicare-part-d-prescription-drug.json #### 42 CFR Part 431 - State Organization and General Administration - **ID**: us-42-cfr-part-431-medicaid-state-plan-administration - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation requires U.S. states to establish a single state agency to administer their Medicaid plan, ensuring statewide operation, beneficiary rights like free provider choice and fair hearings,... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42-cfr-part-431-medicaid-state-plan-administration.json #### 42 CFR Part 482 - Conditions of Participation for Hospitals - **ID**: us-42-cfr-part-482-hospital-conditions-participation - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Hospitals participating in Medicare and Medicaid must meet specific conditions related to administration, basic functions, patient rights, and emergency preparedness to ensure patient health and safet... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42-cfr-part-482-hospital-conditions-participation.json #### 42 CFR Part 485 - Conditions of Participation: Specialized Providers - **ID**: us-42-cfr-part-485-conditions-various-facilities - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Specialized providers, including Comprehensive Outpatient Rehabilitation Facilities and Rural Emergency Hospitals, must comply with specific conditions of participation covering governance, services, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42-cfr-part-485-conditions-various-facilities.json #### 42 CFR Part 488 - Survey, Certification, and Enforcement Procedures - **ID**: us-42-cfr-part-488-survey-certification-enforcement - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes the procedures for survey, certification, and enforcement for healthcare providers and suppliers participating in Medicare and Medicaid, including requirements for state su... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42-cfr-part-488-survey-certification-enforcement.json #### 42 CFR Part 493 - Laboratory Requirements - **ID**: us-42-cfr-part-493-clinical-laboratory-clia - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes federal quality standards for all laboratory testing to ensure the accuracy, reliability, and timeliness of patient test results, regardless of where the test is performed. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42-cfr-part-493-clinical-laboratory-clia.json #### US 42 CFR Part 2 - Confidentiality of Substance Use Disorder Patient Records (2026 Alignment) - **ID**: us-42cfr-part2-substance-use-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 42 CFR Part 2 imposes strict confidentiality protections for substance use disorder (SUD) patient records. It requires specific written consent for most disclosures (including to health information ex... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42cfr-part2-substance-use-2026.json #### US 45 CFR Part 160: General Administrative Requirements (HIPAA) - **ID**: us-45-cfr-part-160-hipaa-general-administrative - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: US 45 CFR Part 160 contains the general administrative requirements applicable to all HIPAA Administrative Simplification rules including the Privacy Security Breach Notification Enforcement and Trans... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-45-cfr-part-160-hipaa-general-administrative.json #### 45 CFR Part 162 - Administrative Requirements - **ID**: us-45-cfr-part-162-hipaa-administrative-simplification - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes requirements for covered entities to use standard unique identifiers, code sets, and transaction formats for administrative and financial healthcare transactions to simplif... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-45-cfr-part-162-hipaa-administrative-simplification.json #### 45 CFR Part 164 - Security and Privacy - **ID**: us-45-cfr-part-164-hipaa-security-rule-safeguards - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Organizations must implement administrative, physical, and technical safeguards to protect electronic protected health information (ePHI) and provide notifications to individuals, the media, and the S... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-45-cfr-part-164-hipaa-security-rule-safeguards.json #### US Anti-Kickback Statute (42 USC 1320a-7b): Criminal Prohibition on Health Care Remuneration - **ID**: us-anti-kickback-statute - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Anti-Kickback Statute (42 U.S.C. 1320a-7b) is the principal US criminal prohibition on the payment or receipt of remuneration to induce or reward referrals under a Federal health care program, enf... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-anti-kickback-statute.json #### California Assembly Bill 3030 - Health Care Services: Artificial Intelligence (Approved 28 September 2024) - Mandatory Generative AI Disclaimer for Patient Clinical Communications by Health Facilities, Clinics, Physician Offices, and Group Practices; Codified as Health and Safety Code Section 1339.75 - **ID**: us-ca-ab3030-genai-healthcare-disclosure-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: California Assembly Bill 3030, approved by Governor Newsom on 28 September 2024, adds Chapter 2.13 (commencing with Section 1339.75) to Division 2 of the California Health and Safety Code, requiring a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-ab3030-genai-healthcare-disclosure-2024.json #### California Senate Bill 1120 (Becker) - Physicians Make Decisions Act, Health Care Coverage: Utilization Review (2024) - Restrictions on AI, Algorithm, and Software Tool Use in Utilization Review by Health Care Service Plans and Disability Insurers; Amendments to Health and Safety Code Section 1367.01 and Insurance Code Section 10123.135 - **ID**: us-ca-sb1120-physicians-make-decisions-act-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: California Senate Bill 1120 (Becker), the Physicians Make Decisions Act, amends Section 1367.01 of the California Health and Safety Code (governing health care service plans regulated by the Departmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-sb1120-physicians-make-decisions-act-2024.json #### US Clinical Laboratory Improvement Amendments (42 USC 263a): Laboratory Certification and Quality - **ID**: us-clia-laboratory-certification - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Clinical Laboratory Improvement Amendments, CLIA (42 U.S.C. 263a), require that clinical laboratories examining human specimens for the diagnosis, prevention or treatment of disease, or the assess... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clia-laboratory-certification.json #### 42 CFR Part 411 - CMS Medicare Secondary Payer Rules and Recovery - **ID**: us-cms-42-cfr-411-medicare-secondary-payer - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 42 CFR Part 411 implements the Medicare Secondary Payer (MSP) rules administered by the U.S. Centers for Medicare & Medicaid Services, and sets out certain exclusions from Medicare coverage. Where ano... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cms-42-cfr-411-medicare-secondary-payer.json #### US CMS Conditions of Participation for Hospitals - 42 CFR Part 482 Medicare and Medicaid - **ID**: us-cms-conditions-participation-hospitals-42-cfr-482-medicare-medicaid - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Centers for Medicare and Medicaid Services (CMS) Conditions of Participation (CoPs) at 42 CFR Part 482 establish minimum health and safety standards that hospitals must meet to receive Medicare an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cms-conditions-participation-hospitals-42-cfr-482-medicare-medicaid.json #### CMS Advancing Interoperability and Improving Prior Authorization Processes Final Rule (CMS-0057-F) - **ID**: us-cms-interoperability-prior-auth-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This rule requires impacted payers (Medicare Advantage, Medicaid, CHIP, and QHP issuers) to implement and maintain specific FHIR-based APIs to improve patient data exchange and automate prior authoriz... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cms-interoperability-prior-auth-2024.json #### Medicare and Medicaid Programs; Patient Protection and Affordable Care Act; Interoperability and Patient Access for Medicare Advantage Organization and Medicaid Managed Care Plans, State Medicaid Agencies, CHIP Agencies and CHIP Managed Care Entities, Issuers of Qualified Health Plans on the Federally-Facilitated Exchanges, and Health Care Providers - **ID**: us-cms-interoperability-rule-2020 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This rule requires CMS-regulated payers to implement and maintain a secure, standards-based Patient Access API using HL7 FHIR Release 4, enabling patients to access their claims, encounter, and clinic... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cms-interoperability-rule-2020.json #### Information Blocking (45 CFR Part 171) under the 21st Century Cures Act - **ID**: us-cures-act-information-blocking-2021 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This rule, under 45 CFR § 171.103, prohibits practices by healthcare providers, health IT developers, and health information networks/exchanges that are likely to interfere with, prevent, or materiall... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cures-act-information-blocking-2021.json #### Drug Supply Chain Security Act (DSCSA) - Enhanced Drug Distribution Security Requirements for Interoperable, Electronic Tracing of Products at the Package Level - **ID**: us-drug-supply-chain-security-act-2023-dscsa - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The DSCSA requires all pharmaceutical trading partners to implement a fully electronic, interoperable system to trace and verify prescription drugs at the individual package level throughout the U.S. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-drug-supply-chain-security-act-2023-dscsa.json #### US EMTALA (42 USC 1395dd): Emergency Medical Screening, Stabilization and Transfer - **ID**: us-emtala-emergency-treatment - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Emergency Medical Treatment and Labor Act, EMTALA (42 U.S.C. 1395dd), requires Medicare-participating hospitals with an emergency department to screen, stabilize and appropriately transfer individ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-emtala-emergency-treatment.json #### 21 CFR Part 1271 - Human Cells, Tissues, and Cellular and Tissue-Based Products (HCT/Ps) - **ID**: us-fda-21-cfr-1271-human-cells-tissues-hctps - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: FDA 21 CFR Part 1271 governs human cells, tissues, and cellular and tissue-based products, setting the criteria under which an HCT/P is regulated solely under section 361 of the Public Health Service ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-1271-human-cells-tissues-hctps.json #### 21 CFR Part 312 - Investigational New Drug Application - **ID**: us-fda-21-cfr-312-ind-clinical-investigations - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation requires sponsors to submit an Investigational New Drug (IND) application to the U.S. Food and Drug Administration (FDA) before initiating any clinical investigation of a new drug in h... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-312-ind-clinical-investigations.json #### 21 CFR Part 314: Applications for FDA Approval to Market a New Drug - **ID**: us-fda-21-cfr-314-nda-drug-approval - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes the comprehensive requirements for submitting a New Drug Application (NDA) to the U.S. Food and Drug Administration (FDA) for marketing approval. It mandates specific conte... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-314-nda-drug-approval.json #### 21 CFR Part 4 - FDA Combination Products cGMP and Postmarketing Safety Reporting - **ID**: us-fda-21-cfr-4-combination-products-cgmp-postmarket-safety - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 4 sets the current good manufacturing practice (cGMP) requirements and postmarketing safety reporting requirements for combination products regulated by the U.S. Food and Drug Administrati... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-4-combination-products-cgmp-postmarket-safety.json #### US FDA Protection of Human Subjects - 21 CFR Part 50 Informed Consent and Vulnerable-Population Requirements for FDA-Regulated Clinical Investigations - **ID**: us-fda-21-cfr-50-human-subjects-protection-clinical-research - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 50 (Protection of Human Subjects) is issued by the FDA under sections 201, 301, 405, 406, 408, 409, 412, 413, 502, 503, 505, 506, 507, 510, 513-516, 518-520, 528, 706, and 801 of the Feder... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-50-human-subjects-protection-clinical-research.json #### 21 CFR Part 54 - Financial Disclosure by Clinical Investigators - **ID**: us-fda-21-cfr-54-financial-disclosure-clinical-investigators - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 54 requires an applicant who submits a marketing application for a human drug, biological product or device, relying on covered clinical studies, to disclose or certify certain financial i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-54-financial-disclosure-clinical-investigators.json #### US FDA Biologics Licensing - 21 CFR Part 601 Biologics License Application, Establishment Licensing, Post-Approval Reporting and Lot Release Obligations - **ID**: us-fda-21-cfr-601-biologics-licensing-and-establishment-licensing - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 601 (Licensing) is the FDA's implementing regulation for the biological product approval and licensing framework under section 351 of the Public Health Service Act (42 U.S.C. 262) and the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-601-biologics-licensing-and-establishment-licensing.json #### 21 CFR Part 606 - Current Good Manufacturing Practice for Blood and Blood Components - **ID**: us-fda-21-cfr-606-cgmp-blood-and-blood-components - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 606 establishes the current good manufacturing practice (CGMP) requirements for the collection, processing, compatibility testing, storage and distribution of blood and blood components fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-606-cgmp-blood-and-blood-components.json #### 21 CFR Part 801 - Medical Device Labeling - **ID**: us-fda-21-cfr-801-medical-device-labeling - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 801 sets out the FDA labeling requirements for medical devices. The label of a device in package form must conspicuously specify the name and place of business of the manufacturer, packer ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-801-medical-device-labeling.json #### US FDA Medical Device Corrections and Removals - 21 CFR Part 806 Notification, Recordkeeping and Reporting Requirements for Device Manufacturers and Importers - **ID**: us-fda-21-cfr-806-medical-devices-corrections-and-removals - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 806 (Medical Devices; Reports of Corrections and Removals) is issued by the FDA under sections 519 and 701(a) of the Federal Food, Drug, and Cosmetic Act (21 U.S.C. 360i, 371(a)) to requir... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-806-medical-devices-corrections-and-removals.json #### 21 CFR Part 807 - Device Establishment Registration, Device Listing and 510(k) Premarket Notification - **ID**: us-fda-21-cfr-807-device-establishment-registration-listing-510k - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 807 requires owners and operators of establishments engaged in the manufacture, preparation, propagation, compounding, assembly or processing of devices intended for human use to register ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-807-device-establishment-registration-listing-510k.json #### 21 CFR Part 812 - Investigational Device Exemptions (IDE) - **ID**: us-fda-21-cfr-812-investigational-device-exemptions - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 812 sets out the FDA Investigational Device Exemption (IDE) requirements that permit a device that would otherwise require marketing clearance or approval to be shipped lawfully for the pu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-812-investigational-device-exemptions.json #### 21 CFR Part 830 - FDA Unique Device Identification (UDI) - **ID**: us-fda-21-cfr-830-unique-device-identification - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 830 establishes the unique device identification (UDI) system administered by the U.S. Food and Drug Administration. A labeler of a medical device that is required to bear a unique device ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-830-unique-device-identification.json #### Title 21 CFR Part 11: Electronic Records; Electronic Signatures - **ID**: us-fda-21-cfr-part-11-electronic-records - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes the U.S. Food and Drug Administration (FDA) criteria for accepting electronic records and signatures as trustworthy, reliable, and equivalent to paper records for all FDA-r... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-11-electronic-records.json #### 21 CFR Part 16 - FDA Regulatory Hearing Procedure (Pre-Decision Hearings, Notices of Opportunity, Presiding Officer, Administrative Decision, Judicial Review) - **ID**: us-fda-21-cfr-part-16-regulatory-hearing-procedure - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 16 sets the procedural framework for the FDA regulatory hearing - the agency's pre-decision hearing mechanism used either at the Commissioner's discretion to obtain additional information ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-16-regulatory-hearing-procedure.json #### 21 CFR Part 25 - FDA Environmental Impact Considerations (NEPA Implementation: Environmental Assessments, Categorical Exclusions, Environmental Impact Statements) - **ID**: us-fda-21-cfr-part-25-environmental-impact-nepa - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 25 sets the FDA implementation of the National Environmental Policy Act of 1969 (NEPA) section 102(2) for FDA actions affecting FDA-regulated products including drugs, biologics, medical d... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-25-environmental-impact-nepa.json #### 21 CFR Part 58 - Good Laboratory Practice for Nonclinical Laboratory Studies - **ID**: us-fda-21-cfr-part-58-good-laboratory-practice-nonclinical - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes the minimum standards for the conduct of nonclinical laboratory studies that support or are intended to support applications for research or marketing permits for products ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-58-good-laboratory-practice-nonclinical.json #### 21 CFR Part 7 - Enforcement Policy: Recalls (Product Corrections), Health Hazard Evaluation, Recall Classification, and Industry Responsibilities - **ID**: us-fda-21-cfr-part-7-enforcement-policy-recalls - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 7 sets the FDA enforcement policy framework for recalls of FDA-regulated products and codifies the recall guidance for industry, health-hazard evaluation, recall classification, recall str... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-7-enforcement-policy-recalls.json #### 21 CFR Part 803 - Medical Device Reporting - **ID**: us-fda-21-cfr-part-803-medical-device-reporting - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes requirements for medical device user facilities, importers, and manufacturers to report adverse events and other device-related problems to the FDA. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-803-medical-device-reporting.json #### 21 CFR Part 808 - Exemptions from Federal Preemption of State and Local Medical Device Requirements (FDA Section 521 Petitions) - **ID**: us-fda-21-cfr-part-808-exemptions-federal-preemption-medical-device - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 808 prescribes the procedures by which a State or political subdivision may apply to the U.S. Food and Drug Administration for an exemption from the Federal preemption of State and local r... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-808-exemptions-federal-preemption-medical-device.json #### 21 CFR Part 814 Subpart H - Humanitarian Use Devices (HUDs) and Humanitarian Device Exemption (HDE) Pathway for Rare Disease and Pediatric Subpopulation Medical Devices - **ID**: us-fda-21-cfr-part-814-subpart-h-humanitarian-device-exemption - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 814 Subpart H implements section 515A and section 520(m) of the Federal Food, Drug, and Cosmetic Act (FD&C Act) and creates the Humanitarian Device Exemption (HDE) marketing pathway for de... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-814-subpart-h-humanitarian-device-exemption.json #### US FDA 21 CFR Part 820 - Quality System Regulation (QSR) for Medical Device Manufacturers - **ID**: us-fda-21-cfr-part-820-quality-system-regulation-medical-devices - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 C.F.R. Part 820 (Quality System Regulation) establishes Current Good Manufacturing Practice (CGMP) requirements for medical device manufacturers. The FDA amended Part 820 in 2024 to align with ISO ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-820-quality-system-regulation-medical-devices.json #### 21 CFR Part 821 - Medical Device Tracking Requirements (FDA Tracking Orders for Class II and Class III Devices) - **ID**: us-fda-21-cfr-part-821-medical-device-tracking-requirements - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 821 implements section 519(e) of the Federal Food, Drug, and Cosmetic Act and prescribes the FDA medical device tracking regime applicable to Class II or Class III devices where a failure ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-821-medical-device-tracking-requirements.json #### 21 CFR Part 99 - Dissemination of Information on Unapproved/New Uses for Marketed Drugs, Biologics, and Devices (FDA Off-Label Information Regime) - **ID**: us-fda-21-cfr-part-99-dissemination-information-unapproved-uses - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 99 governs the dissemination by a manufacturer of written information on a use of an approved or cleared drug, biologic, or device that is not included in the FDA-approved labeling or the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-99-dissemination-information-unapproved-uses.json #### US 21st Century Cures Act & ONC Information Blocking Final Rule (2026 Enforcement) - **ID**: us-fda-21st-century-cures-act-updates-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The 21st Century Cures Act and ONC Final Rule prohibit information blocking with expanded enforcement in 2026, including civil monetary penalties up to $1 million per violation. Actors must provide AP... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21st-century-cures-act-updates-2026.json #### Premarket Notification 510(k) - Substantial Equivalence Submission for Medical Devices - **ID**: us-fda-510k-premarket-notification - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Requires medical device manufacturers to submit a Premarket Notification, or 510(k), to the FDA at least 90 days before marketing a device to demonstrate it is substantially equivalent to a legally ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-510k-premarket-notification.json #### US FDA Accelerated Approval Pathway (21 CFR Subpart H/E) - Surrogate Endpoint Basis, Confirmatory Trial Requirements, Post-Marketing Conditions and Expedited Withdrawal Procedures Under FDORA 2022 - **ID**: us-fda-accelerated-approval-subpart-h-e - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The FDA Accelerated Approval Program allows for earlier approval of drugs that treat serious conditions and fill an unmet medical need based on a surrogate endpoint reasonably likely to predict clinic... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-accelerated-approval-subpart-h-e.json #### Artificial Intelligence/Machine Learning (AI/ML)-Based Software as a Medical Device (SaMD) Action Plan - **ID**: us-fda-ai-ml-action-plan-2021 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This action plan outlines the FDA's multi-pronged approach to regulating AI/ML-based Software as a Medical Device (SaMD), focusing on a total product lifecycle framework that includes a Predetermined ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-ai-ml-action-plan-2021.json #### US FDA Final Guidance on Predetermined Change Control Plans for AI-Enabled Device Software Functions, December 2024 - **ID**: us-fda-aiml-samd-pccp-final-guidance-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Manufacturers of AI-enabled medical devices (Software as a Medical Device and software functions in or as devices) submitting marketing applications to the US FDA should incorporate a Predetermined Ch... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-aiml-samd-pccp-final-guidance-2024.json #### US FDA Biosimilar Approval Pathway (Section 351(k) Public Health Service Act): Analytical Similarity, Extrapolation, Interchangeability, and Purple Book Listing - **ID**: us-fda-biosimilar-351k-regulatory-pathway - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Under Section 351(k) of the Public Health Service Act, a biological product may be approved as a biosimilar if data demonstrates it is highly similar to an already FDA-approved biological product (the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-biosimilar-351k-regulatory-pathway.json #### 21 CFR Part 50 - Protection of Human Subjects - **ID**: us-fda-cfr-21-part-50-protection-human-subjects - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Organizations conducting clinical investigations involving human subjects must obtain and document informed consent, adhering to specific required elements and implementing additional safeguards for v... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-cfr-21-part-50-protection-human-subjects.json #### 21 CFR Part 820 - Quality Management System Regulation - **ID**: us-fda-cfr-21-part-820-quality-system-regulation - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Manufacturers of medical devices must establish, document, and maintain a quality management system (QMS) that complies with ISO 13485 and specific FDA requirements for record control, labeling, and p... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-cfr-21-part-820-quality-system-regulation.json #### FDA Final Rule on Laboratory Developed Tests (LDTs) - 21 CFR 809.3 Amendment and 4-Year Phaseout (May 2024) - **ID**: us-fda-ldt-final-rule-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: FDA's Final Rule on Medical Devices - Laboratory Developed Tests (89 FR 37286, published 6 May 2024, effective 5 July 2024) amends 21 CFR Section 809.3 to make explicit that in vitro diagnostic produc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-ldt-final-rule-2024.json #### US FDA Premarket Approval (PMA) - Application Requirements for Class III High-Risk Medical Devices - **ID**: us-fda-pma-premarket-approval - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Premarket Approval (PMA) is the most stringent marketing application required by the FDA for Class III medical devices, which are those that support or sustain human life, are of substantial impor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-pma-premarket-approval.json #### Considerations for the Use of Real-World Data and Real-World Evidence to Support Regulatory Decision-Making for Drug and Biological Products - **ID**: us-fda-rwe-framework-real-world-evidence-2023 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Mandated by the 21st Century Cures Act, Section 505F, this FDA framework outlines requirements for sponsors using Real-World Data (RWD) and Real-World Evidence (RWE) in regulatory submissions, demandi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-rwe-framework-real-world-evidence-2023.json #### US Genetic Information Nondiscrimination Act Title II (42 USC ch 21F): Genetic Information in Employment - **ID**: us-genetic-information-nondiscrimination-act - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Genetic Information Nondiscrimination Act, Title II (42 U.S.C. ch. 21F), prohibits discrimination in employment on the basis of genetic information and restricts the acquisition of such informatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-genetic-information-nondiscrimination-act.json #### US Genetic Information Nondiscrimination Act of 2008 (GINA): Prohibits health insurers and employers from discriminating based on genetic information - **ID**: us-genetic-information-nondiscrimination-act-gina-2008 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Genetic Information Nondiscrimination Act of 2008 (GINA) is a United States federal law enacted on 21 May 2008 as Public Law 110-233. It is divided into two titles. Title I, effective 21 May 2009,... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-genetic-information-nondiscrimination-act-gina-2008.json #### US HHS ACA Health Insurance Exchanges - 45 CFR Part 155 Exchange Establishment Standards, Eligibility Determinations and Enrollment in Qualified Health Plans - **ID**: us-hhs-45-cfr-155-aca-exchange-establishment-standards - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 45 CFR Part 155 (Exchange Establishment Standards and Other Related Standards Under the Affordable Care Act) is the HHS regulation implementing the Affordable Care Act (ACA, Public Law 111-148) provis... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hhs-45-cfr-155-aca-exchange-establishment-standards.json #### US HHS HIPAA General Administrative Requirements - 45 CFR Part 160 Applicability, Definitions, Preemption, Civil Monetary Penalties and Compliance and Enforcement Procedures - **ID**: us-hhs-45-cfr-160-hipaa-general-administrative-requirements - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 45 CFR Part 160 (General Administrative Requirements) is the foundational HIPAA Administrative Simplification rule issued by the US Department of Health and Human Services under the Health Insurance P... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hhs-45-cfr-160-hipaa-general-administrative-requirements.json #### 45 CFR Part 162 - HIPAA Administrative Simplification: Standard Unique Identifiers - **ID**: us-hhs-45-cfr-162-hipaa-administrative-simplification-identifiers - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: HHS 45 CFR Part 162 implements the HIPAA Administrative Simplification standard unique identifiers and electronic transaction standards, requiring covered entities to obtain and use the National Provi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hhs-45-cfr-162-hipaa-administrative-simplification-identifiers.json #### US HHS Common Rule - 45 CFR Part 46 Protection of Human Subjects in Federally Conducted, Supported or Otherwise Subject Research Including IRB Review and Informed Consent - **ID**: us-hhs-45-cfr-46-common-rule-protection-of-human-subjects-research - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 45 CFR Part 46 (Protection of Human Subjects) is the HHS regulation implementing the Federal Policy for the Protection of Human Subjects (the Common Rule), originally adopted in 1991 and substantially... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hhs-45-cfr-46-common-rule-protection-of-human-subjects-research.json #### US HHS HIPAA Security Rule Notice of Proposed Rulemaking (Published 6 January 2025) - Modernised Cybersecurity Standards for Electronic Protected Health Information; Proposed Amendments to 45 CFR Parts 160 and 164 Subparts A and C; Mandatory Encryption, Multi-Factor Authentication, Technology Asset Inventory, Patch Management, and Compliance Audit - **ID**: us-hhs-hipaa-security-rule-nprm-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: On 6 January 2025 the US Department of Health and Human Services Office for Civil Rights published the HIPAA Security Rule Notice of Proposed Rulemaking (HHS-OCR-2024-0010) at 90 FR 898, proposing the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hhs-hipaa-security-rule-nprm-2024.json #### US HHS HIPAA Privacy Rule to Support Reproductive Health Care Privacy Final Rule - Prohibition on Disclosures for Investigation Purposes, Compliance Date 22 December 2024 - **ID**: us-hhs-ocr-hipaa-reproductive-health-privacy-final-rule-2024 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Covered entities and business associates under HIPAA must, from the compliance date of 22 December 2024 (with the attestation requirement compliance date of 19 February 2026), comply with the HHS Offi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hhs-ocr-hipaa-reproductive-health-privacy-final-rule-2024.json #### 42 CFR Part 1001 - HHS OIG Exclusions from Federal Health Care Programs - **ID**: us-hhs-oig-42-cfr-1001-program-exclusions - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 42 CFR Part 1001 governs the exclusion of individuals and entities from participation in Medicare, Medicaid and other Federal health care programs by the U.S. Department of Health and Human Services O... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hhs-oig-42-cfr-1001-program-exclusions.json #### 45 CFR 164.308 - Administrative safeguards - **ID**: us-hipaa-45-cfr-164-308-administrative-safeguards - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: A covered entity or business associate must implement administrative safeguards, including policies, procedures, and risk management processes, to protect the confidentiality, integrity, and availabil... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-45-cfr-164-308-administrative-safeguards.json #### 45 CFR 164.310 - Physical safeguards. - **ID**: us-hipaa-45-cfr-164-310-physical-safeguards - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Organizations must implement policies, procedures, and physical safeguards to control facility access, secure workstations, and manage electronic devices and media containing protected health informat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-45-cfr-164-310-physical-safeguards.json #### 45 CFR 164.312 - Technical safeguards. - **ID**: us-hipaa-45-cfr-164-312-technical-safeguards - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Organizations must implement technical policies and procedures, including access controls, audit controls, integrity measures, authentication, and transmission security, to protect electronic protecte... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-45-cfr-164-312-technical-safeguards.json #### 45 CFR 164.314 - Organizational requirements. - **ID**: us-hipaa-45-cfr-164-314-business-associate-contracts - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation requires covered entities and group health plans to establish contracts or amend plan documents to ensure their business associates and plan sponsors appropriately safeguard electronic... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-45-cfr-164-314-business-associate-contracts.json #### 45 CFR 164.316 - Policies and procedures and documentation requirements. - **ID**: us-hipaa-45-cfr-164-316-documentation-requirements - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Covered entities and business associates must implement and maintain written policies and procedures to comply with HIPAA Security Rule standards, and retain all required documentation for six years. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-45-cfr-164-316-documentation-requirements.json #### 45 CFR 164.404 - Notification to individuals. - **ID**: us-hipaa-45-cfr-164-404-breach-notification-covered-entities - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation requires covered entities to notify individuals whose unsecured protected health information has been breached without unreasonable delay and no later than 60 days after discovery, spe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-45-cfr-164-404-breach-notification-covered-entities.json #### 45 CFR 164.410 - Notification by a business associate. - **ID**: us-hipaa-45-cfr-164-410-breach-notification-business-associates - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation requires a business associate to provide notification to a covered entity following the discovery of a breach of unsecured protected health information. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-45-cfr-164-410-breach-notification-business-associates.json #### 45 CFR 164.502 -- Uses and disclosures of protected health information: General rules. - **ID**: us-hipaa-45-cfr-164-502-uses-disclosures-phi - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes the general principle that a covered entity or business associate may not use or disclose protected health information (PHI) except as explicitly permitted or required by l... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-45-cfr-164-502-uses-disclosures-phi.json #### 45 CFR 164.524 - Access of individuals to protected health information - **ID**: us-hipaa-45-cfr-164-524-right-of-access-phi - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes an individual's right to access, inspect, and obtain a copy of their protected health information (PHI) held by a covered entity, and sets requirements for the timely provi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-45-cfr-164-524-right-of-access-phi.json #### 45 CFR 164.530 - Administrative requirements - **ID**: us-hipaa-45-cfr-164-530-administrative-requirements - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation requires covered entities to implement a set of administrative measures to protect health information, including designating a privacy official, training staff, establishing safeguards... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-45-cfr-164-530-administrative-requirements.json #### HIPAA Breach Notification Rule (45 CFR Parts 164.400-414) - Unsecured Protected Health Information Breach Response - **ID**: us-hipaa-breach-notification-rule - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This rule requires HIPAA-covered entities and their business associates to provide notification to affected individuals, the Secretary of Health and Human Services (HHS), and, in some cases, the media... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-breach-notification-rule.json #### US HIPAA/HITECH PHI Breach Notification Rule - 45 CFR Part 164 Subpart D - **ID**: us-hipaa-hitech-phi-breach-notification-rule-45-cfr-164 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The HIPAA Breach Notification Rule at 45 CFR Part 164 Subpart D requires covered entities and business associates to notify affected individuals, HHS, and (for large breaches) the media following a br... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-hitech-phi-breach-notification-rule-45-cfr-164.json #### US HIPAA Privacy and Security Rules -- Protected Health Information Compliance Framework - **ID**: us-hipaa-privacy-security-rules-1996 - **Category**: Medical & Healthcare - **Version**: 2024.1.0 - **BLUF**: The Health Insurance Portability and Accountability Act 1996 (HIPAA), implemented through HHS regulations at 45 CFR Parts 160 and 164, establishes federal standards for the protection of Protected Hea... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-privacy-security-rules-1996.json #### US HIPAA Security Rule (45 CFR Part 164) - Administrative, Physical, and Technical Safeguards for Electronic PHI - **ID**: us-hipaa-security-rule-45-cfr-164-ephi-safeguards - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The HIPAA Security Rule (45 CFR §§164.302-318) requires HIPAA-covered entities and their business associates to implement administrative, physical, and technical safeguards to protect the confidential... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-security-rule-45-cfr-164-ephi-safeguards.json #### Health Information Technology for Economic and Clinical Health (HITECH) Act, Title XIII of the American Recovery and Reinvestment Act of 2009 - **ID**: us-hitech-act-2009 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The HITECH Act strengthens HIPAA's privacy and security rules by introducing mandatory breach notification requirements for unsecured Protected Health Information (PHI) and establishing increased, tie... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hitech-act-2009.json #### 10 CFR Part 35 - NRC Medical Use of Byproduct Material - **ID**: us-nrc-10-cfr-35-medical-use-byproduct-material - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 10 CFR Part 35 governs the medical use of byproduct material (radioactive material) administered by the U.S. Nuclear Regulatory Commission and Agreement States. A person must hold a specific license b... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nrc-10-cfr-35-medical-use-byproduct-material.json #### 45 CFR Part 171 - ONC Information Blocking and Exceptions - **ID**: us-onc-45-cfr-171-information-blocking - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: 45 CFR Part 171 implements the information blocking provisions of the 21st Century Cures Act administered by the Office of the National Coordinator for Health Information Technology. An actor (a healt... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-onc-45-cfr-171-information-blocking.json #### US ONC Health IT Certification Program & Cures Act Final Rule (2026 Requirements) - **ID**: us-onc-health-it-certification-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Office of the National Coordinator for Health Information Technology (ONC) Certification Program requires health IT developers to meet updated criteria for interoperability, information blocking, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-onc-health-it-certification-2026.json #### ONC Information Blocking Final Rule 45 CFR Part 171 (2020) - Definition of Information Blocking, Eight Exceptions and Recognised Health IT Developer Obligations - **ID**: us-onc-information-blocking-rule-2020 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: This regulation defines information blocking as practices by healthcare providers, health IT developers of certified health IT, and health information exchanges/networks that are likely to interfere w... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-onc-information-blocking-rule-2020.json #### PDUFA Reauthorization Performance Goals and Procedures Fiscal Years 2023 Through 2027 - **ID**: us-pdufa-vii-prescription-drug-user-fee-goals - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: For fiscal years 2023-2027, the U.S. FDA commits to specific performance goals for reviewing new drug applications (NDAs) and biologics license applications (BLAs), requiring review and action on 90% ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pdufa-vii-prescription-drug-user-fee-goals.json #### US Physician Self-Referral Law / Stark Law (42 USC 1395nn): Referral Limits and Payment Denial - **ID**: us-physician-self-referral-stark-law - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Physician Self-Referral Law, known as the Stark Law (42 U.S.C. 1395nn), prohibits a physician from referring Medicare patients for designated health services to an entity with which the physician,... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-physician-self-referral-stark-law.json #### US Public Health Service Act (42 USC ch 6A): Federal Public Health Authority, Emergencies and Quarantine - **ID**: us-public-health-service-act - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The Public Health Service Act (42 U.S.C. ch. 6A) is the principal federal statute organizing the US public health system and conferring the core public-health powers of the federal government, adminis... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-public-health-service-act.json #### Virginia Consumer Data Protection Act (CDPA) Health Data Tiering & Telehealth Rules 2026 - **ID**: virginia-cdpa-health-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: Virginia CDPA 2026 amendments introduce sensitive data tier for health information with heightened consent, DPIA, and opt-out rights. Telehealth providers must comply with data minimization and cross-... - **Discovery URL**: https://bidda.com/api/v1/nodes/virginia-cdpa-health-2026.json #### WHO Essential Medicines List (EML) 2023 - 23rd Edition Model List and Selection Criteria - **ID**: who-essential-medicines-list-eml-2023 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The World Health Organization Model List of Essential Medicines (WHO EML), 23rd edition (2023), published by the WHO Expert Committee on Selection and Use of Essential Medicines in October 2023, ident... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-essential-medicines-list-eml-2023.json #### Ethics and Governance of Artificial Intelligence for Health - **ID**: who-ethics-ai-health-2021 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This World Health Organization guidance establishes six core principles for the ethical design, deployment, and governance of AI in the health sector, applicable to developers, regulators, and healthc... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-ethics-ai-health-2021.json #### WHO Ethics and Governance of Artificial Intelligence for Health 2021 - Compliance Obligations for Health AI Ethical Design, AI in Clinical Decision Support Governance, and WHO Principles for AI Safety in Healthcare Applications - **ID**: who-ethics-governance-ai-health-2021 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This node outlines compliance obligations for ethical AI design in health under WHO guidelines, focusing on transparency, accountability, and safety in clinical decision support systems. It aligns wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-ethics-governance-ai-health-2021.json #### WHO Framework Convention on Tobacco Control 2003 - FCTC - **ID**: who-fctc-2003-tobacco-control - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: The WHO Framework Convention on Tobacco Control (FCTC, 2003 - 183 Parties as of April 2026, the most widely ratified WHO treaty) establishes binding supply-side and demand-reduction obligations for al... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-fctc-2003-tobacco-control.json #### WHO Global Strategy on Digital Health 2020-2025 (2026 Update) - **ID**: who-global-digital-health-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The WHO Global Strategy provides a framework for countries to leverage digital health technologies responsibly, focusing on governance, data standards, interoperability, equity, and ethical use of AI ... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-global-digital-health-2026.json #### WHO Global Strategy on Digital Health 2020-2025 (2026 Extension) & Governance Framework - **ID**: who-global-digital-health-strategy-2026 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The WHO Global Strategy on Digital Health provides a framework for countries to develop and implement digital health technologies responsibly. It emphasises governance, data standards, interoperabilit... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-global-digital-health-strategy-2026.json #### WHO Global Strategy on Digital Health 2020-2025 - **ID**: who-global-strategy-digital-health-2020-2025 - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: This strategy establishes a global framework for national digital health transformation, requiring Member States to strengthen governance, ensure equitable access to digital health tools, and prioriti... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-global-strategy-digital-health-2020-2025.json #### WHO Good Manufacturing Practices (GMP) for Pharmaceutical Products - Main Principles (WHO Technical Report Series, 2022) - **ID**: who-gmp-pharmaceutical-2022 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes the core principles of Good Manufacturing Practices (GMP) for pharmaceutical products, requiring manufacturers to implement a comprehensive quality management system to ens... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-gmp-pharmaceutical-2022.json #### WHO Good Manufacturing Practices for Pharmaceutical Products: Personnel, Premises, Equipment, Production, QC and Self-Inspection - **ID**: who-gmp-trs-1003-annex-2-manufacturing - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This regulation establishes the minimum Good Manufacturing Practices (GMP) for pharmaceutical product manufacturing, ensuring products are consistently produced and controlled to the quality standards... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-gmp-trs-1003-annex-2-manufacturing.json #### WHO International Health Regulations (2005) - PHEIC Determination and Core Capacity Obligations - **ID**: who-ihr-2005-international-health-regulations-pheic - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The International Health Regulations (2005) are a legally binding instrument adopted under Article 21 of the WHO Constitution that govern the international response to public health risks with potenti... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-ihr-2005-international-health-regulations-pheic.json #### WHO International Health Regulations 2005 - PHEIC Declaration & Cross-Border Health Emergency Response - **ID**: who-international-health-regulations-2005-ihr - **Category**: Medical & Healthcare - **Version**: 1.0.1 - **BLUF**: The International Health Regulations (2005) (IHR 2005), adopted by the World Health Assembly under WHA58.3, constitute the primary binding international legal framework obligating all 196 States Parti... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-international-health-regulations-2005-ihr.json #### WHO Prequalification Programme for Medicines - Dossier Submission Requirements (CTD Format), GMP Inspection Criteria, Bioequivalence Studies and Prequalification List for UN Procurement Agencies - **ID**: who-prequalification-programme-medicines - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: The WHO Prequalification Programme (PQP) assesses medicines to ensure they meet global standards of quality, safety, and efficacy for procurement by UN agencies and other global health initiatives. Ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-prequalification-programme-medicines.json #### Medical Schemes Act 131 of 1998 - **ID**: za-medical-schemes-act-131-1998 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This South African law mandates that all medical schemes must be registered with the Council for Medical Schemes (CMS), provide open enrolment and apply community rating to prevent unfair discriminati... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-medical-schemes-act-131-1998.json #### National Health Act 61 of 2003 - **ID**: za-national-health-act-61-2003 - **Category**: Medical & Healthcare - **Version**: 1.0.0 - **BLUF**: This Act establishes a unified national health system for South Africa, defining the rights and duties of healthcare providers and users, and creating the Office of Health Standards Compliance (OHSC) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-national-health-act-61-2003.json ### Mining & Natural Resources (106 nodes) #### Arctic Council Guidelines for Responsible Resource Development in the Arctic - Environmental Best Practices, Precautionary Principles and Indigenous Rights - **ID**: arctic-council-guidelines-resource-extraction - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: This regulation requires Arctic States and project proponents to apply environmental best practices, the precautionary principle, and full consultation with Indigenous communities in resource extracti... - **Discovery URL**: https://bidda.com/api/v1/nodes/arctic-council-guidelines-resource-extraction.json #### AU EPBC Act 1999 - Environmental Impact Assessment and Federal Approval for Matters of National Environmental Significance - **ID**: au-environmental-protection-biodiversity-conservation-act-1999-project-approvals - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Australia's Environment Protection and Biodiversity Conservation Act 1999 (EPBC Act) requires referral and federal approval for any action likely to have a significant impact on Matters of National En... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-environmental-protection-biodiversity-conservation-act-1999-project-approvals.json #### Australia Offshore Petroleum and Greenhouse Gas Storage Act 2006 Section 29 - Exploration Licence Grant Criteria and Conditions for Offshore Petroleum - **ID**: au-offshore-petroleum-greenhouse-gas-storage-act-2006-section-29 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Offshore Petroleum and Greenhouse Gas Storage Act 2006 (OPGGSA) is the principal Commonwealth legislation governing petroleum exploration and production in Commonwealth offshore areas (beyond 3 na... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-offshore-petroleum-greenhouse-gas-storage-act-2006-section-29.json #### Australia Environment Protection and Biodiversity Conservation Act 1999 - DCCEEW - **ID**: australia-environmental-protection-biodiversity-conservation-act-1999 - **Category**: Mining & Natural Resources - **Version**: 2.0.0 - **BLUF**: The Environment Protection and Biodiversity Conservation Act 1999 (EPBC Act, Cth) is Australia's primary federal environmental law requiring referral and assessment of actions that have, or are likely... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-environmental-protection-biodiversity-conservation-act-1999.json #### Environment Protection and Biodiversity Conservation Act 1999 - Referral, Assessment and Approval of Actions that May Impact Matters of National Environmental Significance - **ID**: australia-epbc-act-1999-mining-biodiversity - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The EPBC Act 1999 requires any mining project proponent whose action is likely to have a significant impact on a Matter of National Environmental Significance (MNES) to refer that action to the Austra... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-epbc-act-1999-mining-biodiversity.json #### Offshore Petroleum and Greenhouse Gas Storage Amendment (Titles Administration and Other Measures) Act 2021 - **ID**: australia-security-legislation-amendment-2021 - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: This Act amends the Offshore Petroleum and Greenhouse Gas Storage Act 2006 to introduce requirements relating to change in control of registered titleholders, trailing liability for decommissioning, d... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-security-legislation-amendment-2021.json #### Australia - Western Australia Mineral Resources Act 1989 - Mining Tenement Framework - **ID**: australia-wa-mineral-resources-act-1989 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Western Australia's Mineral Resources Act 1989 (MRA) administered by the Department of Energy, Mines, Industry Regulation and Safety (DEMIRS) and the Mining Warden Courts governs the grant, transfer, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-wa-mineral-resources-act-1989.json #### Bolivia Ley de Mineria y Metalurgia No. 535 de 28 de Mayo de 2014 (AJAM, Lithium and Potassium Strategic Elements, Cooperative Mining, Indigenous Participation, Royalty and Patente Regime) - **ID**: bolivia-mining-metallurgy-law-535-2014-ajam - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Bolivia's Ley de Mineria y Metalurgia No. 535, enacted 28 May 2014 and published 2 June 2014, comprehensively regulates mining-metallurgical activities throughout Bolivian territory. Article 2 confirm... - **Discovery URL**: https://bidda.com/api/v1/nodes/bolivia-mining-metallurgy-law-535-2014-ajam.json #### Botswana Mines and Minerals Act Chapter 66:01 - Diamond and Mineral Mining Rights Framework - **ID**: botswana-mines-and-minerals-act-cap-66-01 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Botswana's Mines and Minerals Act Chapter 66:01 (as amended) vests all mineral rights in the state regardless of land ownership; establishes a licensing regime for prospecting licences, mining licence... - **Discovery URL**: https://bidda.com/api/v1/nodes/botswana-mines-and-minerals-act-cap-66-01.json #### CA Impact Assessment Act 2019 - Federal Environmental and Impact Assessment for Designated Projects in Canada - **ID**: ca-impact-assessment-act-2019-federal-environmental-review-major-projects - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Canada's Impact Assessment Act 2019 (IAA) requires federal impact assessment for Designated Projects (major mines, pipelines, nuclear facilities, interprovincial projects) through the Impact Assessmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-impact-assessment-act-2019-federal-environmental-review-major-projects.json #### Canada Impact Assessment Act 2019 Section 22 - Mandatory Factors in Federal Impact Assessment of Designated Mining Projects - **ID**: ca-impact-assessment-act-2019-section-22-mining-factors - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Section 22 of Canada's Impact Assessment Act 2019 (IAA) specifies the mandatory and discretionary factors that the Impact Assessment Agency of Canada (IAAC) must consider when conducting a federal imp... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-impact-assessment-act-2019-section-22-mining-factors.json #### Canada ESTMA - Extractive Sector Transparency Measures Act Payments to Governments Reporting - **ID**: canada-estma-extractive-sector-transparency-measures-act - **Category**: Mining & Natural Resources - **Version**: 2.0 - **BLUF**: Canada's ESTMA requires extractive companies (mining, oil and gas) listed on Canadian stock exchange or operating in Canada to publicly disclose payments to domestic and foreign governments above CAD ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-estma-extractive-sector-transparency-measures-act.json #### Canada Impact Assessment Act 2019 (IAA) - Federal Major Project Review and Environmental Assessment - **ID**: canada-impact-assessment-act-2019-major-projects - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Canada's Impact Assessment Act (IAA, S.C. 2019, c. 28, s. 1, as amended by the Online Streaming Act 2023 and following the Supreme Court of Canada 2023 reference opinion requiring amendments to provin... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-impact-assessment-act-2019-major-projects.json #### Impact Assessment Act - **ID**: canada-impact-assessment-act-2019-mining - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: The Impact Assessment Act requires federal impact assessments for designated mining projects carried out on federal lands or supported by federal authorities, with a focus on preventing or mitigating ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-impact-assessment-act-2019-mining.json #### Metal and Diamond Mining Effluent Regulations - **ID**: canada-metal-mining-effluent-regulations - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: These regulations establish effluent quality standards, monitoring requirements, and environmental effects monitoring for metal and diamond mining operations in Canada, as required under the Fisheries... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-metal-mining-effluent-regulations.json #### Canadian National Instrument 43-101 - Standards of Disclosure for Mineral Projects - **ID**: canada-national-instrument-43-101 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: NI 43-101 mandates that all public disclosures of scientific and technical information related to mineral projects in Canada must be prepared or supervised by a Qualified Person (QP) as defined under ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-national-instrument-43-101.json #### Código de Minería (Ley N° 18.248), de 1983 - **ID**: chile-mining-code-1983 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: This regulation establishes the legal framework for the acquisition, maintenance, and forfeiture of mining concessions in Chile, including exploration and exploitation rights, environmental obligation... - **Discovery URL**: https://bidda.com/api/v1/nodes/chile-mining-code-1983.json #### Reglamento sobre Orden, Higiene y Seguridad Minera, Decreto Supremo N° 132, de 2004, del Ministerio de Minería - **ID**: chile-mining-safety-regulations-ds-132-2004 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: This regulation establishes mandatory safety, health, and operational protocols for all mining operations in Chile, including explosives handling, ground control, ventilation, and emergency response. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/chile-mining-safety-regulations-ds-132-2004.json #### Colombia Mining Code - Law 685 of 2001 - **ID**: colombia-mining-code-law-685-2001 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Colombia's Mining Code (Law 685/2001, amended by Laws 1382/2010 and 1753/2015) establishes the legal framework for exploration, exploitation, and transformation of mineral resources. It requires a sin... - **Discovery URL**: https://bidda.com/api/v1/nodes/colombia-mining-code-law-685-2001.json #### Enterprise Risk Management-Integrating with Strategy and Performance: Application to Mining Operations for Commodity Price, Geopolitical, and Environmental Risks - **ID**: coso-erm-framework-mining-risk - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: This framework requires mining enterprises to integrate enterprise risk management (ERM) into strategic planning and performance monitoring, specifically addressing commodity price volatility, geopoli... - **Discovery URL**: https://bidda.com/api/v1/nodes/coso-erm-framework-mining-risk.json #### CRIRSCO International Reporting Template - Mineral Resource and Reserve Reporting - **ID**: crirsco-international-reporting-template-2019 - **Category**: Mining & Natural Resources - **Version**: 2019 - **BLUF**: The CRIRSCO International Reporting Template (2019) is the harmonised global standard for public reporting of Mineral Exploration Results, Mineral Resources, and Mineral Reserves, maintained by the Co... - **Discovery URL**: https://bidda.com/api/v1/nodes/crirsco-international-reporting-template-2019.json #### Law No. 18-001 of 9 March 2018 on the Mining Code of the Democratic Republic of the Congo - **ID**: drc-mining-code-2018-democratic-republic-congo - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The DRC Mining Code 2018 establishes the legal framework for mineral exploration, exploitation, and artisanal mining in the Democratic Republic of the Congo, requiring all mining operators to obtain p... - **Discovery URL**: https://bidda.com/api/v1/nodes/drc-mining-code-2018-democratic-republic-congo.json #### Law No. 18-001 of 9 March 2018 on the Mining Code of the Democratic Republic of the Congo - **ID**: drc-mining-code-law-18-001-2018 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: This law establishes royalty rates, state participation in mining projects, special regimes for strategic minerals, and environmental obligations for all mining operations in the Democratic Republic o... - **Discovery URL**: https://bidda.com/api/v1/nodes/drc-mining-code-law-18-001-2018.json #### Extractive Industries Transparency Initiative (EITI) Standard 2023 - **ID**: eiti-standard-2023 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The EITI Standard 2023 requires implementing countries and extractive companies to disclose payments, production data, and beneficial ownership information to promote transparency and accountability i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eiti-standard-2023.json #### EITI Standard 2023 - Extractive Industries Transparency Initiative Disclosures, Validation and Subnational Reporting - **ID**: eiti-standard-2023-extractive-industries-transparency - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Extractive Industries Transparency Initiative (EITI) Standard 2023 is the global voluntary standard for transparent and accountable management of oil, gas, and mineral resources. Adopted by the EI... - **Discovery URL**: https://bidda.com/api/v1/nodes/eiti-standard-2023-extractive-industries-transparency.json #### EU Batteries Regulation 2023/1542 Article 52 - Supply Chain Due Diligence for Cobalt, Nickel, Lithium, and Natural Graphite in Industrial, EV, and LMT Batteries - **ID**: eu-batteries-regulation-2023-1542-article-52-supply-chain-due-diligence - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Article 52 of the EU Batteries Regulation 2023/1542 requires economic operators placing industrial batteries, electric vehicle batteries, and light means of transport batteries on the EU market to imp... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-batteries-regulation-2023-1542-article-52-supply-chain-due-diligence.json #### Regulation (EU) 2017/821 of the European Parliament and of the Council of 23 May 2017 laying down supply chain due diligence obligations for Union importers of tin, tantalum and tungsten, their ores, and gold originating from conflict-affected and high-risk areas - **ID**: eu-conflict-minerals-regulation-2017-821 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: This regulation requires EU-based importers of tin, tantalum, tungsten, and gold (3TG) to conduct mandatory due diligence on their supply chains to ensure minerals do not finance armed conflict or con... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-conflict-minerals-regulation-2017-821.json #### EU Critical Raw Materials Act 2024/1252 - Strategic Project Designation, 2030 Capacity Benchmarks and Supply Chain Diversification - **ID**: eu-critical-raw-materials-act-2024-1252-strategic-projects - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1252 of the European Parliament and of the Council of 11 April 2024 establishing a framework for ensuring a secure and sustainable supply of critical raw materials (Critical Raw M... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-critical-raw-materials-act-2024-1252-strategic-projects.json #### Regulation (EU) 2024/1252 of the European Parliament and of the Council of 11 April 2024 establishing a framework for ensuring a secure and sustainable supply of critical raw materials and amending Regulations (EU) No 168/2013, (EU) 2018/858, (EU) 2018/1724 and (EU) 2019/1020 (Text with EEA relevance) - **ID**: eu-critical-raw-materials-act-2024-crma - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: This regulation establishes benchmarks for domestic extraction, processing, and recycling of critical raw materials within the EU, mandates diversification of supply chains, and designates strategic r... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-critical-raw-materials-act-2024-crma.json #### EU Mining Waste Directive 2006/21/EC - Extractive Industry Waste Facility Management and Financial Security - **ID**: eu-mining-waste-directive-2006-21 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Directive 2006/21/EC of the European Parliament and of the Council on the management of waste from extractive industries establishes requirements for waste facilities at mining, quarrying, and mineral... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mining-waste-directive-2006-21.json #### Directive 2006/21/EC of the European Parliament and of the Council on the management of waste from extractive industries and amending Directive 2004/35/EC - **ID**: eu-mining-waste-directive-2006-21-ec - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: The Directive requires that waste from land‑based extractive industries be managed to prevent adverse effects on the environment and human health, mandating waste characterisation, permitting, financi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mining-waste-directive-2006-21-ec.json #### Commission Delegated Regulation (EU) 2021/2139 of 4 June 2021 supplementing Regulation (EU) 2020/852 of the European Parliament and of the Council by establishing the technical screening criteria for the environmental sustainability of economic activities in the mining and extractive sector - **ID**: eu-taxonomy-mining-activities-sustainable - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: This regulation sets out the technical screening criteria, including do no significant harm (DNSH) conditions and minimum social safeguards, for extractive activities related to critical raw materials... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-mining-activities-sustainable.json #### Commission Delegated Regulation (EU) 2021/2139 of 4 June 2021 supplementing Regulation (EU) 2020/852 of the European Parliament and of the Council by establishing the technical screening criteria for the environmental sustainability of economic activities in the mining and extractive sector - **ID**: eu-taxonomy-mining-sustainable-activities - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: This regulation establishes technical screening criteria under the EU Taxonomy for determining when mining and extractive activities substantially contribute to environmental sustainability without ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-mining-sustainable-activities.json #### Extractive Industries Transparency Initiative (EITI) Standard 2023 - **ID**: extractive-industries-transparency-eiti-standard - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: The EITI Standard 2023 requires implementing countries and extractive companies to disclose revenues, production, contracts, beneficial ownership, and revenue distribution to promote transparency and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/extractive-industries-transparency-eiti-standard.json #### Ghana Minerals and Mining Act 703 of 2006 - **ID**: ghana-minerals-mining-act-703-2006 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Ghana's Minerals and Mining Act 703 (2006), amended by Act 900 (2015), vests all minerals in the President in trust for the people of Ghana, establishes the Minerals Commission as regulator, and gover... - **Discovery URL**: https://bidda.com/api/v1/nodes/ghana-minerals-mining-act-703-2006.json #### Global Industry Standard on Tailings Management (GISTM) 2020 - Consequence Classification, Design, Operation and Closure Requirements for Tailings Facilities - **ID**: gistm-global-tailings-management-standard-2020 - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: The Global Industry Standard on Tailings Management requires Operators to implement zero tolerance for human fatalities and strive for zero harm to people and the environment across all lifecycle phas... - **Discovery URL**: https://bidda.com/api/v1/nodes/gistm-global-tailings-management-standard-2020.json #### GRI 14 Mining Sector Standard 2022 - Sector-Specific Material Topics, Disclosures and Reporting Requirements for Mining and Quarrying Companies - **ID**: gri-14-mining-sector-standard-2022 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: This standard requires mining and quarrying companies to report on sector-specific impacts including biodiversity, water, tailings management, and community relations, with mandatory disclosures under... - **Discovery URL**: https://bidda.com/api/v1/nodes/gri-14-mining-sector-standard-2022.json #### IAEA Safety Guide SSG-52 - Radiation Protection and Safety in Uranium Mining and Processing - **ID**: iaea-ssg-52-radiation-protection-uranium-mining - **Category**: Mining & Natural Resources - **Version**: SSG-52 (2019) - **BLUF**: IAEA Safety Guide No. SSG-52 (2019) provides the international technical standard for radiation protection and safety in uranium mining and processing operations, covering radon and radon progeny expo... - **Discovery URL**: https://bidda.com/api/v1/nodes/iaea-ssg-52-radiation-protection-uranium-mining.json #### International Council on Mining and Metals (ICMM) Mining Principles 2020 - Position Statements on Environment, People and Ethics for Member Companies - **ID**: icmm-mining-principles-2020 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The ICMM Mining Principles 2020 require member mining companies to implement 38 performance expectations across environment, social responsibility, and ethical governance, with mandatory adherence to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/icmm-mining-principles-2020.json #### IFC Performance Standards on Environmental and Social Sustainability 2012 - Standards PS1-PS8 Applied to Mining Projects: Labour, Community, Biodiversity and Cultural Heritage - **ID**: ifc-performance-standards-2012-mining - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The IFC Performance Standards (PS1-PS8) apply to all mining projects financed by the International Finance Corporation (IFC), requiring robust environmental and social risk management, including labor... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifc-performance-standards-2012-mining.json #### IFC Performance Standards on Environmental and Social Sustainability - **ID**: ifc-performance-standards-mining-ps1-ps8 - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: The IFC Performance Standards on Environmental and Social Sustainability (PS1-PS8) apply to all IFC investment-and-advisory clients including extractive-sector projects; mining clients must demonstrat... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifc-performance-standards-mining-ps1-ps8.json #### ILO Convention C176 Safety and Health in Mines 1995 - **ID**: ilo-c176-safety-health-mines-convention-1995 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 176 on Safety and Health in Mines, adopted by the International Labour Conference in June 1995 and in force since 5 June 1998, requires ratifying member states to formulate, impleme... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c176-safety-health-mines-convention-1995.json #### Safety and Health in Mines Convention, 1995 (ILO Convention C176) - **ID**: ilo-safety-health-mines-convention-c176-1995 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: ILO Convention C176 obliges mine employers to (i) ensure safe and healthy working conditions (Article 3), (ii) conduct systematic risk assessments (Article 4), and (iii) implement specific controls fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-safety-health-mines-convention-c176-1995.json #### Indonesia Mineral and Coal Mining Law No. 3/2020 - **ID**: indonesia-mineral-coal-mining-law-3-2020 - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: The law mandates that mining operators obtain the appropriate IUP classification, meet domestic processing (down‑stream) requirements, fulfill divestment obligations, adhere to production quotas and r... - **Discovery URL**: https://bidda.com/api/v1/nodes/indonesia-mineral-coal-mining-law-3-2020.json #### OECD Due Diligence Guidance for Responsible Supply Chains of Minerals 2016 - Five-Step Framework for Conflict-Free Mineral Sourcing from High-Risk Areas - **ID**: intl-oecd-due-diligence-guidance-minerals-2016-five-step-framework - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The OECD Due Diligence Guidance for Responsible Supply Chains of Minerals from Conflict-Affected and High-Risk Areas (3rd edition, 2016) provides a non-binding but internationally recognised five-step... - **Discovery URL**: https://bidda.com/api/v1/nodes/intl-oecd-due-diligence-guidance-minerals-2016-five-step-framework.json #### International Seabed Authority (ISA) Draft Exploitation Regulations 2024 - Deep-Sea Mining Licence Framework, Environmental Baseline and Area Selection - **ID**: isa-mining-code-exploitation-regulations-2024 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: This regulation establishes the framework for contractors to prepare five-year periodic review reports, conduct environmental impact assessments, and report annual activities and expenditures for expl... - **Discovery URL**: https://bidda.com/api/v1/nodes/isa-mining-code-exploitation-regulations-2024.json #### ISO 14001:2015 Environmental Management Systems - Requirements with guidance for use - **ID**: iso-14001-2015-environmental-mining-operations - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: ISO 14001:2015 requires organisations to establish, implement, maintain, and continually improve an environmental management system covering identification of environmental aspects (Clause 6.1.2), leg... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14001-2015-environmental-mining-operations.json #### ISO 14046:2014 Environmental Management - Water Footprint - Principles, Requirements and Guidelines - **ID**: iso-14046-2014-water-footprint-mining - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: This standard specifies principles, requirements and guidelines for conducting and reporting a water footprint assessment of products, processes, and organizations within the mining sector using life ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14046-2014-water-footprint-mining.json #### ISO 31000:2018 Risk management - Guidelines - **ID**: iso-31000-risk-management-mining-applications - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: ISO 31000:2018 provides principles and guidelines for establishing a risk management framework and process within organizations, including mining operations, to systematically identify, analyze, evalu... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-31000-risk-management-mining-applications.json #### JORC Code 2012 - Australasian Joint Ore Reserves Committee Mineral Reporting Standard - **ID**: jorc-code-2012-australasian-mineral-resources-reporting - **Category**: Mining & Natural Resources - **Version**: 2012 Edition - **BLUF**: The JORC Code (2012 Edition) is the mandatory Australasian standard for public reporting of Exploration Results, Mineral Resources, and Ore Reserves; it mandates a three-category resource classificati... - **Discovery URL**: https://bidda.com/api/v1/nodes/jorc-code-2012-australasian-mineral-resources-reporting.json #### Kimberley Process Certification Scheme (KPCS) 2003 - Rough Diamond Trade Controls, Warranties and Participating Country Obligations to Prevent Conflict Diamonds - **ID**: kimberley-process-certification-scheme-2003 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Kimberley Process Certification Scheme (KPCS) requires all participating countries to implement import/export controls on rough diamonds using tamper-resistant certificates to prevent conflict dia... - **Discovery URL**: https://bidda.com/api/v1/nodes/kimberley-process-certification-scheme-2003.json #### London Metal Exchange (LME) Responsible Sourcing Requirements 2019 - LME-Approved Brands, Cobalt Guidance, Passports and Supply Chain Due Diligence Standards - **ID**: lme-responsible-sourcing-policy-2019 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The LME Responsible Sourcing Policy 2019 mandates that all producers of nickel, cobalt, and other specified metals listed on the LME implement supply chain due diligence in accordance with the OECD Du... - **Discovery URL**: https://bidda.com/api/v1/nodes/lme-responsible-sourcing-policy-2019.json #### Mexico Ley Minera 1992 - Federal Mining Law - **ID**: mexico-ley-minera-1992-mining-law - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Mexico's Ley Minera (Federal Mining Law, last reformed 2014) and its Reglamento govern exploration and exploitation of mineral resources in Mexican territory. Concessions are granted by the Secretaria... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-ley-minera-1992-mining-law.json #### Mongolia Minerals Law 2006 - Exploration and Mining Licensing with State Participation Rights - **ID**: mongolia-minerals-law-2006 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Mongolia's Minerals Law (2006, amended 2023) establishes exploration and mining licences administered by MRPAM, requires state participation of 34% (non-state-funded) or 50% (state-funded) in strategi... - **Discovery URL**: https://bidda.com/api/v1/nodes/mongolia-minerals-law-2006.json #### Mozambique Mining Law 20/2014 - Concessions, Environmental Compliance, and Royalty Framework - **ID**: mozambique-mining-law-20-2014 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Mozambique Law 20/2014 replaces Law 14/2002, establishing five mining title categories (Mining Concession, Simple Mining Licence, Artisanal Licence, Reconnaissance, Mining Pass), mandatory Environment... - **Discovery URL**: https://bidda.com/api/v1/nodes/mozambique-mining-law-20-2014.json #### Namibia Minerals (Prospecting and Mining) Act 33 of 1992 - Licensing and Royalty Framework - **ID**: namibia-minerals-prospecting-mining-act-33-1992 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Namibia's Minerals (Prospecting and Mining) Act 33 of 1992, as amended by Act 8 of 2015, governs five licence categories (EPL, Mining Licence, Retention Licence, Claim, Reconnaissance), mandates Envir... - **Discovery URL**: https://bidda.com/api/v1/nodes/namibia-minerals-prospecting-mining-act-33-1992.json #### Nigeria Solid Minerals Development Act 2007 - Mining Cadastre Licensing and Federal Minerals Royalty Compliance - **ID**: nigeria-solid-minerals-mining-act-2007-mining-cadastre - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Nigeria's Federal Minerals and Mining Act Cap F26 LFN 2004 as replaced by the Solid Minerals Development Act 2007 (SMDA 2007) vests all mineral resources in the Federal Government and establishes the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nigeria-solid-minerals-mining-act-2007-mining-cadastre.json #### Norway Petroleum Activities Act 1996 Section 4-1 - Petroleum Exploration and Production Licences: Conditions, HSE Obligations, and Resource Management Requirements - **ID**: no-petroleum-activities-act-1996-section-4-1-exploration-production - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Section 4-1 of the Norwegian Petroleum Activities Act 1996 (PAA) governs the grant of production licences for exploration and production of petroleum on the Norwegian continental shelf. A production l... - **Discovery URL**: https://bidda.com/api/v1/nodes/no-petroleum-activities-act-1996-section-4-1-exploration-production.json #### Norway Mineral Resources Act 2009 (Mineralloven) - Mining Rights, State Ownership, and Saami Rights Framework - **ID**: norway-mineral-resources-act-2009-mineralloven - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Norwegian Mineral Resources Act (Mineralloven) of 19 June 2009 No. 101 governs exploration and extraction of minerals on mainland Norway, establishing a two-category ownership system (state minera... - **Discovery URL**: https://bidda.com/api/v1/nodes/norway-mineral-resources-act-2009-mineralloven.json #### New Zealand Resource Management Act 1991 - Sustainable Management, Resource Consents, and RMA Reform - **ID**: nz-resource-management-act-1991 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Resource Management Act 1991 (New Zealand) (RMA) is the principal legislation governing the use of land, water, air, and the coastal marine area in New Zealand. Section 5 establishes the purpose o... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-resource-management-act-1991.json #### OECD Due Diligence Guidance for Responsible Mineral Supply Chains from Conflict-Affected and High-Risk Areas (3rd Edition 2016) - **ID**: oecd-due-diligence-minerals-supply-chains-2016 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: This guidance requires mineral supply chain actors - including smelters, refiners, traders, and downstream companies - to implement a risk-based due diligence framework to identify, assess, mitigate, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-due-diligence-minerals-supply-chains-2016.json #### PDAC e3 Plus - Responsible Exploration Framework: Community Engagement, Indigenous Peoples Rights, Environment and Health/Safety Best Practices for Mineral Exploration Companies - **ID**: pdac-e3-plus-exploration-best-practices - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The PDAC e3 Plus framework requires mineral exploration companies to develop and implement documented community engagement plans, Indigenous Peoples consultation processes, environmental impact assess... - **Discovery URL**: https://bidda.com/api/v1/nodes/pdac-e3-plus-exploration-best-practices.json #### Reglamento de Protección Ambiental para Actividades de Minería y Beneficio Minero, Decreto Supremo N° 014-92-EM - **ID**: peru-environmental-protection-mining-law - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: This regulation requires all mining operators in Peru to submit an Environmental Impact Study (EIA) or Environmental Management Programme (PMA) depending on project scale, establish financial assuranc... - **Discovery URL**: https://bidda.com/api/v1/nodes/peru-environmental-protection-mining-law.json #### Supreme Decree No. 014-92-EM: General Mining Law of Peru - **ID**: peru-general-mining-law-ds-014-92-em - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: This regulation establishes the legal framework for mineral exploration, exploitation, and environmental management in Peru, requiring mining concession holders to submit Environmental Management Plan... - **Discovery URL**: https://bidda.com/api/v1/nodes/peru-general-mining-law-ds-014-92-em.json #### Responsible Jewellery Council Code of Practices (COP) 2019 - Responsible Business Practices for Gold, Silver, PGMs and Gemstones Supply Chain Members - **ID**: responsible-jewellery-council-standard-2019 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: This standard requires jewellery and watch supply chain companies to implement responsible business practices across human rights, labour rights, health and safety, and product integrity. Compliance i... - **Discovery URL**: https://bidda.com/api/v1/nodes/responsible-jewellery-council-standard-2019.json #### SAMREC Code 2016 - South African Code for the Reporting of Exploration Results, Mineral Resources and Mineral Reserves - **ID**: samrec-code-south-africa-mineral-reporting - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: Clause 3 of the SAMREC Code defines a Public Report and requires that any public disclosure of Exploration Results, Mineral Resources or Mineral Reserves be compiled by a Competent Person accredited u... - **Discovery URL**: https://bidda.com/api/v1/nodes/samrec-code-south-africa-mineral-reporting.json #### SEC Rule 13p-1 - Conflict Minerals Disclosure (Dodd-Frank Act Section 1502) - **ID**: sec-rule-13p-1-conflict-minerals-dodd-frank-1502 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: SEC Rule 13p-1, implementing Section 1502 of the Dodd-Frank Wall Street Reform and Consumer Protection Act, requires SEC reporting companies that manufacture or contract to manufacture products for wh... - **Discovery URL**: https://bidda.com/api/v1/nodes/sec-rule-13p-1-conflict-minerals-dodd-frank-1502.json #### Mine Health and Safety Act 29 of 1996 - **ID**: south-africa-mhsa-mine-health-safety-act - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Mine Health and Safety Act 29 of 1996 establishes mandatory health and safety obligations for all mining operations in South Africa, requiring mine employers to conduct risk assessments, appoint H... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-mhsa-mine-health-safety-act.json #### Mineral and Petroleum Resources Development Act 28 of 2002 - **ID**: south-africa-mprda-2002 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Mineral and Petroleum Resources Development Act 28 of 2002 establishes state custodianship over all mineral and petroleum resources in South Africa, mandates equitable access through prospecting a... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-mprda-2002.json #### South Africa MPRDA 2002 - Mineral Rights, Mining Permits & Social and Labour Plan Obligations - **ID**: south-africa-mprda-2002-mineral-petroleum-resources-development-act - **Category**: Mining & Natural Resources - **Version**: 2.0 - **BLUF**: South Africa's Mineral and Petroleum Resources Development Act 28 of 2002 vests all mineral rights in the South African state - requiring mining rights, prospecting rights, and social and labour plans... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-mprda-2002-mineral-petroleum-resources-development-act.json #### Tanzania Mining Act No. 14 of 2010 - Mineral Licensing and Royalty Framework - **ID**: tanzania-mining-act-no-14-2010 - **Category**: Mining & Natural Resources - **Version**: 1.1.0 - **BLUF**: Tanzania's Mining Act 2010 as amended by the Written Laws (Miscellaneous Amendments) Act 2019 establishes a mineral licensing regime administered by the Mining Commission, requiring local content (min... - **Discovery URL**: https://bidda.com/api/v1/nodes/tanzania-mining-act-no-14-2010.json #### UK Coal Industry Act 1994: The Coal Authority, Licensing of Coal-Mining Operations and Subsidence - **ID**: uk-coal-industry-act-1994 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Coal Industry Act 1994 restructured the British coal industry, established the Coal Authority and created the licensing regime for coal-mining operations, administered by the Coal Authority. Secti... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-coal-industry-act-1994.json #### UK Mines and Quarries Act 1954: Management Duties, Mine Safety and Offences - **ID**: uk-mines-and-quarries-act-1954 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Mines and Quarries Act 1954 is a foundational UK statute on the management and safety of mines and quarries, much of it now operating alongside and partly superseded by regulations made under the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mines-and-quarries-act-1954.json #### UN Framework Classification for Resources (UNFC) 2019 - Bridging Mineral, Energy and Renewable Resource Classification: E, F, G Axes, Harmonisation with JORC/SPE-PRMS and Project Status Assessment - **ID**: un-framework-classification-resources-unfc - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: The UN Framework Classification for Resources (UNFC 2019) requires project owners to assign a classification code based on three axes - E (environmental-socio-economic viability, E1-E3), F (technical ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-framework-classification-resources-unfc.json #### UN Global Compact - Supply Chain Sustainability in Mining: Ten Principles, Due Diligence on Human Rights, Labour, Environment and Anti-Corruption in Mineral Supply Chains and Supplier Engagement - **ID**: un-global-compact-supply-chain-minerals - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: This framework requires companies in the mining and mineral supply chain sectors to implement due diligence processes aligned with the UN Guiding Principles on Business and Human Rights (UNGPs), OECD ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-global-compact-supply-chain-minerals.json #### UN Guiding Principles on Business and Human Rights - Mining Sector Application: Free Prior Informed Consent, Artisanal Mining and Operational Grievance Mechanisms - **ID**: un-guiding-principles-business-hr-mining - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: This regulation requires mining companies to respect human rights through the implementation of Free, Prior and Informed Consent (FPIC) processes with Indigenous Peoples, integrate artisanal and small... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-guiding-principles-business-hr-mining.json #### UN Minamata Convention Article 7 Artisanal and Small-Scale Gold Mining Mercury Reduction - **ID**: un-minamata-convention-article-7-artisanal-small-scale-gold-mining - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Minamata Convention Article 7 requires Parties where artisanal and small-scale gold mining (ASGM) is more than insignificant to develop and implement a national action plan to reduce and, where feasib... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-minamata-convention-article-7-artisanal-small-scale-gold-mining.json #### UN SDSN Mining and SDG Alignment Framework - Sustainable Development Goal Integration for Mining Companies: SDG 8 Decent Work, SDG 12 Responsible Consumption, SDG 13 Climate Action and SDG 17 Partnerships - **ID**: un-sdsn-mining-sdg-alignment-framework - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: This framework provides guidance for mining companies to align operations with SDG 8, SDG 12, SDG 13, and SDG 17 through evidence-based policy, education, and global cooperation. It applies to mining ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-sdsn-mining-sdg-alignment-framework.json #### United Nations Convention on the Law of the Sea, Part XI - The Area: International Seabed Mining Regime - **ID**: unclos-part-xi-deep-seabed-mining-1982 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Establishes the international legal framework for deep seabed mining in areas beyond national jurisdiction under the principle that the seabed is the common heritage of mankind. Applies to all states ... - **Discovery URL**: https://bidda.com/api/v1/nodes/unclos-part-xi-deep-seabed-mining-1982.json #### United Nations Declaration on the Rights of Indigenous Peoples (UNDRIP) 2007 - Free, Prior and Informed Consent (FPIC) Obligations Applicable to Mining on Indigenous Lands - **ID**: undrip-free-prior-informed-consent-mining - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: UNDRIP requires states and corporations to obtain the free, prior and informed consent (FPIC) of Indigenous peoples before approving or commencing any mining project affecting their lands or territori... - **Discovery URL**: https://bidda.com/api/v1/nodes/undrip-free-prior-informed-consent-mining.json #### US MSHA 30 CFR Part 75 - Mandatory Safety Standards for Underground Coal Mines: Ventilation, Roof Support, Electrical Safety, and Emergency Preparedness - **ID**: us-30-cfr-75-mandatory-safety-underground-coal-mines - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: 30 CFR Part 75 establishes the Mine Safety and Health Administration's (MSHA) mandatory safety standards for underground coal mines, covering methane and dust control (Subpart D), roof support (Subpar... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-30-cfr-75-mandatory-safety-underground-coal-mines.json #### 30 CFR Part 50 - MSHA Notification, Investigation, Reports and Records of Accidents, Injuries, Illnesses, Employment, and Coal Production in Mines - **ID**: us-30-cfr-part-50-msha-accident-injury-illness-notification-reporting - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Mine operators must immediately contact MSHA - at once and without delay, within 15 minutes - at the toll-free number 1-800-746-1553 once the operator knows or should know that an accident as defined ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-30-cfr-part-50-msha-accident-injury-illness-notification-reporting.json #### US 30 CFR Part 56: Safety and Health Standards Surface Metal and Nonmetal Mines - **ID**: us-30-cfr-part-56-msha-surface-mines-safety - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: US 30 CFR Part 56 establishes safety and health standards for surface metal and nonmetal mines under the jurisdiction of the Mine Safety and Health Administration (MSHA). Subparts cover general safety... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-30-cfr-part-56-msha-surface-mines-safety.json #### 30 USC § 181 - Mineral Leasing Act of 1920 (Lands Subject to Disposition) - **ID**: us-30-usc-181-mineral-leasing-act-1920 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: 30 USC § 181 (Mineral Leasing Act of 1920, Pub. L. 66-146, 41 Stat. 437; substantially amended over time) establishes the federal leasing framework for specified mineral deposits removing them from op... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-30-usc-181-mineral-leasing-act-1920.json #### 30 USC § 22 - General Mining Law of 1872 (Lands Open to Purchase by Citizens) - **ID**: us-30-usc-22-general-mining-law-1872 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: 30 USC § 22 (originally enacted May 10, 1872 as Section 1 of the Mining Act, codified at Revised Statutes § 2319, with subsequent amendments) is the foundational provision of the General Mining Law of... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-30-usc-22-general-mining-law-1872.json #### US Deep Seabed Hard Mineral Resources Act of 1980 (30 U.S.C. Chapter 26): Licensing of Deep Seabed Mining - **ID**: us-deep-seabed-hard-mineral-resources-act - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Deep Seabed Hard Mineral Resources Act of 1980, codified at 30 U.S.C. Chapter 26 (sections 1401 through 1473), establishes an interim federal regime for the licensing of exploration and the permit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-deep-seabed-hard-mineral-resources-act.json #### Dodd-Frank Wall Street Reform and Consumer Protection Act, Section 1502 - Conflict Minerals Disclosure and Due Diligence Requirements for U.S. Public Companies - **ID**: us-dodd-frank-1502-conflict-minerals - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: Requires U.S. public companies to conduct supply chain due diligence and file an annual Conflict Minerals Report (Form SD) if they manufacture or contract to manufacture products containing tin, tanta... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dodd-frank-1502-conflict-minerals.json #### US Federal Mine Safety and Health Act (30 USC ch 22): Mandatory Standards, Inspections and Penalties - **ID**: us-federal-mine-safety-and-health-act - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Federal Mine Safety and Health Act of 1977 (the Mine Act, 30 U.S.C. ch. 22) governs the safety and health of workers in coal and other mines, administered by the Mine Safety and Health Administrat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-mine-safety-and-health-act.json #### Federal Mine Safety and Health Act 1977 - MSHA Compliance Framework - **ID**: us-federal-mine-safety-health-act-1977-msha - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Federal Mine Safety and Health Act of 1977 (Mine Act) establishes mandatory health and safety standards for all US mines, requiring the Mine Safety and Health Administration (MSHA) to conduct at l... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-mine-safety-health-act-1977-msha.json #### US Federal Oil and Gas Royalty Management Act of 1982 (30 U.S.C. Chapter 29): Royalty Accounting, Inspections and Civil Penalties - **ID**: us-federal-oil-gas-royalty-management-act - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Federal Oil and Gas Royalty Management Act of 1982, codified at 30 U.S.C. Chapter 29 (sections 1701 through 1759) and amended by the Federal Oil and Gas Royalty Simplification and Fairness Act of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-oil-gas-royalty-management-act.json #### US General Mining Law of 1872 (30 USC ch 2): Locatable Minerals, Mining Claims and Patents - **ID**: us-general-mining-law-1872 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The General Mining Law of 1872 (30 U.S.C. ch. 2) governs the location and patenting of claims to locatable hardrock minerals on federal public-domain lands, administered by the Bureau of Land Manageme... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-general-mining-law-1872.json #### US Mineral Leasing Act (30 USC ch 3A): Leasing of Federal Coal, Oil, Gas and Mineral Lands - **ID**: us-mineral-leasing-act - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Mineral Leasing Act (30 U.S.C. ch. 3A) governs the leasing of public domain lands for the development of coal, oil, gas, phosphate, sodium, potassium, sulphur and other leasable minerals, administ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-mineral-leasing-act.json #### US Mineral Leasing Act of 1920 (30 USC ch 3A): Leasing of Coal, Oil, Gas and Other Minerals on Federal Lands - **ID**: us-mineral-leasing-act-1920 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Mineral Leasing Act of 1920 (30 U.S.C. ch. 3A) is the federal statute governing the leasing of coal, phosphate, sodium, potassium, oil, gas, oil shale and associated minerals on public domain land... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-mineral-leasing-act-1920.json #### US Mineral Leasing Act for Acquired Lands of 1947 (30 U.S.C. Chapter 7): Leasing of Mineral Deposits in Acquired Federal Lands - **ID**: us-mineral-leasing-act-acquired-lands-1947 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Mineral Leasing Act for Acquired Lands of 1947, codified at 30 U.S.C. Chapter 7 (sections 351 through 360), extends the federal mineral leasing system to lands acquired by the United States, autho... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-mineral-leasing-act-acquired-lands-1947.json #### US MSHA 30 CFR Part 56 - Safety and Health Standards for Surface Metal and Nonmetal Mines - **ID**: us-msha-30-cfr-part-56-surface-mine-safety - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: MSHA 30 CFR Part 56 establishes federal safety and health standards for all US surface metal and nonmetal mines including gold, silver, copper, limestone, and phosphate operations, mandating ground co... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-msha-30-cfr-part-56-surface-mine-safety.json #### US MSHA 30 CFR Part 57 - Safety and Health Standards for Underground Metal and Nonmetal Mines - **ID**: us-msha-30-cfr-part-57-underground-mine-safety - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: MSHA 30 CFR Part 57 establishes federal safety and health standards for underground metal and nonmetal mines including gold, silver, copper, zinc, and potash operations, mandating refuge chambers or e... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-msha-30-cfr-part-57-underground-mine-safety.json #### Metal and Nonmetal Mine Safety and Health Standards, 30 CFR Parts 56 and 57 - **ID**: us-msha-metal-nonmetal-safety-standards - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: This regulation establishes mandatory safety and health standards for all surface and underground metal and nonmetal mining operations in the United States, enforced by the Mine Safety and Health Admi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-msha-metal-nonmetal-safety-standards.json #### Mine Safety and Health Act of 1977, Public Law 95-164, 30 U.S.C. § 801 et seq. - **ID**: us-msha-mine-safety-health-act-1977 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Mine Safety and Health Act of 1977 establishes mandatory health and safety standards for all coal and non-coal mines in the United States, requiring mine operators to comply with inspection regime... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-msha-mine-safety-health-act-1977.json #### United States Surface Mining Control and Reclamation Act of 1977 (SMCRA) (Title 30 USC Chapter 25): Congressional Findings, Statement of Purpose, Office of Surface Mining Reclamation and Enforcement, Abandoned Mine Reclamation Fund, Environmental Protection Performance Standards, Permits, and Civil and Criminal Penalties - **ID**: us-smcra-1977-30-usc-ch25 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Surface Mining Control and Reclamation Act of 1977 (SMCRA), Public Law 95-87 of 3 August 1977, codified at Title 30 of the United States Code, Chapter 25, is the principal federal statute regulati... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-smcra-1977-30-usc-ch25.json #### US Surface Mining Control and Reclamation Act (SMCRA, 30 USC ch 25): Permits, Performance Standards and the Abandoned Mine Reclamation Fund - **ID**: us-surface-mining-control-and-reclamation-act - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Surface Mining Control and Reclamation Act of 1977 (SMCRA, 30 U.S.C. ch. 25) is the federal statute regulating the environmental effects of surface coal mining and the reclamation of mined land, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-surface-mining-control-and-reclamation-act.json #### Surface Mining Control and Reclamation Act of 1977 - **ID**: us-surface-mining-control-reclamation-act-smcra - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: The Surface Mining Control and Reclamation Act (SMCRA) establishes permitting, environmental protection, reclamation, and enforcement requirements for coal mining operations in the United States. It a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-surface-mining-control-reclamation-act-smcra.json #### US Materials Act of 1947 and Surface Resources Act (30 U.S.C. Chapter 15): Disposal of Mineral Materials and Common Varieties on Public Lands - **ID**: us-surface-resources-materials-act-1947 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Materials Act of 1947, together with the Surface Resources Act of 1955, is codified at 30 U.S.C. Chapter 15 (Surface Resources, sections 601 through 615) and governs the disposal of common mineral... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-surface-resources-materials-act-1947.json #### Voluntary Principles on Security and Human Rights (VPSHR) 2000 - Risk Assessment, Public and Private Security Arrangements and Incident Reporting for Extractive Companies - **ID**: voluntary-principles-security-human-rights - **Category**: Mining & Natural Resources - **Version**: 1.0.1 - **BLUF**: The Voluntary Principles on Security and Human Rights guide extractive companies in conducting security operations while respecting human rights, requiring risk assessments, responsible use of force, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/voluntary-principles-security-human-rights.json #### South Africa Mineral and Petroleum Resources Development Act 28 of 2002 Mining Rights and Social Obligations - **ID**: za-mineral-petroleum-resources-development-act-2002 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: South Africa's Mineral and Petroleum Resources Development Act 28 of 2002 (MPRDA) vests all mineral and petroleum resources in the custody of the state and requires mining companies to obtain prospect... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-mineral-petroleum-resources-development-act-2002.json #### Zambia Mines and Minerals Development Act No. 11 of 2015 - Mining Rights, Safety, and Revenue Framework - **ID**: zambia-mines-minerals-development-act-11-2015 - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: The Mines and Minerals Development Act No. 11 of 2015 (MMDA) is Zambia's primary mining legislation governing exploration and large-scale mining licences, artisanal and small-scale mining permits, min... - **Discovery URL**: https://bidda.com/api/v1/nodes/zambia-mines-minerals-development-act-11-2015.json #### Zimbabwe Mines and Minerals Act Chapter 21:05 - Prospecting, Mining Location Registration and ZMDC State Participation - **ID**: zimbabwe-mines-minerals-act-chapter-21-05-zmdc - **Category**: Mining & Natural Resources - **Version**: 1.0.0 - **BLUF**: Zimbabwe's Mines and Minerals Act Chapter 21:05 (originally enacted as the Mines and Minerals Act 1961, substantially amended through the Mines and Minerals Amendment Act 2019 and Zimbabwe Mines and M... - **Discovery URL**: https://bidda.com/api/v1/nodes/zimbabwe-mines-minerals-act-chapter-21-05-zmdc.json ### Operations & CX (109 nodes) #### Australian Consumer Law 2010 - Consumer Guarantees (ACCC) - **ID**: australia-consumer-law-acl-2010-cx - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: Businesses must provide consumer guarantees such as acceptable quality, fit for purpose, accurate description and timely service; failure to meet these guarantees breaches the Australian Consumer Law ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-consumer-law-acl-2010-cx.json #### Business Process Model And Notation (BPMN™) Version 2.0 - **ID**: bpmn-2-0-business-process-model-notation - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: BPMN 2.0 defines a standardized graphical notation and XML schema for modeling, executing, and exchanging business processes. It applies to organizations and stakeholders involved in business process ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bpmn-2-0-business-process-model-notation.json #### OMG Business Process Model and Notation 2.0 (BPMN) - Standard Workflow Notation: Flow Objects, Connecting Objects, Swimlanes and Process Diagrams - **ID**: bpmn-2-0-omg-specification-workflow-notation - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This standard defines the syntax and semantics for modeling business processes using BPMN 2.0, including Flow Objects (Events, Activities, Gateways), Connecting Objects (Sequence Flows, Message Flows)... - **Discovery URL**: https://bidda.com/api/v1/nodes/bpmn-2-0-omg-specification-workflow-notation.json #### Brazil Consumer Defense Code (CDC) Lei 8.078/1990 - Consumer Rights and Supplier Obligations - **ID**: brazil-consumer-defense-code-lei-8078-1990 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Brazil's Consumer Defense Code (Codigo de Defesa do Consumidor - CDC, Lei 8.078 of 11 September 1990, as amended through 2022) establishes comprehensive consumer rights and supplier obligations enforc... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-consumer-defense-code-lei-8078-1990.json #### Business Process Maturity Model (BPMM) - OMG Standard: Five Maturity Levels, Process Areas, Goals, Practices and Measurement for Workflow Process Improvement - **ID**: business-process-maturity-model-bpmm-omg - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Business Process Maturity Model (BPMM) Version 1.0 provides a framework for assessing and improving organizational business process maturity across five levels, with defined process areas, goals, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/business-process-maturity-model-bpmm-omg.json #### Canada Accessible Canada Act 2019 - **ID**: ca-accessible-canada-act-2019 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Accessible Canada Act (S.C. 2019, c. 10), in force 11 July 2019 with regulated entity obligations phased from 1 January 2021, requires federally regulated entities including Parliament, federal go... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-accessible-canada-act-2019.json #### Canada Cannabis Act 2018 - **ID**: ca-cannabis-act-2018 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Cannabis Act (S.C. 2018, c. 16), in force 17 October 2018, establishes the federal framework for the legal production, distribution, sale, and possession of cannabis in Canada, requiring Health Ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-cannabis-act-2018.json #### Canada Consumer Product Safety Act 2010 - **ID**: ca-consumer-product-safety-act-2010 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Canada Consumer Product Safety Act (S.C. 2010, c. 21), in force 20 June 2011, prohibits the manufacture, importation, advertising, and sale of consumer products that pose a danger to human health ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-consumer-product-safety-act-2010.json #### CFPB UDAAP Dodd-Frank Section 1031 Unfair Deceptive or Abusive Acts or Practices - **ID**: cfpb-udaap-dodd-frank-section-1031-unfair-deceptive-abusive - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Dodd-Frank Act Section 1031 (12 USC 5531) prohibits covered persons and service providers from engaging in unfair, deceptive, or abusive acts or practices (UDAAP) in connection with consumer financial... - **Discovery URL**: https://bidda.com/api/v1/nodes/cfpb-udaap-dodd-frank-section-1031-unfair-deceptive-abusive.json #### Capability Maturity Model Integration (CMMI) V2.0: Practice Areas, Capability Levels and Performance Management for Process Improvement - **ID**: cmmi-capability-maturity-model-integration-2-0 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: CMMI V2.0 establishes a framework for assessing and improving organizational processes across development, services, and supplier management. It applies to enterprises seeking process maturity certifi... - **Discovery URL**: https://bidda.com/api/v1/nodes/cmmi-capability-maturity-model-integration-2-0.json #### Colombia Estatuto del Consumidor (Law 1480/2011) - SIC Enforcement and Product Liability - **ID**: colombia-law-1480-2011-estatuto-consumidor - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Colombia's Estatuto del Consumidor (Law 1480 of 12 October 2011) establishes a comprehensive consumer protection framework enforced by the Superintendencia de Industria y Comercio (SIC); mandates mand... - **Discovery URL**: https://bidda.com/api/v1/nodes/colombia-law-1480-2011-estatuto-consumidor.json #### Directive (EU) 2019/882 of the European Parliament and of the Council of 17 April 2019 on the accessibility requirements for products and services - **ID**: eu-accessibility-act-2019 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This directive mandates common accessibility requirements for specific products and services placed on the EU market, ensuring they are usable by persons with disabilities. As per Article 4, economic ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-accessibility-act-2019.json #### Directive (EU) 2019/882 of the European Parliament and of the Council of 17 April 2019 on the accessibility requirements for products and services - **ID**: eu-accessibility-act-2019-882-digital-products - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: The EU Accessibility Act (EAA) establishes mandatory accessibility requirements for certain products and services, including digital products such as e-books, online banking, e-commerce platforms, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-accessibility-act-2019-882-digital-products.json #### EU Accessibility Act 2019/882 - Digital Products and Services Accessibility Requirements - **ID**: eu-accessibility-act-2019-882-digital-products-services-requirements - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2019/882 (European Accessibility Act - EAA) requires manufacturers and service providers to ensure that a wide range of products and services meet accessibility requirements for persons... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-accessibility-act-2019-882-digital-products-services-requirements.json #### Directive (EU) 2016/2102 of the European Parliament and of the Council of 26 October 2016 on the accessibility of the websites and mobile applications of public sector bodies - **ID**: eu-accessibility-directive-cx-platforms-2016 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Public sector websites and mobile applications must conform to WCAG 2.1 Level AA, publish an accessibility statement, establish a feedback mechanism, undergo regular monitoring, and assess disproporti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-accessibility-directive-cx-platforms-2016.json #### Directive 2013/11/EU of the European Parliament and of the Council of 21 May 2013 on alternative dispute resolution for consumer disputes and amending Regulation (EC) No 2006/2004 and Directive 2009/22/EC (Directive on consumer ADR) - **ID**: eu-adr-consumer-disputes-2013 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This directive requires EU Member States to ensure that all contractual disputes between a consumer and a trader can be submitted to an Alternative Dispute Resolution (ADR) entity. As per Article 13, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-adr-consumer-disputes-2013.json #### Directive 2013/11/EU of the European Parliament and of the Council of 21 May 2013 on alternative dispute resolution for consumer disputes and amending Regulation (EC) No 2006/2004 and Directive 2009/22/EC (Directive on consumer ADR) - **ID**: eu-adr-directive-2013-11-alternative-dispute - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: This directive requires all traders operating in the EU to inform consumers clearly and comprehensively about the existence of approved Alternative Dispute Resolution (ADR) entities and to provide con... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-adr-directive-2013-11-alternative-dispute.json #### EU ADR Directive 2013/11 - Alternative Dispute Resolution and Online Dispute Resolution for Consumer Contracts - **ID**: eu-adr-directive-2013-11-consumer-dispute-resolution - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Directive 2013/11/EU on Alternative Dispute Resolution (ADR Directive) and Regulation (EU) 524/2013 on Online Dispute Resolution (ODR Regulation) require EU member states to ensure that all disputes b... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-adr-directive-2013-11-consumer-dispute-resolution.json #### Directive 2013/11/EU of the European Parliament and of the Council of 21 May 2013 on alternative dispute resolution for consumer disputes and amending Regulation (EC) No 2006/2004 and Directive 2009/22/EC (Directive on consumer ADR) - **ID**: eu-adr-directive-consumer-2013-11-cx - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This Directive requires Member States to ensure that consumers have access to effective, transparent, and independent alternative dispute resolution (ADR) entities for resolving disputes with traders ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-adr-directive-consumer-2013-11-cx.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 laying down harmonised rules on artificial intelligence and amending Regulations (EC) No 300/2008, (EU) No 167/2013, (EU) No 168/2013, (EU) 2018/858, (EU) 2018/1139 and (EU) 2019/2144 and Directives 2014/90/EU, (EU) 2016/797 and (EU) 2020/1828 (Artificial Intelligence Act) - **ID**: eu-ai-act-customer-facing-high-risk-annex-3 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This regulation establishes binding requirements for high-risk AI systems used in customer-facing contexts such as creditworthiness assessment, insurance risk scoring, and emotion recognition, mandati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-customer-facing-high-risk-annex-3.json #### Regulation (EU) 2025/2509 - Safety of Toys (repealing Directive 2009/48/EC) - **ID**: eu-celex-32025r2509 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2025/2509 is the new EU Toy Safety Regulation. It entered into force and starts to apply on 1 January 2026, progressively replacing Directive 2009/48/EC, which is fully repealed from 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32025r2509.json #### Directive 2011/83/EU of the European Parliament and of the Council of 25 October 2011 on consumer rights, amending Council Directive 93/13/EEC and Directive 1999/44/EC of the European Parliament and of the Council and repealing Council Directive 85/577/EEC and Directive 97/7/EC of the European Parliament and of the Council (as amended by Directive (EU) 2019/2161) - **ID**: eu-consumer-rights-directive-2011 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This directive harmonizes consumer protection across the EU for distance and off-premises contracts, requiring traders to provide comprehensive pre-contractual information (Article 6) and granting con... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-consumer-rights-directive-2011.json #### Directive 2011/83/EU of the European Parliament and of the Council of 25 October 2011 on consumer rights, amending Council Directive 93/13/EEC and Directive 1999/44/EC - **ID**: eu-consumer-rights-directive-2011-83-cx - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Directive requires traders to provide clear pre‑contractual information (Art. 6), grant a 14‑day withdrawal right for distance contracts (Art. 16), ensure delivery of goods within the agreed time ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-consumer-rights-directive-2011-83-cx.json #### EU Consumer Rights Directive 2011/83/EU - Pre-contractual Information & Right of Withdrawal - **ID**: eu-consumer-rights-directive-2011-83-eu - **Category**: Operations & CX - **Version**: 2.0 - **BLUF**: Directive 2011/83/EU grants consumers a 14-day right of withdrawal for distance and off-premises contracts, mandates pre-contractual information disclosure, and prohibits hidden charges - a core consu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-consumer-rights-directive-2011-83-eu.json #### Directive 2011/83/EU of the European Parliament and of the Council of 25 October 2011 on consumer rights, amending Council Directive 93/13/EEC and Directive 1999/44/EC of the European Parliament and of the Council and repealing Council Directive 85/577/EEC and Directive 97/7/EC of the European Parliament and of the Council - **ID**: eu-consumer-rights-directive-2011-83-online-returns - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The EU Consumer Rights Directive 2011/83 grants consumers a 14-day unconditional right to withdraw from online and distance contracts without penalty, requiring businesses to provide clear pre-contrac... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-consumer-rights-directive-2011-83-online-returns.json #### Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on privacy and electronic communications) - **ID**: eu-cookie-directive-consent-operations - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: This directive requires providers of publicly available electronic communications services to obtain users' informed consent before storing or accessing information on their devices, such as through c... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cookie-directive-consent-operations.json #### EU Digital Content and Digital Services Directive 2019/770 - Consumer Contracts - **ID**: eu-digital-content-services-directive-2019-770 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2019/770 harmonises EU rules on contracts for the supply of digital content and digital services to consumers, covering music, films, apps, games, cloud storage, and social media. Digit... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-content-services-directive-2019-770.json #### Regulation (EU) 2022/2065 of the European Parliament and of the Council of 19 October 2022 on a Single Market For Digital Services and Amending Directive 2000/31/EC (Digital Services Act) - **ID**: eu-digital-services-act-consumer-redress-2022 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Digital service providers in the EU must establish accessible, transparent, and timely complaints mechanisms, enable out-of-court dispute settlement, provide legal redress for users affected by algori... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-services-act-consumer-redress-2022.json #### EU Directive 2019/771 - Sale of Goods and Digital Content Conformity - **ID**: eu-directive-2019-771-consumer-goods-digital-content - **Category**: Operations & CX - **Version**: 2.0.0 - **BLUF**: EU Directive 2019/771 on the sale of goods and 2019/770 on digital content contracts establish conformity requirements and mandatory remedies for defective goods (including those with embedded digital... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2019-771-consumer-goods-digital-content.json #### EU e-Commerce Directive 2000/31/EC Article 6 Information Requirements for Commercial Communications - **ID**: eu-ecommerce-directive-article-6-commercial-communications-identification - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: EU Directive 2000/31/EC Article 6 requires that commercial communications forming part of or constituting an information society service must be clearly identifiable as commercial, identify the legal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecommerce-directive-article-6-commercial-communications-identification.json #### EU General Product Safety Regulation 2023/988 (GPSR) - Consumer Product Safety - **ID**: eu-general-product-safety-regulation-2023-988 - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2023/988 (GPSR) replaces the General Product Safety Directive 2001/95/EC and extends EU consumer product safety rules to online marketplace operators and direct-to-consumer sales from ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-product-safety-regulation-2023-988.json #### EU General Product Safety Regulation 2023/988 (GPSR) - Consumer Product Safety Requirements - **ID**: eu-general-product-safety-regulation-2023-988-gpsr-consumer-products - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2023/988 (GPSR) replaces the General Product Safety Directive (GPSD) from 13 December 2024, establishing updated safety requirements for all consumer products placed on the EU market. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-product-safety-regulation-2023-988-gpsr-consumer-products.json #### EU General Product Safety Regulation (GPSR) - Regulation 2023/988 - **ID**: eu-general-product-safety-regulation-2023-gpsr - **Category**: Operations & CX - **Version**: 2.0.0 - **BLUF**: EU Regulation 2023/988 (GPSR), applicable from 13 December 2024, establishes a general safety requirement for all consumer products placed on the EU market, mandates product safety notices via the Saf... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-product-safety-regulation-2023-gpsr.json #### Regulation (EU) 2023/988 of the European Parliament and of the Council of 10 May 2023 on general product safety, amending Regulation (EU) No 1025/2012 of the European Parliament and of the Council and Directive (EU) 2020/1828 of the European Parliament and the Council, and repealing Directive 2001/95/EC of the European Parliament and of the Council and Council Directive 87/357/EEC (Text with EEA relevance) - **ID**: eu-general-product-safety-regulation-cx-2023 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This regulation establishes a horizontal framework for the safety of all consumer products in the EU, requiring economic operators to ensure that no unsafe products are placed or made available on the... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-general-product-safety-regulation-cx-2023.json #### Regulation (EU) 2018/302 of the European Parliament and of the Council of 28 February 2018 on addressing unjustified geo-blocking and other forms of discrimination based on customers' nationality, place of residence or place of establishment within the internal market and amending Regulations (EC) No 2006/2004 and (EU) 2017/2394 and Directive 2009/22/EC - **ID**: eu-geo-blocking-regulation-2018 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This regulation prohibits traders from blocking or limiting a customer's access to their online interfaces (websites, apps) and from automatically redirecting them to a different version of the interf... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-geo-blocking-regulation-2018.json #### Regulation (EU) 2018/302 of the European Parliament and of the Council of 28 February 2018 on addressing unjustified geo-blocking and other forms of discrimination based on customers' nationality, place of residence or place of establishment within the internal market and amending Regulations (EC) No 2006/2004 and (EU) 2017/2394 and Directive 2009/22/EC - **ID**: eu-geo-blocking-regulation-2018-302-services - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Prohibits unjustified geographic discrimination against consumers in the EU based on nationality, residence, or establishment when accessing or purchasing goods and electronically supplied services. A... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-geo-blocking-regulation-2018-302-services.json #### EU Late Payment Directive 2011/7/EU - B2B and B2G Payment Terms and Statutory Interest - **ID**: eu-late-payment-directive-2011-7 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Directive 2011/7/EU of the European Parliament and of the Council on combating late payment in commercial transactions establishes mandatory payment terms, statutory interest rates, and recovery cost ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-late-payment-directive-2011-7.json #### Directive 2011/7/EU of the European Parliament and of the Council of 16 February 2011 on combating late payment in commercial transactions - **ID**: eu-late-payment-directive-2011-7-business-operations - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This directive mandates that public authorities pay undisputed invoices within 30 days and private sector businesses within 60 days unless otherwise agreed in writing, requires statutory interest at 8... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-late-payment-directive-2011-7-business-operations.json #### Directive (EU) 2019/2161 of the European Parliament and of the Council of 27 November 2019 amending Council Directive 93/13/EEC and Directives 98/6/EC, 2005/29/EC and 2011/83/EU of the European Parliament and of the Council as regards the better enforcement and modernisation of Union consumer protection rules (Text with EEA relevance) - **ID**: eu-modernisation-directive-consumer-law-2019 - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: This Directive amends key EU consumer protection directives to strengthen enforcement, requiring Member States to impose effective, proportionate and dissuasive penalties for widespread or cross-borde... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-modernisation-directive-consumer-law-2019.json #### Directive (EU) 2019/1024 of the European Parliament and of the Council of 20 June 2019 on open data and the re-use of public sector information - **ID**: eu-odp-open-data-directive-2019-1024-operations - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This Directive requires EU member state public sector bodies to make high-value datasets openly available in machine-readable formats via APIs, under reuse-friendly conditions, with dynamic data updat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-odp-open-data-directive-2019-1024-operations.json #### Directive (EU) 2019/2161 on the better enforcement and modernisation of Union consumer protection rules - **ID**: eu-omnibus-directive-2019-2161 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This directive modernizes EU consumer protection law, requiring online traders and marketplaces to provide greater transparency on personalized pricing, the authenticity of consumer reviews, and the m... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-omnibus-directive-2019-2161.json #### Directive (EU) 2019/2161 of the European Parliament and of the Council of 27 November 2019 on the better enforcement and modernisation of Union consumer protection rules - **ID**: eu-omnibus-directive-2019-2161-consumer-protection - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The EU Omnibus Directive 2019/2161 strengthens consumer protection in digital services by mandating transparency on price formation, disclosure of personalised pricing, and prohibition of fake reviews... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-omnibus-directive-2019-2161-consumer-protection.json #### Regulation (EU) No 524/2013 of the European Parliament and of the Council of 21 May 2013 on online dispute resolution for consumer disputes and amending Regulation (EC) No 2006/2004 and Directive 2009/22/EC (Regulation on consumer ODR) - **ID**: eu-online-dispute-resolution-regulation-524-2013 - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: This regulation establishes an EU-wide online dispute resolution (ODR) platform for consumers and traders to resolve disputes arising from online sales or service contracts concluded within the Union.... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-online-dispute-resolution-regulation-524-2013.json #### Regulation (EU) 2019/1150 on promoting fairness and transparency for business users of online intermediation services - **ID**: eu-p2b-regulation-2019-1150 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This regulation requires providers of online intermediation services (e.g., marketplaces, app stores) and online search engines to ensure fairness and transparency for their business users. Key requir... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-p2b-regulation-2019-1150.json #### Directive 2014/92/EU of the European Parliament and of the Council of 23 October 2014 on transparent and comparable information on retail banking services, amending Directive 2009/110/EC and repealing Directive 2007/64/EC - **ID**: eu-payment-accounts-directive-2014-92-fee-disclosure - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This directive requires credit institutions to provide clear, standardized, and comparable information on fees for payment accounts to retail customers across the EU. It mandates the provision of a Fe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-payment-accounts-directive-2014-92-fee-disclosure.json #### Directive (EU) 2024/2831 of the European Parliament and of the Council of 14 November 2024 on improving the working conditions of platform workers and amending Council Directive 91/533/EEC - **ID**: eu-platform-workers-directive-2024-operations - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The EU Platform Work Directive 2024 establishes a legal presumption of employment for platform workers where algorithmic management is used and specific control criteria are met, applies to digital la... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-platform-workers-directive-2024-operations.json #### EU Postal Services Directive 97/67/EC - Universal Service Obligation and Quality Standards - **ID**: eu-postal-services-directive-1997-67-cx-obligations - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: EU Directive 97/67/EC on common rules for the development of the internal market of Community postal services, as amended by Directives 2002/39/EC and 2008/6/EC (full liberalisation by 2011), mandates... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-postal-services-directive-1997-67-cx-obligations.json #### Proposal for a Directive of the European Parliament and of the Council on liability for defective products - Revision of Directive 85/374/EEC - **ID**: eu-product-liability-directive-2022-revision - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The revised EU Product Liability Directive establishes strict liability for producers of defective products, including software and AI systems, where damage arises from a defect. It extends liability ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-product-liability-directive-2022-revision.json #### EU Services Directive 2006/123/EC - Internal Market for Services and Point of Single Contact - **ID**: eu-services-directive-2006-123 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Directive 2006/123/EC of the European Parliament and of the Council (the Services Directive) establishes the legal framework for the internal market for services in the European Union. Article 9 requi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-services-directive-2006-123.json #### Directive (EU) 2016/2102 of the European Parliament and of the Council of 26 October 2016 on the accessibility of the websites and mobile applications of public sector bodies - **ID**: eu-smd-services-market-directive-accessibility-2022 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This directive requires all public sector websites and mobile applications within the EU to conform to WCAG 2.1 Level AA standards, publish an accessibility statement, and undergo regular monitoring a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-smd-services-market-directive-accessibility-2022.json #### Directive 2005/29/EC of the European Parliament and of the Council of 11 May 2005 concerning unfair business-to-consumer commercial practices in the internal market ('Unfair Commercial Practices Directive') - **ID**: eu-unfair-commercial-practices-directive - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This directive prohibits unfair business-to-consumer commercial practices, including misleading and aggressive tactics, across the EU. It establishes a general prohibition against conduct that materia... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-unfair-commercial-practices-directive.json #### EU Unfair Terms Directive 93/13/EEC Article 4 Assessment Criteria for Contractual Unfairness - **ID**: eu-unfair-terms-directive-93-13-article-4-unfairness-assessment - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Council Directive 93/13/EEC Article 4 establishes the assessment criteria for determining whether a contractual term is unfair: evaluating the nature of the goods or services, all circumstances at con... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-unfair-terms-directive-93-13-article-4-unfairness-assessment.json #### Directive 2009/136/EC of the European Parliament and of the Council of 25 November 2009 amending Directive 2002/22/EC on universal service and users’ rights relating to electronic communications networks and services - **ID**: eu-universal-service-directive-2009-136-consumer - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This directive mandates that providers of electronic communications services ensure transparent, accurate, and timely billing, clear contract terms, and effective complaint handling mechanisms for end... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-universal-service-directive-2009-136-consumer.json #### Directive (EU) 2019/1937 of the European Parliament and of the Council of 23 October 2019 on the protection of persons who report breaches of Union law - **ID**: eu-whistleblowing-directive-cx-complaints-2019 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This directive requires private and public sector organizations with 50 or more employees to establish internal reporting channels for whistleblowers, ensure confidentiality, prohibit retaliation, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-whistleblowing-directive-cx-complaints-2019.json #### Report on Selected Cybersecurity Practices - 2018 - **ID**: finra-cybersecurity-practices-2018 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This report continues FINRA’s efforts to share information that can help broker-dealer firms further develop their cybersecurity programs. Firms routinely identify cybersecurity as one of their primar... - **Discovery URL**: https://bidda.com/api/v1/nodes/finra-cybersecurity-practices-2018.json #### FTC Artificial Intelligence Enforcement Guidance - Deceptive and Unfair AI Practices (Section 5 FTC Act) - **ID**: ftc-ai-enforcement-guidance - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This guidance clarifies that the Federal Trade Commission (FTC) will apply Section 5 of the FTC Act to combat deceptive or unfair practices involving AI, holding companies accountable for false claims... - **Discovery URL**: https://bidda.com/api/v1/nodes/ftc-ai-enforcement-guidance.json #### FTC Negative Option Rule 2024 Subscription Cancellation and Disclosure Requirements - **ID**: ftc-negative-option-rule-2024-click-to-cancel - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The FTC Negative Option Rule (16 CFR Part 425, finalized October 2024, effective January 2025) prohibits deceptive negative option marketing by requiring clear and conspicuous disclosure of all materi... - **Discovery URL**: https://bidda.com/api/v1/nodes/ftc-negative-option-rule-2024-click-to-cancel.json #### India Legal Metrology Act 2009 - Packaged Commodities Rules, MRP Declaration and DPIIT Enforcement - **ID**: india-legal-metrology-act-2009-packaged-commodities - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: India's Legal Metrology Act 2009 (Act No. 1 of 2010, in force 1 April 2011) repealed the Standards of Weights and Measures Act 1976 and its Enforcement Act 1985; the Act and its Legal Metrology (Packa... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-legal-metrology-act-2009-packaged-commodities.json #### ISO 10002:2018 - Quality management - Customer satisfaction - Guidelines for the process of complaints handling in organizations - **ID**: iso-10002-2018-customer-satisfaction-complaints - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO 10002:2018 specifies requirements for a complaints-handling process within a quality management system, applicable to any organization regardless of size or sector. It mandates timely, fair, and t... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-10002-2018-customer-satisfaction-complaints.json #### ISO 10003:2018 - Quality management - Customer satisfaction - Guidelines for external dispute resolution for organizations - **ID**: iso-10003-2018-dispute-resolution-cx - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: ISO 10003:2018 requires organizations to establish, implement and maintain a documented external dispute resolution process, including independent bodies, defined timeframes and monitoring, as set out... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-10003-2018-dispute-resolution-cx.json #### ISO 10003:2018 - Quality management - Customer satisfaction - Guidelines for external dispute resolution for organizations - **ID**: iso-10003-2018-external-dispute-resolution - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO 10003:2018 provides guidelines for organizations to establish, implement, and improve external dispute resolution (EDR) processes for resolving customer complaints impartially and efficiently. It ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-10003-2018-external-dispute-resolution.json #### ISO 15489-1:2016 - Information and documentation - Records management - Part 1: Concepts and principles - **ID**: iso-15489-1-2016-records-management-workflow - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO 15489-1:2016 establishes requirements for the design and implementation of records management systems to ensure authenticity, reliability, integrity, and usability of records throughout their life... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-15489-1-2016-records-management-workflow.json #### ISO 18295-1:2017 Customer Contact Centre Requirements - Service Quality and Agent Management - **ID**: iso-18295-1-2017-contact-centre-service-quality - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO 18295-1:2017 specifies requirements for customer contact centres (CCCs) providing services on behalf of any organisation; mandates service performance metrics including First Contact Resolution (F... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-18295-1-2017-contact-centre-service-quality.json #### ISO/IEC 19510:2013 - Information Technology: Business Process Model and Notation (BPMN) - **ID**: iso-19510-bpmn-standard-workflow-processes - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This international standard specifies the notation, syntax, and semantics for Business Process Model and Notation (BPMN) to enable consistent modeling, automation, and interoperability of workflow pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-19510-bpmn-standard-workflow-processes.json #### ISO/IEC 20000-1:2018 - Information technology - Service management - Part 1: Service management system requirements - **ID**: iso-20000-1-2018-it-service-management - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO/IEC 20000-1:2018 specifies requirements for an organization to establish, implement, maintain, and continually improve a service management system (SMS) to deliver managed services that meet agree... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20000-1-2018-it-service-management.json #### ISO 22301 2019 - Business Continuity Management System Requirements, BIA and Recovery Time Objectives - **ID**: iso-22301-2019-business-continuity-management-system - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO 22301:2019 Security and resilience - Business continuity management systems - Requirements, published in October 2019 (second edition replacing ISO 22301:2012), specifies requirements to implement... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-22301-2019-business-continuity-management-system.json #### ISO 22301:2019 Business Continuity Management Systems - Requirements - **ID**: iso-22301-2019-business-continuity-management-systems-requirements - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO 22301:2019 specifies requirements for a Business Continuity Management System (BCMS) that enables organisations to plan for, respond to, and recover from disruptive incidents. The standard require... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-22301-2019-business-continuity-management-systems-requirements.json #### ISO 31010:2019 - Risk Management - Risk Assessment Techniques - **ID**: iso-31010-2019-risk-assessment-operational - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO 31010:2019 provides a structured methodology for selecting and applying risk assessment techniques such as Bow-Tie, FMEA, HAZOP, and Monte Carlo simulation within operational processes. It applies... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-31010-2019-risk-assessment-operational.json #### ISO 41001:2018 - Facility Management Systems: Requirements for Establishing, Implementing, Maintaining and Improving FM to Support Operations and CX - **ID**: iso-41001-2018-facilities-management-systems - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO 41001:2018 specifies requirements for establishing, implementing, maintaining, and improving a facility management system (FMS) to support organizational operations and customer experience. It app... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-41001-2018-facilities-management-systems.json #### ISO 44001:2017 - Collaborative Business Relationship Management Systems: Framework, Principles and Requirements for Collaborative Operational Models - **ID**: iso-44001-2017-collaborative-business-relationships - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO 44001:2017 specifies requirements for establishing, implementing, maintaining, and improving a collaborative business relationship management system (CBRMS), applicable to any organization seeking... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-44001-2017-collaborative-business-relationships.json #### ISO 9001:2015 - Quality Management Systems: Requirements - **ID**: iso-9001-2015-quality-management-systems-operations - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO 9001:2015 specifies requirements for a quality management system (QMS) where an organization must demonstrate its ability to consistently provide products and services that meet customer and appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-9001-2015-quality-management-systems-operations.json #### ITIL 4 Service Management Framework 2019 - Service Value System, Four Dimensions Model, Guiding Principles and 34 Management Practices - **ID**: itil-4-service-management-framework-2019 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ITIL 4 establishes a holistic service management framework requiring organizations to align service delivery with business value through the Service Value System (SVS), Four Dimensions Model, and 34 d... - **Discovery URL**: https://bidda.com/api/v1/nodes/itil-4-service-management-framework-2019.json #### ITIL 4 Service Value Chain and Value Stream Mapping - Demand, Value Creation, Engage, Obtain/Build and Deliver/Support Activities for Workflow Optimisation - **ID**: itil-4-value-stream-mapping-workflow-practices - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This standard requires organizations to implement a structured service value chain model comprising six core activities-Plan, Improve, Engage, Design and Transition, Obtain/Build, and Deliver and Supp... - **Discovery URL**: https://bidda.com/api/v1/nodes/itil-4-value-stream-mapping-workflow-practices.json #### Japan Consumer Contract Act 2000 - Consumer Protection, Unfair Terms and Consumer Affairs Agency Enforcement - **ID**: japan-consumer-contract-act-2000-caa - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Japan's primary consumer protection statute, the Consumer Contract Act (Law No. 61 of 2000, CCA, substantially amended 2022 and 2023) administered by the Consumer Affairs Agency (CAA - Shohi-sha-cho) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-consumer-contract-act-2000-caa.json #### Lean Manufacturing Value Stream Mapping - Current State, Future State, Waste Identification (Muda), Kaizen Events and Implementation Roadmap for Process Workflows - **ID**: lean-manufacturing-value-stream-mapping - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This regulation requires organizations to adopt lean thinking and practice to identify customer value, map current and future state workflows, eliminate waste (muda), and implement continuous improvem... - **Discovery URL**: https://bidda.com/api/v1/nodes/lean-manufacturing-value-stream-mapping.json #### Mexico Ley Federal de Proteccion al Consumidor 1992 - PROFECO Consumer Protection and Supplier Obligations - **ID**: mexico-ley-federal-proteccion-consumidor-profeco-1992 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Mexico's Ley Federal de Proteccion al Consumidor (LFPC, Federal Consumer Protection Law, published 24 December 1992, last amended 2023) is administered by PROFECO (Procuraduria Federal del Consumidor)... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-ley-federal-proteccion-consumidor-profeco-1992.json #### Mexico Federal Consumer Protection Law (LFPC 1992) - PROFECO Enforcement and Consumer Rights - **ID**: mexico-lfpc-federal-consumer-protection-law - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Mexico's Ley Federal de Proteccion al Consumidor (LFPC, published 24 December 1992 in the DOF, as amended through 2022) establishes consumer rights and supplier obligations enforced by the Procuraduri... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-lfpc-federal-consumer-protection-law.json #### New Zealand Fair Trading Act 1986 - Commerce Commission Misleading Conduct Enforcement - **ID**: new-zealand-fair-trading-act-1986-commerce-commission - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: New Zealand's Fair Trading Act 1986 (FTA, No. 121 of 1986, as amended through 2022) prohibits misleading and deceptive conduct in trade, false representations, unfair contract terms, and bait advertis... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-zealand-fair-trading-act-1986-commerce-commission.json #### Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure - **ID**: sec-cybersecurity-risk-incident-disclosure - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Securities and Exchange Commission is adopting new rules to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance, and incidents by public companies sub... - **Discovery URL**: https://bidda.com/api/v1/nodes/sec-cybersecurity-risk-incident-disclosure.json #### ISO 13053:2011 - Quantitative Methods in Process Improvement: Six Sigma (DMAIC Methodology, DFSS Approach and Black Belt Competence) - **ID**: six-sigma-iso-13053-quantitative-methods-process - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: ISO 13053:2011 specifies the methodology and statistical tools used in Six Sigma for process improvement, including the DMAIC (Define, Measure, Analyze, Improve, Control) and DFSS (Design for Six Sigm... - **Discovery URL**: https://bidda.com/api/v1/nodes/six-sigma-iso-13053-quantitative-methods-process.json #### South Africa Consumer Protection Act 68 of 2008 - CPA Consumer Rights and CX Obligations - **ID**: south-africa-consumer-protection-act-2008 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: South Africa's Consumer Protection Act 68 of 2008 (CPA, effective 2011, amended 2022) establishes comprehensive consumer rights and supplier obligations for all goods and services supplied in South Af... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-consumer-protection-act-2008.json #### Task Force on Climate-related Financial Disclosures: 2022 Status Report - **ID**: tcfd-status-report-2022 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This fifth annual status report from the Task Force on Climate-related Financial Disclosures (TCFD) reflects on the implementation of its recommendations since their release in 2017. The TCFD framewor... - **Discovery URL**: https://bidda.com/api/v1/nodes/tcfd-status-report-2022.json #### The TOGAF® Standard, 10th Edition - Enterprise Architecture and Workflow Design: Architecture Development Method, Business Architecture, Application Architecture and Migration Planning - **ID**: togaf-10-enterprise-architecture-workflow - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The TOGAF® Standard, 10th Edition provides a structured methodology for developing enterprise architectures, including Business, Application, and Technology Architectures, using the Architecture Devel... - **Discovery URL**: https://bidda.com/api/v1/nodes/togaf-10-enterprise-architecture-workflow.json #### UK Consumer Contracts Regulations 2013 Regulation 9 Information Requirements for Off-Premises Contracts - **ID**: uk-consumer-contracts-regulations-2013-regulation-9-offpremises-information - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: UK Consumer Contracts (Information, Cancellation and Additional Charges) Regulations 2013 SI 2013/3134 Regulation 9 is a key consumer protection law requiring traders to provide consumers with a speci... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-consumer-contracts-regulations-2013-regulation-9-offpremises-information.json #### UK Consumer Rights Act 2015 - Goods, Services and Digital Content Rights - **ID**: uk-consumer-rights-act-2015 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Consumer Rights Act 2015 (CRA 2015) consolidates and enhances UK consumer protection law covering goods, services, and digital content. Goods must be satisfactory quality, fit for purpose, and as ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-consumer-rights-act-2015.json #### UK Consumer Rights Act 2015 Section 34 — Digital Content to Be of Satisfactory Quality - **ID**: uk-consumer-rights-act-2015-section-34-digital-content-satisfactory-quality - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Consumer protection: every contract to supply digital content is treated as including a term that the quality of the digital content is satisfactory. Quality is measured by the reasonable person stand... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-consumer-rights-act-2015-section-34-digital-content-satisfactory-quality.json #### UK Consumer Rights Act 2015 Section 49 - Service to Be Performed With Reasonable Care and Skill (Implied Statutory Term in Every Consumer Service Contract, Remedies via Section 54) - **ID**: uk-consumer-rights-act-2015-section-49-service-reasonable-care-and-skill - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Section 49 of the Consumer Rights Act 2015 (c. 15) establishes the foundational implied term that traders must perform consumer services with reasonable care and skill - the primary statutory standard... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-consumer-rights-act-2015-section-49-service-reasonable-care-and-skill.json #### UK Consumer Rights Act 2015 Section 62 — Requirement for Contract Terms and Notices to Be Fair - **ID**: uk-consumer-rights-act-2015-section-62-fairness-of-terms-and-notices - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Consumer protection rule: an unfair term of a consumer contract or an unfair consumer notice is not binding on the consumer. A term or notice is unfair if, contrary to the requirement of good faith, i... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-consumer-rights-act-2015-section-62-fairness-of-terms-and-notices.json #### UK Consumer Rights Act 2015 Section 9 — Goods to Be of Satisfactory Quality - **ID**: uk-consumer-rights-act-2015-section-9-goods-satisfactory-quality - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Consumer protection: every contract to supply goods is treated as including a term that the quality of the goods is satisfactory. Quality is measured against the standard that a reasonable person woul... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-consumer-rights-act-2015-section-9-goods-satisfactory-quality.json #### 15 USC § 7211 - Sarbanes-Oxley Act PCAOB Establishment - **ID**: us-15-usc-7211-sarbanes-oxley-pcaob-establishment - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: 15 USC § 7211 (Sarbanes-Oxley Act of 2002, Pub. L. 107-204, Title I § 101) establishes the Public Company Accounting Oversight Board (PCAOB) to oversee the audit of companies subject to the federal se... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-7211-sarbanes-oxley-pcaob-establishment.json #### 18 USC § 1832 - Economic Espionage Act (Theft of Trade Secrets) - **ID**: us-18-usc-1832-economic-espionage-act-trade-secrets - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: 18 USC § 1832 (Economic Espionage Act of 1996, Pub. L. 104-294 Title I; amended by Defend Trade Secrets Act of 2016, Pub. L. 114-153) criminalizes the theft of trade secrets related to products or ser... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-18-usc-1832-economic-espionage-act-trade-secrets.json #### Web Accessibility Rule: Accessibility of Web Content and Mobile Applications (WCAG 2.1 Level AA) for State and Local Government Websites under Title II of the Americans with Disabilities Act - **ID**: us-ada-title-iii-public-accommodations-digital - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: This rule requires state and local government entities to ensure that their websites and mobile applications conform to WCAG 2.1 Level AA success criteria, including specific provisions on non-text co... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ada-title-iii-public-accommodations-digital.json #### Controlling the Assault of Non-Solicited Pornography And Marketing (CAN-SPAM) Act of 2003 - Commercial Email Operations - **ID**: us-can-spam-act-2003-commercial-email-operations - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: The CAN-SPAM Act sets national standards for sending commercial emails, requiring truthful header information, clear identification of ads, a functioning opt-out mechanism, and inclusion of a valid ph... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-can-spam-act-2003-commercial-email-operations.json #### US Consumer Product Safety Act (15 USC ch 47): Product Safety Standards, Recalls and Penalties - **ID**: us-consumer-product-safety-act - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Consumer Product Safety Act (15 U.S.C. ch. 47) is a core US consumer protection statute that establishes the Consumer Product Safety Commission and authorizes it to regulate the safety of consumer... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-consumer-product-safety-act.json #### 16 CFR Part 1500 - Hazardous Substances and Articles: Administration and Enforcement Regulations (FHSA) - **ID**: us-cpsc-16-cfr-1500-hazardous-substances-labeling-fhsa - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: CPSC 16 CFR Part 1500 implements the Federal Hazardous Substances Act, requiring manufacturers and importers of consumer products to classify hazardous substances and hazardous mixtures, apply the cau... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cpsc-16-cfr-1500-hazardous-substances-labeling-fhsa.json #### Consumer Product Safety Improvement Act 2008 - 15 USC 2061 Imminent Hazards - **ID**: us-cpsia-consumer-product-safety-improvement-2008-15-usc-2061 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: Section 2061 of title 15 of the United States Code, as amended by the Consumer Product Safety Improvement Act of 2008 (CPSIA, Public Law 110-314, enacted 14 August 2008), authorises the Consumer Produ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cpsia-consumer-product-safety-improvement-2008-15-usc-2061.json #### US Fair Packaging and Labeling Act (15 USC ch 39): Consumer Commodity Labeling - **ID**: us-fair-packaging-and-labeling-act - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Fair Packaging and Labeling Act (15 U.S.C. ch. 39) requires that consumer commodities be honestly and informatively labeled to enable value comparison, with authority divided between the Federal T... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fair-packaging-and-labeling-act.json #### US Fair Debt Collection Practices Act 1977 (FDCPA) - Collector Conduct and Consumer Rights - **ID**: us-fdcpa-fair-debt-collection-practices-act-1977 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Fair Debt Collection Practices Act (15 USC 1692, 1977) prohibits abusive, unfair, and deceptive practices by third-party debt collectors; requires a written validation notice within 5 days of firs... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fdcpa-fair-debt-collection-practices-act-1977.json #### US Federal Hazardous Substances Act (15 USC ch 30): Hazardous Household Product Labeling and Bans - **ID**: us-federal-hazardous-substances-act - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Federal Hazardous Substances Act (15 U.S.C. ch. 30) requires precautionary labeling of hazardous household products and authorizes the banning of those too dangerous for household use, administere... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-hazardous-substances-act.json #### US Flammable Fabrics Act (15 USC ch 25): Flammability Standards for Apparel and Fabrics - **ID**: us-flammable-fabrics-act - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Flammable Fabrics Act (15 U.S.C. ch. 25) prohibits the manufacture for sale, sale and importation of highly flammable wearing apparel and interior furnishings, administered by the Consumer Product... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-flammable-fabrics-act.json #### US FTC Telemarketing Sales Rule - 16 CFR Part 310 Do-Not-Call & Disclosure Requirements - **ID**: us-ftc-telemarketing-sales-rule-16-cfr-310 - **Category**: Operations & CX - **Version**: 2.0 - **BLUF**: The FTC Telemarketing Sales Rule (16 CFR Part 310) prohibits deceptive telemarketing, mandates Do-Not-Call compliance, restricts calling hours to 8am-9pm, and requires upfront disclosure of seller ide... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-telemarketing-sales-rule-16-cfr-310.json #### US FTC Telemarketing Sales Rule 1995 (as amended 2003/2010/2020) - DNC Registry - **ID**: us-ftc-telemarketing-sales-rule-1995 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The FTC Telemarketing Sales Rule (TSR, 16 C.F.R. Part 310), promulgated under the Telemarketing and Consumer Fraud and Abuse Prevention Act (15 U.S.C. 6101), prohibits deceptive and abusive telemarket... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-telemarketing-sales-rule-1995.json #### US Magnuson-Moss Warranty Act (15 USC ch 50): Consumer Product Warranties - **ID**: us-magnuson-moss-warranty-act - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Magnuson-Moss Warranty Act (15 U.S.C. ch. 50) governs written warranties on consumer products, administered by the Federal Trade Commission. Section 2302 authorizes rules governing the content and... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-magnuson-moss-warranty-act.json #### United States Magnuson-Moss Warranty Act (Title 15 USC Chapter 50): Consumer Product Warranties, Federal Minimum Standards, Designation of Full or Limited Warranty, Implied Warranties, and Remedies in Consumer Disputes - **ID**: us-magnuson-moss-warranty-act-15-usc-ch50 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Magnuson-Moss Warranty Act, also titled the Magnuson-Moss Warranty Federal Trade Commission Improvement Act and codified at Title 15 of the United States Code, Chapter 50, is the principal federal... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-magnuson-moss-warranty-act-15-usc-ch50.json #### Paperwork Reduction Act of 1995 (44 U.S.C. §§3501-3521) - OMB Information Collection Approval, Burden Minimisation and Electronic Submission Standards - **ID**: us-paperwork-reduction-act-1995-digital-workflow - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: The Paperwork Reduction Act of 1995 requires federal agencies to minimize the burden of information collection on the public and obtain Office of Management and Budget (OMB) approval before collecting... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-paperwork-reduction-act-1995-digital-workflow.json #### US Poison Prevention Packaging Act (15 USC ch 39A): Child-Resistant Packaging Standards - **ID**: us-poison-prevention-packaging-act - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The Poison Prevention Packaging Act (15 U.S.C. ch. 39A) authorizes the Consumer Product Safety Commission to require special packaging to protect children from serious personal injury or illness from ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-poison-prevention-packaging-act.json #### Service Contract Act of 1965 (41 U.S.C. §§ 6701-6707) - **ID**: us-service-contract-act-1965-41-usc-6701 - **Category**: Operations & CX - **Version**: 1.0.1 - **BLUF**: The Service Contract Act of 1965 (41 U.S.C. §§ 6701-6707) requires federal contractors and subcontractors performing service contracts exceeding $2,500 to pay service employees no less than the prevai... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-service-contract-act-1965-41-usc-6701.json #### Telephone Consumer Protection Act of 1991, 47 U.S.C. § 227 - **ID**: us-tcpa-telephone-consumer-protection-act-1991 - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: The TCPA restricts the use of automatic telephone dialing systems (ATDS), artificial or prerecorded voice messages, and unsolicited text messages to wireless numbers without prior express consent. It ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tcpa-telephone-consumer-protection-act-1991.json #### W3C Web Content Accessibility Guidelines (WCAG) 2.2 - **ID**: w3c-web-content-accessibility-wcag-2-2-standard - **Category**: Operations & CX - **Version**: 1.0.0 - **BLUF**: WCAG 2.2 requires that digital content be perceivable, operable, understandable, and robust for all users, including people with disabilities. It applies to all public and private sector websites and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/w3c-web-content-accessibility-wcag-2-2-standard.json ### Pharmaceuticals & Life Sciences (130 nodes) #### Australian Register of Therapeutic Goods (ARTG) - Requirements for AUST R and AUST L Medicine Registration: Product Information Approval, Risk Management Plans, Classification, Quality, Safety and Efficacy Evaluation, TGA Audit System and Post-Market Review - **ID**: australia-tga-austl-r-medicine-registration - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation governs the inclusion of medicines in the Australian Register of Therapeutic Goods (ARTG) under AUST R (registered) or AUST L (listed) pathways, requiring sponsors to demonstrate quali... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-tga-austl-r-medicine-registration.json #### Therapeutic Goods Act 1989 - **ID**: australia-tga-therapeutic-goods-act-1989 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The Therapeutic Goods Act 1989 requires that all therapeutic goods be included in the Australian Register of Therapeutic Goods (ARTG) before they can be supplied in Australia, as per Section 9 of the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-tga-therapeutic-goods-act-1989.json #### Brazil Law 6360 of 1976 Health Surveillance of Drugs Medicines Cosmetics and Sanitary Products ANVISA Drug Registration Manufacturing Authorisation and RDC Resolutions Framework - **ID**: br-law-6360-1976-anvisa-drug-registration - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: Brazil Law No. 6.360 of 23 September 1976 establishes the foundational legal framework for health surveillance of drugs medicines cosmetics sanitary products and related items administered by Agência ... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-law-6360-1976-anvisa-drug-registration.json #### Brazil ANVISA Good Manufacturing Practices RDC 658/2022 - Pharmaceutical GMP, AFE Certification and Inspection - **ID**: brazil-anvisa-good-manufacturing-practices-rdc-658-2022 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: Brazil's Resolucao da Diretoria Colegiada RDC 658 of 30 March 2022 (ANVISA Good Manufacturing Practices for Medicines) established updated GMP requirements for finished pharmaceutical products aligned... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-anvisa-good-manufacturing-practices-rdc-658-2022.json #### Resolution RDC 204, 2017 - Good Manufacturing Practices for Pharmaceutical Inputs: Active Ingredients, Excipients and Primary Packaging - **ID**: brazil-anvisa-resolution-rdc-204-2017 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires pharmaceutical manufacturers to comply with Good Manufacturing Practices (GMP) as outlined in Article 5, and applies to all establishments that manufacture, fractionate, assem... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-anvisa-resolution-rdc-204-2017.json #### Canada Food and Drugs Act 1985 - **ID**: ca-food-drugs-act-1985 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Food and Drugs Act (R.S.C. 1985, c. F-27), consolidated and continuously amended, prohibits the sale of a food that is adulterated, unfit for human consumption, or misleadingly labelled under Sect... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-food-drugs-act-1985.json #### Food and Drugs Act, R.S.C., 1985, c. F-27 - Article 2: Interpretation and Application - **ID**: ca-food-drugs-act-part-c-drugs-therapeutic - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This article establishes the legal definitions for key terms such as food, drug, cosmetic, and device, which determine the regulatory scope and obligations for products under the Food and Drugs Act. - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-food-drugs-act-part-c-drugs-therapeutic.json #### Food and Drug Regulations PART B Foods (continued) DIVISION 26 Food Irradiation - **ID**: canada-clinical-trials-division-5-c02-262 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation prohibits the sale of irradiated food in Canada unless specifically authorized under B.26.003(2) and listed in the Table, with compliance to specified radiation type, source, and absor... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-clinical-trials-division-5-c02-262.json #### Food and Drug Regulations Part C Division 5 - Clinical Trials - **ID**: canada-food-drug-regulations-division-5-clinical-trials - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires clinical trial sponsors to submit a Clinical Trial Application (CTA) to Health Canada, as outlined in Section C.05.005 of the Food and Drug Regulations, and to comply with the... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-food-drug-regulations-division-5-clinical-trials.json #### Canada Natural Health Products Regulations 2003 - NPN Product Licence, GMP Site Licence and Health Canada Compliance - **ID**: canada-natural-health-products-regulations-2003-nhpr - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: Canada's Natural Health Products Regulations SOR/2003-196 (NHPR, in force January 1, 2004, under the Food and Drugs Act R.S.C. 1985 c. F-27) created a comprehensive licensing regime for natural health... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-natural-health-products-regulations-2003-nhpr.json #### Patented Medicine Prices Review Board Guidelines 2021 - **ID**: canada-pmprb-patented-medicine-prices-2021 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The Patented Medicine Prices Review Board (PMPRB) Guidelines 2021 require that the price of a patented medicine in Canada not exceed the median price of the same medicine in seven comparator countries... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-pmprb-patented-medicine-prices-2021.json #### China NMPA Drug Registration Regulation 2020 - Marketing Authorisation Holder System and Priority Review - **ID**: china-nmpa-drug-registration-regulation-2020 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: China's Drug Registration Regulation (Order No. 27, 1 July 2020) issued by the National Medical Products Administration (NMPA - formerly CFDA) establishes the Marketing Authorisation Holder (MAH) syst... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-nmpa-drug-registration-regulation-2020.json #### Regulation (EC) No 1394/2007 of the European Parliament and of the Council of 13 November 2007 on Advanced Therapy Medicinal Products and Amending Directive 2001/83/EC and Regulation (EC) No 726/2004 - **ID**: eu-advanced-therapy-medicinal-products-2007-1394 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation establishes a centralized authorization pathway and specific safety, quality, and efficacy requirements for advanced therapy medicinal products (ATMPs), including gene therapy, somatic... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-advanced-therapy-medicinal-products-2007-1394.json #### Commission Regulation (EC) No 1394/2007 of 13 November 2007 on Advanced Therapy Medicinal Products - **ID**: eu-atmp-regulation-1394-2007-advanced-therapies - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires manufacturers of advanced therapy medicinal products, including gene therapy, somatic cell therapy, and tissue-engineered products, to comply with the centralised authorisatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-atmp-regulation-1394-2007-advanced-therapies.json #### Regulation (EC) No 1394/2007 of the European Parliament and of the Council of 13 November 2007 on Advanced Therapy Medicinal Products and Amending Directive 2001/83/EC and Regulation (EC) No 726/2004 - **ID**: eu-atmp-regulation-1394-pharma-gene-cell - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation establishes a centralized authorization pathway for advanced therapy medicinal products (ATMPs), including gene therapy, somatic cell therapy, and tissue-engineered products, within th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-atmp-regulation-1394-pharma-gene-cell.json #### Biosimilar Development: Comparability Exercise, Quality Comparability, Non-Clinical Studies, Clinical PK/PD Studies, Efficacy/Safety and Immunogenicity Assessment - **ID**: eu-biosimilars-guideline-ema-2014 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This guideline outlines the scientific principles for demonstrating biosimilarity between a proposed biosimilar and its reference biological medicinal product through a stepwise comparability exercise... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-biosimilars-guideline-ema-2014.json #### Clinical Trials in Human Medicines | European Medicines Agency (EMA) - **ID**: eu-clinical-trials-eu-ctr-trials-regulation - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: All clinical trials included in marketing authorisation applications for human medicines in the EU/EEA must be conducted in accordance with Annex 1 of Directive 2001/83/EC. Trials in the EU/EEA must c... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-clinical-trials-eu-ctr-trials-regulation.json #### EU Clinical Trials Regulation 2014/536 - Authorisation and Conduct of Clinical Trials for Investigational Medicinal Products - **ID**: eu-clinical-trials-regulation-2014-536-ctr-investigational-medicinal-products - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 536/2014 (Clinical Trials Regulation, CTR) replaced Directive 2001/20/EC and establishes a harmonised procedure for clinical trial authorisation across the EU via the Clinical Trial... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-clinical-trials-regulation-2014-536-ctr-investigational-medicinal-products.json #### EU Clinical Trials Regulation 536/2014 (CTR) - Investigational Medicinal Products and Trial Authorisation - **ID**: eu-clinical-trials-regulation-536-2014-ctr-investigational-medicinal-products - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: Regulation (EU) No 536/2014 establishes a harmonised EU-wide authorisation procedure for clinical trials on investigational medicinal products via the Clinical Trials Information System (CTIS). Sponso... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-clinical-trials-regulation-536-2014-ctr-investigational-medicinal-products.json #### Regulation (EC) No 726/2004 of the European Parliament and of the Council of 31 March 2004 laying down Community procedures for the authorisation and supervision of medicinal products for human and veterinary use and establishing a European Medicines Agency (Text with EEA relevance) - **ID**: eu-ema-centralised-procedure-regulation-726-2004 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation establishes the centralised procedure for authorising medicinal products in the European Union, mandating its use for high-technology products (e.g., biotech-derived), orphan medicinal... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ema-centralised-procedure-regulation-726-2004.json #### EMA PRIME Scheme - Priority Medicines (PRIority MEdicines): Early Dialogue for Unmet Medical Need Products, Dedicated Point of Contact, Free Scientific Advice, Proactive Support during Development, CHMP Appointment of Rapporteur and Rolling Review Option - **ID**: eu-ema-prime-scheme-priority-medicines - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The EMA PRIME scheme provides enhanced regulatory support to developers of medicines targeting unmet medical needs in the EU, based on preliminary clinical or non-clinical evidence of significant ther... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ema-prime-scheme-priority-medicines.json #### Directive 2011/62/EU of the European Parliament and of the Council of 8 June 2011 on the prevention of the entry into the legal supply chain of falsified medicinal products for human use, amending Directive 2001/83/EC and Regulation (EC) No 726/2004 of the European Parliament and of the Council and repealing Directive 2004/27/EC - **ID**: eu-falsified-medicines-directive-2011-62-ec - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This directive mandates that all prescription medicines placed on the EU market must bear a unique identifier (UI) and tamper-evident feature (TEF), with verification at the point of dispensing. It ap... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-falsified-medicines-directive-2011-62-ec.json #### EU Falsified Medicines Directive 2011/62/EU - Serialisation and Track-and-Trace Requirements - **ID**: eu-falsified-medicines-directive-2011-62-eu-serialisation-track-trace - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: Directive 2011/62/EU and Commission Delegated Regulation (EU) 2016/161 require manufacturers, importers, and distributors of prescription medicines in the EU to implement a two-component safety featur... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-falsified-medicines-directive-2011-62-eu-serialisation-track-trace.json #### EU FMD Delegated Regulation 2016/161 - Safety Features and Unique Identifier for Medicinal Products - **ID**: eu-fmd-delegated-regulation-2016-161-safety-features - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation (EU) 2016/161 of 2 October 2015 supplementing Directive 2001/83/EC, applicable from 9 February 2019 in most EU/EEA Member States (with derogations for Greece and Italy ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-fmd-delegated-regulation-2016-161-safety-features.json #### EU GMP Annex 1 - Manufacture of Sterile Medicinal Products (2022) - **ID**: eu-gmp-annex-1-sterile-manufacture-2022 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires manufacturers of sterile medicinal products to implement a contamination control strategy, as outlined in Article 17 of the EU GMP Guidelines, and to maintain a cleanroom envi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmp-annex-1-sterile-manufacture-2022.json #### EU GMP Annex 3: Manufacture of Radiopharmaceuticals - **ID**: eu-gmp-annex-3-radiopharmaceuticals - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: EU GMP Annex 3 covers the manufacture of radiopharmaceuticals for human use, including positron emission tomography (PET) products, generator-derived products such as Tc-99m, and therapeutic radiophar... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gmp-annex-3-radiopharmaceuticals.json #### EU Good Distribution Practice (GDP) Guidelines 2013 - European Commission Guideline 2013/C 343/01 - **ID**: eu-good-distribution-practice-gdp-guidelines-2013 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The European Commission Guidelines on Good Distribution Practice of Medicinal Products for Human Use (2013/C 343/01), published in the Official Journal of the EU on 23 November 2013, set binding quali... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-good-distribution-practice-gdp-guidelines-2013.json #### EU GDP Good Distribution Practice 2013/C 343/01 - Medicinal Products Wholesale Distribution - **ID**: eu-good-manufacturing-practice-gdp-2013-c-343-4-medicinal-products - **Category**: Pharmaceuticals & Life Sciences - **Version**: 2.0 - **BLUF**: EU GDP Guidelines 2013/C 343/01 establish Good Distribution Practice standards for wholesale distribution of medicinal products - covering temperature control, supply chain integrity, falsified medici... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-good-manufacturing-practice-gdp-2013-c-343-4-medicinal-products.json #### Directive 2004/24/EC of the European Parliament and of the Council of 31 March 2004 amending, as regards traditional herbal medicinal products, Directive 2001/83/EC on the Community code relating to medicinal products for human use - **ID**: eu-herbal-medicinal-products-directive-2004-24 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: Establishes a simplified registration procedure for traditional herbal medicinal products (THMPs) in the EU based on at least 30 years of traditional use, including 15 years within the EU, under Artic... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-herbal-medicinal-products-directive-2004-24.json #### Regulation (EU) 2017/746 of the European Parliament and of the Council of 5 April 2017 on in vitro diagnostic medical devices - **ID**: eu-ivdr-2017-746-in-vitro-diagnostic-devices - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The EU In Vitro Diagnostic Regulation 2017/746 requires manufacturers of in vitro diagnostic medical devices to comply with the requirements outlined in Article 17, including the conduct of performanc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ivdr-2017-746-in-vitro-diagnostic-devices.json #### Regulation (EU) 2017/745 on medical devices, amending Directive 2001/83/EC, Regulation (EC) No 178/2002 and Regulation (EC) No 1223/2009 and repealing Council Directives 90/385/EEC and 93/42/EEC - **ID**: eu-medical-devices-regulation-mdr-2017-745-implementation - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The EU Medical Devices Regulation (MDR) 2017/745 establishes a comprehensive framework for the safety and performance of medical devices in the EU, requiring manufacturers to classify devices (Annex V... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-medical-devices-regulation-mdr-2017-745-implementation.json #### Directive 2001/83/EC of the European Parliament and of the Council of 6 November 2001 on the Community code relating to medicinal products for human use - **ID**: eu-medicinal-products-directive-2001-83-ec - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This Directive establishes the legal framework for the authorization, manufacturing, labelling, advertising, and pharmacovigilance of medicinal products for human use within the European Union. It app... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-medicinal-products-directive-2001-83-ec.json #### EU Medicinal Products for Human Use Directive 2001/83/EC - **ID**: eu-medicinal-products-human-directive-2001-83 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: Directive 2001/83/EC, as the core EU pharmaceutical legislation, requires a marketing authorisation (MA) for all medicinal products for human use before they may be placed on the EU market, establishe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-medicinal-products-human-directive-2001-83.json #### Commission Regulation (EC) No 141/2000 of 16 December 1999 on Orphan Medicinal Products - **ID**: eu-orphan-regulation-141-2000-designation-criteria - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires that medicinal products intended for the diagnosis, prevention or treatment of life-threatening or chronically debilitating conditions affecting not more than 5 in 10,000 pers... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-orphan-regulation-141-2000-designation-criteria.json #### Regulation (EC) No 1901/2006 of the European Parliament and of the Council of 12 December 2006 on medicinal products for paediatric use and amending Regulation (EEC) No 1768/92, Directive 2001/20/EC, Directive 2001/83/EC and Regulation (EC) No 726/2004 - **ID**: eu-paediatric-regulation-1901-2006-pharma - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation mandates that pharmaceutical developers submit a Paediatric Investigation Plan (PIP) to the European Medicines Agency's Paediatric Committee (PDCO) before initiating clinical trials fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-paediatric-regulation-1901-2006-pharma.json #### EU Paediatric Regulation 1901/2006 - Paediatric Investigation Plan and Waiver Requirements - **ID**: eu-paediatric-regulation-1901-2006-pip-paediatric-investigation-plan - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: Regulation (EC) No 1901/2006 requires all applications for new marketing authorisations (MAs) and extensions of indication to include a Paediatric Investigation Plan (PIP) agreed with EMA's Paediatric... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-paediatric-regulation-1901-2006-pip-paediatric-investigation-plan.json #### Regulation (EC) No 1901/2006 of the European Parliament and of the Council on Medicinal Products for Paediatric Use - **ID**: eu-paediatric-regulation-1901-2006-pips - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires pharmaceutical companies to submit a Paediatric Investigation Plan (PIP) for new medicinal products, as outlined in Article 7 of the regulation, and provides rewards for compl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-paediatric-regulation-1901-2006-pips.json #### EU GCP Directive 2005/28/EC and Clinical Trials Regulation 536/2014 - Good Clinical Practice in Clinical Trials - **ID**: eu-pharma-gcp-directive-2005-28-clinical-trials-conduct - **Category**: Pharmaceuticals & Life Sciences - **Version**: 2.0.0 - **BLUF**: EU Good Clinical Practice (GCP) requirements established under Directive 2005/28/EC and now primarily governed by Clinical Trials Regulation (CTR) 536/2014 set the ethical and scientific quality stand... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pharma-gcp-directive-2005-28-clinical-trials-conduct.json #### EU Pharmaceutical Regulation (2022/0134) - Article 5: Marketing Authorisation Requirements - **ID**: eu-pharma-regulation-2022-0134-article-5-marketing-authorisation - **Category**: Pharmaceuticals & Life Sciences - **Version**: 2.0.0 - **BLUF**: EU Pharmaceutical Regulation (proposed, replacing Directive 2001/83/EC) Article 5 maintains the core requirement that no medicinal product may be placed on the EU market without a marketing authorisat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pharma-regulation-2022-0134-article-5-marketing-authorisation.json #### Directive 2010/84/EU of the European Parliament and of the Council of 19 January 2010 amending, as regards pharmacovigilance, Directive 2001/83/EC on the Community code relating to medicinal products for human use - **ID**: eu-pharmacovigilance-directive-2010-84-eu - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This directive establishes a robust pharmacovigilance system for medicinal products in the EU, mandating marketing authorization holders (MAHs) to monitor, report, and manage adverse drug reactions. K... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pharmacovigilance-directive-2010-84-eu.json #### Commission Regulation (EU) No 1235/2010 of 15 December 2010 amending, as regards pharmacovigilance of medicinal products for human use, Regulation (EC) No 726/2004, Regulation (EC) No 1394/2007, Directive 2001/83/EC and Directive 2001/82/EC - **ID**: eu-pharmacovigilance-regulation-1235-2010-psur - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation requires marketing authorisation holders to submit periodic safety update reports (PSURs) to the European Medicines Agency, as outlined in Article 28a of Directive 2001/83/EC. It appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pharmacovigilance-regulation-1235-2010-psur.json #### Current Good Manufacturing Practice for Finished Pharmaceuticals - **ID**: fda-21-cfr-210-211-current-good-manufacturing-practice - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation, specifically 21 CFR 211.22, requires pharmaceutical manufacturers to establish and follow written procedures for quality control, and applies to all finished pharmaceuticals, as state... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-21-cfr-210-211-current-good-manufacturing-practice.json #### Investigational New Drug Application: IND Content, Phases of Investigation, Safety Reporting and Annual Reports - **ID**: fda-21-cfr-part-312-ind-investigational-new-drug - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation requires sponsors of investigational new drugs to submit an Investigational New Drug Application (IND) to the FDA, as outlined in 21 CFR 312.20-312.33, and to conduct investigations in... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-21-cfr-part-312-ind-investigational-new-drug.json #### New Drug Applications: Chemistry-Manufacturing-Controls, Clinical Data Requirements, Labelling and Post-Marketing Commitments - **ID**: fda-21-cfr-part-314-nda-new-drug-application - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires new drug applicants to submit a New Drug Application (NDA) that includes chemistry, manufacturing, and controls information, as well as clinical data, labeling, and post-marke... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-21-cfr-part-314-nda-new-drug-application.json #### Biological Products: General; and Licensing - **ID**: fda-21-cfr-part-600-601-biologics-licensing - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The FDA 21 CFR Parts 600-601 regulation requires manufacturers of biological products to submit a Biologics License Application (BLA) and comply with lot release testing and approval standards, as out... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-21-cfr-part-600-601-biologics-licensing.json #### 21st Century Cures Act - **ID**: fda-21st-century-cures-act-digital-health-provisions - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The 21st Century Cures Act, Section 3060, requires the FDA to prioritize the review of certain medical devices, including Software as a Medical Device (SaMD), and to establish a process for the regula... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-21st-century-cures-act-digital-health-provisions.json #### Adaptive Designs for Clinical Trials of Drugs and Biologics Guidance for Industry - **ID**: fda-adaptive-clinical-trial-design-guidance-2019 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This guidance provides recommendations for the use of adaptive designs in clinical trials, as outlined in Section III: Pre-Specified Adaptations, and applies to sponsors of clinical trials for drugs a... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-adaptive-clinical-trial-design-guidance-2019.json #### Biologics Price Competition and Innovation Act of 2009 - **ID**: fda-biosimilar-pathway-351k-biologics-competition-act - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The FDA 351(k) biosimilar pathway requires that an applicant demonstrate biosimilarity to a reference product, as outlined in Section 351(k) of the Public Health Service Act. This applies to manufactu... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-biosimilar-pathway-351k-biologics-competition-act.json #### Guidance for Industry: Breakthrough Therapies - **ID**: fda-breakthrough-therapy-designation-guidance-2018 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The FDA Breakthrough Therapy Designation Guidance 2018 requires sponsors to submit a breakthrough therapy designation request, as outlined in Section 506(a) of the Federal Food, Drug, and Cosmetic Act... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-breakthrough-therapy-designation-guidance-2018.json #### FDA PDUFA VII Performance Goals and Procedures 2023-2027 - **ID**: fda-pdufa-vii-goals-letter-2022 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The FDA PDUFA VII requires prescription drug manufacturers to meet specific performance goals and procedures for the review of new drug applications, as outlined in Section 735(1) of the Federal Food,... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-pdufa-vii-goals-letter-2022.json #### Framework for Real-World Evidence Program Guidance 2018 - **ID**: fda-real-world-evidence-program-guidance-2018 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The FDA Real-World Evidence Program Guidance 2018 requires sponsors to submit real-world evidence (RWE) studies that meet specific standards for data sources, study design, and fit-for-purpose, as out... - **Discovery URL**: https://bidda.com/api/v1/nodes/fda-real-world-evidence-program-guidance-2018.json #### Ghana Food and Drugs Authority Act 1992 PNDC Law 305B Public Health Act 851 Drug Registration GMP Inspection Pharmacovigilance and African Medicines Agency Alignment - **ID**: gh-food-and-drugs-authority-act-1992-pndc-law-305b - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: Ghana's Food and Drugs Authority (FDA Ghana) administered under the Public Health Act 851 of 2012 (which consolidates the Food and Drugs Law PNDC Law 305B of 1992) operates as the National Regulatory ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gh-food-and-drugs-authority-act-1992-pndc-law-305b.json #### ICH E11(R1): Clinical Investigation of Medicinal Products in the Pediatric Population - **ID**: ich-e11-r1-clinical-investigation-pediatric-population - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH E11(R1) sets the framework for clinical investigation of medicinal products in the paediatric population (birth to 18 years). The R1 addendum (2017) added specific guidance on extrapolation, model... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-e11-r1-clinical-investigation-pediatric-population.json #### ICH E2E - Pharmacovigilance Planning: Safety Specification and Pharmacovigilance Plan (2004) - **ID**: ich-e2e-pharmacovigilance-planning-2004 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH E2E (Step 4, November 2004) requires a Safety Specification and Pharmacovigilance Plan to be submitted with marketing authorisation applications, defining important potential risks, missing safety... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-e2e-pharmacovigilance-planning-2004.json #### ICH E6(R3) Good Clinical Practice Revision 2023 - Risk-Proportionate Approaches, Decentralised Trials, Remote Monitoring and Data Integrity Standards - **ID**: ich-e6-r3-good-clinical-practice-pharma-2023 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires sponsors to implement risk-proportionate approaches to clinical trials, as outlined in Article 1.61, and to ensure data integrity, as specified in Article 1.62. It applies to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-e6-r3-good-clinical-practice-pharma-2023.json #### ICH E8(R1) - General Considerations for Clinical Studies 2021: Quality, Risk-Based Approaches and Fit-for-Purpose Clinical Study Design - **ID**: ich-e8-r1-general-considerations-clinical-studies-2021 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires that clinical studies be designed to ensure the quality, safety, and efficacy of investigational products, as outlined in Article 1 of the ICH E8(R1) guideline, and applies to... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-e8-r1-general-considerations-clinical-studies-2021.json #### ICH E9(R1) - Addendum on Estimands and Sensitivity Analysis in Clinical Trials: Estimand Framework, Intercurrent Events and Missing Data Strategies - **ID**: ich-e9-r1-estimands-sensitivity-analysis-pharma-2019 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires sponsors of clinical trials to identify and justify the estimand of interest, as stated in Section 1.1, and to conduct sensitivity analyses to assess the robustness of the res... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-e9-r1-estimands-sensitivity-analysis-pharma-2019.json #### ICH M12 - Drug Interaction Studies: In Vitro and In Vivo Assessment, Clinical Pharmacokinetic Studies and Product Labelling Recommendations - **ID**: ich-m12-drug-interaction-studies-2023 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires sponsors to conduct in vitro and in vivo drug interaction studies, as outlined in Article 3, and to include the results in the product labeling, as stated in Article 7, to ens... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-m12-drug-interaction-studies-2023.json #### ICH M3(R2): Nonclinical Safety Studies for the Conduct of Human Clinical Trials and Marketing Authorization for Pharmaceuticals - **ID**: ich-m3-r2-nonclinical-safety-studies - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH M3(R2) sets the framework for nonclinical safety studies required to support human clinical trials and marketing authorisation. The guideline addresses general toxicology, safety pharmacology, gen... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-m3-r2-nonclinical-safety-studies.json #### ICH M4 - Common Technical Document (CTD): 5-Module Structure for Global Regulatory Submissions (2002) - **ID**: ich-m4-common-technical-document-2002 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH M4 (Step 4, 2001-2004) defines the 5-module Common Technical Document format - the universal standard for marketing authorisation applications in EU, US, Japan, Canada, and all ICH Member jurisdic... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-m4-common-technical-document-2002.json #### Assessment and Control of DNA Reactive (Mutagenic) Impurities in Pharmaceuticals to Limit Potential Carcinogenic Risk - **ID**: ich-m7-r1-mutagenic-impurities-2017 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires pharmaceutical manufacturers to assess and control DNA reactive (mutagenic) impurities in their products, as outlined in Section 1 of the ICH M7(R1) guideline, to limit potent... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-m7-r1-mutagenic-impurities-2017.json #### ICH Q10 Pharmaceutical Quality System - Design, Development, Manufacturing and Discontinuation: Quality System Elements and Enablers - **ID**: ich-q10-pharmaceutical-quality-system - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires pharmaceutical manufacturers to establish a quality system that includes design, development, manufacturing, and discontinuation, as outlined in Clause 1.1. It applies to all ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q10-pharmaceutical-quality-system.json #### ICH Q10 Pharmaceutical Quality System - Product Lifecycle Management - **ID**: ich-q10-pharmaceutical-quality-system-lifecycle-management - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH Q10 describes a comprehensive pharmaceutical quality system (PQS) model covering the entire product lifecycle from development through discontinuation. It builds on Good Manufacturing Practice (GM... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q10-pharmaceutical-quality-system-lifecycle-management.json #### ICH Q11: Development and Manufacture of Drug Substances: Design Space, Control Strategy and Manufacturing Process Development - **ID**: ich-q11-drug-substance-development-manufacture - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires drug manufacturers to establish a control strategy that includes design space, and to develop a manufacturing process that meets the requirements of ICH Q11, Article 1. Accord... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q11-drug-substance-development-manufacture.json #### ICH Q12: Technical and Regulatory Considerations for Pharmaceutical Product Lifecycle Management: Established Conditions and Post-Approval Changes - **ID**: ich-q12-pharmaceutical-product-lifecycle-management - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: ICH Q12 requires pharmaceutical manufacturers to establish and maintain a pharmaceutical quality system, as outlined in Article 1 of the guideline, and to implement post-approval changes in accordance... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q12-pharmaceutical-product-lifecycle-management.json #### ICH Q13 - Continuous Manufacturing of Drug Substances and Drug Products: Regulatory Expectations, Control Strategy and Real-Time Release Testing - **ID**: ich-q13-continuous-manufacturing-2022 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: ICH Q13 requires pharmaceutical manufacturers to implement a control strategy for continuous manufacturing, as outlined in Section 3, and to conduct real-time release testing, as specified in Section ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q13-continuous-manufacturing-2022.json #### ICH Q14 - Analytical Procedure Development and Lifecycle Management (2023) - **ID**: ich-q14-analytical-procedure-development-2023 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH Q14 (Step 4, November 2023) establishes a science- and risk-based framework for analytical procedure development, defining Analytical Target Profiles (ATP) and Analytical Procedure Performance Ind... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q14-analytical-procedure-development-2023.json #### ICH Q2(R2) - Validation of Analytical Procedures: Methodology and Acceptance Criteria (2022) - **ID**: ich-q2-r2-validation-analytical-procedures-2022 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH Q2(R2) (Step 4, November 2022) updates the 1994 Q2(R1) validation guideline by integrating life sciences analytical techniques (biological assays, spectroscopic methods, multivariate analysis), de... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q2-r2-validation-analytical-procedures-2022.json #### ICH Q3A(R2): Impurities in New Drug Substances - **ID**: ich-q3a-r2-impurities-new-drug-substances - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH Q3A(R2) sets reporting, identification, and qualification thresholds for organic impurities in new drug substances based on maximum daily dose. The guideline applies to chemically synthesised new ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q3a-r2-impurities-new-drug-substances.json #### ICH Q3B(R2): Impurities in New Drug Products - **ID**: ich-q3b-r2-impurities-new-drug-products - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH Q3B(R2) sets thresholds for degradation products in new drug products based on maximum daily dose. The guideline addresses impurities arising during manufacture, storage, or stability testing of t... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q3b-r2-impurities-new-drug-products.json #### ICH Q4B: Evaluation and Recommendation of Pharmacopoeial Texts for Use in the ICH Regions - **ID**: ich-q4b-pharmacopoeial-texts - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH Q4B provides a framework for evaluating Ph. Eur., USP, and JP pharmacopoeial general chapters to determine interchangeability across ICH regions, reducing duplicative testing. Annex 1 through Anne... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q4b-pharmacopoeial-texts.json #### ICH Q5E: Comparability of Biotechnological/Biological Products Subject to Changes in their Manufacturing Process - **ID**: ich-q5e-comparability-biotech-products - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH Q5E sets the framework for demonstrating that a biotech or biological product remains the same when its manufacturing process changes. The guideline applies to facility moves, cell line changes, f... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q5e-comparability-biotech-products.json #### ICH Q9(R1) Quality Risk Management - **ID**: ich-q9-r1-quality-risk-management-pharma-2023 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH Q9(R1) requires pharmaceutical manufacturers to implement a quality risk management system, as outlined in Section 1.1, to ensure the quality of their products. This applies to all pharmaceutical ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q9-r1-quality-risk-management-pharma-2023.json #### ICH Q9(R1) Quality Risk Management - Risk Assessment, Risk Control and Risk Communication in Pharmaceutical Manufacturing - **ID**: ich-q9-r1-quality-risk-management-pharmaceutical - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH Q9(R1) Quality Risk Management is the revised version of the International Council for Harmonisation of Technical Requirements for Pharmaceuticals for Human Use (ICH) Q9 guideline, reached Step 4 ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-q9-r1-quality-risk-management-pharmaceutical.json #### ICH S2(R1): Genotoxicity Testing and Data Interpretation for Pharmaceuticals Intended for Human Use - **ID**: ich-s2-r1-genotoxicity-testing-data-interpretation - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ICH S2(R1) defines the standard battery of genotoxicity tests for pharmaceuticals intended for human use, supporting first-in-human trials and marketing applications. The R1 revision rationalised the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-s2-r1-genotoxicity-testing-data-interpretation.json #### ICH S9 - Nonclinical Evaluation for Anticancer Pharmaceuticals: Timing of Studies, General Toxicology, Genotoxicity and Reproductive Toxicology - **ID**: ich-s9-nonclinical-anticancer-pharmaceutical-2010 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation requires that nonclinical studies for anticancer pharmaceuticals be conducted in accordance with ICH S9, specifically Section 3, to ensure the safety and efficacy of these products. It... - **Discovery URL**: https://bidda.com/api/v1/nodes/ich-s9-nonclinical-anticancer-pharmaceutical-2010.json #### Indonesia BPOM Drug Registration Regulations Badan Pengawas Obat dan Makanan Marketing Authorisation GMP Pharmacovigilance and Halal Certification Framework - **ID**: id-bpom-drug-registration-regulations-badan-pengawas-obat-makanan - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Indonesia Badan Pengawas Obat dan Makanan (BPOM) National Agency of Drug and Food Control administered under Presidential Regulation No. 80 of 2017 (as amended) establishes the comprehensive pharm... - **Discovery URL**: https://bidda.com/api/v1/nodes/id-bpom-drug-registration-regulations-badan-pengawas-obat-makanan.json #### India Drugs and Cosmetics Act 1940 - CDSCO Drug Approval, Schedule M GMP and Clinical Trial Regulation - **ID**: india-drugs-cosmetics-act-1940-cdsco - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: India's Drugs and Cosmetics Act 1940 (D&C Act) and the New Drugs and Clinical Trials Rules 2019 (NDCT Rules), administered by the Central Drugs Standard Control Organisation (CDSCO) under the Drug Con... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-drugs-cosmetics-act-1940-cdsco.json #### ISO 13485:2016 Medical Devices - Quality Management Systems - Requirements for Regulatory Purposes - **ID**: iso-13485-2016-medical-devices-quality-management - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: ISO 13485:2016 requires medical device manufacturers to establish a quality management system that meets regulatory requirements, as outlined in Clause 4.1, and to implement risk management processes,... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-13485-2016-medical-devices-quality-management.json #### ISO 14644-1:2015 Cleanrooms and Associated Controlled Environments - Part 1: Classification of Air Cleanliness by Particle Concentration - **ID**: iso-14644-1-2015-cleanrooms-classification - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation requires cleanroom operators to classify their air cleanliness by particle concentration, as specified in Clause 5, and applies to all cleanroom facilities in the pharmaceutical and li... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14644-1-2015-cleanrooms-classification.json #### Japan Pharmaceutical and Medical Device Act (PMDA) - Drug Approval: Clinical Trial Notification, PMDA Consultation, Approval Review, Manufacturing Site Registration, GMP Conformity Assessment and Post-Marketing Vigilance - **ID**: japan-pmda-pharmaceutical-affairs-law - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation governs the approval pathway for pharmaceuticals in Japan, requiring clinical trial notifications, PMDA consultation, manufacturing site registration, GMP conformity assessment, and po... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-pmda-pharmaceutical-affairs-law.json #### Japan Pharmaceutical and Medical Devices Act 2014 - **ID**: jp-pharmaceutical-medical-devices-act-2014 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Act on Securing Quality, Efficacy and Safety of Products Including Pharmaceuticals and Medical Devices (Act No. 145 of 1960, substantially amended in 2014 as the Pharmaceutical and Medical Devices... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-pharmaceutical-medical-devices-act-2014.json #### Mexico Ley General de Salud General Health Law COFEPRIS Drug Registration Manufacturing Authorisation Health Surveillance and Pharmacovigilance Framework - **ID**: mx-ley-general-de-salud-cofepris-pharmaceutical-regulation - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Mexican Ley General de Salud (General Health Law) of 7 February 1984 as amended establishes the comprehensive framework for health regulation including pharmaceuticals administered by the Comisión... - **Discovery URL**: https://bidda.com/api/v1/nodes/mx-ley-general-de-salud-cofepris-pharmaceutical-regulation.json #### OECD Revised Principles of Good Laboratory Practice (1997) - **ID**: oecd-good-laboratory-practice-principles-revised-1997 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The OECD Revised Principles of Good Laboratory Practice (1997) require test facilities to establish a quality assurance programme, as outlined in Principle 2, and to designate a study director, as sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-good-laboratory-practice-principles-revised-1997.json #### Saudi Arabia SFDA Pharmaceutical Regulations Saudi Food and Drug Authority Drug Registration Pricing Manufacturing Authorisation Vision 2030 Localisation Framework - **ID**: sa-sfda-pharmaceutical-regulations-saudi-food-drug-authority - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Kingdom of Saudi Arabia Saudi Food and Drug Authority (SFDA) administers the comprehensive pharmaceutical regulation framework under the SFDA Law promulgated by Royal Decree No. M/6 of 1428H estab... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-sfda-pharmaceutical-regulations-saudi-food-drug-authority.json #### Health Products Act 2007 - Part 2 ADMINISTRATION - **ID**: sg-health-products-act-part-ii-market-approval - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This article establishes the administrative framework for the Health Products Act, defining the Authority's responsibility and its powers to appoint enforcement officers, analysts, and advisory commit... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-health-products-act-part-ii-market-approval.json #### Therapeutic Products Act 2016 - **ID**: singapore-hsa-therapeutic-products-act-2016 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Therapeutic Products Act 2016 requires that all therapeutic products be registered with the Health Sciences Authority (HSA) before they can be sold or supplied in Singapore, as stated in Section 4... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-hsa-therapeutic-products-act-2016.json #### South Korea MFDS Pharmaceutical Affairs Act 2023 - Drug Approval, GMP Inspection and Pharmacovigilance - **ID**: south-korea-mfds-pharmaceutical-act-2023 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: South Korea's Pharmaceutical Affairs Act (PAA, Act No. 901, 29 December 1953, consolidated to 2023) administered by the Ministry of Food and Drug Safety (MFDS - Sikhum-uiyakhum) regulates drug marketi... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-korea-mfds-pharmaceutical-act-2023.json #### UK Human Medicines Regulations 2012 - **ID**: uk-human-medicines-regulations-2012 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Human Medicines Regulations 2012 (SI 2012/1916) is the primary UK pharmaceutical legislation governing the authorisation, manufacture, importation, distribution, and advertising of human medicines... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-human-medicines-regulations-2012.json #### The Human Medicines Regulations 2012 - **ID**: uk-human-medicines-regulations-2012-si-1916 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The UK Human Medicines Regulations 2012 (SI 2012/1916) require marketing authorisation holders to comply with pharmacovigilance requirements, as outlined in Regulation 187. This regulation applies to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-human-medicines-regulations-2012-si-1916.json #### The Medicines for Human Use (Clinical Trials) Regulations 2004 - **ID**: uk-mhra-good-clinical-practice-regulations-2004 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The UK MHRA Good Clinical Practice Regulations 2004 require sponsors and investigators to comply with the principles of Good Clinical Practice, as outlined in Regulation 3, and to obtain authorization... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mhra-good-clinical-practice-regulations-2004.json #### US 21 CFR Part 1308: Schedules of Controlled Substances (DEA) - **ID**: us-21-cfr-part-1308-dea-schedules-controlled-substances - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 1308 implements the Controlled Substances Act (CSA) Schedules I through V by listing controlled substances by chemical identity and scheduling status. Schedule I substances have no curr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-1308-dea-schedules-controlled-substances.json #### US 21 CFR Part 207: Drug Establishment Registration and Drug Listing - **ID**: us-21-cfr-part-207-drug-establishment-registration - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 207 requires owners and operators of all drug establishments to register with the FDA and submit information about each drug they manufacture, repack, relabel, or salvage. The regulatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-207-drug-establishment-registration.json #### US 21 CFR Part 210: Current Good Manufacturing Practice in Manufacturing Processing Packing or Holding of Drugs - General - **ID**: us-21-cfr-part-210-cgmp-general-provisions - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 210 establishes the general provisions and definitions for current good manufacturing practice (cGMP) regulations under the Federal Food Drug and Cosmetic Act. The regulation defines ke... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-210-cgmp-general-provisions.json #### US 21 CFR Part 211: Current Good Manufacturing Practice for Finished Pharmaceuticals - **ID**: us-21-cfr-part-211-cgmp-finished-pharmaceuticals - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 211 prescribes the cGMP requirements for finished pharmaceuticals manufactured, processed, packed, or held in the US. Subparts cover organization and personnel, buildings and facilities... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-211-cgmp-finished-pharmaceuticals.json #### US 21 CFR Part 312: Investigational New Drug Application - **ID**: us-21-cfr-part-312-investigational-new-drug - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 312 sets requirements for the Investigational New Drug (IND) application process governing clinical investigation of drugs and biologics in humans. The regulation covers IND content (Fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-312-investigational-new-drug.json #### US 21 CFR Part 314: Applications for FDA Approval to Market a New Drug - **ID**: us-21-cfr-part-314-applications-fda-approval-new-drug - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 314 sets requirements for New Drug Application (NDA) and Abbreviated New Drug Application (ANDA) submissions to FDA for marketing approval. The regulation covers NDA content (clinical a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-314-applications-fda-approval-new-drug.json #### US 21 CFR Part 320: Bioavailability and Bioequivalence Requirements - **ID**: us-21-cfr-part-320-bioavailability-bioequivalence - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 320 sets the requirements for demonstrating bioavailability (BA) and bioequivalence (BE) for drug products submitted under NDA, ANDA, INDs, and supplements. The regulation defines BA as... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-320-bioavailability-bioequivalence.json #### US 21 CFR Part 50: Protection of Human Subjects - **ID**: us-21-cfr-part-50-protection-human-subjects - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 50 sets requirements for informed consent of human subjects in FDA-regulated clinical investigations of drugs, biologics, devices, and other products. The regulation covers general requ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-50-protection-human-subjects.json #### US 21 CFR Part 56: Institutional Review Boards - **ID**: us-21-cfr-part-56-institutional-review-boards - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 56 sets requirements for IRB membership, functions, operations, review of research, recordkeeping, and IRB-related submissions and approvals for FDA-regulated clinical investigations. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-56-institutional-review-boards.json #### US 21 CFR Part 600: Biological Products: General - **ID**: us-21-cfr-part-600-biological-products-general - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: US 21 CFR Part 600 sets out general requirements for the regulation of biological products including establishment standards, inspection authority of FDA, reporting of adverse experiences and biologic... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-21-cfr-part-600-biological-products-general.json #### US Controlled Substances Act (21 USC ch 13): Scheduling, Registration and Trafficking Penalties - **ID**: us-controlled-substances-act - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Controlled Substances Act (21 U.S.C. ch. 13) is the federal statute regulating the manufacture, distribution, dispensing and possession of controlled substances, administered by the Drug Enforceme... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-controlled-substances-act.json #### United States Controlled Substances Act (Title 21 USC Chapter 13): Congressional Findings, Schedules of Controlled Substances, Registration of Manufacturers and Distributors, Prescription Requirements, and Penalties - **ID**: us-controlled-substances-act-21-usc-ch13 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Controlled Substances Act, codified at Title 21 of the United States Code, Chapter 13, is the principal federal statute governing the manufacture, distribution, dispensing, importation, and export... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-controlled-substances-act-21-usc-ch13.json #### US DEA 21 CFR Parts 1301-1308 - Controlled Substances Registration and Manufacturing Requirements - **ID**: us-dea-21-cfr-1301-1308-controlled-substances-registration-manufacturing - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The US Drug Enforcement Administration (DEA) regulations at 21 CFR Parts 1301-1308 implement the Controlled Substances Act (CSA), requiring registration for all manufacturers, distributors, dispensers... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dea-21-cfr-1301-1308-controlled-substances-registration-manufacturing.json #### 21 CFR Part 1308 - Schedules of Controlled Substances (DEA) - **ID**: us-dea-21-cfr-1308-controlled-substances-schedules - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: DEA 21 CFR Part 1308 lists the schedules of controlled substances established under the Controlled Substances Act, placing each substance in Schedule I through Schedule V according to its abuse potent... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dea-21-cfr-1308-controlled-substances-schedules.json #### Drug Supply Chain Security Act - **ID**: us-dscsa-2013-drug-supply-chain-security-act - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The Drug Supply Chain Security Act (DSCSA) requires pharmaceutical manufacturers, wholesalers, and dispensers to implement a system for tracking and tracing certain prescription drugs, as outlined in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dscsa-2013-drug-supply-chain-security-act.json #### 21 CFR Part 203 - Prescription Drug Marketing (Samples and Wholesale Distribution) - **ID**: us-fda-21-cfr-203-prescription-drug-marketing - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 203 implements the Prescription Drug Marketing Act and governs the sale, purchase, distribution and sampling of prescription drugs. As a general sales restriction, no person may sell, purc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-203-prescription-drug-marketing.json #### 21 CFR Part 205 - FDA Guidelines for State Licensing of Wholesale Prescription Drug Distributors - **ID**: us-fda-21-cfr-205-wholesale-drug-distribution-licensing - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 205 sets the minimum standards and guidelines for the state licensing of wholesale prescription drug distributors implementing the Prescription Drug Marketing Act. A wholesale distributor ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-205-wholesale-drug-distribution-licensing.json #### Current Good Manufacturing Practice for Finished Pharmaceuticals - **ID**: us-fda-21-cfr-211-cgmp-finished-pharmaceuticals - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation establishes the minimum requirements for methods, facilities, and controls used in the manufacturing, processing, packing, or holding of finished pharmaceuticals to ensure their safety... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-211-cgmp-finished-pharmaceuticals.json #### Investigational New Drug Application - **ID**: us-fda-21-cfr-312-ind-application - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation establishes the requirements for submitting an Investigational New Drug (IND) application to the FDA, including content, safety reporting, protocol amendments, and annual reports, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-312-ind-application.json #### US FDA 21 CFR Part 312 - Investigational New Drug (IND) Application Requirements - **ID**: us-fda-21-cfr-312-ind-application-investigational-new-drug - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: FDA regulations at 21 CFR Part 312 govern the Investigational New Drug (IND) application process required before conducting clinical studies of unapproved drugs or approved drugs for new indications i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-312-ind-application-investigational-new-drug.json #### Applications for FDA Approval to Market a New Drug - **ID**: us-fda-21-cfr-314-nda-application - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation establishes the requirements for submitting a New Drug Application (NDA) to the U.S. Food and Drug Administration (FDA) under 21 U.S.C. 355, including content, format, review timelines... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-314-nda-application.json #### 21 CFR Part 320 - Bioavailability and Bioequivalence Requirements (FDA) - **ID**: us-fda-21-cfr-320-bioavailability-bioequivalence-requirements - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: FDA 21 CFR Part 320 sets the bioavailability and bioequivalence requirements for drug products, requiring applicants to submit the required data, apply the waiver criteria where appropriate, establish... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-320-bioavailability-bioequivalence-requirements.json #### 21 CFR Part 600 - FDA Biological Products: General Standards, Records and Reporting - **ID**: us-fda-21-cfr-600-biological-products-general-standards - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: 21 CFR Part 600 sets the general standards applicable to licensed biological products regulated by the U.S. Food and Drug Administration through the Center for Biologics Evaluation and Research. A lic... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-600-biological-products-general-standards.json #### US FDA 21 CFR Part 11 - Electronic Records and Electronic Signatures in FDA-Regulated Industries - **ID**: us-fda-21-cfr-part-11-electronic-records-signatures - **Category**: Pharmaceuticals & Life Sciences - **Version**: 2.0.0 - **BLUF**: US FDA 21 CFR Part 11 establishes the criteria under which electronic records and electronic signatures are considered trustworthy, reliable, and equivalent to paper records and handwritten signatures... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-21-cfr-part-11-electronic-records-signatures.json #### US FDA Amendments Act 2007 FDAAA Public Law 110-85 REMS Risk Evaluation and Mitigation Strategies Post-Market Safety Authority Clinical Trial Registration and User Fees - **ID**: us-fda-amendments-act-2007-fdaaa-pl-110-85 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Food and Drug Administration Amendments Act of 2007 Public Law 110-85 enacted on 27 September 2007 substantially expands FDA authority to ensure post-market drug safety organised in nine titles co... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-amendments-act-2007-fdaaa-pl-110-85.json #### 21 CFR Part 11 - Electronic Records; Electronic Signatures - **ID**: us-fda-cfr-21-part-11-electronic-records - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation outlines the scope, implementation, definitions, and controls for electronic records and electronic signatures in closed and open systems. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-cfr-21-part-11-electronic-records.json #### 21 CFR Part 11 - Electronic Records; Electronic Signatures - **ID**: us-fda-cfr-21-part-11-electronic-records-signatures - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation establishes the criteria under which the U.S. Food and Drug Administration considers electronic records, electronic signatures, and handwritten signatures executed to electronic record... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-cfr-21-part-11-electronic-records-signatures.json #### 21 CFR Part 312 - Investigational New Drug Application - **ID**: us-fda-cfr-21-part-312-ind-application - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation establishes the requirements for submitting and maintaining an Investigational New Drug Application (IND), detailing the responsibilities of sponsors and investigators in conducting cl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-cfr-21-part-312-ind-application.json #### 21 CFR Part 314 - Applications for FDA Approval to Market a New Drug - **ID**: us-fda-cfr-21-part-314-new-drug-applications - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: This regulation outlines the requirements for submitting, amending, and maintaining applications for FDA approval to market a new drug, including postmarketing reporting obligations. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-cfr-21-part-314-new-drug-applications.json #### US FDA Combination Products - 21 CFR Part 3: Device/Drug/Biologic Combination Classification, Primary Mode of Action (PMOA) Determination, Intercenter Agreement (ICA) Assignment, Integrated Review Process, NDA/PMA/BLA Pathway Selection and Post-Market Surveillance Responsibilities - **ID**: us-fda-combination-products-21-cfr-3 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation governs the classification, jurisdictional assignment, and regulatory pathway for combination products consisting of drugs, devices, and/or biological products under 21 CFR Part 3. It ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-combination-products-21-cfr-3.json #### US Food and Drug Administration Modernization Act of 1997 (Public Law 105-115) - FDA Statutory Reform - **ID**: us-fda-modernization-act-1997-pl-105-115 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Food and Drug Administration Modernization Act of 1997 reauthorised the Prescription Drug User Fee Act, created an accelerated approval pathway for drugs treating serious or life-threatening condi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-modernization-act-1997-pl-105-115.json #### US FDA Real-World Evidence Programme 2018 - RWE Framework for Drug and Biological Products: Real-World Data Sources, Study Designs, Data Standards, Regulatory Submissions and Programme Guidance - **ID**: us-fda-real-world-evidence-programme-pharma - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation outlines the FDA's framework for using real-world data (RWD) and real-world evidence (RWE) to support regulatory decisions for drugs and biological products, including approval of new ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fda-real-world-evidence-programme-pharma.json #### Federal Food, Drug, and Cosmetic Act 1938 - 21 USC 301 - **ID**: us-fdca-food-drug-cosmetic-act-21-usc-301 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: Section 301 of title 21 of the United States Code is the short title provision of the Federal Food, Drug, and Cosmetic Act (FDCA, Public Law 75-717, enacted 25 June 1938), the principal US statute gov... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fdca-food-drug-cosmetic-act-21-usc-301.json #### US Federal Food, Drug, and Cosmetic Act (21 USC ch 9): Prohibited Acts, Adulteration, New Drug Approval and Penalties - **ID**: us-federal-food-drug-and-cosmetic-act - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Federal Food, Drug, and Cosmetic Act (FD&C Act, 21 U.S.C. ch. 9) is the principal US statute regulating the safety and labeling of food, drugs, medical devices, cosmetics and tobacco, administered... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-food-drug-and-cosmetic-act.json #### US Orphan Drug Act (21 USC ch 9): Incentives for Rare Disease Drugs - **ID**: us-orphan-drug-act - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.0 - **BLUF**: The Orphan Drug Act, codified within the Federal Food, Drug, and Cosmetic Act (21 U.S.C. ch. 9, sections 360aa to 360ff), creates incentives to develop drugs for rare diseases or conditions, administe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-orphan-drug-act.json #### Designating an Orphan Product: Drugs and Biological Products - **ID**: us-orphan-drug-act-1983-rare-diseases - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: This regulation establishes the process for sponsors to request orphan drug designation for drugs or biological products intended to prevent, diagnose, or treat rare diseases or conditions, as defined... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-orphan-drug-act-1983-rare-diseases.json #### Orphan Drug Act of 1983, Section 526 - Designation of Orphan Drugs - **ID**: us-orphan-drug-act-1983-section-526-designation - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The Orphan Drug Act of 1983, Section 526, requires the FDA to designate a drug as an orphan drug if it is intended for the treatment of a rare disease or condition, defined as one that affects fewer t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-orphan-drug-act-1983-section-526-designation.json #### Prescription Drug User Fee Amendments - **ID**: us-pdufa-prescription-drug-user-fee-act - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The Prescription Drug User Fee Act (PDUFA) authorizes the FDA to collect user fees from persons submitting certain human drug applications for review or named as sponsors in approved applications. App... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pdufa-prescription-drug-user-fee-act.json #### WHO Good Manufacturing Practices for Pharmaceutical Products: Main Principles - **ID**: who-gmp-good-manufacturing-practices-2021 - **Category**: Pharmaceuticals & Life Sciences - **Version**: 1.0.1 - **BLUF**: The WHO Good Manufacturing Practices require pharmaceutical manufacturers to establish a quality management system, as outlined in Section 1.1, and to ensure that personnel are trained and qualified, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/who-gmp-good-manufacturing-practices-2021.json ### Public Sector & Government Procurement (147 nodes) #### Argentina Decree 1023/2001 Regimen de Contrataciones de la Administracion Nacional and COMPR.AR Electronic Procurement Platform - **ID**: ar-decree-1023-2001-regimen-contrataciones-administracion-nacional-comprar - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Argentine Decree of Necessity and Urgency No. 1023/2001 (Decreto de Necesidad y Urgencia 1023/2001) issued 13 August 2001 and effective 16 August 2001 ratifies and establishes the Regimen de Contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/ar-decree-1023-2001-regimen-contrataciones-administracion-nacional-comprar.json #### Austria Bundesvergabegesetz 2018 (BVergG 2018) - **ID**: at-bvergg-2018-bundesvergabegesetz - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Bundesvergabegesetz 2018 (BVergG 2018), enacted via the Vergaberechtsreformgesetz 2018 (BGBl. I Nr. 65/2018, published 20 August 2018), is Austria's federal Public Procurement Act, transposing EU ... - **Discovery URL**: https://bidda.com/api/v1/nodes/at-bvergg-2018-bundesvergabegesetz.json #### Australia Commonwealth Procurement Rules (CPRs) under the Public Governance, Performance and Accountability Act 2013 + AusTender - **ID**: au-commonwealth-procurement-rules-pgpa-act-2013-austender - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Commonwealth Procurement Rules (CPRs) are the principal procurement framework for Australian federal government entities, issued by the Minister for Finance under section 105B of the Public Govern... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-commonwealth-procurement-rules-pgpa-act-2013-austender.json #### Bulgaria Public Procurement Act (Zakon za obshtestvenite porychki / ZOP) of 13 February 2016 effective 15 April 2016 and AOP / CAIS EOP - **ID**: bg-public-procurement-act-zop-2016-aop-cais-portal - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Bulgaria Public Procurement Act (Zakon za obshtestvenite porychki / ZOP) of 13 February 2016 (State Gazette No. 13 of 16 February 2016) effective 15 April 2016 as substantially amended... - **Discovery URL**: https://bidda.com/api/v1/nodes/bg-public-procurement-act-zop-2016-aop-cais-portal.json #### Bolivia Decreto Supremo 0181 of 28 June 2009 - Normas Basicas del Sistema de Administracion de Bienes y Servicios (NB-SABS) as amended - **ID**: bo-ds-0181-2009-normas-basicas-sabs-sistema-administracion-bienes-servicios - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Bolivian Decreto Supremo 0181 of 28 June 2009 - Normas Basicas del Sistema de Administracion de Bienes y Servicios (NB-SABS / Basic Norms of the Goods and Services Administration System) approved ... - **Discovery URL**: https://bidda.com/api/v1/nodes/bo-ds-0181-2009-normas-basicas-sabs-sistema-administracion-bienes-servicios.json #### Brazil Lei 14.133, de 1 de abril de 2021 — Nova Lei de Licitacoes e Contratos Administrativos (New Public Procurement Law) - **ID**: br-lei-14133-2021-new-public-procurement-law-nova-lei-licitacoes - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Lei 14.133, de 1 de abril de 2021 (the Nova Lei de Licitacoes e Contratos Administrativos / New Public Procurement Law) is the unified Brazilian federal procurement statute that consolidates and repla... - **Discovery URL**: https://bidda.com/api/v1/nodes/br-lei-14133-2021-new-public-procurement-law-nova-lei-licitacoes.json #### Botswana Public Procurement Act 24 of 2021 (effective 1 April 2022) and the Public Procurement Regulatory Authority - **ID**: bw-public-procurement-act-24-2021-ppra-eprocurement - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Botswana Public Procurement Act 24 of 2021 (Act No. 24 of 2021, Government Gazette of Botswana No. 53 of 12 October 2021) effective 1 April 2022 is the principal Botswanan statute gove... - **Discovery URL**: https://bidda.com/api/v1/nodes/bw-public-procurement-act-24-2021-ppra-eprocurement.json #### Canada Treasury Board Directive on the Management of Procurement + CanadaBuys Federal Procurement Platform - **ID**: ca-treasury-board-contracting-policy-canadabuys-procurement - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Treasury Board of Canada Secretariat (TBS) Directive on the Management of Procurement (effective 13 May 2021, with subsequent amendments) is the principal procurement framework for federal departm... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-treasury-board-contracting-policy-canadabuys-procurement.json #### Switzerland Federal Act on Public Procurement (Bundesgesetz uber das offentliche Beschaffungswesen / BoeB, revised version effective 1 January 2021) - **ID**: ch-federal-act-on-public-procurement-boeb-revised-2021 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Swiss Federal Act on Public Procurement (Bundesgesetz uber das offentliche Beschaffungswesen / BoeB in German, Loi federale sur les marches publics / LMP in French, Legge federale sugli acquisti p... - **Discovery URL**: https://bidda.com/api/v1/nodes/ch-federal-act-on-public-procurement-boeb-revised-2021.json #### Cote d'Ivoire Code des Marches Publics Decret 2009-259 of 6 August 2009 as amended by Decret 2019-679 and ANRMP / SIGOMAP - **ID**: ci-code-des-marches-publics-decret-2009-259-anrmp-sygmaa - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Cote d'Ivoire Code des Marches Publics (Public Procurement Code) approved by Decret 2009-259 of 6 August 2009 (Journal Officiel de la Republique de Cote d'Ivoire) as substantially amended and mode... - **Discovery URL**: https://bidda.com/api/v1/nodes/ci-code-des-marches-publics-decret-2009-259-anrmp-sygmaa.json #### Chile Ley 19.886 — Bases sobre Contratos Administrativos de Suministro y Prestacion de Servicios + ChileCompra / MercadoPublico Platform - **ID**: cl-ley-19886-bases-contratos-administrativos-suministro-servicios-chilecompra - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Ley 19.886 de Bases sobre Contratos Administrativos de Suministro y Prestacion de Servicios (Law of the Foundations of Administrative Contracts of Supply and Provision of Services), published 30 July ... - **Discovery URL**: https://bidda.com/api/v1/nodes/cl-ley-19886-bases-contratos-administrativos-suministro-servicios-chilecompra.json #### Cameroon Decret 2018-366 of 20 June 2018 portant Code des Marches Publics and ARMP / COLEPS - **ID**: cm-decret-2018-366-code-marches-publics-armp-coleps - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Cameroon Decret 2018-366 of 20 June 2018 portant Code des Marches Publics (Decree No. 2018-366 of 20 June 2018 establishing the Public Procurement Code) effective 20 June 2018 as suppl... - **Discovery URL**: https://bidda.com/api/v1/nodes/cm-decret-2018-366-code-marches-publics-armp-coleps.json #### China Government Procurement Law of the People's Republic of China (2002, as amended 2014) + Implementing Regulations - **ID**: cn-government-procurement-law-of-the-peoples-republic-of-china-2002-amended - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Government Procurement Law of the People's Republic of China was adopted by the Standing Committee of the National People's Congress on 29 June 2002 and entered into force on 1 January 2003, with ... - **Discovery URL**: https://bidda.com/api/v1/nodes/cn-government-procurement-law-of-the-peoples-republic-of-china-2002-amended.json #### Colombia Estatuto General de Contratacion de la Administracion Publica (Ley 80 of 1993, Ley 1150 of 2007, Ley 2069 of 2020) and SECOP Electronic Procurement Platform - **ID**: co-estatuto-general-contratacion-ley-80-1993-ley-1150-2007-ley-2069-2020 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Colombian Estatuto General de Contratacion de la Administracion Publica (General Statute on Public Administration Contracting) is comprised of Ley 80 of 28 October 1993 (foundational law), Ley 115... - **Discovery URL**: https://bidda.com/api/v1/nodes/co-estatuto-general-contratacion-ley-80-1993-ley-1150-2007-ley-2069-2020.json #### Costa Rica Ley General de Contratacion Publica No. 9986 of 27 May 2021 effective 1 December 2022 and SICOP - **ID**: cr-ley-general-contratacion-publica-9986-2021-effective-2022 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Costa Rican Ley General de Contratacion Publica No. 9986 (General Law of Public Procurement) approved 27 May 2021 (La Gaceta No. 103 of 31 May 2021) and effective 1 December 2022 is the principal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/cr-ley-general-contratacion-publica-9986-2021-effective-2022.json #### Czech Republic Act No. 134/2016 Coll. on Public Procurement (Zakon o zadavani verejnych zakazek / ZZVZ) effective 1 October 2016 - **ID**: cz-act-134-2016-public-procurement-zzvz-effective-2016-10-01 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Czech Act No. 134/2016 Coll. on Public Procurement (Zakon o zadavani verejnych zakazek / ZZVZ) approved 19 April 2016 and effective 1 October 2016 is the principal Czech statute governing procurem... - **Discovery URL**: https://bidda.com/api/v1/nodes/cz-act-134-2016-public-procurement-zzvz-effective-2016-10-01.json #### Germany Gesetz gegen Wettbewerbsbeschränkungen (GWB) Part 4 - Public Procurement (§§97-184) - **ID**: de-gwb-part-4-public-procurement - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Part 4 (Teil 4) of the Gesetz gegen Wettbewerbsbeschränkungen (GWB) establishes the legal framework for award of public contracts (Vergabe öffentlicher Aufträge) above EU thresholds in Germany, transp... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-gwb-part-4-public-procurement.json #### DFARS 252.204-7012 (Cyber) - **ID**: dfars-7012-defense-cyber - **Category**: Public Sector & Government Procurement - **Version**: 1.1.0 - **BLUF**: DFARS 252.204-7012 (Safeguarding Covered Defense Information and Cyber Incident Reporting) is the primary U.S. defense acquisition regulation for protecting CDI. It mandates the implementation of NIST... - **Discovery URL**: https://bidda.com/api/v1/nodes/dfars-7012-defense-cyber.json #### Dominican Republic Ley 340-06 on Public Procurement of Goods, Services, Works and Concessions as amended by Ley 47-20 and DGCP portal - **ID**: do-ley-340-06-compras-y-contrataciones-amended-ley-47-20 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Dominican Republic Ley 340-06 sobre Compras y Contrataciones de Bienes, Servicios, Obras y Concesiones (Law 340-06 on Procurement and Contracting of Goods, Services, Works and Concessions) promulg... - **Discovery URL**: https://bidda.com/api/v1/nodes/do-ley-340-06-compras-y-contrataciones-amended-ley-47-20.json #### Ecuador Ley Organica del Sistema Nacional de Contratacion Publica (LOSNCP) of 4 August 2008 and SERCOP - **ID**: ec-losncp-ley-organica-sistema-nacional-contratacion-publica-2008-sercop - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Ecuadorian Ley Organica del Sistema Nacional de Contratacion Publica (LOSNCP / Organic Law of the National System of Public Procurement) published in Registro Oficial Suplemento 395 of 4 August 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/ec-losncp-ley-organica-sistema-nacional-contratacion-publica-2008-sercop.json #### Egypt Law 182 of 2018 Regulating Contracts Concluded by Public Entities (Public Tenders Law) - **ID**: eg-law-182-2018-regulating-government-contracts - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Egypt Law No. 182 of 2018 on Regulating Contracts Concluded by Public Entities (Qanun Tanzim al-Aqud al-Lati Tubrimuha al-Jihat al-Amma) issued 3 September 2018 and effective 4 October 2018 (with ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eg-law-182-2018-regulating-government-contracts.json #### Spain Ley 9/2017 de Contratos del Sector Público (LCSP) - **ID**: es-ley-9-2017-contratos-sector-publico - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Ley 9/2017, de 8 de noviembre, de Contratos del Sector Publico (LCSP) is Spain's consolidated public procurement statute, in force from 9 March 2018 and transposing EU Directives 2014/23/EU and 2014/2... - **Discovery URL**: https://bidda.com/api/v1/nodes/es-ley-9-2017-contratos-sector-publico.json #### Ethiopia Federal Public Procurement and Property Administration Proclamation 1230/2020 of 22 May 2020 and PPPDS - **ID**: et-public-procurement-property-administration-proclamation-1230-2020-ppa-fppa - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Federal Democratic Republic of Ethiopia Public Procurement and Property Administration Proclamation No. 1230/2020 (Federal Negarit Gazette No. 32 of 22 May 2020) effective 22 May 2020 is the princ... - **Discovery URL**: https://bidda.com/api/v1/nodes/et-public-procurement-property-administration-proclamation-1230-2020-ppa-fppa.json #### Directive (EU) 2019/1161 of the European Parliament and of the Council of 5 June 2019 on the promotion of clean mobility through the procurement of clean vehicles by public authorities - **ID**: eu-clean-vehicles-directive-2019-1161-public-procurement - **Category**: Public Sector & Government Procurement - **Version**: 1.0.1 - **BLUF**: Public contracting authorities in EU member states must ensure that a minimum percentage of newly procured buses, trucks, and light commercial vehicles are clean vehicles, as defined by low CO₂ emissi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-clean-vehicles-directive-2019-1161-public-procurement.json #### EU Directive 2009/81/EC on procurement in the fields of defence and security - **ID**: eu-directive-2009-81-defence-security-procurement - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Directive 2009/81/EC of the European Parliament and of the Council of 13 July 2009 on the coordination of procedures for the award of certain works contracts, supply contracts and service contracts by... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2009-81-defence-security-procurement.json #### EU Directive 2014/23/EU on the award of concession contracts - **ID**: eu-directive-2014-23-concession-contracts - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Directive 2014/23/EU of the European Parliament and of the Council of 26 February 2014 on the award of concession contracts establishes the EU-level framework for awarding works and services concessio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2014-23-concession-contracts.json #### EU Directive 2014/25/EU on procurement by entities operating in the water, energy, transport and postal services sectors - **ID**: eu-directive-2014-25-utilities-procurement - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Directive 2014/25/EU of the European Parliament and of the Council of 26 February 2014 (the Utilities Directive) establishes EU-level procurement rules for contracting entities operating in the water,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-directive-2014-25-utilities-procurement.json #### EU Electronic Invoicing Directive 2014/55/EU - Public Procurement E-Invoicing - **ID**: eu-electronic-invoicing-directive-2014-55 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Directive 2014/55/EU requires all EU contracting authorities and contracting entities to be able to receive and process electronic invoices complying with the European standard EN 16931-1. The obligat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electronic-invoicing-directive-2014-55.json #### Directive 2014/24/EU of the European Parliament and of the Council of 26 February 2014 on public procurement and repealing Directive 2004/18/EC - **ID**: eu-public-procurement-construction-2014-24 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: This directive establishes harmonized rules for public procurement by contracting authorities in EU Member States for public works contracts exceeding specified financial thresholds. It mandates that ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-public-procurement-construction-2014-24.json #### Directive 2014/24/EU of the European Parliament and of the Council of 26 February 2014 on public procurement and repealing Directive 2004/18/EC - Works Contracts Above Threshold: Technical Specifications, Selection Criteria, Award Criteria, Design Contests and Concession Contracts - **ID**: eu-public-procurement-construction-directive - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: This directive governs public procurement of construction works above the EU threshold (€5,679,000 as of 2024) by requiring transparent technical specifications, objective selection and award criteria... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-public-procurement-construction-directive.json #### Directive 2014/24/EU of the European Parliament and of the Council of 26 February 2014 on public procurement and repealing Directive 2004/18/EC - Title III: Rules for Public Contracts, Chapter 2: Technical Specifications and Chapter 3: Award Criteria, specifically as applied to construction works contracts - **ID**: eu-public-procurement-directive-2014-24-construction - **Category**: Public Sector & Government Procurement - **Version**: 1.0.1 - **BLUF**: This directive establishes harmonized rules for public procurement of construction works contracts above EU-wide thresholds, requiring contracting authorities to define clear technical specifications ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-public-procurement-directive-2014-24-construction.json #### France Code de la Commande Publique (2019 Consolidation) - **ID**: fr-code-commande-publique-2019 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Code de la Commande Publique, the consolidated French public procurement code that entered into force on 1 April 2019, codifies prior legislation including EU Directives 2014/24/EU and 2014/25/EU ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-code-commande-publique-2019.json #### Georgia Law on State Procurement No. 1388-IIs of 20 April 2005 (Sakhelmtsipo Shesqidvebis Shesakheb) as amended and State Procurement Agency - **ID**: ge-law-state-procurement-2005-1388-iis-spa - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Georgia Law on State Procurement No. 1388-IIs of 20 April 2005 (Sakhelmtsipo Shesqidvebis Shesakheb / Law on State Procurement) effective 1 January 2006 as substantially amended over time (most re... - **Discovery URL**: https://bidda.com/api/v1/nodes/ge-law-state-procurement-2005-1388-iis-spa.json #### Ghana Public Procurement Act 2003 (Act 663) as amended by Public Procurement (Amendment) Act 2016 (Act 914) and Ghana Electronic Procurement System (GHANEPS) - **ID**: gh-public-procurement-act-663-2003-as-amended-act-914-2016-ppa-ghana - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Ghana Public Procurement Act 2003 (Act 663) assented to 31 December 2003 as substantially amended by the Public Procurement (Amendment) Act 2016 (Act 914) assented to 6 May 2016 is the principal G... - **Discovery URL**: https://bidda.com/api/v1/nodes/gh-public-procurement-act-663-2003-as-amended-act-914-2016-ppa-ghana.json #### Greece Law 4412/2016 on Public Procurement (Nomos 4412 - Dimosies Symvaseis Ergon, Promitheion kai Ypiresion) as amended by Law 4782/2021 - **ID**: gr-law-4412-2016-public-procurement-eu-directives-transposition - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Greek Law 4412/2016 on Public Procurement of Works, Supplies and Services (Nomos 4412/2016 - Dimosies Symvaseis Ergon, Promitheion kai Ypiresion / FEK A' 147/8.8.2016) effective 8 August 2016 as s... - **Discovery URL**: https://bidda.com/api/v1/nodes/gr-law-4412-2016-public-procurement-eu-directives-transposition.json #### Guatemala Decreto 57-92 Ley de Contrataciones del Estado (1992) as amended and GUATECOMPRAS - **ID**: gt-decreto-57-92-ley-contrataciones-estado-guatecompras - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Guatemala Decreto 57-92 (Decreto Numero 57-92 del Congreso de la Republica) of 21 October 1992 known as Ley de Contrataciones del Estado is the principal Guatemalan statute governing procurement o... - **Discovery URL**: https://bidda.com/api/v1/nodes/gt-decreto-57-92-ley-contrataciones-estado-guatecompras.json #### Honduras Ley de Contratacion del Estado Decreto 74-2001 of 31 May 2001 and ONCAE / HonduCompras - **ID**: hn-ley-contratacion-estado-decreto-74-2001-oncae-honducompras - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Honduras Ley de Contratacion del Estado (Law of State Contracting) approved by Decreto 74-2001 of 31 May 2001 (published in La Gaceta No. 29.575 of 1 September 2001 effective 1 October 2001), as a... - **Discovery URL**: https://bidda.com/api/v1/nodes/hn-ley-contratacion-estado-decreto-74-2001-oncae-honducompras.json #### Hungary Act CXLIII of 2015 on Public Procurement (Közbeszerzési törvény, Kbt.) - **ID**: hu-act-cxliii-2015-public-procurement - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Act CXLIII of 2015 on Public Procurement (Közbeszerzési törvény, Kbt.) is Hungary's principal public procurement statute, in force from 1 November 2015 and transposing EU Directives 2014/23/EU, 2014/2... - **Discovery URL**: https://bidda.com/api/v1/nodes/hu-act-cxliii-2015-public-procurement.json #### Indonesia Presidential Regulation No. 16 of 2018 on Government Procurement of Goods and Services (as amended by Presidential Regulation No. 12 of 2021) + LKPP and LPSE - **ID**: id-perpres-16-2018-government-procurement-lkpp-lpse - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Presidential Regulation (Peraturan Presiden / Perpres) No. 16 of 2018 on Government Procurement of Goods/Services (Pengadaan Barang/Jasa Pemerintah) is the principal Indonesian instrument governing pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/id-perpres-16-2018-government-procurement-lkpp-lpse.json #### Israel Mandatory Tenders Law 5752-1992 (Chok Chovat HaMichrazim) and Mandatory Tenders Regulations 5753-1993 - **ID**: il-mandatory-tenders-law-1992-takanot-hove-mikhrazim - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Israeli Mandatory Tenders Law 5752-1992 (Chok Chovat HaMichrazim, in Hebrew) and the Mandatory Tenders Regulations 5753-1993 (Takanot Chovat HaMichrazim, issued thereunder) constitute the principa... - **Discovery URL**: https://bidda.com/api/v1/nodes/il-mandatory-tenders-law-1992-takanot-hove-mikhrazim.json #### ILO Convention No. 94 (C094) - Labour Clauses (Public Contracts), 1949 - **ID**: ilo-c094-labour-clauses-public-contracts-1949 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 94 requires that public contracts include labour clauses ensuring the workers concerned wages, hours of work and other labour conditions no less favourable than those established fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c094-labour-clauses-public-contracts-1949.json #### India General Financial Rules (GFR) 2017 + Government e-Marketplace (GeM) Procurement Framework - **ID**: in-gfr-2017-general-financial-rules-government-e-marketplace-gem - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The General Financial Rules (GFR) 2017 issued by the Department of Expenditure under the Ministry of Finance, Government of India, are the principal procedural framework governing financial administra... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-gfr-2017-general-financial-rules-government-e-marketplace-gem.json #### Italy Decreto Legislativo 36/2023 - Codice dei Contratti Pubblici - **ID**: it-d-lgs-36-2023-codice-contratti-pubblici - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Decreto Legislativo 31 marzo 2023 n. 36 (the new Codice dei Contratti Pubblici), in force from 1 April 2023, replaces D.Lgs. 50/2016 and implements EU Directives 2014/23/EU, 2014/24/EU and 2014/25/EU ... - **Discovery URL**: https://bidda.com/api/v1/nodes/it-d-lgs-36-2023-codice-contratti-pubblici.json #### Jamaica Public Procurement Act 2015 effective 1 April 2019 and the Office of the Procurement Policy and Implementation - **ID**: jm-public-procurement-act-2015-effective-2018-ojpp-eppgov - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Jamaica Public Procurement Act 2015 (Act 11 of 2015) effective 1 April 2019 as amended by the Public Procurement (Amendment) Act 2018 (Act 22 of 2018) and supplemented by the Public Procurement Re... - **Discovery URL**: https://bidda.com/api/v1/nodes/jm-public-procurement-act-2015-effective-2018-ojpp-eppgov.json #### Jordan Government Procurement Bylaw No. 28 of 2019 (Nidham al-Mushtarayat al-Hukumiyya) and the JONEPPS Electronic Procurement Platform - **ID**: jo-government-procurement-bylaw-2019-jonepps - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Jordan Government Procurement Bylaw No. 28 of 2019 (Nidham al-Mushtarayat al-Hukumiyya raqm 28 li-sanat 2019, in Arabic) issued by Council of Ministers Decision and published in the Official Gazet... - **Discovery URL**: https://bidda.com/api/v1/nodes/jo-government-procurement-bylaw-2019-jonepps.json #### Japan Accounting Act (Kaikei-ho, Act No. 35 of 1947) + Local Autonomy Act + Government Procurement Framework - **ID**: jp-accounting-act-local-autonomy-act-government-procurement-framework - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Japanese government procurement legal framework is anchored on the Accounting Act (Kaikei-ho, Act No. 35 of 1947) which sets the principal rules for national government contracts including procure... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-accounting-act-local-autonomy-act-government-procurement-framework.json #### Kenya Public Procurement and Asset Disposal Act No. 33 of 2015 (PPADA) and PPADR 2020 - **ID**: ke-public-procurement-asset-disposal-act-2015-act-33-2015 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Kenya Public Procurement and Asset Disposal Act No. 33 of 2015 (PPADA) assented to 18 December 2015 and effective 7 January 2016 and the Public Procurement and Asset Disposal Regulations 2020 (PPA... - **Discovery URL**: https://bidda.com/api/v1/nodes/ke-public-procurement-asset-disposal-act-2015-act-33-2015.json #### Kyrgyzstan Law on Public Procurement No. 72 of 3 April 2015 (Zakon o Gosudarstvennykh Zakupkakh) as amended and zakupki.gov.kg - **ID**: kg-law-on-public-procurement-2015-72-zakupki-gov-kg - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Kyrgyz Republic Law on Public Procurement No. 72 of 3 April 2015 (Zakon Kyrgyzskoi Respubliki o Gosudarstvennykh Zakupkakh) effective 1 May 2015 as substantially amended over time (most recently b... - **Discovery URL**: https://bidda.com/api/v1/nodes/kg-law-on-public-procurement-2015-72-zakupki-gov-kg.json #### South Korea Act on Contracts to Which the State Is a Party + KONEPS Korea ON-line E-Procurement System - **ID**: kr-act-on-contracts-to-which-the-state-is-a-party-koneps-procurement - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Act on Contracts to Which the State Is a Party (Gukga-reul Dangsaja-ro Haneun Gyeyak-e Gwanhan Beomnyul) is the principal South Korean statute governing contracts entered into by the State includi... - **Discovery URL**: https://bidda.com/api/v1/nodes/kr-act-on-contracts-to-which-the-state-is-a-party-koneps-procurement.json #### Kazakhstan Law on Public Procurement No. 434-V of 4 December 2015 as amended by Law No. 488-VI of 2022 and Goszakup - **ID**: kz-law-on-public-procurement-2015-434-v-amended-2022-goszakup - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Kazakhstan Law on Public Procurement No. 434-V (Zakon o gosudarstvennykh zakupkakh) of 4 December 2015 (effective 1 January 2016) as substantially amended over time (most recently by L... - **Discovery URL**: https://bidda.com/api/v1/nodes/kz-law-on-public-procurement-2015-434-v-amended-2022-goszakup.json #### Lebanon Public Procurement Law 244 of 19 July 2021 (Qanun al-Shira'a al-Aam) effective 29 July 2022 - **ID**: lb-public-procurement-law-244-2021-ppa-impact-2022 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Lebanese Public Procurement Law No. 244 of 19 July 2021 (Qanun al-Shira'a al-Aam in Arabic) effective 29 July 2022 is the principal Lebanese statute governing procurement of goods, services, works... - **Discovery URL**: https://bidda.com/api/v1/nodes/lb-public-procurement-law-244-2021-ppa-impact-2022.json #### Morocco Decree 2-22-431 of 8 March 2023 on Public Procurement (Decret relatif aux marches publics) and the TGR Marches Publics Portal - **ID**: ma-decret-2-22-431-2023-marches-publics-tgr-portal - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Moroccan Decree No. 2-22-431 of 14 Sha'ban 1444 H corresponding to 8 March 2023 on Public Procurement (Decret n. 2-22-431 du 14 chaabane 1444 (8 mars 2023) relatif aux marches publics) effective 9... - **Discovery URL**: https://bidda.com/api/v1/nodes/ma-decret-2-22-431-2023-marches-publics-tgr-portal.json #### Moldova Law No. 131 of 3 July 2015 on Public Procurement as amended and MTender Platform - **ID**: md-law-131-2015-public-procurement-pap-mtender - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Moldova Law No. 131 of 3 July 2015 on Public Procurement (Legea privind achizitiile publice / Zakon o gosudarstvennykh zakupkakh) effective 1 May 2016 as substantially amended over tim... - **Discovery URL**: https://bidda.com/api/v1/nodes/md-law-131-2015-public-procurement-pap-mtender.json #### Mexico Ley de Obras Publicas y Servicios 2020 - Public Works Procurement Law - **ID**: mexico-ley-obras-publicas-2020 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Mexico's Ley de Obras Publicas y Servicios Relacionados con las Mismas (LOPSRM, last reformed 2020) governs federal public works procurement including construction, installation, maintenance, and demo... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-ley-obras-publicas-2020.json #### Mauritius Public Procurement Act 33 of 2006 (as consolidated and amended) and the Public Procurement Office (PPO) and Electronic Procurement System - **ID**: mu-public-procurement-act-33-2006-ppoa-eprocurement - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Mauritius Public Procurement Act 33 of 2006 (Act No. 33 of 2006, Government Gazette of Mauritius No. 116 of 16 December 2006) effective 1 January 2008 as substantially amended over tim... - **Discovery URL**: https://bidda.com/api/v1/nodes/mu-public-procurement-act-33-2006-ppoa-eprocurement.json #### Mexico Ley de Adquisiciones, Arrendamientos y Servicios del Sector Publico (LAASSP) + CompraNet Federal Procurement Platform - **ID**: mx-ley-de-adquisiciones-arrendamientos-servicios-sector-publico-compranet - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Ley de Adquisiciones, Arrendamientos y Servicios del Sector Publico (LAASSP, published 4 January 2000 and substantially amended numerous times) is the principal Mexican federal statute governing p... - **Discovery URL**: https://bidda.com/api/v1/nodes/mx-ley-de-adquisiciones-arrendamientos-servicios-sector-publico-compranet.json #### Malaysia Treasury Instructions on Government Procurement (Arahan Perbendaharaan, Perolehan Kerajaan) and Government Procurement Act 1993 - **ID**: my-treasury-instructions-government-procurement-perolehan-kerajaan - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Malaysian public procurement is governed by a layered framework: the Government Procurement Act 1993 (Akta Perolehan Kerajaan 1993), the Treasury Instructions on Government Procurement (Arahan Perbend... - **Discovery URL**: https://bidda.com/api/v1/nodes/my-treasury-instructions-government-procurement-perolehan-kerajaan.json #### Mozambique Decreto 5/2016 of 8 March 2016 Regulamento de Contratacao de Empreitada de Obras Publicas, Fornecimento de Bens e Prestacao de Servicos ao Estado and UFSA - **ID**: mz-decreto-5-2016-regulamento-contratacao-empreitada-obras-publicas - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Mozambique Decreto No. 5/2016 of 8 March 2016 - Regulamento de Contratacao de Empreitada de Obras Publicas, Fornecimento de Bens e Prestacao de Servicos ao Estado (Regulation on Public... - **Discovery URL**: https://bidda.com/api/v1/nodes/mz-decreto-5-2016-regulamento-contratacao-empreitada-obras-publicas.json #### Namibia Public Procurement Act 15 of 2015 effective 1 April 2017 and Central Procurement Board of Namibia (CPBN) - **ID**: na-public-procurement-act-15-2015-cppa-central-procurement-board - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Namibia Public Procurement Act 15 of 2015 (Act No. 15 of 2015, Government Gazette of Namibia No. 5900 of 31 December 2015) effective 1 April 2017 as amended by the Public Procurement A... - **Discovery URL**: https://bidda.com/api/v1/nodes/na-public-procurement-act-15-2015-cppa-central-procurement-board.json #### Nigeria Public Procurement Act 2007 (Act No. 14 of 2007) and the Bureau of Public Procurement (BPP) - **ID**: ng-public-procurement-act-2007-bpp-noccpc - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Nigeria Public Procurement Act 2007 (Act No. 14 of 2007) assented to 4 June 2007 is the principal federal Nigerian statute governing procurement of goods, works, and services by all federal procur... - **Discovery URL**: https://bidda.com/api/v1/nodes/ng-public-procurement-act-2007-bpp-noccpc.json #### Netherlands Aanbestedingswet 2012 (Public Procurement Act) - **ID**: nl-aanbestedingswet-2012 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Aanbestedingswet 2012 is the Dutch Public Procurement Act, in force from 1 April 2013 and substantially amended in 2016 to transpose EU Directives 2014/23/EU, 2014/24/EU and 2014/25/EU. It is stru... - **Discovery URL**: https://bidda.com/api/v1/nodes/nl-aanbestedingswet-2012.json #### Norway Anskaffelsesloven (Public Procurement Act) LOV-2016-06-17-73 - **ID**: no-anskaffelsesloven-2016 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Lov 17. juni 2016 nr. 73 om offentlige anskaffelser (Anskaffelsesloven) is Norway's principal public procurement statute, in force from 1 January 2017, governing procurement by public bodies in compli... - **Discovery URL**: https://bidda.com/api/v1/nodes/no-anskaffelsesloven-2016.json #### Panama Texto Unico Ley 22 of 27 June 2006 on Public Procurement (Contrataciones Publicas) and the PanamaCompra Electronic Procurement Platform - **ID**: pa-texto-unico-ley-22-2006-contrataciones-publicas-panama-compra - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Panama Texto Unico Ley 22 of 27 June 2006 (Texto Unico de la Ley 22 de 27 de junio de 2006 que regula la contratacion publica), as substantially amended by Ley 153 of 8 May 2020 (Por la cual se mo... - **Discovery URL**: https://bidda.com/api/v1/nodes/pa-texto-unico-ley-22-2006-contrataciones-publicas-panama-compra.json #### Peru Ley 30225 Ley de Contrataciones del Estado (Law on State Contracts) as amended by Ley 32069 of 2024 and SEACE Electronic Procurement Platform - **ID**: pe-ley-30225-ley-de-contrataciones-del-estado-osce-seace - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Peruvian Ley 30225 (Ley de Contrataciones del Estado / Law on State Contracts) published 11 July 2014 and effective 9 January 2016 (with the Reglamento approved by Decreto Supremo 350-2015-EF), as... - **Discovery URL**: https://bidda.com/api/v1/nodes/pe-ley-30225-ley-de-contrataciones-del-estado-osce-seace.json #### Philippines Republic Act 9184 Government Procurement Reform Act of 2003 and its 2016 Revised IRR - **ID**: ph-republic-act-9184-government-procurement-reform-act-2003 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Philippines Republic Act 9184 known as the Government Procurement Reform Act enacted 10 January 2003 (effective 26 January 2003) and its 2016 Revised Implementing Rules and Regulations (Revised IR... - **Discovery URL**: https://bidda.com/api/v1/nodes/ph-republic-act-9184-government-procurement-reform-act-2003.json #### Pakistan Public Procurement Regulatory Authority Ordinance 2002 and Public Procurement Rules 2004 - **ID**: pk-ppra-public-procurement-rules-2004-ordinance-2002 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Pakistan Public Procurement Regulatory Authority (PPRA) Ordinance 2002 (Ordinance No. XXII of 2002) and the Public Procurement Rules 2004 issued thereunder are the principal Pakistani federal lega... - **Discovery URL**: https://bidda.com/api/v1/nodes/pk-ppra-public-procurement-rules-2004-ordinance-2002.json #### Poland Public Procurement Law (Prawo zamowien publicznych, Pzp) Act of 11 September 2019 effective 1 January 2021 - **ID**: pl-prawo-zamowien-publicznych-pzp-2019-effective-2021 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Polish Public Procurement Law (Prawo zamowien publicznych, Pzp) Act of 11 September 2019 (Ustawa z dnia 11 wrzesnia 2019 r. - Prawo zamowien publicznych, published in Dz. U. 2019 poz. 2019) effect... - **Discovery URL**: https://bidda.com/api/v1/nodes/pl-prawo-zamowien-publicznych-pzp-2019-effective-2021.json #### Portugal Codigo dos Contratos Publicos (CCP) Decreto-Lei 18/2008 of 29 January 2008 as amended (most recently by Decreto-Lei 78/2022) - **ID**: pt-codigo-contratos-publicos-ccp-decreto-lei-18-2008-as-amended - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Portuguese Codigo dos Contratos Publicos (CCP / Public Contracts Code) approved by Decreto-Lei 18/2008 of 29 January 2008, as amended most recently by Decreto-Lei 78/2022 of 7 November 2022, is th... - **Discovery URL**: https://bidda.com/api/v1/nodes/pt-codigo-contratos-publicos-ccp-decreto-lei-18-2008-as-amended.json #### Portugal Decreto-Lei 18/2008 - Código dos Contratos Públicos (CCP) - **ID**: pt-decreto-lei-18-2008-codigo-contratos-publicos - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Decreto-Lei nº 18/2008, de 29 de janeiro (Código dos Contratos Públicos, CCP), is Portugal's consolidated public procurement code, in force from 29 July 2008 and substantially revised in 2017 and 2021... - **Discovery URL**: https://bidda.com/api/v1/nodes/pt-decreto-lei-18-2008-codigo-contratos-publicos.json #### Paraguay Ley 2051/2003 de Contrataciones Publicas as amended by Ley 7021/2022 and DNCP (Direccion Nacional de Contrataciones Publicas) - **ID**: py-ley-2051-2003-contrataciones-publicas-dncp - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Paraguay Ley 2051/2003 de Contrataciones Publicas (Law 2051/2003 on Public Procurement) of 21 January 2003 as substantially amended and supplemented by Ley 7021/2022 de Suministro y Contrataciones... - **Discovery URL**: https://bidda.com/api/v1/nodes/py-ley-2051-2003-contrataciones-publicas-dncp.json #### Romania Law No. 98/2016 on Classical Public Procurement (Legea nr. 98/2016 privind achizitiile publice) effective 26 May 2016 - **ID**: ro-law-98-2016-classical-public-procurement-eu-directive-transposition - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Romanian Law No. 98/2016 on Public Procurement (Legea nr. 98/2016 privind achizitiile publice, Monitorul Oficial al Romaniei nr. 390 of 23 May 2016) effective 26 May 2016 is the principal Romanian... - **Discovery URL**: https://bidda.com/api/v1/nodes/ro-law-98-2016-classical-public-procurement-eu-directive-transposition.json #### Serbia Law on Public Procurement (Sluzbeni glasnik RS broj 91/2019) of 23 December 2019 and Public Procurement Office - **ID**: rs-law-public-procurement-91-2019-public-procurement-office-portal - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Serbia Law on Public Procurement (Zakon o javnim nabavkama) published in Sluzbeni glasnik RS No. 91 of 23 December 2019 effective 1 July 2020, as supplemented by application bylaws (po... - **Discovery URL**: https://bidda.com/api/v1/nodes/rs-law-public-procurement-91-2019-public-procurement-office-portal.json #### Russia Federal Law No. 44-FZ on the Contract System in State and Municipal Procurement (5 April 2013, as amended) - **ID**: ru-federal-law-44-fz-contract-system-state-municipal-procurement-2013 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Law No. 44-FZ on the Contract System in the Sphere of Procurement of Goods, Work, and Services for State and Municipal Needs (Federal'nyi zakon ot 5 aprelya 2013 g. N 44-FZ) is the principal R... - **Discovery URL**: https://bidda.com/api/v1/nodes/ru-federal-law-44-fz-contract-system-state-municipal-procurement-2013.json #### Rwanda Law No. 62/2018 of 25 August 2018 on Public Procurement and the Umucyo E-Procurement Platform - **ID**: rw-law-62-2018-public-procurement-rppa-umucyo - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Rwanda Law No. 62/2018 of 25 August 2018 governing public procurement (Itegeko No. 62/2018 ryo ku wa 25/08/2018 rigenga isoko rusange) effective 1 September 2018, as supplemented by Mi... - **Discovery URL**: https://bidda.com/api/v1/nodes/rw-law-62-2018-public-procurement-rppa-umucyo.json #### Saudi Arabia Government Tenders and Procurement Law 2019 (Nidham Al-Munafasat wa Al-Mushtarayat Al-Hukumiyya) Royal Decree M/128 - **ID**: sa-government-tenders-procurement-law-2019-royal-decree-m128 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Saudi Arabia Government Tenders and Procurement Law issued by Royal Decree M/128 dated 13 November 2019 (corresponding to 16/11/1441 H) and effective 1 December 2019 (corresponding to 4/04/1441 H,... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa-government-tenders-procurement-law-2019-royal-decree-m128.json #### Sweden Lag (2016:1145) om offentlig upphandling (LOU) - **ID**: se-lou-2016-1145-offentlig-upphandling - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Lag (2016:1145) om offentlig upphandling (LOU) is the principal Swedish Public Procurement Act, in force from 1 January 2017 and transposing Directive 2014/24/EU. The Act is structured in 22 Kapitel. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/se-lou-2016-1145-offentlig-upphandling.json #### Singapore Government Procurement Act 1997 + GeBIZ Government Electronic Business Centralised Procurement Platform - **ID**: sg-government-procurement-act-gebiz-electronic-business-system - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Singapore Government Procurement Act 1997 (Cap. 120) and the Government Procurement Regulations 2014 establish the principal procurement framework for the Singapore government. The Act implements ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-government-procurement-act-gebiz-electronic-business-system.json #### Senegal Code des Marches Publics Decret 2014-1212 of 22 September 2014 as amended by Decret 2022-2295 and ARCOP / SYGMAP - **ID**: sn-code-des-marches-publics-decret-2014-1212-armp-sygmap - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Senegalese Code des Marches Publics (Public Procurement Code) approved by Decret 2014-1212 of 22 September 2014 (Journal Officiel de la Republique du Senegal No. 6804 of 4 October 2014 effective 4... - **Discovery URL**: https://bidda.com/api/v1/nodes/sn-code-des-marches-publics-decret-2014-1212-armp-sygmap.json #### El Salvador Ley de Adquisiciones y Contrataciones de la Administracion Publica (LACAP) Decreto Legislativo 868 of 5 May 2000 and COMPRASAL - **ID**: sv-lacap-ley-adquisiciones-contrataciones-administracion-publica-decreto-868-2000 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The El Salvador Ley de Adquisiciones y Contrataciones de la Administracion Publica (LACAP / Law on Procurement and Contracting of the Public Administration) approved by Decreto Legislativo 868 of 5 Ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/sv-lacap-ley-adquisiciones-contrataciones-administracion-publica-decreto-868-2000.json #### Thailand Government Procurement and Supplies Management Act B.E. 2560 (2017) - **ID**: th-government-procurement-supplies-management-act-be-2560-2017 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Thailand Government Procurement and Supplies Management Act B.E. 2560 (2017) (Phra Ratchabanyat Kan Chat Suu Chat Chang Pakong Lae Kan Borihan Pa Su Du Phak Rat / known in Thai as Phra Ratchabanya... - **Discovery URL**: https://bidda.com/api/v1/nodes/th-government-procurement-supplies-management-act-be-2560-2017.json #### Tajikistan Law on Public Procurement of Goods, Works and Services No. 168 of 3 March 2006 (as amended) and Agency for Public Procurement - **ID**: tj-law-on-public-procurement-2006-zakupki-tj - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Tajikistan Law on Public Procurement of Goods, Works and Services No. 168 of 3 March 2006 (Qonuni Jumhurii Tojikiston dar borai kharidi davlatii mol, kor va khizmatraso) effective 3 Ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/tj-law-on-public-procurement-2006-zakupki-tj.json #### Tunisia Decree No. 1039 of 13 March 2014 on Public Procurement (Decret n. 2014-1039 portant reglementation des marches publics) and the TUNEPS Platform - **ID**: tn-decret-loi-1039-2014-marches-publics-tuneps - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Tunisian Decree No. 2014-1039 of 13 March 2014 on Public Procurement (Decret n. 2014-1039 du 13 mars 2014 portant reglementation des marches publics, JORT 2014 n. 22) effective 1 June 2014 is the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/tn-decret-loi-1039-2014-marches-publics-tuneps.json #### Turkey Public Procurement Law No. 4734 of 2002 (Kamu Ihale Kanunu) and the EKAP Electronic Procurement Platform - **ID**: tr-public-procurement-law-4734-2002-kik-ekap - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Turkish Public Procurement Law No. 4734 (Kamu Ihale Kanunu, KIK) enacted 4 January 2002 and effective 1 January 2003 is the principal Turkish statute governing procurement of goods, services, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/tr-public-procurement-law-4734-2002-kik-ekap.json #### Trinidad and Tobago Public Procurement and Disposal of Public Property Act 2015 effective 26 April 2023 (Act No. 1 of 2015 as amended) and OPRC - **ID**: tt-public-procurement-disposal-public-property-act-2015-effective-2023-oprc - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Trinidad and Tobago Public Procurement and Disposal of Public Property Act 2015 (Act No. 1 of 2015) effective 26 April 2023 as substantially amended by Act No. 8 of 2016, Act No. 10 of 2017, Act N... - **Discovery URL**: https://bidda.com/api/v1/nodes/tt-public-procurement-disposal-public-property-act-2015-effective-2023-oprc.json #### Tanzania Public Procurement Act No. 7 of 2011 as amended by Act No. 5 of 2016 and the National Electronic Procurement System of Tanzania (NeST/TANePS) - **ID**: tz-public-procurement-act-7-2011-as-amended-2016-ppra-teu - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The United Republic of Tanzania Public Procurement Act No. 7 of 2011 assented to 12 December 2011 and effective 15 December 2013 (with the Public Procurement Regulations 2013 issued by GN No. 446 of 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/tz-public-procurement-act-7-2011-as-amended-2016-ppra-teu.json #### Ukraine ProZorro Public Procurement System + Law of Ukraine 922-VIII On Public Procurement (2015, as amended) - **ID**: ua-prozorro-public-procurement-system-law-922-viii-2015 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: ProZorro is Ukraine's electronic public procurement system, launched as a mandatory system from 1 April 2016 (with earlier piloting from 2015) under the Law of Ukraine On Public Procurement No. 922-VI... - **Discovery URL**: https://bidda.com/api/v1/nodes/ua-prozorro-public-procurement-system-law-922-viii-2015.json #### Uganda Public Procurement and Disposal of Public Assets Act 2003 (PPDA Act) as amended by Act 11 of 2014 and Act 15 of 2021 and e-GP Uganda - **ID**: ug-ppda-act-2003-as-amended-2014-egp-uganda - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Uganda Public Procurement and Disposal of Public Assets Act 2003 (PPDA Act, Act No. 1 of 2003) effective 21 February 2003 as substantially amended by the Public Procurement and Disposa... - **Discovery URL**: https://bidda.com/api/v1/nodes/ug-ppda-act-2003-as-amended-2014-egp-uganda.json #### United Kingdom Defence and Security Public Contracts Regulations 2011 (SI 2011/1848) - **ID**: uk-defence-security-public-contracts-regulations-2011 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Defence and Security Public Contracts Regulations 2011 (Statutory Instrument 2011/1848) implement EU Directive 2009/81/EC into UK law and govern award of defence and sensitive security contracts b... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-defence-security-public-contracts-regulations-2011.json #### Procurement Act 2023 - **ID**: uk-procurement-act-2023 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Procurement Act 2023 establishes a legal framework for public procurement in the UK, requiring contracting authorities to comply with principles of transparency, fairness, and competition. It appl... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-procurement-act-2023.json #### UK Procurement Act 2023 - Central Digital Platform Go-Live and New Public Procurement Regime, Effective 24 February 2025 - **ID**: uk-procurement-act-2023-effective-2025 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Contracting authorities and suppliers under UK public procurement must, from 00:01 on 24 February 2025, operate under the Procurement Act 2023 and its associated Regulations, using the Central Digital... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-procurement-act-2023-effective-2025.json #### Procurement Act 2023 Section 24: Refining award criteria - **ID**: uk-procurement-act-2023-section-24-open-framework-agreements - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: This section permits a contracting authority to refine award criteria during a competitive flexible procedure, provided this possibility was disclosed in tender documents, it occurs before final tende... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-procurement-act-2023-section-24-open-framework-agreements.json #### UK Procurement Act 2023 Section 41 - Direct Award in Special Cases (Direct Award Justification, Excluded Supplier Restriction, Overriding Public Interest Defence, Critical National Infrastructure, Defence/Security/Economic Stability, Extreme Urgency, Intelligence Services Definition) - **ID**: uk-procurement-act-2023-section-41-direct-award-special-cases - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Section 41 of the Procurement Act 2023 (c. 54) authorises direct award of public contracts in special cases - an exception to the competitive tendering procedure that is the default under the Act. Und... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-procurement-act-2023-section-41-direct-award-special-cases.json #### Procurement Act 2023, Section 68: Implied payment terms in public contracts - **ID**: uk-procurement-act-2023-section-68-debarment-list-exclusion-grounds - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Contracting authorities must pay valid invoices for applicable public contracts within 30 days of receipt, and must promptly notify payees of any disputed or invalid invoices. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-procurement-act-2023-section-68-debarment-list-exclusion-grounds.json #### UK Procurement Act 2023 Section 73 - Implied Payment Terms in Sub-Contracts - **ID**: uk-procurement-act-2023-section-73-implied-payment-subcontracts - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: UK Procurement Act 2023 (c. 54) Section 73, which fully came into force 24 February 2025, automatically implies the payment terms from Section 68(2) to (5) of the Act into every public sub-contract: t... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-procurement-act-2023-section-73-implied-payment-subcontracts.json #### UK Public Contracts Regulations 2015 (SI 2015/102) - Public Sector Procurement Framework - **ID**: uk-public-contracts-regulations-2015-si-102 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The UK Public Contracts Regulations 2015 (SI 2015/102), made under section 2(2) of the European Communities Act 1972 with cross-reference to the Public Contracts Directive 2014/24/EU, established the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-public-contracts-regulations-2015-si-102.json #### UK Transparency of Lobbying, Non-Party Campaigning and Trade Union Administration Act 2014 (c. 4) - **ID**: uk-transparency-of-lobbying-act-2014 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Transparency of Lobbying, Non-Party Campaigning and Trade Union Administration Act 2014 (c. 4) received Royal Assent on 30 January 2014. Part 1 of the Act (Registration of Consultant Lobbyists) wa... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-transparency-of-lobbying-act-2014.json #### UNCITRAL Model Law on Public Procurement 2011 - **ID**: uncitral-model-law-public-procurement-2011 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The UNCITRAL Model Law on Public Procurement, adopted by the United Nations Commission on International Trade Law on 1 July 2011 and recommended for use by General Assembly resolution 66/95 of 9 Decem... - **Discovery URL**: https://bidda.com/api/v1/nodes/uncitral-model-law-public-procurement-2011.json #### 10 USC § 3201 - Department of Defense Competition Requirements (formerly 10 USC 2304) - **ID**: us-10-usc-3201-dod-competition-requirements - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: 10 USC § 3201 (recodified from former 10 USC 2304 by the FY2022 National Defense Authorization Act, Pub. L. 117-81, Title XVII, Subtitle B, § 1701) establishes the parallel competition requirement for... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-10-usc-3201-dod-competition-requirements.json #### 31 USC § 1341 - Antideficiency Act (Limitations on Expending and Obligating Amounts) - **ID**: us-31-usc-1341-antideficiency-act - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: 31 USC § 1341 (originally enacted in 1870 as the Antideficiency Act, with substantial amendments in the Public Works Appropriation Act of 1957 and recodified by Pub. L. 97-258 in 1982) prohibits feder... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-usc-1341-antideficiency-act.json #### 31 USC § 3553 - Government Accountability Office Bid Protest Jurisdiction and Stay of Performance - **ID**: us-31-usc-3553-gao-bid-protest-review - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: 31 USC § 3553 (enacted as part of the Competition in Contracting Act of 1984, Pub. L. 98-369; amended Pub. L. 104-106 and Pub. L. 116-283) gives the Comptroller General (head of the Government Account... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-usc-3553-gao-bid-protest-review.json #### 40 USC § 3142 - Davis-Bacon Act Prevailing Wage for Federal Construction Contracts - **ID**: us-40-usc-3142-davis-bacon-prevailing-wage - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: 40 USC § 3142 (originally enacted as the Davis-Bacon Act of 1931, Pub. L. 71-798; recodified by Pub. L. 107-217) requires every contract in excess of $2,000 for the construction, alteration, or repair... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-40-usc-3142-davis-bacon-prevailing-wage.json #### 41 USC 3301 - Full and Open Competition in Federal Procurement (Competition in Contracting Act) - **ID**: us-41-usc-3301-full-open-competition-federal-procurement - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: 41 USC 3301 (originally enacted in 1984 as the Competition in Contracting Act, recodified in 2011 by Pub L 111-350) requires executive agencies conducting procurement of property or services to obtain... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-41-usc-3301-full-open-competition-federal-procurement.json #### 41 USC § 3304 - Use of Noncompetitive Procedures (Exceptions to Full and Open Competition) - **ID**: us-41-usc-3304-noncompetitive-procedures-exceptions - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: 41 USC § 3304 (originally enacted as part of the Competition in Contracting Act of 1984 and recodified by Pub. L. 111-350) sets out the seven exceptions permitting an executive agency to use procedure... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-41-usc-3304-noncompetitive-procedures-exceptions.json #### 41 USC § 4304 - Specific Costs Not Allowable Under Federal Contracts - **ID**: us-41-usc-4304-specific-costs-not-allowable - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: 41 USC § 4304 (originally enacted as part of the Procurement Integrity Act-related amendments to cost principles; recodified by Pub. L. 111-350) lists categories of costs that are not allowable as cha... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-41-usc-4304-specific-costs-not-allowable.json #### 41 USC § 6502 - Walsh-Healey Public Contracts Act (Required Contract Stipulations) - **ID**: us-41-usc-6502-walsh-healey-public-contracts-act - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: 41 USC § 6502 (originally enacted as the Walsh-Healey Public Contracts Act of 1936, Pub. L. 74-846; recodified by Pub. L. 111-350) requires every federal contract exceeding $10,000 for the manufacture... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-41-usc-6502-walsh-healey-public-contracts-act.json #### 41 USC § 6707 - Service Contract Act Wage Determinations and Successor Contract Provisions - **ID**: us-41-usc-6707-service-contract-act - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: 41 USC § 6707 (part of the Service Contract Act of 1965 as recodified by Pub. L. 111-350) sets out the wage determination and successor contract protection framework for federal service contracts exce... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-41-usc-6707-service-contract-act.json #### 41 USC § 8302 - Buy American Act (American Materials Required for Public Use) - **ID**: us-41-usc-8302-buy-american-act - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: 41 USC § 8302 (originally enacted as the Buy American Act of 1933, Pub. L. 72-428; recodified into Title 41 by Pub. L. 111-350) requires federal agencies to acquire only unmanufactured articles, mater... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-41-usc-8302-buy-american-act.json #### Cybersecurity Maturity Model Certification (CMMC) 2.0 - Three-Level Framework for Defense Contractors Handling Controlled Unclassified Information (CUI) and Federal Contract Information (FCI) - **ID**: us-cmmc-2-0-defense-industrial-base-2021 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The CMMC 2.0 framework mandates that all organizations within the Defense Industrial Base (DIB) implement cybersecurity practices aligned with one of three certification levels (1, 2, or 3) based on t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cmmc-2-0-defense-industrial-base-2021.json #### FAR Part 11 / 48 CFR Part 11 - Describing Agency Needs - **ID**: us-far-part-11-describing-agency-needs - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 11 / 48 CFR Part 11 establishes policies and procedures for describing agency needs in federal acquisitions across seven subparts: 11.1 Selecting and Developi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-11-describing-agency-needs.json #### FAR Part 12 - Acquisition of Commercial Products and Commercial Services - **ID**: us-far-part-12-commercial-products-services - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 12 implements 41 USC chapter 33 and 10 USC chapter 247 by requiring federal executive agencies to conduct market research, acquire commercial products and com... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-12-commercial-products-services.json #### FAR Part 13 / 48 CFR Part 13 - Simplified Acquisition Procedures - **ID**: us-far-part-13-simplified-acquisition-procedures - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 13 / 48 CFR Part 13 establishes streamlined procedures for acquiring supplies, services, and construction at or below the Simplified Acquisition Threshold (SA... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-13-simplified-acquisition-procedures.json #### FAR Part 14 - Sealed Bidding (Invitation for Bids, Bid Opening, Award) - **ID**: us-far-part-14-sealed-bidding - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 14 prescribes the sealed-bidding procedures used when all four FAR 6.401(a) conditions are met (time permits solicitation, award on price and price-related fa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-14-sealed-bidding.json #### FAR Part 15 - Contracting by Negotiation (Source Selection and Best Value Procurement) - **ID**: us-far-part-15-contracting-by-negotiation - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 15 governs the negotiated competitive proposal process used when sealed bidding is not appropriate, structuring federal procurement around source selection fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-15-contracting-by-negotiation.json #### FAR Part 16 - Types of Contracts (Fixed-Price, Cost-Reimbursement, IDIQ, and Time-and-Materials Selection) - **ID**: us-far-part-16-types-of-contracts - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 16 prescribes the contract types available for federal procurement and the criteria for selecting among them, with the controlling principle at 16.103 that ea... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-16-types-of-contracts.json #### FAR Part 17 - Special Contracting Methods (Multi-Year Contracts, Options, Interagency Acquisitions / Economy Act, Management and Operating Contracts, Reverse Auctions) - **ID**: us-far-part-17-special-contracting-methods - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 17 governs special contracting methods used when standard award structures are inappropriate. Subpart 17.1 (Multi-Year Contracting) implements 41 USC 3903 (ci... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-17-special-contracting-methods.json #### FAR Part 19 / 48 CFR Part 19 - Small Business Programs and Set-Asides (Federal Acquisition Regulation) - **ID**: us-far-part-19-small-business-set-asides - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 19 / 48 CFR Part 19 implements the Small Business Act (15 USC 631 et seq.) across federal agencies, establishing the framework for small business set-asides, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-19-small-business-set-asides.json #### FAR Part 22 / 48 CFR Part 22 - Application of Labor Laws to Government Acquisitions - **ID**: us-far-part-22-labor-laws-government-acquisitions - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 22 / 48 CFR Part 22 codifies the labor law requirements applicable to federal contracts and identifies the FAR clauses implementing each statute: FAR Subpart ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-22-labor-laws-government-acquisitions.json #### FAR Part 24 - Protection of Privacy and Freedom of Information (Privacy Act of 1974, FOIA, Privacy Training, System of Records Operation) - **ID**: us-far-part-24-protection-privacy-freedom-information - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 24 implements two foundational information-rights statutes within federal procurement. Subpart 24.1 applies the Privacy Act of 1974 (5 USC 552a) and OMB Circu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-24-protection-privacy-freedom-information.json #### FAR Part 25 - Foreign Acquisition (Buy American Act at 41 USC chapter 83, Trade Agreements Act at 19 USC 2511-2518, Domestic Content Thresholds, FTA Partner Treatment, Iran and Sudan Sanctioned Sources) - **ID**: us-far-part-25-foreign-acquisition-buy-american-trade-agreements - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 25 implements the Buy American Act at 41 USC chapter 83, the Trade Agreements Act at 19 USC sections 2511-2518, and related foreign-source restrictions. Subpa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-25-foreign-acquisition-buy-american-trade-agreements.json #### FAR Part 27 - Patents, Data, and Copyrights (Bayh-Dole Act at 35 USC 200-212, March-In Rights at 35 USC 203, US Manufacturing Preference at 35 USC 204, Rights in Data under 52.227-14, 28 USC 1498 Infringement Liability) - **ID**: us-far-part-27-patents-data-copyrights - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 27 governs patent, data, and copyright rights in federal contracts and applies to all executive agencies for patents and copyrights (Subparts 27.2, 27.3, 27.5... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-27-patents-data-copyrights.json #### FAR Part 31 - Contract Cost Principles and Procedures (Allowability, Reasonableness, Allocability) - **ID**: us-far-part-31-contract-cost-principles - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 31 establishes the cost principles governing allowability of contractor costs charged to federal contracts: Subpart 31.2 (Contracts with Commercial Organizati... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-31-contract-cost-principles.json #### FAR Part 32 - Contract Financing (Progress Payments, Performance-Based Payments, Prompt Payment Act) - **ID**: us-far-part-32-contract-financing - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 32 governs federal contract financing including progress payments, performance-based payments, advance payments, commercial item financing, and the Prompt Pay... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-32-contract-financing.json #### FAR Part 33 - Protests, Disputes, and Appeals (Agency Protests, GAO, COFC, Contract Disputes Act) - **ID**: us-far-part-33-protests-disputes-appeals - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 33 governs three protest forums and the Contract Disputes Act framework: Subpart 33.1 covers protests including agency-level protests under 33.103 (filing wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-33-protests-disputes-appeals.json #### FAR Part 36 - Construction and Architect-Engineer Contracts (Including Qualifications-Based Selection) - **ID**: us-far-part-36-construction-architect-engineer-contracts - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 36 prescribes specialised acquisition procedures for federal construction and architect-engineer (A-E) contracts that modify the standard FAR competition fram... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-36-construction-architect-engineer-contracts.json #### FAR Part 39 - Acquisition of Information Technology (Modular Contracting, Section 508 ICT Accessibility, IT Security, Privacy) - **ID**: us-far-part-39-acquisition-information-technology - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 39 governs federal acquisition of information technology and information and communication technology (ICT), excluding national security systems under 40 USC ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-39-acquisition-information-technology.json #### FAR Part 4 - Administrative and Information Matters (SAM, FPDS, FFATA, Classified Info, CUI/NIST SP 800-171, Section 889 Covered Telecom, FASCSA Orders, Kaspersky and TikTok Prohibitions) - **ID**: us-far-part-4-administrative-information-matters - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 4 governs administrative aspects of contract execution, distribution, reporting, retention, and security prohibitions across federal procurements. Subpart 4.4... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-4-administrative-information-matters.json #### FAR Part 42 - Contract Administration and Audit Services (CAO, DCAA, Indirect Cost Rates, CPARS) - **ID**: us-far-part-42-contract-administration-audit - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 42 governs contract administration and audit services post-award: Subpart 42.1 designates the Defense Contract Audit Agency (DCAA) as the cognisant audit offi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-42-contract-administration-audit.json #### FAR Part 43 - Contract Modifications (Bilateral, Unilateral, Change Orders, Constructive Changes) - **ID**: us-far-part-43-contract-modifications - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 43 governs modifications to federal contracts and prescribes the only authorities by which the Government may alter a contract: Subpart 43.1 defines bilateral... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-43-contract-modifications.json #### FAR Part 44 - Subcontracting Policies and Procedures (Consent, CPSR, Make-or-Buy, Commercial Subcontracts) - **ID**: us-far-part-44-subcontracting-policies - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 44 governs prime contractor subcontracting under federal contracts: Subpart 44.2 (Consent to Subcontracts) requires contracting officer consent under FAR 52.2... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-44-subcontracting-policies.json #### FAR Part 45 - Government Property (Contractor Stewardship of Government-Furnished and Contractor-Acquired Property) - **ID**: us-far-part-45-government-property - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 45 governs Government property in the contractor's possession including Government-furnished property (GFP) provided to the contractor and contractor-acquired... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-45-government-property.json #### FAR Part 47 - Transportation (Federal Acquisition Service, Cargo Preference, Government Bills of Lading) - **ID**: us-far-part-47-transportation - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 47 governs federal transportation acquisitions and the transportation aspects of supply contracts: Subpart 47.1 (General) requires agencies to authorise domes... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-47-transportation.json #### FAR Part 49 - Termination of Contracts (Convenience, Default, and Settlement) - **ID**: us-far-part-49-termination-of-contracts - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 49 governs the termination of federal contracts for the convenience of the Government or for contractor default and prescribes the settlement framework: Subpa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-49-termination-of-contracts.json #### FAR Part 6 - Competition Requirements (Full and Open Competition Framework) - **ID**: us-far-part-6-competition-requirements - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 6 implements the Competition in Contracting Act (41 USC 3301) by establishing the procedural framework for federal procurement competition: Subpart 6.1 requir... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-6-competition-requirements.json #### FAR Part 7 / 48 CFR Part 7 - Acquisition Planning - **ID**: us-far-part-7-acquisition-planning - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 7 / 48 CFR Part 7 establishes federal acquisition planning procedures across five subparts: 7.1 Acquisition Plans (written plans for major acquisitions per 7.... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-7-acquisition-planning.json #### FAR Part 8 - Required Sources of Supplies and Services (Mandatory Source Priority Order, Federal Prison Industries / UNICOR, AbilityOne Procurement List, Federal Supply Schedules / GSA MAS, BPA Limitations) - **ID**: us-far-part-8-required-sources-supplies-services - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 8 establishes a hierarchical priority order of mandatory and preferred sources of supplies and services for federal acquisitions. FAR 8.002(a)(1) sets the man... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-8-required-sources-supplies-services.json #### FAR Part 9 / 48 CFR Part 9 - Contractor Qualifications - **ID**: us-far-part-9-contractor-qualifications - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Federal Acquisition Regulation (FAR) Part 9 / 48 CFR Part 9 establishes the framework for determining contractor responsibility and managing related qualifications across five subparts: 9.1 Responsibl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-part-9-contractor-qualifications.json #### US Federal Acquisition Streamlining Act of 1994 (Public Law 103-355) - Simplified Acquisition and Commercial Items Procurement - **ID**: us-fasa-1994-federal-acquisition-streamlining-pl-103-355 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Federal Acquisition Streamlining Act of 1994 substantially restructured federal procurement law by raising the simplified acquisition threshold to one hundred thousand dollars, creating a preferen... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fasa-1994-federal-acquisition-streamlining-pl-103-355.json #### United States Trade Agreements Act of 1979 (Title 19 USC Chapter 13): Short Title, Congressional Statement of Purposes, Approval of Trade Agreements, General Authority to Modify Discriminatory Purchasing Requirements, Authority to Encourage Reciprocal Competitive Procurement Practices, Civil Aircraft Waiver, and Standards-Related Activities - **ID**: us-trade-agreements-act-1979-19-usc-ch13 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Trade Agreements Act of 1979, Public Law 96-39 of 26 July 1979, codified at Title 19 of the United States Code, Chapter 13, is the principal federal statute providing the framework for implementin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-trade-agreements-act-1979-19-usc-ch13.json #### Uruguay TOCAF Decreto 150/012 of 11 May 2012 (Texto Ordenado de Contabilidad y Administracion Financiera del Estado) and ARCE Agencia Reguladora de Compras Estatales - **ID**: uy-tocaf-decreto-150-012-administracion-financiera-estado-arce - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Uruguayan Texto Ordenado de Contabilidad y Administracion Financiera del Estado (TOCAF, Consolidated Text on State Accounting and Financial Administration) approved by Decreto 150/012 of 11 May 20... - **Discovery URL**: https://bidda.com/api/v1/nodes/uy-tocaf-decreto-150-012-administracion-financiera-estado-arce.json #### Uzbekistan Law on Public Procurement No. ZRU-472 of 9 April 2018 as amended and Xarid (xarid.uzex.uz) e-procurement platform - **ID**: uz-law-on-public-procurement-2018-zru-472-uzex - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Uzbekistan Law on Public Procurement No. ZRU-472 (Davlat xaridlari toGrisida qonun) of 9 April 2018 effective 1 January 2019 as substantially amended over time (most recently by Law No... - **Discovery URL**: https://bidda.com/api/v1/nodes/uz-law-on-public-procurement-2018-zru-472-uzex.json #### Venezuela Ley de Contrataciones Publicas (Decreto con Rango, Valor y Fuerza de Ley) Decreto-Ley 1399 of 13 November 2014 and SNCP - **ID**: ve-ley-de-contrataciones-publicas-decreto-ley-1399-2014 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Venezuelan Ley de Contrataciones Publicas (Decreto con Rango, Valor y Fuerza de Ley de Contrataciones Publicas / Law on Public Procurement) issued by Decreto-Ley 1399 of 13 November 2014 (Gaceta O... - **Discovery URL**: https://bidda.com/api/v1/nodes/ve-ley-de-contrataciones-publicas-decreto-ley-1399-2014.json #### Vietnam Law on Bidding (Luat Dau thau) No. 22/2023/QH15 effective 1 January 2024 - **ID**: vn-law-on-bidding-22-2023-qh15-effective-2024 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Vietnam Law on Bidding No. 22/2023/QH15 (Luat Dau thau) passed by the National Assembly on 23 June 2023 and effective 1 January 2024 is the principal Vietnamese statute governing procurement of go... - **Discovery URL**: https://bidda.com/api/v1/nodes/vn-law-on-bidding-22-2023-qh15-effective-2024.json #### WTO Agreement on Government Procurement 2012 (Revised GPA) - **ID**: wto-agreement-government-procurement-2012-gpa - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The revised WTO Agreement on Government Procurement (GPA 2012), adopted 30 March 2012 and in force since 6 April 2014, is a plurilateral WTO Annex 4 agreement binding 21 WTO Members collectively cover... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-agreement-government-procurement-2012-gpa.json #### World Trade Organization Revised Agreement on Government Procurement (Revised GPA, as amended on 30 March 2012, in force from 6 April 2014): Definitions, Scope and Coverage, General Principles of National Treatment and Non-Discrimination, Notices of Intended Procurement, Technical Specifications, Treatment of Tenders and Awarding of Contracts, Domestic Review Procedures, and Modifications and Rectifications to Coverage - **ID**: wto-revised-government-procurement-agreement-2012 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Revised Agreement on Government Procurement (Revised GPA), as amended on 30 March 2012 and in force from 6 April 2014, is the WTO plurilateral instrument among 22 parties (including the European U... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-revised-government-procurement-agreement-2012.json #### South Africa Preferential Procurement Regulations, 2022 - **ID**: za-preferential-procurement-regulations-2022 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Preferential Procurement Regulations, 2022, promulgated by the Minister of Finance on 4 November 2022 under Government Notice 2721 in Government Gazette 47452 and taking effect on 16 January 2023,... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-preferential-procurement-regulations-2022.json #### South Africa Public Administration Management Amendment Act 7 of 2025 - Ethical Standards, Secondment Framework, and National School of Government - **ID**: za-public-administration-management-amendment-act-7-of-2025 - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: Public administration employees and accounting authorities in South Africa must apply the Public Administration Management Amendment Act 7 of 2025 as published in Government Gazette 54449 on 1 April 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-public-administration-management-amendment-act-7-of-2025.json #### Zambia Public Procurement Act No. 8 of 2020 effective 1 June 2021 and the Zambia Public Procurement Authority (ZPPA) - **ID**: zm-public-procurement-act-8-2020-zppa-eppx - **Category**: Public Sector & Government Procurement - **Version**: 1.0.0 - **BLUF**: The Republic of Zambia Public Procurement Act No. 8 of 2020 (Act 8 of 2020) effective 1 June 2021 as supplemented by the Public Procurement Regulations 2022 (SI 32 of 2022) is the principal Zambian st... - **Discovery URL**: https://bidda.com/api/v1/nodes/zm-public-procurement-act-8-2020-zppa-eppx.json ### Sales, Marketing & PR (120 nodes) #### AMA (Ethical Marketing) - **ID**: ama-ethical-marketing - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: Adherence to this node's parameters ensures marketing communications embody the American Marketing Association's core ethical norms, primarily to do no harm, foster trust within the marketing system, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ama-ethical-marketing.json #### ASA (Advertising Codes) - **ID**: asa-advertising-codes-uk - **Category**: Sales, Marketing & PR - **Version**: 1.1.1 - **BLUF**: Evaluation against the UK Advertising Codes confirms this marketing communication satisfies all primary regulatory obligations. The content is explicitly identifiable as an advertisement, upholding th... - **Discovery URL**: https://bidda.com/api/v1/nodes/asa-advertising-codes-uk.json #### Austria Bundesgesetz gegen den unlauteren Wettbewerb 1984 (UWG, BGBl. Nr. 448/1984) - **ID**: at-uwg-bundesgesetz-1984 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Bundesgesetz gegen den unlauteren Wettbewerb (UWG, BGBl. Nr. 448/1984 idgF) is Austria's principal unfair competition statute, transposing EU Directive 2005/29/EC Unfair Commercial Practices (UCPD... - **Discovery URL**: https://bidda.com/api/v1/nodes/at-uwg-bundesgesetz-1984.json #### Australia ACL Unfair Contract Terms - Schedule 2 CCA Extension to Small Business Contracts - **ID**: australia-acl-unfair-contract-terms-sch2-cca-small-business - **Category**: Sales, Marketing & PR - **Version**: 2.0 - **BLUF**: Australia's Australian Consumer Law (Schedule 2, Competition and Consumer Act 2010) prohibits unfair terms in standard form consumer and small business contracts - ACCC/ASIC can void unfair terms; 202... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-acl-unfair-contract-terms-sch2-cca-small-business.json #### Belgium Code de droit economique - Livre VI (Pratiques du marche et protection du consommateur) - **ID**: be-code-droit-economique-livre-vi - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Belgian Code de droit economique consolidates economic regulation in 19 Livres. Livre VI (Pratiques du marche et protection du consommateur) governs market practices and consumer protection, repla... - **Discovery URL**: https://bidda.com/api/v1/nodes/be-code-droit-economique-livre-vi.json #### An Act to promote the efficiency and adaptability of the Canadian economy by regulating certain activities that discourage reliance on electronic means of carrying out commercial activities - Section 6: Unsolicited electronic messages - **ID**: ca-casl-section-6-prohibition-commercial-messages - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Organizations are prohibited from sending a commercial electronic message unless the recipient has provided consent and the message contains specific sender identification, contact information, and an... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-casl-section-6-prohibition-commercial-messages.json #### CAN-SPAM Act (Email) - **ID**: can-spam-act-email - **Category**: Sales, Marketing & PR - **Version**: 1.1.1 - **BLUF**: Controlling the Assault of Non-Solicited Pornography and Marketing Act of 2003, commonly known as the CAN-SPAM Act, establishes national standards for sending commercial electronic mail. Compliance re... - **Discovery URL**: https://bidda.com/api/v1/nodes/can-spam-act-email.json #### Canada CASL (An Act to promote the efficiency and adaptability of the Canadian economy) - SC 2010, c. 23 Commercial Electronic Message Consent Requirements - **ID**: canada-casl-sc-2010-c23-commercial-electronic-messages-consent - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: CASL (SC 2010, c. 23) requires express or implied consent before sending commercial electronic messages (CEMs - email, SMS, social media messages) to Canadian electronic addresses. Express consent is ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-casl-sc-2010-c23-commercial-electronic-messages-consent.json #### Canada Competition Act Misleading Advertising 2024 - Drip Pricing Prohibition, Greenwashing Claims Enforcement (Section 74.01), Deceptive Reviews, Expanded Class Action for Misleading Conduct and CRTC/Competition Bureau Joint Action on Telemarketing - **ID**: canada-competition-act-misleading-advertising-2024 - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: This regulation prohibits deceptive marketing practices under Section 74.01 of the Competition Act, including drip pricing, unsubstantiated environmental claims (greenwashing), and fake reviews. It ap... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-competition-act-misleading-advertising-2024.json #### CASL (Anti-Spam Canada) - **ID**: casl-anti-spam-canada - **Category**: Sales, Marketing & PR - **Version**: 1.1.1 - **BLUF**: Canada's Anti-Spam Legislation, governed by CASL S.C. 2010, c. 23, mandates strict compliance for sending Commercial Electronic Messages (CEMs). A core tenet is the prohibition outlined in Section 6(1... - **Discovery URL**: https://bidda.com/api/v1/nodes/casl-anti-spam-canada.json #### Chile Law 19.496 on Consumer Protection - SERNAC Rights and Collective Actions - **ID**: chile-sernac-consumer-protection-law-19496 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Chile's Ley de Proteccion del Consumidor (Law 19.496, 1997, as amended through Law 21.398 of 2022) establishes consumer rights, prohibits abusive contract clauses, mandates information disclosure, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/chile-sernac-consumer-protection-law-19496.json #### Germany Gesetz gegen den unlauteren Wettbewerb (UWG - Act against Unfair Competition) - **ID**: de-uwg-gesetz-gegen-unlauteren-wettbewerb - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Gesetz gegen den unlauteren Wettbewerb (UWG) is Germany's principal unfair competition statute, originally enacted on 3 July 2004 (Bundesgesetzblatt I S. 1414), recast on 2 December 2015 and last ... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-uwg-gesetz-gegen-unlauteren-wettbewerb.json #### Deterministic Lead Scoring Logic and Consent-Based Processing Governance - **ID**: deterministic-lead-scoring-logic - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This logic establishes a compliant framework for evaluating individuals through auditable, rule-based processing. It mandates explicit consent for profiling (GDPR Art. 6(1)(a)), respects consumer opt-... - **Discovery URL**: https://bidda.com/api/v1/nodes/deterministic-lead-scoring-logic.json #### Spain Ley 3/1991 de Competencia Desleal - **ID**: es-ley-3-1991-competencia-desleal - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Ley 3/1991, de 10 de enero, de Competencia Desleal (LCD) is Spain's principal Unfair Competition Act, in force from 31 January 1991 and substantially amended in 2009 to transpose the EU Unfair Commerc... - **Discovery URL**: https://bidda.com/api/v1/nodes/es-ley-3-1991-competencia-desleal.json #### Spain Ley 34/1988 General de Publicidad - **ID**: es-ley-34-1988-general-publicidad - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Ley 34/1988, de 11 de noviembre, General de Publicidad establishes the general legal framework for advertising activity in Spain. The Law is organised into four Titulos: Titulo I (Disposiciones Genera... - **Discovery URL**: https://bidda.com/api/v1/nodes/es-ley-34-1988-general-publicidad.json #### Spain Real Decreto Legislativo 1/2007 - Texto Refundido de la Ley General para la Defensa de los Consumidores y Usuarios (TRLGDCU) - **ID**: es-rdl-1-2007-defensa-consumidores - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Real Decreto Legislativo 16 noviembre 2007 n. 1 aprueba el Texto Refundido de la Ley General para la Defensa de los Consumidores y Usuarios (TRLGDCU), in force from 1 December 2007 and updated through... - **Discovery URL**: https://bidda.com/api/v1/nodes/es-rdl-1-2007-defensa-consumidores.json #### Regulation (EU) 2024/1689 of the European Parliament and of the Council of 13 June 2024 on harmonised rules on artificial intelligence (Artificial Intelligence Act) - Prohibition of AI Systems Using Subliminal Techniques or Exploiting Vulnerabilities - **ID**: eu-ai-act-prohibited-ai-subliminal-manipulation - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The EU AI Act Article 5 prohibits AI systems that deploy subliminal techniques, exploit known vulnerabilities of individuals (based on age, disability, or social situation), or manipulate behavior in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-prohibited-ai-subliminal-manipulation.json #### EU Consumer Rights Directive 2011/83/EU - Distance Sales Information Requirements, 14-Day Right of Withdrawal and Digital Content Rules - **ID**: eu-consumer-rights-directive-2011-83-distance-sales - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Directive 2011/83/EU of the European Parliament and of the Council of 25 October 2011 on consumer rights, amending Council Directive 93/13/EEC and Directive 1999/44/EC and repealing Council Directive ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-consumer-rights-directive-2011-83-distance-sales.json #### Directive (EU) 2019/771 of the European Parliament and of the Council of 20 May 2019 on the sale of goods, amending Regulations (EU) 2017/2394 and (EU) 2018/858, and repealing Directive 1999/44/EC - **ID**: eu-consumer-sales-directive-2019-771 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This Directive establishes a harmonized 2-year legal guarantee for consumer goods, requiring sellers to ensure conformity at the time of delivery. Consumers have a hierarchy of remedies-repair or repl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-consumer-sales-directive-2019-771.json #### Regulation (EU) 2022/2065 of the European Parliament and of the Council of 19 October 2022 on a Single Market For Digital Services and Amending Directive 2000/31/EC - Article 26: Transparency and Risks Related to Online Advertising - **ID**: eu-digital-services-act-advertising-2022 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Digital service providers designated as Very Large Online Platforms (VLOPs) must maintain a publicly accessible, real-time repository of all published ads, disclose the main parameters determining ad ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-services-act-advertising-2022.json #### Regulation (EU) 2024/1781 on ecodesign for sustainable products and repealing Directive 2009/125/EC - **ID**: eu-ecodesign-regulation-2024-sustainable-products - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: The EU Sustainable Products Regulation 2024 establishes mandatory ecodesign requirements for a wide range of products sold in the EU, including digital product passports, repairability and durability ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecodesign-regulation-2024-sustainable-products.json #### Directive 2000/31/EC of the European Parliament and of the Council of 8 June 2000 on certain legal aspects of information society services, in particular electronic commerce, in the Internal Market ('Directive on electronic commerce') - **ID**: eu-ecommerce-directive-2000-31 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This directive establishes the 'country of origin' principle for online services in the EU, meaning providers are subject to the laws of the Member State where they are established, not where the serv... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecommerce-directive-2000-31.json #### Directive 2000/31/EC of the European Parliament and of the Council of 8 June 2000 on certain legal aspects of information society services, in particular electronic commerce, in the Internal Market ('Directive on electronic commerce') - **ID**: eu-ecommerce-directive-2000-31-platform-liability - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: This directive establishes limited liability for intermediary service providers (e.g., hosting platforms) when they act as mere conduits, cache, or hosts, provided they do not initiate transmissions, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecommerce-directive-2000-31-platform-liability.json #### EU Empowering Consumers for the Green Transition Directive (Directive 2024/825) - Amending UCPD 2005/29/EC and Consumer Rights Directive 2011/83/EU on Greenwashing and Early Obsolescence - **ID**: eu-empowering-consumers-green-transition-directive-2024-825 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2024/825 of the European Parliament and of the Council of 28 February 2024 amends the Unfair Commercial Practices Directive 2005/29/EC and the Consumer Rights Directive 2011/83/EU to st... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-empowering-consumers-green-transition-directive-2024-825.json #### Regulation (EU) 2017/1369 of the European Parliament and of the Council of 4 July 2017 setting a framework for energy labelling and repealing Directive 2010/30/EU - **ID**: eu-energy-labelling-regulation-2017-1369-marketing - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This regulation mandates that energy-related products placed on the EU market must display a rescaled A-G energy efficiency label both on the physical product and in all online and offline advertising... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-labelling-regulation-2017-1369-marketing.json #### Regulation (EU) 2018/302 of the European Parliament and of the Council of 28 February 2018 on addressing unjustified geo-blocking and other forms of discrimination based on customers' nationality, place of residence or place of establishment within the internal market and amending Regulations (EC) No 2006/2004 and (EU) 2017/2394 and Directive 2009/22/EC - **ID**: eu-geo-blocking-regulation-2018-302 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This regulation prohibits traders in the EU from discriminating against customers based on their nationality, place of residence, or place of establishment. As per Article 3, traders cannot block or l... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-geo-blocking-regulation-2018-302.json #### Regulation (EU) 2019/1020 of the European Parliament and of the Council of 20 June 2019 on market surveillance and compliance of products and amending Directive 2004/42/EC and Regulation (EC) No 765/2008 - **ID**: eu-market-surveillance-regulation-2019-1020 - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: This regulation establishes obligations for economic operators, including online marketplace operators, to ensure product traceability and compliance with EU safety rules. It mandates that importers a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-market-surveillance-regulation-2019-1020.json #### Directive (EU) 2019/2161 of the European Parliament and of the Council of 27 November 2019 amending Directive 2005/29/EC and Regulation (EU) No 2006/2004 as regards enforcement, modernisation and clarification of Union consumer protection rules - **ID**: eu-omnibus-directive-digital-product-reviews-2022 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Prohibits fake online reviews and requires digital platforms to verify the authenticity of consumer reviews, disclose incentivised or AI-generated content, and prevent fake social media followers. App... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-omnibus-directive-digital-product-reviews-2022.json #### Regulation (EU) 2019/1150 of the European Parliament and of the Council of 20 June 2019 on promoting fairness and transparency for business users of online intermediation services and online search engines - **ID**: eu-p2b-platform-regulation-2019-ranking-transparency - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: Online platforms must provide business users with clear, effective, and timely information about the main parameters determining ranking of products or services, including the relative importance of t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-p2b-platform-regulation-2019-ranking-transparency.json #### EU Air, Rail and Sea Passenger Rights Regulations - Sales Obligations: Clear Price Display (All Taxes Included), Cancellation Refund Rights (7-14 Days), Voucher Alternative Conditions, Re-routing Obligations, Rebooking for Disruptions and Enforcement by National Bodies - **ID**: eu-passenger-rights-regulation-pr-sales-2021 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This regulation establishes enforceable passenger rights across air, rail, road, and ship travel in the EU, requiring carriers to provide non-discriminatory access, timely information, assistance duri... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-passenger-rights-regulation-pr-sales-2021.json #### Directive 98/6/EC of the European Parliament and of the Council of 16 February 1998 on consumer protection in the indication of the prices of products offered to consumers, as amended by Directive (EU) 2019/2161 - **ID**: eu-price-indication-directive-1998 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This directive requires traders in the EU to clearly indicate the selling price and the price per unit of measurement (unit price) for products offered to consumers. Following the 2022 updates via the... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-price-indication-directive-1998.json #### Directive 98/6/EC of the European Parliament and of the Council of 16 February 1998 on consumer protection in the indication of the prices of products offered to consumers, as amended by Directive (EU) 2019/2161 (Omnibus Directive on better enforcement and modernisation of Union consumer protection rules) - **ID**: eu-price-indication-directive-1998-2022-update - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This directive requires all traders offering goods or services to consumers in the EU to display a mandatory 30-day reference price alongside any sale price (Article 6a as inserted by Directive (EU) 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-price-indication-directive-1998-2022-update.json #### Directive (EU) 2024/2853 of the European Parliament and of the Council of 24 October 2024 on liability for defective products, amending Regulation (EU) 2023/988 and repealing Council Directive 85/374/EEC - **ID**: eu-product-liability-directive-2024-revision - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: This Directive expands product liability to cover software, AI systems, and digital services, imposes a reversed burden of proof in cases involving complex technologies (Article 8), removes financial ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-product-liability-directive-2024-revision.json #### Directive 2005/29/EC of the European Parliament and of the Council of 11 May 2005 concerning unfair business-to-consumer commercial practices in the internal market and amending Council Directive 84/450/EEC, Directives 97/7/EC, 98/27/EC and 2002/65/EC of the European Parliament and of the Council and Regulation (EC) No 2006/2004 of the European Parliament and of the Council (‘Unfair Commercial Practices Directive’) - **ID**: eu-unfair-commercial-practices-2005-29 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This EU directive prohibits traders from using unfair business-to-consumer commercial practices that are likely to materially distort the economic behavior of the average consumer. It specifically ban... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-unfair-commercial-practices-2005-29.json #### Directive (EU) 2005/29/EC of the European Parliament and of the Council of 11 May 2005 concerning unfair business-to-consumer commercial practices in the internal market, as amended by Directive (EU) 2022/2523 on empowering consumers for the green transition and ensuring fairness in the digital age - **ID**: eu-unfair-commercial-practices-2005-29-2022-revision - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: Prohibits unfair commercial practices in B2C markets, with specific 2022 revisions banning drip pricing, requiring clear influencer marketing disclosures, mandating transparency in online marketplace ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-unfair-commercial-practices-2005-29-2022-revision.json #### EU Unfair Commercial Practices Directive 2005/29 -- B2C Marketing and Consumer Protection - **ID**: eu-unfair-commercial-practices-directive-2005-29 - **Category**: Sales, Marketing & PR - **Version**: 2024.1.0 - **BLUF**: Directive 2005/29/EC (UCPD) prohibits unfair commercial practices in business-to-consumer (B2C) transactions throughout the EU. A commercial practice is unfair if it is contrary to professional dilige... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-unfair-commercial-practices-directive-2005-29.json #### EU Unfair Commercial Practices Directive 2005/29/EC - Misleading Advertising & Aggressive Practices - **ID**: eu-unfair-commercial-practices-directive-2005-29-ec-advertising - **Category**: Sales, Marketing & PR - **Version**: 2.0 - **BLUF**: Directive 2005/29/EC prohibits unfair business-to-consumer commercial practices including misleading actions, misleading omissions, and aggressive practices that materially distort consumers' transact... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-unfair-commercial-practices-directive-2005-29-ec-advertising.json #### France Code de la Consommation (Consumer Code) - **ID**: fr-code-consommation - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The French Code de la consommation is the consolidated codification of French consumer protection law, applying the EU Unfair Commercial Practices Directive 2005/29/CE, Consumer Rights Directive 2011/... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-code-consommation.json #### France Loi Evin Alcohol Advertising Restrictions 1991 - Article L3323-2 and Health Warning Requirements - **ID**: france-loi-evin-alcohol-advertising-1991 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: France's Loi Evin (Law No. 91-32 of 10 January 1991 on the fight against tobacco use and alcoholism) codified in the Public Health Code Articles L3323-1 to L3323-6 restricts alcohol advertising to per... - **Discovery URL**: https://bidda.com/api/v1/nodes/france-loi-evin-alcohol-advertising-1991.json #### How to Make Effective Disclosures in Digital Advertising - **ID**: ftc-digital-advertising-disclosures - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The general principles of advertising law apply online, and this guidance addresses how businesses can develop ads for online media in compliance with the law. The same consumer protection laws applic... - **Discovery URL**: https://bidda.com/api/v1/nodes/ftc-digital-advertising-disclosures.json #### FTC (Endorsement Guides) - **ID**: ftc-endorsement-guides - **Category**: Sales, Marketing & PR - **Version**: 1.1.1 - **BLUF**: An evaluation of this endorsement content reveals a significant compliance failure under Federal Trade Commission authority, as established by Section 5(a) of the FTC Act, which prohibits unfair or de... - **Discovery URL**: https://bidda.com/api/v1/nodes/ftc-endorsement-guides.json #### Guides Concerning the Use of Endorsements and Testimonials in Advertising (16 C.F.R. Part 255) - 2023 Update - **ID**: ftc-endorsement-guides-2023 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The FTC's 2023 updated Endorsement Guides (16 C.F.R. § 255.5) require advertisers and endorsers, including social media influencers and review platforms, to clearly and conspicuously disclose any mate... - **Discovery URL**: https://bidda.com/api/v1/nodes/ftc-endorsement-guides-2023.json #### Germany Act against Unfair Competition (UWG) 2004 - Abmahnung and Injunction Framework - **ID**: germany-uwg-unfair-competition-act-2004 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Germany's Gesetz gegen den unlauteren Wettbewerb (UWG, BGBl. 2004 I S. 1414, last amended 2022) prohibits unfair commercial practices using a general clause (Section 3), an Annex of 30 per se prohibit... - **Discovery URL**: https://bidda.com/api/v1/nodes/germany-uwg-unfair-competition-act-2004.json #### Global Alliance (PR Ethics) - **ID**: global-alliance-pr-ethics - **Category**: Sales, Marketing & PR - **Version**: 1.1.1 - **BLUF**: Operational adherence to this node's framework necessitates stringent compliance with the Global Alliance Code of Ethics, beginning with the foundational directive of Working in the public interest an... - **Discovery URL**: https://bidda.com/api/v1/nodes/global-alliance-pr-ethics.json #### Hong Kong Trade Descriptions Ordinance (Cap 362) - **ID**: hk-trade-descriptions-ordinance-cap-362 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Trade Descriptions Ordinance (Cap 362, Ordinance No. 75 of 1980) is Hong Kong's principal consumer-protection statute regulating misleading and aggressive commercial practices. The Ordinance was i... - **Discovery URL**: https://bidda.com/api/v1/nodes/hk-trade-descriptions-ordinance-cap-362.json #### IAB Ads.txt (Auth) - **ID**: iab-ads-txt-authorization - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: Compliance with the IAB Tech Lab's Ads.txt Specification Version 1.1 is a mandatory control under the Trustworthy Accountability Group's Certified Against Fraud Guidelines. The BIDDA platform enforces... - **Discovery URL**: https://bidda.com/api/v1/nodes/iab-ads-txt-authorization.json #### IAB MRAID (Mobile Ads) - **ID**: iab-mraid-mobile-ads - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: Compliance with this node mandates strict adherence to the IAB Mobile Rich Media Ad Interface Definition (MRAID) v3.0 specification and pertinent data privacy regulations. All ad creatives must suppor... - **Discovery URL**: https://bidda.com/api/v1/nodes/iab-mraid-mobile-ads.json #### IAB OpenRTB - **ID**: iab-openrtb-standard - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: Enforcement of the IAB OpenRTB protocol ensures rigorous adherence to technical specifications and global privacy regulations. This configuration mandates compliance with key structural elements from ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iab-openrtb-standard.json #### IAB Sellers.json - **ID**: iab-sellers-json-standard - **Category**: Sales, Marketing & PR - **Version**: 1.1.1 - **BLUF**: Adherence to the IAB Tech Lab Sellers.json Final Specification v1.0 is a critical mechanism for promoting transparency and combating fraud within the programmatic advertising ecosystem, a concern unde... - **Discovery URL**: https://bidda.com/api/v1/nodes/iab-sellers-json-standard.json #### IAB SIMID (Interactive) - **ID**: iab-simid-interactive-ads - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: Configuration within this compliance node mandates rigorous security controls for interactive advertisements employing the IAB's Secure Interactive Media Interface Definition (SIMID), with a `minimum_... - **Discovery URL**: https://bidda.com/api/v1/nodes/iab-simid-interactive-ads.json #### IAB TCF v2.2 (Consent) - **ID**: iab-tcf-v2-2-consent - **Category**: Sales, Marketing & PR - **Version**: 1.1.1 - **BLUF**: Compliance with IAB Europe's Transparency and Consent Framework v2.2 is enforced according to its governing TCF Policy Version 4, establishing a valid legal basis for data processing pursuant to Gener... - **Discovery URL**: https://bidda.com/api/v1/nodes/iab-tcf-v2-2-consent.json #### IAB Europe Transparency and Consent Framework (TCF) v2.2 - GDPR-Compliant Consent Signalling for Online Advertising - **ID**: iab-tcf-v2-consent-framework - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The IAB TCF provides a standardized mechanism for websites, advertisers, and ad tech vendors to obtain, manage, and signal user consent for processing personal data in compliance with GDPR and the ePr... - **Discovery URL**: https://bidda.com/api/v1/nodes/iab-tcf-v2-consent-framework.json #### IAB VAST (Video Ads) - **ID**: iab-vast-video-ads - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: This configuration establishes rigorous compliance standards for digital video advertising by mandating strict adherence to the IAB Tech Lab's VAST 4.3 specification. It requires every creative to con... - **Discovery URL**: https://bidda.com/api/v1/nodes/iab-vast-video-ads.json #### Ireland Consumer Protection Act 2007 (No. 19 of 2007) - **ID**: ie-consumer-protection-act-2007 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Consumer Protection Act 2007 (No. 19 of 2007) is Ireland's principal consumer protection statute transposing EU Directive 2005/29/EC on Unfair Commercial Practices (UCPD). The Act was enacted on 2... - **Discovery URL**: https://bidda.com/api/v1/nodes/ie-consumer-protection-act-2007.json #### India Consumer Protection Act 2019 (Act 35) - CCPA Enforcement and Product Liability - **ID**: india-consumer-protection-act-2019-ccpa - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: India's Consumer Protection Act 2019 (Act 35 of 2019, in force 20 July 2020) replaces the 1986 Act; establishes the Central Consumer Protection Authority (CCPA) with suo motu investigation powers and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-consumer-protection-act-2019-ccpa.json #### Consumer Protection (E-Commerce) Rules, 2020 - **ID**: india-consumer-protection-e-commerce-rules-2020 - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: The Consumer Protection (E-Commerce) Rules, 2020 mandate all e-commerce entities in India to appoint a grievance officer, display return/refund/warranty policies, disclose country of origin for produc... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-consumer-protection-e-commerce-rules-2020.json #### Indonesia Consumer Protection Law No. 8/1999 - BPKN and BPSK Enforcement Framework - **ID**: indonesia-consumer-protection-law-no-8-1999 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Indonesia's Law No. 8 of 1999 on Consumer Protection (Undang-Undang Perlindungan Konsumen) establishes consumer rights, producer and distributor obligations, prohibitions on misleading advertising and... - **Discovery URL**: https://bidda.com/api/v1/nodes/indonesia-consumer-protection-law-no-8-1999.json #### UK IPSO Editor's Code of Practice 2023 - Press Standards: Accuracy and Corrections, Privacy Intrusion, Harassment, Discrimination, Confidential Sources, Reporting on Children, Financial Journalism Conflicts and Native Advertising Disclosure Standards - **ID**: ipso-editor-code-practice-2023-advertising - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This regulation sets binding standards for print and digital news publishers under IPSO to ensure accuracy, protect privacy, prevent harassment, and uphold ethical reporting, particularly regarding ch... - **Discovery URL**: https://bidda.com/api/v1/nodes/ipso-editor-code-practice-2023-advertising.json #### ISO 10008 (B2C E-commerce) - **ID**: iso-10008-b2c-ecommerce - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: ISO 10008 establishes a comprehensive framework for business-to-consumer electronic commerce transactions, emphasizing consumer trust, transparency, and effective redress mechanisms. Foundational guid... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-10008-b2c-ecommerce.json #### ISO 10668 (Brand Value) - **ID**: iso-10668-brand-valuation - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: Adherence to ISO 10668 for monetary brand valuation mandates a rigorous and auditable framework, ensuring transparency, consistency, and reliability in all assessments. This compliance node enforces t... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-10668-brand-valuation.json #### ISO 20252 (Market Research) - **ID**: iso-20252-market-research - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: Conformance with the international standard for market, opinion, and social research necessitates a verifiable, quality-managed framework governing the entire research lifecycle from inception through... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20252-market-research.json #### ISO 20252 (Opinion) - **ID**: iso-20252-opinion-research - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: An assessment of the current state reveals profound non-conformance with core tenets of the ISO 20252 standard for market, opinion, and social research. The research process exhibits systemic deficien... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20252-opinion-research.json #### ISO 20671 (Brand) - **ID**: iso-20671-brand-evaluation - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: Adherence to the ISO 20671 standard requires a comprehensive framework for brand evaluation, encompassing legal, financial, market, and stakeholder dimensions. This module verifies the robustness of a... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20671-brand-evaluation.json #### Italy Decreto Legislativo 145/2007 on B2B Misleading and Comparative Advertising - **ID**: it-d-lgs-145-2007-misleading-comparative-advertising - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Decreto Legislativo 2 agosto 2007 n. 145 transposes EU Directive 2006/114/EC into Italian law, regulating misleading and comparative advertising between businesses (B2B). The decree was in force from ... - **Discovery URL**: https://bidda.com/api/v1/nodes/it-d-lgs-145-2007-misleading-comparative-advertising.json #### Italy Decreto Legislativo 206/2005 - Codice del Consumo - **ID**: it-d-lgs-206-2005-codice-del-consumo - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Decreto Legislativo 6 settembre 2005 n. 206 (Codice del Consumo) is Italy's consolidated consumer protection framework, in force from 23 October 2005 and continuously updated through implementation of... - **Discovery URL**: https://bidda.com/api/v1/nodes/it-d-lgs-206-2005-codice-del-consumo.json #### Italy Decreto Legislativo 70/2003 - Attuazione della Direttiva 2000/31/CE sul commercio elettronico (E-Commerce Decree) - **ID**: it-d-lgs-70-2003-e-commerce - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Decreto Legislativo 9 aprile 2003 n. 70 transposes EU Directive 2000/31/CE on certain legal aspects of information society services and electronic commerce in the internal market into Italian law. The... - **Discovery URL**: https://bidda.com/api/v1/nodes/it-d-lgs-70-2003-e-commerce.json #### Japan Act against Unjustifiable Premiums and Misleading Representations (Keihyo-ho 1962) - **ID**: japan-act-premiums-misleading-representations-1962 - **Category**: Sales, Marketing & PR - **Version**: Amended 2023 - **BLUF**: Japan's Act against Unjustifiable Premiums and Misleading Representations (景品表示法, Keihyo-ho, Law No. 134 of 1962, last amended 2023) prohibits misleading advertising claiming superior products or adva... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-act-premiums-misleading-representations-1962.json #### Japan Act against Unjustifiable Premiums and Misleading Representations (Keihyo-ho, Act No. 134 of 1962) - **ID**: jp-keihyo-ho-premium-misleading-representations-act - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Act against Unjustifiable Premiums and Misleading Representations (景品表示法, Keihyo-ho), enacted as Act No. 134 of 1962 and substantially amended in 2014, 2016 and 2023, is Japan's principal regulato... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-keihyo-ho-premium-misleading-representations-act.json #### Japan Specified Commercial Transactions Act (Tokutei Shōtorihiki-hō, Act No. 57 of 1976) - **ID**: jp-specified-commercial-transactions-act-1976 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Specified Commercial Transactions Act (Tokutei Shōtorihiki-hō, 特定商取引法, Act No. 57 of 1976), as amended in 2008, 2016 and 2021, regulates six categories of commercial transactions in which consumer... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-specified-commercial-transactions-act-1976.json #### Marketing Attribution - **ID**: marketing-attribution-models - **Category**: Sales, Marketing & PR - **Version**: 1.1.1 - **BLUF**: Organizational adherence to marketing attribution standards mandates a comprehensive, multi-faceted approach to measurement and reporting. Prevailing regulations require the concurrent implementation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/marketing-attribution-models.json #### MRC (Viewability) - **ID**: mrc-viewability-standard - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: Adherence to Media Rating Council and Interactive Advertising Bureau standards for viewable impressions is mandatory for compliant digital advertising measurement. This configuration enforces the base... - **Discovery URL**: https://bidda.com/api/v1/nodes/mrc-viewability-standard.json #### Norway Markedsføringsloven (Marketing Control Act) LOV-2009-01-09-2 - **ID**: no-markedsforingsloven-2009 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Lov 9. januar 2009 nr. 2 om kontroll med markedsføring og avtalevilkår mv. (Markedsføringsloven) is Norway's principal Marketing Control Act, in force from 1 June 2009 and transposing the EU Unfair Co... - **Discovery URL**: https://bidda.com/api/v1/nodes/no-markedsforingsloven-2009.json #### Recommendation of the Council on Consumer Protection in E-commerce - **ID**: oecd-guidelines-consumer-protection-2016 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This OECD recommendation provides a framework for businesses engaged in B2C e-commerce to ensure fair practices, requiring clear and conspicuous disclosure of business identity, product/service inform... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-guidelines-consumer-protection-2016.json #### Philippines Consumer Act (Republic Act 7394, 1992) - DTI Consumer Protection and Product Safety - **ID**: philippines-consumer-act-ra-7394-1992 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Republic Act 7394 (Consumer Act of the Philippines, 1992) establishes comprehensive consumer protection covering product quality and safety, deceptive and unfair sales acts, service warranties, and cr... - **Discovery URL**: https://bidda.com/api/v1/nodes/philippines-consumer-act-ra-7394-1992.json #### PRSA (Code of Ethics) - **ID**: prsa-code-of-ethics - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: The PRSA Code of Ethics identifies the foundational standards for the Public Relations (PR) professionals. it specifies the '6 Core Values' (Advocacy, Honesty, Expertise, Independence, Loyalty, Fairne... - **Discovery URL**: https://bidda.com/api/v1/nodes/prsa-code-of-ethics.json #### Sales CRM Best Practices - **ID**: sales-crm-best-practices - **Category**: Sales, Marketing & PR - **Version**: 1.1.1 - **BLUF**: Adherence to established Sales CRM best practices mandates stringent data governance and operational protocols to ensure integrity, security, and regulatory compliance. Pursuant to governing data stan... - **Discovery URL**: https://bidda.com/api/v1/nodes/sales-crm-best-practices.json #### Lead Gen Compliance - **ID**: sales-lead-gen-compliance - **Category**: Sales, Marketing & PR - **Version**: 1.1.0 - **BLUF**: Lead generation outreach activities are governed by a complex framework of federal and international regulations. Compliance necessitates rigorous validation of consent and adherence to do-not-call ma... - **Discovery URL**: https://bidda.com/api/v1/nodes/sales-lead-gen-compliance.json #### Sweden Marknadsforingslagen (Marketing Act) SFS 2008:486 - **ID**: se-marknadsforingslagen-2008-486 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Marknadsforingslagen (SFS 2008:486) is Sweden's principal marketing statute, in force from 1 July 2008 and last materially amended by SFS 2022:656 transposing EU Omnibus Directive 2019/2161/EU. The Ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/se-marknadsforingslagen-2008-486.json #### Singapore Consumer Protection (Fair Trading) Act 2003 (Cap. 52A) - Unfair Practices, Consumer Right to Sue and CCCS Enforcement - **ID**: sg-cpfta-consumer-protection-fair-trading-act-2003 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Singapore's Consumer Protection (Fair Trading) Act 2003 (CPFTA, originally Cap. 52A; revised edition 2021) is the principal statute regulating unfair practices by suppliers against consumers. The Act ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-cpfta-consumer-protection-fair-trading-act-2003.json #### An Act to protect consumers against unfair practices and to give consumers additional rights in respect of goods that do not conform to contract, and for matters connected therewith. - **ID**: singapore-consumer-protection-fair-trading-act-2004 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Consumer Protection (Fair Trading) Act 2003 prohibits unfair practices by suppliers in consumer transactions and grants consumers rights to cancel certain contracts within a 5-day period, particul... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-consumer-protection-fair-trading-act-2004.json #### Consumer Protection Act, No. 68 of 2008 - Prohibited Marketing Practices, Direct Marketing Opt-Out Registry, Cooling-Off Right, Unsolicited Goods Prohibition, Loyalty Programme Disclosure and Promotional Competition Rules - **ID**: south-africa-consumer-protection-act-marketing-rules - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The South African Consumer Protection Act (CPA) prohibits misleading, deceptive, and aggressive marketing practices, mandates a national direct marketing opt-out registry, grants consumers a 5-busines... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-consumer-protection-act-marketing-rules.json #### South Korea Act on Fair Labeling and Advertising 1999 - KFTC Misleading Advertising Enforcement - **ID**: south-korea-fair-labeling-advertising-act-1999 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: South Korea's Act on Fair Labeling and Advertising (Law No. 5814, 1999, as amended through 2023) prohibits false, exaggerated, and misleading advertising; empowers the Korea Fair Trade Commission (KFT... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-korea-fair-labeling-advertising-act-1999.json #### Switzerland Unfair Competition Act 1986 (UCA/LCD) - SECO Enforcement and Misleading Advertising Rules - **ID**: switzerland-unfair-competition-act-1986-uca - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Switzerland's Federal Act against Unfair Competition of 19 December 1986 (UCA - Unlauterkeitsgesetz/LCD - Loi sur la concurrence deloyale, SR 241) prohibits deceptive, misleading, and aggressive comme... - **Discovery URL**: https://bidda.com/api/v1/nodes/switzerland-unfair-competition-act-1986-uca.json #### TikTok Ads (Policies) - **ID**: tiktok-ads-policy-std - **Category**: Sales, Marketing & PR - **Version**: 1.1.1 - **BLUF**: BIDDA's TikTok Ads (Policies) node programmatically assesses advertising creatives and their associated landing pages against a comprehensive set of platform integrity standards to mitigate non-compli... - **Discovery URL**: https://bidda.com/api/v1/nodes/tiktok-ads-policy-std.json #### The UK Code of Non-broadcast Advertising and Direct & Promotional Marketing - **ID**: uk-asa-cap-code-2010 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The CAP Code requires all UK non-broadcast marketing communications to be legal, decent, honest, and truthful, ensuring they are prepared with a sense of responsibility to consumers and society. This ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-asa-cap-code-2010.json #### The UK Code of Broadcast Advertising (the BCAP Code) - **ID**: uk-bcap-code-broadcast-advertising - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The UK Code of Broadcast Advertising (BCAP Code) mandates that all advertisements on television and radio in the UK must be legal, decent, honest, and truthful. As stated in Rule 1.2, all broadcast ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-bcap-code-broadcast-advertising.json #### UK Business Protection from Misleading Marketing Regulations 2008 (SI 2008/1276) - B2B Misleading and Comparative Advertising Rules - **ID**: uk-bpmmr-business-protection-misleading-marketing-2008 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Business Protection from Misleading Marketing Regulations 2008 (SI 2008/1276, in force 26 May 2008) implement Directive 2006/114/EC concerning misleading and comparative advertising into UK law an... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-bpmmr-business-protection-misleading-marketing-2008.json #### UK CMA Green Claims Code 2021 - Six Principles for Environmental Claims on Goods and Services Under the Consumer Protection from Unfair Trading Regulations 2008 - **ID**: uk-cma-green-claims-code-2021 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Competition and Markets Authority Green Claims Code published in September 2021 is the United Kingdom's authoritative compliance framework for environmental claims on goods and services, derived f... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-cma-green-claims-code-2021.json #### UK Consumer Protection from Unfair Trading Regulations 2008 - Misleading Practices and 31 Banned Acts - **ID**: uk-consumer-protection-from-unfair-trading-2008 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The UK Consumer Protection from Unfair Trading Regulations 2008 (SI 2008/1277, CPUT), implementing EU Directive 2005/29/EC in UK domestic law post-Brexit, prohibit misleading actions, misleading omiss... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-consumer-protection-from-unfair-trading-2008.json #### UK Consumer Protection from Unfair Trading Regulations 2008 (SI 2008/1277, CPRs/CPUT) - **ID**: uk-cput-regulations-2008-consumer-protection-unfair-trading - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Consumer Protection from Unfair Trading Regulations 2008 (SI 2008/1277, the CPRs) transpose EU Directive 2005/29/EC on Unfair Commercial Practices (UCPD) into UK domestic law. The Regulations were... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-cput-regulations-2008-consumer-protection-unfair-trading.json #### UK Digital Markets, Competition and Consumers Act 2024 - Part 4 Chapter 1 Unfair Commercial Practices - **ID**: uk-dmcc-2024-part-4-unfair-commercial-practices - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Part 4 Chapter 1 of the UK Digital Markets, Competition and Consumers Act 2024 (DMCC Act 2024) repeals and replaces the Consumer Protection from Unfair Trading Regulations 2008 with a modernised statu... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-dmcc-2024-part-4-unfair-commercial-practices.json #### US Federal Trade Commission Act - 15 USC 45 Unfair Methods of Competition and Unfair or Deceptive Acts or Practices - **ID**: us-15-usc-45-ftc-act-unfair-deceptive-practices - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: 15 USC 45 (FTC Act section 5) is the foundational federal consumer protection and competition statute administered by the Federal Trade Commission. Subsection (a)(1) declares that unfair methods of co... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-usc-45-ftc-act-unfair-deceptive-practices.json #### US 16 CFR Part 313: Privacy of Consumer Financial Information (FTC GLBA Privacy Rule) - **ID**: us-16-cfr-part-313-ftc-privacy-consumer-financial-info - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: US 16 CFR Part 313 implements the privacy provisions of the Gramm-Leach-Bliley Act (GLBA) Title V Subtitle A for financial institutions subject to FTC jurisdiction (e.g., mortgage brokers, payday lend... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-16-cfr-part-313-ftc-privacy-consumer-financial-info.json #### US 16 CFR Part 433: Preservation of Consumers Claims and Defenses (FTC Holder Rule) - **ID**: us-16-cfr-part-433-ftc-holder-rule - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: US 16 CFR Part 433 (the FTC Holder Rule) requires consumer credit contracts to include the Holder Notice preserving consumer claims and defenses against subsequent assignees and holders of the credit ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-16-cfr-part-433-ftc-holder-rule.json #### 47 USC § 227 - Telephone Consumer Protection Act of 1991 (TCPA) - **ID**: us-47-usc-227-tcpa-telephone-consumer-protection-act - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: 47 USC § 227 (Telephone Consumer Protection Act of 1991, Pub. L. 102-243, 105 Stat. 2394, signed 20 December 1991, codified as amendment to the Communications Act of 1934) is the foundational US feder... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-47-usc-227-tcpa-telephone-consumer-protection-act.json #### US CAN-SPAM Act (15 USC ch 103): Commercial Email Requirements - **ID**: us-can-spam-act - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Controlling the Assault of Non-Solicited Pornography And Marketing Act, CAN-SPAM (15 U.S.C. ch. 103), sets national requirements for commercial electronic mail, enforced primarily by the Federal T... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-can-spam-act.json #### Controlling the Assault of Non-Solicited Pornography And Marketing Act of 2003 (CAN-SPAM Act) - **ID**: us-can-spam-act-2003 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The CAN-SPAM Act establishes national standards for sending commercial email, requiring clear sender identification, truthful subject lines, a physical postal address, and a conspicuous, functional op... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-can-spam-act-2003.json #### US CAN-SPAM Act 2003 - Commercial Email Requirements: No Deceptive Headers, Honest Subject Lines, Opt-Out Mechanism (10-Day Processing), Sender Identification, Transactional Email Exemptions, Civil Penalties up to $53,088/Violation and State Law Pre-emption - **ID**: us-can-spam-act-2003-implementation - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: The CAN-SPAM Act requires all commercial email messages to include accurate header information, non-deceptive subject lines, clear identification as an advertisement, a valid physical postal address, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-can-spam-act-2003-implementation.json #### Consumer Review Fairness Act - **ID**: us-consumer-review-fairness-act-2016-crfa - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: The Consumer Review Fairness Act (15 U.S.C. § 45b) voids form contract provisions that prohibit or restrict consumers from posting reviews of goods, services, or seller conduct, impose penalties for s... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-consumer-review-fairness-act-2016-crfa.json #### Health Breach Notification Rule - **ID**: us-federal-trade-commission-crm-data-breach-2024 - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: The FTC's Health Breach Notification Rule requires vendors of personal health records and related entities to notify consumers, the FTC, and in some cases the media, following a breach of unsecured id... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-trade-commission-crm-data-breach-2024.json #### FTC 16 CFR Part 233 - Guides Against Deceptive Pricing - **ID**: us-ftc-16-cfr-part-233-deceptive-pricing-guides - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: 16 CFR Part 233 contains the Federal Trade Commission's Guides Against Deceptive Pricing, enforced under section 5 of the FTC Act (15 USC 45) against unfair or deceptive pricing practices in the adver... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-16-cfr-part-233-deceptive-pricing-guides.json #### FTC 16 CFR Part 254 - Guides for Private Vocational and Distance Education Schools - **ID**: us-ftc-16-cfr-part-254-vocational-distance-education-deceptive-practices - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: 16 CFR Part 254 contains the Federal Trade Commission's Guides for Private Vocational and Distance Education Schools, enforced under section 5 of the FTC Act (15 USC 45) against unfair or deceptive pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-16-cfr-part-254-vocational-distance-education-deceptive-practices.json #### US FTC 16 CFR Part 323 Made in USA Labeling Rule - Federal Trade Commission Standard for Unqualified Country-of-Origin Claims on Labeled Products - **ID**: us-ftc-16-cfr-part-323-made-in-usa-labeling-rule - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Federal Trade Commission Made in USA Labeling Rule codified at 16 CFR Part 323 establishes binding country-of-origin labeling requirements with section 323.1 defining a Made in the United States r... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-16-cfr-part-323-made-in-usa-labeling-rule.json #### US FTC 16 CFR Part 429 Cooling-Off Rule - Three Business Day Cancellation Right for Door-to-Door and Off-Premises Consumer Sales - **ID**: us-ftc-16-cfr-part-429-cooling-off-rule - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Federal Trade Commission Cooling-Off Rule codified at 16 CFR Part 429 establishes a binding three business day right of cancellation for consumer sales of goods or services with a purchase price o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-16-cfr-part-429-cooling-off-rule.json #### US FTC 16 CFR Part 435 Mail Internet or Telephone Order Merchandise Rule - Shipment Timing Delay Notice and Refund Requirements for Distance Sales - **ID**: us-ftc-16-cfr-part-435-mail-internet-telephone-order-merchandise-rule - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Federal Trade Commission Mail Internet or Telephone Order Merchandise Rule codified at 16 CFR Part 435 governs distance sales by requiring sellers to have a reasonable basis to expect they can shi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-16-cfr-part-435-mail-internet-telephone-order-merchandise-rule.json #### FTC 16 CFR Part 436 - Franchise Rule (Disclosure Requirements and Prohibitions Concerning Franchising) - **ID**: us-ftc-16-cfr-part-436-franchise-rule-disclosure-requirements - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: 16 CFR Part 436, the Federal Trade Commission's Franchise Rule, governs the disclosure and prohibited-practice requirements for franchise sales in the United States and is enforced under section 5 of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-16-cfr-part-436-franchise-rule-disclosure-requirements.json #### US FTC 16 CFR Part 453 Funeral Industry Practices Rule - Price Disclosure General Price List Casket Handling Embalming Authorization and Itemization Requirements - **ID**: us-ftc-16-cfr-part-453-funeral-industry-practices - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Federal Trade Commission Funeral Rule codified at 16 CFR Part 453 binds funeral providers to a comprehensive set of consumer protection obligations including section 453.1 definitions of funeral p... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-16-cfr-part-453-funeral-industry-practices.json #### US FTC 16 CFR Part 460 R-Value Rule - Home Insulation Testing Labeling Advertising and Fact Sheet Disclosure Requirements - **ID**: us-ftc-16-cfr-part-460-r-value-home-insulation-labeling - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Federal Trade Commission R-Value Rule codified at 16 CFR Part 460 governs the marketing and labeling of home insulation by setting binding requirements across the supply chain including section 46... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-16-cfr-part-460-r-value-home-insulation-labeling.json #### Unfair methods of competition unlawful; prevention by Commission - **ID**: us-ftc-act-section-5-unfair-deceptive-acts - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: Prohibits unfair methods of competition and unfair or deceptive acts or practices in or affecting commerce, enforced by the Federal Trade Commission under 15 U.S. Code § 45(a)(1). Applies to persons, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-act-section-5-unfair-deceptive-acts.json #### 16 CFR Part 255 - Guides Concerning Use of Endorsements and Testimonials in Advertising - **ID**: us-ftc-cfr-16-part-255-endorsement-testimonials-advertising - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: Organizations must ensure that endorsements and testimonials used in advertising are truthful, not misleading, and that any material connections between the endorser and the advertiser are clearly and... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-cfr-16-part-255-endorsement-testimonials-advertising.json #### US FTC '.com Disclosures: How to Make Effective Disclosures in Digital Advertising' Guide (March 2013) - 4P Clear and Conspicuous Standard for Digital Ad Disclosures - **ID**: us-ftc-com-disclosures-digital-advertising-2013 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Federal Trade Commission's '.com Disclosures: How to Make Effective Disclosures in Digital Advertising' guidance (published March 2013, supplementing the FTC's earlier 2000 Dot Com Disclosures pub... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-com-disclosures-digital-advertising-2013.json #### Contact Lens Rule (16 C.F.R. Part 315) as amended 2024 - **ID**: us-ftc-contact-lens-rule-2024 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: This rule requires contact lens prescribers to provide patients with a copy of their prescription and obtain a signed acknowledgment of receipt, which must be retained for three years. It also mandate... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-contact-lens-rule-2024.json #### US FTC Green Guides Environmental Marketing Claims (16 CFR Part 260) - Substantiation and Deception Prevention - **ID**: us-ftc-green-guides-environmental-claims-2012 - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The US Federal Trade Commission's Guides for the Use of Environmental Marketing Claims (Green Guides, 16 CFR Part 260, 2012 revision) provide guidance on environmental marketing claims under Section 5... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-green-guides-environmental-claims-2012.json #### US FTC Negative Option Rule 2023 - Subscription Traps: Clear and Conspicuous Disclosure of Recurring Charges, Simple Cancellation Mechanism (Same Ease as Signup), Pre-Sale Disclosure Requirements, Annual Reminders and Civil Penalties for Violations - **ID**: us-ftc-negative-option-rule-2023 - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: The FTC's Negative Option Rule requires sellers using recurring subscription plans to provide clear and conspicuous disclosures before obtaining consumer consent, ensure cancellation is as easy as enr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-negative-option-rule-2023.json #### US FTC Telemarketing Sales Rule (TSR) - 16 CFR Part 310 - **ID**: us-ftc-telemarketing-sales-rule-2015 - **Category**: Sales, Marketing & PR - **Version**: 2.0.0 - **BLUF**: The FTC Telemarketing Sales Rule (16 CFR Part 310) prohibits abusive and deceptive telemarketing practices, mandates National Do Not Call Registry compliance, restricts robocalls to prior express writ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ftc-telemarketing-sales-rule-2015.json #### Telephone Consumer Protection Act of 1991 (TCPA) - **ID**: us-tcpa-1991-telephone-consumer - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Telephone Consumer Protection Act (TCPA) restricts telemarketing calls, the use of automated telephone equipment, and unsolicited texts and faxes. As codified in 47 U.S.C. § 227, it requires busin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tcpa-1991-telephone-consumer.json #### US TCPA 1991 - Telephone Consumer Protection Act, Auto-Dialer Consent and Do-Not-Call Registry - **ID**: us-tcpa-1991-telephone-consumer-protection-act - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The Telephone Consumer Protection Act of 1991 (TCPA), codified at 47 U.S.C. 227 and implemented through 47 C.F.R. 64.1200 regulations issued by the Federal Communications Commission (FCC), is the prin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tcpa-1991-telephone-consumer-protection-act.json #### US TCPA (Telephone Consumer Protection Act) - 47 CFR Part 64 Autodialer Consent, Do Not Call, and Robocall Restrictions - **ID**: us-tcpa-47-cfr-64-autodialer-consent-robocall-requirements - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The TCPA (47 USC 227; 47 CFR Part 64) prohibits autodialed or prerecorded calls/texts to mobile numbers and residential lines without prior express consent; marketing calls require prior express writt... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tcpa-47-cfr-64-autodialer-consent-robocall-requirements.json #### Telephone Consumer Protection Act - 2024 FCC Updates: One-to-One Consent, Revocation Standards, AI Voice Classification, and Predictive Dialer Liability - **ID**: us-telephone-consumer-protection-act-2024-tcpa-updates - **Category**: Sales, Marketing & PR - **Version**: 1.0.1 - **BLUF**: The 2024 FCC updates to the TCPA require prior express written consent for all artificial or prerecorded voice calls, including those using AI-generated voices, with consent limited to a single seller... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-telephone-consumer-protection-act-2024-tcpa-updates.json #### World Federation of Advertisers (WFA) Global Responsible Marketing Principles - Standards for Responsible Advertising to Children and Vulnerable Audiences - **ID**: wfa-global-responsible-marketing-principles - **Category**: Sales, Marketing & PR - **Version**: 1.0.0 - **BLUF**: The World Federation of Advertisers (WFA) Global Responsible Marketing Principles establish a self-regulatory framework for advertisers, requiring that marketing communications directed at children an... - **Discovery URL**: https://bidda.com/api/v1/nodes/wfa-global-responsible-marketing-principles.json ### Space & Satellite Law (109 nodes) #### Argentina CONAE Space Activities Framework - National Space Agency and Licensing (1991) - **ID**: argentina-conae-space-activities-law-1991 - **Category**: Space & Satellite Law - **Version**: 1991-05 - **BLUF**: Argentina's national space activities framework, established by Executive Decree 995/1991 and subsequent implementing decrees, created the Comision Nacional de Actividades Espaciales (CONAE) as the so... - **Discovery URL**: https://bidda.com/api/v1/nodes/argentina-conae-space-activities-law-1991.json #### Artemis Accords 2020 - Principles for Cooperative Civil Space Exploration - **ID**: artemis-accords-2020-lunar-governance - **Category**: Space & Satellite Law - **Version**: 1.0.1 - **BLUF**: The Artemis Accords are a set of bilateral agreements between the United States (acting through NASA) and individual partner nations, first established on 13 October 2020 with eight founding signatori... - **Discovery URL**: https://bidda.com/api/v1/nodes/artemis-accords-2020-lunar-governance.json #### Artemis Accords 2020 - NASA Bilateral Agreements: Peaceful Purposes, Transparency, Interoperability, Emergency Assistance, Registration, Release of Scientific Data, Preservation of Heritage Sites, Space Resources Extraction (Article 10), Deconfliction of Activities and Implementation - **ID**: artemis-accords-2020-nasa-bilateral - **Category**: Space & Satellite Law - **Version**: 1.0.1 - **BLUF**: The Artemis Accords establish a framework for international cooperation in civil space exploration, requiring participating nations to commit to peaceful purposes, transparency, interoperability, emer... - **Discovery URL**: https://bidda.com/api/v1/nodes/artemis-accords-2020-nasa-bilateral.json #### Australian Space Activities Act 1998 - Launch Permit Requirements, Operator Authorisation, and Third Party Liability Framework - **ID**: au-space-activities-act-1998-launch-permit-authorisation - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Space Activities Act 1998 (Cth) (SAA) regulates Australian space launch activities and the activities of Australian nationals conducting space operations overseas. The Act requires launch operator... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-space-activities-act-1998-launch-permit-authorisation.json #### Austria Space Activities Act 2011 (Weltraumgesetz) - Austrian National Space Regulatory Framework - **ID**: austria-space-activities-act-2011 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Austria's Space Activities Act (Bundesgesetz über Tätigkeiten im Weltraum - Weltraumgesetz, BGBl. I Nr. 132/2011) entered into force on 28 December 2011 and established a licensing regime for space ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/austria-space-activities-act-2011.json #### Belgium Space Activities Act 2005 - Wet van 17 September 2005 Betreffende de Activiteiten die Betrekking Hebben op de Ruimtevaart - **ID**: belgium-space-activities-act-2005 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Belgian Law of 17 September 2005 on Activities Related to Space (Wet van 17 september 2005 betreffende de activiteiten die betrekking hebben op de ruimtevaart, published in Belgisch Staatsblad on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/belgium-space-activities-act-2005.json #### Brazil ANATEL Satellite Licensing Regulations (Resolution 704/2018) - Brazilian Satellite Communications Regulatory Framework - **ID**: brazil-anatel-satellite-licensing-regulations - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Brazil's satellite communications regulatory framework is administered by ANATEL (Agência Nacional de Telecomunicações - National Telecommunications Agency) under the General Telecommunications Act (L... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-anatel-satellite-licensing-regulations.json #### Brazil Space Agency Act 8854/1994 - Agência Espacial Brasileira (AEB) Mandate and Launch Authorization Framework - **ID**: brazil-space-agency-act-8854-1994 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Brazil's Law No. 8854 of 10 February 1994 established the Agência Espacial Brasileira (AEB - Brazilian Space Agency) as the central authority for Brazil's national space activities, implementing the B... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-space-agency-act-8854-1994.json #### Canada Space Agency Act 1990 (SC 1990, c. 13) - Canadian Space Policy and Regulatory Framework - **ID**: canada-space-agency-act-1990 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Space Agency Act (SC 1990, c. 13) established the Canadian Space Agency (CSA / Agence spatiale canadienne) as the federal institution responsible for Canada's civil space programme, including astr... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-space-agency-act-1990.json #### Guidelines for the Long-term Sustainability of Outer Space Activities of the Committee on the Peaceful Uses of Outer Space - **ID**: copuos-lts-guidelines-2019-space-sustainability - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The COPUOS Guidelines for the Long-term Sustainability of Outer Space Activities provide 21 voluntary measures to ensure the safe and sustainable use of outer space, focusing on space debris mitigatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/copuos-lts-guidelines-2019-space-sustainability.json #### COSPAR Planetary Protection Policy 2021 - Mission Category Bioburden Requirements - **ID**: cospar-planetary-protection-policy-2021-mission-categories - **Category**: Space & Satellite Law - **Version**: 2.0.1 - **BLUF**: COSPAR Planetary Protection Policy (2021 revision) classifies all solar system missions into five protection categories based on contamination risk. Categories I-II (flyby, orbiters of low-risk bodies... - **Discovery URL**: https://bidda.com/api/v1/nodes/cospar-planetary-protection-policy-2021-mission-categories.json #### Czech Republic Space Activities Act 189/2023 Sb. - National Space Licensing - **ID**: czech-republic-space-activities-act-189-2023 - **Category**: Space & Satellite Law - **Version**: 2023-07 - **BLUF**: Czech Republic Act No. 189/2023 Sb. on Space Activities establishes the Czech Space Office (CSO) as national licensing authority for space activities, introduces a mandatory permit regime for satellit... - **Discovery URL**: https://bidda.com/api/v1/nodes/czech-republic-space-activities-act-189-2023.json #### Denmark Space Activities Act 2016 - Lov nr. 1400 af 27. November 2016 om Rumaktiviteter - **ID**: denmark-space-activities-act-2016 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Danish Space Activities Act (Lov om rumaktiviteter, Lov nr. 1400 af 27. november 2016) establishes Denmark's national legal framework for the licensing, supervision, and registration of space acti... - **Discovery URL**: https://bidda.com/api/v1/nodes/denmark-space-activities-act-2016.json #### ECSS-U-AS-10C Space Debris Mitigation Requirements - ESA/European Standard - **ID**: ecss-u-ast-10c-space-debris-mitigation-requirements - **Category**: Space & Satellite Law - **Version**: 2.0.0 - **BLUF**: ECSS-U-AS-10C (European Cooperation for Space Standardization, 2022) is the mandatory ESA debris mitigation standard adopted for all ESA-procured missions, implementing IADC and COPUOS guidelines. Key... - **Discovery URL**: https://bidda.com/api/v1/nodes/ecss-u-ast-10c-space-debris-mitigation-requirements.json #### Convention for the establishment of a European Space Agency (CSE/CS(73)19, rev.7) - **ID**: esa-convention-1975-european-space-agency - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This regulation establishes the European Space Agency and governs Member State contributions to mandatory and optional programmes, the structure of the Ministerial Council, industrial policy including... - **Discovery URL**: https://bidda.com/api/v1/nodes/esa-convention-1975-european-space-agency.json #### ESA Space Debris Mitigation Policy and Requirements (ESSB-ST-U-007) - **ID**: esa-essb-st-u-007-space-debris-mitigation-policy - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The European Space Agency Space Debris Mitigation Policy and Requirements is an ESA Standardisation Board Standard (ESSB-ST-U-007 Issue 1) issued on 28 March 2023 and applies to all new ESA projects s... - **Discovery URL**: https://bidda.com/api/v1/nodes/esa-essb-st-u-007-space-debris-mitigation-policy.json #### European Space Agency Zero Debris Charter (2023) - **ID**: esa-zero-debris-charter-2023-space-safety - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The European Space Agency Zero Debris Charter is a voluntary multi-stakeholder commitment launched on 22 June 2023 at the Paris Air Show. The Charter sets out the ambition of being debris neutral in s... - **Discovery URL**: https://bidda.com/api/v1/nodes/esa-zero-debris-charter-2023-space-safety.json #### EU Space Programme Regulation (EU) 2021/696, Article 10: Warranty - **ID**: eu-space-programme-article-10-components-of-union-space-programme - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The European Commission must ensure users are informed that services, data, and information from the Union Space Programme's components are provided without any warranty as to their quality, accuracy,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-programme-article-10-components-of-union-space-programme.json #### Regulation (EU) 2021/696 of the European Parliament and of the Council on establishing the Union Space Programme - Article 2 Definitions - **ID**: eu-space-programme-article-2-definitions - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This article defines key terms such as 'legal entity' and 'fiduciary entity', establishing the criteria for entities handling data or participating in financial mechanisms under the Union Space Progra... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-programme-article-2-definitions.json #### REGULATION (EU) 2021/696 establishing the Union Space Programme and the European Union Agency for the Space Programme - Article 31 Galileo services - **ID**: eu-space-programme-article-31-galileo-safety-architecture - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This article establishes the four official Galileo services (Open Service, High-Accuracy Service, Signal Authentication Service, and Public Regulated Service) and defines their core characteristics, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-programme-article-31-galileo-safety-architecture.json #### Regulation (EU) 2021/696 on the Union Space Programme, Article 62: Copernicus Data and Information Policy - **ID**: eu-space-programme-article-62-copernicus-data-and-information-policy - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This article establishes that Copernicus data and information must be provided on a full, free, and open basis, subject to specific conditions and potential restrictions necessary for the security of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-programme-article-62-copernicus-data-and-information-policy.json #### REGULATION (EU) 2021/696 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 28 April 2021 establishing the Union Space Programme and the European Union Agency for the Space Programme - Article 77 Space Traffic Management - **ID**: eu-space-programme-article-77-space-traffic-management - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Commission is empowered to support Space Traffic Management (STM) activities, including establishing a collision avoidance service, promoting STM standards, and ensuring the safety and sustainabil... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-programme-article-77-space-traffic-management.json #### REGULATION (EU) 2021/696 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 28 April 2021 establishing the Union Space Programme and the European Union Agency for the Space Programme - Article 85 - **ID**: eu-space-programme-article-85-ssa-space-surveillance-tracking - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This article establishes obligations for the Union Space Programme related to space surveillance and tracking (SSA) to protect space assets and ensure the safety and security of space activities. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-programme-article-85-ssa-space-surveillance-tracking.json #### Regulation (EU) 2021/696 establishing the Union Space Programme and the European Union Agency for the Space Programme, Article 91: Security Committee - **ID**: eu-space-programme-article-91-governance-eu-agency-space-programme - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This article mandates the establishment of a Security Committee to assist the Commission in ensuring a harmonised and consistent approach to the security of the Union Space Programme, defining its com... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-programme-article-91-governance-eu-agency-space-programme.json #### Regulation (EU) 2021/696 of the European Parliament and of the Council establishing the Union Space Programme, Article 96 - **ID**: eu-space-programme-article-96-security-provisions - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This article establishes the core strategic and operational obligations for the Union Space Programme, including supporting innovation, ensuring service continuity, exploiting security applications wh... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-programme-article-96-security-provisions.json #### Regulation (EU) 2021/696 of the European Parliament and of the Council of 28 April 2021 on the Union Space Programme and on the establishment of the Union Space Programme Agency, and repealing Council Regulation (EC) No 1321/2004 - **ID**: eu-space-programme-regulation-2021-696 - **Category**: Space & Satellite Law - **Version**: 1.0.1 - **BLUF**: Establishes the legal framework for the EU Space Programme, including Galileo, Copernicus, GOVSATCOM, and SST services, and defines the governance, operational responsibilities, and third-party access... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-programme-regulation-2021-696.json #### EU Space Programme Regulation 2021/696 - Galileo PRS Access, Copernicus Data Policy, and EU Space Agency Governance - **ID**: eu-space-programme-regulation-2021-696-galileo-copernicus - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2021/696 (EU Space Programme Regulation) establishes the governance, funding, and operational framework for EU space programmes including Galileo (European GNSS), Copernicus (Earth obs... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-programme-regulation-2021-696-galileo-copernicus.json #### EU Space Regulation 2021/696 - EU Space Programme, Galileo Encryption, and Copernicus Data Access Rules - **ID**: eu-space-regulation-2021-696-eu-space-programme-galileo-copernicus - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2021/696 establishes the EU Space Programme covering Galileo (navigation), Copernicus (earth observation), EGNOS, SST, and Govsatcom, setting security requirements for Galileo Public R... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-regulation-2021-696-eu-space-programme-galileo-copernicus.json #### EU Space Surveillance and Tracking (SST) Framework Decision 541/2014/EU - **ID**: eu-space-surveillance-tracking-decision-2014 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: EU member states with SST sensors or space object data join the EU SST Consortium to pool collision avoidance, re-entry prediction, and fragmentation event warnings for EU satellite operators. Under t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-space-surveillance-tracking-decision-2014.json #### FAA 14 CFR Part 450 - Launch and Reentry Vehicle Operations - **ID**: faa-part-450-commercial-space-launch-operations - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: 14 CFR Part 450 establishes the FAA's unified licensing and safety framework for commercial launch and reentry operations, requiring vehicle operators to obtain a mission-specific or operator licence,... - **Discovery URL**: https://bidda.com/api/v1/nodes/faa-part-450-commercial-space-launch-operations.json #### Finland Space Activities Act 2018 (Laki avaruustoiminnasta 273/2018) - Finnish National Space Regulatory Framework - **ID**: finland-space-activities-act-2018 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Finland's Act on Space Activities (Laki avaruustoiminnasta, 273/2018) entered into force on 17 April 2018 and applies to space activities conducted by Finnish legal persons or from Finnish territory. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/finland-space-activities-act-2018.json #### Loi n° 2008-518 du 3 juin 2008 relative aux opérations spatiales - **ID**: france-space-operations-act-2008-loi-078 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The France Space Operations Act 2008 (Loi 2008-518) establishes a legal framework for authorizing and supervising all space operations launched from French territory or by French operators abroad, inc... - **Discovery URL**: https://bidda.com/api/v1/nodes/france-space-operations-act-2008-loi-078.json #### IADC Space Debris Mitigation Guidelines 2007 (Revised 2021) - **ID**: iadc-space-debris-mitigation-guidelines-2007 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This regulation establishes international best practices for mitigating space debris, requiring post-mission disposal of spacecraft from LEO within 25 years, re-orbiting of GEO satellites to a graveya... - **Discovery URL**: https://bidda.com/api/v1/nodes/iadc-space-debris-mitigation-guidelines-2007.json #### India National Space Policy 2023 - IN-SPACe Regulatory Framework - **ID**: india-national-space-policy-2023 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: India's National Space Policy 2023 (released April 2023) transforms India's space sector by enabling non-government entities (NGEs) to independently design, build, launch, and operate satellites and l... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-national-space-policy-2023.json #### India Space Policy 2023 - National Framework for Space Activities - **ID**: india-space-policy-2023 - **Category**: Space & Satellite Law - **Version**: 2023 (April 6, 2023) - **BLUF**: India's Space Policy 2023 (approved April 6, 2023) is the Government of India's overarching framework for civilian space activities; it defines roles for the Indian Space Research Organisation (ISRO),... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-space-policy-2023.json #### Liability Convention 1972 - Claims Procedure, Compensation Determination, and Claims Commission Framework for Space Object Damage - **ID**: intl-liability-convention-1972-claims-procedure - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Convention on International Liability for Damage Caused by Space Objects (1972) establishes the procedural framework for international claims arising from space object damage. It provides for abso... - **Discovery URL**: https://bidda.com/api/v1/nodes/intl-liability-convention-1972-claims-procedure.json #### Outer Space Treaty 1967 Article 1 - Freedom of Exploration and Use of Outer Space for Benefit of All Countries - **ID**: intl-outer-space-treaty-1967-article-1-exploration-freedom - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Article 1 of the Outer Space Treaty (OST) establishes that the exploration and use of outer space shall be carried out for the benefit and in the interests of all countries, regardless of their degree... - **Discovery URL**: https://bidda.com/api/v1/nodes/intl-outer-space-treaty-1967-article-1-exploration-freedom.json #### Outer Space Treaty 1967 Article 2 - Non-Appropriation Principle: No National Claims to Sovereignty Over Celestial Bodies - **ID**: intl-outer-space-treaty-1967-article-2-non-appropriation - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Article 2 of the OST prohibits national appropriation of outer space, including the moon and other celestial bodies, by claim of sovereignty, by means of use or occupation, or by any other means. This... - **Discovery URL**: https://bidda.com/api/v1/nodes/intl-outer-space-treaty-1967-article-2-non-appropriation.json #### Outer Space Treaty 1967 Article 4 - Prohibition of Weapons of Mass Destruction in Outer Space and Peaceful Use of Celestial Bodies - **ID**: intl-outer-space-treaty-1967-article-4-prohibition-weapons - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Article 4 of the OST prohibits States from placing nuclear weapons or any other weapons of mass destruction in orbit around Earth, on celestial bodies, or stationing them in outer space in any other m... - **Discovery URL**: https://bidda.com/api/v1/nodes/intl-outer-space-treaty-1967-article-4-prohibition-weapons.json #### Outer Space Treaty 1967 Article 7 - State Liability for Damage Caused by Space Objects on Earth or in Space - **ID**: intl-outer-space-treaty-1967-article-7-liability-damage - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Article 7 of the OST establishes that each State Party that launches, procures the launching of, or from whose territory or facility a space object is launched, is internationally liable for damage ca... - **Discovery URL**: https://bidda.com/api/v1/nodes/intl-outer-space-treaty-1967-article-7-liability-damage.json #### Outer Space Treaty 1967 Article 8 - State Registry and Jurisdiction Over Space Objects and Personnel - **ID**: intl-outer-space-treaty-1967-article-8-registration-jurisdiction - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Article 8 of the OST establishes that a State Party on whose registry a space object is carried retains jurisdiction and control over that object and any personnel on board, whether in outer space or ... - **Discovery URL**: https://bidda.com/api/v1/nodes/intl-outer-space-treaty-1967-article-8-registration-jurisdiction.json #### Outer Space Treaty 1967 Article 9 - Harmful Contamination Prevention, Adverse Environmental Changes, and Consultation Obligation - **ID**: intl-outer-space-treaty-1967-article-9-contamination-prevention - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Article 9 of the OST requires States to conduct space exploration so as to avoid harmful contamination of outer space and celestial bodies, and adverse changes in Earth's environment from the introduc... - **Discovery URL**: https://bidda.com/api/v1/nodes/intl-outer-space-treaty-1967-article-9-contamination-prevention.json #### Registration Convention 1975 - National Registry Requirements, UN Registration, and Space Object Identification - **ID**: intl-registration-convention-1975-national-registry - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Convention on Registration of Objects Launched into Outer Space (1975) operationalizes OST Article 8 by requiring States to maintain national registries of space objects and furnish registration i... - **Discovery URL**: https://bidda.com/api/v1/nodes/intl-registration-convention-1975-national-registry.json #### International Space Station Intergovernmental Agreement 1998 (IGA) - Legal Framework for ISS Operations - **ID**: iss-intergovernmental-agreement-1998 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Agreement Among the Government of Canada, Governments of Member States of the European Space Agency, the Government of Japan, the Government of the Russian Federation, and the Government of the Un... - **Discovery URL**: https://bidda.com/api/v1/nodes/iss-intergovernmental-agreement-1998.json #### Italy Space Economy Framework Law (Legge 89/2025) - **ID**: italy-space-economy-framework-law-89-2025 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Italy's Space Economy Framework Law (Legge 13 giugno 2025, n. 89) was published in the Italian Official Gazette (Gazzetta Ufficiale) on 25 June 2025 (GU n. 146) and entered into force on the same date... - **Discovery URL**: https://bidda.com/api/v1/nodes/italy-space-economy-framework-law-89-2025.json #### ITU Radio Regulations 2024 Edition WRC-23 Outcomes Spectrum Allocation Coordination of Geostationary and Non-Geostationary Satellite Networks and Interference Resolution - **ID**: itu-radio-regulations-2024-edition - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The International Telecommunication Union Radio Regulations 2024 Edition incorporates outcomes of the World Radiocommunication Conference 2023 entering into force on 1 January 2025 as a binding intern... - **Discovery URL**: https://bidda.com/api/v1/nodes/itu-radio-regulations-2024-edition.json #### Japan Act on Launching of Spacecraft and Control of Spacecraft 2016 (Space Activities Act) - **ID**: japan-space-activities-act-2016 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Japan's Space Activities Act (Act No. 76, 2016), in force November 2018, establishes a licensing regime for commercial satellite launches and spacecraft control operations from Japan, imposes strict t... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-space-activities-act-2016.json #### Japan Act on Promotion of Business Activities Related to Exploration and Development of Space Resources (2021) - **ID**: japan-space-resources-act-2021-business-activities-exploration - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Japan's Act on Promotion of Business Activities Related to Exploration and Development of Space Resources (Act No. 83 of 2021), commonly known as the Space Resources Act, came into force on 23 Decembe... - **Discovery URL**: https://bidda.com/api/v1/nodes/japan-space-resources-act-2021-business-activities-exploration.json #### Kazakhstan Law on Space Activities 2012 - KazCosmos National Space Framework - **ID**: kazakhstan-space-activities-law-2012 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Kazakhstan's Law on Space Activities (6 January 2012, No. 528-IV) establishes the legal framework for space operations from Baikonur Cosmodrome administered under the Russia-Kazakhstan Agreement, requ... - **Discovery URL**: https://bidda.com/api/v1/nodes/kazakhstan-space-activities-law-2012.json #### Kenya Space Agency - Science, Technology and Innovation Act 2013 (No. 28) and KSA Mandate - **ID**: kenya-space-agency-sti-act-2013 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Kenya's Science, Technology and Innovation (STI) Act No. 28 of 2013 established the legal framework for Kenya's science institutions including the Kenya Space Agency (KSA), operationalized through Leg... - **Discovery URL**: https://bidda.com/api/v1/nodes/kenya-space-agency-sti-act-2013.json #### Luxembourg Law on the Exploration and Use of Space Resources 2017 (Loi du 20 juillet 2017) - **ID**: luxembourg-space-resources-law-2017 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Luxembourg's Law of 20 July 2017 was the first European national law to recognise private operators' right to own and commercially exploit space resources extracted from asteroids, the Moon, or other ... - **Discovery URL**: https://bidda.com/api/v1/nodes/luxembourg-space-resources-law-2017.json #### Mexico Ley de Actividades Espaciales 2021 - Space Activities Authorisation and Liability Framework - **ID**: mexico-ley-actividades-espaciales-2021 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Mexico's Ley de Actividades Espaciales (published DOF 1 December 2021) establishes AEM (Agencia Espacial Mexicana) as single-window authorisation authority for space launches, satellite operations, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-ley-actividades-espaciales-2021.json #### Netherlands Space Activities Act 2007 (Wet ruimtevaart) - Dutch Commercial Space Regulatory Framework - **ID**: netherlands-space-activities-act-2007 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Netherlands Space Activities Act (Wet ruimtevaart, Act of 24 January 2007, Staatsblad 2007, 97) applies to space activities carried out by Dutch legal persons or organisations registered in the Ne... - **Discovery URL**: https://bidda.com/api/v1/nodes/netherlands-space-activities-act-2007.json #### New Zealand Outer Space and High-altitude Activities Act 2017 - **ID**: new-zealand-outer-space-act-2017 - **Category**: Space & Satellite Law - **Version**: 1.0.1 - **BLUF**: New Zealand's Outer Space and High-altitude Activities Act 2017 regulates commercial launches and spacecraft operations from New Zealand, providing the legal framework under which Rocket Lab became th... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-zealand-outer-space-act-2017.json #### NOAA CSRSA - Commercial Remote Sensing Regulatory Affairs (15 CFR Part 960) - **ID**: noaa-commercial-remote-sensing-regulatory-affairs - **Category**: Space & Satellite Law - **Version**: 15 CFR Part 960 (as amended 2020) - **BLUF**: NOAA's Commercial Remote Sensing Regulatory Affairs (CSRSA) program under the Land Remote Sensing Policy Act of 1992 and 15 CFR Part 960 (as updated by the 2018 SPACE Act and 2020 final rule) is the U... - **Discovery URL**: https://bidda.com/api/v1/nodes/noaa-commercial-remote-sensing-regulatory-affairs.json #### Norway Space Activities Act 2021 (Lov om norsk romvirksomhet) - Norwegian Commercial Space Regulatory Framework - **ID**: norway-space-activities-act-2021 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Norway's Act on Norwegian Space Activities (Lov om norsk romvirksomhet, LOV-2021-06-11-84) entered into force on 1 January 2022 and established a comprehensive licensing regime for commercial space ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/norway-space-activities-act-2021.json #### New Zealand Outer Space and High-altitude Activities Act 2017 - Launch Licence and Operator Permit Framework - **ID**: nz-outer-space-high-altitude-activities-act-2017 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: New Zealand's Outer Space and High-altitude Activities Act 2017 (No. 19 of 2017), administered by the Ministry of Business, Innovation and Employment (MBIE), established the first domestic legal frame... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-outer-space-high-altitude-activities-act-2017.json #### Poland Space Activities Act 2017 (Ustawa o Działalności Kosmicznej) - **ID**: poland-space-activities-act-2017 - **Category**: Space & Satellite Law - **Version**: 2017-12 - **BLUF**: Poland's Space Activities Act 2017 establishes a national licensing regime for space activities including satellite operations and launch services, designating the Polish Space Agency (POLSA) as the n... - **Discovery URL**: https://bidda.com/api/v1/nodes/poland-space-activities-act-2017.json #### Portugal Space Activities Law 2019 - Decreto-Lei n.º 16/2019 National Licensing Framework - **ID**: portugal-space-activities-law-2019 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Decreto-Lei n.º 16/2019 of 22 January 2019, published in Diário da República, 1.ª série, n.º 17, establishes Portugal's national legal framework for space activities, creating a licensing and authoris... - **Discovery URL**: https://bidda.com/api/v1/nodes/portugal-space-activities-law-2019.json #### South Africa National Space Agency Act 2008 (Act No. 36 of 2008) - SANSA and Space Regulatory Framework - **ID**: south-africa-national-space-agency-act-2008 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The National Space Agency Act 36 of 2008 established the South African National Space Agency (SANSA) as a public entity under the Department of Science and Innovation (DSI) with the mandate to promote... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-national-space-agency-act-2008.json #### South Africa Space Affairs Act 84 of 1993 - SANSA Launch Authority, Space Object Registration and Liability Framework - **ID**: south-africa-space-affairs-act-84-1993-sansa - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The South African Space Affairs Act 84 of 1993 (as amended) established the South African Council for Space Affairs (SACSA) as the competent authority for licensing and regulating space activities lau... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-space-affairs-act-84-1993-sansa.json #### South Korea Space Development Promotion Act 2005 (우주개발진흥법) - National Space Regulatory Framework - **ID**: south-korea-space-development-promotion-act-2005 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: South Korea's Space Development Promotion Act (우주개발진흥법, enacted 2005, substantially amended 2022-2023) establishes the legal framework for South Korea's national and commercial space activities. The A... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-korea-space-development-promotion-act-2005.json #### Spain Space Activities Law 2022 - Ley 26/2022 de 19 de Diciembre sobre Actividades Relacionadas con el Espacio - **ID**: spain-space-activities-law-2022 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Ley 26/2022, de 19 de diciembre, sobre actividades relacionadas con el espacio (the Spanish Space Activities Law 2022), published in Boletín Oficial del Estado (BOE) on 20 December 2022, is Spain's fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/spain-space-activities-law-2022.json #### Sweden Space Activities Act 1982 (Rymdverksamhetslag 1982:963) - Swedish National Space Regulatory Framework - **ID**: sweden-space-activities-act-1982 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Sweden's Space Activities Act (Rymdverksamhetslag, SFS 1982:963) is one of the world's oldest national space licensing statutes, enacted in 1982 and applying to space activities carried out by Swedish... - **Discovery URL**: https://bidda.com/api/v1/nodes/sweden-space-activities-act-1982.json #### Turkey National Space Programme 2021 - Türkiye Uzay Ajansı (TUA) - **ID**: turkey-tua-national-space-programme-2021 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Turkey's 10-year National Space Programme (2021-2031) established by TUA (Türkiye Uzay Ajansı) under Presidential Decree 4/2018 targets a domestically launched lunar mission by 2028, mandates TÜRKSAT ... - **Discovery URL**: https://bidda.com/api/v1/nodes/turkey-tua-national-space-programme-2021.json #### Federal Law No. (12) of 2019 on Regulating the Use of Outer Space Activities in the United Arab Emirates - **ID**: uae-federal-law-12-2019-space - **Category**: Space & Satellite Law - **Version**: 1.0.1 - **BLUF**: This law establishes a legal framework for all space activities conducted by UAE entities or from UAE territory, requiring licensing from the UAE Space Agency, mandatory insurance coverage, registrati... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-federal-law-12-2019-space.json #### UAE Federal Law No. 12 of 2019 on the Regulation of the Space Sector - **ID**: uae-federal-law-12-2019-space-activities - **Category**: Space & Satellite Law - **Version**: Federal Law No. 12 of 2019 - **BLUF**: UAE Federal Law No. 12 of 2019 on the Regulation of the Space Sector is the United Arab Emirates' primary space law, establishing the UAE Space Agency as the national space regulator, requiring author... - **Discovery URL**: https://bidda.com/api/v1/nodes/uae-federal-law-12-2019-space-activities.json #### UK Outer Space Act 1986 and Space Industry Act 2018 - Satellite Operator Licensing and Third-Party Liability - **ID**: uk-outer-space-act-1986-satellite-operator-licensing-liability - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The UK Outer Space Act 1986 and Space Industry Act 2018 require UK operators to obtain a licence from the Civil Aviation Authority (CAA) before launching or operating satellites, comply with debris mi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-outer-space-act-1986-satellite-operator-licensing-liability.json #### UK Outer Space Act 1986 and Space Industry Act 2018 - CAA Launch Licensing - **ID**: uk-outer-space-act-1986-space-industry-act-2018-caa - **Category**: Space & Satellite Law - **Version**: 2.0.0 - **BLUF**: The Outer Space Act 1986 (c.38) and Space Industry Act 2018 (c.5) together form the UK licensing regime for space activities: the 1986 Act governs UK-established operators launching from overseas; the... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-outer-space-act-1986-space-industry-act-2018-caa.json #### Space Industry Act 2018 - **ID**: uk-space-industry-act-2018-c5 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Space Industry Act 2018 establishes a regulatory framework for spaceflight and associated activities in the UK, requiring operator and spaceport licences under Section 8, mandating safety and envi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-space-industry-act-2018-c5.json #### UK Space Industry Act 2018 - CAA Spaceflight Licensing, Operator Liability and Spaceport Authorisation - **ID**: uk-space-industry-act-2018-caa - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The UK Space Industry Act 2018 (c.5) and the Space Industry Regulations 2021 (SI 2021/792) establish the United Kingdom's domestic licensing framework for spaceflight activities, designating the Civil... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-space-industry-act-2018-caa.json #### UK Space Industry Act 2018 - Launch Authorisation, Operator Licensing, and Insurance Requirements for Commercial Spaceflight - **ID**: uk-space-industry-act-2018-launch-authorisation-insurance - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The UK Space Industry Act 2018 (SIA) establishes the domestic legal framework for regulating commercial spaceflight activities from the United Kingdom, including vertical launches, horizontal launches... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-space-industry-act-2018-launch-authorisation-insurance.json #### Space Industry Act 2018, Section 3: Operator licence - **ID**: uk-space-industry-act-2018-section-3-launch-operator-licence - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This section mandates that any person, particularly a UK entity, must obtain an operator licence to operate a spaceport, launch a vehicle, procure a launch, or operate a satellite in orbit. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-space-industry-act-2018-section-3-launch-operator-licence.json #### Space Industry Act 2018, Section 34: Operator's liability for injury or damage - **ID**: uk-space-industry-act-2018-section-34-liability - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This section establishes a duty for spaceflight operators and their customers to indemnify any third party for injury or damage resulting from their spaceflight activities, regardless of fault. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-space-industry-act-2018-section-34-liability.json #### UK Space Industry Regulations 2021 - Launch Licensing and Safety Requirements - **ID**: uk-space-industry-regulations-2021 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Any person seeking to carry out spaceflight activities from the UK or operating as a range control service provider must obtain a licence from the Civil Aviation Authority (CAA) under the Space Indust... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-space-industry-regulations-2021.json #### Ukraine Law on Space Activities 1996 - National Space Licensing Framework - **ID**: ukraine-space-activities-law-1996 - **Category**: Space & Satellite Law - **Version**: 1996-11 - **BLUF**: Ukraine's Law on Space Activities (No. 502/96-VR, 1996, as amended) establishes the State Space Agency of Ukraine (SSAU) as the national regulator for space activities, creates a licensing regime for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ukraine-space-activities-law-1996.json #### UN COPUOS Space Debris Mitigation Guidelines - International Debris Framework - **ID**: un-copuos-space-debris-mitigation-guidelines-2007 - **Category**: Space & Satellite Law - **Version**: 2007 (endorsed by UNGA Resolution 62/217) - **BLUF**: The UN Committee on the Peaceful Uses of Outer Space (COPUOS) Space Debris Mitigation Guidelines (adopted 2007, endorsed by UNGA Resolution 62/217) establish the international consensus framework for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-copuos-space-debris-mitigation-guidelines-2007.json #### Convention on International Liability for Damage Caused by Space Objects - **ID**: un-liability-convention-1972-space-objects - **Category**: Space & Satellite Law - **Version**: 1.0.1 - **BLUF**: This regulation establishes absolute liability for damage caused by space objects on the surface of the Earth or to aircraft in flight, and fault-based liability for damage caused elsewhere in space. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-liability-convention-1972-space-objects.json #### Agreement Governing the Activities of States on the Moon and Other Celestial Bodies - **ID**: un-moon-agreement-1979-resources - **Category**: Space & Satellite Law - **Version**: 1.0.1 - **BLUF**: This regulation establishes that the Moon and other celestial bodies are the common heritage of mankind, prohibits national appropriation, and mandates the creation of an international regime to gover... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-moon-agreement-1979-resources.json #### Outer Space Treaty 1967 - Non-Appropriation, Liability & Governance Framework - **ID**: un-outer-space-treaty-1967 - **Category**: Space & Satellite Law - **Version**: 1.0.1 - **BLUF**: The Treaty on Principles Governing the Activities of States in the Exploration and Use of Outer Space (OST 1967) establishes the foundational international legal framework for space activities. Articl... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-outer-space-treaty-1967.json #### The Outer Space Treaty - **ID**: un-outer-space-treaty-1967-article-i-freedom - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Organizations must ensure their outer space activities align with the principles, laws, and programs outlined by the United Nations Office for Outer Space Affairs, including registration, sustainabili... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-outer-space-treaty-1967-article-i-freedom.json #### Treaty on Principles Governing the Activities of States in the Exploration and Use of Outer Space, including the Moon and Other Celestial Bodies - Article VI - **ID**: un-outer-space-treaty-1967-article-vi-state-responsibility - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: States Parties bear international responsibility for all national activities in outer space, and must authorize and continually supervise the activities of non-governmental entities to ensure conformi... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-outer-space-treaty-1967-article-vi-state-responsibility.json #### Convention on Registration of Objects Launched into Outer Space - **ID**: un-registration-convention-1976-space - **Category**: Space & Satellite Law - **Version**: 1.0.1 - **BLUF**: This regulation requires each launching State to maintain a national registry of space objects it launches and to provide specific data to the United Nations Secretary-General for entry into the UN Re... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-registration-convention-1976-space.json #### Agreement on the Rescue of Astronauts, the Return of Astronauts and the Return of Objects Launched into Outer Space - **ID**: un-rescue-agreement-1968-astronauts - **Category**: Space & Satellite Law - **Version**: 1.0.1 - **BLUF**: This regulation requires all Contracting Parties to render immediate assistance to astronauts in distress, promptly return them to the launching authority, and return any space objects found. It appli... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-rescue-agreement-1968-astronauts.json #### 14 CFR Part 401 - FAA Commercial Space Transportation: Organization and Definitions - **ID**: us-14-cfr-part-401-faa-commercial-space-transportation-definitions - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Every party operating under the FAA Office of Commercial Space Transportation regime - applicants for launch and reentry licences under 14 CFR Parts 415, 417, 431, 435, 437, 450, and the human spacefl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-14-cfr-part-401-faa-commercial-space-transportation-definitions.json #### US 47 CFR Part 25: Satellite Communications - **ID**: us-47-cfr-part-25-fcc-satellite-communications - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: US 47 CFR Part 25 governs FCC licensing operation and technical requirements for satellite communications including geostationary (GSO) and non-geostationary (NGSO) fixed-satellite service, mobile-sat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-47-cfr-part-25-fcc-satellite-communications.json #### US Commercial Space Launch Act (51 USC ch 509): Launch Licensing, Insurance and Liability - **ID**: us-commercial-space-launch-act - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Commercial Space Launch Act (51 U.S.C. ch. 509) governs the licensing and regulation of commercial space launches, reentries and launch and reentry sites in the United States, administered by the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-commercial-space-launch-act.json #### Commercial Space Launch Act of 1984, as Amended by the Commercial Space Launch Competitiveness Act of 2015 (Title IV of H.R. 2262, 114th Congress) - **ID**: us-commercial-space-launch-act-1984-amendments - **Category**: Space & Satellite Law - **Version**: 1.0.1 - **BLUF**: This regulation establishes licensing requirements for commercial launch, reentry, and operation of launch sites by private entities in the United States, administered by the FAA's Office of Commercia... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-commercial-space-launch-act-1984-amendments.json #### US Commercial Space Launch Competitiveness Act 2015 (CSLCA) - Space Resource Rights and Commercial Space Regulatory Reform - **ID**: us-commercial-space-launch-competitiveness-act-2015 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The US Commercial Space Launch Competitiveness Act (CSLCA, Pub. L. 114-90, enacted 25 November 2015) made three landmark changes to US commercial space law: (1) it extended the regulatory moratorium o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-commercial-space-launch-competitiveness-act-2015.json #### US Commercial Space Launch Competitiveness Act 2015 - Title IV Space Resource Rights and Commercial Extraction Framework - **ID**: us-commercial-space-launch-competitiveness-act-2015-space-resources - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Title IV of the US Commercial Space Launch Competitiveness Act 2015 (CSLCA, also known as the SPACE Act) affirms the right of US citizens engaged in commercial recovery of asteroid or space resources ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-commercial-space-launch-competitiveness-act-2015-space-resources.json #### US Export Administration Regulations (15 CFR 730-774) CCL Category 9x515 Space Export Controls - **ID**: us-ear-15-cfr-730-774-ccl-9x515-space-export-controls - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Export Administration Regulations (EAR) administered by the US Department of Commerce Bureau of Industry and Security (BIS) at 15 CFR Parts 730 to 774 control the export, reexport, and in-country ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ear-15-cfr-730-774-ccl-9x515-space-export-controls.json #### 14 CFR Part 450 - FAA Commercial Space Launch and Reentry Vehicle Operator License - **ID**: us-faa-14-cfr-450-commercial-space-launch-reentry-license - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: 14 CFR Part 450 establishes the single, performance-based vehicle operator license under which the U.S. Federal Aviation Administration authorizes commercial launch and reentry operations. An operator... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-14-cfr-450-commercial-space-launch-reentry-license.json #### US FAA 14 CFR Part 415 Launch License Policy Review and Approval Process Legacy Framework Now Superseded by Part 450 for New Licenses - **ID**: us-faa-14-cfr-part-415-launch-license-policy-review - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: 14 CFR Part 415 implements the United States Federal Aviation Administration legacy launch license framework governing launches from federal launch sites and non-federal launch sites organised in oper... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-14-cfr-part-415-launch-license-policy-review.json #### US FAA 14 CFR Part 450 Launch and Reentry License Requirements Performance-Based Framework for Commercial Spaceflight Operations - **ID**: us-faa-14-cfr-part-450-launch-reentry-license-requirements - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: 14 CFR Part 450 implements the United States Federal Aviation Administration unified performance-based framework for commercial launch and reentry vehicle licensing organised in 3 subparts covering Su... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-14-cfr-part-450-launch-reentry-license-requirements.json #### US FAA 14 CFR Part 460 Human Space Flight Requirements Crew Spaceflight Participant Informed Consent and Operator Safety Obligations - **ID**: us-faa-14-cfr-part-460-human-spaceflight-requirements - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: 14 CFR Part 460 implements the United States Federal Aviation Administration human spaceflight regulations applicable to launch and reentry operators carrying crew or spaceflight participants organise... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-14-cfr-part-460-human-spaceflight-requirements.json #### 14 CFR Part 460 - Human Space Flight Requirements - **ID**: us-faa-part-460-human-space-flight-requirements - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This regulation establishes safety and training requirements for crew, space flight participants, and government astronauts involved in commercial human space flight operations under an FAA license or... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-faa-part-460-human-space-flight-requirements.json #### 47 CFR Part 25 - Satellite Communications (FCC) - **ID**: us-fcc-47-cfr-25-satellite-communications - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: FCC 47 CFR Part 25 governs satellite communications, requiring a station authorization for space stations and earth stations, meeting citizenship and application requirements, filing space station and... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-47-cfr-25-satellite-communications.json #### US FCC 47 CFR Part 25 Satellite Communications Earth Station and Space Station Licensing Orbital Debris Mitigation and Spectrum Coordination - **ID**: us-fcc-47-cfr-part-25-satellite-communications - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: 47 CFR Part 25 implements the United States Federal Communications Commission framework regulating satellite communications including the licensing of earth stations and space stations organised in mu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-47-cfr-part-25-satellite-communications.json #### US FCC 5-Year Deorbit Rule (2024) for Orbital Debris Mitigation - **ID**: us-fcc-5-year-deorbit-rule-2024-orbital-debris-mitigation - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The Federal Communications Commission's 5-Year Deorbit Rule shortens the post-mission disposal timeline for satellites in low-Earth orbit (LEO) from 25 years to 5 years following the end of mission. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-5-year-deorbit-rule-2024-orbital-debris-mitigation.json #### 47 CFR Part 25 - Satellite Communications - **ID**: us-fcc-cfr-47-part-25-satellite-earth-stations - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Organizations must obtain specific station authorizations from the Federal Communications Commission (FCC) before constructing, deploying, or operating satellite space stations or earth stations. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-cfr-47-part-25-satellite-earth-stations.json #### US FCC Part 25 - Satellite Earth Station Licensing, Spectrum Coordination, and NGSO Constellation Authorization - **ID**: us-fcc-part-25-satellite-earth-station-licensing-spectrum-coordination - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: FCC Part 25 rules govern licensing of satellite earth stations and space stations (including NGSO constellations), requiring frequency coordination, power limits, interference protection, technical sh... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-part-25-satellite-earth-station-licensing-spectrum-coordination.json #### US FCC Part 25 - Satellite Earth Stations and Space Stations: Licensing Requirements, Orbital Debris Mitigation, and End-of-Life Disposal - **ID**: us-fcc-part-25-satellite-licensing-orbital-debris - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: Title 47 CFR Part 25 governs FCC licensing of satellite earth stations and space stations (satellites) for US operators. Space station licenses require technical showing of orbital debris mitigation c... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-part-25-satellite-licensing-orbital-debris.json #### FCC 47 CFR Part 25 - Satellite Communications - **ID**: us-fcc-satellite-licensing-part-25 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This regulation establishes licensing, technical, and operational requirements for satellite communications systems in the United States, including geostationary (GSO) and non-geostationary (NGSO) sat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-satellite-licensing-part-25.json #### 15 CFR Part 960 - NOAA Licensing of Private Remote Sensing Space Systems - **ID**: us-noaa-15-cfr-960-commercial-remote-sensing-space-systems - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: 15 CFR Part 960 governs the licensing of private remote sensing space systems by the U.S. National Oceanic and Atmospheric Administration. A person subject to U.S. jurisdiction must obtain a license f... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-noaa-15-cfr-960-commercial-remote-sensing-space-systems.json #### US NOAA 15 CFR Part 960 Licensing of Private Remote Sensing Space Systems Tier System Conditions and Reporting Requirements - **ID**: us-noaa-15-cfr-part-960-private-remote-sensing-space-systems - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: 15 CFR Part 960 implements the United States National Oceanic and Atmospheric Administration Commercial Remote Sensing Regulatory Affairs framework licensing operators of private remote sensing space ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-noaa-15-cfr-part-960-private-remote-sensing-space-systems.json #### DoD Instruction 3100.12, Space Support: Space Force Roles in Space Domain Awareness, Satellite Command and Control, Offensive and Defensive Space Control, and Transfer of Authorities from Air Force to USSF Components, Including Assignment to USINDOPACOM and Space Superiority Operations - **ID**: us-space-force-regulations-dodi-3100-12 - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: This regulation establishes the roles, responsibilities, and operational authorities of the United States Space Force (USSF) in space support operations, including Space Domain Awareness (SDA), satell... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-space-force-regulations-dodi-3100-12.json #### US Space Policy Directive-3 (SPD-3) - National Space Traffic Management Policy 2018 - **ID**: us-space-policy-directive-3-2018-stm - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: SPD-3 (signed 18 June 2018) designates the US Department of Commerce (DOC) as the lead civil agency for Space Traffic Management (STM), establishes an open-architecture civil Space Situational Awarene... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-space-policy-directive-3-2018-stm.json #### US Space Policy Directive-4 (SPD-4) 2019 - Establishment of the United States Space Force - **ID**: us-space-policy-directive-4-2019-space-force - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: SPD-4 (signed 19 February 2019) directed the Department of Defense to establish the United States Space Force (USSF) as a separate military service branch. The USSF was formally established on 20 Dece... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-space-policy-directive-4-2019-space-force.json #### USA Commercial Space Launch Act (51 U.S.C. Chapter 509) - FAA Launch and Reentry Licensing - **ID**: usa-commercial-space-launch-act-1984-faa-licensing - **Category**: Space & Satellite Law - **Version**: 1.0.0 - **BLUF**: The US Commercial Space Launch Act (originally 1984, recodified at 51 U.S.C. Chapter 509, significantly amended by the Commercial Space Launch Competitiveness Act of 2015 and the FAA Reauthorization A... - **Discovery URL**: https://bidda.com/api/v1/nodes/usa-commercial-space-launch-act-1984-faa-licensing.json ### Sustainability & ESG (308 nodes) #### Aarhus Convention 1998 - Access to Environmental Information, Public Participation, and Access to Justice - **ID**: aarhus-convention-1998-environmental-access - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Aarhus Convention (UN ECE, 47 Parties) creates binding obligations on public authorities to provide environmental information within 1 month of request (Article 4), enable public participation in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/aarhus-convention-1998-environmental-access.json #### Australia Modern Slavery Act 2018 (Cth) (No. 153 of 2018) - **ID**: au-modern-slavery-act-2018 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Modern Slavery Act 2018 (Cth) No. 153 of 2018 is Australia's principal supply-chain transparency statute targeting modern slavery practices. The Act was in force from 1 January 2019. The Act is or... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-modern-slavery-act-2018.json #### Australia NGER Act 2007 - National Greenhouse and Energy Reporting Scheme - **ID**: australia-nger-act-2007-national-greenhouse-energy-reporting - **Category**: Sustainability & ESG - **Version**: 2.0 - **BLUF**: Australia's National Greenhouse and Energy Reporting Act 2007 requires corporations meeting energy production or consumption thresholds to register with and report annually to the Clean Energy Regulat... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-nger-act-2007-national-greenhouse-energy-reporting.json #### Basel Convention 1989 - Transboundary Movements of Hazardous Wastes & Their Disposal - **ID**: basel-convention-1989-hazardous-waste-transboundary - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Basel Convention on the Control of Transboundary Movements of Hazardous Wastes and Their Disposal, adopted on 22 March 1989 in Basel, Switzerland, and entered into force on 5 May 1992, has 191 Par... - **Discovery URL**: https://bidda.com/api/v1/nodes/basel-convention-1989-hazardous-waste-transboundary.json #### Principles for the effective management and supervision of climate-related financial risks - **ID**: bis-bcbs-d498-climate-financial-risk - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This Basel Committee on Banking Supervision (BCBS) standard establishes principles to improve banks risk management and supervisors practices regarding climate-related financial risks. - **Discovery URL**: https://bidda.com/api/v1/nodes/bis-bcbs-d498-climate-financial-risk.json #### Convention on Migratory Species 1979 (Bonn Convention) - Appendix I-II Listed Species and Agreement Framework - **ID**: bonn-convention-1979-conservation-migratory-species - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Convention on the Conservation of Migratory Species of Wild Animals (Bonn Convention or CMS) was adopted on 23 June 1979 in Bonn, Germany and entered into force on 1 November 1983. It is an enviro... - **Discovery URL**: https://bidda.com/api/v1/nodes/bonn-convention-1979-conservation-migratory-species.json #### BREEAM Building Performance - **ID**: breeam-building-perf - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Asset performance verification against the BREEAM framework necessitates a holistic assessment of environmental, social, and economic sustainability factors. Compliance requires demonstrating an overa... - **Discovery URL**: https://bidda.com/api/v1/nodes/breeam-building-perf.json #### Canada Canadian Environmental Protection Act 1999 - Toxic Substances Pollution Prevention and Federal Environmental Authority - **ID**: ca-canadian-environmental-protection-act-1999 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Canadian Environmental Protection Act 1999 provides the federal framework for protecting the environment and human health from risks posed by toxic substances, requires assessment of new substance... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-canadian-environmental-protection-act-1999.json #### Canadian Environmental Protection Act, 1999 - Part 5, Sections 74-76.1: Controlling Toxic Substances - **ID**: ca-environmental-protection-act-part-5-toxics - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation outlines the process for any person to request a substance assessment from the Ministers, specifying the required form, manner, and information for such a request. - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-environmental-protection-act-part-5-toxics.json #### Canada Environmental Protection Act 1999 - CEPA Toxic Substances and GHG Reporting Framework - **ID**: canada-environmental-protection-act-1999-eccc - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Canadian Environmental Protection Act 1999 (CEPA 1999, S.C. 1999, c. 33) is Canada's primary federal environmental statute governing toxic substances, pollution prevention, greenhouse gas emission... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-environmental-protection-act-1999-eccc.json #### CDP Carbon Disclosure Protocol - **ID**: cdp-carbon-disclosure - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Adherence to the CDP Carbon Disclosure Protocol necessitates annual disclosure via the mandatory ORS portal submission following a minimum reporting period of twelve months. Organizations must quantif... - **Discovery URL**: https://bidda.com/api/v1/nodes/cdp-carbon-disclosure.json #### CDP Climate Change Questionnaire 2024 - Governance, Risk, Targets and Supply Chain Disclosure Framework - **ID**: cdp-climate-questionnaire-2024 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The CDP Climate Change Questionnaire is a comprehensive framework for companies to disclose environmental information on governance, risks, opportunities, targets, and performance to stakeholders. It ... - **Discovery URL**: https://bidda.com/api/v1/nodes/cdp-climate-questionnaire-2024.json #### China Yangtze River Protection Law (2020) and the River and Lake Chief System - **ID**: china-yangtze-river-protection-law-2020-river-chief - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Yangtze River Protection Law (Yangzi Jiang Baohu Fa) of the People's Republic of China was adopted by the Standing Committee of the National People's Congress on 26 December 2020 and entered into ... - **Discovery URL**: https://bidda.com/api/v1/nodes/china-yangtze-river-protection-law-2020-river-chief.json #### CITES 1973 - Convention on International Trade in Endangered Species of Wild Fauna and Flora - **ID**: cites-convention-1973-endangered-species-trade - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Convention on International Trade in Endangered Species of Wild Fauna and Flora (CITES), signed on 3 March 1973 in Washington D.C. and entered into force 1 July 1975, has 183 Parties and is the in... - **Discovery URL**: https://bidda.com/api/v1/nodes/cites-convention-1973-endangered-species-trade.json #### Directive (EU) 2022/2464 (CSRD) Article 1: Amendments to Directive 2013/34/EU - **ID**: csrd-directive-article-1-amendments-to-accounting-directive - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article extends the application of specific coordination and reporting measures under Directive 2013/34/EU to large undertakings and certain small and medium-sized public-interest entities, regar... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-1-amendments-to-accounting-directive.json #### DIRECTIVE (EU) 2022/2464 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 14 December 2022 amending Regulation (EU) No 537/2014, Directive 2004/109/EC, Directive 2006/43/EC and Directive 2013/34/EU, as regards corporate sustainability reporting - **ID**: csrd-directive-article-10-digital-tagging-xbrl-requirements - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This directive aims to transform the Union into a modern, resource-efficient, and competitive economy by reviewing and enhancing corporate sustainability reporting to support the European Green Deal. - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-10-digital-tagging-xbrl-requirements.json #### Directive (EU) 2022/2464 on corporate sustainability reporting - Article 11 (inserting Article 40a into Directive 2013/34/EU) - **ID**: csrd-directive-article-11-third-country-parent-reporting - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Requires large or listed EU subsidiaries or branches of a third-country parent undertaking to publish a consolidated sustainability report for the entire group, prepared in accordance with specific st... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-11-third-country-parent-reporting.json #### Directive (EU) 2022/2464 of the European Parliament and of the Council of 14 December 2022 as regards corporate sustainability reporting - Article 19 Penalties - **ID**: csrd-directive-article-19-penalties-for-non-compliance - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article requires Member States to establish rules on effective, proportionate, and dissuasive penalties for infringements of the national provisions adopted pursuant to the Corporate Sustainabili... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-19-penalties-for-non-compliance.json #### Corporate Sustainability Reporting Directive (CSRD) Article 2: Definition of Net Turnover - **ID**: csrd-directive-article-2-scope-of-sustainability-reporting - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes the specific definitions of 'net turnover' for different types of undertakings, including general companies, insurance undertakings, credit institutions, and those under speci... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-2-scope-of-sustainability-reporting.json #### DIRECTIVE (EU) 2022/2464 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 14 December 2022 as regards corporate sustainability reporting - Article 21 - **ID**: csrd-directive-article-21-transposition-timeline - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes the deadlines and requirements for Member States to adopt and publish the laws, regulations, and administrative provisions necessary to comply with this Directive. - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-21-transposition-timeline.json #### Directive (EU) 2022/2464 Article 3: Amendments to Directive 2006/43/EC regarding assurance of sustainability reporting - **ID**: csrd-directive-article-3-sustainability-reporting-standards - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article mandates that corporate sustainability reporting must undergo an assurance engagement by a statutory auditor or an accredited independent provider, following specific EU-adopted assurance... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-3-sustainability-reporting-standards.json #### DIRECTIVE (EU) 2022/2464 on corporate sustainability reporting - Value Chain and Due Diligence Obligations - **ID**: csrd-directive-article-4-value-chain-reporting-due-diligence - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This directive requires undertakings to conduct and report on the due diligence process for sustainability matters across their operations and value chain, including the principal impacts, risks, oppo... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-4-value-chain-reporting-due-diligence.json #### Directive (EU) 2022/2464 of the European Parliament and of the Council of 14 December 2022 as regards corporate sustainability reporting - Article 5: EU Taxonomy Reporting Obligations - **ID**: csrd-directive-article-5-eu-taxonomy-reporting-obligations - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article requires undertakings to disclose information on how and to what extent their activities are associated with economic activities that qualify as environmentally sustainable under the EU T... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-5-eu-taxonomy-reporting-obligations.json #### Directive (EU) 2022/2464 of the European Parliament and of the Council of 14 December 2022 amending Regulation (EU) No 537/2014, Directive 2004/109/EC, Directive 2006/43/EC and Directive 2013/34/EU, as regards corporate sustainability reporting - Article 6: Transitional provisions - **ID**: csrd-directive-article-6-sme-sustainability-reporting - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes specific transitional provisions, allowing certain undertakings temporary exemptions or options to omit specific information from their individual or consolidated sustainabili... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-6-sme-sustainability-reporting.json #### Directive (EU) 2022/2464 Article 7: Consolidated sustainability reporting - **ID**: csrd-directive-article-7-consolidated-sustainability-reporting - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article mandates that parent undertakings must prepare a consolidated sustainability report covering the parent and all its subsidiaries, ensuring consistent and comprehensive disclosure of susta... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-7-consolidated-sustainability-reporting.json #### Directive (EU) 2022/2464 - Article 19a: Sustainability reporting - **ID**: csrd-directive-article-8-combined-management-report - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Organizations must include in their management report detailed information on their sustainability impacts, risks, and strategies, covering business models, targets, governance, policies, due diligenc... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-8-combined-management-report.json #### Directive (EU) 2022/2464 as regards corporate sustainability reporting - Article 9: Limited Assurance Requirements - **ID**: csrd-directive-article-9-limited-assurance-requirements - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article mandates that a statutory auditor or audit firm must express an opinion based on a limited assurance engagement regarding the compliance of an undertaking's sustainability reporting with ... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-directive-article-9-limited-assurance-requirements.json #### CSRD / ESRS (EU Sustainability) - **ID**: csrd-eu-sustainability - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: The Corporate Sustainability Reporting Directive (CSRD) is the landmark EU regulation mandating detailed sustainability disclosure for large and listed companies. It introduces the European Sustainabi... - **Discovery URL**: https://bidda.com/api/v1/nodes/csrd-eu-sustainability.json #### Environmental Noise Directive - **ID**: environmental-noise-dir - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Compliance with Directive 2002/49/EC, the Environmental Noise Directive (END), mandates a common framework for managing environmental noise to mitigate its adverse health effects. This obligation requ... - **Discovery URL**: https://bidda.com/api/v1/nodes/environmental-noise-dir.json #### Espoo Convention 1991 - Environmental Impact Assessment in a Transboundary Context - **ID**: espoo-convention-1991-transboundary-eia - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Espoo Convention (Convention on Environmental Impact Assessment in a Transboundary Context, 1991 - 45 Parties as of April 2026, UNECE region) requires States to assess the environmental impacts of... - **Discovery URL**: https://bidda.com/api/v1/nodes/espoo-convention-1991-transboundary-eia.json #### Regulation (EU) 2023/1542 of the European Parliament and of the Council of 12 July 2023 concerning batteries and waste batteries, amending Directive 2008/98/EC and Regulation (EU) 2019/1020 and repealing Directive 2006/66/EC - **ID**: eu-batteries-regulation-2023 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation establishes a comprehensive lifecycle framework for all batteries placed on the EU market, mandating sustainability, safety, labelling, and end-of-life management. It requires economic... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-batteries-regulation-2023.json #### EU Batteries Regulation 2023/1542 - **ID**: eu-batteries-regulation-2023-1542 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2023/1542, in force from 17 August 2023 and replacing Directive 2006/66/EC, establishes the lifecycle framework for batteries placed on the EU market including mandatory carbon footpri... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-batteries-regulation-2023-1542.json #### EU Batteries Regulation 2023/1542 - Lifecycle Requirements, Battery Passport, and Recycled Content Mandates - **ID**: eu-batteries-regulation-2023-1542-recycled-content-labelling - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2023/1542 establishes end-to-end lifecycle requirements for all batteries placed on the EU market - covering carbon footprint, recycled content thresholds, a mandatory battery passport... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-batteries-regulation-2023-1542-recycled-content-labelling.json #### EU Digital Battery Passport - **ID**: eu-battery-passport - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Compliance with Regulation (EU) 2023/1542 mandates the creation of a unique Digital Battery Passport for specific battery categories placed on the market. This requirement applies if a product is an i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-battery-passport.json #### Regulation (EU) 2023/956 of the European Parliament and of the Council of 10 May 2023 establishing a carbon border adjustment mechanism - **ID**: eu-carbon-border-adjustment-2023 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The EU Carbon Border Adjustment Mechanism (CBAM) requires EU-based importers of specific carbon-intensive goods (cement, iron, steel, aluminium, fertilisers, electricity, hydrogen) to report embedded ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-carbon-border-adjustment-2023.json #### EU Carbon Border Adjustment Mechanism (CBAM) Regulation 2023/956 - Carbon Price Certificates for Imported Goods - **ID**: eu-carbon-border-adjustment-mechanism-2023-956-cbam-certificates - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2023/956 establishes a Carbon Border Adjustment Mechanism (CBAM) requiring importers of cement, iron and steel, aluminium, fertilisers, electricity, and hydrogen to purchase CBAM certi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-carbon-border-adjustment-mechanism-2023-956-cbam-certificates.json #### Regulation (EU) 2024/3012 - EU Carbon Removals Certification Framework (CRCF): Quality Criteria for Carbon Removal Activities, Certification Body Accreditation, Carbon Removal Certificates, Delegated Act Methodologies, and Integration with EU Net Zero and Voluntary Carbon Market Standards - **ID**: eu-carbon-removals-certification-framework-2024-3012 - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2024/3012 (EU Carbon Removals Certification Framework, CRCF), adopted 27 November 2024, establishes the EU's first regulatory framework for certifying carbon removal activities; key el... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-carbon-removals-certification-framework-2024-3012.json #### EU Carbon Border Adjustment (CBAM) - **ID**: eu-cbam-calc - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: The EU Carbon Border Adjustment Mechanism (CBAM), established by Regulation (EU) 2023/956 and fully operational from January 2026, requires EU importers to purchase CBAM certificates corresponding to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cbam-calc.json #### Regulation (EU) 2023/956 (CBAM) - Carbon Border Adjustment Mechanism: Transitional Reporting Phase 2023-2025, Certificate Purchase from January 2026, Covered Sectors (Cement, Steel, Aluminium, Fertilisers, Electricity, Hydrogen), Authorised CBAM Declarant and Embedded Emissions Calculation - **ID**: eu-cbam-carbon-border-adjustment-2023 - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2023/956 of 10 May 2023 establishes a Carbon Border Adjustment Mechanism (CBAM) that prices the carbon content of imports of specific goods from third countries to prevent carbon leaka... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cbam-carbon-border-adjustment-2023.json #### Regulation (EU) 2023/956 of the European Parliament and of the Council of 10 May 2023 establishing a carbon border adjustment mechanism - **ID**: eu-cbam-carbon-border-adjustment-mechanism - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation requires EU importers of specific carbon-intensive goods (cement, iron/steel, aluminium, fertilisers, electricity, hydrogen) to report embedded greenhouse gas emissions quarterly durin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cbam-carbon-border-adjustment-mechanism.json #### EU Carbon Border Adjustment Mechanism (EU) 2023/956 - Article 12: Purchase, Surrender and Repurchase of CBAM Certificates - **ID**: eu-cbam-regulation-2023-956-article-12-cbam-certificates-purchase-surrender - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 12 of the EU CBAM Regulation (2023/956) governs the financial mechanism for CBAM compliance: the purchase, surrender and repurchase of CBAM certificates. CBAM certificates are sold by national... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cbam-regulation-2023-956-article-12-cbam-certificates-purchase-surrender.json #### EU Carbon Border Adjustment Mechanism (CBAM) Regulation 2023/956 - Article 3: Scope and Covered Goods - **ID**: eu-cbam-regulation-2023-956-article-3-scope-covered-goods - **Category**: Sustainability & ESG - **Version**: 2.0 - **BLUF**: Article 3 of the EU CBAM Regulation (2023/956) defines the scope of covered goods subject to the Carbon Border Adjustment Mechanism. CBAM applies to imports of goods listed in Annex I that originate f... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cbam-regulation-2023-956-article-3-scope-covered-goods.json #### EU Carbon Border Adjustment Mechanism (EU) 2023/956 - Article 6: CBAM Declarations and Obligations of Importers - **ID**: eu-cbam-regulation-2023-956-article-6-cbam-declarations-importers - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 6 of the EU CBAM Regulation (2023/956) requires authorised CBAM declarants to file an annual CBAM declaration by 31 May each year, covering goods imported during the preceding calendar year. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cbam-regulation-2023-956-article-6-cbam-declarations-importers.json #### EU Corporate Sustainability Due Diligence Directive 2024/1760 - **ID**: eu-corporate-sustainability-due-diligence-directive-2024-1760 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2024/1760 (CS3D) requires large companies to conduct human rights and environmental due diligence across their own operations, subsidiaries, and business partners in their chain of acti... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-corporate-sustainability-due-diligence-directive-2024-1760.json #### EU Corporate Sustainability Reporting Directive (CSRD) 2022/2464 -- Mandatory ESG Reporting and Double Materiality - **ID**: eu-corporate-sustainability-reporting-directive-2022-2464 - **Category**: Sustainability & ESG - **Version**: 2024.1.0 - **BLUF**: Directive (EU) 2022/2464 (CSRD) replaces the Non-Financial Reporting Directive (NFRD 2014/95/EU) and significantly expands the scope and quality of mandatory corporate sustainability reporting. It app... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-corporate-sustainability-reporting-directive-2022-2464.json #### EU Corporate Sustainability Reporting Directive 2022/2464 (CSRD) - ESG Disclosure and ESRS Standards - **ID**: eu-corporate-sustainability-reporting-directive-2022-2464-csrd - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2022/2464 (CSRD) replaces the Non-Financial Reporting Directive (NFRD) and requires large EU companies and listed SMEs to disclose sustainability information under the European Sustaina... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-corporate-sustainability-reporting-directive-2022-2464-csrd.json #### EU Corporate Sustainability Reporting Directive (Directive EU 2022/2464 CSRD) amending accounting, transparency, audit instruments - **ID**: eu-corporate-sustainability-reporting-directive-csrd-2022 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Directive EU 2022/2464 Corporate Sustainability Reporting Directive CSRD replaces the Non-Financial Reporting Directive NFRD strengthening and expanding sustainability reporting obligations for large ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-corporate-sustainability-reporting-directive-csrd-2022.json #### Regulation (EU) 2024/1252 of the European Parliament and of the Council of 11 April 2024 establishing a framework for ensuring a secure and sustainable supply of critical raw materials and amending Regulations (EU) No 168/2013, (EU) 2018/858, (EU) 2018/1724 and (EU) 2019/1020 - **ID**: eu-critical-raw-materials-act-2024 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation establishes a framework to ensure the EU's secure and sustainable supply of critical and strategic raw materials by setting clear benchmarks for domestic capacities and supply chain di... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-critical-raw-materials-act-2024.json #### Regulation (EU) 2024/1252 - Critical Raw Materials Act (CRMA): 10/40/25% Extraction/Processing/Recycling Benchmarks, 65% Single-Country Concentration Cap, Strategic Projects Fast-Track Permitting, and Large Company Supply Chain Audits for 17 Strategic Raw Materials - **ID**: eu-critical-raw-materials-act-2024-1252 - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2024/1252 (Critical Raw Materials Act, CRMA), in force from 23 May 2024, establishes a framework to ensure the EU's access to critical raw materials by setting 2030 benchmarks: EU dome... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-critical-raw-materials-act-2024-1252.json #### EU Corporate Sustainability Due Diligence Directive (CSDDD) 2024/1760 - Value Chain Human Rights and Environmental Obligations - **ID**: eu-csddd-corporate-sustainability-due-diligence-2024-1760 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: CSDDD (Directive 2024/1760) requires large EU companies and qualifying non-EU companies to identify, prevent, mitigate, and account for adverse human rights and environmental impacts across their own ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-corporate-sustainability-due-diligence-2024-1760.json #### EU Corporate Sustainability Due Diligence Directive 2024/1760, CSDDD - Human Rights and Environmental Due Diligence - **ID**: eu-csddd-directive-2024-1760 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Large enterprises with more than 500 employees and global net turnover exceeding EUR 150 million, and enterprises in high-risk sectors such as mining, textiles, and agriculture as identified by the CS... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-2024-1760.json #### EU Corporate Sustainability Due Diligence Directive (EU) 2024/1760 - Article 10: Remediation of Actual Adverse Impacts - **ID**: eu-csddd-directive-2024-1760-article-10-remediation-adverse-impacts - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 10 of the EU Corporate Sustainability Due Diligence Directive (CSDDD, 2024/1760) requires companies subject to the Directive to take appropriate measures to provide remediation for actual adve... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-2024-1760-article-10-remediation-adverse-impacts.json #### EU Corporate Sustainability Due Diligence Directive (EU) 2024/1760 - Article 12: Stakeholder Engagement and Meaningful Consultation - **ID**: eu-csddd-directive-2024-1760-article-12-stakeholder-engagement-consultation - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 12 of the EU Corporate Sustainability Due Diligence Directive (CSDDD, 2024/1760) requires companies to engage in meaningful consultation with stakeholders when carrying out due diligence under... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-2024-1760-article-12-stakeholder-engagement-consultation.json #### EU Corporate Sustainability Due Diligence Directive (EU) 2024/1760 - Article 16: Adoption and Implementation of Climate Transition Plan - **ID**: eu-csddd-directive-2024-1760-article-16-climate-transition-plan - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 16 of the EU Corporate Sustainability Due Diligence Directive (CSDDD, 2024/1760) requires in-scope companies to adopt and put into effect a climate transition plan. The transition plan must be... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-2024-1760-article-16-climate-transition-plan.json #### EU Corporate Sustainability Due Diligence Directive (EU) 2024/1760 - Article 8: Prevention of Potential Adverse Impacts - **ID**: eu-csddd-directive-2024-1760-article-8-prevention-adverse-impacts - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 8 of the EU Corporate Sustainability Due Diligence Directive (CSDDD, 2024/1760) requires companies subject to the Directive to take appropriate measures to prevent, or where prevention is not ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-2024-1760-article-8-prevention-adverse-impacts.json #### Directive (EU) 2024/1760 on Corporate Sustainability Due Diligence - Article 10 - **ID**: eu-csddd-directive-article-10-complaints-procedure - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article requires organizations to consider how provisions of Article 10(1) and Article 11(1) may indirectly raise the level of protection afforded by Article 8(1) and (2). - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-article-10-complaints-procedure.json #### Directive (EU) 2024/1760 of the European Parliament and of the Council on Corporate Sustainability Due diligence - Article 11 - **ID**: eu-csddd-directive-article-11-monitoring-effectiveness - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: As part of their due diligence obligations, companies must take action to bring actual adverse impacts to an end and minimize their extent in accordance with the requirements of this article. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-article-11-monitoring-effectiveness.json #### Directive (EU) 2024/1760 on corporate sustainability due diligence and amending Directive (EU) 2019/1937 and Regulation (EU) 2023/2859 - Article 22 Civil liability - **ID**: eu-csddd-directive-article-22-civil-liability - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article's text, concerning the conditions under which a company can be held liable for damages, was not present in the provided regulatory source material. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-article-22-civil-liability.json #### Directive (EU) 2024/1760 on corporate sustainability due diligence - Article 26: Pecuniary penalties - **ID**: eu-csddd-directive-article-26-fines - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article requires Member States to establish rules for effective, proportionate, and dissuasive pecuniary penalties for infringements, with a maximum fine of at least 5% of the company's net world... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-article-26-fines.json #### EU Corporate Sustainability Due Diligence Directive (CSDDD) - Article 5: Due diligence - **ID**: eu-csddd-directive-article-5-risk-based-due-diligence-obligation - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Companies must conduct risk-based human rights and environmental due diligence by integrating it into policies, identifying and mitigating impacts, engaging stakeholders, establishing complaints proce... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-article-5-risk-based-due-diligence-obligation.json #### Directive (EU) 2024/1760 on Corporate Sustainability Due Diligence - Article 6: Due diligence support at a group level - **ID**: eu-csddd-directive-article-6-identification-of-adverse-impacts - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article permits parent companies to fulfill specific due diligence obligations on behalf of their subsidiaries, provided this ensures effective compliance and specific conditions for information ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-article-6-identification-of-adverse-impacts.json #### EU Corporate Sustainability Due Diligence Directive (CSDDD) - Article 7: Integrating due diligence into company policies and risk management systems - **ID**: eu-csddd-directive-article-7-prevention-of-adverse-impacts - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article requires companies to integrate due diligence into all relevant policies and risk management systems, develop a comprehensive due diligence policy in consultation with employees, and regu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-article-7-prevention-of-adverse-impacts.json #### Directive (EU) 2024/1760 on Corporate Sustainability Due Diligence - Article 5: Due diligence - **ID**: eu-csddd-directive-article-8-bringing-to-an-end-and-minimising - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article requires companies to conduct risk-based human rights and environmental due diligence by integrating it into policies and risk management systems, and by identifying, assessing, and prior... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csddd-directive-article-8-bringing-to-an-end-and-minimising.json #### Directive (EU) 2022/2464 of the European Parliament and of the Council of 14 December 2022 amending Regulation (EU) No 537/2014, Directive 2004/109/EC, Directive 2006/43/EC and Directive 2013/34/EU, as regards corporate sustainability reporting - **ID**: eu-csrd-2022-2464 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The EU Corporate Sustainability Reporting Directive (CSRD) mandates that large undertakings, listed SMEs, and certain non-EU companies report on sustainability issues in line with the European Sustain... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csrd-2022-2464.json #### EU Corporate Sustainability Reporting Directive (EU) 2022/2464 (CSRD) - **ID**: eu-csrd-directive-2022-2464 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EU Directive (EU) 2022/2464 (the Corporate Sustainability Reporting Directive CSRD) significantly expands sustainability reporting obligations for EU companies. CSRD applies to: (i) large EU companies... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csrd-directive-2022-2464.json #### EU Corporate Sustainability Reporting Directive (CSRD) 2022/2464 - ESRS Sustainability Statement Obligations - **ID**: eu-csrd-directive-2022-2464-corporate-sustainability-reporting - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: CSRD (Directive 2022/2464) extends mandatory sustainability reporting to ~50,000 EU companies, requiring a sustainability statement in the annual report using European Sustainability Reporting Standar... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-csrd-directive-2022-2464-corporate-sustainability-reporting.json #### EU Deforestation Regulation 2023/1115 - Article 3: Prohibition on Placing Relevant Commodities on the Market - **ID**: eu-deforestation-regulation-2023-1115-article-3-prohibition-placing-market - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Regulation (EU) 2023/1115 Article 3 prohibits placing relevant commodities and products on the EU market or exporting them unless three cumulative conditions are met: the commodity is deforestation-fr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-deforestation-regulation-2023-1115-article-3-prohibition-placing-market.json #### EU Deforestation Regulation 2023/1115 - Article 8: Due Diligence Obligations for Operators - **ID**: eu-deforestation-regulation-2023-1115-article-8-due-diligence-operators - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Regulation (EU) 2023/1115 Article 8 requires operators to establish and maintain a due diligence system with three sequential steps before market placement or export: information collection per Articl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-deforestation-regulation-2023-1115-article-8-due-diligence-operators.json #### EU Deforestation Regulation 2023/1115 - Zero-Deforestation Supply Chain Due Diligence for Commodities and Products - **ID**: eu-deforestation-regulation-2023-1115-supply-chain-due-diligence - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2023/1115 prohibits placing on the EU market (or exporting from it) products linked to deforestation or forest degradation after 31 December 2020. Operators and traders must perform du... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-deforestation-regulation-2023-1115-supply-chain-due-diligence.json #### Corrigendum to Directive (EU) 2024/1203 on protection of environment through criminal law and replacing Directives 2008/99/EC and 2009/123/EC - **ID**: eu-dir-2024-1203-corrigendum-to-directive-eu-2024-1203-of-11-april-2024-on-th - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This corrigendum corrects an error on page 15 of the original Directive (EU) 2024/1203, specifically in Article 3(2), point (g). The original text incorrectly referenced Article 2, point (26) of Regul... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2024-1203-corrigendum-to-directive-eu-2024-1203-of-11-april-2024-on-th.json #### Directive (EU) 2024/1203 of the European Parliament and of the Council of 11 April 2024 on the protection of the environment through criminal law and replacing Directives 2008/99/EC and 2009/123/EC - **ID**: eu-dir-2024-1203-on-the-protection-of-the-environment-through-criminal-law-an - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This Directive establishes minimum rules concerning the definition of criminal offences and penalties for the protection of the environment. It repeals and replaces Directives 2008/99/EC and 2009/123/... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2024-1203-on-the-protection-of-the-environment-through-criminal-law-an.json #### Corrigendum to Directive (EU) 2024/3019 of the European Parliament and of the Council of 27 November 2024 concerning urban wastewater treatment - **ID**: eu-dir-2024-3019-corrigendum-to-directive-eu-2024-3019-of-27-november-2024-co - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This is a corrigendum to Directive (EU) 2024/3019 of the European Parliament and of the Council of 27 November 2024 concerning urban wastewater treatment, published in the Official Journal of the Euro... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2024-3019-corrigendum-to-directive-eu-2024-3019-of-27-november-2024-co.json #### EU Ecodesign for Sustainable Products Regulation (EU) 2024/1781 (ESPR) - **ID**: eu-ecodesign-regulation-2024-1781 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EU Regulation (EU) 2024/1781 (the Ecodesign for Sustainable Products Regulation ESPR) replaces Directive 2009/125/EC providing a framework for setting ecodesign requirements for almost all physical pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecodesign-regulation-2024-1781.json #### Regulation (EU) 2024/1781 - Ecodesign for Sustainable Products Regulation (ESPR): Digital Product Passport, Durability/Repairability Minimum Requirements, Destruction of Unsold Products Ban, and Priority Product Category Framework to Replace Directive 2009/125/EC - **ID**: eu-ecodesign-sustainable-products-regulation-2024-1781 - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2024/1781 (Ecodesign for Sustainable Products Regulation, ESPR), applicable from 18 July 2024, replaces Directive 2009/125/EC (Ecodesign Directive) and creates a horizontal framework f... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ecodesign-sustainable-products-regulation-2024-1781.json #### Directive (EU) 2019/944 of the European Parliament and of the Council of 5 June 2019 on common rules for the internal market for electricity and amending Directive 2012/27/EU - **ID**: eu-electricity-directive-2019-944 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This directive establishes common rules for the EU's internal electricity market, mandating clear consumer rights, transparent billing, and the rollout of smart metering systems to empower 'active cus... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-directive-2019-944.json #### Regulation (EU) 2019/943 of the European Parliament and of the Council of 5 June 2019 on the internal market for electricity - **ID**: eu-electricity-regulation-2019-943 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation establishes key rules for an integrated, competitive, and non-discriminatory internal electricity market within the EU, mandating that all market participants are financially responsib... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electricity-regulation-2019-943.json #### Directive (EU) 2023/1791 of the European Parliament and of the Council of 13 September 2023 on energy efficiency and amending Regulation (EU) 2023/955 (recast) - **ID**: eu-energy-efficiency-directive-2023-1791 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This directive establishes a binding EU-level target to reduce final energy consumption by 11.7% by 2030, imposing an annual energy savings obligation on Member States (Article 8), requiring a 3% annu... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-2023-1791.json #### EU Energy Efficiency Directive 2023/1791 - Energy Savings Targets and Audit Obligations - **ID**: eu-energy-efficiency-directive-2023-1791-buildings-industry-targets - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2023/1791 (recast EED) sets a binding EU-level energy efficiency target of 11.7% reduction in final energy consumption by 2030 compared to 2020 projections, requires Member States to ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-efficiency-directive-2023-1791-buildings-industry-targets.json #### EU Energy Efficiency Directive Article 22 Energy Poverty and EU Electricity Directive Articles 26-27 Energy Communities - Member State Obligations - **ID**: eu-energy-poverty-directive-2023-communities - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation requires EU Member States to define, assess, and implement measures to alleviate energy poverty, prioritizing energy efficiency improvements for vulnerable households under Article 22 ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-energy-poverty-directive-2023-communities.json #### Ecodesign for Sustainable Prod - **ID**: eu-espr-ecodesign - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Regulation (EU) 2024/1781 establishes a comprehensive framework for setting ecodesign requirements for sustainable products, significantly expanding upon its predecessor, Directive 2009/125/EC. As a c... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-espr-ecodesign.json #### European Sustainability Reporting Standards 1 (ESRS 1) - General Requirements - **ID**: eu-esrs-1-general-requirements - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ESRS 1 is the foundational cross-cutting standard under the EU Corporate Sustainability Reporting Directive (CSRD). It sets the mandatory architecture for all sustainability statements: the double mat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-1-general-requirements.json #### European Sustainability Reporting Standards 2 (ESRS 2) - General Disclosures - **ID**: eu-esrs-2-general-disclosures - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ESRS 2 sets the disclosure requirements that every undertaking reporting under the CSRD must provide regardless of which topical standards are material. It covers the basis for preparation (BP-1, BP-2... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-2-general-disclosures.json #### European Sustainability Reporting Standards E1 (ESRS E1) - Climate Change - **ID**: eu-esrs-e1-climate-change - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ESRS E1 requires undertakings under the EU's Corporate Sustainability Reporting Directive (CSRD) to disclose their climate-related impacts, risks, and opportunities, including a transition plan for cl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-e1-climate-change.json #### European Sustainability Reporting Standards (ESRS) E2: Pollution - **ID**: eu-esrs-e2-pollution - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ESRS E2 requires undertakings subject to the Corporate Sustainability Reporting Directive (CSRD) to disclose their policies, actions, targets, and metrics concerning the prevention, control, and reduc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-e2-pollution.json #### European Sustainability Reporting Standards E3 (ESRS E3) - Water and Marine Resources - **ID**: eu-esrs-e3-water-marine-resources - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ESRS E3 requires undertakings under the CSRD to disclose their material impacts, risks and opportunities related to water and marine resources, including policies (E3-1), actions and resources (E3-2),... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-e3-water-marine-resources.json #### European Sustainability Reporting Standards E4 (ESRS E4) - Biodiversity and Ecosystems - **ID**: eu-esrs-e4-biodiversity-ecosystems - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ESRS E4 requires undertakings under the CSRD to disclose their material impacts, dependencies, risks and opportunities related to biodiversity and ecosystems. It covers a transition plan and the consi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-e4-biodiversity-ecosystems.json #### European Sustainability Reporting Standards E5 (ESRS E5) - Resource Use and Circular Economy - **ID**: eu-esrs-e5-resource-use-circular-economy - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ESRS E5 requires undertakings under the CSRD to disclose material impacts, risks and opportunities related to resource use and the circular economy. It covers policies (E5-1), actions and resources (E... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-e5-resource-use-circular-economy.json #### ESRS G1 Business Conduct - **ID**: eu-esrs-g1-business-conduct - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard requires undertakings subject to the CSRD to disclose their strategies, policies, actions, metrics, and targets related to business conduct. As per Disclosure Requirement G1-1, this incl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-g1-business-conduct.json #### EU ESRS S1 - Own Workforce: Working Conditions, Equal Treatment, Wages and Social Protection - **ID**: eu-esrs-s1-workforce - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard requires undertakings under the CSRD to disclose information on material impacts, risks, and opportunities related to their own workforce, covering working conditions, equal treatment, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-s1-workforce.json #### European Sustainability Reporting Standards S2 (ESRS S2) - Workers in the Value Chain - **ID**: eu-esrs-s2-value-chain-workers - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ESRS S2 requires undertakings under the CSRD to disclose how they affect workers in their upstream and downstream value chain and how material impacts, risks and opportunities are managed. It covers t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-s2-value-chain-workers.json #### European Sustainability Reporting Standards S3 (ESRS S3) - Affected Communities - **ID**: eu-esrs-s3-affected-communities - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ESRS S3 requires undertakings under the CSRD to disclose how their operations and value chain affect communities, including local, indigenous and other affected communities, and how material impacts, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-s3-affected-communities.json #### European Sustainability Reporting Standards S4 (ESRS S4) - Consumers and End-users - **ID**: eu-esrs-s4-consumers-end-users - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ESRS S4 requires undertakings under the CSRD to disclose how their products and services affect consumers and end-users and how material impacts, risks and opportunities are managed. It covers the con... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esrs-s4-consumers-end-users.json #### EU Emissions Trading System Directive 2003/87/EC - **ID**: eu-ets-directive-2003-87 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EU Directive 2003/87/EC established the EU Emissions Trading System (EU ETS) the world's first major carbon market and a cornerstone of EU climate policy. The EU ETS operates on a cap-and-trade basis ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ets-directive-2003-87.json #### Directive (EU) 2018/410 of the European Parliament and of the Council of 14 March 2018 amending Directive 2003/87/EC to enhance cost-effective emission reductions and low-carbon investments, and Decision (EU) 2015/1814 - **ID**: eu-ets-phase-iv-2021-2030-rules - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This directive establishes the rules for Phase IV (2021-2030) of the EU Emissions Trading System, requiring stationary installations, aviation operators, and maritime transport to surrender allowances... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ets-phase-iv-2021-2030-rules.json #### Directive (EU) 2023/959 (Fit for 55 ETS Revision) - Revised EU Emissions Trading System: 62% Reduction Target by 2030, Maritime Inclusion from 2024, ETS2 for Buildings and Road Transport from 2027, Phase-Out of Free Allowances, Linear Reduction Factor 4.3-4.4% and Social Climate Fund - **ID**: eu-ets-revision-2023-fit-for-55 - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: Directive (EU) 2023/959 of 10 May 2023 significantly amends Directive 2003/87/EC (the EU Emissions Trading System) to align the ETS with the EU's 2030 climate target of at least 55% net GHG reduction ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ets-revision-2023-fit-for-55.json #### EU Forced Labour Regulation 2024/3015 - Prohibition on Products Made with Forced Labour on the Union Market - **ID**: eu-forced-labour-regulation-2024-3015 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Economic operators must not place or make available on the Union market any product that is made with forced labour, nor export such products, with the prohibition applying from 14 December 2027 to al... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-forced-labour-regulation-2024-3015.json #### Regulation (EU) 2023/1805 of the European Parliament and of the Council of 13 September 2023 on the use of renewable and low-carbon fuels in maritime transport, and amending Directive 2009/16/EC (FuelEU Maritime) - **ID**: eu-fueleu-maritime-2023 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation requires shipping companies operating vessels over 5000 gross tonnage within the EU to progressively reduce the yearly average greenhouse gas (GHG) intensity of the energy used on-boar... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-fueleu-maritime-2023.json #### Directive (EU) 2021/1119 of the European Parliament and of the Council of 30 June 2021 amending Directive (EU) 2018/2001 as regards the promotion of energy from renewable sources - **ID**: eu-gas-regulation-2021-1119-hydrogen-market - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This Directive amends the Renewable Energy Directive (RED II) to align with the 2030 climate target, notably by increasing the overall EU target for renewable energy to at least 40% by 2030. It introd... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gas-regulation-2021-1119-hydrogen-market.json #### Regulation (EU) 2022/1032 of the European Parliament and of the Council of 29 June 2022 amending Regulations (EU) 2017/1938 and (EC) No 715/2009 with regard to gas storage - **ID**: eu-gas-storage-filling-regulation-2022-1032 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation mandates EU Member States to ensure their underground gas storage facilities are filled to at least 90% of their capacity by 1 November each year to guarantee security of gas supply, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gas-storage-filling-regulation-2022-1032.json #### Regulation (EU) 2023/2631 on European green bonds and optional disclosures for bonds marketed as environmentally sustainable and for sustainability-linked bonds - **ID**: eu-green-bond-standard-2023 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation establishes a voluntary 'European green bond' (EuGB) designation for issuers, requiring that bond proceeds be fully allocated to economic activities aligned with the EU Taxonomy for Su... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-green-bond-standard-2023.json #### EU Habitats Directive 92/43/EEC - Natura 2000 SAC Designation and Appropriate Assessment Framework - **ID**: eu-habitats-directive-92-43-eec-natura-2000 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Council Directive 92/43/EEC on the conservation of natural habitats and of wild fauna and flora (Habitats Directive) is the cornerstone of EU nature conservation law, together with the Birds Directive... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-habitats-directive-92-43-eec-natura-2000.json #### Commission Delegated Regulations (EU) 2023/1184 and 2023/1185 supplementing Directive (EU) 2018/2001 on Renewable Hydrogen (RFNBO) Definition, Additionality, and GHG Savings Methodology - **ID**: eu-hydrogen-delegated-acts-2023 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: These Delegated Acts establish the detailed rules for producing renewable hydrogen and other Renewable Fuels of Non-Biological Origin (RFNBOs) within the EU, defining criteria for 'additionality', 'te... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-hydrogen-delegated-acts-2023.json #### EU Maritime Transport Strategy 2021-2030 - Decarbonisation Pathway and FuelEU Maritime Regulation Proposals - **ID**: eu-maritime-transport-strategy-2021 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This EU strategy mandates a progressive reduction in the greenhouse gas (GHG) intensity of energy used by ships calling at EU ports, regardless of their flag. As implemented by Regulation (EU) 2023/18... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-maritime-transport-strategy-2021.json #### Regulation (EU) 2024/1787 of the European Parliament and of the Council of 13 June 2024 on methane emissions reduction in the energy sector and amending Regulation (EU) 2019/942 - **ID**: eu-methane-regulation-energy-2024-1787 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation imposes strict rules on the EU energy sector (oil, gas, and coal) for measuring, reporting, and verifying methane emissions. It mandates comprehensive Leak Detection and Repair (LDAR) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-methane-regulation-energy-2024-1787.json #### EU Nature Restoration Law (EU) 2024/1991 - Article 11: National Restoration Plans - Content and Submission Requirements - **ID**: eu-nature-restoration-law-2024-1991-article-11-national-restoration-plans - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 11 of the EU Nature Restoration Law (Regulation 2024/1991) requires EU member states to prepare and submit National Restoration Plans (NRPs) to the European Commission by 1 September 2026. The... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nature-restoration-law-2024-1991-article-11-national-restoration-plans.json #### EU Nature Restoration Law (EU) 2024/1991 - Article 4: Restoration Targets for Terrestrial, Riparian and Freshwater Ecosystems - **ID**: eu-nature-restoration-law-2024-1991-article-4-restoration-targets-terrestrial - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 4 of the EU Nature Restoration Law (Regulation 2024/1991) sets legally binding restoration targets for terrestrial, riparian, and freshwater ecosystems listed in Annex I of the Habitats Direct... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nature-restoration-law-2024-1991-article-4-restoration-targets-terrestrial.json #### EU Nature Restoration Law (EU) 2024/1991 - Article 6: Restoration of Urban Ecosystems and Green Urban Space Targets - **ID**: eu-nature-restoration-law-2024-1991-article-6-urban-ecosystem-restoration - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 6 of the EU Nature Restoration Law (Regulation 2024/1991) establishes legally binding targets for the restoration and expansion of urban green spaces and urban ecosystems across EU cities and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nature-restoration-law-2024-1991-article-6-urban-ecosystem-restoration.json #### Regulation (EU) 2024/1991 - EU Nature Restoration Regulation: Legally Binding Ecosystem Restoration Targets, National Restoration Plans, Urban Green Space Obligations, Agricultural Biodiversity Indicators, and Free-Flowing River Restoration Requirements - **ID**: eu-nature-restoration-regulation-2024-1991 - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2024/1991 (Nature Restoration Regulation), entered into force 18 August 2024, establishes the EU's first legally binding nature restoration law; key obligations include: legally bindin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nature-restoration-regulation-2024-1991.json #### EU Net-Zero Industry Act (NZIA) 2024/1735 - Strategic Net-Zero Technology Manufacturing Targets and Streamlined Permitting - **ID**: eu-net-zero-industry-act-2024-1735-clean-tech-manufacturing-targets - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2024/1735 (Net-Zero Industry Act) aims to scale up EU manufacturing of strategic clean technologies (solar, wind, heat pumps, batteries, electrolyzers, CCS, biogas, grid infrastructure... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-net-zero-industry-act-2024-1735-clean-tech-manufacturing-targets.json #### EU NFRD - Non-Financial Reporting Directive 2014/95/EU - **ID**: eu-nfrd-non-financial-reporting-directive-2014-95 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Directive 2014/95/EU (NFRD) required large public-interest entities (PIEs) with >500 employees to publish non-financial statements covering environmental matters, social/employee matters, anti-corrupt... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nfrd-non-financial-reporting-directive-2014-95.json #### Council Directive 2014/87/Euratom of 8 July 2014 amending Directive 2009/71/Euratom establishing a Community framework for the nuclear safety of nuclear installations - **ID**: eu-nuclear-safety-directive-2014-87-euratom - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This directive amends the EU's nuclear safety framework, requiring Member States to ensure licence holders for nuclear installations implement a high-level safety objective to prevent accidents and mi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nuclear-safety-directive-2014-87-euratom.json #### Directive 2013/30/EU of the European Parliament and of the Council of 12 June 2013 on safety of offshore oil and gas operations and amending Directive 2004/35/EC - **ID**: eu-offshore-oil-gas-safety-directive-2013-30 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This directive establishes minimum requirements for preventing major accidents in offshore oil and gas operations and limiting their consequences, applying to operators and owners. It mandates the cre... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-offshore-oil-gas-safety-directive-2013-30.json #### Regulation (EU) 2025/40 - EU Packaging and Packaging Waste Regulation (PPWR): Recyclability Requirements, Recycled Content Targets, Reusability Obligations, Deposit Return Systems, Prohibited Packaging Formats, Extended Producer Responsibility, and Repeal of Directive 94/62/EC - **ID**: eu-packaging-packaging-waste-regulation-2025-40 - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: Regulation (EU) 2025/40 (EU Packaging and Packaging Waste Regulation, PPWR), entered into force in early 2025, replaces Directive 94/62/EC and establishes the EU's first regulation (directly applicabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-packaging-packaging-waste-regulation-2025-40.json #### EU Packaging and Packaging Waste Regulation (EU) 2025/40 (PPWR) - **ID**: eu-ppwr-packaging-waste-2025-40 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EU Regulation (EU) 2025/40 (the Packaging and Packaging Waste Regulation PPWR) replaces Directive 94/62/EC with a comprehensive framework for packaging placed on the EU market. PPWR sets recyclability... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ppwr-packaging-waste-2025-40.json #### EU REACH Regulation 1907/2006 - Chemical Registration, SVHC Authorisation, and Restriction Obligations - **ID**: eu-reach-chemicals-1907-2006-svhc-authorisation - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: REACH (Registration, Evaluation, Authorisation and Restriction of Chemicals) - Regulation 1907/2006 - requires manufacturers and importers of chemical substances to register with ECHA when quantities ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reach-chemicals-1907-2006-svhc-authorisation.json #### Commission Delegated Regulation (EU) 2025/606 of 21 March 2025 supplementing Regulation (EU) 2023/1542 by establishing the methodology for calculation and verification of rates for recycling efficiency and recovery of materials from waste batteries, and the format for the documentation - **ID**: eu-reg-2025-0606-delegated-regulation-eu-2025-606-of-21-march-2025-supplement - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation (EU) 2025/606, adopted on 21 March 2025, supplements Regulation (EU) 2023/1542 by establishing the methodology for calculation and verification of rates for recycling e... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-0606-delegated-regulation-eu-2025-606-of-21-march-2025-supplement.json #### Regulation (EU) 2025/2455 establishing a common data platform on chemicals and a monitoring and outlook framework - **ID**: eu-reg-2025-2455-establishing-a-common-data-platform-on-chemicals-laying-down - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This Regulation establishes a common data platform on chemicals, managed by the European Chemicals Agency (ECHA), to increase protection of human health and the environment from chemical risks and to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-reg-2025-2455-establishing-a-common-data-platform-on-chemicals-laying-down.json #### Directive (EU) 2023/2413 of the European Parliament and of the Council of 18 October 2023 amending Directive (EU) 2018/2001, Regulation (EU) 2018/1999 and Directive 98/70/EC as regards the promotion of energy from renewable sources, and repealing Council Directive (EU) 2015/652 - **ID**: eu-renewable-energy-directive-iii-2023-2413 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This directive (RED III) mandates EU Member States to collectively ensure that the share of energy from renewable sources in the Union's gross final consumption of energy in 2030 is at least 42.5%, wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-renewable-energy-directive-iii-2023-2413.json #### EU RoHS Directive 2011/65 (RoHS 2) - **ID**: eu-rohs-directive-2011-65 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Directive 2011/65/EU on the restriction of the use of certain hazardous substances in electrical and electronic equipment (RoHS 2), in force from 2 January 2013 and extended to all EEE categories from... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-rohs-directive-2011-65.json #### Regulation (EU) 2017/1938 of the European Parliament and of the Council of 25 October 2017 concerning measures to safeguard the security of gas supply and repealing Regulation (EU) No 994/2010 - **ID**: eu-security-gas-supply-regulation-2017-1938 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation requires EU Member States to ensure a high level of gas supply security by meeting the N-1 infrastructure standard, conducting risk assessments, and establishing national and regional ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-security-gas-supply-regulation-2017-1938.json #### Regulation (EU) 2019/2088 of the European Parliament and of the Council of 27 November 2019 on sustainability‐related disclosures in the financial services sector - **ID**: eu-sfdr-2019-2088 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The EU Sustainable Finance Disclosure Regulation (SFDR) mandates that EU-based financial market participants and financial advisers disclose how they integrate sustainability risks and consider advers... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sfdr-2019-2088.json #### Regulation (EU) 2019/2088 on sustainability-related disclosures in the financial services sector - Article 4: Transparency of adverse sustainability impacts at entity level - **ID**: eu-sfdr-2019-2088-article-4-adverse-sustainability-impacts-disclosure - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Financial market participants must publish and maintain information on their websites regarding the principal adverse impacts of investment decisions on sustainability factors. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sfdr-2019-2088-article-4-adverse-sustainability-impacts-disclosure.json #### SFDR: Sustainable Finance Disclosure - **ID**: eu-sfdr-reporting - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: As a financial market participant and financial adviser under Regulation (EU) 2019/2088, this entity is subject to comprehensive sustainability-related disclosure obligations. Exceeding the 500-employ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sfdr-reporting.json #### Smart Metering Obligations under Directive (EU) 2019/944 on common rules for the internal market for electricity - **ID**: eu-smart-metering-directive-obligations - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This directive requires EU Member States to ensure the rollout of smart metering systems for electricity consumers, contingent upon a positive long-term cost-benefit analysis (CBA). It establishes con... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-smart-metering-directive-obligations.json #### EU Solar Energy Strategy (REPowerEU): Rooftop Solar Obligation - **ID**: eu-solar-strategy-2022-rooftop-obligation - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: As part of the REPowerEU plan, this strategy mandates the installation of solar photovoltaic systems on certain buildings by specific deadlines, amending the Energy Performance of Buildings Directive ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-solar-strategy-2022-rooftop-obligation.json #### Regulation (EU) 2020/852 of the European Parliament and of the Council of 18 June 2020 on the establishment of a framework to facilitate sustainable investment, and amending Regulation (EU) 2019/2088 - **ID**: eu-taxonomy-regulation-2020-852 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation establishes a classification system (the 'Taxonomy') to identify environmentally sustainable economic activities for investment purposes. It requires financial market participants and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-2020-852.json #### EU Taxonomy Regulation (EU) 2020/852 - Article 12: Technical Screening Criteria and Do No Significant Harm Conditions - **ID**: eu-taxonomy-regulation-2020-852-article-12-technical-screening-criteria - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 12 of the EU Taxonomy Regulation (2020/852) establishes the legal basis for Technical Screening Criteria (TSC) that determine whether economic activities qualify as environmentally sustainable... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-2020-852-article-12-technical-screening-criteria.json #### EU Taxonomy Regulation (EU) 2020/852 - Article 6: Disclosure Obligations for Financial Products Investing in Taxonomy-Aligned Activities - **ID**: eu-taxonomy-regulation-2020-852-article-6-disclosure-financial-products - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 6 of the EU Taxonomy Regulation (2020/852) imposes disclosure obligations on financial market participants that market financial products (investment funds, pension products, insurance-based i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-2020-852-article-6-disclosure-financial-products.json #### EU Taxonomy Regulation (EU) 2020/852 - Article 8: Disclosure by Non-Financial Undertakings on Taxonomy-Aligned Revenue, Capex and Opex - **ID**: eu-taxonomy-regulation-2020-852-article-8-disclosure-non-financial-undertakings - **Category**: Sustainability & ESG - **Version**: 2.0.0 - **BLUF**: Article 8 of the EU Taxonomy Regulation (2020/852) requires non-financial undertakings subject to the Non-Financial Reporting Directive (NFRD, now superseded by CSRD) to disclose, in their non-financi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-2020-852-article-8-disclosure-non-financial-undertakings.json #### EU Taxonomy Regulation 2020/852 - Sustainable Finance Classification System and DNSH Criteria - **ID**: eu-taxonomy-regulation-2020-852-sustainable-finance-classification - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2020/852 establishes a unified EU classification system determining whether economic activities qualify as environmentally sustainable. Financial market participants and large companie... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-2020-852-sustainable-finance-classification.json #### EU Taxonomy Regulation 2020/852 - Sustainable Finance Classification & DNSH Criteria - **ID**: eu-taxonomy-regulation-2020-852-sustainable-finance-dnsh - **Category**: Sustainability & ESG - **Version**: 2.0 - **BLUF**: EU Taxonomy Regulation 2020/852 establishes a unified classification system for environmentally sustainable economic activities - requiring financial market participants and large companies to disclos... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-2020-852-sustainable-finance-dnsh.json #### REGULATION (EU) 2020/852 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 18 June 2020 on the establishment of a framework to facilitate sustainable investment, and amending Regulation (EU) 2019/2088 - Article 10 - **ID**: eu-taxonomy-regulation-article-10-climate-change-mitigation-criteria - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes that an economic activity qualifies as contributing substantially to climate change mitigation if it contributes to stabilizing greenhouse gas concentrations by avoiding or re... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-article-10-climate-change-mitigation-criteria.json #### Regulation (EU) 2020/852 on the establishment of a framework to facilitate sustainable investment - Article 11: Substantial contribution to climate change adaptation - **ID**: eu-taxonomy-regulation-article-11-climate-change-adaptation-criteria - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes the criteria for an economic activity to qualify as making a substantial contribution to climate change adaptation, either by implementing solutions to reduce its own climate ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-article-11-climate-change-adaptation-criteria.json #### REGULATION (EU) 2020/852 on the establishment of a framework to facilitate sustainable investment - Article 12: Substantial contribution to the protection and restoration of biodiversity and ecosystems - **ID**: eu-taxonomy-regulation-article-12-biodiversity-and-ecosystems-criteria - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes the criteria for an economic activity to be considered as contributing substantially to the protection and restoration of biodiversity and ecosystems under the EU Taxonomy. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-article-12-biodiversity-and-ecosystems-criteria.json #### Regulation (EU) 2020/852 on the establishment of a framework to facilitate sustainable investment - Article 14: Substantial contribution to pollution prevention and control - **ID**: eu-taxonomy-regulation-article-14-delegated-acts-technical-criteria - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article obligates the European Commission to establish and adopt, via a single delegated act, technical screening criteria for determining when an economic activity substantially contributes to p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-article-14-delegated-acts-technical-criteria.json #### Regulation (EU) 2020/852 on the establishment of a framework to facilitate sustainable investment - Article 17: Significant harm to environmental objectives - **ID**: eu-taxonomy-regulation-article-17-do-no-significant-harm - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes the criteria for determining when an economic activity is considered to cause significant harm to six key environmental objectives, requiring assessments to consider the full ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-article-17-do-no-significant-harm.json #### Regulation (EU) 2020/852 of the European Parliament and of the Council - Article 2: Definitions - **ID**: eu-taxonomy-regulation-article-2-definitions - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes the official definitions for key terms such as 'environmentally sustainable investment', 'climate change mitigation', and 'circular economy', which must be used consistently w... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-article-2-definitions.json #### REGULATION (EU) 2020/852 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 18 June 2020 on the establishment of a framework to facilitate sustainable investment, and amending Regulation (EU) 2019/2088 - Article 20 - **ID**: eu-taxonomy-regulation-article-20-minimum-social-safeguards - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article requires undertakings to implement due diligence and remedy procedures to ensure their economic activities align with minimum social safeguards based on international standards, including... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-article-20-minimum-social-safeguards.json #### Regulation (EU) 2020/852 on the establishment of a framework to facilitate sustainable investment - Article 3: Criteria for environmentally sustainable economic activities - **ID**: eu-taxonomy-regulation-article-3-six-environmental-objectives - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes the four mandatory criteria an economic activity must meet to qualify as environmentally sustainable: substantial contribution to an environmental objective, doing no signific... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-article-3-six-environmental-objectives.json #### Regulation (EU) 2020/852 Article 5: Transparency of environmentally sustainable investments in pre-contractual disclosures and in periodic reports - **ID**: eu-taxonomy-regulation-article-5-technical-screening-criteria - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Financial products investing in environmentally sustainable economic activities must disclose in pre-contractual and periodic reports the specific environmental objectives, how and to what extent inve... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-article-5-technical-screening-criteria.json #### Regulation (EU) 2020/852 (EU Taxonomy Regulation) - Article 8: Transparency of financial products promoting environmental characteristics in pre-contractual disclosures and in periodic reports - **ID**: eu-taxonomy-regulation-article-8-disclosure-obligations-financial-market - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article mandates that financial products promoting environmental characteristics must include a specific, verbatim statement in their disclosures clarifying the application of the 'do no signific... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-article-8-disclosure-obligations-financial-market.json #### Regulation (EU) 2020/852 (EU Taxonomy Regulation) - Article 9: Conditions for Environmentally Sustainable Economic Activities - **ID**: eu-taxonomy-regulation-article-9-substantial-contribution-to-objectives - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes the core conditions an economic activity must meet to be considered environmentally sustainable, including not significantly harming environmental objectives, complying with m... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-regulation-article-9-substantial-contribution-to-objectives.json #### EU Taxonomy for Sustainable Finance - **ID**: eu-taxonomy-sustainable - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Regulation (EU) 2020/852 establishes a classification system to determine whether an economic activity is environmentally sustainable, imposing stringent disclosure obligations on entities subject to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-taxonomy-sustainable.json #### Regulation (EU) 2022/869 of the European Parliament and of the Council of 14 June 2022 on guidelines for trans-European energy infrastructure, amending Regulations (EC) No 715/2009, (EU) 2019/942 and (EU) 2019/943 and Directives 2009/73/EC and (EU) 2019/944, and repealing Regulation (EU) No 347/2013 - **ID**: eu-trans-european-energy-infrastructure-2022-869 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation establishes a framework for identifying and developing Projects of Common Interest (PCIs) and Projects of Mutual Interest (PMIs) to build an integrated trans-European energy infrastruc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-trans-european-energy-infrastructure-2022-869.json #### EU Waste Framework Directive 2008/98/EC - Waste Management Hierarchy and Extended Producer Responsibility - **ID**: eu-waste-framework-directive-2008-98 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Directive 2008/98/EC of the European Parliament and of the Council of 19 November 2008 on waste (the Waste Framework Directive, WFD), as amended by Directive 2018/851/EU, establishes the overarching l... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-waste-framework-directive-2008-98.json #### EU WEEE Directive 2012/19 - **ID**: eu-weee-directive-2012-19 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Directive 2012/19/EU of the European Parliament and of the Council on waste electrical and electronic equipment (WEEE), in force from 13 August 2012 with full transposition required by 14 February 201... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-weee-directive-2012-19.json #### EU Waste Electrical and Electronic Equipment Directive 2012/19/EU (WEEE) - **ID**: eu-weee-directive-2012-19-eu - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EU Directive 2012/19/EU (WEEE recast) implements producer responsibility for waste electrical and electronic equipment in the EU. Producers (defined broadly to include manufacturers importers and dist... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-weee-directive-2012-19-eu.json #### Transmission Planning and Cost Allocation by Transmission Owning and Operating Public Utilities - **ID**: ferc-order-1000-transmission-planning - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This order requires public utility transmission providers to participate in regional transmission planning processes that consider transmission needs driven by public policy requirements and evaluate ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ferc-order-1000-transmission-planning.json #### Electric Storage Participation in Markets Operated by Regional Transmission Organizations and Independent System Operators - **ID**: ferc-order-841-electric-storage-participation - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This order requires each Regional Transmission Organization (RTO) and Independent System Operator (ISO) to revise its tariff to establish a participation model for Electric Storage Resources (ESRs) in... - **Discovery URL**: https://bidda.com/api/v1/nodes/ferc-order-841-electric-storage-participation.json #### France Loi n° 2017-399 du 27 mars 2017 relative au devoir de vigilance des societes meres et des entreprises donneuses d'ordre (Duty of Vigilance Law) - **ID**: fr-loi-2017-399-devoir-de-vigilance - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Loi n° 2017-399 du 27 mars 2017 (Duty of Vigilance Law) inserts Articles L. 225-102-4 and L. 225-102-5 into the French Code de commerce, creating the first parent-company duty of vigilance in the worl... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-loi-2017-399-devoir-de-vigilance.json #### France Duty of Vigilance Law 2017 (Loi No. 2017-399 relative au devoir de vigilance des sociétés mères et des entreprises donneuses d'ordre) - **ID**: fr-loi-devoir-de-vigilance-2017 - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Duty of Vigilance Law (Loi No. 2017-399 of 27 March 2017 on the Duty of Vigilance of Parent Companies and Instructing Entities) makes France the first country in the world to legally mandate corpo... - **Discovery URL**: https://bidda.com/api/v1/nodes/fr-loi-devoir-de-vigilance-2017.json #### FSC Chain of Custody (STD-40-004) - **ID**: fsc-chain-of-custody - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Compliance with the Forest Stewardship Council's standard for Chain of Custody Certification, FSC-STD-40-004 V3-1, necessitates a verifiable control system for tracking certified materials throughout ... - **Discovery URL**: https://bidda.com/api/v1/nodes/fsc-chain-of-custody.json #### GHG Scope 3 Accounting Strategy - **ID**: ghg-protocol-scope3 - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Standardized methodology for measuring and reporting greenhouse gas emissions across the entire corporate value chain (Categories 1-15), accounting for 70-90% of total enterprise footprint. - **Discovery URL**: https://bidda.com/api/v1/nodes/ghg-protocol-scope3.json #### Gold Standard Carbon Credits - **ID**: gold-standard-carbon - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Compliance with this node ensures carbon credits adhere to the rigorous Gold Standard for the Global Goals framework. Project validation requires that `project_additionality_verified` is true, demonst... - **Discovery URL**: https://bidda.com/api/v1/nodes/gold-standard-carbon.json #### GRI 1: Foundation (2021) - **ID**: gri-1-foundation - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: GRI 1: Foundation 2021 is the core standard in the Global Reporting Initiative (GRI) framework that establishes the foundational concepts, principles, and requirements organizations must follow when r... - **Discovery URL**: https://bidda.com/api/v1/nodes/gri-1-foundation.json #### GRI 305: Emissions 2016 - **ID**: gri-305-emissions-2016 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard requires organizations to publicly report their direct (Scope 1), energy indirect (Scope 2), and other indirect (Scope 3) greenhouse gas (GHG) emissions, as well as emissions intensity, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gri-305-emissions-2016.json #### GRI 306: Waste 2020 - **ID**: gri-306-waste-2020 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard requires organizations to report on their waste-related impacts, detailing waste generation, management practices, and circularity measures. It mandates disclosures on the management app... - **Discovery URL**: https://bidda.com/api/v1/nodes/gri-306-waste-2020.json #### GRI 401: Employment 2016 - **ID**: gri-401-employment-2016 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard requires organizations to report on their employment practices, including the rate of new employee hires and employee turnover (Disclosure 401-1), benefits provided to full-time employee... - **Discovery URL**: https://bidda.com/api/v1/nodes/gri-401-employment-2016.json #### GRI 403: Occupational Health and Safety 2018 - **ID**: gri-403-ohs-2018 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard requires organizations to report on their occupational health and safety (OHS) management system, processes for hazard identification and risk assessment, and performance metrics. Key di... - **Discovery URL**: https://bidda.com/api/v1/nodes/gri-403-ohs-2018.json #### GRI Universal Standards - **ID**: gri-universal-standards - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: The Global Reporting Initiative (GRI) Universal Standards 2021 are the global baseline for modular sustainability reporting. They cover impact materiality-how an organization impacts the economy, envi... - **Discovery URL**: https://bidda.com/api/v1/nodes/gri-universal-standards.json #### ENTSO-E Grid Code Compliance - **ID**: grid-code-entsoe - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Entities connecting to the European interconnected grid must demonstrate rigorous adherence to harmonized technical and security standards. This compliance framework, principally defined by Commission... - **Discovery URL**: https://bidda.com/api/v1/nodes/grid-code-entsoe.json #### Hydrogen Safety (ISO 22734) - **ID**: hydrogen-safety-iso - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Adherence to ISO 22734:2019 establishes a comprehensive safety and operational framework for hydrogen generators utilizing water electrolysis. This regimen necessitates stringent control over process ... - **Discovery URL**: https://bidda.com/api/v1/nodes/hydrogen-safety-iso.json #### IAEA General Safety Requirements GSR Part 3 - Radiation Protection and Safety of Radiation Sources: International Basic Safety Standards - **ID**: iaea-gsr-part-3-radiation-protection-2014 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard establishes a system of radiation protection for all facilities and activities giving rise to radiation risks, requiring the application of justification, optimization (ALARA), and dose ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iaea-gsr-part-3-radiation-protection-2014.json #### IAEA Safety Fundamentals No. SF-1: Fundamental Safety Principles - **ID**: iaea-safety-fundamentals-sf-1-2006 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard establishes the fundamental safety objective and ten associated principles for protecting people and the environment from the harmful effects of ionizing radiation. As stated in Principl... - **Discovery URL**: https://bidda.com/api/v1/nodes/iaea-safety-fundamentals-sf-1-2006.json #### ICAO CORSIA Carbon Offsetting and Reduction Scheme for International Aviation - Baseline, Eligible Units and Monitoring Plan - **ID**: icao-corsia-carbon-offsetting-aviation - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Carbon Offsetting and Reduction Scheme for International Aviation (CORSIA) requires international airline operators to monitor, report, and verify their annual CO2 emissions and offset any emissio... - **Discovery URL**: https://bidda.com/api/v1/nodes/icao-corsia-carbon-offsetting-aviation.json #### Green Bond Principles (ICMA) - **ID**: icma-green-bond - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Compliance with the International Capital Market Association's Green Bond Principles mandates a rigorous framework for ensuring transparency and integrity in the green bond market. Issuers must demons... - **Discovery URL**: https://bidda.com/api/v1/nodes/icma-green-bond.json #### Tracking Clean Energy Progress 2024 - Net Zero Pathway Milestones, Technology Readiness and Policy Gap Analysis - **ID**: iea-clean-energy-technology-tracking-2024 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The International Energy Agency's (IEA) 2024 report assesses over 500 clean energy technology and policy components against its Net Zero Emissions by 2050 (NZE) Scenario, providing a critical gap anal... - **Discovery URL**: https://bidda.com/api/v1/nodes/iea-clean-energy-technology-tracking-2024.json #### IEA International Energy Programme Emergency Response - Oil Stockholding Obligations, Demand Restraint and Oil Release Procedures - **ID**: iea-emergency-response-oil-disruptions-iep - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The International Energy Program (IEP) Agreement requires International Energy Agency (IEA) member countries to maintain emergency oil stocks equivalent to at least 90 days of their prior year's net o... - **Discovery URL**: https://bidda.com/api/v1/nodes/iea-emergency-response-oil-disruptions-iep.json #### IFRS S1 General Requirements for Disclosure of Sustainability-related Financial Information - **ID**: ifrs-s1-general-sustainability-disclosures - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: IFRS S1 requires an entity to disclose information about its sustainability-related risks and opportunities that is useful to primary users of general purpose financial reports in making decisions rel... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-s1-general-sustainability-disclosures.json #### IFRS S2 Climate-related Disclosures - **ID**: ifrs-s2-climate-related-disclosures - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: IFRS S2 requires an entity to disclose information about its climate-related risks and opportunities, enabling users of general purpose financial reports to assess their effects on the entity's cash f... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-s2-climate-related-disclosures.json #### MARPOL Annex VI: Operational Carbon Intensity Indicator (CII) Rating Scheme for Existing Ships - **ID**: imo-cii-carbon-intensity-2023 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Mandates ships of 5,000 gross tonnage and above to calculate their annual operational carbon intensity and receive a rating from A (major superior) to E (inferior). As per MARPOL Annex VI, Regulation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-cii-carbon-intensity-2023.json #### Amendments to MARPOL Annex VI: Energy Efficiency Existing Ship Index (EEXI) - **ID**: imo-eexi-2023 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The IMO EEXI regulation requires existing ships of 400 gross tonnage and above to meet a specific technical energy efficiency standard. As per MARPOL Annex VI, Regulation 25, each ship's calculated 'a... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-eexi-2023.json #### MARPOL Annex I - Regulations for the Prevention of Pollution by Oil - **ID**: imo-marpol-annex-i-oil-pollution - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation establishes mandatory international standards for the prevention of oil pollution from ships. It prohibits any discharge of oil or oily mixtures into the sea, except under strictly con... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-marpol-annex-i-oil-pollution.json #### MARPOL Annex VI - Regulations for the Prevention of Air Pollution from Ships - **ID**: imo-marpol-annex-vi-air-pollution - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation establishes mandatory limits on sulphur oxide (SOx) and nitrogen oxide (NOx) emissions from ship exhausts and requires ships of 400 gross tonnage and above to calculate and report thei... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-marpol-annex-vi-air-pollution.json #### India Companies Act 2013 - Corporate Social Responsibility (CSR) Provisions under Section 135: 2% of Average Net Profit Mandate, Schedule VII Activities, CSR Committee Formation, and Unspent Fund Transfer to PM CARES - **ID**: india-companies-act-2013-section-135-csr - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: Companies incorporated in India with net worth ≥ ₹500 crore, turnover ≥ ₹1,000 crore, or net profit ≥ ₹5 crore must spend at least 2% of their average net profits from the preceding three years on CSR... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-companies-act-2013-section-135-csr.json #### The Environment (Protection) Act, 1986 - **ID**: india-environmental-protection-act-1986-epa - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Environment (Protection) Act, 1986 empowers the Central Government to take measures to protect and improve environmental quality, including setting standards for emissions and discharges, regulati... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-environmental-protection-act-1986-epa.json #### India National Mission for Clean Ganga (Namami Gange) and the National Ganga Council 2014 - **ID**: india-namami-gange-mission-2014-clean-ganga - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Namami Gange is the Government of India's flagship integrated programme for the rejuvenation of the Ganga River and its tributaries, approved by the Union Cabinet in May 2015 with a budget of approxim... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-namami-gange-mission-2014-clean-ganga.json #### Environmental, Social and Governance (ESG) Ratings and Data Products Providers Final Report - **ID**: iosco-esg-ratings-2021 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This IOSCO report provides recommendations for regulators to enhance the reliability, comparability, and transparency of ESG ratings and data products, focusing on public disclosure of methodologies, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iosco-esg-ratings-2021.json #### ISO 14001:2015 Environmental Management System - Requirements and Implementation Guidance - **ID**: iso-14001-2015-environmental-management-systems-requirements - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ISO 14001:2015 specifies requirements for an Environmental Management System (EMS) that enables organisations to enhance environmental performance through efficient use of resources, reduction of wast... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14001-2015-environmental-management-systems-requirements.json #### Env Management (ISO 14001) - **ID**: iso-14001-ems - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: ISO 14001:2015 is the international standard for Environmental Management Systems (EMS), providing a framework for organizations to manage their environmental responsibilities systematically and contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14001-ems.json #### Water Footprint (ISO 14046) - **ID**: iso-14046-water-footprint - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: An assessment of the water footprint, conducted in alignment with the comprehensive principles of international environmental management standards, confirms substantial conformance. The analysis estab... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14046-water-footprint.json #### ISO 14064-3:2019 Greenhouse gases - Part 3: Specification with guidance for the verification and validation of greenhouse gas statements - **ID**: iso-14064-ghg-emissions-verification - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard specifies principles and requirements for verifying and validating greenhouse gas (GHG) statements for organizations and projects. It requires verifiers and validators to follow a system... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14064-ghg-emissions-verification.json #### GHG Verification (ISO 14064) - **ID**: iso-14064-ghg-quantify - **Category**: Sustainability & ESG - **Version**: 1.1.1 - **BLUF**: Successful completion provides reasonable assurance over an organization's greenhouse gas statement through a rigorous third-party verification process aligned with specifications from ISO 14064-3:201... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14064-ghg-quantify.json #### ISO 14064 (GHG Reporting) - **ID**: iso-14064-ghg-reporting - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: ISO 14064-1 specifies principles and requirements for the design, development, management, and reporting of organization-level GHG inventories. It provides a common set of requirements for GHG quantif... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14064-ghg-reporting.json #### ISO 14064-1:2018 Greenhouse gases - Part 1: Specification with guidance at the organization level for quantification and reporting of greenhouse gas emissions and removals - **ID**: iso-14064-ghg-reporting-2018 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ISO 14064-1:2018 specifies principles and requirements for designing, developing, managing, and reporting organization-level greenhouse gas (GHG) inventories. It requires organizations to establish op... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14064-ghg-reporting-2018.json #### Climate Adaptation (ISO 14090) - **ID**: iso-14090-climate-adapt - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Compliance with the Climate Adaptation (ISO 14090) framework mandates a structured, iterative process beginning with pre-planning activities outlined in Section 5. This initial stage requires verified... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14090-climate-adapt.json #### Sustainable Procure (ISO 20400) - **ID**: iso-20400-sustainable-proc - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Organizational adherence to ISO 20400 guidance, as informed by authoritative frameworks, requires a comprehensive and verifiable sustainable procurement system. Compliance is predicated on establishin... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20400-sustainable-proc.json #### Social Responsibility (ISO 26000) - **ID**: iso-26000-social-resp - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: An organization's alignment with ISO 26000 principles is assessed through a multi-faceted verification of governance structures, operational practices, and public disclosures. Compliance necessitates ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-26000-social-resp.json #### Water Efficiency (ISO 46001) - **ID**: iso-46001-water-eff - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Adherence to the Water Efficiency (ISO 46001) standard necessitates the implementation of a systematic Water Efficiency Management System (WEMS). Verification requires evidence of a formal water effic... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-46001-water-eff.json #### ISO 50001:2018 Energy management systems - Requirements with guidance for use - **ID**: iso-50001-energy-management-systems-2018 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: ISO 50001:2018 specifies the requirements for establishing, implementing, maintaining, and improving an energy management system (EnMS), enabling organizations to systematically achieve continual impr... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-50001-energy-management-systems-2018.json #### ISO 55001:2014 Asset Management - Management Systems - Requirements for Utility Infrastructure - **ID**: iso-55001-asset-management-utility-infrastructure - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard specifies the requirements for an integrated asset management system for utility infrastructure, requiring organizations to establish, implement, maintain, and continually improve their ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-55001-asset-management-utility-infrastructure.json #### IFRS S2 Climate-related Disclosures - **ID**: issb-ifrs-s2-climate-2023 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: IFRS S2 requires an entity to disclose information about its climate-related risks and opportunities, enabling users of general purpose financial reports to assess their effects on the entity's cash f... - **Discovery URL**: https://bidda.com/api/v1/nodes/issb-ifrs-s2-climate-2023.json #### ISSB S1/S2 Standards - **ID**: issb-s1-s2-standard - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: The International Sustainability Standards Board (ISSB) issued its inaugural standards, IFRS S1 and IFRS S2, to provide a global baseline for sustainability disclosures. IFRS S1 covers general require... - **Discovery URL**: https://bidda.com/api/v1/nodes/issb-s1-s2-standard.json #### Kyoto Protocol 1997 - Binding GHG Emission Reduction Targets & Flexible Mechanisms - **ID**: kyoto-protocol-1997-climate-change - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Kyoto Protocol, adopted on 11 December 1997 in Kyoto, Japan, and entered into force on 16 February 2005, is the first binding international treaty to impose quantified greenhouse gas emission redu... - **Discovery URL**: https://bidda.com/api/v1/nodes/kyoto-protocol-1997-climate-change.json #### LEED Green Building Rating - **ID**: leed-green-building - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: The LEED Green Building Rating system establishes a framework of performance-based prerequisites and optional credits for certifying sustainable building projects. Foundational compliance requires exe... - **Discovery URL**: https://bidda.com/api/v1/nodes/leed-green-building.json #### LRTAP Convention 1979 - Long-Range Transboundary Air Pollution - **ID**: lrtap-convention-1979-transboundary-air-pollution - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Convention on Long-Range Transboundary Air Pollution (LRTAP, 1979 - 51 Parties, UNECE region, entered into force 1983) and its eight Protocols - most critically the revised Gothenburg Protocol (20... - **Discovery URL**: https://bidda.com/api/v1/nodes/lrtap-convention-1979-transboundary-air-pollution.json #### International Convention for the Prevention of Pollution from Ships (MARPOL), Annex I: Regulations for the Prevention of Pollution by Oil - **ID**: marpol-annex-i-oil-pollution-prevention-ships - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: MARPOL Annex I mandates that all ships over 400 gross tonnage must be equipped with oil filtering equipment (Regulation 14) to ensure any discharge of oily mixtures has an oil content not exceeding 15... - **Discovery URL**: https://bidda.com/api/v1/nodes/marpol-annex-i-oil-pollution-prevention-ships.json #### Minamata Convention 2013 - Global Treaty on Mercury Control - **ID**: minamata-convention-2013-mercury - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Minamata Convention on Mercury, adopted on 10 October 2013 in Kumamoto, Japan, and entered into force on 16 August 2017, has 147 Parties and is the global legally binding agreement addressing merc... - **Discovery URL**: https://bidda.com/api/v1/nodes/minamata-convention-2013-mercury.json #### MSC Seafood Sustainability - **ID**: msc-fisheries-cert - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Compliance with the Marine Stewardship Council framework for seafood sustainability mandates a multi-faceted assessment of fishery operations and supply chain integrity. Verification begins with confi... - **Discovery URL**: https://bidda.com/api/v1/nodes/msc-fisheries-cert.json #### NERC CIP-002-5.1a BES Cyber System Categorisation - High, Medium and Low Impact Classification and Annual Review Requirements - **ID**: nerc-cip-002-5-bes-cyber-system-categorisation - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard requires Responsible Entities in the North American bulk power system to identify and categorize their Bulk Electric System (BES) Cyber Systems into High, Medium, or Low impact categorie... - **Discovery URL**: https://bidda.com/api/v1/nodes/nerc-cip-002-5-bes-cyber-system-categorisation.json #### NERC CIP-005-6 Electronic Security Perimeter(s) & CIP-006-6 Physical Security of BES Cyber Systems - **ID**: nerc-cip-005-006-ics-energy-cyber-security - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Mandates that Responsible Entities identify and protect Bulk Electric System (BES) Cyber Systems by implementing a rigorous Electronic Security Perimeter (ESP) to control network access (CIP-005 R1) a... - **Discovery URL**: https://bidda.com/api/v1/nodes/nerc-cip-005-006-ics-energy-cyber-security.json #### NERC CIP-007-6 Systems Security Management - Ports and Services, Patch Management, Malicious Code Prevention and Security Event Monitoring - **ID**: nerc-cip-007-6-systems-security-management - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This standard requires responsible entities to define methods, processes, and procedures for securing Bulk Electric System (BES) Cyber Systems by managing logical ports and services, implementing secu... - **Discovery URL**: https://bidda.com/api/v1/nodes/nerc-cip-007-6-systems-security-management.json #### NERC Reliability Standards - Overview of BAL, FAC, INT, IRO, PRC, TOP, VAR Compliance Obligations for Bulk Electric Systems - **ID**: nerc-reliability-standards-compliance-overview - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Mandates that all owners, operators, and users of the Bulk Electric System (BES) in North America comply with specific, enforceable Reliability Standards to ensure the adequacy and security of the gri... - **Discovery URL**: https://bidda.com/api/v1/nodes/nerc-reliability-standards-compliance-overview.json #### New Zealand Resource Management Act 1991 - Resource Consent and Sustainable Management Framework - **ID**: new-zealand-resource-management-act-1991-mfe - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Resource Management Act 1991 (RMA) is New Zealand's principal statute for managing the natural and physical environment. Its purpose is to promote the sustainable management of natural and physica... - **Discovery URL**: https://bidda.com/api/v1/nodes/new-zealand-resource-management-act-1991-mfe.json #### Norway Apenhetsloven (Transparency Act) LOV-2021-06-18-99 - **ID**: no-apenhetsloven-2021-transparency-act - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Lov 18. juni 2021 nr. 99 om virksomheters apenhet og arbeid med grunnleggende menneskerettigheter og anstendige arbeidsforhold (Apenhetsloven, Transparency Act) is Norway's principal supply-chain huma... - **Discovery URL**: https://bidda.com/api/v1/nodes/no-apenhetsloven-2021-transparency-act.json #### IAEA Nuclear Safety (GS-R-3) - **ID**: nuclear-safety-iaea - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Compliance with IAEA Safety Standard GS-R-3 mandates establishing, implementing, and continually improving a documented, integrated management system wherein safety holds paramount importance. Top man... - **Discovery URL**: https://bidda.com/api/v1/nodes/nuclear-safety-iaea.json #### NZ Climate Change Response Act 2002 - **ID**: nz-climate-change-response-act-2002 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The NZ Climate Change Response Act 2002 establishes the legal framework for New Zealand's domestic response to climate change including the New Zealand Emissions Trading Scheme (NZ ETS), emissions bud... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-climate-change-response-act-2002.json #### OECD Mineral Due Diligence - **ID**: oecd-mineral-supply - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Conformance with internationally recognized mineral due diligence frameworks is evaluated through a comprehensive five-step process. The organization demonstrates strong company management by maintain... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-mineral-supply.json #### PEFC Forest Management Standard - **ID**: pefc-forest-mgt - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Compliance with the PEFC Forest Management Standard necessitates a holistic and verifiable approach to sustainable forestry operations. A core requirement is the existence of a comprehensive, up-to-da... - **Discovery URL**: https://bidda.com/api/v1/nodes/pefc-forest-mgt.json #### RE100 Renewable Energy Criteria - **ID**: re100-renewable-req - **Category**: Sustainability & ESG - **Version**: 1.1.1 - **BLUF**: Corporate adherence to RE100 renewable energy criteria mandates a verifiable framework for achieving 100% renewable electricity sourcing. Foundational requirements demand a public commitment to reach ... - **Discovery URL**: https://bidda.com/api/v1/nodes/re100-renewable-req.json #### REACH Chemical Compliance - **ID**: reach-chemical-comp - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Regulation (EC) No 1907/2006 (REACH) mandates a comprehensive framework for chemical management to protect human health and the environment. Compliance hinges on several core obligations for manufactu... - **Discovery URL**: https://bidda.com/api/v1/nodes/reach-chemical-comp.json #### RoHS Hazardous Substances - **ID**: rohs-hazardous-sub - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Compliance with the Restriction of Hazardous Substances (RoHS) directive mandates that Electrical and Electronic Equipment (EEE) placed on the market does not contain specific restricted substances ab... - **Discovery URL**: https://bidda.com/api/v1/nodes/rohs-hazardous-sub.json #### RSPO Palm Oil Certification - **ID**: rspo-palm-oil - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: RSPO Palm Oil Certification compliance mandates verifiable adherence to a multifaceted set of criteria established under governing principles and procedural rules. An entity must demonstrate its commi... - **Discovery URL**: https://bidda.com/api/v1/nodes/rspo-palm-oil.json #### SASB CONCEPTUAL FRAMEWORK - **ID**: sasb-conceptual-framework - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This Conceptual Framework sets out the basic concepts, principles, definitions, and objectives that guide the Sustainability Accounting Standards Board (SASB) in its approach to setting standards for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sasb-conceptual-framework.json #### SBTi Carbon Target Validation - **ID**: sbti-carbon-target - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Validating corporate greenhouse gas emissions reduction targets against the Science Based Targets initiative's rigorous framework necessitates a comprehensive assessment of inventory completeness, tar... - **Discovery URL**: https://bidda.com/api/v1/nodes/sbti-carbon-target.json #### Science Based Targets initiative (SBTi) Corporate Net-Zero Standard - **ID**: sbti-net-zero-standard-2021 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The SBTi Corporate Net-Zero Standard requires companies to set both near-term and long-term science-based targets for rapid, deep emissions cuts across their value chain, in line with 1.5°C pathways. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sbti-net-zero-standard-2021.json #### SEC Climate Disclosure Rule - **ID**: sec-climate-disclosure - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: The SEC Climate Disclosure Rule (Final Rule 33-11275) mandates that U.S. public companies and foreign private issuers disclose climate-related risks, their financial impacts, and greenhouse gas (GHG) ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sec-climate-disclosure.json #### Sustainable Finance Disclosure Regulation (SFDR) - Article 10: Transparency of the promotion of environmental or social characteristics and of sustainable investments on websites - **ID**: sfdr-regulation-article-10-transparency-environmental-social-characteristics-periodic - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Financial market participants must publish and maintain specific information on their websites for each financial product that promotes environmental or social characteristics or has sustainable inves... - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-10-transparency-environmental-social-characteristics-periodic.json #### Sustainable Finance Disclosure Regulation (SFDR) Article 11: Transparency of the promotion of environmental or social characteristics and of sustainable investments in periodic reports - **ID**: sfdr-regulation-article-11-transparency-sustainable-investment-periodic - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Financial market participants offering products that promote environmental or social characteristics, or have sustainable investment objectives, must include specific descriptions of their sustainabil... - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-11-transparency-sustainable-investment-periodic.json #### Regulation (EU) 2019/2088 on sustainability-related disclosures in the financial services sector - Article 12: Review of disclosures - **ID**: sfdr-regulation-article-12-review - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article specifies reporting obligations for managers of qualifying social entrepreneurship funds within their annual report. - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-12-review.json #### Regulation (EU) No 345/2013, Article 13(1)(e): Information Provision for Managers of Qualifying Social Entrepreneurship Funds - **ID**: sfdr-regulation-article-13-website-disclosures - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Managers of qualifying social entrepreneurship funds must adhere to specific requirements for the provision of information. - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-13-website-disclosures.json #### Regulation (EU) 2019/2088 on sustainability-related disclosures in the financial services sector - Article 14: Administrative penalties and other administrative measures - **ID**: sfdr-regulation-article-14-penalties - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article requires Member States to establish rules for effective, proportionate, and dissuasive administrative penalties and measures for infringements of the regulation, empowering competent auth... - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-14-penalties.json #### Regulation (EU) 2019/2088 on sustainability-related disclosures in the financial services sector - Article 2, Definitions - **ID**: sfdr-regulation-article-2-definitions - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes key definitions for terms such as 'sustainability risk' and 'sustainability factors' that must be used consistently for all compliance activities under this regulation. - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-2-definitions.json #### Regulation (EU) 2019/2088 - Article 3: Transparency of sustainability risk policies - **ID**: sfdr-regulation-article-3-transparency-sustainability-risk-policies - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Financial market participants and financial advisers must publish on their websites their policies on integrating sustainability risks into their investment decision-making or advisory processes. - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-3-transparency-sustainability-risk-policies.json #### Regulation (EU) 2019/2088 on sustainability-related disclosures in the financial services sector - Article 4: Definitions - **ID**: sfdr-regulation-article-4-transparency-adverse-sustainability-impacts - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes key definitions for financial entities, including 'alternative investment fund manager', 'investment firm', and 'institution for occupational retirement provision', which are ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-4-transparency-adverse-sustainability-impacts.json #### Regulation (EU) 2019/2088 on sustainability-related disclosures in the financial services sector - Article 5 - **ID**: sfdr-regulation-article-5-transparency-in-remuneration-policies - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article provides key definitions for terms including 'pension product', 'pan-European Personal Pension Product (PEPP)', 'UCITS management company', and 'financial adviser' to ensure consistent ap... - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-5-transparency-in-remuneration-policies.json #### Regulation (EU) 2019/2088 on sustainability-related disclosures in the financial services sector - Articles 6, 15, 16, 17 - **ID**: sfdr-regulation-article-6-transparency-pre-contractual-disclosures - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation requires financial market participants, including IORPs and insurance intermediaries, to publish and maintain specific sustainability-related information, while allowing Member States ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-6-transparency-pre-contractual-disclosures.json #### Regulation (EU) 2019/2088 on sustainability-related disclosures in the financial services sector - Article 7: Transparency of adverse sustainability impacts at financial product level - **ID**: sfdr-regulation-article-7-transparency-at-entity-level - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article requires financial market participants to disclose, at the financial product level, whether and how they consider principal adverse impacts on sustainability factors, or to explain why th... - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-7-transparency-at-entity-level.json #### Regulation (EU) 2019/2088 - Article 8: Transparency of the promotion of environmental or social characteristics in pre‐contractual disclosures - **ID**: sfdr-regulation-article-8-transparency-products-promoting-characteristics - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Financial market participants promoting environmental or social characteristics in a financial product must provide pre-contractual disclosures on how these characteristics are met and, if a benchmark... - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-8-transparency-products-promoting-characteristics.json #### Regulation (EU) 2019/2088 of the European Parliament and of the Council - Article 9: Transparency of sustainable investments in pre‐contractual disclosures - **ID**: sfdr-regulation-article-9-transparency-sustainable-investment-products - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article mandates that financial market participants provide specific pre-contractual disclosures for financial products with sustainable investment objectives, detailing how those objectives are ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sfdr-regulation-article-9-transparency-sustainable-investment-products.json #### Singapore PUB NEWater and Active Beautiful Clean Waters (ABC) Programme - **ID**: singapore-pub-newater-abc-waters-programme - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Public Utilities Board (PUB), Singapore's National Water Agency, is statutorily established under the Public Utilities Act 2001 and is the integrated water authority for Singapore covering water s... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-pub-newater-abc-waters-programme.json #### South Africa National Environmental Management Act 107/1998 - NEMA EIA and Environmental Authorisation Framework - **ID**: south-africa-national-environmental-management-act-107-1998 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: South Africa's National Environmental Management Act 107 of 1998 (NEMA) is the principal environmental framework statute, establishing principles for environmental management, rights, obligations and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-national-environmental-management-act-107-1998.json #### Stockholm Convention 2001 - Persistent Organic Pollutants (POPs) - **ID**: stockholm-convention-2001-persistent-organic-pollutants - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Stockholm Convention on Persistent Organic Pollutants (POPs), adopted on 22 May 2001 and entered into force on 17 May 2004, has 186 Parties and is the primary global treaty addressing chemical sub... - **Discovery URL**: https://bidda.com/api/v1/nodes/stockholm-convention-2001-persistent-organic-pollutants.json #### Recommendations of the Task Force on Climate-related Financial Disclosures - **ID**: tcfd-climate-related-financial-disclosures - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Task Force on Climate-related Financial Disclosures report establishes recommendations for disclosing clear, comparable and consistent information about the risks and opportunities presented by cl... - **Discovery URL**: https://bidda.com/api/v1/nodes/tcfd-climate-related-financial-disclosures.json #### TCFD Climate Disclosure - **ID**: tcfd-climate-risk - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: The Task Force on Climate-related Financial Disclosures (TCFD) framework, published in 2017 and now consolidated into IFRS S2 (effective January 2024), defines the global standard for corporate disclo... - **Discovery URL**: https://bidda.com/api/v1/nodes/tcfd-climate-risk.json #### TCFD Recommendations - Climate-Related Financial Disclosures and Financial Stability Board Framework - **ID**: tcfd-recommendations-climate-related-financial-disclosures-financial-stability - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Task Force on Climate-related Financial Disclosures (TCFD) framework, established by the Financial Stability Board in 2015 and finalised in 2017, provides voluntary recommendations for disclosing ... - **Discovery URL**: https://bidda.com/api/v1/nodes/tcfd-recommendations-climate-related-financial-disclosures-financial-stability.json #### TNFD Nature Disclosure - **ID**: tnfd-nature-disclosure - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Corporate reporting indicates substantive alignment with the procedural components of the nature-related disclosure framework, though significant deficiencies persist regarding quantitative financial ... - **Discovery URL**: https://bidda.com/api/v1/nodes/tnfd-nature-disclosure.json #### UK Contracts for Difference (CfD) Scheme - Auction Allocation Rounds, Strike Prices, Low-Carbon Contract Terms and Renewable Energy Obligations - **ID**: uk-contracts-for-difference-cfd-auction-rules - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The UK Contracts for Difference (CfD) scheme is a government mechanism to support low-carbon electricity generation by providing eligible renewable energy projects with a fixed 'strike price' for the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-contracts-for-difference-cfd-auction-rules.json #### UK Electricity Act 1989 - Generation, Transmission, Distribution and Supply Licences and Ofgem Standard Licence Conditions - **ID**: uk-electricity-act-1989-generation-supply-licence - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The UK Electricity Act 1989 prohibits the generation, transmission, distribution, or supply of electricity without a licence granted by the Gas and Electricity Markets Authority (Ofgem), as mandated b... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-electricity-act-1989-generation-supply-licence.json #### Energy Act 2023 - **ID**: uk-energy-act-2023 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This Act establishes a new independent Future System Operator (FSO) to oversee the UK's electricity and gas systems, creates regulatory frameworks for carbon capture usage and storage (CCUS) and low-c... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-energy-act-2023.json #### UK Environment Act 2021 - Mandatory Biodiversity Net Gain, Legally Binding Environmental Targets, and OEP Oversight - **ID**: uk-environment-act-2021-biodiversity-net-gain-targets - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Environment Act 2021 (c. 30) introduces mandatory 10% biodiversity net gain (BNG) for most new planning permissions in England (from February 2024), legally binding long-term environmental targets... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-environment-act-2021-biodiversity-net-gain-targets.json #### Environment Act 2021 PART 2 Section 48 Improving the natural environment: Northern Ireland - **ID**: uk-environment-act-2021-part-2-biodiversity-net-gain - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This legislation mandates that provisions for environmental improvement plans and policy statements on environmental principles in Northern Ireland are established as detailed in Schedule 2. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-environment-act-2021-part-2-biodiversity-net-gain.json #### UK Emissions Trading Scheme 2021 - Cap Setting, Free Allocation, Compliance and Auctioning Rules - **ID**: uk-ets-2021-compliance-rules - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The UK Emissions Trading Scheme (UK ETS) mandates that operators of energy-intensive industries and aircraft operators monitor, report, and surrender sufficient emissions allowances to cover their ann... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ets-2021-compliance-rules.json #### Modern Slavery Act 2015, Section 54: Transparency in supply chains etc. - **ID**: uk-modern-slavery-act-2015-section-54-supply-chain-transparency - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Requires commercial organisations over a prescribed turnover threshold to prepare and publish an annual slavery and human trafficking statement detailing steps taken to ensure their business and suppl... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-modern-slavery-act-2015-section-54-supply-chain-transparency.json #### UK Modern Slavery Act 2015 - Supply Chain Transparency Statement & Due Diligence Obligations - **ID**: uk-modern-slavery-act-2015-supply-chain-transparency-statement - **Category**: Sustainability & ESG - **Version**: 2.0 - **BLUF**: UK Modern Slavery Act 2015 requires commercial organisations with GBP 36 million+ annual turnover operating in the UK to publish an annual modern slavery and human trafficking transparency statement -... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-modern-slavery-act-2015-supply-chain-transparency-statement.json #### UK SECR - Streamlined Energy and Carbon Reporting under Companies Act 2006 Amendment - **ID**: uk-streamlined-energy-carbon-reporting-secr-companies-act-2006-amendment - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: UK Streamlined Energy and Carbon Reporting (SECR) regulations (The Companies (Directors' Report) and Limited Liability Partnerships (Energy and Carbon Report) Regulations 2018) require large UK compan... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-streamlined-energy-carbon-reporting-secr-companies-act-2006-amendment.json #### Mandatory Climate-related Financial Disclosures by UK Companies, LLPs and FCA-regulated Issuers - **ID**: uk-tcfd-mandatory-reporting-2022 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Requires UK-registered companies and LLPs exceeding specific size thresholds, as well as FCA-regulated issuers, to disclose climate-related financial information in their annual reports, consistent wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-tcfd-mandatory-reporting-2022.json #### Kunming-Montreal Global Biodiversity Framework 2022 - 30×30 Target & Corporate Nature Disclosure - **ID**: un-cbd-kunming-montreal-gbf-2022 - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Kunming-Montreal Global Biodiversity Framework (KM-GBF), adopted at CBD COP15 on 19 December 2022, sets 23 action targets for 2030 and 4 goals for 2050 to halt and reverse biodiversity loss. Targe... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-cbd-kunming-montreal-gbf-2022.json #### United Nations Declaration on the Rights of Indigenous Peoples (UNDRIP) - Articles on Free, Prior, and Informed Consent - **ID**: un-drip-2007-indigenous-peoples-rights-fpic - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Organizations must consult and cooperate in good faith with indigenous peoples to obtain their free, prior, and informed consent before initiating projects or measures that may affect their lands, ter... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-drip-2007-indigenous-peoples-rights-fpic.json #### UN Alliance for Sustainable Fashion - Circular Economy and Extended Producer Responsibility Framework for Textiles - **ID**: un-fashion-sustainability-2022 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This UN framework provides guidance for the fashion and textile industry to implement circular economy principles and Extended Producer Responsibility (EPR) schemes. It requires stakeholders, particul... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-fashion-sustainability-2022.json #### GRI Standards 2021 - Universal and Topic-Specific Sustainability Reporting Framework - **ID**: un-global-reporting-initiative-gri-standards-2021-sustainability-reporting - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Global Reporting Initiative (GRI) Standards provide the most widely used global framework for sustainability reporting. The GRI Universal Standards (GRI 1, 2, 3) require all organisations to discl... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-global-reporting-initiative-gri-standards-2021-sustainability-reporting.json #### Montreal Protocol 1987 & Kigali Amendment 2016 - Ozone-Depleting Substances & HFC Phase-Down - **ID**: un-montreal-protocol-1987-ozone-kigali-2016 - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The Montreal Protocol on Substances that Deplete the Ozone Layer (1987), which entered into force 1 January 1989 and now has 197 Parties (universal ratification), is the primary international treaty g... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-montreal-protocol-1987-ozone-kigali-2016.json #### UN Principles for Responsible Invest - **ID**: un-pri-investment - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Adherence to the United Nations-supported Principles for Responsible Investment framework delineates an investment manager's commitment to integrating environmental, social, and governance (ESG) consi... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-pri-investment.json #### UN SDG Strategic Alignment - **ID**: un-sdg-alignment - **Category**: Sustainability & ESG - **Version**: 1.1.1 - **BLUF**: The UN Sustainable Development Goals (SDGs) are a set of 17 interconnected global goals adopted by all 193 UN member states in 2015 as part of the 2030 Agenda for Sustainable Development. Each goal co... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-sdg-alignment.json #### UNESCO World Heritage Convention 1972 - Cultural and Natural Heritage of Outstanding Universal Value and World Heritage List - **ID**: unesco-world-heritage-convention-1972 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Convention concerning the Protection of the World Cultural and Natural Heritage (World Heritage Convention) was adopted by the UNESCO General Conference on 16 November 1972 and entered into force ... - **Discovery URL**: https://bidda.com/api/v1/nodes/unesco-world-heritage-convention-1972.json #### UNFCCC 1992 - United Nations Framework Convention on Climate Change - **ID**: unfccc-1992-framework-convention-climate-change - **Category**: Sustainability & ESG - **Version**: 1.0.1 - **BLUF**: The United Nations Framework Convention on Climate Change (UNFCCC), opened for signature at the Rio Earth Summit on 9 May 1992 and entered into force on 21 March 1994, is the foundational multilateral... - **Discovery URL**: https://bidda.com/api/v1/nodes/unfccc-1992-framework-convention-climate-change.json #### US 50 CFR Part 17: Endangered and Threatened Wildlife and Plants - **ID**: us-50-cfr-part-17-endangered-threatened-wildlife-plants - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: US 50 CFR Part 17 implements the Endangered Species Act (ESA) of 1973 by listing endangered and threatened wildlife and plant species, designating critical habitat, prohibiting take of listed species ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-50-cfr-part-17-endangered-threatened-wildlife-plants.json #### California Sustainable Groundwater Management Act (SGMA) 2014 - **ID**: us-california-sgma-2014-sustainable-groundwater-management - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The California Sustainable Groundwater Management Act (SGMA) was signed into law on 16 September 2014 as the first comprehensive framework for sustainable groundwater management in California. SGMA is... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-california-sgma-2014-sustainable-groundwater-management.json #### 42 U.S. Code § 7401 - Congressional findings and declaration of purpose - **ID**: us-clean-air-act-42-usc-7401-findings-purposes-air-quality - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article establishes the foundational goals of U.S. air quality law, emphasizing the protection of public health and welfare, assigning primary responsibility for air pollution control to State an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-air-act-42-usc-7401-findings-purposes-air-quality.json #### 42 U.S. Code § 7479 - Definitions - **ID**: us-clean-air-act-42-usc-7479-prevention-significant-deterioration-permits - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This article defines key terms such as 'major emitting facility', 'best available control technology', and 'baseline concentration' which establish the criteria for air pollution permitting and contro... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-air-act-42-usc-7479-prevention-significant-deterioration-permits.json #### United States Clean Air Act (Title 42 USC Chapter 85): National Ambient Air Quality Standards, State Implementation Plans, New Source Performance Standards, Hazardous Air Pollutants, Mobile Source Emissions, and Citizen Suits - **ID**: us-clean-air-act-42-usc-ch85 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Clean Air Act, codified at Title 42 of the United States Code, Chapter 85, is the principal federal statute regulating air pollution in the United States and is administered by the Environmental P... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-air-act-42-usc-ch85.json #### US Clean Air Act National Ambient Air Quality Standards (NAAQS) - SO2, NOx, PM2.5 Compliance for Power Plants and State Implementation Plans - **ID**: us-clean-air-act-naaqs-utilities - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The US Clean Air Act, under Sections 109 and 110, requires the EPA to set National Ambient Air Quality Standards (NAAQS) for criteria pollutants like SO2, NOx, and PM2.5, and mandates that states deve... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-air-act-naaqs-utilities.json #### Energy Policy Act of 2005 (Public Law 109-58) - **ID**: us-energy-policy-act-2005-key-provisions - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Energy Policy Act of 2005 establishes a comprehensive U.S. energy strategy, mandating the Renewable Fuel Standard (RFS) under Title XV, Section 1501, which requires transportation fuel producers a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-energy-policy-act-2005-key-provisions.json #### 40 CFR Part 112 - Oil Pollution Prevention (Spill Prevention, Control, and Countermeasure) - **ID**: us-epa-40-cfr-112-spcc-oil-pollution-prevention - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 112 requires owners or operators of non-transportation-related onshore and offshore facilities that could reasonably discharge oil into navigable waters or adjoining shorelines to prep... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-112-spcc-oil-pollution-prevention.json #### 40 CFR Part 261 - Identification and Listing of Hazardous Waste (RCRA) - **ID**: us-epa-40-cfr-261-identification-listing-hazardous-waste - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 261 identifies and lists the wastes regulated as hazardous under RCRA, requiring a generator to determine whether a material is a solid waste and a hazardous waste, confirm exclusions,... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-261-identification-listing-hazardous-waste.json #### 40 CFR Part 262 - Standards Applicable to Generators of Hazardous Waste - **ID**: us-epa-40-cfr-262-hazardous-waste-generator-standards - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 262 sets the standards applicable to generators of hazardous waste under RCRA Subtitle C, requiring each generator to make an accurate hazardous waste determination at the point of gen... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-262-hazardous-waste-generator-standards.json #### 40 CFR Part 264 - Standards for Owners and Operators of Hazardous Waste Treatment, Storage, and Disposal Facilities - **ID**: us-epa-40-cfr-264-hazardous-waste-tsdf-standards - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 264 sets the standards for owners and operators of permitted hazardous waste treatment, storage, and disposal facilities under RCRA, requiring an EPA identification number, detailed wa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-264-hazardous-waste-tsdf-standards.json #### 40 CFR Part 268 - Land Disposal Restrictions (EPA RCRA) - **ID**: us-epa-40-cfr-268-land-disposal-restrictions - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 268 sets the land disposal restrictions under RCRA Subtitle C, prohibiting land disposal of restricted hazardous wastes until they meet the applicable treatment standards expressed as ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-268-land-disposal-restrictions.json #### 40 CFR Part 273 - Standards for Universal Waste Management (EPA RCRA) - **ID**: us-epa-40-cfr-273-universal-waste-management - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 273 establishes the streamlined universal waste standards under RCRA for batteries, certain pesticides, mercury-containing equipment, lamps, and aerosol cans, allowing small and large ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-273-universal-waste-management.json #### 40 CFR Part 279 - Standards for the Management of Used Oil (EPA RCRA) - **ID**: us-epa-40-cfr-279-used-oil-management - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 279 governs the management of used oil under RCRA, defining on-specification and off-specification used oil and setting standards for generators, transporters and transfer facilities, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-279-used-oil-management.json #### 40 CFR Part 280 - Technical Standards and Corrective Action Requirements for Underground Storage Tanks (UST) - **ID**: us-epa-40-cfr-280-underground-storage-tanks - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 280 sets the technical standards and corrective action requirements for underground storage tank systems storing regulated substances under Subtitle I of the Solid Waste Disposal Act, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-280-underground-storage-tanks.json #### 40 CFR Part 302 - Designation, Reportable Quantities, and Notification (CERCLA) - **ID**: us-epa-40-cfr-302-cercla-reportable-quantities - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 302 designates hazardous substances under CERCLA and sets their reportable quantities, requiring any person in charge of a vessel or facility to immediately notify the National Respons... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-302-cercla-reportable-quantities.json #### 40 CFR Part 355 - Emergency Planning and Notification (EPCRA) - **ID**: us-epa-40-cfr-355-epcra-emergency-planning-notification - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 355 implements the emergency planning and emergency release notification provisions of EPCRA, requiring facilities with extremely hazardous substances at or above threshold planning qu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-355-epcra-emergency-planning-notification.json #### 40 CFR Part 372 - Toxic Chemical Release Reporting: Community Right-to-Know (TRI) - **ID**: us-epa-40-cfr-372-toxics-release-inventory-epcra-313 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 372 implements the Toxics Release Inventory under section 313 of the Emergency Planning and Community Right-to-Know Act, requiring covered facilities with 10 or more employees in desig... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-372-toxics-release-inventory-epcra-313.json #### 40 CFR Part 51 - Requirements for Preparation, Adoption, and Submittal of State Implementation Plans - **ID**: us-epa-40-cfr-51-state-implementation-plan-requirements - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 51 sets the requirements for preparation, adoption, and submittal of State Implementation Plans under the Clean Air Act, requiring States to provide for public hearings and submit plan... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-51-state-implementation-plan-requirements.json #### 40 CFR Part 60 - Standards of Performance for New Stationary Sources (NSPS) - **ID**: us-epa-40-cfr-60-nsps-new-source-performance-standards - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 60 sets standards of performance for new and modified stationary sources under section 111 of the Clean Air Act, requiring owners or operators of affected facilities to notify of const... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-60-nsps-new-source-performance-standards.json #### 40 CFR Part 63 - National Emission Standards for Hazardous Air Pollutants (NESHAP) - **ID**: us-epa-40-cfr-63-neshap-hazardous-air-pollutants - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 63 establishes national emission standards for hazardous air pollutants under section 112 of the Clean Air Act, requiring owners or operators of affected sources to meet each relevant ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-63-neshap-hazardous-air-pollutants.json #### 40 CFR Part 70 - State Operating Permit Programs (Clean Air Act Title V) - **ID**: us-epa-40-cfr-70-state-operating-permit-programs-title-v - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 70 sets the requirements for State and local operating permit programs under Title V of the Clean Air Act, defining which major and other sources must obtain operating permits, the con... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-70-state-operating-permit-programs-title-v.json #### 40 CFR Part 71 - Federal Operating Permit Programs (Clean Air Act Title V) - **ID**: us-epa-40-cfr-71-federal-operating-permit-programs-title-v - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 71 establishes the Federal operating permit program under Title V of the Clean Air Act that applies where no EPA-approved State program is in effect, covering sources subject to permit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-71-federal-operating-permit-programs-title-v.json #### 40 CFR Part 711 - TSCA Chemical Data Reporting Requirements - **ID**: us-epa-40-cfr-711-tsca-chemical-data-reporting - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 711 sets the TSCA Chemical Data Reporting requirements, requiring manufacturers and importers of listed chemical substances above the reporting thresholds to report manufacturing, proc... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-711-tsca-chemical-data-reporting.json #### 40 CFR Part 716 - Health and Safety Data Reporting (TSCA) - **ID**: us-epa-40-cfr-716-tsca-health-safety-data-reporting - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 716 sets the TSCA health and safety data reporting requirements, requiring manufacturers, importers, and processors of listed chemical substances and mixtures to conduct an adequate fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-716-tsca-health-safety-data-reporting.json #### 40 CFR Part 717 - Records and Reports of Allegations of Significant Adverse Reactions (TSCA) - **ID**: us-epa-40-cfr-717-tsca-significant-adverse-reactions-records - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 717 sets the TSCA section 8(c) recordkeeping requirements, requiring manufacturers, importers, and processors of chemical substances to record allegations of significant adverse reacti... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-717-tsca-significant-adverse-reactions-records.json #### 40 CFR Part 720 - Premanufacture Notification (TSCA) - **ID**: us-epa-40-cfr-720-tsca-premanufacture-notification - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 720 sets the premanufacture notification requirements under TSCA, requiring any person who intends to manufacture or import a new chemical substance not on the TSCA Inventory to submit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-720-tsca-premanufacture-notification.json #### 40 CFR Part 761 - Polychlorinated Biphenyls (PCBs) Manufacturing, Processing, Distribution, Use, and Disposal (TSCA) - **ID**: us-epa-40-cfr-761-pcb-management-tsca - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 761 implements the PCB provisions of the Toxic Substances Control Act, governing the manufacture, processing, distribution in commerce, use, marking, storage, and disposal of polychlor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-761-pcb-management-tsca.json #### 40 CFR Part 82 - Protection of Stratospheric Ozone (ODS phase-out and refrigerant management) - **ID**: us-epa-40-cfr-82-stratospheric-ozone-refrigerant-management - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 82 implements the Montreal Protocol and Title VI of the Clean Air Act by limiting production and consumption of ozone-depleting controlled substances and by governing the servicing, re... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-82-stratospheric-ozone-refrigerant-management.json #### 40 CFR Part 122 -- EPA Administered Permit Programs: the National Pollutant Discharge Elimination System - **ID**: us-epa-40-cfr-part-122-national-pollutant-discharge-elimination - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Organizations must obtain and comply with a National Pollutant Discharge Elimination System (NPDES) permit for any discharge of pollutants from a point source into waters of the United States. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-part-122-national-pollutant-discharge-elimination.json #### 40 CFR Part 122 - EPA Administered Permit Programs: The National Pollutant Discharge Elimination System - **ID**: us-epa-cfr-40-part-122-npdes-permit-program - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation establishes the requirements for the National Pollutant Discharge Elimination System (NPDES) permit program, including permit applications, specific discharge categories, and reporting... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-cfr-40-part-122-npdes-permit-program.json #### 40 CFR Part 260 - Hazardous Waste Management System: General - **ID**: us-epa-cfr-40-part-260-rcra-hazardous-waste - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation establishes the general framework, definitions, and petitioning procedures for the hazardous waste management system, including requirements for information availability, manifest subm... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-cfr-40-part-260-rcra-hazardous-waste.json #### US EPA Greenhouse Gas Reporting Program - 40 CFR Part 98 Mandatory GHG Reporting - **ID**: us-epa-greenhouse-gas-reporting-program-40-cfr-98-mandatory-reporting - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The US EPA Mandatory Greenhouse Gas Reporting Program (GHGRP) at 40 CFR Part 98 requires facilities and suppliers in 41 industrial categories that emit 25,000 metric tons of CO2 equivalent or more ann... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-greenhouse-gas-reporting-program-40-cfr-98-mandatory-reporting.json #### US EPA PFAS Strategic Roadmap (2021) and National Primary Drinking Water Regulation for PFAS (2024) - **ID**: us-epa-pfas-strategic-roadmap-2021-2024 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The US Environmental Protection Agency (EPA) PFAS Strategic Roadmap was released on 18 October 2021 and sets the federal commitment to address per- and polyfluoroalkyl substances (PFAS) across the lif... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-pfas-strategic-roadmap-2021-2024.json #### Safe Drinking Water Act (SDWA) Section 1433 - Risk and Resilience Assessments and Emergency Response Plans for Community Water Systems - **ID**: us-epa-water-sector-cybersecurity-1433 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Under Section 1433 of the Safe Drinking Water Act (SDWA), community water systems serving more than 3,300 people must conduct comprehensive Risk and Resilience Assessments (RRAs) that include cyber th... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-water-sector-cybersecurity-1433.json #### US Emergency Planning and Community Right-to-Know Act of 1986 - Chemical Disclosure and Local Emergency Planning - **ID**: us-epcra-1986-emergency-planning-community-right-to-know - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Emergency Planning and Community Right-to-Know Act of 1986 established federal requirements for state and local emergency planning and reporting of hazardous chemicals by requiring facilities to n... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epcra-1986-emergency-planning-community-right-to-know.json #### FERC Form 1 Annual Report for Major Electric Utilities - Financial Statements, Rate Base and Operating Statistics Filing Requirements - **ID**: us-ferc-form-1-annual-report-electric-utilities - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Mandates that all major electric utilities, licensees, and others subject to FERC jurisdiction file Form No. 1, a comprehensive annual report detailing financial and operational data, as required by t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ferc-form-1-annual-report-electric-utilities.json #### Participation of Distributed Energy Resource Aggregations in Markets Operated by Regional Transmission Organizations and Independent System Operators - **ID**: us-ferc-order-2222-distributed-energy-resources - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This final rule requires Regional Transmission Organizations (RTOs) and Independent System Operators (ISOs) to revise their tariffs to establish Distributed Energy Resource (DER) aggregators as a type... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ferc-order-2222-distributed-energy-resources.json #### Inflation Reduction Act of 2022 (Public Law 117-169): Clean Energy Tax Credits (ITC, PTC), Domestic Content, and Energy Community Bonus Credit Amounts - **ID**: us-ira-2022-clean-energy-tax-credits - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Inflation Reduction Act of 2022 (IRA) provides enhanced tax credits for clean energy projects, including the Investment Tax Credit (ITC) under IRC § 48 and Production Tax Credit (PTC) under IRC § ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ira-2022-clean-energy-tax-credits.json #### US National Environmental Policy Act (42 USC ch 55): Environmental Review of Federal Actions - **ID**: us-national-environmental-policy-act - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The National Environmental Policy Act (42 U.S.C. ch. 55) requires Federal agencies to assess the environmental effects of their proposed actions before deciding to proceed. Section 4331 declares the n... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-environmental-policy-act.json #### Natural Gas Act Section 7(c): Certificate of Public Convenience and Necessity for Interstate Natural Gas Pipelines - **ID**: us-natural-gas-act-ferc-pipeline-certification - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: Under Section 7(c) of the Natural Gas Act (15 U.S.C. § 717f(c)), any entity seeking to construct, extend, acquire, or operate facilities for the transportation or sale of natural gas in interstate com... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-natural-gas-act-ferc-pipeline-certification.json #### 10 CFR Part 50: Domestic Licensing of Production and Utilization Facilities - **ID**: us-nrc-10-cfr-50-nuclear-reactor-licensing - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This regulation establishes the comprehensive requirements for licensing, constructing, and operating nuclear power plants and other production or utilization facilities within the United States. As m... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nrc-10-cfr-50-nuclear-reactor-licensing.json #### US Oil Pollution Act 1990 (OPA 90) - Spill Prevention, Facility Response Plans, Financial Responsibility and Natural Resource Damages - **ID**: us-oil-pollution-act-1990-opa90 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Oil Pollution Act of 1990 (OPA 90) establishes a comprehensive federal framework for oil spill prevention, preparedness, and response, imposing strict liability for removal costs and damages on pa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-oil-pollution-act-1990-opa90.json #### US Pollution Prevention Act of 1990 (42 USC 13101) - Source Reduction Federal Policy - **ID**: us-pollution-prevention-act-1990-42-usc-13101 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Pollution Prevention Act of 1990 established federal policy that pollution should be prevented or reduced at the source whenever feasible, pollution that cannot be prevented should be recycled in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pollution-prevention-act-1990-42-usc-13101.json #### Public Utility Holding Company Act of 2005 (PUHCA 2005) - **ID**: us-puhca-2005-utility-holding-company - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Public Utility Holding Company Act of 2005 grants the Federal Energy Regulatory Commission (FERC) and state utility commissions access to the books and records of holding companies and their affil... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-puhca-2005-utility-holding-company.json #### Resource Conservation and Recovery Act (RCRA) - Hazardous and Solid Waste Management Obligations for Power Generation and Utility Facilities - **ID**: us-rcra-solid-waste-management-utilities - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Resource Conservation and Recovery Act (RCRA) Subtitle C establishes a comprehensive 'cradle-to-grave' federal regulatory program for managing hazardous waste, requiring power generation and utili... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-rcra-solid-waste-management-utilities.json #### US Resource Conservation and Recovery Act (42 USC ch 82): Hazardous Waste Management and Enforcement - **ID**: us-resource-conservation-and-recovery-act - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The Resource Conservation and Recovery Act, codifying the Solid Waste Disposal Act (42 U.S.C. ch. 82), is the principal US statute governing the management of solid and hazardous waste from generation... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-resource-conservation-and-recovery-act.json #### The Enhancement and Standardization of Climate-Related Disclosures for Investors (Release No. 33-11275) - **ID**: us-sec-climate-disclosure-rule-2024 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: This SEC final rule mandates that public companies disclose material climate-related risks, governance strategies, and risk management processes in their registration statements and annual reports. As... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-climate-disclosure-rule-2024.json #### US SEC Climate Disclosure Rule 2024 (Release 33-11275) - Scope 1, 2 and Material Climate Risk Reporting - **ID**: us-sec-climate-disclosure-rule-2024-33-11275-scope-1-2-reporting - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: SEC Release 33-11275 (March 2024) requires public companies to disclose material climate-related risks and their impact on business strategy, financial condition, and governance. Large accelerated fil... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-climate-disclosure-rule-2024-33-11275-scope-1-2-reporting.json #### Verra VCS Carbon Verification - **ID**: verra-vcs-verification - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: Verra VCS project verification mandates strict adherence to a comprehensive set of protocols, as stipulated within core VCS Program governance documents, to ensure the integrity of issued Verified Car... - **Discovery URL**: https://bidda.com/api/v1/nodes/verra-vcs-verification.json #### WEEE: Electronic Waste Recovery - **ID**: weee-electronic-waste - **Category**: Sustainability & ESG - **Version**: 1.1.0 - **BLUF**: An entity’s adherence to the Waste Electrical and Electronic Equipment Directive is substantially confirmed, though a critical deficiency exists regarding cross-border commerce obligations. The produc... - **Discovery URL**: https://bidda.com/api/v1/nodes/weee-electronic-waste.json #### South Africa National Environmental Management Act (NEMA) 107 of 1998 - Environmental Impact Assessment Obligations, Environmental Management Plans, Principles for Decision-Making and Enforcement - **ID**: za-national-environmental-management-act-107-1998 - **Category**: Sustainability & ESG - **Version**: 1.0.0 - **BLUF**: The South African National Environmental Management Act (NEMA) establishes a framework for environmental governance, requiring any person undertaking activities listed under Section 24(2) to obtain an... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-national-environmental-management-act-107-1998.json ### Tax & Transfer Pricing (115 nodes) #### Australian Diverted Profits Tax 2017 - 40% Tax on Artificially Diverted Australian Profits - **ID**: au-diverted-profits-tax-2017 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Australian entities with global turnover above AUD 1 billion that enter into schemes to divert profits from Australia may face a 40% Diverted Profits Tax on the diverted amount. The ATO issues a DPT a... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-diverted-profits-tax-2017.json #### AU GST Act 1999 - A New Tax System (Goods and Services Tax) Compliance for Digital Services and Imported Low-Value Goods - **ID**: au-gst-act-1999-a-new-tax-system-goods-services-tax - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Australia's GST Act 1999 applies 10% GST to digital services supplied by non-resident suppliers to Australian consumers with annual turnover above AUD 75,000, with offshore suppliers registering under... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-gst-act-1999-a-new-tax-system-goods-services-tax.json #### Australia Income Tax Assessment Act 1997 - Assessable Income Deductions and Tax Liability - **ID**: au-income-tax-assessment-act-1997 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The Income Tax Assessment Act 1997 sets out the core operative rules for Australian income tax including the assessability of ordinary income and statutory income, general and specific deductions, cap... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-income-tax-assessment-act-1997.json #### Australia Transfer Pricing Laws Amendment Act 2012 - **ID**: australia-transfer-pricing-laws-amendment-2012 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The Australia Transfer Pricing Laws Amendment Act 2012 requires that Australian taxpayers ensure their cross-border transactions with related parties are conducted at arm's length, as per Section 815-... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-transfer-pricing-laws-amendment-2012.json #### Income Tax Act (R.S.C., 1985, c. 1 (5th Supp.)) - Section 247 - **ID**: ca-income-tax-act-section-247-transfer-pricing - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This article defines key terms related to transfer pricing, including arm's length principles, qualifying cost contribution arrangements, and various types of tax adjustments, which form the basis for... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-income-tax-act-section-247-transfer-pricing.json #### Canada Income Tax Act Transfer Pricing Section 247 - **ID**: ca-income-tax-act-transfer-pricing-s247 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: Section 247 of the Income Tax Act (R.S.C. 1985, c. 1 (5th Supp.)), as amended by the Budget Implementation Act 2023, requires that transactions and arrangements between a Canadian taxpayer and a non-a... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-income-tax-act-transfer-pricing-s247.json #### Income Tax Act, Section 247 - Arm's Length Transactions, Recharacterisation Power, Contemporaneous Documentation and Penalties - **ID**: canada-transfer-pricing-income-tax-act-section-247 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This regulation requires Canadian taxpayers to ensure arm's length transactions with non-resident related parties, as per Section 247 of the Income Tax Act, and maintain contemporaneous documentation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-transfer-pricing-income-tax-act-section-247.json #### Council Directive (EU) 2016/1164 of 12 July 2016 laying down rules against tax avoidance practices that directly affect the functioning of the internal market (ATAD 1) - **ID**: eu-anti-tax-avoidance-directive-atad-1-2016-1164 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This directive requires EU Member States to implement anti-abuse rules including a 30% EBITDA-based interest limitation rule (Article 4), controlled foreign company (CFC) rules (Article 7), general an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-anti-tax-avoidance-directive-atad-1-2016-1164.json #### Council Directive (EU) 2016/1164 of 12 July 2016 laying down rules against tax avoidance practices that directly affect the functioning of the internal market (ATAD) - **ID**: eu-anti-tax-avoidance-directive-atad-2016-1164 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This directive establishes minimum standards for EU Member States to counter corporate tax avoidance by implementing five legally binding anti-abuse measures: an interest limitation rule (Article 4), ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-anti-tax-avoidance-directive-atad-2016-1164.json #### Council Directive (EU) 2016/1164 of 12 July 2016 laying down rules against tax avoidance practices that directly affect the functioning of the internal market - **ID**: eu-anti-tax-avoidance-directive-atad1-2016 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This directive establishes binding anti-abuse rules for all EU Member States, including an interest limitation rule (Article 4), controlled foreign company (CFC) rules (Article 7), a general anti-abus... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-anti-tax-avoidance-directive-atad1-2016.json #### Council Directive (EU) 2017/952 of 29 May 2017 amending Directive (EU) 2016/1164 as regards hybrid mismatches with third countries - **ID**: eu-anti-tax-avoidance-directive-atad2-2017 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: ATAD2 introduces rules to neutralize tax advantages arising from hybrid mismatch arrangements involving third countries, including imported hybrid mismatches and reverse hybrids. It applies to multina... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-anti-tax-avoidance-directive-atad2-2017.json #### OECD Model Tax Convention Article 9 - Associated Enterprises and Arm's Length Principle: Conditions for Adjustment, Primary Adjustment, Corresponding Adjustment, Mutual Agreement Procedure and Secondary Adjustments - **ID**: eu-arm-length-principle-article-9-oecd-model - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This regulation requires that transactions between associated enterprises be priced as if they were conducted between independent parties (arm’s length principle) under Article 9(1) of the OECD Model ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-arm-length-principle-article-9-oecd-model.json #### EU Anti-Tax Avoidance Directives - ATAD1 (Council Directive (EU) 2016/1164) and ATAD2 (Council Directive (EU) 2017/952) - **ID**: eu-atad-anti-tax-avoidance-2016 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The EU Anti-Tax Avoidance Directive 1 (ATAD1), adopted by the Council of the European Union on 12 July 2016 as Council Directive (EU) 2016/1164, establishes a minimum standard of anti-avoidance measur... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-atad-anti-tax-avoidance-2016.json #### Council Directive (EU) 2017/952 of 29 May 2017 amending Directive (EU) 2016/1164 as regards hybrid mismatches with third countries - **ID**: eu-atad2-hybrid-mismatches-2017-952 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This directive amends the EU's Anti-Tax Avoidance Directive (ATAD) to neutralize tax mismatches arising from hybrid arrangements involving third countries. It requires EU Member States to deny a deduc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-atad2-hybrid-mismatches-2017-952.json #### Proposal for a Council Directive on Business in Europe: Framework for Income Taxation (BEFIT) - **ID**: eu-befit-business-in-europe-framework-2023 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The BEFIT directive proposes a common framework for EU-based multinational groups with annual combined revenues exceeding €750 million to calculate a single taxable base, replacing diverse national ru... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-befit-business-in-europe-framework-2023.json #### Directive 2009/55/EC - Tax Exemptions on the Permanent Introduction of Personal Property from Another Member State - **ID**: eu-celex-32009l0055 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Directive 2009/55/EC requires every Member State to exempt personal property permanently introduced from another Member State by a private individual from the consumption taxes that normally apply to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32009l0055.json #### Directive (EU) 2016/1065 - VAT Treatment of Single-Purpose and Multi-Purpose Vouchers - **ID**: eu-celex-32016l1065 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2016/1065 amends the VAT Directive 2006/112/EC to harmonise the VAT treatment of vouchers by inserting Articles 30a, 30b and 73a. A voucher is an instrument carrying an obligation to ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32016l1065.json #### Council Directive (EU) 2021/514 of 22 March 2021 amending Directive 2011/16/EU as regards mandatory automatic exchange of information in the field of taxation in relation to reportable digital platform transactions - **ID**: eu-dac-7-platform-economy-reporting-2021-514 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Digital platform operators must report annual information on sellers engaged in immovable property rentals, personal services, sale of goods, and vehicle rentals to tax authorities under Article 10a o... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dac-7-platform-economy-reporting-2021-514.json #### Council Directive 2014/107/EU of 9 December 2014 amending Directive 2011/16/EU as regards mandatory automatic exchange of information in the field of taxation - **ID**: eu-dac2-automatic-exchange-financial-info - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This Directive mandates EU Member States to automatically exchange information on financial accounts held by tax residents of other Member States, based on the OECD Common Reporting Standard (CRS). It... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dac2-automatic-exchange-financial-info.json #### Council Directive (EU) 2018/822 (DAC6) - Mandatory Disclosure of Reportable Cross-Border Tax Arrangements: Hallmark Categories A-E, 30-Day Reporting Window, Intermediary and Taxpayer Obligations, Main Benefit Test and Automatic Competent Authority Exchange - **ID**: eu-dac6-mandatory-disclosure-2018 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: Intermediaries (advisers, banks, accountants) who design, market, organise, or implement cross-border arrangements with at least one hallmark indicating potential tax avoidance must report to their Me... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dac6-mandatory-disclosure-2018.json #### Council Directive (EU) 2018/822 (DAC6) - Mandatory Disclosure of Cross-Border Tax Arrangements: Hallmarks A-E, Intermediary and Taxpayer Reporting, 30-Day Reporting Deadline, Automatic Exchange Between EU Member States and 50% EBIT Threshold for Hallmark E Transfer Pricing Arrangements - **ID**: eu-dac6-mandatory-disclosure-2018-822 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: Council Directive (EU) 2018/822 of 25 May 2018 (DAC6) amends Directive 2011/16/EU to require mandatory disclosure to national tax authorities of potentially aggressive cross-border tax arrangements; p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dac6-mandatory-disclosure-2018-822.json #### Council Directive (EU) 2018/822 of 25 May 2018 amending Directive 2011/16/EU as regards mandatory automatic exchange of information in the field of taxation in relation to reportable cross-border arrangements - **ID**: eu-dac6-mandatory-disclosure-cross-border - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This Directive requires intermediaries and, in certain cases, taxpayers to report cross-border arrangements that meet one or more of the hallmarks listed in Article 4 within 30 days of the arrangement... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dac6-mandatory-disclosure-cross-border.json #### Council Directive (EU) 2018/822 (DAC6) on mandatory automatic exchange of information in the field of taxation in relation to reportable cross-border arrangements - **ID**: eu-dac6-mandatory-disclosure-hallmarks-2020 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This directive, known as DAC6, requires EU intermediaries (e.g., tax advisors, lawyers, banks) or, in some cases, the relevant taxpayer, to report potentially aggressive cross-border tax planning arra... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dac6-mandatory-disclosure-hallmarks-2020.json #### EU DAC6 Mandatory Disclosure Regulation 2018/822 - Hallmarks, Intermediary Obligations, and Cross-Border Reporting - **ID**: eu-dac6-mandatory-disclosure-hallmarks-compliance - **Category**: Tax & Transfer Pricing - **Version**: 2.0.0 - **BLUF**: EU Council Directive 2018/822 (DAC6) requires intermediaries (primarily tax advisors, accountants, lawyers, and financial institutions) to report cross-border tax arrangements that meet one or more of... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dac6-mandatory-disclosure-hallmarks-compliance.json #### Council Directive (EU) 2021/514 of 22 March 2021 amending Directive 2011/16/EU on administrative cooperation in the field of taxation (DAC7) - **ID**: eu-dac7-digital-platform-reporting-2021-514 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: EU Directive 2021/514 (DAC7) requires digital platform operators to collect, verify, and report information on income earned by sellers for relevant activities to EU Member State tax authorities. This... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dac7-digital-platform-reporting-2021-514.json #### Council Directive (EU) 2021/514 of 22 March 2021 amending Directive 2011/16/EU as regards mandatory automatic exchange of information in the field of taxation in relation to reportable digital platform transactions - **ID**: eu-dac7-platform-economy-reporting-2021 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: DAC7 requires digital platform operators to conduct due diligence on sellers providing accommodation, personal services, goods, or vehicle rentals via their platforms, report seller income annually to... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dac7-platform-economy-reporting-2021.json #### Council Directive (EU) 2023/2226 of 17 October 2023 amending Directive 2011/16/EU on administrative cooperation in the field of taxation (DAC8) - **ID**: eu-dac8-crypto-asset-tax-reporting-2023-2226 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2023/2226 (DAC8) mandates that Crypto-Asset Service Providers (CASPs) and Crypto-Asset Operators in the EU must perform due diligence on their users and report transactional data concer... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dac8-crypto-asset-tax-reporting-2023-2226.json #### Proposal for a COUNCIL DIRECTIVE on laying down rules on a debt-equity bias reduction allowance and on limiting the deductibility of interest for corporate income tax purposes - **ID**: eu-debt-equity-bias-reduction-allowance-debra-2023 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This proposed EU directive aims to equalize the tax treatment of debt and equity financing by introducing a notional interest deduction on increases in equity (Article 4) and a new limitation on inter... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-debt-equity-bias-reduction-allowance-debra-2023.json #### Council Directive (EU) 2022/2523 of 14 December 2022 on ensuring a global minimum level of taxation for multinational enterprise groups and large-scale domestic groups in the Union - **ID**: eu-global-minimum-tax-directive-2022-2523-pillar-two - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This directive requires EU Member States to implement the OECD's Pillar Two rules, ensuring that multinational enterprise (MNE) and large-scale domestic groups with annual consolidated revenues of €75... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-global-minimum-tax-directive-2022-2523-pillar-two.json #### Council Directive 2003/49/EC of 3 June 2003 on a common system of taxation applicable to interest and royalty payments made between associated companies of different Member States - **ID**: eu-interest-royalties-directive-2003-49 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This Directive eliminates withholding taxes on interest and royalty payments between associated companies in different EU Member States, provided the beneficial owner is a qualifying associated compan... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-interest-royalties-directive-2003-49.json #### Council Directive 2003/49/EC of 3 June 2003 on a common system of taxation applicable to interest and royalty payments made between associated companies of different Member States - **ID**: eu-interest-royalties-directive-2003-49-reform - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This directive eliminates withholding taxes on cross-border interest and royalty payments between associated companies within the EU, provided the recipient is the beneficial owner of the income as st... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-interest-royalties-directive-2003-49-reform.json #### EU Mandatory Disclosure Rules - DAC6 Directive 2018/822/EU - **ID**: eu-mandatory-disclosure-rules-dac6-2018-65-eu - **Category**: Tax & Transfer Pricing - **Version**: 2.0.0 - **BLUF**: EU Directive 2018/822/EU (DAC6) requires intermediaries and taxpayers to report cross-border tax arrangements bearing specified hallmarks to national tax authorities within 30 days; information is aut... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mandatory-disclosure-rules-dac6-2018-65-eu.json #### Council Directive (EU) 2022/2523 of 14 December 2022 on ensuring a global minimum level of taxation for multinational enterprise groups and large-scale domestic groups in the Union - **ID**: eu-minimum-tax-directive-2022-2523-pillar2 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This Directive establishes a global minimum tax regime requiring multinational enterprise (MNE) groups and large-scale domestic groups with consolidated revenue of at least EUR 750 000 000 to pay a mi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-minimum-tax-directive-2022-2523-pillar2.json #### Council Directive 2011/96/EU of 16 November 2011 on the common system of taxation applicable to parent companies and subsidiaries of different Member States, as amended by Council Directive 2014/86/EU to prevent double non-taxation arising from hybrid mismatch arrangements - **ID**: eu-parent-subsidiary-directive-2011-96-anti-hybrid - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This directive ensures that qualifying dividend distributions between EU parent and subsidiary companies are exempt from withholding tax, provided certain conditions are met, including anti-abuse rule... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-parent-subsidiary-directive-2011-96-anti-hybrid.json #### Council Directive 2011/96/EU of 16 November 2011 on the common system of taxation applicable to parent companies and subsidiaries of different Member States - **ID**: eu-parent-subsidiary-directive-2011-96-eu - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This Directive eliminates withholding taxes on dividends paid between qualifying parent companies and subsidiaries within the EU, provided the parent holds at least 10% of the subsidiary’s capital for... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-parent-subsidiary-directive-2011-96-eu.json #### Directive (EU) 2021/2101 of the European Parliament and of the Council of 24 November 2021 amending Directive 2013/34/EU as regards disclosure of income tax information by certain undertakings and branches - **ID**: eu-public-cbcr-directive-2021-2101-tax-transparency - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This directive requires multinational enterprises (MNEs) and standalone undertakings with total consolidated revenue exceeding €750 million for two consecutive financial years to publicly disclose cor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-public-cbcr-directive-2021-2101-tax-transparency.json #### EU Tax Dispute Resolution Directive 2017/1852 - Double Taxation Dispute Mechanism - **ID**: eu-tax-dispute-resolution-directive-2017-1852 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Council Directive (EU) 2017/1852 on tax dispute resolution mechanisms in the European Union requires Member States to resolve double taxation disputes between EU Member States within 2 years of a comp... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-tax-dispute-resolution-directive-2017-1852.json #### Proposal for a Council Directive on Transfer Pricing - **ID**: eu-transfer-pricing-directive-proposal-2023 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This proposed directive requires multinational enterprises operating in the EU to ensure that the terms and conditions of their cross-border transactions between associated enterprises are consistent ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-transfer-pricing-directive-proposal-2023.json #### EU VAT Directive 2006/112 - Standard Rate, Deduction, Intra-EU Supply, and One-Stop-Shop - **ID**: eu-vat-directive-2006-112 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Council Directive 2006/112/EC on the common system of value added tax (the Principal VAT Directive) consolidates previous EU VAT directives and establishes the common framework for VAT across all EU M... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-vat-directive-2006-112.json #### EU VAT Directive 2006/112/EC - Cross-Border Digital Services and One-Stop Shop (OSS) Registration - **ID**: eu-vat-directive-2006-112-ec-cross-border-digital-services-oss - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: EU VAT Directive 2006/112/EC as amended by Directive 2017/2455 requires suppliers of digital services to EU consumers to charge VAT at the consumer's member state rate, with the One-Stop Shop (OSS) sc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-vat-directive-2006-112-ec-cross-border-digital-services-oss.json #### Loi 2019-759 du 24 juillet 2019 portant création d'une taxe sur les services numériques - **ID**: france-digital-services-tax-law-2019-759 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This regulation requires large tech companies to pay a 3% tax on their French digital revenue, as stated in Article 1 of the law. It applies to companies with global revenues exceeding €750 million an... - **Discovery URL**: https://bidda.com/api/v1/nodes/france-digital-services-tax-law-2019-759.json #### Loi de Finances pour 2024 - Transposition en droit français du régime GloBE (Global Anti-Base Erosion) du Pilier Deux de l'OCDE : Règle de l'impôt minimum inclusif (IIR), Règle de reporting complémentaire (QDMTT), Obligations déclaratives associées et modalités de mise en œuvre par la DGFiP - **ID**: france-pillar-two-implementation-loi-finances-2024 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: The Loi de Finances 2024 implements OECD Pillar Two GloBE rules in France effective 1 January 2024, imposing a 15% minimum effective tax rate on multinational enterprise groups with consolidated reven... - **Discovery URL**: https://bidda.com/api/v1/nodes/france-pillar-two-implementation-loi-finances-2024.json #### Gulf Cooperation Council VAT Unified Agreement 2016 - **ID**: gulf-cooperation-council-vat-framework-2016 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This regulation establishes a unified value-added tax framework across GCC member states, mandating a standard 5% VAT rate, zero-rating for international services, and exemptions for healthcare and ed... - **Discovery URL**: https://bidda.com/api/v1/nodes/gulf-cooperation-council-vat-framework-2016.json #### Income Tax Rules 10F-10T: Advance Pricing Agreement Rules 2012 - **ID**: india-advance-pricing-agreement-rules-2012 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The India Advance Pricing Agreement Rules 2012 require taxpayers to file an application for an Advance Pricing Agreement (APA) under Rule 10F, which applies to persons who have entered into an interna... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-advance-pricing-agreement-rules-2012.json #### The Constitution and Procedure of the Goods and Services Tax Appellate Tribunal, 2023 - **ID**: india-goods-services-tax-appeals-tribunal-2023 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This regulation establishes the GST Appellate Tribunal (ATAT) for resolving disputes under the Goods and Services Tax regime in India. It mandates a 20% pre-deposit of disputed tax for appeal eligibil... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-goods-services-tax-appeals-tribunal-2023.json #### The Constitution (One Hundred and First Amendment) Act, 2016, and The Central Goods and Services Tax Act, 2017, Integrated Goods and Services Tax Act, 2017, and Union Territory Goods and Services Tax Act, 2017 - **ID**: india-gst-goods-services-tax-2017-council - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: The India Goods and Services Tax (GST) 2017 establishes a dual GST model (CGST/SGST/IGST), mandates e-invoicing for taxpayers with aggregate turnover above ₹5 crore, requires annual return filing (GST... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-gst-goods-services-tax-2017-council.json #### India Transfer Pricing - Section 92 of the Income Tax Act 1961 (Arm's Length Standard) - **ID**: india-transfer-pricing-section-92-income-tax-act - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Sections 92 to 92F of the Income Tax Act 1961 (as inserted by the Finance Act 2001 and substantially amended since) establish India's transfer pricing framework for international transactions and spec... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-transfer-pricing-section-92-income-tax-act.json #### New Zealand Goods and Services Tax Act 1985 - GST Rate, Registration, Zero-Rating, and Exempt Supplies - **ID**: nz-goods-services-tax-act-1985 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The Goods and Services Tax Act 1985 (New Zealand) (GST Act) imposes a goods and services tax on the supply of goods and services in New Zealand and on goods imported into New Zealand. Section 6 impose... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-goods-services-tax-act-1985.json #### 2010 Report on the Attribution of Profits to Permanent Establishments - **ID**: oecd-attribution-profits-permanent-establishments-2010 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This report establishes the Authorised OECD Approach (AOA) for attributing profits to a permanent establishment (PE) for corporate income tax purposes, as endorsed by the OECD Council. The AOA require... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-attribution-profits-permanent-establishments-2010.json #### OECD BEPS Action 12 - Mandatory Disclosure Rules (MDR) - **ID**: oecd-beps-action-12-mandatory-disclosure-rules - **Category**: Tax & Transfer Pricing - **Version**: 2.0.0 - **BLUF**: OECD BEPS Action 12 Final Report (2015) and the 2023 Reporting Framework for Digital Platform Operators provide recommended rules requiring promoters and users of aggressive tax arrangements to disclo... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-12-mandatory-disclosure-rules.json #### OECD BEPS Action 13 Country-by-Country Reporting Guidance 2023 - Domestic Filing Obligations, Exchange Framework and Confidentiality Safeguards - **ID**: oecd-beps-action-13-cbcr-guidance-2023-update - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This regulation requires multinational enterprises (MNEs) to file a country-by-country report (CbCR) with their tax authority, as outlined in Article 3 of the OECD Model Legislation, and applies to MN... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-13-cbcr-guidance-2023-update.json #### OECD Base Erosion and Profit Shifting (BEPS) Action 13 - Transfer Pricing Documentation and Country-by-Country Reporting - **ID**: oecd-beps-action-13-country-by-country-reporting - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Requires multinational enterprise (MNE) groups with consolidated group revenue of EUR 750 million or more to prepare a three-tiered transfer pricing documentation structure: Master File, Local File, a... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-13-country-by-country-reporting.json #### Multilateral Convention to Implement Tax Treaty Related Measures to Prevent Base Erosion and Profit Shifting (MLI) - **ID**: oecd-beps-action-15-multilateral-instrument - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: The OECD BEPS Action 15 Multilateral Instrument (MLI) enables over 100 jurisdictions to swiftly implement BEPS minimum standards into their bilateral tax treaties, including treaty override mechanisms... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-15-multilateral-instrument.json #### OECD BEPS Action 6 - Prevention of Treaty Abuse 2015: Principal Purpose Test (PPT), Limitation on Benefits (LOB) Clause, Minimum Standard for Inclusion in Tax Treaties, Entitlement to Treaty Benefits Analysis, Derivative Benefits Provision and Holding Structures - **ID**: oecd-beps-action-6-treaty-abuse-mlti-2015 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This regulation establishes a minimum standard to prevent treaty shopping by requiring tax treaties to include a Principal Purpose Test (PPT) or Limitation on Benefits (LOB) clause. It applies to all ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-action-6-treaty-abuse-mlti-2015.json #### OECD BEPS Actions 8-10 - Transfer Pricing and Value Creation - **ID**: oecd-beps-actions-8-10-transfer-pricing-value-creation - **Category**: Tax & Transfer Pricing - **Version**: 2.0.0 - **BLUF**: OECD BEPS Actions 8-10 Final Reports (2015), incorporated into the OECD Transfer Pricing Guidelines (2022 edition), mandate that profits follow value creation by aligning transfer pricing outcomes wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-actions-8-10-transfer-pricing-value-creation.json #### Council Directive (EU) 2022/2523 / OECD GloBE Model Rules - Pillar Two Global Minimum Tax: 15% Effective Tax Rate, Income Inclusion Rule, Undertaxed Profits Rule, Qualified Domestic Minimum Top-up Tax, Substance-Based Income Exclusion and GloBE Information Return - **ID**: oecd-beps-pillar-two-global-minimum-tax - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: Council Directive (EU) 2022/2523 implements the OECD GloBE Model Rules in the EU, requiring multinational enterprise (MNE) groups with consolidated annual revenue of at least €750 million in at least ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-beps-pillar-two-global-minimum-tax.json #### OECD Crypto-Asset Reporting Framework (CARF) 2022 - Tax Reporting Obligations for Crypto-Asset Service Providers and Automatic Exchange with Tax Authorities - **ID**: oecd-carf-crypto-asset-reporting-framework-tax-2022 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The OECD's Crypto-Asset Reporting Framework (CARF) mandates that Crypto-Asset Service Providers (CASPs) conduct due diligence on their customers and report detailed information on crypto-asset transac... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-carf-crypto-asset-reporting-framework-tax-2022.json #### OECD/COE Convention on Mutual Administrative Assistance in Tax Matters 1988/2010 - AEOI and Tax Information Exchange - **ID**: oecd-coe-mutual-administrative-assistance-tax-1988 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The Multilateral Convention on Mutual Administrative Assistance in Tax Matters (1988, amended by 2010 Protocol - 147 jurisdictions as of 2025) is the overarching legal basis for the OECD/G20 global ta... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-coe-mutual-administrative-assistance-tax-1988.json #### Common Reporting Standard on Automatic Exchange of Financial Account Information for Tax Purposes (CRS), 2014 Edition - **ID**: oecd-crs-common-reporting-standard-2014 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The OECD Common Reporting Standard (CRS) requires financial institutions in participating jurisdictions to identify financial accounts held by tax residents of foreign jurisdictions and report account... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-crs-common-reporting-standard-2014.json #### Standard for Automatic Exchange of Financial Account Information in Tax Matters (Common Reporting Standard - CRS) - **ID**: oecd-crs-common-reporting-standard-implementation - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The OECD Common Reporting Standard (CRS) mandates that financial institutions in participating jurisdictions collect and report financial account information of non-resident customers to their local t... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-crs-common-reporting-standard-implementation.json #### OECD WCO Customs Valuation and Transfer Pricing Interface - Resolving Conflicts Between Customs Value and Arm's Length Price for Related Parties - **ID**: oecd-customs-transfer-pricing-wco-interface-2015 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This regulation requires customs authorities and tax administrations to resolve conflicts between customs value and arm's length price for related parties, as outlined in Article 1 of the OECD WCO Cus... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-customs-transfer-pricing-wco-interface-2015.json #### OECD Transfer Pricing Guidance on Financial Transactions 2020 - Accurate Delineation, Treasury Functions, Cash Pooling and Financial Guarantees - **ID**: oecd-financial-transactions-transfer-pricing-2020 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This guidance requires multinational enterprises (MNEs) to accurately delineate and price intra-group financial transactions, including loans, cash pooling, hedging, and financial guarantees, in accor... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-financial-transactions-transfer-pricing-2020.json #### OECD Global Forum on Transparency and Exchange of Information for Tax Purposes: Phase 2 Peer Reviews - **ID**: oecd-global-forum-transparency-peer-review-phase-2 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The OECD Global Forum Phase 2 Peer Reviews require jurisdictions to have in place a legal framework that enables the exchange of information on request (EOIR) in accordance with Article 26 of the OECD... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-global-forum-transparency-peer-review-phase-2.json #### Guidance for Tax Administrations on the Application of the Approach to Hard-to-Value Intangibles (BEPS Action 8) - **ID**: oecd-hard-to-value-intangibles-guidance-2018 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This guidance permits tax administrations to use ex-post outcomes (actual financial results) as presumptive evidence to challenge the arm's length pricing of Hard-to-Value Intangibles (HTVI) transfers... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-hard-to-value-intangibles-guidance-2018.json #### OECD Inclusive Framework on BEPS - 140+ Countries: Four Minimum Standards (Actions 5, 6, 13, 14), Peer Reviews, Capacity Building, Pillar One and Pillar Two Implementation and IF Deliverables - **ID**: oecd-inclusive-framework-beps-140-countries - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: The OECD Inclusive Framework on Base Erosion and Profit Shifting (BEPS) requires 140+ jurisdictions to implement four minimum standards: countering harmful tax practices (Action 5), preventing treaty ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-inclusive-framework-beps-140-countries.json #### OECD Model Tax Convention on Income and on Capital: Condensed Version 2017 - **ID**: oecd-model-tax-convention-2017-mfn - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The OECD Model Tax Convention 2017 provides the global standard framework for bilateral tax treaties to eliminate double taxation and prevent fiscal evasion. It establishes rules for residence tie-bre... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-model-tax-convention-2017-mfn.json #### OECD Pillar One Amount A - Reallocation of Profits to Market Jurisdictions for Large Multinational Enterprises - **ID**: oecd-pillar-one-amount-a-mne-reallocation - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: Requires multinational enterprises (MNEs) with global revenue over €20 billion and profitability exceeding 10% to reallocate 25% of residual profits to market jurisdictions where revenue is sourced, b... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar-one-amount-a-mne-reallocation.json #### Multilateral Convention to Implement Amount A of Pillar One - Reallocation of Taxing Rights for MNEs above €20bn Revenue and 10% Profitability Threshold - **ID**: oecd-pillar-one-amount-a-multilateral-convention-2023 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This multilateral convention reallocates taxing rights on a portion of residual profits from the largest and most profitable Multinational Enterprises (MNEs) to the market jurisdictions where their cu... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar-one-amount-a-multilateral-convention-2023.json #### OECD Pillar One - Amount A: Reallocation of Residual Profits to Market Jurisdictions Based on Revenue Threshold, Profitability, and Nexus Rules - **ID**: oecd-pillar-one-market-jurisdiction-allocation - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This regulation requires multinational enterprises (MNEs) with global revenue above USD 20 billion and profitability exceeding 10% to reallocate 25% of residual profits to market jurisdictions where r... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar-one-market-jurisdiction-allocation.json #### Tax Challenges Arising from the Digitalisation of the Economy - Administrative Guidance on the Global Anti-Base Erosion Model Rules (Pillar Two), July 2023 - **ID**: oecd-pillar-two-administrative-guidance-2023-july - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This OECD guidance provides further clarification on the application of the Pillar Two Global Anti-Base Erosion (GloBE) rules for Multinational Enterprises (MNEs) with revenues over €750 million. It d... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar-two-administrative-guidance-2023-july.json #### Council Directive (EU) 2022/2523 - Global Minimum Level of Taxation for MNE Groups: 15% GloBE Rules, Income Inclusion Rule (IIR), Undertaxed Profits Rule (UTPR), Qualified Domestic Minimum Top-up Tax (QDMTT) and Substance-Based Income Exclusions - **ID**: oecd-pillar-two-global-minimum-tax - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: MNE groups with consolidated annual revenue ≥€750M must maintain ≥15% effective tax rate per jurisdiction; parent entities apply IIR to pay top-up tax on low-taxed constituent entities; UTPR backstop ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar-two-global-minimum-tax.json #### OECD Pillar Two - Global Anti-Base Erosion (GloBE) Rules: Income Inclusion Rule, Undertaxed Profits Rule, 15% Global Minimum Tax, Substance-Based Income Exclusion, QDMTT and Safe Harbour Provisions - **ID**: oecd-pillar-two-global-minimum-tax-15-percent - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This regulation establishes a global minimum corporate tax rate of 15% for multinational enterprise (MNE) groups with revenue above EUR 750 million, applying the Income Inclusion Rule (IIR) and Undert... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar-two-global-minimum-tax-15-percent.json #### OECD Pillar Two - Global Minimum Tax 15% GloBE Rules and Qualified Domestic Minimum Top-up Tax - **ID**: oecd-pillar-two-global-minimum-tax-15-percent-globe-rules - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: OECD Pillar Two GloBE Rules require large multinational enterprises with consolidated revenue above EUR 750 million to pay a minimum effective tax rate of 15% in each jurisdiction, with top-up tax col... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar-two-global-minimum-tax-15-percent-globe-rules.json #### OECD Pillar Two - Global Anti-Base Erosion (GloBE) Rules 15% Global Minimum Tax - **ID**: oecd-pillar-two-global-minimum-tax-globe-rules-15pct - **Category**: Tax & Transfer Pricing - **Version**: 2.0 - **BLUF**: OECD Pillar Two GloBE Rules impose a global minimum effective tax rate of 15% on multinational enterprises with annual consolidated revenue exceeding EUR 750 million - implemented via Income Inclusion... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar-two-global-minimum-tax-globe-rules-15pct.json #### Tax Challenges Arising from the Digitalisation of the Economy - Global Anti-Base Erosion Model Rules (Pillar Two) - **ID**: oecd-pillar-two-global-minimum-tax-model-rules-2021 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The OECD Pillar Two GloBE Model Rules require multinational enterprises (MNEs) with annual consolidated revenues exceeding €750 million to pay a minimum effective tax rate (ETR) of 15% on profits in e... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar-two-global-minimum-tax-model-rules-2021.json #### OECD Pillar Two - Qualified Domestic Minimum Top-Up Tax (QDMTT) and Undertaxed Profits Rule (UTPR) - **ID**: oecd-pillar-two-qdmtt-undertaxed-profits-rule - **Category**: Tax & Transfer Pricing - **Version**: 2.0.0 - **BLUF**: OECD Pillar Two GloBE Rules establish a 15% global minimum effective tax rate for MNE groups with consolidated revenue of EUR 750 million or more. The Qualified Domestic Minimum Top-Up Tax (QDMTT) all... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-pillar-two-qdmtt-undertaxed-profits-rule.json #### Multilateral Convention to Implement Tax Treaty Related Measures to Prevent Base Erosion and Profit Shifting (MLI) - Article 7: Prevention of Treaty Abuse - **ID**: oecd-prevention-treaty-abuse-mli-action-6 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The OECD's Multilateral Instrument (MLI) Article 7 implements BEPS Action 6, requiring signatory jurisdictions to adopt a Principal Purpose Test (PPT) to deny tax treaty benefits where obtaining such ... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-prevention-treaty-abuse-mli-action-6.json #### OECD Transfer Pricing Guidelines - Chapter I: The Arm's Length Principle and Comparability Analysis - **ID**: oecd-transfer-pricing-chapter-i-arm-length-principle - **Category**: Tax & Transfer Pricing - **Version**: 2.0.0 - **BLUF**: OECD Transfer Pricing Guidelines for Multinational Enterprises and Tax Administrations (2022 edition) Chapter I establishes the arm's length principle (ALP) as the international standard for pricing c... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-transfer-pricing-chapter-i-arm-length-principle.json #### OECD Transfer Pricing Guidelines for Multinational Enterprises and Tax Administrations (2022 Edition) - **ID**: oecd-transfer-pricing-guidelines-2022 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This regulation establishes the international standard for applying the arm’s length principle to transfer pricing between related parties in multinational enterprises. It requires taxpayers and tax a... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-transfer-pricing-guidelines-2022.json #### OECD Transfer Pricing Guidelines for Multinational Enterprises and Tax Administrations 2022 - **ID**: oecd-transfer-pricing-guidelines-2022-full-edition - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: These guidelines provide the international consensus on valuing cross-border transactions between associated enterprises within a Multinational Enterprise (MNE) group for tax purposes. They mandate th... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-transfer-pricing-guidelines-2022-full-edition.json #### Singapore Goods and Services Tax Act 1993 - **ID**: sg-goods-services-tax-act-1993 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The Goods and Services Tax Act (Cap. 117A, 2005 Rev. Ed.), as amended with the GST rate increased to 9% effective 1 January 2024 from 8% on 1 January 2023 and 7% prior to that, requires any person who... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-goods-services-tax-act-1993.json #### Singapore IRAS Transfer Pricing Guidelines 6th Edition 2021 - Documentation Requirements, Advance Pricing Agreements and MAP Procedures - **ID**: singapore-iras-transfer-pricing-guidelines-2021 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This regulation requires multinational enterprises to maintain transfer pricing documentation as per Section 3.1 of the guidelines, and applies to all entities with cross-border transactions. See Sect... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-iras-transfer-pricing-guidelines-2021.json #### UK Corporation Tax Act 2010 - Diverted Profits Tax, Transfer Pricing, and Hybrid Mismatch Rules - **ID**: uk-corporation-tax-act-2010-diverted-profits-tax-transfer-pricing - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: UK Corporation Tax Act 2010 and associated legislation impose 25% Diverted Profits Tax on profits diverted from the UK, require arm's-length transfer pricing on related-party transactions, and deny de... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-corporation-tax-act-2010-diverted-profits-tax-transfer-pricing.json #### UK Diverted Profits Tax 2015 - 31% Charge on Diverted UK Profits - **ID**: uk-diverted-profits-tax-2015 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: UK Diverted Profits Tax (DPT) charges a 31% rate on profits artificially diverted from the UK using contrived arrangements, mainly targeting: (1) foreign companies avoiding a UK permanent establishmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-diverted-profits-tax-2015.json #### UK Finance Act 2024 - R&D Tax Relief Reform, Multinational Top-Up Tax (Pillar Two), and Pension Allowances Removal, Royal Assent 22 February 2024 - **ID**: uk-finance-act-2024-c-3 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: UK taxpayers, multinational groups, R&D-intensive companies, and pension scheme administrators must comply with the Finance Act 2024 (Royal Assent 22 February 2024) by applying the new merged R&D tax ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-finance-act-2024-c-3.json #### Plastic Packaging Tax: steps to take - HM Revenue & Customs Guidance - **ID**: uk-plastic-packaging-tax-2022-finance-act - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: Businesses that have manufactured or imported 10 or more tonnes of finished plastic packaging components in the last 12 months must register for the Plastic Packaging Tax. The tax applies at £228.82 p... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-plastic-packaging-tax-2022-finance-act.json #### HMRC International Transfer Pricing Guidelines (INTM) - UK Arm's Length Principle Application: Thin Cap Rules (Replaced by Interest Limitation), Advance Thin Cap Agreements, Mutual Agreement and MAP Process - **ID**: uk-transfer-pricing-guidelines-hmrc-intm - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The UK transfer pricing rules, as reformed effective 1 January 2026, require that transactions between connected parties be conducted at arm’s length, with specific rules on interest deductibility and... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-transfer-pricing-guidelines-hmrc-intm.json #### UK Transfer Pricing - Taxation (International and Other Provisions) Act 2010 and OECD BEPS Action 13 Documentation - **ID**: uk-transfer-pricing-tiopa-2010 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The UK transfer pricing rules, codified in Pt. 4 and Pt. 5 of the Taxation (International and Other Provisions) Act 2010 (TIOPA 2010), require that transactions between associated enterprises be condu... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-transfer-pricing-tiopa-2010.json #### 26 USC § 482 - Allocation of Income and Deductions (US Transfer Pricing Authority) - **ID**: us-26-usc-482-transfer-pricing - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: 26 USC § 482 (originally enacted as § 45 of the Revenue Act of 1928, recodified into Internal Revenue Code; substantially modified by Tax Reform Act of 1986 with the addition of the commensurate-with-... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-26-usc-482-transfer-pricing.json #### 26 USC § 6038A - Information Reporting for 25-Percent Foreign-Owned Corporations - **ID**: us-26-usc-6038a-foreign-owned-corporations-reporting - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: 26 USC § 6038A (enacted by Pub. L. 101-239 and substantially expanded by subsequent statutes including the Tax Cuts and Jobs Act of 2017 amendments related to BEAT) requires domestic corporations that... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-26-usc-6038a-foreign-owned-corporations-reporting.json #### US Internal Revenue Code - 26 USC 6672 Failure to Collect and Pay Over Tax, or Attempt to Evade or Defeat Tax (Trust Fund Recovery Penalty) - **ID**: us-26-usc-6672-trust-fund-recovery-penalty - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: 26 USC 6672 is the Internal Revenue Code provision that imposes the Trust Fund Recovery Penalty (TFRP) personally on responsible persons who willfully fail to collect, account for, and pay over trust ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-26-usc-6672-trust-fund-recovery-penalty.json #### US Internal Revenue Code - 26 USC 7201 Attempt to Evade or Defeat Tax - **ID**: us-26-usc-7201-attempt-to-evade-or-defeat-tax - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: 26 USC 7201 titled 'Attempt to evade or defeat tax' is the principal federal criminal tax evasion statute. The statute provides that any person who willfully attempts in any manner to evade or defeat ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-26-usc-7201-attempt-to-evade-or-defeat-tax.json #### US Internal Revenue Code - 26 USC 7206 Fraud and False Statements (Tax Perjury and Aiding Tax Fraud) - **ID**: us-26-usc-7206-fraud-and-false-statements-tax - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: 26 USC 7206 titled 'Fraud and false statements' is the federal tax-perjury and aiding-tax-fraud statute that complements 26 USC 7201 (tax evasion). Subsection (1) (the 'tax perjury' provision) makes i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-26-usc-7206-fraud-and-false-statements-tax.json #### US Internal Revenue Code - 26 USC 7434 Civil Damages for Fraudulent Filing of Information Returns - **ID**: us-26-usc-7434-civil-damages-fraudulent-information-returns - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: 26 USC 7434 titled 'Civil damages for fraudulent filing of information returns' is the federal civil cause of action permitting any person to sue for damages when another person willfully files a frau... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-26-usc-7434-civil-damages-fraudulent-information-returns.json #### Revenue Procedure 2015-41: Procedures for Advance Pricing Agreements - **ID**: us-advance-pricing-agreement-rev-proc-2015-41 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This procedure outlines the process for taxpayers to request an Advance Pricing Agreement (APA) with the IRS to prospectively resolve transfer pricing issues, detailing the mandatory prefiling, applic... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-advance-pricing-agreement-rev-proc-2015-41.json #### Internal Revenue Code Section 59A: Tax on Base Erosion Payments of Taxpayers With Substantial Gross Receipts - **ID**: us-beat-base-erosion-anti-abuse-tax-regulations - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The Base Erosion and Anti-Abuse Tax (BEAT) under IRC Section 59A imposes a minimum tax on large corporations ($500M+ average annual gross receipts) that reduce their U.S. tax liability by making certa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-beat-base-erosion-anti-abuse-tax-regulations.json #### Corporate Alternative Minimum Tax (CAMT) under the Inflation Reduction Act of 2022 (IRC § 55) - **ID**: us-corporate-alternative-minimum-tax-camt-ira-2022 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The Corporate Alternative Minimum Tax (CAMT) imposes a 15% minimum tax on the adjusted financial statement income (AFSI) of applicable corporations with average annual AFSI exceeding $1 billion, as es... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-corporate-alternative-minimum-tax-camt-ira-2022.json #### Methods to Determine Taxable Income in Connection with a Cost Sharing Arrangement - **ID**: us-cost-sharing-regulations-treasury-482-7 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This regulation requires controlled participants in a Qualified Cost Sharing Arrangement (CSA) to share intangible development costs (IDCs) in proportion to their reasonably anticipated benefits (RAB)... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cost-sharing-regulations-treasury-482-7.json #### Foreign Account Tax Compliance Act (FATCA) - **ID**: us-fatca-foreign-account-tax-compliance - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The Foreign Account Tax Compliance Act (FATCA) requires foreign financial institutions (FFIs) and certain non-financial foreign entities to report information on financial accounts held by U.S. person... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fatca-foreign-account-tax-compliance.json #### Foreign Account Tax Compliance Act (FATCA) - **ID**: us-fatca-foreign-account-tax-compliance-2010 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: FATCA requires foreign financial institutions (FFIs) and certain non-financial foreign entities to report on U.S. account holders' foreign assets or face 30% withholding on withholdable payments. It a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fatca-foreign-account-tax-compliance-2010.json #### US FATCA - Foreign Account Tax Compliance Act: FFI Agreement, FATCA Withholding, and GIIN Registration - **ID**: us-fatca-foreign-account-tax-compliance-reporting - **Category**: Tax & Transfer Pricing - **Version**: 2.0.0 - **BLUF**: US Foreign Account Tax Compliance Act (FATCA), enacted in the Hiring Incentives to Restore Employment (HIRE) Act 2010 and implemented via IRC Sections 1471-1474, requires foreign financial institution... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fatca-foreign-account-tax-compliance-reporting.json #### Deduction for Foreign-Derived Intangible Income and Global Intangible Low-Taxed Income (26 U.S.C. § 250) - **ID**: us-fdii-section-250-foreign-derived-intangible-income - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: This regulation, under 26 U.S.C. § 250, allows eligible U.S. C corporations to claim a deduction on their Foreign-Derived Intangible Income (FDII) and Global Intangible Low-Taxed Income (GILTI). The F... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fdii-section-250-foreign-derived-intangible-income.json #### US Foreign Account Tax Compliance Act (FATCA) - IRS - **ID**: us-foreign-account-tax-compliance-act-fatca-irs - **Category**: Tax & Transfer Pricing - **Version**: 2.0.0 - **BLUF**: FATCA (IRC Chapter 4, sections 1471-1474) requires foreign financial institutions (FFIs) to identify and report US account holders to the IRS directly or via intergovernmental agreements (IGAs), withh... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-foreign-account-tax-compliance-act-fatca-irs.json #### Guidance Related to the High-Tax Exception Under Subpart F and the High-Tax Exclusion for Global Intangible Low-Taxed Income - **ID**: us-gilti-high-tax-exclusion-final-regulations-2020 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: These final regulations permit U.S. shareholders of controlled foreign corporations (CFCs) to elect to exclude items of high-taxed income from their Global Intangible Low-Taxed Income (GILTI) computat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-gilti-high-tax-exclusion-final-regulations-2020.json #### US GILTI - IRC Section 951A: Global Intangible Low-Taxed Income Inclusion and High-Tax Exclusion - **ID**: us-gilti-section-951a-global-intangible-low-taxed-income - **Category**: Tax & Transfer Pricing - **Version**: 2.0.0 - **BLUF**: US Internal Revenue Code Section 951A (GILTI), enacted by the Tax Cuts and Jobs Act 2017, requires US shareholders of Controlled Foreign Corporations (CFCs) to include in gross income their pro-rata s... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-gilti-section-951a-global-intangible-low-taxed-income.json #### US GILTI, BEAT, and FDII - Tax Cuts and Jobs Act 2017 International Tax Provisions - **ID**: us-gilti-tcja-2017 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The Tax Cuts and Jobs Act (TCJA), signed into law by President Trump on 22 December 2017 (Public Law 115-97), enacted the most comprehensive reform of US international corporate taxation since 1986 an... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-gilti-tcja-2017.json #### 26 U.S. Code § 482 - Allocation of income and deductions among taxpayers - **ID**: us-irc-section-482-intercompany-pricing - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: This regulation authorizes the Secretary of the Treasury to allocate income, deductions, credits, or allowances between related organizations or businesses to prevent tax evasion or clearly reflect in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-irc-section-482-intercompany-pricing.json #### US IRS Section 482 Transfer Pricing Regulations - Arm's Length Standard for Intercompany Transactions - **ID**: us-irs-section-482-transfer-pricing-regulations-arm-length-standard - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Section 482 of the Internal Revenue Code and the accompanying Treasury Regulations (26 C.F.R. § 1.482-1 to -9) require that intercompany transactions between related parties be priced at arm's length ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-irs-section-482-transfer-pricing-regulations-arm-length-standard.json #### OECD BEPS Action 13: Transfer Pricing Documentation and Country-by-Country Reporting - Master File, Local File, and CbC Report Requirements - **ID**: us-master-file-local-file-oecd-beps-action-13 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: Multinational enterprises (MNEs) with annual consolidated revenue of EUR 750 million or more must prepare a Master File, Local File, and Country-by-Country Report (CbCR) to demonstrate compliance with... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-master-file-local-file-oecd-beps-action-13.json #### Allocation of Income and Deductions Among Taxpayers (Section 482) - Transfer Pricing Methods - **ID**: us-section-482-transfer-pricing-treasury-regulations - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: U.S. Treasury Regulations under Section 482 empower the IRS to reallocate income, deductions, and credits between two or more commonly controlled entities to prevent tax evasion and clearly reflect in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-section-482-transfer-pricing-treasury-regulations.json #### United States Tax Court (Title 26 USC Chapter 76 Subchapter C): Article I Court of Record Status, Jurisdiction, Nineteen-Member Composition, Special Trial Judges, Sessions, and Appellate Review - **ID**: us-tax-court-26-usc-ch76-subch-c - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The United States Tax Court, established by Subchapter C of Chapter 76 of Title 26 of the United States Code, is a court of record under Article I of the Constitution of the United States with jurisdi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tax-court-26-usc-ch76-subch-c.json #### An Act to provide for reconciliation pursuant to titles II and V of the concurrent resolution on the budget for fiscal year 2018 - **ID**: us-tax-cuts-jobs-act-international-tax-provisions-2017 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The US Tax Cuts and Jobs Act 2017 requires US shareholders of controlled foreign corporations (CFCs) to include in gross income their GILTI, as defined in Section 951A. This applies to US persons who ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tax-cuts-jobs-act-international-tax-provisions-2017.json #### US Tax Reform Act of 1986 (Public Law 99-514) - Internal Revenue Code Recodification - **ID**: us-tax-reform-act-1986-pl-99-514 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: The Tax Reform Act of 1986 recodified the Internal Revenue Code as Title 26 USC, broadened the individual income tax base by repealing or limiting many deductions and preferences, lowered the top indi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tax-reform-act-1986-pl-99-514.json #### US Model Income Tax Convention 2016 - **ID**: us-treasury-model-income-tax-treaty-2016 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.1 - **BLUF**: The US Model Income Tax Convention 2016 requires that a resident of a Contracting State be entitled to the benefits of the Convention, subject to the limitations on benefits provisions in Article 22, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-treasury-model-income-tax-treaty-2016.json #### South Africa Tax Administration Laws Amendment Act 4 of 2026 - Section 223 Understatement Penalties, Suspension of Payment, and VAT E-Invoicing - **ID**: za-tax-administration-laws-amendment-act-4-of-2026 - **Category**: Tax & Transfer Pricing - **Version**: 1.0.0 - **BLUF**: Taxpayers in South Africa must comply with the amended understatement penalty rules under section 223 of the Tax Administration Act 28 of 2011, may apply for suspension of payment while requesting a r... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-tax-administration-laws-amendment-act-4-of-2026.json ### Telecoms & Digital Infrastructure (113 nodes) #### 3GPP 5G NR Release 17 Technical Specifications - Sidelink, URLLC Enhancements, RedCap and NTN Integration - **ID**: 3gpp-5g-nr-release-17-specifications - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: 3GPP Release 17 mandates a set of technical specifications for 5G network equipment manufacturers and operators, introducing key enhancements such as direct device-to-device Sidelink (TS 38.331), impr... - **Discovery URL**: https://bidda.com/api/v1/nodes/3gpp-5g-nr-release-17-specifications.json #### 3GPP IMS IP Multimedia Subsystem Release 16 - SIP Signalling, P-CSCF Security and Emergency Call Procedures - **ID**: 3gpp-ims-ip-multimedia-subsystem-release-16 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This standard mandates that telecommunications operators implementing IP Multimedia Subsystem (IMS) Release 16 must establish secure signalling interfaces using IPsec or TLS between the User Equipment... - **Discovery URL**: https://bidda.com/api/v1/nodes/3gpp-ims-ip-multimedia-subsystem-release-16.json #### African Union Digital Transformation Strategy 2020-2030 - Telecoms Pillar: National Broadband Plans, African Continental Backbone, Spectrum Harmonisation, Cross-Border Roaming Reduction, Digital Identity Infrastructure and Universal Access Fund Models - **ID**: africa-union-digital-transformation-strategy-telecoms - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: This strategy requires AU Member States to implement national broadband plans, harmonise spectrum allocation, reduce cross-border roaming charges, and establish universal access funds by 2030 to suppo... - **Discovery URL**: https://bidda.com/api/v1/nodes/africa-union-digital-transformation-strategy-telecoms.json #### AU Telecommunications Act 1997 - Carrier Licence Conditions, NBN Access, and Consumer Protection Obligations - **ID**: au-telecommunications-act-1997-carrier-licence-conditions-nbn-access - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: Australia's Telecommunications Act 1997 requires carriers to hold an ACMA carrier licence, comply with customer service guarantee standards, provide access to declared services including NBN on non-di... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-telecommunications-act-1997-carrier-licence-conditions-nbn-access.json #### Australia Numbering Plan 2015 - ACMA Number Administration: Geographic Area Code Assignment, Mobile Number Ranges, Freephone and Local Rate Number Rules, Number Portability Technical Specifications, Quarantine Periods and Emergency Service Number Protection - **ID**: australia-acma-numbering-plan-2015 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The Australia Numbering Plan 2015, administered by the ACMA, governs the allocation, use, and portability of telecommunications numbers across geographic, mobile, freephone, and emergency services. It... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-acma-numbering-plan-2015.json #### Communications Legislation Amendment (Online Content Services and Other Measures) Act 2018 - **ID**: australia-space-activities-act-1998 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: This Act amends communications legislation to enhance online safety and regulate online content services in Australia, primarily through amendments to the Broadcasting Services Act 1992 and the Enhanc... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-space-activities-act-1998.json #### Australia Telecommunications (Interception and Access) Act 1979 - Lawful Interception: Warrant Types, ASIO Access, Data Retention Obligations (2-Year Metadata), Stored Communications Warrants and Oversight by Inspector-General - **ID**: australia-telecommunications-interception-act-1979 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: This regulation governs the interception of telecommunications, access to stored communications, and data retention obligations for service providers in Australia, primarily under warrant-based author... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-telecommunications-interception-act-1979.json #### Decreto nº 8.771, de 11 de Maio de 2016 - Regulamenta a Lei nº 12.965, de 23 de Abril de 2014, para tratar das hipóteses admitidas de discriminação de pacotes de dados na internet e de degradação de tráfego, indicar procedimentos para guarda e proteção de dados por provedores de conexão e de aplicações, apontar medidas de transparência na requisição de dados cadastrais pela administração pública e estabelecer parâmetros para fiscalização e apuração de infrações - **ID**: brazil-anatel-net-neutrality-decree-8771-2016 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This regulation implements Brazil's Marco Civil da Internet (Law 12.965/2014) by defining permitted exceptions to net neutrality, requiring transparency in traffic management practices, mandating data... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-anatel-net-neutrality-decree-8771-2016.json #### Canada Telecommunications Act 1993 - **ID**: ca-telecommunications-act-1993 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Telecommunications Act (S.C. 1993, c. 38), in force 25 October 1993 and last amended by the Online Streaming Act 2023, establishes the CRTC's authority to regulate Canadian carriers and telecommun... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-telecommunications-act-1993.json #### Framework for Assessing the Differential Pricing Practices of Internet Service Providers - **ID**: canada-crtc-net-neutrality-isp-traffic-mgmt-2017 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This regulation establishes a framework under subsection 27(2) of the Telecommunications Act for evaluating whether an Internet service provider's differential pricing practice, such as zero-rating or... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-crtc-net-neutrality-isp-traffic-mgmt-2017.json #### Canada Radiocommunication Act (R.S.C. 1985, c. R-2): Radio Authorization, Technical Standards and Offences - **ID**: canada-radiocommunication-act - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Radiocommunication Act (R.S.C. 1985, c. R-2) governs the regulation of radio apparatus, the radio-frequency spectrum and radiocommunication in Canada, administered by the Minister of Industry thro... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-radiocommunication-act.json #### Canada Telecommunications Act (S.C. 1993, c. 38): CRTC Regulation of Carriers, Tariffs, Rates and Canadian Ownership - **ID**: canada-telecommunications-act - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Telecommunications Act (S.C. 1993, c. 38) is the federal statute governing the regulation of telecommunications in Canada, administered by the Canadian Radio-television and Telecommunications Comm... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-telecommunications-act.json #### Cybersecurity of 5G networks: EU Toolbox of risk mitigating measures - **ID**: eu-5g-cybersecurity-toolbox-2020 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This toolbox requires EU Member States to assess the risk profile of 5G network suppliers and apply restrictions on high-risk suppliers for key assets, particularly in the core network, management fun... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-5g-cybersecurity-toolbox-2020.json #### EU 5G Security Implementing Decision 2024 - Restrictive Measures for High-Risk Vendors: Member State Exclusion Powers, Core Network Restrictions, Risk Assessment Methodology, NIS2 Alignment and Network Function Virtualisation Security - **ID**: eu-5g-security-implementing-decision-2024 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: This regulation establishes binding security requirements for 5G networks across EU Member States, including powers to exclude high-risk vendors, restrict access to core functions, and align with NIS2... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-5g-security-implementing-decision-2024.json #### Directive 2014/61/EU of the European Parliament and of the Council of 15 May 2014 on measures to reduce the cost of deploying high-speed electronic communications networks - **ID**: eu-broadband-cost-reduction-directive-2014-61 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This directive requires network operators to grant reasonable requests for access to their physical infrastructure (e.g., ducts, poles) to facilitate the rollout of high-speed broadband networks, and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-broadband-cost-reduction-directive-2014-61.json #### Directive (EU) 2022/2557 of the European Parliament and of the Council of 14 December 2022 on measures for a high common level of security of network and information systems across the Union (NIS2 Directive), as it applies to telecoms operators designated as essential or important entities - **ID**: eu-critical-entities-resilience-directive-2022-nis2-telecoms - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The EU CER Directive 2022/2557, as implemented through the NIS2 framework, requires telecoms operators designated as essential or important entities to conduct mandatory physical and cybersecurity ris... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-critical-entities-resilience-directive-2022-nis2-telecoms.json #### Regulation (EU) 2024/2847 of the European Parliament and of the Council on the Cyber Resilience of Connected Products - **ID**: eu-cyber-resilience-act-2024-connected-products - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The EU Cyber Resilience Act 2024 requires connected product manufacturers to ensure security by design, disclose vulnerabilities, and report incidents to ENISA within 24 hours, as outlined in Article ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-cyber-resilience-act-2024-connected-products.json #### Regulation (EU) 2023/2854 of the European Parliament and of the Council of 14 December 2023 on harmonised rules on fair access to and use of data and amending Regulation (EU) 2017/2394 and Directive (EU) 2019/771 (Data Act) - **ID**: eu-data-act-2023-iot-data-sharing - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The EU Data Act 2023 grants users of connected products and related services the right to access data generated by their use, requires manufacturers to enable secure data sharing with third parties up... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-act-2023-iot-data-sharing.json #### Regulation (EU) 2022/868 on European data governance, and amending Regulation (EU) 2018/1724 and Directive 94/46/EC - **ID**: eu-data-governance-act-2022-868-data-sharing - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The EU Data Governance Act establishes a framework for facilitating data sharing across sectors and Member States, including through data intermediation services and data altruism organizations. It ap... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-governance-act-2022-868-data-sharing.json #### Corrigendum to Directive (EU) 2018/1972 establishing the European Electronic Communications Code - **ID**: eu-dir-2018-1972-corrigendum-to-directive-eu-2018-1972-of-11-december-2018-es - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This document is a corrigendum to Directive (EU) 2018/1972 of the European Parliament and of the Council of 11 December 2018 establishing the European Electronic Communications Code, published in the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2018-1972-corrigendum-to-directive-eu-2018-1972-of-11-december-2018-es.json #### Directive (EU) 2018/1972 of the European Parliament and of the Council of 11 December 2018 establishing the European Electronic Communications Code - **ID**: eu-eecc-2018-1972-electronic-communications-code - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This directive establishes a harmonised framework for the regulation of electronic communications networks and services across the EU, imposing obligations on providers concerning market access, inter... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eecc-2018-1972-electronic-communications-code.json #### Directive (EU) 2018/1972 (European Electronic Communications Code) - Title III, Chapter V: End-User Rights - **ID**: eu-eecc-end-user-rights-universal-service - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The European Electronic Communications Code (EECC), under Articles 102 to 115, mandates that providers of public electronic communications services grant specific rights to end-users, including transp... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eecc-end-user-rights-universal-service.json #### EU 5G Spectrum Peer Review 2023 - RSPG Findings on Pioneer Bands (700 MHz, 3.5 GHz, 26 GHz): Authorisation Timelines, Licence Conditions for Coverage Obligations, Outdoor-to-Indoor Propagation and Coexistence with Incumbent Services - **ID**: eu-eecc-spectrum-peer-review-5g-2023 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: This RSPG 2023 peer review report provides non-binding guidance to EU Member States on harmonised spectrum authorisation timelines, coverage obligations, and technical conditions for 5G pioneer bands ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eecc-spectrum-peer-review-5g-2023.json #### Directive (EU) 2018/1972 Article 57: Deployment and operation of small-area wireless access points - **ID**: eu-eecc-spectrum-small-area-wireless-access - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This regulation mandates that EU Member States must allow the deployment of small-area wireless access points (SAWAPs) that meet specific technical characteristics without requiring individual prior p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eecc-spectrum-small-area-wireless-access.json #### Regulation (EU) 2024/1183 on electronic identification and trust services for electronic transactions in the European Union (eIDAS 2) - **ID**: eu-eidas-2-regulation-2024-electronic-identity - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: Establishes a framework for the European Digital Identity Wallet (EUDI Wallet), enabling secure, cross-border digital identification and authentication across public and private services. Applies to M... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eidas-2-regulation-2024-electronic-identity.json #### EU eIDAS Regulation 2014/910 -- Electronic Identification and Trust Services for Digital Transactions - **ID**: eu-eidas-regulation-2014-910 - **Category**: Telecoms & Digital Infrastructure - **Version**: 2024.1.0 - **BLUF**: Regulation (EU) 2014/910 (eIDAS) establishes the EU legal framework for electronic identification and trust services. Qualified Electronic Signatures (QES) have the same legal effect as handwritten si... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eidas-regulation-2014-910.json #### Regulation (EU) No 910/2014 of the European Parliament and of the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing Directive 1999/93/EC - **ID**: eu-eidas-trust-services-telecoms-910-2014 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This regulation establishes a pan-European legal framework for electronic identification (eID) and trust services (e-signatures, e-seals, timestamps, electronic registered delivery services, and websi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eidas-trust-services-telecoms-910-2014.json #### EU European Electronic Communications Code 2018/1972 - General Authorisation, Spectrum, End-User Rights, and SMP Regulation - **ID**: eu-electronic-communications-code-2018-1972 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2018/1972 of the European Parliament and of the Council of 11 December 2018 establishing the European Electronic Communications Code (EECC) consolidates and replaces the 2002 EU telecom... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-electronic-communications-code-2018-1972.json #### EU European Electronic Communications Code (EECC) Directive 2018/1972 - **ID**: eu-european-electronic-communications-code-2018-1972 - **Category**: Telecoms & Digital Infrastructure - **Version**: 2.0.0 - **BLUF**: Directive (EU) 2018/1972 (EECC) consolidates EU telecoms regulation into a single framework, requiring providers of electronic communications networks and services to register with national regulatory... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-european-electronic-communications-code-2018-1972.json #### EU European Electronic Communications Code Directive 2018/1972 - Telecoms Authorisation, Net Neutrality, and Consumer Rights - **ID**: eu-european-electronic-communications-code-directive-2018-1972-eecc - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: EU Directive 2018/1972 (EECC) establishes the regulatory framework for electronic communications networks and services, requiring general authorisation notification, spectrum access coordination, whol... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-european-electronic-communications-code-directive-2018-1972-eecc.json #### Directive (EU) 2018/1972 of the European Parliament and of the Council of 11 December 2018 establishing the European Electronic Communications Code - Retail End-User Provisions: Contract Information Requirements, Switching and Number Portability, Emergency Services Access, Tariff Transparency, Roaming Retail Caps and Vulnerable Consumer Protection Measures - **ID**: eu-european-electronic-communications-code-retail - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: This regulation establishes binding requirements for public communications providers to ensure transparent, comparable, and accessible retail contracts, facilitate number portability within one workin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-european-electronic-communications-code-retail.json #### EU Gigabit Infrastructure Act 2024 - **ID**: eu-gigabit-infrastructure-act-2024 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The EU Gigabit Infrastructure Act 2024 requires Member States to facilitate the rollout of symmetrical gigabit-capable networks, as outlined in Article 3, and to ensure the coordination of physical in... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-gigabit-infrastructure-act-2024.json #### EU Lawful Interception Framework - ETSI ES 201 671 and TS 101 331 Handover Interface Standards for Electronic Communications - **ID**: eu-lawful-interception-etsi-standards - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: These ETSI standards mandate that Communications Service Providers (CSPs) implement a standardized Handover Interface (HI) to securely deliver intercepted communications content (CC) and intercept rel... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-lawful-interception-etsi-standards.json #### Regulation (EU) 2015/2120 of the European Parliament and of the Council of 25 November 2015 laying down measures concerning open internet access and amending Directive 2002/22/EC on universal service and users’ rights relating to electronic communications networks and services and Regulation (EU) No 531/2012 on roaming on public mobile communications networks within the Union - **ID**: eu-net-neutrality-open-internet-2015-2120 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This regulation requires providers of internet access services (IAS) in the EU to treat all traffic equally, without discrimination, restriction, or interference, regardless of sender, receiver, conte... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-net-neutrality-open-internet-2015-2120.json #### Regulation (EU) 2015/2120 of the European Parliament and of the Council of 25 November 2015 laying down measures concerning open internet access and amending Directive 2002/22/EC on universal service and users’ rights relating to electronic communications networks and services and Regulation (EU) No 531/2012 on roaming on public mobile communications networks within the Union - 2025 Review Framework on Zero-Rating, Specialised Services, Satellite Broadband and BEREC Guidelines - **ID**: eu-net-neutrality-review-regulation-2015-2120-2025 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This regulation establishes the EU’s open internet framework, requiring internet service providers (ISPs) to treat all traffic equally, prohibiting blocking, throttling, and discrimination, while allo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-net-neutrality-review-regulation-2015-2120-2025.json #### Directive (EU) 2022/2555 (NIS2) for Telecom Operators as Essential Entities: Incident Reporting, Security Measures and Competent Authority Cooperation - **ID**: eu-nis2-telecoms-essential-services - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The EU NIS2 Directive mandates that telecom operators, classified as 'essential entities' under Annex I, implement comprehensive cybersecurity risk-management measures (Article 21) and adhere to stric... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-telecoms-essential-services.json #### BEREC Guidelines on the Implementation of the Open Internet Regulation - **ID**: eu-open-internet-berec-guidelines-2020 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: These BEREC Guidelines provide guidance to National Regulatory Authorities (NRAs) on implementing Regulation (EU) 2015/2120, specifically Articles 3 and 4, to ensure equal and non-discriminatory treat... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-open-internet-berec-guidelines-2020.json #### EU Radio Equipment Directive 2014/53 - Essential Requirements, CE Marking, and Market Surveillance - **ID**: eu-radio-equipment-directive-2014-53 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: Directive 2014/53/EU of the European Parliament and of the Council on the harmonisation of the laws of Member States relating to the making available on the market of radio equipment (RED) became appl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-radio-equipment-directive-2014-53.json #### Commission Delegated Regulation (EU) 2022/30 of 12 November 2021 supplementing Directive 2014/53/EU of the European Parliament and of the Council as regards cybersecurity requirements for radio equipment - **ID**: eu-radio-equipment-directive-2014-53-cybersecurity - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: Radio equipment placed on the EU market, including IoT devices, mobile phones, and wearables, must implement robust cybersecurity safeguards to ensure network resilience, protect user privacy, and pre... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-radio-equipment-directive-2014-53-cybersecurity.json #### Directive 2014/53/EU of the European Parliament and of the Council on the harmonisation of the laws of the Member States relating to the making available on the market of radio equipment (RED), including Commission Delegated Regulation (EU) 2022/30 on cybersecurity - **ID**: eu-radio-equipment-directive-2014-53-red - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This directive establishes a regulatory framework for placing radio equipment on the EU market, mandating compliance with essential requirements for health, safety, electromagnetic compatibility (EMC)... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-radio-equipment-directive-2014-53-red.json #### Decision No 243/2012/EU of the European Parliament and of the Council of 14 March 2012 establishing a multiannual radio spectrum policy programme (RSPP) - **ID**: eu-radio-spectrum-policy-programme-decision - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This decision establishes a multiannual radio spectrum policy programme (RSPP) requiring EU Member States to cooperate with the Commission to develop a strategic framework for managing radio spectrum,... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-radio-spectrum-policy-programme-decision.json #### Regulation (EU) 2022/612 of the European Parliament and of the Council of 6 April 2022 on roaming on public mobile communications networks within the Union (recast) - **ID**: eu-roaming-regulation-2022-612 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This regulation extends the 'Roam Like at Home' scheme until 2032, requiring mobile network operators to provide roaming services at domestic prices within the EU and ensuring customers receive the sa... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-roaming-regulation-2022-612.json #### Regulation (EU) 2018/1724 of the European Parliament and of the Council of 28 November 2018 on establishing a Single Digital Gateway to provide access to information, procedures and assistance and problem-solving services for citizens and businesses - **ID**: eu-single-digital-gateway-regulation-2018-1724 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The EU Single Digital Gateway Regulation requires Member States to provide a single digital entry point for citizens and businesses to access information, procedures, and assistance related to rights ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-single-digital-gateway-regulation-2018-1724.json #### Decision (EU) 2017/899 of the European Parliament and of the Council of 17 May 2017 on the use of the 470-790 MHz frequency band in the Union - **ID**: eu-spectrum-700-mhz-decision-2017-899 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This decision requires EU Member States to make the 694-790 MHz (700 MHz) frequency band available for terrestrial systems capable of providing wireless broadband electronic communications services, s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-spectrum-700-mhz-decision-2017-899.json #### Commission Implementing Regulation (EU) 2020/764 of 29 May 2020 laying down detailed rules concerning the definition of very high-capacity networks - **ID**: eu-very-high-capacity-networks-eecc-definition - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: Defines Very High Capacity Networks (VHCNs) under the European Electronic Communications Code (EECC) as networks capable of providing symmetric 100 Mbps or higher, including FTTP, DOCSIS 3.1 HFC, fixe... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-very-high-capacity-networks-eecc-definition.json #### WiFi4EU - free Wi-Fi in public spaces - **ID**: eu-wifi4eu-public-wireless-connectivity-2021 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The WiFi4EU initiative provides municipalities across the European Union with €15,000 vouchers to install free Wi-Fi in public spaces not already equipped with a free hotspot. Recipient municipalities... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-wifi4eu-public-wireless-connectivity-2021.json #### Emergency Alert System (EAS) Rules Part 11 - **ID**: fcc-emergency-alert-system-part-11 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The FCC Emergency Alert System (EAS) requires EAS participants, including broadcast stations and cable systems, to comply with specific technical standards and operational procedures, as outlined in 4... - **Discovery URL**: https://bidda.com/api/v1/nodes/fcc-emergency-alert-system-part-11.json #### FCC Open Internet Order 2024 - Restoring Net Neutrality: Broadband as Title II Telecommunications Service, No Blocking/Throttling/Paid Prioritisation, Reasonable Network Management, ISP Transparency and FCC Enforcement Authority - **ID**: fcc-net-neutrality-open-internet-2024 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The FCC Open Internet Order 2024 requires ISPs to not block, throttle, or engage in paid prioritization, as stated in Section 8 of the Order, and applies to all broadband internet service providers in... - **Discovery URL**: https://bidda.com/api/v1/nodes/fcc-net-neutrality-open-internet-2024.json #### FCC Part 64 CPNI Rules - Customer Proprietary Network Information: Opt-In/Opt-Out Consent, Account Authentication, Annual Compliance Certification, Breach Notification to FBI and Secret Service within 7 Days, Pretexting Prohibitions - **ID**: fcc-part-64-cpni-customer-proprietary-network - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This regulation requires telecommunications carriers to protect customer proprietary network information (CPNI) and to obtain opt-in or opt-out consent from customers for the use of their CPNI, as sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/fcc-part-64-cpni-customer-proprietary-network.json #### FCC Robocall Mitigation STIR/SHAKEN 2023 - Call Authentication Rules - **ID**: fcc-robocall-mitigation-stir-shaken-2023 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The FCC Robocall Mitigation STIR/SHAKEN 2023 regulation requires voice service providers to implement call authentication using SHAKEN Attestation Levels (A/B/C) as outlined in Article 4, and to submi... - **Discovery URL**: https://bidda.com/api/v1/nodes/fcc-robocall-mitigation-stir-shaken-2023.json #### GSMA Common API Framework (CAPIF) for 5G Networks - API Exposure: 3GPP TS 23.222, API Invoker Onboarding, API Provider Domain, Security Policies, Monitoring, Logging and North-Bound Interface for Third-Party Application Access to Network Capabilities - **ID**: gsma-common-api-framework-capif-5g - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The GSMA CAPIF standard defines secure, interoperable API exposure mechanisms for third-party application access to 5G network capabilities via standardized north-bound interfaces, requiring API provi... - **Discovery URL**: https://bidda.com/api/v1/nodes/gsma-common-api-framework-capif-5g.json #### GSMA Fraud and Security Group (FASG) Network Identity and Risk Recommendations - SIM Swap, Account Takeover and CLI Spoofing Controls - **ID**: gsma-fraud-security-group-nir-recommendations - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This GSMA recommendation provides a framework for Mobile Network Operators (MNOs) to implement controls against identity-related fraud, such as SIM swaps and account takeovers, by establishing risk-ba... - **Discovery URL**: https://bidda.com/api/v1/nodes/gsma-fraud-security-group-nir-recommendations.json #### GSMA Mobile Virtual Network Operator (MVNO) and International Roaming Framework - Inter-Operator Tariff, Steering of Roaming Rules, CAMEL and GPRS Roaming Exchange (GRX), Wholesale Roaming Agreement Templates and Fraud Management - **ID**: gsma-mvno-roaming-framework-best-practice - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: This GSMA framework establishes best practices for MVNOs and MNOs engaging in international roaming, including tariff transparency, steering of roaming, fraud prevention, and technical interoperabilit... - **Discovery URL**: https://bidda.com/api/v1/nodes/gsma-mvno-roaming-framework-best-practice.json #### GSMA NESAS Network Equipment Security Assurance Scheme - Security Evaluation Methodology and Audit Requirements - **ID**: gsma-nesas-network-equipment-security-assurance - **Category**: Telecoms & Digital Infrastructure - **Version**: 3.2.0 - **BLUF**: The GSMA Network Equipment Security Assurance Scheme (NESAS) mandates that network equipment vendors undergo a comprehensive security audit of their development and product lifecycle processes, and a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/gsma-nesas-network-equipment-security-assurance.json #### The Telecommunications Act, 2023 - **ID**: india-telecom-act-2023 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The Telecommunications Act, 2023 establishes a modernized regulatory framework for India's telecom sector, consolidating and replacing legacy laws. It empowers the Department of Telecommunications (Do... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-telecom-act-2023.json #### India Telecom Act 2023 - DoT Spectrum Assignment and Licensing - **ID**: india-telecom-act-2023-dot-spectrum-licensing - **Category**: Telecoms & Digital Infrastructure - **Version**: 2.0.0 - **BLUF**: The Telecommunications Act, 2023 (No. 44 of 2023) replaces the Telegraph Act 1885 and consolidates Indian telecom regulation; it vests all spectrum in the central government, requires a unified licenc... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-telecom-act-2023-dot-spectrum-licensing.json #### India TRAI OTT Communication Services Regulation 2024 - Registration, Quality of Service and Consumer Protection Framework - **ID**: india-trai-ott-regulation-2024 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: India's Telecom Regulatory Authority of India (TRAI) has progressively developed a regulatory framework for Over-the-Top (OTT) communication services following the enactment of the Telecommunications ... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-trai-ott-regulation-2024.json #### Regulation of the Minister of Communication and Informatics of the Republic of Indonesia Number 5 of 2020 concerning Private Electronic System Operators - **ID**: indonesia-permenkominfo-5-2020-private-electronic-systems - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: Private Electronic System Operators (PESOs) in Indonesia operating in strategic sectors must store personal data and transaction records within Indonesia. They must also comply with 24-hour content ta... - **Discovery URL**: https://bidda.com/api/v1/nodes/indonesia-permenkominfo-5-2020-private-electronic-systems.json #### ISO/IEC 27011:2016 Code of Practice for Information Security Controls for Telecommunications Organisations - **ID**: iso-iec-27011-telecoms-information-security - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This standard provides a sector-specific code of practice for implementing information security controls within telecommunications organizations, extending the general guidance of ISO/IEC 27002. It ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-iec-27011-telecoms-information-security.json #### Recommendation ITU-T E.212: International identification plan for public networks and subscriptions - **ID**: itu-e-212-mobile-country-network-codes - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This recommendation defines the structure and assignment principles for the International Mobile Subscriber Identity (IMSI), specifying the format for Mobile Country Codes (MCC) and Mobile Network Cod... - **Discovery URL**: https://bidda.com/api/v1/nodes/itu-e-212-mobile-country-network-codes.json #### ITU-T G-Series Broadband and Optical Access Recommendations - G.984 GPON, G.9807 XGS-PON and G.9804 50G-PON Standards - **ID**: itu-g-series-broadband-optical-access-standards - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This series of ITU-T recommendations defines the physical layer and data link layer specifications for passive optical networks (PONs), ensuring interoperability for equipment manufacturers and networ... - **Discovery URL**: https://bidda.com/api/v1/nodes/itu-g-series-broadband-optical-access-standards.json #### ITU Radio Regulations 2020 Edition - Frequency Allocation Table, Interference Protection and Spectrum Use Coordination - **ID**: itu-radio-regulations-2020-edition - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This international treaty, binding on ITU Member States, governs the global use of the radio-frequency spectrum and satellite orbits by establishing a detailed Table of Frequency Allocations (Article ... - **Discovery URL**: https://bidda.com/api/v1/nodes/itu-radio-regulations-2020-edition.json #### ITU Radio Regulations Article 9 - Procedure for effecting coordination with or obtaining agreement of other administrations - **ID**: itu-radio-regulations-article-9-satellite-coord - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This regulation mandates the procedural framework for national administrations to coordinate satellite network frequency assignments with other administrations to prevent harmful interference before b... - **Discovery URL**: https://bidda.com/api/v1/nodes/itu-radio-regulations-article-9-satellite-coord.json #### Framework and overall objectives of the future development of IMT for 2030 and beyond - **ID**: itu-sg13-imt-2030-6g-framework-2023 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: This ITU-R Recommendation M.2160-0 (11/2023) establishes the framework and overall objectives for the future development of International Mobile Telecommunications (IMT) for 2030 and beyond, including... - **Discovery URL**: https://bidda.com/api/v1/nodes/itu-sg13-imt-2030-6g-framework-2023.json #### ITU-T E.164: The international public telecommunication numbering plan - **ID**: itu-t-e164-numbering-plan - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: This regulation defines the international public telecommunication numbering plan for global telephone number allocation, including country code assignments, national significant number (NSN) structur... - **Discovery URL**: https://bidda.com/api/v1/nodes/itu-t-e164-numbering-plan.json #### ITU-T X.1255 Framework for Discovery of Identity Management Information - Identity Federation and Attribute Exchange - **ID**: itu-x-1255-identity-management-framework - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This recommendation specifies a framework for discovering identity management information, enabling entities to locate identity providers (IdPs) and determine their supported protocols and capabilitie... - **Discovery URL**: https://bidda.com/api/v1/nodes/itu-x-1255-identity-management-framework.json #### Japan Telecommunications Business Act - **ID**: jp-telecommunications-business-act-2001 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Telecommunications Business Act (Act No. 86 of 1984, substantially restructured in 2001 when the Ministry of Posts and Telecommunications became the Ministry of Internal Affairs and Communications... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-telecommunications-business-act-2001.json #### Ley Federal de Telecomunicaciones y Radiodifusión - **ID**: mexico-lftr-telecomunicaciones-radiodifusion-2014 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: This regulation requires that preponderant economic agents, such as América Móvil, comply with must-carry and must-offer obligations, as stated in Article 131 of the LFTR. It applies to all telecommun... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-lftr-telecomunicaciones-radiodifusion-2014.json #### NIST SP 800-187 Guide to LTE Security - Authentication Architecture, Encryption Algorithms and LTE Threat Vectors - **ID**: nist-sp-800-187-guide-lte-security - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This guide provides federal agencies and commercial organizations with detailed information on the security architecture of Long-Term Evolution (LTE) networks, focusing on the Authentication and Key A... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-187-guide-lte-security.json #### OECD Going Digital Toolkit - Broadband Policy Module: Infrastructure Investment, Spectrum Policy, Net Neutrality Assessment, Digital Connectivity Statistics and National Broadband Plan Benchmarking Methodology - **ID**: oecd-going-digital-toolkit-telecoms-policy - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: This OECD policy module provides a benchmarking framework for national broadband strategies, requiring governments to assess infrastructure investment incentives, spectrum allocation efficiency, net n... - **Discovery URL**: https://bidda.com/api/v1/nodes/oecd-going-digital-toolkit-telecoms-policy.json #### Singapore Telecommunications Act 1999 - **ID**: sg-telecommunications-act-1999 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Telecommunications Act (Cap. 323, 2000 Rev. Ed.), last amended in 2018, requires any person who wishes to establish or maintain a telecommunication system or provide telecommunication services in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-telecommunications-act-1999.json #### Telecommunications Act 1999 - **ID**: singapore-telecommunications-act-1999-imda - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The Telecommunications Act 1999 requires public telecommunication licensees to comply with the provisions of Part 2, including section 3 on exclusive privilege with respect to telecommunications and s... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-telecommunications-act-1999-imda.json #### Telecommunications Business Act - **ID**: south-korea-telecommunications-business-act-2022 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The Telecommunications Business Act requires telecommunications operators in South Korea to obtain a license from the Korea Communications Commission (KCC) prior to commencing operations, as stated in... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-korea-telecommunications-business-act-2022.json #### UK Communications Act 2003 - Ofcom Licensing, Electronic Communications, and Broadcasting Regulation - **ID**: uk-communications-act-2003 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Communications Act 2003 (c. 21) is the principal legislation governing electronic communications networks and services (ECNS), broadcasting, and the regulation of communications in the United King... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-communications-act-2003.json #### Communications Act 2003 - Must-Carry Obligations for Public Service Broadcasting Channels on Electronic Communications Networks - **ID**: uk-communications-act-2003-must-carry - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The Communications Act 2003 imposes must-carry obligations on providers of electronic communications networks to ensure public service broadcasting channels are carried and prominently displayed, part... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-communications-act-2003-must-carry.json #### Communications Act 2003: OFCOM Regulatory Framework, Must-Carry Obligations and Broadcasting Code Enforcement - **ID**: uk-communications-act-2003-ofcom-framework - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The UK Communications Act 2003 establishes the Office of Communications (Ofcom) as the primary regulator for the UK's broadcasting and telecommunications industries, mandating 'must-carry' obligations... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-communications-act-2003-ofcom-framework.json #### UK Communications Act 2003 Section 105A - Duty to Take Security Measures (Inserted by Telecommunications (Security) Act 2021, Public Electronic Communications Network or Service, Identifying/Reducing/Preparing for Security Compromises, Definition of Security Compromise, Statutory Exception for Lawful Activity) - **ID**: uk-communications-act-2003-section-105a-network-security-duty - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: Section 105A of the Communications Act 2003 (c. 21), as inserted by the Telecommunications (Security) Act 2021, imposes the foundational telecoms security duty on providers of public electronic commun... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-communications-act-2003-section-105a-network-security-duty.json #### UK Communications Act 2003 Section 127 - Improper Use of Public Electronic Communications Network (Grossly Offensive Indecent Obscene Menacing Message, False Message for Annoyance, Persistent Use) - **ID**: uk-communications-act-2003-section-127-improper-use-electronic-communications - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: Section 127 of the Communications Act 2003 (c. 21) creates two summary criminal offences relating to improper use of a public electronic communications network - one of the principal UK online harm cr... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-communications-act-2003-section-127-improper-use-electronic-communications.json #### Investigatory Powers Act 2016: Bulk Interception Warrants, Communications Data Retention and Equipment Interference Obligations - **ID**: uk-investigatory-powers-act-2016-telecoms - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The UK Investigatory Powers Act 2016 legally obligates telecommunications and postal operators to retain specific communications data for up to 12 months upon notice (Part 4, Section 87) and to provid... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-investigatory-powers-act-2016-telecoms.json #### Online Safety Act 2023 - Duties for Category 1 and 2 Services regarding Illegal Content and Safety by Design - **ID**: uk-online-safety-act-2023-network-duties - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The UK Online Safety Act 2023 imposes legally binding duties on providers of user-to-user services (categorised as 1 or 2A/2B) and search services to conduct comprehensive illegal content risk assessm... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-online-safety-act-2023-network-duties.json #### Product Security and Telecommunications Infrastructure Act 2022 - Part 1: Product Security - **ID**: uk-product-security-telecoms-infrastructure-2022 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This UK law mandates that manufacturers, importers, and distributors of consumer connectable products (IoT devices) comply with minimum security requirements. As detailed in Part 1 and Schedule 1, the... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-product-security-telecoms-infrastructure-2022.json #### UK Shared Rural Network Agreement 2020 - MNO Commitments: 95% Geographic Coverage, Shared Infrastructure, and Ofcom Monitoring Framework - **ID**: uk-shared-rural-network-agreement-2020 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: Mobile Network Operators (EE, Three, O2, Vodafone) must achieve 95% geographic coverage of the UK by 2026 through shared infrastructure deployment, excluding spot coverage, with priority in the Scotti... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-shared-rural-network-agreement-2020.json #### UK SI 2020/1062 Regulation 47 - Video-Sharing Platform Services Regime (Communications Act 2003 Part 4B) - **ID**: uk-si-2020-1062-vsp-regime-communications-act - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Audiovisual Media Services Regulations 2020 (UK SI 2020/1062) implemented the EU Audiovisual Media Services Directive (Directive 2010/13/EU as amended by Directive 2018/1808) in UK law; Regulation... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-si-2020-1062-vsp-regime-communications-act.json #### UK Telecommunications (Security) Act 2021 - Public Telecoms Network and Service Security Duties - **ID**: uk-telecommunications-security-act-2021-ofcom-vendor - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Telecommunications (Security) Act 2021 (UK) amends the Communications Act 2003 to create a statutory security framework for public electronic communications networks and services through new secti... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-telecommunications-security-act-2021-ofcom-vendor.json #### UK Telecommunications Security Act 2021 c.31 Provider Security Duties Designated Vendor Directions OFCOM Enforcement and Code of Practice Framework - **ID**: uk-telecoms-security-act-2021-c31 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The United Kingdom Telecommunications (Security) Act 2021 c.31 establishes a statutory framework for the security of public electronic communications networks and services organised in 9 parts coverin... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-telecoms-security-act-2021-c31.json #### UK Wireless Telegraphy Act 2006: Spectrum Licensing, Trading and the Offence of Unauthorised Use - **ID**: uk-wireless-telegraphy-act-2006 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Wireless Telegraphy Act 2006 is the principal UK statute governing the use and management of the radio spectrum, administered by the Office of Communications (OFCOM). Section 1 sets OFCOM's genera... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-wireless-telegraphy-act-2006.json #### Wireless Telegraphy Act 2006 - **ID**: uk-wireless-telegraphy-act-2006-spectrum - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The Wireless Telegraphy Act 2006 requires that the use of wireless telegraphy apparatus be licensed, with certain exemptions, as outlined in Section 8. The Act applies to anyone using wireless telegra... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-wireless-telegraphy-act-2006-spectrum.json #### US 47 CFR Part 64 Subpart HH: Caller ID Authentication STIR/SHAKEN (TRACED Act) - **ID**: us-47-cfr-part-64-fcc-robocall-stir-shaken-traced-act - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: US 47 CFR Part 64 Subpart HH implements the Pallone-Thune TRACED Act of 2019 by requiring voice service providers to deploy the STIR/SHAKEN call authentication framework on IP networks. Voice service ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-47-cfr-part-64-fcc-robocall-stir-shaken-traced-act.json #### 47 CFR Part 9 - FCC 911, E911, and Next Generation 911 Service Requirements - **ID**: us-47-cfr-part-9-fcc-911-emergency-service-requirements - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: Telecommunications carriers, Commercial Mobile Radio Service (CMRS) providers, interconnected and one-way VoIP providers, Telecommunications Relay Service (TRS) providers, and covered text providers m... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-47-cfr-part-9-fcc-911-emergency-service-requirements.json #### 47 USC § 222 - Privacy of Customer Information (CPNI - Customer Proprietary Network Information) - **ID**: us-47-usc-222-cpni-customer-network-information - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: 47 USC § 222 (Telecommunications Act of 1996, Pub. L. 104-104; amended by Wireless Communications and Public Safety Act of 1999 Pub. L. 106-81 and CALEA-related amendments) imposes privacy obligations... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-47-usc-222-cpni-customer-network-information.json #### 47 USC § 230 - Communications Decency Act Section 230 (Platform Immunity) - **ID**: us-47-usc-230-cda-section-230-platform-immunity - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: 47 USC § 230 (Section 230 of the Communications Decency Act of 1996, Pub. L. 104-104 Title V) provides federal statutory immunity to providers and users of interactive computer services from liability... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-47-usc-230-cda-section-230-platform-immunity.json #### US Cable Communications Policy Act (47 USC ch 5 subch V-A): Franchising, Franchise Fees and Subscriber Privacy - **ID**: us-cable-communications-policy-act - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Cable Communications Policy Act of 1984 (47 U.S.C. ch. 5, subchapter V-A) established the federal framework for the regulation of cable television systems and the relationship between cable operat... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cable-communications-policy-act.json #### Communications Assistance for Law Enforcement Act (CALEA) - Carrier Technical Capability Obligations - **ID**: us-calea-communications-assistance-law-enforcement - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Communications Assistance for Law Enforcement Act (CALEA) requires telecommunications carriers to design and modify their networks and services to ensure they have the built-in capability to compl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-calea-communications-assistance-law-enforcement.json #### US Communications Act of 1934 (47 USC ch 5): FCC Authority, Common-Carrier Duties, Radio Licensing and Penalties - **ID**: us-communications-act-1934 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Communications Act of 1934 (47 U.S.C. ch. 5) is the foundational federal statute for the regulation of interstate and foreign wire and radio communication, administered by the Federal Communicatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-communications-act-1934.json #### US Communications Assistance for Law Enforcement Act (CALEA, 47 USC ch 9): Carrier Surveillance Capability - **ID**: us-communications-assistance-for-law-enforcement-act - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Communications Assistance for Law Enforcement Act of 1994 (CALEA, 47 U.S.C. ch. 9) requires telecommunications carriers to design their equipment, facilities and services so that they can enable l... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-communications-assistance-for-law-enforcement-act.json #### 47 CFR Part 15 - Radio Frequency Devices (FCC) - **ID**: us-fcc-47-cfr-15-radio-frequency-devices - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: FCC 47 CFR Part 15 governs radio frequency devices, allowing operation without an individual license provided the device causes no harmful interference and accepts interference, and requiring manufact... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-47-cfr-15-radio-frequency-devices.json #### 47 CFR Part 54 - Universal Service (FCC) - **ID**: us-fcc-47-cfr-54-universal-service-fund - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: FCC 47 CFR Part 54 governs the federal universal service support mechanisms administered through USAC, setting the intended use of support, eligible telecommunications carrier designation, high-cost b... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-47-cfr-54-universal-service-fund.json #### 47 CFR Part 90 - Private Land Mobile Radio Services (FCC) - **ID**: us-fcc-47-cfr-90-private-land-mobile-radio-services - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: FCC 47 CFR Part 90 governs the private land mobile radio services, requiring licensees to confirm scope and definitions, establish eligibility in the public safety or industrial/business pools, meet a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-47-cfr-90-private-land-mobile-radio-services.json #### Empowering Broadband Consumers Through Transparency: Broadband Consumer Labels (47 CFR Part 8) - **ID**: us-fcc-broadband-consumer-labels-2024 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This rule requires U.S. Internet Service Providers (ISPs) to display, at the point of sale, a standardized, easy-to-understand 'Broadband Consumer Label' detailing prices, speeds, data allowances, and... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-broadband-consumer-labels-2024.json #### FCC Broadband Equity Access and Deployment (BEAD) Program Implementation - $42.5B NTIA Grant: Eligible Entity Priority Areas, Covered Broadband Projects, Speed Threshold (100/20 Mbps), Affordability Requirements, Non-Wired Technology Priority and Reporting - **ID**: us-fcc-broadband-equity-access-deployment-2024 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.1 - **BLUF**: The BEAD Program, administered by NTIA under the Infrastructure Investment and Jobs Act, requires state-identified eligible entities to deploy future-proof broadband infrastructure achieving minimum 1... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-broadband-equity-access-deployment-2024.json #### 47 CFR Part 64 - Miscellaneous Rules Relating to Common Carriers - **ID**: us-fcc-cfr-47-part-64-cpni-customer-proprietary - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This regulation establishes miscellaneous rules for common carriers, including restrictions on indecent telephone messages, procedures for emergency services, and comprehensive standards for providing... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-cfr-47-part-64-cpni-customer-proprietary.json #### Title 47 CFR Part 15: Radio Frequency Devices - **ID**: us-fcc-part-15-unlicensed-radio-frequency-devices - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This regulation establishes technical standards, certification requirements, and operating conditions for unlicensed radio frequency (RF) devices in the United States to ensure they do not cause harmf... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-part-15-unlicensed-radio-frequency-devices.json #### Rural Digital Opportunity Fund (RDOF) Phase I: Auction Eligibility, Build-Out Milestones and Performance Measurement Rules - **ID**: us-fcc-rdof-rural-broadband-fund-rules - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The FCC's Rural Digital Opportunity Fund (RDOF) provides subsidies to telecommunications carriers for deploying high-speed broadband networks in unserved rural areas. Winning bidders of the Phase I re... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-rdof-rural-broadband-fund-rules.json #### US FCC Spectrum Frontiers Order 2016 - mmWave 5G Spectrum Allocation, LMDS Band Expansion and Licensed Fixed Satellite Service Coordination - **ID**: us-fcc-spectrum-frontiers-5g-order-2016 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The FCC Spectrum Frontiers First Report and Order (FCC 16-89, released 14 July 2016) established the world's first regulatory framework for the commercial use of millimetre wave (mmWave) spectrum for ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-spectrum-frontiers-5g-order-2016.json #### US FCC STIR/SHAKEN Framework (TRACED Act) - Call Authentication Standards, Analytics Labelling and Robocall Blocking Obligations - **ID**: us-fcc-stir-shaken-robocall-mitigation - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: Mandates that voice service providers implement the STIR/SHAKEN call authentication framework on their IP networks to combat illegal robocalls by digitally signing originating calls, as required by th... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-stir-shaken-robocall-mitigation.json #### US FCC Telecommunications Act 1996 47 USC 151 - Open Access, Interconnection, and Universal Service Obligations - **ID**: us-fcc-telecommunications-act-1996-47-usc-151-open-access-interoperability - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The US Telecommunications Act 1996 (47 USC) requires incumbent local exchange carriers to provide interconnection, network unbundling, and collocation to competitors, mandates universal service fund c... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fcc-telecommunications-act-1996-47-usc-151-open-access-interoperability.json #### US FCC Lifeline Program Rules - Affordable Connectivity for Low-Income Consumers and Broadband Benefit Eligibility - **ID**: us-lifeline-program-low-income-broadband - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The FCC's Lifeline program requires Eligible Telecommunications Carriers (ETCs) to provide a monthly discount on qualifying broadband or voice services to low-income households. As specified in 47 C.F... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-lifeline-program-low-income-broadband.json #### US TCPA Telephone Consumer Protection Act - Autodialer Restrictions, Prior Express Consent and Do-Not-Call Registry Compliance - **ID**: us-tcpa-telephone-consumer-protection-act - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Telephone Consumer Protection Act (TCPA) restricts telemarketing communications, specifically prohibiting the use of automatic telephone dialing systems (autodialers) and artificial or prerecorded... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tcpa-telephone-consumer-protection-act.json #### Telecommunications Act of 1996 - **ID**: us-telecommunications-act-1996 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The US Telecommunications Act of 1996 mandates the opening of local telecommunications markets to competition by requiring incumbent local exchange carriers (ILECs) to interconnect with competitors un... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-telecommunications-act-1996.json #### US Telecommunications Act 1996 - FCC Common Carrier and Broadband Regulation - **ID**: us-telecommunications-act-1996-fcc-broadband-neutrality - **Category**: Telecoms & Digital Infrastructure - **Version**: 2.0.0 - **BLUF**: The Telecommunications Act of 1996 (Pub.L. 104-104) modernised US communications law, establishing FCC authority over common carriers, interconnection, universal service (USF), and spectrum management... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-telecommunications-act-1996-fcc-broadband-neutrality.json #### US Telephone Consumer Protection Act (47 USC 227): Autodialed Calls, the Do-Not-Call Registry and Statutory Damages - **ID**: us-telephone-consumer-protection-act - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Telephone Consumer Protection Act of 1991 (TCPA, 47 U.S.C. 227) restricts unsolicited automated calls, prerecorded messages, and faxes, and is enforced by the Federal Communications Commission and... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-telephone-consumer-protection-act.json #### US Wiretap Act (18 USC ch 119): Interception of Wire, Oral and Electronic Communications - **ID**: us-wiretap-act - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: The Wiretap Act, Title III of the Omnibus Crime Control Act as amended by the Electronic Communications Privacy Act (18 U.S.C. ch. 119), prohibits the interception of wire, oral and electronic communi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wiretap-act.json #### Electronic Communications Act, 2005 (Act No. 36 of 2005) - **ID**: za-electronic-communications-act-36-2005 - **Category**: Telecoms & Digital Infrastructure - **Version**: 1.0.0 - **BLUF**: This Act establishes the regulatory framework for South Africa's electronic communications sector, requiring all providers of electronic communications networks, services, and broadcasting services to... - **Discovery URL**: https://bidda.com/api/v1/nodes/za-electronic-communications-act-36-2005.json ### Trade Compliance & Export Controls (106 nodes) #### Australia Autonomous Sanctions Act 2011: Regulations to Apply Sanctions, Extraterritorial Effect, Injunctions, and Offences for Contravention or False Information - **ID**: au-autonomous-sanctions-act-2011 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Australian Autonomous Sanctions Act 2011, Act No. 38 of 2011, is the principal Commonwealth statute authorising Australian autonomous sanctions imposed independently of obligations under United Na... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-autonomous-sanctions-act-2011.json #### Australia Customs Act 1901: Customs Control of Goods, Importation, Exportation, Prohibited Imports and Exports, and Customs Penal Provisions - **ID**: au-customs-act-1901 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Australian Customs Act 1901, Act No. 6 of 1901, is the foundational Commonwealth statute governing the entry, examination, control, importation and exportation of goods across the Australian custo... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-customs-act-1901.json #### AU Defence Export Controls - Defence Trade Controls Act 2012 and Defence and Strategic Goods List - **ID**: au-defence-export-controls-act-2012-military-dual-use-goods-permits - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Australian Defence Export Controls (DEC) regime under the Defence Trade Controls Act 2012 regulates the export, supply, brokering, and publication of goods and technology listed on the Defence and... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-defence-export-controls-act-2012-military-dual-use-goods-permits.json #### Canada Customs Act: Report of Goods, Liability for Duties, Release and Accounting, Determination and Re-determination of Value/Origin/Classification, Appeals to CITT, and False Statement Offence - **ID**: canada-customs-act - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Canada Customs Act, R.S.C. 1985, c. 1 (2nd Supp.), is the principal Canadian statute governing the importation and exportation of goods across the Canadian customs frontier and is administered by ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-customs-act.json #### Canada Defence Production Act (R.S.C. 1985, c. D-1): Interpretation, Powers and Duties of the Minister, Acquisition of Defence Supplies, the Controlled Goods Program, Registration and Examination, Prohibited Activities, and Offences - **ID**: canada-defence-production-act - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Defence Production Act, R.S.C. 1985, c. D-1, is the principal Canadian statute providing for the acquisition of defence supplies and the operation of the Controlled Goods Program restricting acces... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-defence-production-act.json #### Canada Export and Import Permits Act (EIPA): Export Control List, Import Control List, Area Control List, Permits, and Prohibition on Unauthorized Export - **ID**: canada-export-import-permits-act-eipa - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Canada Export and Import Permits Act, R.S.C. 1985, c. E-19, commonly cited as EIPA, is the principal Canadian statute governing the control of exports and imports of designated goods and technolog... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-export-import-permits-act-eipa.json #### Canada Justice for Victims of Corrupt Foreign Officials Act (Sergei Magnitsky Law) (S.C. 2017, c. 21): Interpretation, Orders and Regulations, Prohibitions on Dealings, Duty to Determine, Disclosure Obligations, Rights of Foreign Nationals, and Offences - **ID**: canada-justice-victims-corrupt-foreign-officials-act - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Justice for Victims of Corrupt Foreign Officials Act (Sergei Magnitsky Law), S.C. 2017, c. 21, received Royal Assent on 18 October 2017 and is the principal Canadian statute providing for restrict... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-justice-victims-corrupt-foreign-officials-act.json #### Canada Special Economic Measures Act (SEMA): Sanctions Authority, Orders and Regulations, Permits, Ministerial Administration, and Parliamentary Reporting - **ID**: canada-special-economic-measures-act-sema - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Canada Special Economic Measures Act, enacted as S.C. 1992, c. 17 and commonly cited as SEMA, is the principal Canadian statute authorising autonomous economic sanctions against foreign states, en... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-special-economic-measures-act-sema.json #### Canada Special Economic Measures Belarus Regulations SOR/2020-214 Designated Persons Asset Freeze Goods Controls and Five Schedule Designation Framework - **ID**: canada-special-economic-measures-belarus-regulations-sor-2020-214 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Special Economic Measures (Belarus) Regulations SOR/2020-214 establish Canada autonomous sanctions targeting Belarus made under the Special Economic Measures Act in response to a grave breach of i... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-special-economic-measures-belarus-regulations-sor-2020-214.json #### Canada Special Economic Measures (Iran) Regulations SOR/2010-165 Asset Freeze Dual-Use Export Controls Nuclear and Ballistic Missile Provisions and Human Rights Designations - **ID**: canada-special-economic-measures-iran-regulations-sor-2010-165 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Special Economic Measures (Iran) Regulations SOR/2010-165 are Canada's autonomous sanctions framework against Iran made under the Special Economic Measures Act in response to a Governor in Council... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-special-economic-measures-iran-regulations-sor-2010-165.json #### Canada Special Economic Measures (Russia) Regulations SOR/2014-58 - Asset Freeze Trade and Service Prohibitions and Restricted Goods List Against Russia - **ID**: canada-special-economic-measures-russia-regulations-sor-2014-58 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Special Economic Measures (Russia) Regulations SOR/2014-58 are Canada's autonomous sanctions framework against Russia made under the Special Economic Measures Act and organised across sections def... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-special-economic-measures-russia-regulations-sor-2014-58.json #### Canada Special Economic Measures Venezuela Regulations SOR/2017-204 Designated Persons Asset Freeze Dealings Prohibition and Schedule of Designated Individuals - **ID**: canada-special-economic-measures-venezuela-regulations-sor-2017-204 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Special Economic Measures (Venezuela) Regulations SOR/2017-204 establish Canada autonomous sanctions targeting Venezuela in response to a grave breach of international peace and security made unde... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-special-economic-measures-venezuela-regulations-sor-2017-204.json #### EAR Dual-Use Export Control - **ID**: ear-dual-use-export - **Category**: Trade Compliance & Export Controls - **Version**: 1.1.0 - **BLUF**: The Export Administration Regulations (EAR) govern the export of 'Dual-Use' items-commercial commodities, software, and technology that also have potential military or proliferation applications. It i... - **Discovery URL**: https://bidda.com/api/v1/nodes/ear-dual-use-export.json #### Regulation (EU) 2021/821 of the European Parliament and of the Council of 20 May 2021 setting up a Union regime for the control of exports, brokering, technical assistance, transit and transfer of dual-use items - **ID**: eu-dual-use-regulation-2021-821 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: This regulation establishes a comprehensive EU-wide framework for controlling the export, brokering, technical assistance, transit, and transfer of dual-use items, including both tangible goods and in... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dual-use-regulation-2021-821.json #### ITAR Compliance Workflow - **ID**: itar-compliance-workflow - **Category**: Trade Compliance & Export Controls - **Version**: 1.1.1 - **BLUF**: The International Traffic in Arms Regulations (ITAR) control the export and temporary import of defense articles and defense services on the United States Munitions List (USML). Compliance is mandator... - **Discovery URL**: https://bidda.com/api/v1/nodes/itar-compliance-workflow.json #### ITAR Export Control Logic - **ID**: itar-license-check - **Category**: Trade Compliance & Export Controls - **Version**: 1.1.0 - **BLUF**: Mandatory controls for the export, re-export, and brokering of defense articles, services, and technical data listed on the United States Munitions List (USML). - **Discovery URL**: https://bidda.com/api/v1/nodes/itar-license-check.json #### UK Burma (Sanctions) (EU Exit) Regulations 2019 SI 2019/136 Asset Freezes Immigration Restrictions Military Goods Interception Equipment Controls and Maritime Enforcement - **ID**: uk-burma-sanctions-eu-exit-regulations-2019-si-136 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Burma (Sanctions) (EU Exit) Regulations 2019 establish the United Kingdom autonomous sanctions framework targeting Myanmar organised in 10 parts covering general provisions in Part 1, designation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-burma-sanctions-eu-exit-regulations-2019-si-136.json #### UK Burundi (Sanctions) (EU Exit) Regulations 2019 SI 2019/1142 Autonomous Asset Freezes Immigration Restrictions and Enforcement - **ID**: uk-burundi-sanctions-eu-exit-regulations-2019-si-1142 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Burundi (Sanctions) (EU Exit) Regulations 2019 establish the United Kingdom autonomous sanctions framework targeting Burundi organised in 8 parts covering general provisions in Part 1, designation... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-burundi-sanctions-eu-exit-regulations-2019-si-1142.json #### UK Central African Republic (Sanctions) (EU Exit) Regulations 2020 SI 2020/616 UN Implementation Asset Freeze Military Goods and Armed Hostilities Restrictions - **ID**: uk-central-african-republic-sanctions-eu-exit-regulations-2020-si-616 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Central African Republic (Sanctions) (EU Exit) Regulations 2020 establish the United Kingdom's framework implementing the UN Security Council CAR sanctions regime organised in 10 parts covering ge... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-central-african-republic-sanctions-eu-exit-regulations-2020-si-616.json #### UK Chemical Weapons (Sanctions) (EU Exit) Regulations 2019 SI 2019/618 - Asset Freeze and Immigration Sanctions Targeting Chemical Weapons Proliferation - **ID**: uk-chemical-weapons-sanctions-eu-exit-regulations-2019-si-618 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Chemical Weapons (Sanctions) (EU Exit) Regulations 2019 establish the United Kingdom's autonomous sanctions framework targeting persons involved in the proliferation use stockpiling research or tr... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-chemical-weapons-sanctions-eu-exit-regulations-2019-si-618.json #### UK Counter-Terrorism (International Sanctions) (EU Exit) Regulations 2019 SI 2019/573 Autonomous Counter-Terrorism Asset Freeze Trade and Immigration Sanctions - **ID**: uk-counter-terrorism-international-sanctions-eu-exit-regulations-2019-si-573 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Counter-Terrorism (International Sanctions) (EU Exit) Regulations 2019 establish the United Kingdom's autonomous counter-terrorism sanctions framework targeting persons involved in or connected wi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-counter-terrorism-international-sanctions-eu-exit-regulations-2019-si-573.json #### United Kingdom Customs and Excise Management Act 1979 (CEMA): Customs Control, Importation and Exportation Procedures, Forfeiture, Penalties for Improper Importation, Untrue Declarations, and Fraudulent Evasion of Duty - **ID**: uk-customs-excise-management-act-1979 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The United Kingdom Customs and Excise Management Act 1979, chapter 2 of 1979, commonly cited as CEMA, is the foundational United Kingdom statute establishing the administrative framework for customs a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-customs-excise-management-act-1979.json #### UK Cyber (Sanctions) (EU Exit) Regulations 2020 SI 2020/597 - Asset Freeze and Immigration Sanctions Against Cyber Threat Actors - **ID**: uk-cyber-sanctions-eu-exit-regulations-2020-si-597 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Cyber (Sanctions) (EU Exit) Regulations 2020 establish the United Kingdom's autonomous sanctions regime targeting cyber threat actors organised in seven parts covering general provisions and purpo... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-cyber-sanctions-eu-exit-regulations-2020-si-597.json #### UK Democratic People's Republic of Korea (Sanctions) (EU Exit) Regulations 2019 SI 2019/411 Comprehensive Asset Freeze Ship Specification Trade and Aircraft Sanctions - **ID**: uk-dprk-sanctions-eu-exit-regulations-2019-si-411 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Democratic People's Republic of Korea (Sanctions) (EU Exit) Regulations 2019 implement the UK comprehensive sanctions regime against the DPRK organised in 13 parts covering general provisions in P... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-dprk-sanctions-eu-exit-regulations-2019-si-411.json #### UK Democratic Republic of the Congo (Sanctions) (EU Exit) Regulations 2019 SI 2019/433 UN Implementation Asset Freeze Military Goods and Armed Hostilities Restrictions - **ID**: uk-drc-sanctions-eu-exit-regulations-2019-si-433 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Democratic Republic of the Congo (Sanctions) (EU Exit) Regulations 2019 establish the United Kingdom's framework implementing the UN Security Council DRC sanctions regime organised in 10 parts cov... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-drc-sanctions-eu-exit-regulations-2019-si-433.json #### United Kingdom Export Control Act 2002: Export Controls, Transfer Controls, Technical Assistance Controls, Trade Controls, Restrictions, Order-Making Authority, and Annual Reporting - **ID**: uk-export-control-act-2002 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The United Kingdom Export Control Act 2002, chapter 28 of 2002, is the principal United Kingdom statute authorising the Secretary of State to impose controls on the export of goods, the transfer of te... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-export-control-act-2002.json #### UK Global Anti-Corruption Sanctions Regulations 2021 SI 2021/488 - Asset Freeze and Immigration Sanctions Targeting Serious Corruption Worldwide - **ID**: uk-global-anti-corruption-sanctions-regulations-2021-si-488 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Global Anti-Corruption Sanctions Regulations 2021 establish the United Kingdom's autonomous Magnitsky-style sanctions regime targeting individuals and entities involved in serious corruption organ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-global-anti-corruption-sanctions-regulations-2021-si-488.json #### UK Global Human Rights Sanctions Regulations 2020 SI 2020/680 - Magnitsky-Style Asset Freeze and Immigration Sanctions for Serious Human Rights Violations - **ID**: uk-global-human-rights-sanctions-regulations-2020-si-680 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Global Human Rights Sanctions Regulations 2020 establish the United Kingdom's autonomous Magnitsky-style sanctions regime targeting individuals and entities responsible for serious human rights vi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-global-human-rights-sanctions-regulations-2020-si-680.json #### UK Guinea (Sanctions) (EU Exit) Regulations 2019 SI 2019/1145 Asset Freeze Immigration Sanctions and Trade Restrictions Following EU Exit - **ID**: uk-guinea-sanctions-eu-exit-regulations-2019-si-1145 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Guinea (Sanctions) (EU Exit) Regulations 2019 establish the United Kingdom's autonomous sanctions framework targeting persons connected with serious human rights violations or undermining democrac... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-guinea-sanctions-eu-exit-regulations-2019-si-1145.json #### UK Iran (Sanctions) (Human Rights) (EU Exit) Regulations 2019 SI 2019/134 - Asset Freeze Trade Restrictions and Surveillance Equipment Controls Targeting Iranian Human Rights Violations - **ID**: uk-iran-sanctions-human-rights-eu-exit-regulations-2019-si-134 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Iran (Sanctions) (Human Rights) (EU Exit) Regulations 2019 implement the United Kingdom's autonomous human-rights focused sanctions framework targeting Iranian officials and entities responsible f... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-iran-sanctions-human-rights-eu-exit-regulations-2019-si-134.json #### UK Iran (Sanctions) (Nuclear) (EU Exit) Regulations 2019 SI 2019/461 Nuclear Proliferation Asset Freeze Trade and Maritime Sanctions Distinct from Iran Human Rights Regime - **ID**: uk-iran-sanctions-nuclear-eu-exit-regulations-2019-si-461 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Iran (Sanctions) (Nuclear) (EU Exit) Regulations 2019 establish the United Kingdom's autonomous sanctions framework targeting Iranian nuclear proliferation activities organised in 10 parts coverin... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-iran-sanctions-nuclear-eu-exit-regulations-2019-si-461.json #### UK Iraq (Sanctions) (EU Exit) Regulations 2020 SI 2020/707 UN Implementation Partial Asset Freeze Cultural Property Controls and Military Goods Prohibitions - **ID**: uk-iraq-sanctions-eu-exit-regulations-2020-si-707 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Iraq (Sanctions) (EU Exit) Regulations 2020 establish the United Kingdom's framework implementing the legacy UN Security Council Iraq sanctions regime organised in 9 parts covering general provisi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-iraq-sanctions-eu-exit-regulations-2020-si-707.json #### UK ISIL (Da'esh) and Al-Qaida (United Nations Sanctions) (EU Exit) Regulations 2019 SI 2019/466 - UN Security Council Asset Freeze and Counter-Terrorism Trade Restrictions - **ID**: uk-isil-daesh-al-qaida-un-sanctions-eu-exit-regulations-2019-si-466 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The ISIL (Da'esh) and Al-Qaida (United Nations Sanctions) (EU Exit) Regulations 2019 implement the United Nations Security Council ISIL Al-Qaida sanctions list in UK law organised in ten parts coverin... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-isil-daesh-al-qaida-un-sanctions-eu-exit-regulations-2019-si-466.json #### UK Libya (Sanctions) (EU Exit) Regulations 2020 SI 2020/1665 UN Implementation Asset Freezes Military Goods Ship and Aircraft Restrictions and Maritime Enforcement - **ID**: uk-libya-sanctions-eu-exit-regulations-2020-si-1665 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Libya (Sanctions) (EU Exit) Regulations 2020 establish the United Kingdom framework implementing the UN Security Council Libya sanctions regime organised in 12 parts covering general provisions in... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-libya-sanctions-eu-exit-regulations-2020-si-1665.json #### UK Mali (Sanctions) (EU Exit) Regulations 2020 SI 2020/705 UN Implementation Asset Freezes Immigration Restrictions and Enforcement - **ID**: uk-mali-sanctions-eu-exit-regulations-2020-si-705 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Mali (Sanctions) (EU Exit) Regulations 2020 establish the United Kingdom framework implementing the UN Security Council Mali sanctions regime under Resolution 2374 (2017) organised in 8 parts cove... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-mali-sanctions-eu-exit-regulations-2020-si-705.json #### United Kingdom National Security and Investment Act 2021 (NSIA): Call-in Notice, Notifiable Acquisitions, Mandatory Notification Procedure, Voluntary Notification, Interim Orders, Final Orders, Criminal Offences for Completion Without Approval, and the Investment Security Unit - **ID**: uk-national-security-investment-act-2021 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The National Security and Investment Act 2021, chapter 25 of 2021, received Royal Assent on 29 April 2021 and entered into substantive force on 4 January 2022 and is the principal United Kingdom statu... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-national-security-investment-act-2021.json #### UK Nicaragua (Sanctions) (EU Exit) Regulations 2020 SI 2020/610 Asset Freeze Immigration Sanctions and Treasury Licensing Framework - **ID**: uk-nicaragua-sanctions-eu-exit-regulations-2020-si-610 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Nicaragua (Sanctions) (EU Exit) Regulations 2020 establish the United Kingdom's autonomous sanctions framework targeting Nicaraguan officials and connected persons responsible for serious human ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-nicaragua-sanctions-eu-exit-regulations-2020-si-610.json #### UK Republic of Belarus (Sanctions) (EU Exit) Regulations 2019 SI 2019/600 - Asset Freeze Trade Restrictions and Russia-Aligned Sanctions Architecture - **ID**: uk-republic-belarus-sanctions-eu-exit-regulations-2019-si-600 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Republic of Belarus (Sanctions) (EU Exit) Regulations 2019 establish the United Kingdom's autonomous sanctions framework against Belarus organised in eight parts covering general provisions and pu... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-republic-belarus-sanctions-eu-exit-regulations-2019-si-600.json #### UK Russia (Sanctions) (EU Exit) Regulations 2019 SI 2019/855 - Asset Freeze Trade Restrictions Maritime and Aviation Sanctions Against Russia - **ID**: uk-russia-sanctions-eu-exit-regulations-2019-si-855 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Russia (Sanctions) (EU Exit) Regulations 2019 establish the United Kingdom's autonomous sanctions framework against Russia under the Sanctions and Anti-Money Laundering Act 2018, providing for des... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-russia-sanctions-eu-exit-regulations-2019-si-855.json #### UK Sanctions and Anti-Money Laundering Act 2018 Section 1 - Power to Make Sanctions Regulations (UN Obligations, International Obligations, Listed Statutory Purposes) - **ID**: uk-sanctions-and-aml-act-2018-section-1-power-make-sanctions-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: Section 1 of the Sanctions and Anti-Money Laundering Act 2018 (c. 13) provides the foundational UK statutory power to make sanctions regulations - the principal post-Brexit instrument enabling the UK ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sanctions-and-aml-act-2018-section-1-power-make-sanctions-regulations.json #### UK Somalia (Sanctions) (EU Exit) Regulations 2020 SI 2020/642 UN Arms Embargo Charcoal Ban IED Components Controls and Maritime Enforcement - **ID**: uk-somalia-sanctions-eu-exit-regulations-2020-si-642 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Somalia (Sanctions) (EU Exit) Regulations 2020 establish the United Kingdom framework implementing the UN Security Council Somalia sanctions regime organised in 10 parts covering general provision... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-somalia-sanctions-eu-exit-regulations-2020-si-642.json #### UK South Sudan (Sanctions) (EU Exit) Regulations 2019 SI 2019/438 UN Security Council Implementation Asset Freeze and Trade Restrictions on Military Goods - **ID**: uk-south-sudan-sanctions-eu-exit-regulations-2019-si-438 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The South Sudan (Sanctions) (EU Exit) Regulations 2019 establish the United Kingdom's framework implementing the UN Security Council South Sudan sanctions regime organised in 9 parts covering general ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-south-sudan-sanctions-eu-exit-regulations-2019-si-438.json #### UK Strategic Export Control - **ID**: uk-strategic-export-control - **Category**: Trade Compliance & Export Controls - **Version**: 1.1.0 - **BLUF**: The UK Strategic Export Control regime (Export Control Act 2002) is the primary regulation for the export of military and dual-use technology from the United Kingdom. It is managed by the Export Contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-strategic-export-control.json #### UK Sudan (Sanctions) (EU Exit) Regulations 2020 SI 2020/753 UN Darfur Arms Embargo Asset Freezes Trade Restrictions and Maritime Enforcement - **ID**: uk-sudan-sanctions-eu-exit-regulations-2020-si-753 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Sudan (Sanctions) (EU Exit) Regulations 2020 establish the United Kingdom framework implementing the UN Security Council Sudan and Darfur sanctions regime organised in 10 parts covering general pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-sudan-sanctions-eu-exit-regulations-2020-si-753.json #### UK Syria (Sanctions) (EU Exit) Regulations 2019 SI 2019/792 - Asset Freeze Trade Restrictions Aircraft Sanctions and Chemical Weapons Controls - **ID**: uk-syria-sanctions-eu-exit-regulations-2019-si-792 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Syria (Sanctions) (EU Exit) Regulations 2019 establish the United Kingdom's autonomous sanctions framework targeting the Syrian regime and connected persons organised in eleven parts covering gene... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-syria-sanctions-eu-exit-regulations-2019-si-792.json #### United Kingdom Taxation (Cross-border Trade) Act 2018: Charge to Import Duty, Chargeable Goods, the Customs Tariff, Dumping and Foreign Subsidies and Safeguards, Place of Origin, Charge to Export Duty, Regulations, and the Single United Kingdom Customs Territory - **ID**: uk-taxation-cross-border-trade-act-2018 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Taxation (Cross-border Trade) Act 2018, chapter 22 of 2018, is the principal United Kingdom statute providing the post-EU-exit framework for the imposition of customs duties on imports into the Un... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-taxation-cross-border-trade-act-2018.json #### United Kingdom Trade Act 2021: Implementation of the Agreement on Government Procurement, Implementation of International Trade Agreements, Free Trade Agreements and Genocide, Trade Remedies Authority, Trade and Agriculture Commission, and HMRC Disclosure of Information - **ID**: uk-trade-act-2021 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Trade Act 2021, chapter 10 of 2021, received Royal Assent on 29 April 2021 and is the principal United Kingdom statute providing the post-EU-exit framework for the implementation of international ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-trade-act-2021.json #### UK Yemen (Sanctions) (EU Exit) (No. 2) Regulations 2020 SI 2020/1278 UN Asset Freezes Arms Embargo Trade Restrictions and Maritime Enforcement - **ID**: uk-yemen-sanctions-eu-exit-no2-regulations-2020-si-1278 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Yemen (Sanctions) (EU Exit) (No. 2) Regulations 2020 establish the United Kingdom framework implementing the UN Security Council Yemen sanctions regime under Resolution 2140 (2014) and Resolution ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-yemen-sanctions-eu-exit-no2-regulations-2020-si-1278.json #### UK Zimbabwe (Sanctions) (EU Exit) Regulations 2019 SI 2019/604 Autonomous Asset Freezes Immigration Restrictions Military Goods Controls and Maritime Enforcement - **ID**: uk-zimbabwe-sanctions-eu-exit-regulations-2019-si-604 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Zimbabwe (Sanctions) (EU Exit) Regulations 2019 establish the United Kingdom autonomous sanctions framework targeting Zimbabwe organised in 10 parts covering general provisions in Part 1, designat... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-zimbabwe-sanctions-eu-exit-regulations-2019-si-604.json #### EAR 15 CFR Part 736 - Ten General Prohibitions Governing Exports, Reexports, and In-Country Transfers - **ID**: us-15-cfr-part-736-ear-general-prohibitions-gp1-gp10 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 15 CFR Part 736 of the Export Administration Regulations is the central control gateway of the EAR - the ten General Prohibitions (GP1 through GP10) that any US person, foreign person, or transaction ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-cfr-part-736-ear-general-prohibitions-gp1-gp10.json #### EAR 15 CFR Part 740 - Export Administration Regulations License Exceptions (LVS, GBS, TSR, TMP, RPL, GOV, GFT, TSU, BAG, ENC, STA) - **ID**: us-15-cfr-part-740-ear-license-exceptions - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 15 CFR Part 740 of the Export Administration Regulations (EAR) sets out the License Exceptions that authorise specific export, reexport, or in-country transfer transactions without an individually val... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-cfr-part-740-ear-license-exceptions.json #### 15 CFR Part 744 - Export Administration Regulations: Control Policy - End-User and End-Use Based (including the Entity List, Military End-User List, and Unverified List) - **ID**: us-15-cfr-part-744-ear-end-user-end-use-controls-entity-list - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: U.S. exporters, reexporters, and persons effecting in-country transfers of items subject to the Export Administration Regulations must screen every transaction against the end-user and end-use control... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-cfr-part-744-ear-end-user-end-use-controls-entity-list.json #### EAR 15 CFR Part 744 - End-Use and End-User Based Controls including Entity List and Military End-User Controls - **ID**: us-15-cfr-part-744-ear-entity-list-end-user-end-use-controls - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 15 CFR Part 744 of the Export Administration Regulations establishes the end-use and end-user based controls administered by the Bureau of Industry and Security (BIS) that overlay the item-based contr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-15-cfr-part-744-ear-entity-list-end-user-end-use-controls.json #### ITAR 22 CFR Part 126 - General Policies and Provisions including Section 126.1 Embargoes and AUKUS/UK/Canada Defense Trade Exemptions - **ID**: us-22-cfr-part-126-itar-general-policies-and-provisions - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 22 CFR Part 126 of the International Traffic in Arms Regulations (ITAR) contains the general policies and provisions that overlay the item-based controls of the United States Munitions List in Part 12... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-22-cfr-part-126-itar-general-policies-and-provisions.json #### US OFAC 31 CFR Part 510 North Korea Sanctions Regulations NKSR Comprehensive Blocking Import Export Vessel Aircraft and Correspondent Account Prohibitions - **ID**: us-31-cfr-part-510-north-korea-sanctions-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The North Korea Sanctions Regulations codified at 31 CFR Part 510 are administered by the US Treasury Office of Foreign Assets Control to implement multiple Executive Orders against the Government of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-510-north-korea-sanctions-regulations.json #### US OFAC 31 CFR Part 515 Cuban Assets Control Regulations CACR Subparts A through M Prohibited Transactions Blocked Property General and Specific Licenses - **ID**: us-31-cfr-part-515-cuban-assets-control-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Cuban Assets Control Regulations codified at 31 CFR Part 515 are administered by the US Treasury Office of Foreign Assets Control and constitute the longest-running US sanctions program dating to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-515-cuban-assets-control-regulations.json #### US 31 CFR Part 535 Iranian Assets Control Regulations Legacy 1979 Hostage Crisis Asset Freeze Algiers Accords Compliance and Settlement Mechanisms - **ID**: us-31-cfr-part-535-iranian-assets-control-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 535 implements the oldest active US sanctions program against Iran originating in Executive Order 12170 (1979) following the seizure of the US embassy in Tehran organised in five operative... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-535-iranian-assets-control-regulations.json #### US 31 CFR Part 548 Belarus Sanctions Regulations Asset Freeze on Ministry of Finance and Development Bank Sectoral Sanctions and Energy Defense and Potash Restrictions - **ID**: us-31-cfr-part-548-belarus-sanctions-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 548 implements US sanctions against Belarus pursuant to Executive Order 14038 and subsequent orders organised in nine subparts covering Subpart A relation to other laws, Subpart B prohibit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-548-belarus-sanctions-regulations.json #### US 31 CFR Part 549 Lebanon Sanctions Regulations Asset Freeze on Persons Undermining Lebanese Sovereignty Executive Order 13441 Implementation - **ID**: us-31-cfr-part-549-lebanon-sanctions-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 549 implements US sanctions targeting persons who undermine the legitimate political processes or institutions of Lebanon pursuant to Executive Order 13441 organised in nine subparts cover... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-549-lebanon-sanctions-regulations.json #### OFAC 31 CFR Part 560 - Iranian Transactions and Sanctions Regulations (ITSR) - **ID**: us-31-cfr-part-560-ofac-iranian-transactions-sanctions-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 560 implements the comprehensive US sanctions program against Iran administered by the Treasury Department's Office of Foreign Assets Control (OFAC) under the International Emergency Econo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-560-ofac-iranian-transactions-sanctions-regulations.json #### US 31 CFR Part 583 Global Magnitsky Sanctions Regulations Executive Order 13818 Human Rights Abuses and Corruption Asset Freeze Framework - **ID**: us-31-cfr-part-583-global-magnitsky-sanctions-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 583 implements US sanctions against serious human rights abusers and corrupt actors worldwide pursuant to Executive Order 13818 and the Global Magnitsky Human Rights Accountability Act org... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-583-global-magnitsky-sanctions-regulations.json #### US 31 CFR Part 584 Magnitsky Act Sanctions Regulations Sergei Magnitsky Rule of Law Accountability Act Implementation Russia-Origin Human Rights Designations - **ID**: us-31-cfr-part-584-magnitsky-act-sanctions-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 584 implements US sanctions against persons responsible for the detention abuse and death of Sergei Magnitsky and other gross violations of internationally recognized human rights committe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-584-magnitsky-act-sanctions-regulations.json #### US 31 CFR Part 587 Russian Harmful Foreign Activities Sanctions Regulations Executive Order 14024 Implementation Election Interference Cyber Activity and Sovereignty Violations - **ID**: us-31-cfr-part-587-russian-harmful-foreign-activities-sanctions-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 587 implements US sanctions against persons engaged in specified harmful foreign activities of the Government of the Russian Federation pursuant to Executive Order 14024 organised in nine ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-587-russian-harmful-foreign-activities-sanctions-regulations.json #### US OFAC 31 CFR Part 591 Venezuela Sanctions Regulations Executive Order 13692 Blocking Authorised Legal Medical and Official Transactions - **ID**: us-31-cfr-part-591-venezuela-sanctions-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Venezuela Sanctions Regulations codified at 31 CFR Part 591 are administered by the US Treasury Office of Foreign Assets Control to implement Executive Order 13692 of March 2015 and subsequent Exe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-591-venezuela-sanctions-regulations.json #### US 31 CFR Part 594 Global Terrorism Sanctions Regulations Executive Order 13224 Implementation Asset Freeze on Specially Designated Global Terrorists - **ID**: us-31-cfr-part-594-global-terrorism-sanctions-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: 31 CFR Part 594 implements US sanctions against Specially Designated Global Terrorists pursuant to Executive Order 13224 organised in seven operative subparts covering Subpart A relation to other laws... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-31-cfr-part-594-global-terrorism-sanctions-regulations.json #### US Arms Export Control Act (22 U.S.C. Chapter 39): Statutory Authority for the Control of Defense Article and Defense Service Exports and the United States Munitions List - **ID**: us-arms-export-control-act - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Arms Export Control Act (AECA), codified at 22 U.S.C. Chapter 39, is the statutory authority for United States controls on the export and import of defense articles and defense services and for fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-arms-export-control-act.json #### United States Countering America's Adversaries Through Sanctions Act (CAATSA) (Public Law 115-44, 2017): Title I - Iran Sanctions, Title II - Russia Sanctions and Codification, Title III - Korean Interdiction and Modernization of Sanctions Act, Section 224 Russia Cybersecurity Sanctions, Section 228 Mandatory Secondary Sanctions, and Section 231 Russian Defense and Intelligence Sectors - **ID**: us-caatsa-pl-115-44-2017 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Countering America's Adversaries Through Sanctions Act, Public Law 115-44 of 2 August 2017, is the principal United States statute consolidating, expanding, and codifying United States sanctions a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-caatsa-pl-115-44-2017.json #### United States CHIPS and Science Act of 2022 (Public Law 117-167): Division A CHIPS Act of 2022 Semiconductor Manufacturing Incentives, CHIPS for America Fund, Semiconductor Incentives with Foreign Manufacturing Expansion Restrictions, Opportunity and Inclusion, Division B Department of Energy Science Programs, and National Science Foundation Technology Innovation and Partnerships - **ID**: us-chips-and-science-act-2022-pl-117-167 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The CHIPS and Science Act of 2022, Public Law 117-167 of 9 August 2022, is the principal federal statute providing 52 billion dollars in semiconductor manufacturing incentives and authorizing the fede... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-chips-and-science-act-2022-pl-117-167.json #### Comprehensive Iran Sanctions, Accountability, and Divestment Act 2010 (CISADA) - Public Law 111-195 - **ID**: us-cisada-comprehensive-iran-sanctions-2010-pl-111-195 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Comprehensive Iran Sanctions, Accountability, and Divestment Act of 2010 (CISADA, Public Law 111-195, enacted 1 July 2010) substantially expanded the Iran Sanctions Act of 1996 (ISA) framework wit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cisada-comprehensive-iran-sanctions-2010-pl-111-195.json #### US Export Administration Regulations (EAR) - Dual-Use Technology Controls, Entity List and AI/Semiconductor Restrictions - **ID**: us-export-administration-regulations - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Export Administration Regulations (EAR), administered by the Bureau of Industry and Security (BIS), control the export and reexport of most commercial and dual-use items, software, and technology.... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-export-administration-regulations.json #### The Commerce Control List - **ID**: us-export-administration-regulations-part-774 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.1 - **BLUF**: This regulation establishes the Commerce Control List (CCL) under the Export Administration Regulations (EAR), specifying licensing requirements for the export, reexport, and transfer of dual-use item... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-export-administration-regulations-part-774.json #### US Export Control Reform Act of 2018 (50 U.S.C. Chapter 58): Statutory Authority for Dual-Use Export Controls Administered by the Bureau of Industry and Security - **ID**: us-export-control-reform-act-2018 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Export Control Reform Act of 2018 (ECRA), codified at 50 U.S.C. Chapter 58, is the permanent statutory authority for the United States dual-use export control system administered by the Department... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-export-control-reform-act-2018.json #### US Export Administration Regulations - Quantum Technology Export Controls 2023: New ECCNs for Quantum Computers (3E001), Quantum Sensing Equipment, QKD Systems, Foreign Direct Product Rule Application to Quantum Tech and Multilateral Wassenaar Arrangement Coordination - **ID**: us-export-control-reform-eccn-quantum-2023 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.1 - **BLUF**: This regulation establishes export controls on quantum computing, sensing, and quantum key distribution (QKD) systems under new Export Control Classification Numbers (ECCNs), including 3E001, and appl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-export-control-reform-eccn-quantum-2023.json #### US ITAR - International Traffic in Arms Regulations (22 CFR Parts 120-130) Defense Articles Export Controls - **ID**: us-far-far-itar-export-controls-defense-articles-technical-data - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The International Traffic in Arms Regulations (ITAR) at 22 CFR Parts 120-130, implemented under the Arms Export Control Act (AECA), regulate the export and import of defense articles, defense services... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-far-far-itar-export-controls-defense-articles-technical-data.json #### Foreign Agents Registration Act - 22 USC 611 - **ID**: us-fara-foreign-agents-registration-act-22-usc-611 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: Section 611 of title 22 of the United States Code, the definitional core of the Foreign Agents Registration Act (FARA) originally enacted in 1938 (Public Law 75-583) and substantially amended through ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fara-foreign-agents-registration-act-22-usc-611.json #### United States Global Magnitsky Human Rights Accountability Act (Public Law 114-328, Subtitle F of Title XII, 2016): Short Title, Definitions, Authorization of Imposition of Sanctions for Gross Violations of Human Rights and Significant Acts of Corruption, Reports to Congress, and Sunset - **ID**: us-global-magnitsky-pl-114-328-subtitle-f - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Global Magnitsky Human Rights Accountability Act, enacted as Subtitle F of Title XII of the National Defense Authorization Act for Fiscal Year 2017 (Public Law 114-328 of 23 December 2016), is the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-global-magnitsky-pl-114-328-subtitle-f.json #### United States Cuban Liberty and Democratic Solidarity (LIBERTAD) Act of 1996, Commonly Known as the Helms-Burton Act (Title 22 USC Chapter 69A): Congressional Findings, Statement of Policy, Title III Civil Liability for Trafficking in Confiscated Property, and Title IV Exclusion of Aliens - **ID**: us-helms-burton-libertad-act-22-usc-ch69a - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Cuban Liberty and Democratic Solidarity (LIBERTAD) Act of 1996, commonly known as the Helms-Burton Act, Public Law 104-114 of 12 March 1996, codified at Title 22 of the United States Code, Chapter... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-helms-burton-libertad-act-22-usc-ch69a.json #### US International Emergency Economic Powers Act of 1977 (50 U.S.C. Chapter 35): Presidential Authority to Regulate Economic Transactions During a Declared National Emergency - **ID**: us-ieepa-1977 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The International Emergency Economic Powers Act (IEEPA), codified at 50 U.S.C. Chapter 35 (sections 1701 through 1708), authorizes the President to regulate a broad range of economic transactions afte... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ieepa-1977.json #### Iran Sanctions Act of 1996 - Public Law 104-172 - **ID**: us-iran-sanctions-act-1996-pl-104-172 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Iran Sanctions Act of 1996 (ISA, Public Law 104-172, enacted 5 August 1996, originally the Iran and Libya Sanctions Act and renamed when Libya sanctions were lifted in 2006) authorises the Preside... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-iran-sanctions-act-1996-pl-104-172.json #### US ITAR 22 CFR Parts 120-130 - International Traffic in Arms Regulations: US Munitions List, Export and Import Licensing, Technical Assistance Agreements, Deemed Export Rule, Broker Registration, and Criminal and Civil Penalty Framework - **ID**: us-itar-22-cfr-120-130-arms-export - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.1 - **BLUF**: The International Traffic in Arms Regulations (ITAR), codified at 22 CFR Parts 120-130, administered by the US Department of State Directorate of Defense Trade Controls (DDTC) under the Arms Export Co... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-itar-22-cfr-120-130-arms-export.json #### Iran Threat Reduction and Syria Human Rights Act 2012 (ITRSHRA) - Public Law 112-158 - **ID**: us-itrshra-iran-threat-reduction-2012-pl-112-158 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Iran Threat Reduction and Syria Human Rights Act of 2012 (ITRSHRA, Public Law 112-158, enacted 10 August 2012) further expanded the Iran sanctions framework established by the Iran Sanctions Act o... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-itrshra-iran-threat-reduction-2012-pl-112-158.json #### Jackson-Vanik Amendment - 19 USC 2432 Trade Act 1974 Title IV - **ID**: us-jackson-vanik-amendment-19-usc-2432 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: Section 2432 of title 19 of the United States Code, the Jackson-Vanik Amendment to Title IV of the Trade Act of 1974 (Public Law 93-618), conditions normal trade relations (NTR, formerly most-favored-... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-jackson-vanik-amendment-19-usc-2432.json #### United States National Emergencies Act (Title 50 USC Chapter 34): Termination of Existing Declared Emergencies, Declaration of National Emergency by the President, Termination of National Emergencies, Declaration by Executive Order, Accountability and Reporting Requirements, and Other Emergency Authorities - **ID**: us-national-emergencies-act-50-usc-ch34 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The National Emergencies Act, Public Law 94-412 of 14 September 1976, codified at Title 50 of the United States Code, Chapter 34 (National Emergencies), is the principal federal statute providing the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-emergencies-act-50-usc-ch34.json #### Omnibus Trade and Competitiveness Act 1988 - Public Law 100-418 - **ID**: us-omnibus-trade-competitiveness-act-1988-pl-100-418 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Omnibus Trade and Competitiveness Act of 1988 (OTCA, Public Law 100-418, enacted 23 August 1988) restructured US trade policy across approximately 12 titles and remains a foundational US trade sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-omnibus-trade-competitiveness-act-1988-pl-100-418.json #### Section 301 of Trade Act 1974 - 19 USC 2411 USTR Unfair Trade Practice Authority - **ID**: us-section-301-trade-act-19-usc-2411 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: Section 2411 of title 19 of the United States Code, section 301 of the Trade Act of 1974 (Public Law 93-618), authorises the United States Trade Representative to take action against foreign governmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-section-301-trade-act-19-usc-2411.json #### United States Sergei Magnitsky Rule of Law Accountability Act of 2012 (Public Law 112-208, Title IV): Short Title, Findings and Sense of Congress, Definitions, Identification of Persons Responsible for the Detention Abuse and Death of Sergei Magnitsky and Other Gross Violations of Human Rights, Inadmissibility of Certain Aliens, and Financial Measures - **ID**: us-sergei-magnitsky-act-2012-pl-112-208-title-iv - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Sergei Magnitsky Rule of Law Accountability Act of 2012, enacted as Title IV of the Russia and Moldova Jackson-Vanik Repeal and Sergei Magnitsky Rule of Law Accountability Act of 2012 (Public Law ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sergei-magnitsky-act-2012-pl-112-208-title-iv.json #### United States Tariff Act of 1930 (Title 19 USC Chapter 4): Harmonized Tariff Schedule, Marking of Imports, Entry of Merchandise, Examination, and Penalties for Fraud, Gross Negligence, and Negligence - **ID**: us-tariff-act-1930-title-19-chapter-4 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Tariff Act of 1930, codified at Title 19 of the United States Code, Chapter 4, is the foundational federal statute governing the assessment and collection of customs duties and the regulation of i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-tariff-act-1930-title-19-chapter-4.json #### United States Trade Act of 1974 (Title 19 USC Chapter 12): Short Title, Basic Authority for Trade Agreements, Section 301 Actions by the United States Trade Representative, Initiation of Investigations, Implementation of Actions, Generalized System of Preferences, and Designation of Beneficiary Developing Countries - **ID**: us-trade-act-1974-19-usc-ch12 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Trade Act of 1974, Public Law 93-618 of 3 January 1975, codified at Title 19 of the United States Code, Chapter 12 (Trade Act of 1974), is the principal federal statute providing the framework for... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-trade-act-1974-19-usc-ch12.json #### United States Trade Expansion Act of 1962 (Title 19 USC Chapter 7): Statement of Purposes, Definitions, Basic Authority for Trade Agreements, Section 232 Safeguarding National Security, Establishment of Interagency Trade Organization, Normal Trade Relations, and General Tariff Adjustment Authority - **ID**: us-trade-expansion-act-1962-19-usc-ch7 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Trade Expansion Act of 1962, Public Law 87-794 of 11 October 1962, codified at Title 19 of the United States Code, Chapter 7 (Trade Expansion Program), is the principal federal statute establishin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-trade-expansion-act-1962-19-usc-ch7.json #### Trade Expansion Act 1962 Section 232 - 19 USC 1862 National Security Tariffs - **ID**: us-trade-expansion-act-section-232-19-usc-1862 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: Section 1862 of title 19 of the United States Code, section 232 of the Trade Expansion Act of 1962 (Public Law 87-794, enacted 11 October 1962), authorises the Secretary of Commerce to investigate the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-trade-expansion-act-section-232-19-usc-1862.json #### US Trading With the Enemy Act (50 U.S.C. Chapter 53): Presidential Authority to Regulate and Prohibit Transactions With Enemy and Foreign Interests During War - **ID**: us-trading-with-the-enemy-act - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Trading With the Enemy Act (TWEA), originally enacted in 1917 and codified at 50 U.S.C. Chapter 53 (sections 4301 through 4341), authorizes the President during time of war to regulate or prohibit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-trading-with-the-enemy-act.json #### US Trading with the Enemy Act (50 USC 4301) - Wartime Economic Sanctions Authority - **ID**: us-trading-with-the-enemy-act-50-usc-4301 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Trading with the Enemy Act of 1917 authorises the President during times of war or declared national emergency to investigate, regulate, or prohibit transactions in foreign exchange, transfers of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-trading-with-the-enemy-act-50-usc-4301.json #### US USML Category XV 22 CFR 121.1 Spacecraft Systems and Associated Equipment Defense Trade Controls Under ITAR Including Remote Sensing and Communications Satellites - **ID**: us-usml-category-xv-22-cfr-121-spacecraft-systems - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: United States Munitions List Category XV at 22 CFR section 121.1 establishes export controls under the International Traffic in Arms Regulations for spacecraft systems and associated equipment with sp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-usml-category-xv-22-cfr-121-spacecraft-systems.json #### Wassenaar Arrangement 1996 - Dual-Use Goods and Conventional Arms Export Controls and Initial Elements - **ID**: wassenaar-arrangement-1996-dual-use-conventional-arms - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Wassenaar Arrangement on Export Controls for Conventional Arms and Dual-Use Goods and Technologies was established in December 1995 in Wassenaar, the Netherlands and became operational in Septembe... - **Discovery URL**: https://bidda.com/api/v1/nodes/wassenaar-arrangement-1996-dual-use-conventional-arms.json #### WTO Agreement on Rules of Origin: Disciplines for Determining the Country of Origin of Goods in Non-Preferential Trade - **ID**: wto-agreement-on-rules-of-origin-1994 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The WTO Agreement on Rules of Origin establishes disciplines governing the laws, regulations, and administrative determinations that WTO Members use to determine the country of origin of goods in non-... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-agreement-on-rules-of-origin-1994.json #### WTO Agreement on Safeguards: Emergency Action on Imports Causing Serious Injury to Domestic Industry - **ID**: wto-agreement-on-safeguards-1994 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The WTO Agreement on Safeguards establishes the rules for applying safeguard measures, the emergency import restrictions provided for in Article XIX of GATT 1994, and binds all WTO Members. Article 1 ... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-agreement-on-safeguards-1994.json #### World Trade Organization Agreement on Implementation of Article VI of GATT 1994 (Anti-Dumping Agreement): Principles, Determination of Dumping, Determination of Injury, Initiation of Investigations, Evidence, Imposition and Collection of Anti-Dumping Duties, Duration and Review, and Dispute Settlement - **ID**: wto-anti-dumping-agreement-1994 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Agreement on Implementation of Article VI of the General Agreement on Tariffs and Trade 1994, commonly known as the Anti-Dumping Agreement, is the WTO multilateral instrument implementing the anti... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-anti-dumping-agreement-1994.json #### WTO Agreement on Implementation of Article VII of GATT 1994 (Customs Valuation Agreement): The Transaction Value Method and the Valuation Hierarchy - **ID**: wto-customs-valuation-agreement-1994 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The WTO Agreement on Implementation of Article VII of the General Agreement on Tariffs and Trade 1994, commonly called the Customs Valuation Agreement, establishes a single international system for de... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-customs-valuation-agreement-1994.json #### WTO General Agreement on Trade in Services (GATS): Most-Favoured-Nation, National Treatment, Market Access, Domestic Regulation, and General Exceptions - **ID**: wto-gats-general-agreement-trade-services - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The WTO General Agreement on Trade in Services, known as GATS, is the foundational multilateral agreement governing cross-border trade in services and binds all WTO Members across four modes of supply... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-gats-general-agreement-trade-services.json #### World Trade Organization General Agreement on Tariffs and Trade 1994 (GATT 1994 incorporating GATT 1947): Most-Favoured-Nation Treatment, National Treatment, Schedules of Concessions, Quantitative Restrictions, Anti-Dumping and Countervailing Duties, General Exceptions, Security Exceptions, and Customs Unions - **ID**: wto-gatt-1994-general-agreement-tariffs-trade - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The General Agreement on Tariffs and Trade 1994 (GATT 1994), which incorporates the provisions of the General Agreement on Tariffs and Trade dated 30 October 1947 (GATT 1947), is the foundational mult... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-gatt-1994-general-agreement-tariffs-trade.json #### WTO Agreement on Import Licensing Procedures: Neutral, Fair and Non-Burdensome Administration of Import Licences - **ID**: wto-import-licensing-procedures-agreement-1994 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The WTO Agreement on Import Licensing Procedures disciplines the administrative procedures used by WTO Members to operate import licensing regimes, so that licensing does not itself become a barrier t... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-import-licensing-procedures-agreement-1994.json #### World Trade Organization Agreement on Preshipment Inspection: Coverage and Definitions, Obligations of User Members, Obligations of Exporter Members, Independent Review Procedures, Notification, Consultation, and Dispute Settlement - **ID**: wto-preshipment-inspection-agreement-1994 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Agreement on Preshipment Inspection is the WTO multilateral instrument adopted as part of the Uruguay Round Agreements governing the activities of preshipment inspection entities mandated by user ... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-preshipment-inspection-agreement-1994.json #### World Trade Organization Agreement on Subsidies and Countervailing Measures (SCM Agreement): Definition of a Subsidy, Specificity, Prohibited Subsidies, Adverse Effects, Serious Prejudice, Remedies, Investigation Procedures, and Imposition of Countervailing Duties - **ID**: wto-scm-agreement-1994 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Agreement on Subsidies and Countervailing Measures (SCM Agreement) is the WTO multilateral instrument governing subsidies and the use of countervailing measures and is administered by the WTO Comm... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-scm-agreement-1994.json #### World Trade Organization Agreement on the Application of Sanitary and Phytosanitary Measures (SPS Agreement): Scope and Application, Basic Rights and Obligations, Harmonization, Equivalence, Risk Assessment and Appropriate Level of Protection, Transparency, Control Inspection and Approval Procedures, and Dispute Settlement - **ID**: wto-sps-agreement-1994 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Agreement on the Application of Sanitary and Phytosanitary Measures (SPS Agreement) is the WTO multilateral instrument governing measures to protect human, animal or plant life or health from food... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-sps-agreement-1994.json #### World Trade Organization Agreement on Technical Barriers to Trade (TBT Agreement): General Provisions, Preparation Adoption and Application of Technical Regulations, Conformity Assessment Procedures, Recognition of Conformity Assessment, Information Enquiry Points, Special and Differential Treatment, and Dispute Settlement - **ID**: wto-tbt-agreement-1994 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The Agreement on Technical Barriers to Trade (TBT Agreement) is the WTO multilateral instrument governing technical regulations, standards and conformity assessment procedures, and is administered by ... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-tbt-agreement-1994.json #### WTO Agreement on Trade-Related Investment Measures (TRIMS): Coverage, National Treatment and Quantitative Restriction Discipline, Exceptions, Notification, Transparency, Committee, and Dispute Settlement - **ID**: wto-trims-trade-related-investment-measures-1994 - **Category**: Trade Compliance & Export Controls - **Version**: 1.0.0 - **BLUF**: The WTO Agreement on Trade-Related Investment Measures, known as TRIMS, is a multilateral agreement in Annex 1A to the WTO Agreement that disciplines investment measures by Members where they affect t... - **Discovery URL**: https://bidda.com/api/v1/nodes/wto-trims-trade-related-investment-measures-1994.json ### Water & Environmental Resources (130 nodes) #### AU Water Act 2007 - **ID**: au-water-act-2007 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The AU Water Act 2007 (Cth) provides the federal framework for water resource management in Australia. The Act establishes the Murray-Darling Basin Authority (MDBA) as an independent statutory body; p... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-water-act-2007.json #### Australia Water Act 2007 - Murray-Darling Basin Plan and Water Access Entitlement Framework - **ID**: australia-water-act-2007-murray-darling-basin - **Category**: Water & Environmental Resources - **Version**: 2.0 - **BLUF**: The Water Act 2007 (Cth) established the Murray-Darling Basin Authority (MDBA) and the legal framework for the Murray-Darling Basin Plan. The Murray-Darling Basin - spanning Queensland, New South Wale... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-water-act-2007-murray-darling-basin.json #### Brazil National Water Resources Policy Law 9.433/1997 - ANA Water Rights and River Basin Committee Framework - **ID**: brazil-national-water-resources-policy-9433-1997-ana - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Brazil's Lei 9.433 de 8 de janeiro de 1997 (Politica Nacional de Recursos Hidricos - PNRH) establishes the National Water Resources Policy and the National Water Resources Management System (SINGREH).... - **Discovery URL**: https://bidda.com/api/v1/nodes/brazil-national-water-resources-policy-9433-1997-ana.json #### CA Species at Risk Act 2002 - **ID**: ca-species-at-risk-act-2002 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Canadian Species at Risk Act (SARA) is the federal legislation providing for protection and recovery of species at risk of extinction including endangered threatened and special concern species. L... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-species-at-risk-act-2002.json #### Canada Canadian Net-Zero Emissions Accountability Act: The 2050 Net-Zero Target, Milestone Targets and the Accountability Cycle - **ID**: canada-canadian-net-zero-emissions-accountability-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Canadian Net-Zero Emissions Accountability Act (S.C. 2021, c. 22) establishes a legislated framework requiring Canada to achieve net-zero greenhouse-gas emissions by 2050 and binds the federal gov... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-canadian-net-zero-emissions-accountability-act.json #### Canada Environmental Protection Act, 1999 (CEPA): Toxic Substances, Pollution Prevention and Offences - **ID**: canada-environmental-protection-act-1999 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Canadian Environmental Protection Act, 1999 (CEPA, S.C. 1999, c. 33) is Canada's principal federal pollution-prevention and toxic-substances statute, administered jointly by the Minister of the En... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-environmental-protection-act-1999.json #### Canada Fisheries Act: Fish and Fish Habitat Protection and the Deleterious-Substance Prohibition - **ID**: canada-fisheries-act-habitat-protection - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Fisheries Act (R.S.C. 1985, c. F-14), as substantially amended in 2019, is Canada's principal federal statute for the management of fisheries and the conservation and protection of fish and fish h... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-fisheries-act-habitat-protection.json #### Canada Greenhouse Gas Pollution Pricing Act: Federal Carbon Backstop, Fuel Charge and Output-Based Pricing System - **ID**: canada-greenhouse-gas-pollution-pricing-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Greenhouse Gas Pollution Pricing Act (S.C. 2018, c. 12, s. 186) establishes Canada's federal carbon-pricing backstop, applying a price on greenhouse-gas emissions in provinces and areas that do no... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-greenhouse-gas-pollution-pricing-act.json #### Canada Impact Assessment Act: Designated Projects, the Section 7 Prohibition and the Public-Interest Decision - **ID**: canada-impact-assessment-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Impact Assessment Act (S.C. 2019, c. 28, s. 1) establishes Canada's federal impact-assessment regime for major projects, administered by the Impact Assessment Agency of Canada. Section 6 sets out ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-impact-assessment-act.json #### Canada International River Improvements Act: Licensing of Works on Rivers Flowing Out of Canada - **ID**: canada-international-river-improvements-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The International River Improvements Act (R.S.C. 1985, c. I-20) controls the construction, operation and maintenance of works that alter the flow of rivers flowing from Canada to places outside Canada... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-international-river-improvements-act.json #### Canada Migratory Birds Convention Act 1994: Protection, Permits and Harmful-Deposit Prohibition - **ID**: canada-migratory-birds-convention-act-1994 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Migratory Birds Convention Act, 1994 (S.C. 1994, c. 22) implements Canada's obligations under the Migratory Birds Convention with the United States and is administered by Environment and Climate C... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-migratory-birds-convention-act-1994.json #### Canada National Marine Conservation Areas Act: Establishment, Management Plans and the Prohibition on Hydrocarbon and Mineral Exploitation - **ID**: canada-national-marine-conservation-areas-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Canada National Marine Conservation Areas Act (S.C. 2002, c. 18) provides for the establishment and management of a system of national marine conservation areas representative of Canada's oceans a... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-national-marine-conservation-areas-act.json #### Canada National Parks Act: Ecological Integrity, Land Protection and Wildlife Offences - **ID**: canada-national-parks-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Canada National Parks Act (S.C. 2000, c. 32) governs the establishment, protection and management of Canada's national parks, administered by the Parks Canada Agency. Section 4(1) dedicates the na... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-national-parks-act.json #### Canadian Navigable Waters Act: Approval of Works, Obstructions and Protection of Navigation - **ID**: canada-navigable-waters-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Canadian Navigable Waters Act (R.S.C. 1985, c. N-22), formerly the Navigation Protection Act, protects the public right of navigation on navigable waters, administered by Transport Canada. Section... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-navigable-waters-act.json #### Canada Oceans Act: Maritime Zones, Integrated Management and Marine Protected Areas - **ID**: canada-oceans-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Oceans Act (S.C. 1996, c. 31) establishes Canada's maritime zones in domestic law and gives the Minister of Fisheries and Oceans the lead role in the integrated management and conservation of Cana... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-oceans-act.json #### Canada Species at Risk Act (SARA): Listing, General Prohibitions and Critical Habitat Protection - **ID**: canada-species-at-risk-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Species at Risk Act (S.C. 2002, c. 29), known as SARA, is Canada's federal biodiversity-protection statute, administered chiefly by Environment and Climate Change Canada with the Department of Fis... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-species-at-risk-act.json #### Canada Water Act and Fisheries Act Section 36 - Federal Water Pollution Prevention and Deleterious Substances Prohibition - **ID**: canada-water-act-fisheries-act-section-36-pollution - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Federal water pollution control in Canada operates through two principal statutes. The Canada Water Act (R.S.C., 1985, c. C-11) provides for management of water resources of Canada, particularly in wa... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-water-act-fisheries-act-section-36-pollution.json #### Canada Water Act: Water Quality Management Areas and the Waste-Deposit Prohibition - **ID**: canada-water-act-quality-management-areas - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Canada Water Act (R.S.C. 1985, c. C-11) provides for the management of Canada's water resources, including research, planning and the implementation of programs, administered by Environment and Cl... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-water-act-quality-management-areas.json #### Canada Wild Animal and Plant Protection and Regulation of International and Interprovincial Trade Act (WAPPRIITA): CITES Implementation, Permits and Trade Prohibitions - **ID**: canada-wild-animal-and-plant-protection-trade-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Wild Animal and Plant Protection and Regulation of International and Interprovincial Trade Act (WAPPRIITA, S.C. 1992, c. 52) is Canada's statute implementing the Convention on International Trade ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-wild-animal-and-plant-protection-trade-act.json #### Canada Wildlife Act: National Wildlife Areas, Marine Protected Areas and Species Protection - **ID**: canada-wildlife-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Canada Wildlife Act (R.S.C. 1985, c. W-9) authorizes the federal government to undertake wildlife research, conservation and interpretation, and to create and manage protected areas, administered ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-wildlife-act.json #### EU Ambient Air Quality Directive 2008/50/EC - **ID**: eu-air-quality-directive-2008-50-ec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: EU Directive 2008/50/EC (the Ambient Air Quality Directive) establishes a framework for assessment and management of ambient air quality across the EU. It sets limit values for major pollutants (sulph... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-air-quality-directive-2008-50-ec.json #### EU Bathing Water Directive 2006/7/EC concerning management of bathing water quality and classification - **ID**: eu-bathing-water-directive-2006-7-ec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: This Directive lays down provisions for the monitoring, classification, management, and public information concerning bathing water quality across EU Member States. It applies to any surface water ele... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-bathing-water-directive-2006-7-ec.json #### EU Bathing Water Directive 2006/7/EC - Bathing Water Classification, Management Measures and Public Information - **ID**: eu-bathing-water-directive-2006-7-ec-recreational-quality - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Directive 2006/7/EC of the European Parliament and of the Council concerning the management of bathing water quality (revised Bathing Water Directive, BWD) replaced the original 1976 Directive 76/160/... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-bathing-water-directive-2006-7-ec-recreational-quality.json #### EU Birds Directive 2009/147/EC - **ID**: eu-birds-directive-2009-147-ec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: EU Directive 2009/147/EC (the Birds Directive) provides for the conservation of all species of naturally occurring birds in the wild state in the European territory of EU Member States. It codifies th... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-birds-directive-2009-147-ec.json #### Directive (EU) 2020/2184 of the European Parliament and of the Council of 16 December 2020 on the quality of water intended for human consumption (recast) - **ID**: eu-drinking-water-directive-2020-2184-recast - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2020/2184 recasts Council Directive 98/83/EC to protect human health from contamination of water intended for human consumption and to improve access to such water across the Union. It ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-drinking-water-directive-2020-2184-recast.json #### Directive 2011/92/EU on the assessment of the effects of certain public and private projects on the environment - **ID**: eu-environmental-impact-assessment-directive-2011-92-eu - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Directive 2011/92/EU of the European Parliament and of the Council, dated 13 December 2011, codifies and replaces Council Directive 85/337/EEC concerning the assessment of the effects of certain publi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-environmental-impact-assessment-directive-2011-92-eu.json #### Environmental Liability Directive 2004/35/EC: Preventing and Remedying Environmental Damage via Polluter Pays - **ID**: eu-environmental-liability-directive-2004-35-ec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Directive 2004/35/EC establishes a framework for environmental liability based on the polluter-pays principle to prevent and remedy environmental damage. Environmental damage is defined as damage to p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-environmental-liability-directive-2004-35-ec.json #### Directive 2007/60/EC of the European Parliament and of the Council on the assessment and management of flood risks - **ID**: eu-floods-directive-2007-60-ec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The EU Floods Directive 2007/60/EC establishes a framework for the assessment and management of flood risks to reduce adverse consequences for human health, the environment, cultural heritage, and eco... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-floods-directive-2007-60-ec.json #### EU Floods Directive 2007/60/EC - Preliminary Flood Risk Assessment, Flood Hazard Maps and Flood Risk Management Plans - **ID**: eu-floods-directive-2007-60-ec-flood-risk-management - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Directive 2007/60/EC of the European Parliament and of the Council on the assessment and management of flood risks (the Floods Directive) establishes a framework for Member States to assess and manage... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-floods-directive-2007-60-ec-flood-risk-management.json #### Directive 2006/118/EC on the protection of groundwater against pollution and deterioration - **ID**: eu-groundwater-directive-2006-118-ec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: This Directive establishes specific measures under Article 17(1) and (2) of Directive 2000/60/EC to prevent and control groundwater pollution. It includes criteria for assessing good groundwater chemi... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-groundwater-directive-2006-118-ec.json #### EU Groundwater Directive 2006/118/EC - Groundwater Quality Standards, Pollution Prevention and Trend Reversal - **ID**: eu-groundwater-directive-2006-118-ec-quality-standards - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Directive 2006/118/EC of the European Parliament and of the Council on the protection of groundwater against pollution and deterioration (the Groundwater Directive, GWD) is a daughter directive of the... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-groundwater-directive-2006-118-ec-quality-standards.json #### Council Directive 92/43/EEC of 21 May 1992 on the conservation of natural habitats and of wild fauna and flora; establishing the Natura 2000 network - **ID**: eu-habitats-directive-92-43-eec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Council Directive 92/43/EEC, adopted 21 May 1992, establishes a framework for the conservation of natural habitats and wild fauna and flora within the European territory of Member States to which the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-habitats-directive-92-43-eec.json #### Directive 2010/75/EU on industrial emissions - integrated pollution prevention and control - recast - **ID**: eu-industrial-emissions-directive-2010-75-eu - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Directive 2010/75/EU establishes an integrated approach to pollution prevention and control for industrial activities, requiring that no installation, combustion plant, waste incineration plant, or wa... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-industrial-emissions-directive-2010-75-eu.json #### EU Marine Strategy Framework Directive 2008/56/EC - Good Environmental Status, 11 Descriptors and Marine Strategy Cycle - **ID**: eu-marine-strategy-framework-directive-2008-56-ec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Directive 2008/56/EC of the European Parliament and of the Council establishing a framework for community action in the field of marine environmental policy (Marine Strategy Framework Directive, MSFD)... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-marine-strategy-framework-directive-2008-56-ec.json #### Council Directive 91/676/EEC of 12 December 1991 concerning the protection of waters against pollution caused by nitrates from agricultural sources - **ID**: eu-nitrates-directive-91-676-eec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: This EU Directive requires Member States to reduce and prevent water pollution caused by nitrates from agricultural sources. Member States must identify waters affected by pollution or that could be a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nitrates-directive-91-676-eec.json #### EU Nitrates Directive 91/676/EEC - Nitrate Vulnerable Zones, Action Programmes and Code of Good Agricultural Practice - **ID**: eu-nitrates-directive-91-676-eec-agricultural-pollution - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Council Directive 91/676/EEC concerning the protection of waters against pollution caused by nitrates from agricultural sources (Nitrates Directive) is one of the earliest pieces of EU water legislati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nitrates-directive-91-676-eec-agricultural-pollution.json #### EU Restriction of Hazardous Substances Directive 2011/65/EU (RoHS) - **ID**: eu-rohs-directive-2011-65-eu - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: EU Directive 2011/65/EU (RoHS recast) restricts the use of ten hazardous substances in electrical and electronic equipment (EEE) placed on the EU market: lead mercury cadmium hexavalent chromium polyb... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-rohs-directive-2011-65-eu.json #### EU Seveso III Directive 2012/18/EU on control of major-accident hazards involving dangerous substances - **ID**: eu-seveso-iii-directive-2012-18-eu - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Directive 2012/18/EU (Seveso III) establishes rules for the prevention of major accidents involving dangerous substances and the limitation of their consequences for human health and the environment a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-seveso-iii-directive-2012-18-eu.json #### EU Single-Use Plastics Directive 2019/904 - **ID**: eu-sup-single-use-plastics-2019-904 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: EU Directive 2019/904 (the Single-Use Plastics Directive, SUPD) addresses single-use plastic items and fishing gear that frequently appear in marine litter. The Directive bans certain products from 3 ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-sup-single-use-plastics-2019-904.json #### Council Directive 91/271/EEC of 21 May 1991 concerning urban waste-water treatment and discharge - **ID**: eu-urban-waste-water-treatment-directive-91-271-eec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Council Directive 91/271/EEC, adopted on 21 May 1991 and published in the Official Journal L 135 on 30 May 1991, governs the collection, treatment, and discharge of urban waste water, as well as t... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-urban-waste-water-treatment-directive-91-271-eec.json #### EU Urban Wastewater Treatment Directive (Revised) 2024/3019 - Quaternary Treatment, Energy Neutrality and Extended Producer Responsibility - **ID**: eu-urban-wastewater-treatment-directive-revised-2024 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2024/3019 of the European Parliament and of the Council of 27 November 2024 concerning urban wastewater treatment (recast UWWTD) replaces the 1991 Urban Wastewater Treatment Directive 9... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-urban-wastewater-treatment-directive-revised-2024.json #### Directive 2008/98/EC of the European Parliament and of the Council of 19 November 2008 on waste and repealing certain Directives - **ID**: eu-waste-framework-directive-2008-98-ec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Directive 2008/98/EC establishes the legal framework for waste management in the EU, aiming to protect the environment and human health by preventing or reducing the adverse impacts of waste generatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-waste-framework-directive-2008-98-ec.json #### EU Water Framework Directive 2000/60/EC - River Basin Management and Good Water Status - **ID**: eu-water-framework-directive-2000-60-ec - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: EU Directive 2000/60/EC establishes a framework for Community action in the field of water policy. Member States must achieve 'good status' for all surface waters and groundwaters by 2027 through Rive... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-water-framework-directive-2000-60-ec.json #### EU Water Reuse Regulation 2020/741 - Minimum Requirements for Reclaimed Water in Agricultural Irrigation - **ID**: eu-water-reuse-regulation-2020-741 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: EU Regulation 2020/741 establishes minimum water quality requirements for reclaimed water used in agricultural irrigation and groundwater recharge, applying from 26 June 2023. The Regulation introduce... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-water-reuse-regulation-2020-741.json #### Germany Water Management Act 2009 (Wasserhaushaltsgesetz) - Federal Water Permitting and EU WFD Implementation - **ID**: germany-water-management-act-wasserhaushaltsgesetz-2009 - **Category**: Water & Environmental Resources - **Version**: 2.0 - **BLUF**: Germany's Wasserhaushaltsgesetz (WHG - Water Management Act), BGBl. I S. 2585 of 31 July 2009 (as amended), is the federal framework statute for water protection and use. The WHG transposes the EU Wat... - **Discovery URL**: https://bidda.com/api/v1/nodes/germany-water-management-act-wasserhaushaltsgesetz-2009.json #### HELCOM Helsinki Convention 1992 - Protection of the Marine Environment of the Baltic Sea Area, Baltic Sea Action Plan and Recommendations - **ID**: helcom-convention-1992-baltic-sea - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Convention on the Protection of the Marine Environment of the Baltic Sea Area (1992 Helsinki Convention) was signed at Helsinki on 9 April 1992 and entered into force on 17 January 2000, replacing... - **Discovery URL**: https://bidda.com/api/v1/nodes/helcom-convention-1992-baltic-sea.json #### ICPR Bern Convention 1999 - International Commission for the Protection of the Rhine, Rhine 2040 Programme and Sustainable Development - **ID**: icpr-rhine-protection-convention-1999 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Convention on the Protection of the Rhine, signed at Bern on 12 April 1999 and entered into force on 1 January 2003, is the foundational treaty governing transboundary cooperation on the Rhine Riv... - **Discovery URL**: https://bidda.com/api/v1/nodes/icpr-rhine-protection-convention-1999.json #### India Water (Prevention and Control of Pollution) Act 1974 - CPCB Consent to Operate Framework - **ID**: india-water-prevention-control-pollution-act-1974 - **Category**: Water & Environmental Resources - **Version**: 2.0 - **BLUF**: The Water (Prevention and Control of Pollution) Act 1974 (Water Act) is India's foundational water pollution statute. The Central Pollution Control Board (CPCB) and State Pollution Control Boards (SPC... - **Discovery URL**: https://bidda.com/api/v1/nodes/india-water-prevention-control-pollution-act-1974.json #### Ireland Water Services Act 2007 - Statutory Framework for Public Water and Wastewater Services, Polluter Pays and Drinking Water Standards - **ID**: ireland-water-services-act-2007 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Water Services Act 2007 (Number 30 of 2007, signed by President 14 May 2007 and commenced by Ministerial Orders) is the principal Irish statute governing the planning, management, and regulation o... - **Discovery URL**: https://bidda.com/api/v1/nodes/ireland-water-services-act-2007.json #### Kenya Water Act 2016 - WRA Water Permits and WASREB Service Regulation Framework - **ID**: kenya-water-act-2016-wrma - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Kenya's Water Act (No. 43 of 2016) repeals and replaces the Water Act of 2002 and devolves water functions per the 2010 Constitution. The Water Resources Authority (WRA) regulates water resources and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/kenya-water-act-2016-wrma.json #### Mekong River Commission 1995 Agreement - Sustainable Development Cooperation, PNPCA Notification and Basin Development Plan - **ID**: mekong-river-commission-1995-mrc-treaty - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Agreement on the Cooperation for the Sustainable Development of the Mekong River Basin, signed at Chiang Rai on 5 April 1995, establishes the Mekong River Commission (MRC) and the framework for tr... - **Discovery URL**: https://bidda.com/api/v1/nodes/mekong-river-commission-1995-mrc-treaty.json #### Mexico Ley de Aguas Nacionales 1992 - CONAGUA Concession and Water Rights Framework - **ID**: mexico-ley-aguas-nacionales-1992-conagua - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Mexico's Ley de Aguas Nacionales (LAN, DOF 1 de diciembre de 1992, as amended) governs national waters (aguas nacionales) as federal public property under Article 27 of the Mexican Constitution. CONAG... - **Discovery URL**: https://bidda.com/api/v1/nodes/mexico-ley-aguas-nacionales-1992-conagua.json #### NZ Conservation Act 1987 - **ID**: nz-conservation-act-1987 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The NZ Conservation Act 1987 establishes the Department of Conservation (Te Papa Atawhai) as the lead agency for conservation of New Zealand's natural and historic heritage. The Act administers conser... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-conservation-act-1987.json #### OSPAR Convention 1992 - Protection of the Marine Environment of the North-East Atlantic, Annexes and Regional Strategies - **ID**: ospar-convention-1992-north-east-atlantic - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Convention for the Protection of the Marine Environment of the North-East Atlantic (OSPAR Convention), signed in Paris on 22 September 1992 and entered into force on 25 March 1998, is the regional... - **Discovery URL**: https://bidda.com/api/v1/nodes/ospar-convention-1992-north-east-atlantic.json #### Ramsar Convention 1971 - Wetlands of International Importance, Wise Use Obligation and Montreux Record - **ID**: ramsar-convention-1971-wetlands-international-importance - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Convention on Wetlands of International Importance especially as Waterfowl Habitat (Ramsar Convention), adopted in Ramsar, Iran on 2 February 1971 and entering into force on 21 December 1975, is t... - **Discovery URL**: https://bidda.com/api/v1/nodes/ramsar-convention-1971-wetlands-international-importance.json #### Singapore Public Utilities Act (Cap. 261) - PUB Four National Taps and Water Security Framework - **ID**: singapore-public-utilities-act-cap-261-pub - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Singapore's Public Utilities Act (Cap. 261, 2002 Revised Edition) establishes PUB, Singapore's National Water Agency, with regulatory authority over water supply, sewerage and drainage. Singapore's wa... - **Discovery URL**: https://bidda.com/api/v1/nodes/singapore-public-utilities-act-cap-261-pub.json #### South Africa National Water Act 36 of 1998 - DWS Water Use Licensing and Catchment Management Framework - **ID**: south-africa-national-water-act-36-1998 - **Category**: Water & Environmental Resources - **Version**: 2.0 - **BLUF**: The National Water Act 36 of 1998 (NWA) is South Africa's primary water law, replacing the Water Act 54 of 1956. The Department of Water and Sanitation (DWS) administers the Act. The NWA declares wate... - **Discovery URL**: https://bidda.com/api/v1/nodes/south-africa-national-water-act-36-1998.json #### UK Clean Air Act 1993: Dark Smoke, Furnace Emissions and Smoke Control Areas - **ID**: uk-clean-air-act-1993 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Clean Air Act 1993 (c. 11) consolidates the UK's air pollution controls over smoke, grit, dust and fumes, enforced principally by local authorities under DEFRA policy. Part I prohibits the emissio... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-clean-air-act-1993.json #### UK Commons Act 2006 (c.26): Registration of Common Land and Town or Village Greens and Protection from Works - **ID**: uk-commons-act-2006 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Commons Act 2006 (c. 26) reforms the law relating to common land and town or village greens in England and Wales, providing for the maintenance and updating of registers, the establishment of comm... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-commons-act-2006.json #### UK Conservation of Seals Act 1970 (c.30): Protection of Grey and Common Seals - **ID**: uk-conservation-of-seals-act-1970 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Conservation of Seals Act 1970 (c. 30) protects grey seals and common seals in England, Wales, and Scotland by prohibiting certain methods of killing, establishing close seasons, and providing for... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-conservation-of-seals-act-1970.json #### UK Control of Pollution Act 1974 (Part III, Noise): Construction-Site Noise Notices, Prior Consent and Noise Abatement Zones - **ID**: uk-control-of-pollution-act-1974-noise - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Part III of the Control of Pollution Act 1974 remains the framework for controlling construction-site and street noise and for operating noise abatement zones in England and Wales, administered by loc... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-control-of-pollution-act-1974-noise.json #### UK Countryside and Rights of Way Act 2000 (c.37): Right of Access to Open Country, SSSIs and Areas of Outstanding Natural Beauty - **ID**: uk-countryside-and-rights-of-way-act-2000 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Countryside and Rights of Way Act 2000 (c. 37) creates a statutory right of public access on foot to open country and registered common land, strengthens the protection of sites of special scienti... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-countryside-and-rights-of-way-act-2000.json #### UK Deer Act 1991 (c.54): Close Seasons, Poaching and Prohibited Methods - **ID**: uk-deer-act-1991 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Deer Act 1991 (c. 54) consolidates the law protecting wild deer in England and Wales, regulating when and how deer may be taken or killed, administered through the courts and enforced by the polic... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-deer-act-1991.json #### UK Environment Act 1995 (c.25): The Environment Agency, Contaminated Land and National Air Quality Strategy - **ID**: uk-environment-act-1995 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Environment Act 1995 (c. 25) established the Environment Agency for England and Wales and the Scottish Environment Protection Agency, set the Agency's principal aim and objectives, and introduced ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-environment-act-1995.json #### UK Environment Act 2021: Long-Term Targets, the Office for Environmental Protection and Biodiversity Gain - **ID**: uk-environment-act-2021 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Environment Act 2021 (c. 30) is the United Kingdom's principal post-Brexit framework for environmental governance, targets and protection, with most provisions led by the Department for Environmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-environment-act-2021.json #### UK Environment Act 2021 Section 81 - Reporting on Discharges from Storm Overflows - **ID**: uk-environment-act-2021-section-81-storm-overflow-discharge-reporting - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Section 81 of the Environment Act 2021 inserts a new Section 141DA into the Water Industry Act 1991 requiring English sewerage undertakers to publish information about every storm overflow discharge: ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-environment-act-2021-section-81-storm-overflow-discharge-reporting.json #### UK Environmental Protection Act 1990: Waste Duty of Care, Contaminated Land and Statutory Nuisance - **ID**: uk-environmental-protection-act-1990-waste-and-statutory-nuisance - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Environmental Protection Act 1990 (c. 43) is a foundational UK environmental statute. Part II governs waste on land: section 33 makes it an offence to deposit, treat, keep or dispose of controlled... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-environmental-protection-act-1990-waste-and-statutory-nuisance.json #### UK Flood and Water Management Act 2010: National Strategy, Lead Local Flood Authorities, Sustainable Drainage and Reservoir Safety - **ID**: uk-flood-and-water-management-act-2010 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Flood and Water Management Act 2010 is a principal framework for managing flood and coastal erosion risk and certain water-supply matters in England and Wales, administered by the Environment Agen... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-flood-and-water-management-act-2010.json #### UK Flood and Water Management Act 2010 - **ID**: uk-flood-water-management-act-2010 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The UK Flood and Water Management Act 2010 implements key recommendations from the Pitt Review (2008) following the 2007 floods. The Act provides a strategic framework for flood and coastal erosion ri... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-flood-water-management-act-2010.json #### UK Game Act 1831 (c.32): Game Certificates, Close Seasons and Trespass in Pursuit of Game - **ID**: uk-game-act-1831 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Game Act 1831 (c. 32) remains the principal statute governing the taking of game in England and Wales, regulating close seasons, the requirement to hold a game certificate, the sale of game, and t... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-game-act-1831.json #### UK Hunting Act 2004 (c.37): Prohibition of Hunting Wild Mammals with Dogs and Hare Coursing - **ID**: uk-hunting-act-2004 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Hunting Act 2004 (c. 37) prohibits the hunting of wild mammals with dogs and the practice of hare coursing in England and Wales, subject to defined exemptions, and is enforced through the magistra... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-hunting-act-2004.json #### UK Marine and Coastal Access Act 2009: Marine Management Organisation, Marine Planning, Licensing and Conservation Zones - **ID**: uk-marine-and-coastal-access-act-2009 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Marine and Coastal Access Act 2009 is the principal framework for the management, planning, licensing and conservation of the United Kingdom marine area, administered by the Marine Management Orga... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-marine-and-coastal-access-act-2009.json #### UK National Parks and Access to the Countryside Act 1949 (c.97): National Parks, Nature Reserves and Public Access to Open Country - **ID**: uk-national-parks-access-countryside-act-1949 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The National Parks and Access to the Countryside Act 1949 (c. 97) is the foundational statute for the designation of National Parks, areas of outstanding natural beauty, and nature reserves in England... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-national-parks-access-countryside-act-1949.json #### UK Natural Environment and Rural Communities Act 2006 - **ID**: uk-natural-environment-rural-communities-2006 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The UK Natural Environment and Rural Communities Act 2006 (NERC Act) restructured natural environment governance in England by establishing Natural England (combining English Nature Countryside Agency... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-natural-environment-rural-communities-2006.json #### UK Natural Environment and Rural Communities Act 2006: Natural England, the Biodiversity Duty and SSSIs - **ID**: uk-natural-environment-rural-communities-act-2006 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Natural Environment and Rural Communities Act 2006 (the NERC Act) reorganises England's nature-conservation bodies and imposes a statutory biodiversity duty on public authorities. Part 1 establish... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-natural-environment-rural-communities-act-2006.json #### UK Pollution Prevention and Control Act 1999 (c.24): Enabling Power for the Integrated Pollution Control and Environmental Permitting Regime - **ID**: uk-pollution-prevention-control-act-1999 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Pollution Prevention and Control Act 1999 (c. 24) is the enabling statute under which the Secretary of State makes regulations to prevent and control pollution from industrial and other activities... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-pollution-prevention-control-act-1999.json #### UK Protection of Badgers Act 1992 (c.51): Protection of Badgers and Setts - **ID**: uk-protection-of-badgers-act-1992 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Protection of Badgers Act 1992 (c. 51) consolidates the law protecting badgers and their setts in England, Wales, and Scotland, administered through the courts and the licensing authorities and en... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-protection-of-badgers-act-1992.json #### UK Reservoirs Act 1975: Large Raised Reservoirs, Registration, Construction and Inspection Engineers and Supervision - **ID**: uk-reservoirs-act-1975 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Reservoirs Act 1975 is the reservoir-safety framework for England and Wales, requiring large raised reservoirs to be designed, constructed, supervised and inspected by qualified civil engineers an... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-reservoirs-act-1975.json #### UK Salmon and Freshwater Fisheries Act 1975: Prohibited Methods, Fixed Engines, Fish Passes, Close Seasons and Licensing - **ID**: uk-salmon-and-freshwater-fisheries-act-1975 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Salmon and Freshwater Fisheries Act 1975 is the principal statute protecting salmon, trout, freshwater fish and eels in England and Wales, regulating how, when and with what authority fish may be ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-salmon-and-freshwater-fisheries-act-1975.json #### UK Salmon and Freshwater Fisheries Act 1975 (c.51): Prohibited Methods, Close Seasons and Fishing Licences - **ID**: uk-salmon-freshwater-fisheries-act-1975 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Salmon and Freshwater Fisheries Act 1975 (c. 51) is the principal statute regulating the taking of salmon, trout, freshwater fish, and eels in England and Wales, administered by the Environment Ag... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-salmon-freshwater-fisheries-act-1975.json #### UK Water Act 2003: Abstraction Licensing Reform, the Ofwat Duties and Water Conservation - **ID**: uk-water-act-2003 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Water Act 2003 reformed the water abstraction licensing system, restructured the economic regulation of the water industry and strengthened water-conservation duties in England and Wales, amending... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-water-act-2003.json #### UK Water Industry Act 1991 - Ofwat Economic Regulation of Water and Sewerage Undertakers, Drinking Water Inspectorate and Customer Protection - **ID**: uk-water-industry-act-1991 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Water Industry Act 1991 (WIA, c.56, royal assent 25 July 1991) is the principal UK consolidation Act governing the regulation of water and sewerage services in England and Wales. It codifies the p... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-water-industry-act-1991.json #### UK Water Industry Act 1991 Section 94 - General Duty to Provide Sewerage System - **ID**: uk-water-industry-act-1991-section-94-general-duty-sewerage-system - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Every sewerage undertaker has a duty to provide, improve and extend a system of public sewers (whether inside or outside its area) and to cleanse and maintain those sewers and any lateral drains belon... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-water-industry-act-1991-section-94-general-duty-sewerage-system.json #### UK Water Resources Act 1991: Abstraction and Impounding Licensing - **ID**: uk-water-resources-act-1991-abstraction - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Water Resources Act 1991 governs the management of water resources in England and Wales, with the abstraction and impounding licensing system administered by the Environment Agency in England and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-water-resources-act-1991-abstraction.json #### UK Water Resources Act 1991 - Abstraction Licensing, Section 85 Water Pollution Offences and Environment Agency Powers - **ID**: uk-water-resources-act-1991-abstraction-pollution - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Water Resources Act 1991 (WRA 1991) is the principal statute governing water resources, water quality and flood defence in England and Wales. Part II requires an abstraction licence under section ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-water-resources-act-1991-abstraction-pollution.json #### UK Wildlife and Countryside Act 1981: Species Protection, Invasive Species and SSSIs - **ID**: uk-wildlife-and-countryside-act-1981 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Wildlife and Countryside Act 1981 (c. 69) is the principal UK statute for the protection of wild birds, animals and plants and for the conservation of designated habitats, enforced by the police a... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-wildlife-and-countryside-act-1981.json #### UK Wildlife and Countryside Act 1981 (c.69): Protection of Wild Birds, Animals, Plants and SSSIs - **ID**: uk-wildlife-countryside-act-1981 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Wildlife and Countryside Act 1981 (c. 69) is the principal nature conservation statute for Great Britain, protecting wild birds, animals, and plants and providing for the designation of sites of s... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-wildlife-countryside-act-1981.json #### UK Zoo Licensing Act 1981 (c.37): Licensing, Conservation Measures and Inspection of Zoos - **ID**: uk-zoo-licensing-act-1981 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Zoo Licensing Act 1981 (c. 37) requires the licensing of zoos in Great Britain by local authorities, mandates conservation and welfare measures, and provides for inspection and closure, administer... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-zoo-licensing-act-1981.json #### UN Watercourses Convention 1997 - Transboundary Freshwater Resources and Equitable Utilization - **ID**: un-watercourses-convention-1997-transboundary-water - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The UN Convention on the Law of the Non-Navigational Uses of International Watercourses (UNGA Res. 51/229, in force 2014) codifies customary international law principles of equitable and reasonable ut... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-watercourses-convention-1997-transboundary-water.json #### UNECE Helsinki Convention 1992 - Protection and Use of Transboundary Watercourses and International Lakes - **ID**: unece-helsinki-convention-1992-transboundary-watercourses - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The UNECE Convention on the Protection and Use of Transboundary Watercourses and International Lakes (Helsinki Convention or Water Convention, 1992) is a binding multilateral environmental agreement u... - **Discovery URL**: https://bidda.com/api/v1/nodes/unece-helsinki-convention-1992-transboundary-watercourses.json #### US African Elephant Conservation Act of 1988 (16 U.S.C. Chapter 62): Ivory Import Controls and Conservation Assistance - **ID**: us-african-elephant-conservation-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The African Elephant Conservation Act of 1988, codified at 16 U.S.C. Chapter 62 (sections 4201 through 4246), provides for the conservation of the African elephant through controls on the importation ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-african-elephant-conservation-act.json #### US-Canada Great Lakes Water Quality Agreement 2012 Protocol - Binational Lakewide Action Plans, Areas of Concern and Chemicals of Mutual Concern - **ID**: us-canada-great-lakes-water-quality-agreement-2012 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Great Lakes Water Quality Agreement (GLWQA) between the United States and Canada, originally signed 15 April 1972 and subsequently amended in 1978, 1987 (Protocol) and 7 September 2012, is the pri... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-canada-great-lakes-water-quality-agreement-2012.json #### US CERCLA / Superfund (42 USC ch 103): Release Reporting, Response Authority and Strict Liability - **ID**: us-cercla-superfund - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Comprehensive Environmental Response, Compensation, and Liability Act (CERCLA, the Superfund law), codified at 42 U.S.C. Chapter 103 (sections 9601-9675), provides federal authority to respond to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cercla-superfund.json #### US Clean Air Act (42 USC ch 85): NAAQS, Permits, Emission Standards and Enforcement - **ID**: us-clean-air-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Clean Air Act (CAA), codified at 42 U.S.C. Chapter 85 (sections 7401-7671q), is the principal US statute for controlling air pollution, administered by the US Environmental Protection Agency (EPA)... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-air-act.json #### US Clean Water Act: Discharge Prohibition, NPDES Permits, Dredge-and-Fill and Penalties - **ID**: us-clean-water-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Clean Water Act (CWA), formally the Federal Water Pollution Control Act, codified at 33 U.S.C. Chapter 26 (sections 1251-1389), is the principal US statute governing the discharge of pollutants in... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-water-act.json #### US Clean Water Act 1972 - NPDES Permitting, Section 404 Dredge-Fill and Water Quality Standards Framework - **ID**: us-clean-water-act-1972-epa-corps-engineers - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The US Clean Water Act (CWA, Federal Water Pollution Control Act Amendments of 1972, 33 USC 1251 et seq.) is the principal federal statute governing water pollution. EPA administers Section 402 Nation... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-water-act-1972-epa-corps-engineers.json #### United States Clean Water Act (Title 33 USC Chapter 26): National Goal to Restore and Maintain Integrity of Waters, Effluent Limitations, Water Quality Standards, NPDES Permits, Dredged or Fill Material Permits, Citizen Suits, and State Authority - **ID**: us-clean-water-act-33-usc-ch26 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Federal Water Pollution Control Act, commonly cited as the Clean Water Act and codified at Title 33 of the United States Code, Chapter 26, is the principal federal statute regulating discharges of... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-water-act-33-usc-ch26.json #### US Coastal Barrier Resources Act (16 USC 3501 et seq.): The John H. Chafee System and the Restriction on Federal Expenditures - **ID**: us-coastal-barrier-resources-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Coastal Barrier Resources Act (CBRA), codified at 16 U.S.C. 3501 et seq., protects undeveloped coastal barriers by removing the federal financial incentives that subsidise their development, admin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-coastal-barrier-resources-act.json #### US Coastal Zone Management Act (16 USC ch 33): State Programs and the Federal Consistency Requirement - **ID**: us-coastal-zone-management-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Coastal Zone Management Act of 1972 (CZMA), codified at 16 U.S.C. Chapter 33 (sections 1451-1466), establishes a voluntary federal-state partnership to manage and protect the nation's coastal zone... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-coastal-zone-management-act.json #### US Coastal Zone Management Act 1972 - NOAA Federal Consistency Review, State Coastal Programmes and National Estuarine Research Reserves - **ID**: us-coastal-zone-management-act-1972 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Coastal Zone Management Act of 1972 (CZMA, Public Law 92-583, codified at 16 USC 1451-1466, enacted 27 October 1972) is the foundational US federal statute governing land and water use in coastal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-coastal-zone-management-act-1972.json #### US Endangered Species Act: Listing, Section 7 Consultation, Prohibited Takings and Penalties - **ID**: us-endangered-species-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Endangered Species Act of 1973 (ESA), codified at 16 U.S.C. Chapter 35 (sections 1531-1544), is the principal US statute for the conservation of threatened and endangered species and the ecosystem... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-endangered-species-act.json #### 40 CFR Part 141 - National Primary Drinking Water Regulations (EPA) - **ID**: us-epa-40-cfr-141-national-primary-drinking-water-regulations - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 141 sets the legally enforceable national primary drinking water regulations for public water systems, fixing maximum contaminant levels and treatment techniques for inorganic, organic... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-141-national-primary-drinking-water-regulations.json #### 40 CFR Part 403 - General Pretreatment Regulations for Existing and New Sources of Pollution - **ID**: us-epa-40-cfr-403-general-pretreatment-regulations - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 403 establishes the general pretreatment regulations under the Clean Water Act, prohibiting industrial users from introducing pollutants that pass through or interfere with a publicly ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-403-general-pretreatment-regulations.json #### 40 CFR Part 503 - Standards for the Use or Disposal of Sewage Sludge (Biosolids) - **ID**: us-epa-40-cfr-503-sewage-sludge-biosolids-standards - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: EPA 40 CFR Part 503 sets the standards for the use or disposal of sewage sludge, requiring preparers and appliers to meet the general requirements and any exclusions, conduct sampling and analysis, sa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-40-cfr-503-sewage-sludge-biosolids-standards.json #### US EPA Clean Water Act Section 402 - National Pollutant Discharge Elimination System (NPDES) - **ID**: us-epa-clean-water-act-section-402-npdes - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Clean Water Act Section 402 (33 U.S.C. § 1342) establishes the NPDES permit program administered by EPA and authorized states, requiring any discharge of pollutants from a point source into navigable ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epa-clean-water-act-section-402-npdes.json #### US Emergency Planning and Community Right-To-Know Act (EPCRA, 42 USC ch 116): Release Notification and Reporting - **ID**: us-epcra - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Emergency Planning and Community Right-To-Know Act of 1986 (EPCRA), codified at 42 U.S.C. Chapter 116 (sections 11001-11050), establishes requirements for emergency planning and for reporting on h... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-epcra.json #### US Federal Land Policy and Management Act (43 USC 1701 et seq.): Retention Policy, Multiple Use and Sustained Yield, Land Use Plans and Enforcement - **ID**: us-federal-land-policy-and-management-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Federal Land Policy and Management Act of 1976 (FLPMA), codified at 43 U.S.C. 1701 et seq., is the organic statute for the public lands administered by the Bureau of Land Management within the Dep... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-land-policy-and-management-act.json #### US Fish and Wildlife Coordination Act (16 USC ch 5A): Consultation on Water-Resource Projects - **ID**: us-fish-and-wildlife-coordination-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Fish and Wildlife Coordination Act, codified at 16 U.S.C. Chapter 5A, subchapter I (sections 661-667e), requires federal agencies and federally permitted or licensed projects that modify water bod... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fish-and-wildlife-coordination-act.json #### US Lacey Act (16 USC ch 53): Prohibition on Trafficking in Illegally Taken Fish, Wildlife and Plants - **ID**: us-lacey-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Lacey Act, as amended and codified at 16 U.S.C. Chapter 53 (sections 3371-3378), is the principal US statute combating trafficking in illegally taken fish, wildlife and plants, enforced by the US ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-lacey-act.json #### US Marine Mammal Protection Act (16 USC ch 31): Take Moratorium, Permits and Incidental Take in Fishing - **ID**: us-marine-mammal-protection-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Marine Mammal Protection Act (MMPA), codified at 16 U.S.C. Chapter 31 (sections 1361-1423h), establishes a moratorium on the taking and importation of marine mammals and marine mammal products, ad... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-marine-mammal-protection-act.json #### US Marine Protection Research and Sanctuaries Act 1972 - Ocean Dumping Act EPA Permit Programme and National Marine Sanctuaries - **ID**: us-marine-protection-research-sanctuaries-act-1972 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Marine Protection, Research, and Sanctuaries Act of 1972 (MPRSA, Public Law 92-532, enacted 23 October 1972), commonly known as the Ocean Dumping Act, is the principal US federal statute regulatin... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-marine-protection-research-sanctuaries-act-1972.json #### US Migratory Bird Treaty Act: Prohibited Takings, Permits and Penalties - **ID**: us-migratory-bird-treaty-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Migratory Bird Treaty Act (MBTA), codified at 16 U.S.C. Chapter 7, subchapter II (sections 703-712), implements four bilateral conventions for the protection of migratory birds (with Great Britain... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-migratory-bird-treaty-act.json #### US National Marine Sanctuaries Act (16 U.S.C. Chapter 32): Designation, Protection and Enforcement of Marine Sanctuaries - **ID**: us-national-marine-sanctuaries-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The National Marine Sanctuaries Act, codified at 16 U.S.C. Chapter 32 (sections 1431 through 1445c), authorizes the Secretary of Commerce, acting through the National Oceanic and Atmospheric Administr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-marine-sanctuaries-act.json #### US National Trails System Act of 1968 (16 U.S.C. Chapter 27): Establishment and Administration of National Trails - **ID**: us-national-trails-system-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The National Trails System Act of 1968, codified at 16 U.S.C. Chapter 27 (sections 1241 through 1251), establishes a national system of recreation, scenic, and historic trails to promote public access... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-trails-system-act.json #### US National Environmental Policy Act (NEPA, 42 USC ch 55): Environmental Impact Statements for Major Federal Actions - **ID**: us-nepa - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The National Environmental Policy Act of 1969 (NEPA), codified at 42 U.S.C. Chapter 55 (sections 4321-4347), is the foundational US environmental statute establishing a national environmental policy a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nepa.json #### US Ocean Dumping Act / MPRSA Title I (33 USC ch 27): Dumping Permits, Prohibitions and Penalties - **ID**: us-ocean-dumping-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: Title I of the Marine Protection, Research, and Sanctuaries Act of 1972 (the Ocean Dumping Act), codified at 33 U.S.C. Chapter 27 (sections 1401-1445), regulates the transportation and dumping of mate... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ocean-dumping-act.json #### US Oil Pollution Act of 1990 (33 USC ch 40): Responsible-Party Liability, Limits and Financial Responsibility - **ID**: us-oil-pollution-act-1990 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Oil Pollution Act of 1990 (OPA), codified at 33 U.S.C. Chapter 40 (sections 2701-2762), establishes a comprehensive federal regime of liability and compensation for discharges of oil into navigabl... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-oil-pollution-act-1990.json #### US Pollution Prevention Act of 1990 (42 USC ch 133): Source Reduction Hierarchy and Reporting - **ID**: us-pollution-prevention-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Pollution Prevention Act of 1990 (PPA), codified at 42 U.S.C. Chapter 133 (sections 13101-13109), establishes pollution prevention through source reduction as the national environmental policy of ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-pollution-prevention-act.json #### US Resource Conservation and Recovery Act (RCRA, 42 USC ch 82): Cradle-to-Grave Hazardous Waste Management - **ID**: us-rcra-solid-waste - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Solid Waste Disposal Act, as amended by the Resource Conservation and Recovery Act (RCRA), codified at 42 U.S.C. Chapter 82 (sections 6901-6992k), governs the management of solid and hazardous was... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-rcra-solid-waste.json #### US Rivers and Harbors Act of 1899 (33 USC ch 9): Navigable Waters, Corps Permits and the Refuse Act - **ID**: us-rivers-and-harbors-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Rivers and Harbors Appropriation Act of 1899, codified at 33 U.S.C. Chapter 9 (sections 401 et seq.), is the foundational US statute protecting the navigable capacity of the waters of the United S... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-rivers-and-harbors-act.json #### US Rivers and Harbors Appropriation Act 1899 Section 10 - Army Corps of Engineers Permit for Obstruction or Alteration of Navigable Waters - **ID**: us-rivers-harbors-act-1899-section-10 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Rivers and Harbors Appropriation Act of 1899 (33 USC 401-467, enacted 3 March 1899, 30 Stat. 1151) is the oldest federal environmental law in the United States and remains the principal statute go... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-rivers-harbors-act-1899-section-10.json #### US Safe Drinking Water Act: NPDWRs, Public Water Systems, Underground Injection Control and Enforcement - **ID**: us-safe-drinking-water-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Safe Drinking Water Act (SDWA), codified at 42 U.S.C. Chapter 6A, subchapter XII (sections 300f-300j-27), is the principal US statute protecting the quality of drinking water supplied by public wa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-safe-drinking-water-act.json #### US Safe Drinking Water Act - 42 U.S.C. § 300f - National Primary Drinking Water Regulations - **ID**: us-safe-drinking-water-act-42-usc-300f-sdwa - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Safe Drinking Water Act (42 U.S.C. §§ 300f-300j-26) authorizes EPA to set National Primary Drinking Water Regulations (NPDWRs) for public water systems serving 25 or more persons. EPA has set Maxi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-safe-drinking-water-act-42-usc-300f-sdwa.json #### US Toxic Substances Control Act (TSCA, 15 USC ch 53): Premanufacture Notice, Risk Evaluation and Penalties - **ID**: us-toxic-substances-control-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Toxic Substances Control Act (TSCA), codified at 15 U.S.C. Chapter 53 (subchapter I, sections 2601-2629), gives the US Environmental Protection Agency (EPA) authority to regulate the manufacture, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-toxic-substances-control-act.json #### US Water Resources Planning Act (42 USC 1962 et seq.): Comprehensive Coordinated Planning, the Water Resources Council and River Basin Commissions - **ID**: us-water-resources-planning-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Water Resources Planning Act, codified at 42 U.S.C. 1962 et seq., establishes the federal framework for comprehensive and coordinated planning of the water and related land resources of the United... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-water-resources-planning-act.json #### US Watershed Protection and Flood Prevention Act (16 USC 1001 et seq.): Works of Improvement, Local-Organization Assistance and the Conditions for Federal Aid - **ID**: us-watershed-protection-and-flood-prevention-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Watershed Protection and Flood Prevention Act, codified at 16 U.S.C. 1001 et seq., authorises Federal cooperation with States and local organizations to carry out works of improvement for soil con... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-watershed-protection-and-flood-prevention-act.json #### US Whaling Convention Act of 1949 (16 U.S.C. Chapter 14): Domestic Implementation of the International Convention for the Regulation of Whaling - **ID**: us-whaling-convention-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Whaling Convention Act of 1949, codified at 16 U.S.C. Chapter 14, Subchapter II (sections 916 through 916l), implements in United States law the International Convention for the Regulation of Whal... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-whaling-convention-act.json #### US Wild and Scenic Rivers Act (16 USC ch 28): River Designation, Classification and Project Restrictions - **ID**: us-wild-and-scenic-rivers-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Wild and Scenic Rivers Act, codified at 16 U.S.C. Chapter 28 (sections 1271-1287), establishes a national system to preserve selected rivers with outstandingly remarkable values in their free-flow... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wild-and-scenic-rivers-act.json #### US Wild and Scenic Rivers Act 1968 - National Wild and Scenic Rivers System Designation, Classification and Section 7 Federal Activity Review - **ID**: us-wild-scenic-rivers-act-1968 - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Wild and Scenic Rivers Act of 1968 (WSRA, Public Law 90-542, codified at 16 USC 1271-1287, enacted 2 October 1968) establishes the National Wild and Scenic Rivers System (NWSRS) protecting selecte... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wild-scenic-rivers-act-1968.json #### US Wilderness Act (16 USC 1131-1136): The National Wilderness Preservation System, the Definition of Wilderness and the Use Prohibitions - **ID**: us-wilderness-act - **Category**: Water & Environmental Resources - **Version**: 1.0.0 - **BLUF**: The Wilderness Act of 1964, codified at 16 U.S.C. 1131 to 1136, establishes the National Wilderness Preservation System and the legal protections that apply to designated wilderness, administered by t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-wilderness-act.json ### Workflow Automation (107 nodes) #### Agent Budgetary Controls & Ceiling Checks - **ID**: agent-budget-cap - **Category**: Workflow Automation - **Version**: 1.1.0 - **BLUF**: Agentized financial controls (Action Boundaries) restrict an autonomous agent's spending power per session, task, or API call to prevent catastrophic loss or unbounded consumption. A properly implemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/agent-budget-cap.json #### Agent Emergency Stop (Kill-Switch) Design Patterns - **ID**: agent-kill-switch - **Category**: Workflow Automation - **Version**: 1.1.0 - **BLUF**: An AI Agent Kill-Switch is a deterministic safety mechanism designed to immediately terminate or throttle an autonomous agent's execution if it exceeds predefined behavioral, financial, or operational... - **Discovery URL**: https://bidda.com/api/v1/nodes/agent-kill-switch.json #### Apache Airflow: Directed Acyclic Graph (DAG) Governance, Execution Contexts, RBAC, Connection Security and Task Idempotency - **ID**: apache-airflow-workflow-dag-governance - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Apache Airflow orchestrates complex data pipelines and automated tasks using Python-based DAGs, requiring strict governance over code structure, connection secrets, task idempotency, and role-based ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/apache-airflow-workflow-dag-governance.json #### AsyncAPI 2.6 - Event-Driven API Specification Standard - **ID**: asyncapi-2-6-event-driven-api-specification - **Category**: Workflow Automation - **Version**: 2.6.0 (September 2022) - **BLUF**: AsyncAPI 2.6.0 (September 2022) is the open specification standard for event-driven APIs and message-driven workflow automation; it defines a machine-readable contract language for asynchronous API ch... - **Discovery URL**: https://bidda.com/api/v1/nodes/asyncapi-2-6-event-driven-api-specification.json #### Australia Electronic Transactions Act 1999 (Cth) - Electronic Equivalence and Digital Commerce - **ID**: australia-electronic-transactions-act-1999 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The Electronic Transactions Act 1999 (Cth) establishes the legal equivalence of electronic communications, signatures, records, and contracts with paper-based transactions under Commonwealth law. A wr... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-electronic-transactions-act-1999.json #### Agent-to-Agent Handover Protocol (BPMN 2.0) - **ID**: automation-bpmn-agent-handover - **Category**: Workflow Automation - **Version**: 1.1.0 - **BLUF**: Enforcing a zero-trust model for state transitions within distributed business processes, the Agent-to-Agent Handover Protocol aligns with NIST SP 800-207's micro-segmentation principles. Secure commu... - **Discovery URL**: https://bidda.com/api/v1/nodes/automation-bpmn-agent-handover.json #### Error Boundary Logic (BPMN 2.0) - **ID**: automation-bpmn-error-boundary - **Category**: Workflow Automation - **Version**: 1.1.0 - **BLUF**: Ensuring predictable failure prevention and operational resilience, this BPMN 2.0 configuration aligns with stringent international standards. To satisfy mandates within the EU Digital Operational Res... - **Discovery URL**: https://bidda.com/api/v1/nodes/automation-bpmn-error-boundary.json #### Service Task Execution Pattern (BPMN 2.0) - **ID**: automation-bpmn-service-task - **Category**: Workflow Automation - **Version**: 1.1.0 - **BLUF**: Standardized, deterministic service tasks for executing automated logic within a business process, ensuring interoperability between agents and external systems. - **Discovery URL**: https://bidda.com/api/v1/nodes/automation-bpmn-service-task.json #### AWS Step Functions Workflow States and Governance - **ID**: aws-step-functions-workflow-states - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: AWS Step Functions is a service that enables the creation of workflows, also called state machines, to build distributed applications, automate processes, orchestrate microservices, and create data an... - **Discovery URL**: https://bidda.com/api/v1/nodes/aws-step-functions-workflow-states.json #### Azure Logic Apps: Enterprise Integration, Connectors, Managed Identity, VNet Integration and B2B EDI Governance - **ID**: azure-logic-apps-enterprise-integration - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Azure Logic Apps provide scalable workflow orchestration and enterprise integration, requiring strict governance over managed identities, VNet isolation, and custom API connectors to secure B2B data e... - **Discovery URL**: https://bidda.com/api/v1/nodes/azure-logic-apps-enterprise-integration.json #### Canada Access to Information Act: Right of Access, Request and Notice Procedures, Time Limits, Mandatory Exemptions for Confidential, Personal and Third-Party Information, and Information Commissioner - **ID**: canada-access-to-information-act - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The Canada Access to Information Act, R.S.C. 1985, c. A-1, is the principal Canadian statute providing a right of access to records under the control of federal government institutions and is administ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-access-to-information-act.json #### Canada PIPEDA Part 2: Electronic Documents and Secure Electronic Signatures - **ID**: canada-personal-information-protection-electronic-documents-act-part-2 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Part 2 of the Personal Information Protection and Electronic Documents Act (S.C. 2000, c. 5), titled Electronic Documents, provides the legal framework for using electronic alternatives where federal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-personal-information-protection-electronic-documents-act-part-2.json #### CNCF CloudEvents 1.0 - Event-Driven Workflow Interoperability Specification - **ID**: cncf-cloudevents-1-0-event-driven-workflow-specification - **Category**: Workflow Automation - **Version**: 2.0.0 - **BLUF**: CNCF CloudEvents 1.0 (CNCF Graduated Project, 2018, updated 2022) defines a vendor-neutral specification for describing event data in a common format to achieve interoperability across event-driven wo... - **Discovery URL**: https://bidda.com/api/v1/nodes/cncf-cloudevents-1-0-event-driven-workflow-specification.json #### COBIT 2019 - Governance and Management Objectives for IT Workflow Processes: APO, BAI, DSS, MEA Domains and Process Capability Assessment - **ID**: cobit-2019-governance-workflow-processes - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: COBIT 2019 provides a comprehensive framework for the governance and management of enterprise IT, establishing structured workflow controls across Align, Plan, Organize (APO), Build, Acquire, Implemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/cobit-2019-governance-workflow-processes.json #### ECB TIBER-EU 2018 Threat Intelligence-Based Ethical Red Teaming Framework - **ID**: ecb-tiber-eu-framework-2018-threat-intelligence-red-teaming - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The European Central Bank's TIBER-EU (Threat Intelligence-Based Ethical Red Teaming) framework, published May 2018, is a pan-European framework for financial entities to test and improve their cyber r... - **Discovery URL**: https://bidda.com/api/v1/nodes/ecb-tiber-eu-framework-2018-threat-intelligence-red-teaming.json #### REGULATION (EU) 2024/1689 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 13 June 2024 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act) - Article 17 Quality management system - **ID**: eu-ai-act-article-17-quality-management-workflow - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Providers of high-risk AI systems must establish, implement, document, and maintain a comprehensive quality management system covering the entire AI lifecycle. - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-17-quality-management-workflow.json #### EU AI Act (EU) 2024/1689 Article 9 - Risk Management System for High-Risk AI Systems Used in Automated Compliance and Decision Workflows - **ID**: eu-ai-act-article-9-risk-management-automated-systems - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Providers of high-risk AI systems must establish, implement, document, and maintain a risk management system as a continuous iterative process throughout the entire lifecycle of the system. The system... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-article-9-risk-management-automated-systems.json #### EU AI Act: Automated Decision Workflows, High-Risk System Classification, Human Oversight, and Transparency Obligations - **ID**: eu-ai-act-automated-decision-workflows - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The EU AI Act mandates stringent controls over automated decision-making workflows classified as high-risk, requiring demonstrable human oversight (human-in-the-loop), robust transparency, and active ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-ai-act-automated-decision-workflows.json #### EU Data Governance Act 2022/868 - Data Intermediation Services, Data Altruism, and Public Sector Data Re-use - **ID**: eu-data-governance-act-2022-868 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2022/868 of the European Parliament and of the Council on European data governance (Data Governance Act, DGA) became applicable on 24 September 2023. The DGA establishes a framework fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-data-governance-act-2022-868.json #### EU eIDAS Regulation 910/2014 - Electronic Identification and Trust Services for Workflow Compliance - **ID**: eu-eidas-regulation-910-2014-electronic-identification - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: EU Regulation 910/2014 on Electronic Identification and Trust Services (eIDAS, effective 1 July 2016, amended by Regulation 2024/1183 introducing the EU Digital Identity Wallet) establishes the legal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eidas-regulation-910-2014-electronic-identification.json #### EU ESEF Regulation 2019/815 - European Single Electronic Format iXBRL Tagging and Annual Financial Report Digital Submission - **ID**: eu-esef-regulation-2019-815 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Commission Delegated Regulation (EU) 2019/815 on the European Single Electronic Format (ESEF) was published on 17 December 2019 and became mandatory for financial years beginning on or after 1 January... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-esef-regulation-2019-815.json #### Regulation (EU) 2023/1230 on machinery - Article 10: Obligations of distributors - **ID**: eu-machinery-regulation-2023-1230-article-10-technical-file - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: This article outlines the obligations for distributors to ensure machinery and related products conform to safety requirements, including halting distribution, taking corrective actions, and cooperati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-machinery-regulation-2023-1230-article-10-technical-file.json #### Regulation (EU) 2023/1230 on machinery - Article 6: Categories of machinery and related products listed in Annex I subject to relevant conformity assessment procedures - **ID**: eu-machinery-regulation-2023-1230-article-6-essential-requirements - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: This article mandates that machinery and related products listed in Annex I must undergo specific conformity assessment procedures, with different options available depending on whether the product is... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-machinery-regulation-2023-1230-article-6-essential-requirements.json #### EU Maritime Single Window Regulation (EU) 2019/1239 - eMSW Digital Reporting Framework - **ID**: eu-maritime-single-window-regulation-2019-1239 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Regulation (EU) 2019/1239 establishes the European Maritime Single Window environment (eMSW), requiring EU Member States to operate a national single window portal by 15 August 2025 through which ship... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-maritime-single-window-regulation-2019-1239.json #### EU MiFID II Delegated Regulation (EU) 2017/589 (RTS 6) - Organisational Requirements for Investment Firms Engaged in Algorithmic Trading - **ID**: eu-mifid-ii-delegated-regulation-2017-589-algo-trading - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Investment firms and trading venues engaging in algorithmic trading must implement a full lifecycle governance framework under RTS 6: pre-deployment testing (conformance, integration, stress), product... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-mifid-ii-delegated-regulation-2017-589-algo-trading.json #### EU NIS2 Directive - Workflow Security in Critical Operations: Incident Response Workflows, Reporting Obligations, Supply Chain Security and Governance Requirements - **ID**: eu-nis2-directive-workflow-critical-operations - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The EU NIS2 Directive requires essential and important entities to implement secure, automated incident response workflows, strict supply chain risk management, and mandatory 24-hour early warning rep... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-nis2-directive-workflow-critical-operations.json #### EU Professional Qualifications Directive 2005/36 - Recognition of Qualifications, Sectoral Professions, and IMI System - **ID**: eu-professional-qualifications-directive-2005-36 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Directive 2005/36/EC of the European Parliament and of the Council on the recognition of professional qualifications (the PQD) establishes the framework for the recognition of professional qualificati... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-professional-qualifications-directive-2005-36.json #### FCA SYSC 8.1 Outsourcing Requirements for FCA-Regulated Firms - **ID**: fca-sysc-8-1-outsourcing-requirements - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: FCA Handbook SYSC 8.1, implementing MiFID II Article 16(5) outsourcing requirements for investment firms and supplemented by FCA SS1/21 for non-MiFID firms, requires FCA-regulated firms that outsource... - **Discovery URL**: https://bidda.com/api/v1/nodes/fca-sysc-8-1-outsourcing-requirements.json #### FFIEC Business Continuity Management Booklet 2019 - **ID**: ffiec-business-continuity-management-booklet-2019 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The FFIEC Business Continuity Management (BCM) Booklet, updated November 2019, provides comprehensive guidance for financial institutions on managing business continuity risk across the full BCM lifec... - **Discovery URL**: https://bidda.com/api/v1/nodes/ffiec-business-continuity-management-booklet-2019.json #### FFIEC IT Examination Handbook Audit Booklet Information Systems Audit - **ID**: ffiec-it-handbook-audit-information-systems - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The FFIEC IT Examination Handbook Audit Booklet establishes supervisory expectations for financial institution IT audit programs, requiring risk-based audit scoping, independence from audited function... - **Discovery URL**: https://bidda.com/api/v1/nodes/ffiec-it-handbook-audit-information-systems.json #### FRB SR 11-7 Supervisory Guidance on Model Risk Management - **ID**: frb-sr-11-7-model-risk-management - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Federal Reserve and OCC joint supervisory guidance SR 11-7 requires banking organizations to implement comprehensive model risk management covering model inventory, risk tiering, independent validatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/frb-sr-11-7-model-risk-management.json #### Germany Online Access Act 2017 (Onlinezugangsgesetz - OZG) - Digital Government Services Obligation - **ID**: germany-online-access-act-2017-ozg - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The German Online Access Act 2017 (Onlinezugangsgesetz, OZG) required all federal, state (Länder), and municipal authorities to make 575 administrative services digitally accessible via a nationwide I... - **Discovery URL**: https://bidda.com/api/v1/nodes/germany-online-access-act-2017-ozg.json #### GraphQL Specification October 2021 - Query Language and Runtime Execution Standard for API Workflow - **ID**: graphql-specification-2021-query-language - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The GraphQL October 2021 specification (graphql.github.io) defines a query language and runtime for APIs enabling clients to request exactly the data they need; specifies type system (Schema Definitio... - **Discovery URL**: https://bidda.com/api/v1/nodes/graphql-specification-2021-query-language.json #### Agent Discovery & Capability Registry (IEEE P3931 ADDR) - **ID**: ieee-3931-discovery - **Category**: Workflow Automation - **Version**: 1.1.1 - **BLUF**: The IEEE P3931 standard for Agent Description, Discovery, and Registry (ADDR) defines a universal, platform-agnostic framework for how autonomous agents describe their capabilities and how they are di... - **Discovery URL**: https://bidda.com/api/v1/nodes/ieee-3931-discovery.json #### IETF OAuth 2.1 Authorization Framework - Consolidated Secure Authorization for Workflow APIs - **ID**: ietf-oauth-2-1-authorization-framework - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: OAuth 2.1 (IETF draft-ietf-oauth-v2-1, consolidating OAuth 2.0 RFC 6749 with security best practices from RFC 8252, RFC 8707, RFC 9068, RFC 9126, and RFC 9449) is the definitive authorization framewor... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-oauth-2-1-authorization-framework.json #### IETF RFC 6238 TOTP Time-Based One-Time Password Algorithm - Time Step T Equals Floor of Unix Time Minus T0 Over X HMAC-SHA-1 Dynamic Truncation 30 Second Default Step Clock Drift Tolerance and Multi-Factor Authentication - **ID**: ietf-rfc-6238-totp-time-based-one-time-password - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: IETF RFC 6238 specifies TOTP the Time-Based One-Time Password Algorithm extending HOTP RFC 4226 by replacing the event counter with a time-derived value computed as T equals the floor of current Unix ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-6238-totp-time-based-one-time-password.json #### IETF RFC 6241 NETCONF Network Configuration Protocol - XML RPC Configuration Management Datastore Operations Capability Exchange and SSH Transport - **ID**: ietf-rfc-6241-netconf-network-configuration-protocol - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: IETF RFC 6241 specifies the Network Configuration Protocol NETCONF as a standards-track XML-based remote procedure call protocol for installing manipulating and deleting the configuration of network d... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-6241-netconf-network-configuration-protocol.json #### IETF RFC 6455 - WebSocket Protocol: Full-Duplex Real-Time Communication Standard - **ID**: ietf-rfc-6455-websocket-protocol-2011 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: RFC 6455 (2011) defines the WebSocket protocol enabling persistent, full-duplex communication over a single TCP connection upgraded from HTTP; mandates TLS-encrypted WSS for production deployments; re... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-6455-websocket-protocol-2011.json #### IETF RFC 6749 - OAuth 2.0 Authorization Framework: Core Delegated Authorization Protocol - **ID**: ietf-rfc-6749-oauth-2-0-authorization-framework-2012 - **Category**: Workflow Automation - **Version**: 2012-10 - **BLUF**: IETF RFC 6749 (October 2012) defines the OAuth 2.0 authorization framework, establishing four authorization grant types (authorization code, implicit, resource owner password credentials, client crede... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-6749-oauth-2-0-authorization-framework-2012.json #### IETF RFC 6902 JSON Patch - Six Operation Document Format for HTTP PATCH and Programmatic Modification of JSON Documents with JSON Pointer Path Syntax - **ID**: ietf-rfc-6902-json-patch - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: IETF RFC 6902 specifies JSON Patch as the format for expressing a sequence of operations to apply to a target JSON document, organised around six operations add remove replace move copy and test where... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-6902-json-patch.json #### IETF RFC 7009 - OAuth 2.0 Token Revocation: Explicit Token Invalidation Protocol - **ID**: ietf-rfc-7009-oauth-2-0-token-revocation-2013 - **Category**: Workflow Automation - **Version**: 2013-08 - **BLUF**: RFC 7009 defines the OAuth 2.0 Token Revocation endpoint protocol allowing clients to notify the authorization server that a previously obtained token (access token or refresh token) is no longer need... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-7009-oauth-2-0-token-revocation-2013.json #### IETF RFC 7396 JSON Merge Patch - Recursive Merge Algorithm Application Merge Patch JSON Media Type and Object-Oriented Partial Update Semantics for HTTP PATCH - **ID**: ietf-rfc-7396-json-merge-patch - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: IETF RFC 7396 specifies the JSON Merge Patch format which describes modifications to a target JSON document using syntax that mirrors the target document with null values given special meaning to indi... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-7396-json-merge-patch.json #### IETF RFC 7519 - JSON Web Token (JWT) for Secure Workflow API Authentication - **ID**: ietf-rfc-7519-json-web-token-jwt - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: IETF RFC 7519 (JSON Web Token, May 2015) defines a compact, URL-safe means of representing claims to be transferred between two parties as a JSON object that may be digitally signed (JWS - RFC 7515) o... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-7519-json-web-token-jwt.json #### IETF RFC 7523 - JWT Profile for OAuth 2.0 Client Authentication and Authorization Grants - **ID**: ietf-rfc-7523-jwt-profile-oauth2-client-authentication-2015 - **Category**: Workflow Automation - **Version**: 2015-05 - **BLUF**: IETF RFC 7523 (May 2015) defines how JSON Web Tokens (JWT) can be used as OAuth 2.0 client authentication credentials and as authorization grants, enabling machine-to-machine API authentication withou... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-7523-jwt-profile-oauth2-client-authentication-2015.json #### IETF RFC 7591 OAuth 2.0 Dynamic Client Registration Protocol - Client Metadata Registration Endpoint Initial Access Tokens Software Statement and Self-Service Client Provisioning - **ID**: ietf-rfc-7591-oauth-2-0-dynamic-client-registration - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: IETF RFC 7591 specifies the OAuth 2.0 Dynamic Client Registration Protocol enabling clients to register with an OAuth 2.0 authorization server at runtime instead of through manual configuration coveri... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-7591-oauth-2-0-dynamic-client-registration.json #### IETF RFC 7636 - Proof Key for Code Exchange (PKCE): OAuth 2.0 Authorization Code Security Extension - **ID**: ietf-rfc-7636-pkce-proof-key-code-exchange-2015 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: RFC 7636 (September 2015) defines Proof Key for Code Exchange (PKCE), a security extension to the OAuth 2.0 Authorization Code Grant that prevents authorization code interception attacks for public cl... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-7636-pkce-proof-key-code-exchange-2015.json #### IETF RFC 7642/7643/7644 - SCIM 2.0: System for Cross-Domain Identity Management Protocol for Workflow Automation - **ID**: ietf-rfc-7642-scim-2-0-user-provisioning-2015 - **Category**: Workflow Automation - **Version**: 1.0.1 - **BLUF**: SCIM 2.0 (RFC 7642 concepts, RFC 7643 schema, RFC 7644 protocol - September 2015) defines a standardized REST API and JSON schema for automated user and group lifecycle management (provisioning, depro... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-7642-scim-2-0-user-provisioning-2015.json #### IETF RFC 7662 - OAuth 2.0 Token Introspection: Active Token Validation Protocol - **ID**: ietf-rfc-7662-oauth-2-0-token-introspection-2015 - **Category**: Workflow Automation - **Version**: 2015-10 - **BLUF**: RFC 7662 defines the OAuth 2.0 Token Introspection protocol enabling protected resource servers to query an authorization server to determine the state and metadata of a presented access token or refr... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-7662-oauth-2-0-token-introspection-2015.json #### IETF RFC 7807 - Problem Details for HTTP APIs: Standardized Error Response Format for Workflow Integration - **ID**: ietf-rfc-7807-problem-details-http-apis - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: RFC 7807 (March 2016) defines a standard machine-readable format for HTTP API error responses using Problem Detail objects in application/problem+json or application/problem+xml media types; specifies... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-7807-problem-details-http-apis.json #### IETF RFC 7950 YANG 1.1 Data Modeling Language - Module Container Leaf List Grouping Augment Choice Action and Notification Statements for Network Management Configuration State and Operations - **ID**: ietf-rfc-7950-yang-1-1-data-modeling-language - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: IETF RFC 7950 defines YANG 1.1 the data modeling language for the NETCONF Network Configuration Protocol and adjacent network management protocols including RESTCONF and CoAP Management Interface, org... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-7950-yang-1-1-data-modeling-language.json #### IETF RFC 8414 - OAuth 2.0 Authorization Server Metadata: Discovery Protocol - **ID**: ietf-rfc-8414-oauth-2-0-authorization-server-metadata-2018 - **Category**: Workflow Automation - **Version**: 2018-06 - **BLUF**: RFC 8414 defines the OAuth 2.0 Authorization Server Metadata discovery protocol enabling clients to automatically discover authorization server capabilities - including endpoint URLs, supported grant ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-8414-oauth-2-0-authorization-server-metadata-2018.json #### IETF RFC 8615 Well-Known Uniform Resource Identifiers - Reserved Slash Dot Well Known Slash Path Suffix Registry Discovery Mechanism for Site-Wide Metadata Across HTTP HTTPS WebSocket and CoAP - **ID**: ietf-rfc-8615-well-known-uris - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: IETF RFC 8615 establishes the standardized framework for discovering site-wide metadata through reserved URI paths obsoleting RFC 5785 by defining a well-known URI as one whose path component begins w... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-8615-well-known-uris.json #### IETF RFC 8628 - OAuth 2.0 Device Authorization Grant: Browserless and Input-Constrained Device Authentication - **ID**: ietf-rfc-8628-device-authorization-grant-2019 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: RFC 8628 (August 2019) defines the OAuth 2.0 Device Authorization Grant (formerly Device Flow) enabling devices with limited input capabilities (CLI tools, IoT devices, smart TVs, AI agents without br... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-8628-device-authorization-grant-2019.json #### IETF RFC 8725 - JSON Web Token Best Current Practices: Security Hardening for Workflow Authentication - **ID**: ietf-rfc-8725-jwt-best-current-practices - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: RFC 8725 (February 2020) is an IETF Best Current Practice that supersedes and corrects security deficiencies identified in RFC 7519 (JWT); prohibits algorithm confusion attacks by mandating algorithm ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-8725-jwt-best-current-practices.json #### IETF RFC 9068 - JSON Web Token (JWT) Profile for OAuth 2.0 Access Tokens: Self-Contained Token Standard - **ID**: ietf-rfc-9068-jwt-profile-access-tokens-2021 - **Category**: Workflow Automation - **Version**: 2021-10 - **BLUF**: IETF RFC 9068 (October 2021) defines a standardized JSON Web Token (JWT) profile for OAuth 2.0 access tokens, specifying required claims (iss, exp, aud, sub, client_id, iat, jti), the at+JWT content t... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-9068-jwt-profile-access-tokens-2021.json #### IETF RFC 9110 - HTTP Semantics (2022) Web Service Workflow Standard - **ID**: ietf-rfc-9110-http-semantics-2022 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: IETF RFC 9110 (June 2022) is the authoritative specification for HTTP semantics, defining request methods, status codes, headers, content negotiation, authentication, and caching. It supersedes RFC 72... - **Discovery URL**: https://bidda.com/api/v1/nodes/ietf-rfc-9110-http-semantics-2022.json #### ISAE 3402:2011 - Assurance Reports on Controls at a Service Organization - **ID**: isae-3402-2011-service-organization-controls - **Category**: Workflow Automation - **Version**: 2011 (effective December 15, 2009) - **BLUF**: ISAE 3402 (International Standard on Assurance Engagements No. 3402, IAASB 2009/effective 2011) governs assurance reports on controls at service organizations whose processing workflows form part of a... - **Discovery URL**: https://bidda.com/api/v1/nodes/isae-3402-2011-service-organization-controls.json #### ITIL 4 - Service Value Chain: Plan, Improve, Engage, Design, Obtain/Build, Deliver/Support Activities and Integration with Workflow Orchestration Practices - **ID**: itil-v4-service-value-chain-workflows - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: ITIL 4 Service Value Chain provides an operating model for the creation, delivery, and ongoing improvement of services through automated and interconnected workflows across six key activities. - **Discovery URL**: https://bidda.com/api/v1/nodes/itil-v4-service-value-chain-workflows.json #### KCS Evolve Loop - **ID**: kcs-evolve-loop - **Category**: Workflow Automation - **Version**: 1.1.0 - **BLUF**: Knowledge-Centered Service (KCS) v6, developed by the Consortium for Service Innovation, defines the Evolve Loop as the organizational and strategic activities that ensure the KCS program itself conti... - **Discovery URL**: https://bidda.com/api/v1/nodes/kcs-evolve-loop.json #### Model Context Protocol (MCP) Enterprise Security - **ID**: mcp-enterprise-auth - **Category**: Workflow Automation - **Version**: 1.1.0 - **BLUF**: Standardized security protocols for establishing trust, authenticating context, and limiting data exposure between enterprise data sources and LLM agents using MCP. - **Discovery URL**: https://bidda.com/api/v1/nodes/mcp-enterprise-auth.json #### NIST SP 800-204B - Attribute-based Access Control (ABAC) for Microservices-based Applications using a Zero Trust Architecture - **ID**: nist-sp-800-204b-zero-trust-microservices - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: NIST SP 800-204B provides guidance on deploying Attribute-Based Access Control (ABAC) to secure automated workflows and microservices within a Zero Trust Architecture, emphasizing dynamic authenticati... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-204b-zero-trust-microservices.json #### NIST SP 800-218 Secure Software Development Framework (SSDF) - Workflow Integration Requirements - **ID**: nist-sp-800-218-secure-software-development-framework-ssdf - **Category**: Workflow Automation - **Version**: 2.0.0 - **BLUF**: NIST SP 800-218 (Secure Software Development Framework, February 2022) defines 4 practice groups and 19 specific practices for integrating security throughout the software development lifecycle (SDLC)... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-218-secure-software-development-framework-ssdf.json #### NIST SP 800-53A Rev 5 - Assessing Security and Privacy Controls - **ID**: nist-sp-800-53a-rev5-security-assessment-procedures - **Category**: Workflow Automation - **Version**: Rev 5 (January 2022) - **BLUF**: NIST SP 800-53A Revision 5 (January 2022) provides the authoritative assessment procedures for all security and privacy controls in NIST SP 800-53 Rev 5; it defines three assessment methods (examine, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nist-sp-800-53a-rev5-security-assessment-procedures.json #### OASIS SAML 2.0 - Security Assertion Markup Language for Enterprise Federated Identity - **ID**: oasis-saml-2-0-federated-identity-workflow - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: OASIS Security Assertion Markup Language (SAML) 2.0 (OASIS Standard, March 2005, revised 2012) is the foundational standard for enterprise federated identity, single sign-on (SSO), and cross-organizat... - **Discovery URL**: https://bidda.com/api/v1/nodes/oasis-saml-2-0-federated-identity-workflow.json #### OASIS TOSCA Simple Profile YAML 1.3 - Cloud Application Topology and Orchestration - **ID**: oasis-tosca-simple-profile-1-3-cloud-topology-orchestration - **Category**: Workflow Automation - **Version**: 1.3 - **BLUF**: OASIS TOSCA Simple Profile in YAML v1.3 (2020) provides a declarative, portable standard for describing cloud application topologies as node templates with relationship templates, capability types, an... - **Discovery URL**: https://bidda.com/api/v1/nodes/oasis-tosca-simple-profile-1-3-cloud-topology-orchestration.json #### OASIS WS-BPEL 2.0 - Web Services Business Process Execution Language - **ID**: oasis-ws-bpel-2-0-web-service-orchestration - **Category**: Workflow Automation - **Version**: 2.0 - **BLUF**: WS-BPEL 2.0 (OASIS Standard, April 2007) defines XML-based orchestration logic for composing web services into executable business processes using partner links, correlation sets, structured activitie... - **Discovery URL**: https://bidda.com/api/v1/nodes/oasis-ws-bpel-2-0-web-service-orchestration.json #### OASIS XACML 3.0 - eXtensible Access Control Markup Language - **ID**: oasis-xacml-3-0-access-control-policy-language - **Category**: Workflow Automation - **Version**: 3.0 - **BLUF**: OASIS XACML 3.0 (2013) is the standard policy language and enforcement architecture for attribute-based access control (ABAC); it defines Policy Administration Points (PAP), Policy Decision Points (PD... - **Discovery URL**: https://bidda.com/api/v1/nodes/oasis-xacml-3-0-access-control-policy-language.json #### OCC Bulletin 2023-17 Third-Party Risk Management Interagency Guidance - **ID**: occ-bulletin-2023-17-third-party-risk-management - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: OCC Bulletin 2023-17, issued jointly by the OCC, Federal Reserve, and FDIC in June 2023, provides interagency guidance on third-party risk management for banking organizations, establishing a risk-bas... - **Discovery URL**: https://bidda.com/api/v1/nodes/occ-bulletin-2023-17-third-party-risk-management.json #### OMG Case Management Model and Notation (CMMN) Version 1.1 (formal/16-12-01) - **ID**: omg-cmmn-1-1-case-management-model-and-notation-2016 - **Category**: Workflow Automation - **Version**: 1.1.0 - **BLUF**: Organisations that model knowledge-driven, event-driven, and discretionary work - claims handling, investigations, customer onboarding, complex service requests, and other non-deterministic case work ... - **Discovery URL**: https://bidda.com/api/v1/nodes/omg-cmmn-1-1-case-management-model-and-notation-2016.json #### OMG CMMN 1.1 - Case Management Model and Notation - **ID**: omg-cmmn-1-1-case-management-model-notation - **Category**: Workflow Automation - **Version**: 1.1 (June 2016) - **BLUF**: OMG CMMN 1.1 (Case Management Model and Notation, June 2016) is the Object Management Group formal standard for modelling adaptive, knowledge-intensive case work; it defines Cases, Stages, Discretiona... - **Discovery URL**: https://bidda.com/api/v1/nodes/omg-cmmn-1-1-case-management-model-notation.json #### OMG DMN 1.4 - Decision Model and Notation for Automated Business Rule Workflows - **ID**: omg-dmn-1-4-decision-model-notation - **Category**: Workflow Automation - **Version**: 2.0.0 - **BLUF**: OMG DMN 1.4 (Decision Model and Notation, 2023) defines a standardized graphical and machine-executable notation for expressing business decision logic in automated workflows. Core artefacts are Decis... - **Discovery URL**: https://bidda.com/api/v1/nodes/omg-dmn-1-4-decision-model-notation.json #### OpenGitOps v1.0 - Declarative Workflow and Infrastructure Automation Principles - **ID**: opengitops-v1-0-declarative-workflow-principles - **Category**: Workflow Automation - **Version**: 2.0.0 - **BLUF**: OpenGitOps v1.0 (CNCF TAG App Delivery, November 2021) defines four immutable principles for GitOps-based workflow automation: (1) Declarative - desired system state is expressed in a declarative form... - **Discovery URL**: https://bidda.com/api/v1/nodes/opengitops-v1-0-declarative-workflow-principles.json #### OpenID Connect Core 1.0 - Identity Layer for Workflow Authentication - **ID**: openid-connect-core-1-0-identity-workflow - **Category**: Workflow Automation - **Version**: 1.0 (November 2014, current) - **BLUF**: OpenID Connect Core 1.0 (OIDC, November 2014) is the OpenID Foundation's identity layer built on OAuth 2.0 that enables workflow systems to verify end-user identity through ID Tokens (JWTs), obtain ba... - **Discovery URL**: https://bidda.com/api/v1/nodes/openid-connect-core-1-0-identity-workflow.json #### Oracle Process Automation (OPA) - Governance Framework: Process Designer, Decision Service Integration, Instance Management, Audit Logs and Oracle Integration Controls - **ID**: oracle-process-automation-opa-governance - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Oracle Process Automation governance mandates strict lifecycle management of process applications, secure integration with Oracle Cloud Infrastructure (OCI), and comprehensive instance auditing. - **Discovery URL**: https://bidda.com/api/v1/nodes/oracle-process-automation-opa-governance.json #### OWASP ASVS 4.0 - Application Security Verification Standard for Workflow Applications: Authentication, Session Management, Access Control and API Security Requirements - **ID**: owasp-asvs-4-workflow-application-security - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: OWASP ASVS 4.0 provides a rigorous security standard for testing web-based workflow applications, ensuring strong authentication, session security, API hardening, and protection against injection atta... - **Discovery URL**: https://bidda.com/api/v1/nodes/owasp-asvs-4-workflow-application-security.json #### PEPPOL BIS Billing 3.0 - Pan-European E-Invoicing Standard - **ID**: peppol-bis-billing-3-0-e-invoicing-standard - **Category**: Workflow Automation - **Version**: 3.0 (current, maintained by OpenPEPPOL) - **BLUF**: PEPPOL BIS Billing 3.0 (Business Interoperability Specification) is the OpenPEPPOL standard for electronic invoicing and business document exchange across the PEPPOL Network; it defines the UBL 2.1 XM... - **Discovery URL**: https://bidda.com/api/v1/nodes/peppol-bis-billing-3-0-e-invoicing-standard.json #### PSD2 Article 98 Strong Customer Authentication and Secure Open Standards RTS - **ID**: psd2-article-98-strong-customer-authentication-rts - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: PSD2 Article 98 mandated EBA to develop Regulatory Technical Standards on strong customer authentication (SCA) and secure open standards for payment service provider communication, implemented via Com... - **Discovery URL**: https://bidda.com/api/v1/nodes/psd2-article-98-strong-customer-authentication-rts.json #### UiPath RPA Enterprise Governance Framework - Robot Lifecycle Management, Orchestrator Access Controls, Attended vs Unattended Automation and Audit Trail Requirements - **ID**: uipath-rpa-governance-framework - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The UiPath RPA Governance Framework dictates strict lifecycle management, role-based access, and operational controls for robotic process automation to ensure compliance, security, and stability in en... - **Discovery URL**: https://bidda.com/api/v1/nodes/uipath-rpa-governance-framework.json #### Online Safety Act 2023, Section 19: Duties to protect journalistic content - **ID**: uk-ai-automation-regulation-ofcom-code-2023 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Category 1 services must implement and detail in their terms of service proportionate systems, processes, and dedicated complaints procedures to ensure the free expression of journalistic content is c... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ai-automation-regulation-ofcom-code-2023.json #### UK Digital Economy Act 2017 - Digital Government Data Sharing and Service Delivery - **ID**: uk-digital-economy-act-2017-digital-government - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The UK Digital Economy Act 2017 (DEA 2017) establishes a framework for sharing public sector data between government departments to improve service delivery, enables specified public authorities to sh... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-digital-economy-act-2017-digital-government.json #### UK Electronic Communications Act 2000 - Electronic Signatures and Digital Transactions - **ID**: uk-electronic-communications-act-2000 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The Electronic Communications Act 2000 (c.7) provides the legal foundation for electronic signatures in UK law and grants the Secretary of State power to modify legislation to facilitate electronic co... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-electronic-communications-act-2000.json #### UK Electronic Money Regulations 2011 Regulation 19 Safeguarding Requirements - **ID**: uk-electronic-money-regulations-2011-regulation-19-safeguarding - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: UK SI 2011/99 Regulation 19 requires electronic money institutions (EMIs) to safeguard funds received in exchange for e-money using one of two FCA-approved methods: segregation into a designated accou... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-electronic-money-regulations-2011-regulation-19-safeguarding.json #### UK FCA PS21/3 Building Operational Resilience Policy Statement - **ID**: uk-fca-ps21-3-operational-resilience-policy - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: UK FCA Policy Statement PS21/3, published March 2021 with an implementation deadline of 31 March 2022 (full compliance by 31 March 2025), requires FCA-regulated firms to identify their important busin... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fca-ps21-3-operational-resilience-policy.json #### United Kingdom Public Records Act 1958: Secretary of State Responsibility, Public Record Office, Selection and Preservation, Place of Deposit, Access, and Destruction Controls - **ID**: uk-public-records-act-1958 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The Public Records Act 1958, Chapter 51 of 6 and 7 Elizabeth II, is the principal United Kingdom statute governing the selection, preservation, custody, and public access to public records of governme... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-public-records-act-1958.json #### United States Administrative Dispute Resolution Act (Title 5 USC Chapter 5 Subchapter IV): Agency Authority to Use ADR, Neutrals, Confidentiality, Arbitration Authorization, Enforcement of Agreements, and Judicial Review - **ID**: us-administrative-dispute-resolution-act-5-usc-ch5-subch4 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The Administrative Dispute Resolution Act, codified at Title 5 of the United States Code, Chapter 5, Subchapter IV (Alternative Means of Dispute Resolution in the Administrative Process), is the princ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-administrative-dispute-resolution-act-5-usc-ch5-subch4.json #### United States Administrative Procedure Act (Title 5 USC Chapter 5): Federal Agency Definitions, FOIA Disclosure, Rule Making, Adjudications, Hearings, and Initial Decisions - **ID**: us-administrative-procedure-act-5-usc-ch5 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The Administrative Procedure Act, codified at Title 5 of the United States Code, Part I, Chapter 5, is the foundational federal statute governing the rulemaking, adjudication, and information disclosu... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-administrative-procedure-act-5-usc-ch5.json #### 29 CFR 1910.212 - General requirements for all machines. - **ID**: us-cfr-29-part-1910-212-general-machine-guarding - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Organizations must provide and maintain machine guarding to protect operators and other employees from hazards created by points of operation, ingoing nip points, rotating parts, and other machine dan... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfr-29-part-1910-212-general-machine-guarding.json #### 29 CFR Part 1910 Subpart O - Machinery and Machine Guarding - **ID**: us-cfr-29-part-1910-subpart-o-machinery-guarding - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: This regulation establishes general and specific safety requirements for machinery and machine guarding to protect operators and other employees from hazards created by moving parts. - **Discovery URL**: https://bidda.com/api/v1/nodes/us-cfr-29-part-1910-subpart-o-machinery-guarding.json #### United States E-Government Act of 2002 (Title 44 USC Chapter 36): Office of Electronic Government, CIO Council, E-Government Fund, and FedRAMP Cloud Authorization - **ID**: us-e-government-act-2002 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The E-Government Act of 2002, codified at Title 44 of the United States Code, Chapter 36, is the principal federal statute establishing the institutional architecture for federal electronic government... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-e-government-act-2002.json #### United States Federal Records Act (Title 44 USC Chapter 31): Agency Head Records Duties, Records Management Program, Transfer to Records Centers, Safeguards, and Unlawful Removal - **ID**: us-federal-records-act-44-usc-ch31 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The Federal Records Act, codified at Title 44 of the United States Code, Chapter 31, is the principal federal statute governing records management by federal agencies and is administered in coordinati... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-federal-records-act-44-usc-ch31.json #### United States Government Performance and Results Act Modernization Act of 2010 (Title 31 USC Chapter 11): Strategic Plans, Performance Plans, Agency Reporting, Priority Goals, and Quarterly Reviews - **ID**: us-gpra-modernization-act-31-usc-ch11 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The Government Performance and Results Act Modernization Act of 2010, codified at Title 31 of the United States Code, Chapter 11, is the principal federal statute governing federal performance managem... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-gpra-modernization-act-31-usc-ch11.json #### US HIPAA 45 CFR 164.312 - Technical Safeguards for Electronic Protected Health Information in Automated Healthcare Workflows - **ID**: us-hipaa-automated-workflow-45-cfr-164-312-access-control - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Covered entities and business associates operating automated healthcare workflows must implement five technical safeguard standards for electronic protected health information (ePHI): access control (... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hipaa-automated-workflow-45-cfr-164-312-access-control.json #### US IRS Modernized e-File (MeF) Publication 1345 - Authorized e-File Provider Requirements, ERO Obligations and Electronic Signature Compliance - **ID**: us-irs-modernized-efile-mef-publication-1345 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: IRS Publication 1345 ('Handbook for Authorized IRS e-File Providers of Individual Income Tax Returns') is the primary operational handbook governing the responsibilities of all participants in the IRS... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-irs-modernized-efile-mef-publication-1345.json #### NARA 36 CFR Part 1234 - Electronic Records Management Standards - **ID**: us-nara-36-cfr-1234-electronic-records-management - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: 36 CFR Part 1234 establishes the National Archives and Records Administration (NARA) mandatory standards for managing US federal electronic records, requiring agencies to implement an Electronic Recor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-nara-36-cfr-1234-electronic-records-management.json #### US OMB Circular A-130 - Managing Information as a Strategic Resource: Federal Automated System Governance and Workflow Requirements - **ID**: us-omb-circular-a-130-federal-information-management - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: OMB Circular A-130 (2016 revision) requires federal agencies to manage information as a strategic resource throughout its lifecycle, covering automated system governance, privacy, security, and record... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-omb-circular-a-130-federal-information-management.json #### United States Paperwork Reduction Act (Title 44 USC Chapter 35): OMB Director Authority, Federal Agency Responsibilities, Information Collection Approval, OMB Control Numbers, and Public Protection - **ID**: us-paperwork-reduction-act-44-usc-ch35 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The Paperwork Reduction Act, codified at Title 44 of the United States Code, Chapter 35, is the principal federal statute governing federal information collection from the public and is administered t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-paperwork-reduction-act-44-usc-ch35.json #### United States Regulatory Flexibility Act (Title 5 USC Chapter 6): Definitions of Small Entity, Regulatory Agenda, Initial and Final Regulatory Flexibility Analyses, Periodic Review, and Judicial Review - **ID**: us-regulatory-flexibility-act-5-usc-ch6 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The Regulatory Flexibility Act, codified at Title 5 of the United States Code, Part I, Chapter 6 (titled Analysis of Regulatory Functions), is the principal federal statute requiring federal agencies ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-regulatory-flexibility-act-5-usc-ch6.json #### US SEC Rule 15c3-5 - Market Access Rule: Risk Management Controls and Supervisory Procedures for Broker-Dealer Automated Trading Systems - **ID**: us-sec-rule-15c3-5-market-access-risk-controls - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: Every registered broker-dealer with market access to a national securities exchange or ATS, or that provides such access to customers, must establish, document, and maintain a system of risk managemen... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-sec-rule-15c3-5-market-access-risk-controls.json #### W3C ActivityPub 2018 - Decentralized Social Protocol for Federated Workflow Orchestration - **ID**: w3c-activitypub-2018-decentralized-social-protocol - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: W3C ActivityPub (W3C Recommendation, 23 January 2018) is a decentralized social networking and activity distribution protocol that provides server-to-server federation (Article 7) and client-to-server... - **Discovery URL**: https://bidda.com/api/v1/nodes/w3c-activitypub-2018-decentralized-social-protocol.json #### W3C DID Core 1.0 - Decentralized Identifiers for Workflow and Identity Automation - **ID**: w3c-did-core-1-0-decentralized-identifiers - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: W3C Decentralized Identifiers (DIDs) v1.0 (W3C Recommendation, 19 July 2022) defines a new type of globally unique identifier that enables verifiable, decentralized digital identity without dependency... - **Discovery URL**: https://bidda.com/api/v1/nodes/w3c-did-core-1-0-decentralized-identifiers.json #### W3C JSON-LD 1.1 Linked Data Serialization - Contexts IRIs Node Objects Value Objects Type Coercion Language Maps Framing and Semantic Interoperability for Agent Knowledge Exchange - **ID**: w3c-json-ld-1-1-linked-data-serialization - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: W3C JSON-LD 1.1 is a JSON-based serialization for Linked Data that lets ordinary JSON documents carry unambiguous semantic meaning by mapping JSON keys to IRIs through a context, organised across conf... - **Discovery URL**: https://bidda.com/api/v1/nodes/w3c-json-ld-1-1-linked-data-serialization.json #### W3C PROV-DM Provenance Data Model - Workflow Audit Trail Requirements - **ID**: w3c-prov-dm-provenance-data-model-workflow-audit-trail - **Category**: Workflow Automation - **Version**: 2.0.0 - **BLUF**: W3C PROV-DM (April 2013) defines a machine-readable provenance model requiring workflows to record Entity-Activity-Agent triples for every data transformation. Compliance means all workflow steps emit... - **Discovery URL**: https://bidda.com/api/v1/nodes/w3c-prov-dm-provenance-data-model-workflow-audit-trail.json #### W3C SPARQL 1.1 Query Language - SELECT CONSTRUCT ASK DESCRIBE Query Forms Basic Group Optional Alternative Graph Patterns Property Paths Aggregates Subqueries and Solution Sequence Modifiers for RDF Graph Querying - **ID**: w3c-sparql-1-1-query-language - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: W3C SPARQL 1.1 Query Language is the W3C Recommendation for querying RDF data organised across query forms SELECT for variable bindings CONSTRUCT for RDF graph generation ASK for boolean pattern exist... - **Discovery URL**: https://bidda.com/api/v1/nodes/w3c-sparql-1-1-query-language.json #### W3C Verifiable Credentials Data Model 2.0 - Digital Credential Workflow Standard - **ID**: w3c-verifiable-credentials-data-model-2-0 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: W3C Verifiable Credentials Data Model 2.0 (VCDM 2.0, W3C Recommendation 2024) defines the data model and proof formats for cryptographically verifiable digital credentials. It underpins EU eIDAS 2.0 d... - **Discovery URL**: https://bidda.com/api/v1/nodes/w3c-verifiable-credentials-data-model-2-0.json #### W3C WCAG 2.2 Web Content Accessibility Guidelines - Perceivable Operable Understandable Robust Principles 13 Guidelines and Level A AA AAA Success Criteria Including the Nine New 2.2 Criteria - **ID**: w3c-wcag-2-2-web-content-accessibility-guidelines - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: W3C WCAG 2.2 is the Web Content Accessibility Guidelines version 2.2 published as a W3C Recommendation organised around four principles Perceivable Operable Understandable and Robust supported by 13 g... - **Discovery URL**: https://bidda.com/api/v1/nodes/w3c-wcag-2-2-web-content-accessibility-guidelines.json #### W3C Web Annotation Data Model 1.0 - Structured Annotation Workflow Standard - **ID**: w3c-web-annotation-data-model-1-0 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: The W3C Web Annotation Data Model (WAM, W3C Recommendation February 2017) defines a JSON-LD-based framework for creating, storing, and retrieving structured annotations on web resources. It enables re... - **Discovery URL**: https://bidda.com/api/v1/nodes/w3c-web-annotation-data-model-1-0.json #### W3C Web Authentication (WebAuthn) Level 3 - Passkeys and FIDO2 Phishing-Resistant Authentication - **ID**: w3c-webauthn-level-3-2024-passkeys-fido2 - **Category**: Workflow Automation - **Version**: 1.0.0 - **BLUF**: W3C Web Authentication (WebAuthn) Level 3 (W3C Recommendation, 2024, building on WebAuthn Level 2 - March 2021) in conjunction with FIDO Alliance FIDO2 Client to Authenticator Protocol (CTAP 2.2) defi... - **Discovery URL**: https://bidda.com/api/v1/nodes/w3c-webauthn-level-3-2024-passkeys-fido2.json ### Workplace (350 nodes) #### AA1000AP (AccountAbility) - **ID**: aa1000ap-accountability - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: Compliance with the AA1000AP framework is predicated upon a systematic and auditable application of its foundational principles, reinforced by assurance requirements aligned with both the AA1000 Assur... - **Discovery URL**: https://bidda.com/api/v1/nodes/aa1000ap-accountability.json #### ADA (Employment Title I) - **ID**: ada-employment-title-1 - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: The Americans with Disabilities Act Title I (42 U.S.C. §12101-12117), as amended by the ADA Amendments Act of 2008 (ADAAA), is the primary U.S. federal law prohibiting employment discrimination agains... - **Discovery URL**: https://bidda.com/api/v1/nodes/ada-employment-title-1.json #### AIA Document A201-2017 General Conditions of the Contract for Construction - **ID**: aia-a201-general-conditions-2017 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This standard contract document from the American Institute of Architects (AIA) establishes the rights, responsibilities, and relationships of the Owner, Contractor, and Architect, governing the admin... - **Discovery URL**: https://bidda.com/api/v1/nodes/aia-a201-general-conditions-2017.json #### Fair Work Act 2009 - National Employment Standards, Enterprise Agreements and Unfair Dismissal Provisions - **ID**: au-fair-work-act-2009 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Fair Work Act 2009 establishes Australia's national workplace relations system, mandating 11 National Employment Standards (NES) as minimum conditions for all national system employees (Part 2-2),... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-fair-work-act-2009.json #### Australia Fair Work Act 2009 - Enterprise Bargaining and Unfair Dismissal Framework - **ID**: au-fair-work-act-2009-enterprise-bargaining-unfair-dismissal - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Fair Work Act 2009 (Cth) governs employment relations in Australia, including enterprise bargaining (Part 2-4), unfair dismissal remedies (Part 3-2), general protections (Part 3-1), and the Nation... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-fair-work-act-2009-enterprise-bargaining-unfair-dismissal.json #### Child Support (Registration and Collection) Act 1988 - Part III Registration of maintenance liabilities - **ID**: au-fair-work-act-2009-part-3-1-general-protections - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This article mandates that payers and payees of registrable maintenance liabilities notify the Child Support Registrar of the liability's creation, variation, or cessation, and outlines the process fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-fair-work-act-2009-part-3-1-general-protections.json #### Model Work Health and Safety (WHS) Act 2011 - Primary Duty of Care, PCBUs, Workers and Incident Notification - **ID**: au-model-whs-laws-2011 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Model WHS Act imposes a primary duty of care (Section 19) on a Person Conducting a Business or Undertaking (PCBU) to ensure, so far as is reasonably practicable, the health and safety of workers a... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-model-whs-laws-2011.json #### AU Model Work Health and Safety Act 2011 - PCBU Primary Duty of Care, WHS Officer Due Diligence, and Notifiable Incidents - **ID**: au-model-work-health-safety-act-2011-pcbu-duties-whs-officers - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Model Work Health and Safety Act 2011 (adopted by Commonwealth, ACT, NSW, NT, Qld, SA, Tas, WA) imposes a primary duty of care on Persons Conducting a Business or Undertaking (PCBU) to ensure heal... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-model-work-health-safety-act-2011-pcbu-duties-whs-officers.json #### AU Privacy Act 1988 - Australian Privacy Principle 11: Security of Personal Information - **ID**: au-privacy-act-1988-app-11-security-personal-information - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Australian Privacy Principle 11 (APP 11) in the Privacy Act 1988 (Commonwealth) requires APP entities to take reasonable steps to protect personal information from misuse interference and loss as well... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-privacy-act-1988-app-11-security-personal-information.json #### Australian Work Health and Safety Act 2011 - **ID**: au-work-health-safety-act-2011 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Work Health and Safety Act 2011 (Cth) is Australia's model WHS legislation adopted across most jurisdictions, placing a primary duty of care on persons conducting a business or undertaking (PCBUs)... - **Discovery URL**: https://bidda.com/api/v1/nodes/au-work-health-safety-act-2011.json #### National Code of Practice for Providers of Education and Training to Overseas Students 2018 - **ID**: australia-national-code-2018-international-students - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This code, established under the Education Services for Overseas Students (ESOS) Act 2000, imposes legally enforceable standards on registered providers of education to international students in Austr... - **Discovery URL**: https://bidda.com/api/v1/nodes/australia-national-code-2018-international-students.json #### BREEAM New Construction 2018 Assessment Standard - Categories, Credits and Minimum Standards for Sustainability Performance - **ID**: breeam-new-construction-2018 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This standard provides a framework for assessing the sustainability performance of new construction projects, requiring them to meet minimum performance standards across categories like Energy (Ene 01... - **Discovery URL**: https://bidda.com/api/v1/nodes/breeam-new-construction-2018.json #### Accessible Canada Act (S.C. 2019, c. 10) - Article 5: Purpose - **ID**: ca-accessible-canada-act-section-5-principles - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Organizations must contribute to a barrier-free Canada by January 1, 2040, by identifying, removing, and preventing barriers across key areas including employment, the built environment, and technolog... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-accessible-canada-act-section-5-principles.json #### Canada Employment Equity Act 1995 - **ID**: ca-employment-equity-act-1995 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Employment Equity Act (S.C. 1995, c. 44), in force 24 October 1996 and last amended in 2023, requires federally regulated private sector employers with 100 or more employees and federal contractor... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-employment-equity-act-1995.json #### Employment Equity Act, S.C. 1995, c. 44, Section 5 - Employer’s duty - **ID**: ca-employment-equity-act-section-5-employer-duties - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Employers must implement employment equity by identifying and eliminating employment barriers and instituting positive policies and practices to ensure representation of designated groups. - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-employment-equity-act-section-5-employer-duties.json #### Canada Labour Code (R.S.C. 1985, c. L-2) - Part III Standard Hours, Wages, and Employment Conditions - **ID**: ca-labour-code-employment - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: The Canada Labour Code (R.S.C. 1985, c. L-2) governs employment conditions for employees in federally regulated industries in Canada, including banking, telecommunications, broadcasting, interprovinci... - **Discovery URL**: https://bidda.com/api/v1/nodes/ca-labour-code-employment.json #### Canada Labour Code (R.S.C. 1985, c. L-2): Industrial Relations, Occupational Health and Safety, and Labour Standards - **ID**: canada-canada-labour-code - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Canada Labour Code (R.S.C. 1985, c. L-2) governs labour relations, occupational health and safety, and employment standards for federally regulated workplaces, administered by the Canada Industria... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-canada-labour-code.json #### Employment Equity Act, S.C. 1995, c. 44 - **ID**: canada-employment-equity-act-1995 - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: The Employment Equity Act requires federally regulated employers with 100 or more employees to identify and eliminate employment barriers for designated groups-women, Aboriginal peoples, persons with ... - **Discovery URL**: https://bidda.com/api/v1/nodes/canada-employment-equity-act-1995.json #### Switzerland Code of Obligations - Employment Contract Law (Art. 319-362 OR) SR 220 - **ID**: ch-or-employment-code-of-obligations - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: The Swiss Code of Obligations (Obligationenrecht, OR; SR 220) governs individual employment contracts in Switzerland through Arts. 319 to 362, providing mandatory minimum standards for the formation, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ch-or-employment-code-of-obligations.json #### CIPD (HR Standards) - **ID**: cipd-hr-standards - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: Adherence to this node mandates rigorous alignment with Chartered Institute of Personnel and Development standards, structurally integrated with foundational UK legislation. An organization's human re... - **Discovery URL**: https://bidda.com/api/v1/nodes/cipd-hr-standards.json #### UN CRPD 2006 - Convention on the Rights of Persons with Disabilities - **ID**: crpd-un-convention-rights-persons-disabilities-2006 - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: The Convention on the Rights of Persons with Disabilities (CRPD), adopted by the UN General Assembly on 13 December 2006 (Resolution A/RES/61/106) and entering into force on 3 May 2008, has 185 Partie... - **Discovery URL**: https://bidda.com/api/v1/nodes/crpd-un-convention-rights-persons-disabilities-2006.json #### Sozialgesetzbuch (SGB) - Achtes Buch (VIII) - Kinder- und Jugendhilfe - Schutz von Kindern und Jugendlichen in Einrichtungen - **ID**: de-sgb-viii-kinder-jugendhilfe-child-youth-services - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Organizations operating child and youth care facilities must obtain an operating permit, comply with on-site and records-based inspections, and adhere to reporting, documentation, and record-keeping o... - **Discovery URL**: https://bidda.com/api/v1/nodes/de-sgb-viii-kinder-jugendhilfe-child-youth-services.json #### DIFC Employment Law No. 4 of 2021 - Employment Contract Requirements, Termination Notice Periods, Anti-Discrimination Provisions, DEWS End-of-Service Benefits Scheme and DIFC Courts Jurisdiction - **ID**: difc-employment-law-4-2021 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This law governs employment relationships within the Dubai International Financial Centre (DIFC), mandating written employment contracts (Article 14), establishing minimum termination notice periods (... - **Discovery URL**: https://bidda.com/api/v1/nodes/difc-employment-law-4-2021.json #### CYBERSECURITY PROGRAM BEST PRACTICES - **ID**: ebsa-cybersecurity-best-practices - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ERISA-covered pension plans and health and welfare plans often hold millions of dollars or more in assets and store participant personally identifiable data, which can make them tempting targets for c... - **Discovery URL**: https://bidda.com/api/v1/nodes/ebsa-cybersecurity-best-practices.json #### EEOC (Employment Rule) - **ID**: eeoc-employment-rule - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: Employers with 15 or more employees are subject to Title VII of the Civil Rights Act of 1964, which prohibits employment discrimination based on protected characteristics. This node enforces that proh... - **Discovery URL**: https://bidda.com/api/v1/nodes/eeoc-employment-rule.json #### Eurocode 8: Design of structures for earthquake resistance - Part 1: General rules, seismic actions and rules for buildings (EN 1998-1:2004) - **ID**: en-1998-eurocode-8-seismic-design - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Eurocode 8 (EN 1998) requires that buildings and civil engineering works in seismic regions be designed and constructed to withstand specified earthquake actions without collapse, ensuring life safety... - **Discovery URL**: https://bidda.com/api/v1/nodes/en-1998-eurocode-8-seismic-design.json #### ERISA (Retirement Security) - **ID**: erisa-compliance-rep - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: Compliance with the Employee Retirement Income Security Act (ERISA) mandates a rigorous adherence to specific fiduciary, participation, vesting, reporting, and bonding standards to protect plan partic... - **Discovery URL**: https://bidda.com/api/v1/nodes/erisa-compliance-rep.json #### Directive 2008/104/EC of the European Parliament and of the Council of 19 November 2008 on temporary agency work - **ID**: eu-agency-work-directive-2008 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive establishes the principle of equal treatment for temporary agency workers, ensuring their basic working and employment conditions are at least those that would apply if they had been re... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-agency-work-directive-2008.json #### Directive 2009/148/EC of the European Parliament and of the Council of 30 November 2009 on the protection of workers from the risks related to exposure to asbestos at work - **ID**: eu-asbestos-workers-directive-2009-148 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive establishes a binding occupational exposure limit value (OELV) for asbestos fibres and mandates that EU employers implement comprehensive risk assessment, prevention, and health surveil... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-asbestos-workers-directive-2009-148.json #### Directive 79/7/EEC - Equal Treatment for Men and Women in Matters of Social Security - **ID**: eu-celex-31979l0007 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Directive 79/7/EEC requires the progressive implementation of the principle of equal treatment for men and women in statutory social security schemes. It applies to the working population, including s... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-31979l0007.json #### Directive 2014/54/EU - Measures Facilitating the Exercise of Rights of Workers in the Context of Freedom of Movement - **ID**: eu-celex-32014l0054 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Directive 2014/54/EU requires Member States to ensure that Union workers and their family members can effectively exercise their right to free movement under Article 45 TFEU and Articles 1 to 10 of Re... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32014l0054.json #### Directive (EU) 2018/958 - Proportionality Test Before Adoption of New Regulation of Professions - **ID**: eu-celex-32018l0958 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2018/958 establishes a common framework that Member States must follow before introducing new, or amending existing, legislative, regulatory or administrative provisions that restrict a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-celex-32018l0958.json #### Proposal for a Regulation of the European Parliament and of the Council laying down harmonised conditions for the marketing of construction products, amending Regulation (EU) 2019/1020 and repealing Regulation (EU) No 305/2011 - **ID**: eu-construction-products-regulation-2022 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This regulation revises the 2011 CPR to establish harmonised rules for placing construction products on the EU market, introducing mandatory environmental, safety, and digital information requirements... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-construction-products-regulation-2022.json #### Directive (EU) 2024/1760 of the European Parliament and of the Council of 24 May 2024 on corporate sustainability due diligence and amending Directives (EU) 2019/1937 and (EU) 2022/2555 - **ID**: eu-corporate-sustainability-due-diligence-2024 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive requires large EU and non-EU companies to conduct risk-based human rights and environmental due diligence across their own operations, their subsidiaries, and their value chains. As out... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-corporate-sustainability-due-diligence-2024.json #### Communication on the Digital Education Action Plan 2021-2027: Resetting education and training for the digital age - **ID**: eu-digital-education-action-plan-2021-2027 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The EU Digital Education Action Plan is a European Commission policy initiative to support the adaptation of education and training systems in EU Member States for the digital age. It outlines two str... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-digital-education-action-plan-2021-2027.json #### Directive (EU) 2024/1233 on a single application procedure for a single permit and a common set of rights for third-country workers - **ID**: eu-dir-2024-1233-on-a-single-application-procedure-for-a-single-permit-for-th - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This Directive lays down a single application procedure for issuing a single permit for third-country nationals to reside for the purpose of work in a Member State, simplifying admission procedures an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-dir-2024-1233-on-a-single-application-procedure-for-a-single-permit-for-th.json #### Council Directive 2000/78/EC of 27 November 2000 establishing a general framework for equal treatment in employment and occupation - **ID**: eu-employment-equality-directive-2000-78 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This Directive establishes a framework for equal treatment in employment and occupation on the grounds of religion or belief, disability, age, or sexual orientation. It applies to all public and priva... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-employment-equality-directive-2000-78.json #### Directive 2004/35/EC of the European Parliament and of the Council of 21 April 2004 on environmental liability with regard to the prevention and remedying of environmental damage - **ID**: eu-environmental-liability-directive-2004-35 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive establishes a 'polluter pays' framework, holding operators of specified occupational activities strictly liable for preventing and remedying environmental damage to water, land, and pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-environmental-liability-directive-2004-35.json #### Directive (EU) 2024/1275 of the European Parliament and of the Council of 24 April 2024 on the energy performance of buildings (recast) - **ID**: eu-epbd-recast-2024-energy-performance-buildings - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive mandates that all new buildings be zero-emission buildings (ZEBs) by 2030 (2028 for public buildings) and requires EU Member States to establish national building renovation plans to ac... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-epbd-recast-2024-energy-performance-buildings.json #### Council Recommendation of 22 May 2017 on the European Qualifications Framework for lifelong learning and repealing the recommendation of the European Parliament and of the Council of 23 April 2008 on the establishment of the European Qualifications Framework for lifelong learning - **ID**: eu-eqf-european-qualifications-framework-2017 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This EU Council Recommendation establishes a common reference framework of eight qualification levels defined by learning outcomes (knowledge, skills, and responsibility/autonomy) to improve the trans... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-eqf-european-qualifications-framework-2017.json #### Council Directive 2000/78/EC of 27 November 2000 establishing a general framework for equal treatment in employment and occupation - **ID**: eu-equal-treatment-employment-2000-78 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This Directive establishes a general framework for combating discrimination on the grounds of religion or belief, disability, age or sexual orientation as regards employment and occupation, with a vie... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-equal-treatment-employment-2000-78.json #### EU Health and Safety Framework Directive 89/391 - Employer Obligations, Risk Assessment, and Worker Rights - **ID**: eu-health-safety-framework-directive-89-391 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Council Directive 89/391/EEC of 12 June 1989 on the introduction of measures to encourage improvements in the safety and health of workers at work (the Framework Directive) is the cornerstone of EU oc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-health-safety-framework-directive-89-391.json #### Horizon Europe Model Grant Agreement (MGA) - General - **ID**: eu-horizon-europe-research-grant-rules-2021 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Horizon Europe Model Grant Agreement (MGA) establishes the contractual conditions for EU research and innovation funding, requiring beneficiaries to ensure costs are eligible (Article 6), manage i... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-horizon-europe-research-grant-rules-2021.json #### Directive (EU) 2022/2041 of the European Parliament and of the Council of 19 October 2022 on adequate minimum wages in the European Union and amending Regulation (EU) 2019/1150 - **ID**: eu-minimum-wage-directive-2022-2041 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The EU Adequate Minimum Wages Directive 2022/2041 requires Member States to ensure that statutory or collectively agreed minimum wages are adequate and allow for a decent standard of living, with bien... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-minimum-wage-directive-2022-2041.json #### EU Open Research Data Policy and European Open Science Cloud (EOSC) Framework - FAIR Data Principles and Data Management Plans - **ID**: eu-open-research-data-policy-eosc - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This framework mandates that research data from EU-funded projects, particularly under Horizon Europe, must be managed according to FAIR principles (Findable, Accessible, Interoperable, Reusable) and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-open-research-data-policy-eosc.json #### Directive (EU) 2023/970 of the European Parliament and of the Council of 10 May 2023 to strengthen the application of the principle of equal pay for equal work or work of equal value between men and women through pay transparency and enforcement mechanisms - **ID**: eu-pay-transparency-directive-2023 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive requires EU employers to provide pay information to job candidates and employees, report on gender pay gaps, and conduct a joint pay assessment with worker representatives if the unexpl... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pay-transparency-directive-2023.json #### Directive (EU) 2023/970 of the European Parliament and of the Council of 10 May 2023 to strengthen the application of the principle of equal pay for equal work or work of equal value between men and women through pay transparency and enforcement mechanisms - **ID**: eu-pay-transparency-directive-2023-970 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This EU directive mandates pay transparency measures for employers, requiring them to provide salary range information to job candidates and disclose pay gap data. As per Article 9, employers with 100... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pay-transparency-directive-2023-970.json #### EU Pay Transparency Directive (EU) 2023/970 - Article 10: Joint Pay Assessment Obligation - **ID**: eu-pay-transparency-directive-2023-970-article-10-joint-pay-assessment - **Category**: Workplace - **Version**: 2.0.0 - **BLUF**: Article 10 of the EU Pay Transparency Directive (2023/970) requires employers to conduct a joint pay assessment with workers' representatives where the Article 9 pay gap report reveals an unjustified ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pay-transparency-directive-2023-970-article-10-joint-pay-assessment.json #### EU Pay Transparency Directive (EU) 2023/970 - Article 7: Right of Workers to Receive Pay Information - **ID**: eu-pay-transparency-directive-2023-970-article-7-right-to-information-workers - **Category**: Workplace - **Version**: 2.0.0 - **BLUF**: Article 7 of the EU Pay Transparency Directive (2023/970) grants workers an individual right to receive information about their own pay and about the average pay levels for workers performing the same... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pay-transparency-directive-2023-970-article-7-right-to-information-workers.json #### EU Pay Transparency Directive (EU) 2023/970 - Article 9: Pay Reporting Obligations for Employers - **ID**: eu-pay-transparency-directive-2023-970-article-9-pay-reporting-obligations - **Category**: Workplace - **Version**: 2.0.0 - **BLUF**: Article 9 of the EU Pay Transparency Directive (2023/970) establishes mandatory pay gap reporting obligations for employers, tiered by workforce size. Employers with 250 or more workers must report an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pay-transparency-directive-2023-970-article-9-pay-reporting-obligations.json #### EU Pay Transparency Directive 2023/970 - Gender Pay Gap Reporting, Right to Pay Information, and Equal Pay Enforcement - **ID**: eu-pay-transparency-directive-2023-970-gender-pay-gap-reporting - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2023/970 strengthens the right to equal pay for equal work by requiring workers' right to information on individual pay and pay ranges, mandatory gender pay gap reporting (250+ employee... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-pay-transparency-directive-2023-970-gender-pay-gap-reporting.json #### Directive (EU) 2024/2831 of the European Parliament and of the Council of 24 September 2024 on improving working conditions in platform work and amending Directive (EU) 2019/1152 - **ID**: eu-platform-work-directive-2024 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive establishes a legal presumption of an employment relationship for platform workers when facts indicating control and direction are present (Article 4) and introduces new rights regardin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-platform-work-directive-2024.json #### EU Platform Work Directive 2024/2831 - **ID**: eu-platform-work-directive-2024-2831 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2024/2831, entered into force 1 December 2024 with a transposition deadline of 2 December 2026, establishes a rebuttable presumption of employment status for platform workers where the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-platform-work-directive-2024-2831.json #### EU Platform Work Directive 2024/2831 - Algorithmic Management and Transparency for Platform Workers - **ID**: eu-platform-work-directive-2024-2831-algorithmic-management-transparency - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2024/2831 on improving working conditions in platform work establishes an employment status presumption for platform workers and imposes obligations on digital labour platforms regardin... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-platform-work-directive-2024-2831-algorithmic-management-transparency.json #### EU Platform Work Directive (EU) 2024/2831 - Article 5: Rebuttable Presumption of Employment Relationship for Platform Workers - **ID**: eu-platform-work-directive-2024-2831-article-5-rebuttable-presumption-employment - **Category**: Workplace - **Version**: 2.0.0 - **BLUF**: Article 5 of the EU Platform Work Directive (2024/2831) establishes a rebuttable presumption of an employment relationship between a digital labour platform and a person performing platform work, when... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-platform-work-directive-2024-2831-article-5-rebuttable-presumption-employment.json #### EU Platform Work Directive (EU) 2024/2831 - Article 7: Algorithmic Management Transparency and Human Oversight for Platform Workers - **ID**: eu-platform-work-directive-2024-2831-article-7-human-oversight-algorithmic-management - **Category**: Workplace - **Version**: 2.0.0 - **BLUF**: Article 7 of the EU Platform Work Directive (2024/2831) imposes transparency and human oversight obligations on digital labour platforms using automated monitoring or decision-making systems. Platform... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-platform-work-directive-2024-2831-article-7-human-oversight-algorithmic-management.json #### Directive (EU) 2024/2831 of the European Parliament and of the Council of 24 September 2024 on improving working conditions in platform work and amending Directive (EU) 2019/1152 - **ID**: eu-platform-workers-directive-2024 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This Directive establishes a legal presumption of an employment relationship for platform workers when control is exercised by the digital labour platform, and introduces new rights for workers regard... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-platform-workers-directive-2024.json #### Directive (EU) 2018/957 of the European Parliament and of the Council of 28 June 2018 amending Directive 96/71/EC on the posting of workers in the framework of the provision of services - **ID**: eu-posted-workers-directive-2018-957 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive requires employers posting workers from one EU Member State to another for service provision to comply with the host country’s hard-core working conditions, including minimum rates of p... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-posted-workers-directive-2018-957.json #### EU Posted Workers Directive 96/71/EC as Amended by 2018/957 - Equal Pay & Terms for Posted Workers - **ID**: eu-posted-workers-directive-96-71-ec-amendment-2018-957 - **Category**: Workplace - **Version**: 2.0 - **BLUF**: EU Posted Workers Directive 96/71/EC (amended 2018/957 from August 2020) ensures workers posted temporarily to another EU member state receive the same remuneration and working conditions as local wor... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-posted-workers-directive-96-71-ec-amendment-2018-957.json #### Directive (EU) 2019/1152 of the European Parliament and of the Council of 20 June 2019 on transparent and predictable working conditions in the European Union - **ID**: eu-transparent-predictable-working-2019-1152 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This EU directive requires employers to provide all workers with a written statement of their essential working conditions within the first week of employment (Article 5) and establishes new minimum r... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-transparent-predictable-working-2019-1152.json #### Council Directive 91/271/EEC of 21 May 1991 concerning urban waste-water treatment - **ID**: eu-urban-wastewater-treatment-directive-91-271 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive requires EU Member States to ensure that urban agglomerations provide collecting systems for all wastewater and subject it to at least secondary treatment before discharge. For construc... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-urban-wastewater-treatment-directive-91-271.json #### Directive (EU) 2019/1937 of the European Parliament and of the Council of 23 October 2019 on the protection of persons who report on breaches of Union law - **ID**: eu-whistleblower-directive-2019 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive establishes EU-wide minimum standards to protect persons who report breaches of Union law, applying to private sector companies with 50 or more workers and most public sector entities. ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-whistleblower-directive-2019.json #### Directive (EU) 2019/1937 of the European Parliament and of the Council of 23 October 2019 on the protection of persons who report on breaches of Union law - **ID**: eu-whistleblower-directive-2019-1937 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive mandates legal entities in the private and public sectors across the EU to establish secure and confidential internal reporting channels for individuals to report breaches of Union law.... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-whistleblower-directive-2019-1937.json #### EU Whistleblower Protection Directive (EU) 2019/1937 - Article 13: Conditions for Protection in External Reporting - **ID**: eu-whistleblower-directive-2019-1937-article-13-conditions-protection-external-reporting - **Category**: Workplace - **Version**: 2.0.0 - **BLUF**: Article 13 of the EU Whistleblower Protection Directive (2019/1937) establishes the conditions under which reporting persons who report to competent external authorities (rather than through internal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-whistleblower-directive-2019-1937-article-13-conditions-protection-external-reporting.json #### EU Whistleblower Protection Directive (EU) 2019/1937 - Article 19: Prohibition of Retaliation - **ID**: eu-whistleblower-directive-2019-1937-article-19-prohibition-retaliation - **Category**: Workplace - **Version**: 2.0.0 - **BLUF**: Article 19 of the EU Whistleblower Protection Directive (2019/1937) establishes a comprehensive prohibition on retaliation against reporting persons who report violations of EU law in good faith. The ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-whistleblower-directive-2019-1937-article-19-prohibition-retaliation.json #### EU Whistleblower Protection Directive (EU) 2019/1937 - Article 9: Requirements for Internal Reporting Channels - **ID**: eu-whistleblower-directive-2019-1937-article-9-reporting-channels-internal - **Category**: Workplace - **Version**: 2.0.0 - **BLUF**: Article 9 of the EU Whistleblower Protection Directive (2019/1937) establishes mandatory requirements for internal reporting channels that legal entities in the private and public sector must set up f... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-whistleblower-directive-2019-1937-article-9-reporting-channels-internal.json #### EU Whistleblower Protection Directive 2019/1937 - Reporting Channels, Retaliation Prohibition and Workplace Protection - **ID**: eu-whistleblower-protection-directive-2019-1937 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2019/1937 of the European Parliament and of the Council of 23 October 2019 on the protection of persons who report breaches of Union law (Whistleblower Directive) entered into force on ... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-whistleblower-protection-directive-2019-1937.json #### EU Whistleblowing Directive 2019/1937 - **ID**: eu-whistleblowing-directive-2019-1937 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Directive (EU) 2019/1937 on the protection of persons who report breaches of Union law requires private sector organisations with 50 or more workers and all public sector entities to establish interna... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-whistleblowing-directive-2019-1937.json #### Directive (EU) 2019/1158 of the European Parliament and of the Council of 20 June 2019 on work-life balance for parents and carers and repealing Council Directive 2010/18/EU - **ID**: eu-work-life-balance-directive-2019 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This EU Directive requires Member States to establish minimum rights for workers concerning paternity leave, parental leave, and carers' leave, as well as the right to request flexible working arrange... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-work-life-balance-directive-2019.json #### EU Work-Life Balance Directive 2019/1158 - Parental Leave and Flexible Working - **ID**: eu-work-life-balance-directive-2019-1158 - **Category**: Workplace - **Version**: 2.0.0 - **BLUF**: Directive (EU) 2019/1158 on work-life balance for parents and carers establishes minimum rights to paternity leave (10 working days), parental leave (4 months per parent, 2 non-transferable), and care... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-work-life-balance-directive-2019-1158.json #### Directive 2003/88/EC of the European Parliament and of the Council of 4 November 2003 concerning certain aspects of the organisation of working time - **ID**: eu-working-time-directive-2003-88 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive establishes minimum safety and health requirements for the organisation of working time in EU member states, mandating a maximum average 48-hour working week (including overtime) over a... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-working-time-directive-2003-88.json #### EU Working Time Directive 2003/88 - Maximum Working Hours, Rest Periods, and Annual Leave - **ID**: eu-working-time-directive-2003-88-maximum-hours-rest-periods - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Directive 2003/88/EC on the organisation of working time sets EU-wide minimum requirements: maximum 48 working hours per week (including overtime) averaged over a reference period, 11 consecutive hour... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-working-time-directive-2003-88-maximum-hours-rest-periods.json #### Directive 2009/38/EC of the European Parliament and of the Council of 6 May 2009 on the establishment of a European Works Council or a procedure in Community-scale undertakings and Community-scale groups of undertakings for the purposes of informing and consulting employees (Recast) - **ID**: eu-works-council-directive-2009 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive requires Community-scale undertakings (≥1,000 employees in the EU/EEA, with ≥150 in at least two Member States) to establish a European Works Council (EWC) or an equivalent procedure fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-works-council-directive-2009.json #### Directive 2009/38/EC of the European Parliament and of the Council of 6 May 2009 on the establishment of a European Works Council or a procedure in Community-scale undertakings and Community-scale groups of undertakings for the purposes of informing and consulting employees (Recast) - **ID**: eu-works-council-directive-2009-38 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This directive requires Community-scale undertakings or groups of undertakings (at least 1,000 employees within Member States and at least 150 employees in each of at least two Member States) to estab... - **Discovery URL**: https://bidda.com/api/v1/nodes/eu-works-council-directive-2009-38.json #### Eurocode EN 1990:2002 Basis of Structural Design - Principles for Load Combinations, Limit States and Reliability - **ID**: eurocode-en-1990-basis-structural-design - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This standard establishes the fundamental principles and requirements for the safety, serviceability, and durability of structures within the European Union, mandating the use of limit state design an... - **Discovery URL**: https://bidda.com/api/v1/nodes/eurocode-en-1990-basis-structural-design.json #### Conditions of Contract for Design, Build and Operate Projects (DBO Contract), 1st Edition 2008 - **ID**: fidic-gold-book-dbo-2008 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The FIDIC Gold Book establishes a contractual framework for long-term Design-Build-Operate (DBO) projects, requiring the Contractor to meet specified Operation Service Requirements and Performance Gua... - **Discovery URL**: https://bidda.com/api/v1/nodes/fidic-gold-book-dbo-2008.json #### FIDIC 2017 Rainbow Suite - Red, Yellow and Silver Book Contract Obligations, Risk Allocation and Dispute Resolution - **ID**: fidic-rainbow-suite-2017-contracts - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The FIDIC 2017 Rainbow Suite provides standardized international construction contract forms (Red, Yellow, Silver Books) that define party obligations, allocate project risks, and mandate a multi-tier... - **Discovery URL**: https://bidda.com/api/v1/nodes/fidic-rainbow-suite-2017-contracts.json #### FLSA (Fair Labor) - **ID**: flsa-compliance-labor - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: The Fair Labor Standards Act (FLSA) establishes critical nationwide standards for wages and hours, recordkeeping obligations, and youth employment. Under 29 U.S.C. § 206, covered non-exempt employees ... - **Discovery URL**: https://bidda.com/api/v1/nodes/flsa-compliance-labor.json #### Coverage under the Fair Labor Standards Act (FLSA) - **ID**: flsa-coverage - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Fair Labor Standards Act (FLSA) establishes standards for minimum wage, overtime pay, recordkeeping, and child labor. This guidance, provided in Fact Sheet #14, explains the coverage of the FLSA, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/flsa-coverage.json #### FMLA (Family Leave) - **ID**: fmla-compliance-leave - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: The Family and Medical Leave Act mandates that covered employers provide eligible employees with job-protected, unpaid leave for specified family and medical reasons. A covered employer under 29 U.S.C... - **Discovery URL**: https://bidda.com/api/v1/nodes/fmla-compliance-leave.json #### Labour Code Article L2242-17 - Right to Disconnect (Loi Travail / El Khomri Law, 2017) - **ID**: france-right-to-disconnect-2017 - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: French companies with 50 or more employees must negotiate and implement a policy defining the right to disconnect from digital tools outside working hours. This obligation is established under Article... - **Discovery URL**: https://bidda.com/api/v1/nodes/france-right-to-disconnect-2017.json #### GIPS (Investment Perf) - **ID**: gips-investment-perf-std - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: Asserting compliance with the Global Investment Performance Standards (GIPS) signifies a firm-wide commitment to fair representation and full disclosure of investment performance, a claim this node va... - **Discovery URL**: https://bidda.com/api/v1/nodes/gips-investment-perf-std.json #### International Building Code (IBC) 2021 - Occupancy Classifications, Structural Requirements and Fire-Resistance Ratings - **ID**: ibc-2021-international-building-code - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The International Building Code (IBC) 2021 establishes minimum requirements for building safety, health, and welfare by regulating the design, construction, and occupancy of new and existing buildings... - **Discovery URL**: https://bidda.com/api/v1/nodes/ibc-2021-international-building-code.json #### ICC 700 National Green Building Standard (NGBS) 2020 - **ID**: icc-700-national-green-building-standard-2020 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The ICC 700 National Green Building Standard (NGBS) provides a voluntary framework and rating system for new and renovated residential buildings to achieve sustainability goals. Compliance requires me... - **Discovery URL**: https://bidda.com/api/v1/nodes/icc-700-national-green-building-standard-2020.json #### IFRS 16 Leases - Right-of-Use Asset Recognition, Lease Liability Measurement and Lessee Disclosure for Real Estate Portfolios - **ID**: ifrs-16-leases-real-estate-accounting - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: IFRS 16 requires lessees to recognize nearly all leases on their balance sheet by recording a right-of-use (RoU) asset and a corresponding lease liability, eliminating the previous distinction between... - **Discovery URL**: https://bidda.com/api/v1/nodes/ifrs-16-leases-real-estate-accounting.json #### ILO Convention No. 1 (C001) - Hours of Work (Industry), 1919 - **ID**: ilo-c001-hours-of-work-industry-1919 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 1 limits the working hours of persons in industrial undertakings to eight in the day and forty-eight in the week, with defined exceptions for continuous processes, shift work, accid... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c001-hours-of-work-industry-1919.json #### ILO Convention No. 13 (C013) - White Lead (Painting), 1921 - **ID**: ilo-c013-white-lead-painting-1921 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 13 requires States to prohibit the use of white lead, sulphate of lead and products containing those pigments in the internal painting of buildings, subject to limited exceptions, t... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c013-white-lead-painting-1921.json #### ILO Convention No. 14 (C014) - Weekly Rest (Industry), 1921 - **ID**: ilo-c014-weekly-rest-industry-1921 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 14 requires that staff employed in industrial undertakings enjoy a weekly rest period of at least 24 consecutive hours in every seven days, granted simultaneously to the whole staff... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c014-weekly-rest-industry-1921.json #### ILO Convention No. 30 (C030) - Hours of Work (Commerce and Offices), 1930 - **ID**: ilo-c030-hours-of-work-commerce-offices-1930 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 30 limits the hours of work of persons in commerce and offices to eight in the day and forty-eight in the week, allowing distribution of the weekly hours over the days with a daily ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c030-hours-of-work-commerce-offices-1930.json #### ILO Convention No. 81 (C081) - Labour Inspection, 1947 - **ID**: ilo-c081-labour-inspection-1947 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 81 is a governance (priority) Convention requiring ratifying States to maintain a system of labour inspection in industrial workplaces to secure the enforcement of legal provisions ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c081-labour-inspection-1947.json #### ILO Convention No. 87 (C087) - Freedom of Association and Protection of the Right to Organise, 1948 - **ID**: ilo-c087-freedom-of-association-right-to-organise-1948 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 87 is a fundamental Convention guaranteeing that workers and employers may freely establish and join organisations of their own choosing without previous authorisation, and that tho... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c087-freedom-of-association-right-to-organise-1948.json #### ILO Convention No. 88 (C088) - Employment Service, 1948 - **ID**: ilo-c088-employment-service-1948 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 88 requires States to maintain a free public employment service whose essential duty is to achieve the best possible organisation of the employment market, through a national networ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c088-employment-service-1948.json #### ILO Convention No. 95 (C095) - Protection of Wages, 1949 - **ID**: ilo-c095-protection-of-wages-1949 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 95 is a technical Convention protecting workers wages by requiring payment in legal tender, regulating partial payment in kind, requiring direct and regular payment to the worker, p... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c095-protection-of-wages-1949.json #### ILO Convention No. 97 (C097) - Migration for Employment (Revised), 1949 - **ID**: ilo-c097-migration-for-employment-1949 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 97 requires States to maintain a free service to assist migrants for employment with accurate information, act against misleading propaganda, facilitate departure, journey and recep... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c097-migration-for-employment-1949.json #### ILO Convention No. 98 (C098) - Right to Organise and Collective Bargaining, 1949 - **ID**: ilo-c098-right-to-organise-collective-bargaining-1949 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 98 is a fundamental Convention protecting workers against anti-union discrimination in employment, protecting workers and employers organisations against mutual interference, and re... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c098-right-to-organise-collective-bargaining-1949.json #### ILO Convention No. 100 (C100) - Equal Remuneration, 1951 - **ID**: ilo-c100-equal-remuneration-1951 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 100 is a fundamental Convention requiring ratifying States to ensure the application of the principle of equal remuneration for men and women workers for work of equal value, coveri... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c100-equal-remuneration-1951.json #### ILO Convention No. 102 (C102) - Social Security (Minimum Standards), 1952 - **ID**: ilo-c102-social-security-minimum-standards-1952 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 102 sets the minimum standards for the nine branches of social security (medical care, sickness, unemployment, old-age, employment injury, family, maternity, invalidity and survivor... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c102-social-security-minimum-standards-1952.json #### ILO Convention No. 105 (C105) - Abolition of Forced Labour, 1957 - **ID**: ilo-c105-abolition-of-forced-labour-1957 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 105 is a fundamental Convention requiring ratifying States to suppress and not to make use of any form of forced or compulsory labour for five specified purposes: political coercion... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c105-abolition-of-forced-labour-1957.json #### ILO Convention No. 106 (C106) - Weekly Rest (Commerce and Offices), 1957 - **ID**: ilo-c106-weekly-rest-commerce-offices-1957 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 106 entitles persons employed in commerce and offices to an uninterrupted weekly rest period of at least 24 hours in every seven days, granted so far as possible simultaneously and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c106-weekly-rest-commerce-offices-1957.json #### ILO Convention No. 110 (C110) - Plantations, 1958 - **ID**: ilo-c110-plantations-1958 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 110 establishes minimum labour standards for plantation workers across recruitment, medical examination, wages, annual leave, maternity protection, freedom of association and labour... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c110-plantations-1958.json #### ILO Convention No. 115 (C115) - Radiation Protection, 1960 - **ID**: ilo-c115-radiation-protection-1960 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 115 requires States to take all appropriate steps to ensure effective protection of workers against ionising radiations, by fixing maximum permissible doses and amounts of radioacti... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c115-radiation-protection-1960.json #### ILO Convention No. 120 (C120) - Hygiene (Commerce and Offices), 1964 - **ID**: ilo-c120-hygiene-commerce-offices-1964 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 120 requires States to maintain laws ensuring the hygiene of premises used by workers in commerce and offices, enforced by inspection, with premises and equipment properly maintaine... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c120-hygiene-commerce-offices-1964.json #### ILO Convention No. 121 (C121) - Employment Injury Benefits, 1964 - **ID**: ilo-c121-employment-injury-benefits-1964 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 121 requires States to provide benefits for employment injury covering the contingencies of a morbid condition, incapacity for work, loss of earning capacity and death of the breadw... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c121-employment-injury-benefits-1964.json #### ILO Convention No. 122 (C122) - Employment Policy, 1964 - **ID**: ilo-c122-employment-policy-1964 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 122 is a governance (priority) Convention requiring ratifying States to declare and pursue, as a major goal, an active policy designed to promote full, productive and freely chosen ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c122-employment-policy-1964.json #### ILO Convention No. 127 (C127) - Maximum Weight, 1967 - **ID**: ilo-c127-maximum-weight-1967 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 127 protects workers from the manual transport of loads likely to jeopardise their health or safety, requiring that no worker be required or permitted to carry such loads, that work... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c127-maximum-weight-1967.json #### ILO Convention No. 128 (C128) - Invalidity, Old-Age and Survivors Benefits, 1967 - **ID**: ilo-c128-invalidity-old-age-survivors-benefits-1967 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 128 sets standards for invalidity, old-age and survivors benefits, requiring States to secure benefit to prescribed classes of protected persons, define the covered contingencies, p... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c128-invalidity-old-age-survivors-benefits-1967.json #### ILO Convention No. 129 (C129) - Labour Inspection (Agriculture), 1969 - **ID**: ilo-c129-labour-inspection-agriculture-1969 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 129 is a governance (priority) Convention requiring ratifying States to maintain a system of labour inspection in agriculture covering agricultural undertakings, to secure the enfor... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c129-labour-inspection-agriculture-1969.json #### ILO Convention No. 130 (C130) - Medical Care and Sickness Benefits, 1969 - **ID**: ilo-c130-medical-care-sickness-benefits-1969 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 130 requires States to secure medical care of a curative and preventive nature and sickness benefit in the form of periodical cash payments, to prescribed classes of employees or re... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c130-medical-care-sickness-benefits-1969.json #### ILO Convention No. 131 (C131) - Minimum Wage Fixing, 1970 - **ID**: ilo-c131-minimum-wage-fixing-1970 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 131 is a technical Convention requiring ratifying States to establish a system of minimum wages covering all appropriate groups of wage earners, giving minimum wages the force of la... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c131-minimum-wage-fixing-1970.json #### ILO Convention No. 132 (C132) - Holidays with Pay (Revised), 1970 - **ID**: ilo-c132-holidays-with-pay-1970 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 132 entitles every covered employed person to an annual paid holiday of at least three working weeks for one year of service, with a proportionate holiday for shorter service, payme... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c132-holidays-with-pay-1970.json #### ILO Convention No. 135 (C135) - Workers Representatives, 1971 - **ID**: ilo-c135-workers-representatives-1971 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 135 requires that workers representatives in an undertaking enjoy effective protection against any prejudicial act, including dismissal, based on their status or activities as a rep... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c135-workers-representatives-1971.json #### ILO Convention No. 136 (C136) - Benzene, 1971 - **ID**: ilo-c136-benzene-1971 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 136 regulates occupational exposure to benzene and products containing benzene, requiring substitution with harmless or less harmful products where available, prevention of the esca... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c136-benzene-1971.json #### ILO Convention No. 139 (C139) - Occupational Cancer, 1974 - **ID**: ilo-c139-occupational-cancer-1974 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 139 requires States to periodically determine the carcinogenic substances and agents to which occupational exposure is prohibited or subject to authorisation, to make every effort t... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c139-occupational-cancer-1974.json #### ILO Convention No. 140 (C140) - Paid Educational Leave, 1974 - **ID**: ilo-c140-paid-educational-leave-1974 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 140 requires States to formulate and apply a policy to promote the granting of paid educational leave for training at any level, general, social and civic education, and trade-union... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c140-paid-educational-leave-1974.json #### ILO Convention No. 141 (C141) - Rural Workers Organisations, 1975 - **ID**: ilo-c141-rural-workers-organisations-1975 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 141 requires States to recognise the right of all categories of rural workers, whether wage earners or self-employed, to establish and join organisations of their own choosing witho... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c141-rural-workers-organisations-1975.json #### ILO Convention No. 142 (C142) - Human Resources Development, 1975 - **ID**: ilo-c142-human-resources-development-1975 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 142 requires States to adopt and develop comprehensive and coordinated policies and programmes of vocational guidance and vocational training closely linked with employment, to esta... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c142-human-resources-development-1975.json #### ILO Convention No. 143 (C143) - Migrant Workers (Supplementary Provisions), 1975 - **ID**: ilo-c143-migrant-workers-supplementary-1975 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 143 requires States to respect the basic human rights of all migrant workers, suppress clandestine migration and illegal employment of migrants, protect migrant workers who lose emp... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c143-migrant-workers-supplementary-1975.json #### ILO Convention No. 144 (C144) - Tripartite Consultation (International Labour Standards), 1976 - **ID**: ilo-c144-tripartite-consultation-1976 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 144 is a governance (priority) Convention requiring ratifying States to operate procedures ensuring effective tripartite consultations between representatives of government, employe... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c144-tripartite-consultation-1976.json #### ILO Convention No. 146 (C146) - Seafarers Annual Leave with Pay, 1976 - **ID**: ilo-c146-seafarers-annual-leave-1976 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 146 entitles seafarers to annual leave with pay of a specified minimum length of not less than 30 calendar days for one year of service, with a proportionate entitlement for shorter... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c146-seafarers-annual-leave-1976.json #### ILO Convention No. 147 (C147) - Merchant Shipping (Minimum Standards), 1976 - **ID**: ilo-c147-merchant-shipping-minimum-standards-1976 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 147 requires States to have laws for ships registered in their territory laying down safety, social security and shipboard employment and living standards substantially equivalent t... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c147-merchant-shipping-minimum-standards-1976.json #### ILO Convention No. 148 (C148) - Working Environment (Air Pollution, Noise and Vibration), 1977 - **ID**: ilo-c148-working-environment-air-noise-vibration-1977 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 148 requires States to prescribe measures for the prevention and control of, and protection against, occupational hazards in the working environment due to air pollution, noise and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c148-working-environment-air-noise-vibration-1977.json #### ILO Convention No. 149 (C149) - Nursing Personnel, 1977 - **ID**: ilo-c149-nursing-personnel-1977 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 149 requires States to adopt and apply a policy concerning nursing services and nursing personnel that provides the education, training, employment and working conditions likely to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c149-nursing-personnel-1977.json #### ILO Convention No. 150 (C150) - Labour Administration, 1978 - **ID**: ilo-c150-labour-administration-1978 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 150 requires States to ensure the organisation and effective operation of a system of labour administration, the functions and responsibilities of which are properly coordinated, co... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c150-labour-administration-1978.json #### ILO Convention No. 152 (C152) - Occupational Safety and Health (Dock Work), 1979 - **ID**: ilo-c152-occupational-safety-health-dock-work-1979 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 152 requires States to prescribe measures for safety and health in dock work, providing and maintaining safe workplaces, equipment and methods of work, with duties on workers not to... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c152-occupational-safety-health-dock-work-1979.json #### ILO Convention No. 153 (C153) - Hours of Work and Rest Periods (Road Transport), 1979 - **ID**: ilo-c153-hours-of-work-rest-road-transport-1979 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 153 limits the driving and working time of professional drivers in road transport, requiring a break after a maximum period of continuous driving, a ceiling on total daily and weekl... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c153-hours-of-work-rest-road-transport-1979.json #### ILO Convention No. 154 (C154) - Collective Bargaining, 1981 - **ID**: ilo-c154-collective-bargaining-1981 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 154 promotes free and voluntary collective bargaining covering all employers and groups of workers in the branches of activity to which it applies, requiring measures to make bargai... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c154-collective-bargaining-1981.json #### ILO Convention No. 156 (C156) - Workers with Family Responsibilities, 1981 - **ID**: ilo-c156-workers-family-responsibilities-1981 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 156 requires States to make it an aim of national policy to enable persons with family responsibilities who are engaged or wish to engage in employment to do so without discriminati... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c156-workers-family-responsibilities-1981.json #### ILO Convention No. 158 (C158) - Termination of Employment, 1982 - **ID**: ilo-c158-termination-of-employment-1982 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 158 is a technical Convention requiring that the employment of a worker not be terminated unless there is a valid reason connected with capacity, conduct or the operational requirem... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c158-termination-of-employment-1982.json #### ILO Convention No. 159 (C159) - Vocational Rehabilitation and Employment (Disabled Persons), 1983 - **ID**: ilo-c159-vocational-rehabilitation-employment-disabled-1983 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 159 requires States to formulate, implement and periodically review a national policy on vocational rehabilitation and employment of disabled persons, based on the principle of equa... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c159-vocational-rehabilitation-employment-disabled-1983.json #### ILO Convention No. 160 (C160) - Labour Statistics, 1985 - **ID**: ilo-c160-labour-statistics-1985 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 160 requires States to regularly collect, compile and publish basic labour statistics, progressively expanded according to resources, using concepts, definitions and methodology ali... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c160-labour-statistics-1985.json #### ILO Convention No. 161 (C161) - Occupational Health Services, 1985 - **ID**: ilo-c161-occupational-health-services-1985 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 161 requires States to formulate, implement and periodically review a coherent national policy on occupational health services and to progressively develop such services for all wor... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c161-occupational-health-services-1985.json #### ILO Convention No. 162 (C162) - Asbestos, 1986 - **ID**: ilo-c162-asbestos-1986 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 162 requires States to prescribe by national laws the measures to prevent and control health hazards from occupational exposure to asbestos, making employers responsible for complia... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c162-asbestos-1986.json #### ILO Convention No. 164 (C164) - Health Protection and Medical Care (Seafarers), 1987 - **ID**: ilo-c164-health-protection-medical-care-seafarers-1987 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 164 requires States to ensure health protection and medical care for seafarers on board ship comparable to that available to workers ashore, including a medicine chest and medical e... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c164-health-protection-medical-care-seafarers-1987.json #### ILO Convention No. 166 (C166) - Repatriation of Seafarers (Revised), 1987 - **ID**: ilo-c166-repatriation-of-seafarers-1987 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 166 entitles seafarers to repatriation in defined circumstances, places responsibility on the shipowner to arrange and pay for repatriation by appropriate and expeditious means (nor... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c166-repatriation-of-seafarers-1987.json #### ILO Convention No. 168 (C168) - Employment Promotion and Protection against Unemployment, 1988 - **ID**: ilo-c168-employment-promotion-protection-unemployment-1988 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 168 requires States to coordinate their system of protection against unemployment with employment policy, declaring the promotion of full, productive and freely chosen employment a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c168-employment-promotion-protection-unemployment-1988.json #### ILO Convention No. 170 (C170) - Chemicals, 1990 - **ID**: ilo-c170-chemicals-1990 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 170 requires States to formulate a coherent policy on safety in the use of chemicals at work, and imposes a system of classification, labelling and marking of chemicals, provision o... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c170-chemicals-1990.json #### ILO Convention No. 171 (C171) - Night Work, 1990 - **ID**: ilo-c171-night-work-1990 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 171 requires specific measures to protect night workers, including free health assessments, transfer of workers found unfit for night work, alternatives to night work around materni... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c171-night-work-1990.json #### ILO Convention No. 172 (C172) - Working Conditions (Hotels and Restaurants), 1991 - **ID**: ilo-c172-working-conditions-hotels-restaurants-1991 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 172 requires States to adopt and apply a policy to improve the working conditions of workers in hotels, restaurants and similar establishments, ensuring reasonable hours of work and... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c172-working-conditions-hotels-restaurants-1991.json #### ILO Convention No. 174 (C174) - Prevention of Major Industrial Accidents, 1993 - **ID**: ilo-c174-prevention-major-industrial-accidents-1993 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 174 requires States to formulate a coherent national policy for the protection of workers, the public and the environment against the risk of major accidents, establish a system for... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c174-prevention-major-industrial-accidents-1993.json #### ILO Convention No. 175 (C175) - Part-Time Work, 1994 - **ID**: ilo-c175-part-time-work-1994 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 175 requires that part-time workers receive the same protection as comparable full-time workers in respect of the right to organise and bargain collectively, occupational safety and... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c175-part-time-work-1994.json #### ILO Convention No. 177 (C177) - Home Work, 1996 - **ID**: ilo-c177-home-work-1996 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 177 requires States to adopt, implement and periodically review a national policy on home work that promotes equality of treatment between homeworkers and other wage earners, coveri... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c177-home-work-1996.json #### ILO Convention No. 181 (C181) - Private Employment Agencies, 1997 - **ID**: ilo-c181-private-employment-agencies-1997 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 181 regulates private employment agencies, requiring protection of worker personal data, non-discrimination, a prohibition on charging fees to workers, protection of migrant workers... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c181-private-employment-agencies-1997.json #### ILO Convention No. 182 (C182) - Worst Forms of Child Labour, 1999 - **ID**: ilo-c182-worst-forms-of-child-labour-1999 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 182 is a fundamental Convention requiring ratifying States to take immediate and effective measures to secure the prohibition and elimination of the worst forms of child labour as a... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c182-worst-forms-of-child-labour-1999.json #### ILO Convention No. 183 (C183) - Maternity Protection, 2000 - **ID**: ilo-c183-maternity-protection-2000 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 183 is a technical Convention requiring ratifying States to protect the health of pregnant and breastfeeding women, to provide maternity leave of not less than 14 weeks including co... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c183-maternity-protection-2000.json #### ILO Convention No. 184 (C184) - Safety and Health in Agriculture, 2001 - **ID**: ilo-c184-safety-health-agriculture-2001 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 184 requires States to formulate a coherent national policy on safety and health in agriculture, designate a competent authority and enforcement system, and imposes employer duties ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c184-safety-health-agriculture-2001.json #### ILO Convention No. 185 (C185) - Seafarers Identity Documents (Revised), 2003 - **ID**: ilo-c185-seafarers-identity-documents-2003 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 185 establishes a secure, internationally recognised seafarers identity document (SID), requiring States to issue SIDs to their national seafarers in a standardised biometric form, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c185-seafarers-identity-documents-2003.json #### ILO Convention No. 187 (C187) - Promotional Framework for Occupational Safety and Health, 2006 - **ID**: ilo-c187-promotional-framework-occupational-safety-health-2006 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 187 requires ratifying States to promote continuous improvement of occupational safety and health to prevent work-related injuries, diseases and deaths through the progressive devel... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c187-promotional-framework-occupational-safety-health-2006.json #### ILO Convention No. 188 (C188) - Work in Fishing, 2007 - **ID**: ilo-c188-work-in-fishing-2007 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ILO Convention No. 188 sets minimum standards for work on board fishing vessels, requiring States to implement and enforce laws on fishers and fishing vessels, placing overall responsibility on the fi... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c188-work-in-fishing-2007.json #### ILO Convention 189 Domestic Workers 2011 - Decent Work, Minimum Standards and Recruitment Regulation - **ID**: ilo-c189-domestic-workers-convention-2011 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Domestic Workers Convention 2011 (No. 189) was adopted by the International Labour Conference at its 100th Session on 16 June 2011 and entered into force on 5 September 2013. It is the first bindi... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c189-domestic-workers-convention-2011.json #### C190 - Violence and Harassment Convention, 2019 (No. 190) - **ID**: ilo-c190-violence-harassment-2019 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This convention requires ratifying member states to adopt laws and policies ensuring the right to a world of work free from violence and harassment, including gender-based violence. As per Article 4, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-c190-violence-harassment-2019.json #### Occupational Safety and Health Convention, 1981 (No. 155) - **ID**: ilo-convention-155-occupational-safety-1981 - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: Requires member states to establish, implement, and periodically review a national policy on occupational safety, health, and welfare. Applies to all sectors of economic activity and mandates employer... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-convention-155-occupational-safety-1981.json #### ILO Convention C190 2019 - Violence and Harassment in the World of Work - **ID**: ilo-convention-190-2019-violence-harassment-work - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: ILO Convention C190 - the Violence and Harassment Convention, 2019, adopted on 21 June 2019 at the 108th International Labour Conference and entering into force on 25 June 2021 following ratification ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-convention-190-2019-violence-harassment-work.json #### ILO (Core Conventions) - **ID**: ilo-core-conventions - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: BIDDA’s compliance architecture for International Labour Organization core conventions operationalizes the tenets established within the ILO Declaration on Fundamental Principles and Rights at Work. T... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-core-conventions.json #### ILO Declaration on Fundamental Principles and Rights at Work 1998 - **ID**: ilo-core-labour-standards-1998 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This declaration obligates all ILO Member States to respect, promote, and realize principles concerning four fundamental rights: freedom of association and collective bargaining, the elimination of fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-core-labour-standards-1998.json #### ILO Maritime Labour Convention (MLC) 2006 - Consolidated Standards for Seafarer Rights, Working Conditions and Social Protection - **ID**: ilo-mlc-2006 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Maritime Labour Convention, 2006 (MLC) is an international labour convention that establishes minimum working and living standards for all seafarers on ships flying the flags of ratifying countrie... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-mlc-2006.json #### Tripartite Declaration of Principles Concerning Multinational Enterprises and Social Policy (6th Edition, 2022): Employment, Training and Working Conditions - **ID**: ilo-mne-declaration-2022 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This declaration sets non-binding principles for multinational enterprises (MNEs), governments, and employers' and workers' organizations to promote decent work, fair employment practices, vocational ... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-mne-declaration-2022.json #### ILO Protocol P29 on Forced Labour 2014 - Protocol to Convention No. 29 - **ID**: ilo-p29-forced-labour-protocol-2014 - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: The ILO Protocol of 2014 to the Forced Labour Convention (Protocol P29 - 61 Parties as of April 2026, entered into force 9 November 2016) supplements ILO Convention No. 29 (Forced Labour Convention 19... - **Discovery URL**: https://bidda.com/api/v1/nodes/ilo-p29-forced-labour-protocol-2014.json #### International Convention on Standards of Training, Certification and Watchkeeping for Seafarers (STCW), 1978, as amended, including the 2010 Manila Amendments - **ID**: imo-stcw-convention-manila-2010 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The STCW Convention and Code, as updated by the 2010 Manila Amendments, establishes mandatory minimum international standards for the training, certification, and watchkeeping of seafarers. It require... - **Discovery URL**: https://bidda.com/api/v1/nodes/imo-stcw-convention-manila-2010.json #### The Factories Act, 1948 - Working Hours, Health, Safety and Welfare Provisions for Factory Workers - **ID**: in-factories-act-1948 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This Act mandates health, safety, welfare, and working hour standards for all factories in India, defined as premises employing 10 or more workers with the aid of power, or 20 or more without. Key pro... - **Discovery URL**: https://bidda.com/api/v1/nodes/in-factories-act-1948.json #### ISO 10002 (Complaints) - **ID**: iso-10002-complaints-mgt - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: Compliance with ISO 10002 mandates a structured, transparent, and customer-focused complaints-handling framework, grounded in established international standards. Foundational principles require an or... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-10002-complaints-mgt.json #### ISO 10004 (Feedback) - **ID**: iso-10004-feedback-mgt - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: Compliance with ISO 10004 necessitates a structured and comprehensive framework for monitoring and utilizing customer feedback to enhance satisfaction. Organizational adherence requires a formally doc... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-10004-feedback-mgt.json #### ISO 14001:2015 Environmental Management Systems Applied in Construction - Environmental Aspects, Legal Compliance and Waste Management - **ID**: iso-14001-environmental-management-construction - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This standard requires construction organizations to establish, implement, and continually improve an Environmental Management System (EMS) by identifying and managing significant environmental aspect... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-14001-environmental-management-construction.json #### ISO 19650 Series - Organization and digitization of information about buildings and civil engineering works, including building information modelling (BIM) - Information management using building information modelling - **ID**: iso-19650-bim-information-management - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The ISO 19650 series establishes a framework for managing information over the whole life cycle of a built asset using Building Information Modelling (BIM). It requires appointing parties to define th... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-19650-bim-information-management.json #### ISO 20400 (Sustainable Procure) - **ID**: iso-20400-sustainable-procure - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: Adherence to the ISO 20400 (Sustainable Procure) node requires an organization to integrate sustainability principles throughout its procurement lifecycle, substantiated by verifiable controls and per... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-20400-sustainable-procure.json #### ISO 21001:2018 Management Systems for Educational Organisations - Requirements with guidance for use - **ID**: iso-21001-educational-organisations-2018 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ISO 21001:2018 specifies requirements for a Management System for Educational Organizations (EOMS) to enhance learner satisfaction and other beneficiaries. It requires organizations to demonstrate the... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-21001-educational-organisations-2018.json #### ISO 21500 (Project Gov) - **ID**: iso-21500-project-gov - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: ISO 21500 (Project Gov) evaluates an organization's adherence to international standards for project, programme, and portfolio governance. Compliance mandates the establishment of a formal framework; ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-21500-project-gov.json #### ISO 21502 (Project Mgt) - **ID**: iso-21502-project-mgt - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: Conformance with governing ISO 21502 guidance for project, program, and portfolio management mandates a rigorous framework of controls and documented procedures. The standard requires that every proje... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-21502-project-mgt.json #### ISO 21542:2021 Building Construction - Accessibility and Usability of the Built Environment - Design Criteria and Dimensions - **ID**: iso-21542-accessibility-built-environment-2021 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This standard provides specific design criteria and dimensional requirements for constructing and managing accessible and usable built environments, applicable to new and existing buildings. It mandat... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-21542-accessibility-built-environment-2021.json #### ISO 26000 (Social Resp) - **ID**: iso-26000-social-resp-mgt - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: Organizational alignment with ISO 26000 principles necessitates a comprehensive assessment of integrated social responsibility frameworks, verified through specific data points. Foundational governanc... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-26000-social-resp-mgt.json #### Human Capital Reporting (ISO 30414) - **ID**: iso-30414-human-capital - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: ISO 30414 is the first international standard that allows organizations (SMEs, large enterprises, and public bodies) to get a clear view of their human capital's contribution. It provides a standardiz... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-30414-human-capital.json #### ISO 30414 (Human Capital) - **ID**: iso-30414-human-capital-rep - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: Compliance with the ISO 30414 standard demands a systematic approach to human capital reporting, establishing transparent and comparable metrics for internal governance and external stakeholder review... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-30414-human-capital-rep.json #### ISO 31000 (Risk Mgt) - **ID**: iso-31000-risk-mgt-std - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: Adherence to governing risk management principles mandates a structured, enterprise-wide approach to identifying, analyzing, and treating uncertainty. This control node verifies the existence of found... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-31000-risk-mgt-std.json #### ISO 37301 (Compliance) - **ID**: iso-37301-compliance-mgt - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: Conformance with ISO 37301 necessitates a robust and effective Compliance Management System (CMS) built upon a culture of integrity and accountability. This evaluation verifies foundational governance... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-37301-compliance-mgt.json #### Occupational Health & Safety (ISO 45001) - **ID**: iso-45001-health-safety - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: ISO 45001:2018 is the global standard for occupational health and safety (OH&S), designed to prevent work-related injuries and illnesses while promoting a safe work environment through risk-based reso... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-45001-health-safety.json #### ISO 45001:2018 Occupational Health and Safety Management Systems for Construction: Hazard Identification and Incident Investigation - **ID**: iso-45001-ohs-management-construction - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: ISO 45001:2018 requires construction organizations to establish proactive processes for identifying workplace hazards (Clause 6.1.2) and to systematically investigate incidents, nonconformities, and t... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-45001-ohs-management-construction.json #### ISO 45001 (Work Safety) - **ID**: iso-45001-work-safety - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: Organizational adherence to the ISO 45001 standard for occupational health and safety (OHS) management is systematically demonstrated through a comprehensive and well-documented framework. The complia... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-45001-work-safety.json #### ISO 9001:2015 Quality Management Systems Applied in Construction - Inspection and Test Plans, Non-Conformance and Corrective Action - **ID**: iso-9001-quality-management-construction - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Construction organizations must implement a quality management system that includes documented Inspection and Test Plans (ITPs) to verify project stages, systematically control nonconforming outputs a... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-9001-quality-management-construction.json #### ISO 9001 (Quality Mgt) - **ID**: iso-9001-quality-mgt - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: Compliance with the ISO 9001 standard necessitates the establishment and maintenance of a comprehensive Quality Management System (QMS). A fundamental requirement is that organizations must possess a ... - **Discovery URL**: https://bidda.com/api/v1/nodes/iso-9001-quality-mgt.json #### JCT Design and Build Contract 2016 - **ID**: jct-design-build-contract-2016 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The JCT Design and Build Contract 2016 is a standard form UK construction contract where the contractor is responsible for both the design and construction of the works. It requires the contractor to ... - **Discovery URL**: https://bidda.com/api/v1/nodes/jct-design-build-contract-2016.json #### Japan Industrial Safety and Health Act 1972 - **ID**: jp-industrial-safety-health-act-1972 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Industrial Safety and Health Act (Act No. 57 of 1972), last substantially amended in 2022, establishes the framework for preventing workplace accidents and protecting workers' health in Japan, req... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-industrial-safety-health-act-1972.json #### Japan Labour Standards Act 1947 (Act No. 49 of 1947, Rōdō Kijun-hō) - Minimum Employment Standards - **ID**: jp-labour-standards-act-1947 - **Category**: Workplace - **Version**: 1.0.2 - **BLUF**: The Labour Standards Act 1947 (Act No. 49 of 1947, Rōdō Kijun-hō) establishes minimum employment standards applicable to all workers employed in Japan regardless of the form of their employment contra... - **Discovery URL**: https://bidda.com/api/v1/nodes/jp-labour-standards-act-1947.json #### LEED v4.1 Building Design and Construction Rating System - Prerequisites, Credits and Minimum Programme Requirements - **ID**: leed-v4-1-certification-system - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The LEED v4.1 BD+C rating system provides a framework for designing, constructing, and operating high-performance green buildings, requiring all projects to meet a set of Minimum Program Requirements ... - **Discovery URL**: https://bidda.com/api/v1/nodes/leed-v4-1-certification-system.json #### Modern Slavery Act - **ID**: modern-slavery-act-rep - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: Modern slavery legislation mandates that certain commercial organizations actively identify, mitigate, and report on risks of slavery and human trafficking within their global operations and supply ch... - **Discovery URL**: https://bidda.com/api/v1/nodes/modern-slavery-act-rep.json #### NEC4 Engineering and Construction Contract - Core Clauses, Payment, Compensation Events and Early Warning Obligations - **ID**: nec4-engineering-construction-contract - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The NEC4 Engineering and Construction Contract (ECC) mandates a collaborative approach to contract management, requiring parties to proactively manage risks through an early warning system (Clause 16)... - **Discovery URL**: https://bidda.com/api/v1/nodes/nec4-engineering-construction-contract.json #### NFPA 101 Life Safety Code, 2021 Edition - Means of Egress, Occupant Load and Emergency Lighting Requirements - **ID**: nfpa-101-life-safety-code-2021 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The NFPA 101 Life Safety Code establishes minimum building design, construction, operation, and maintenance requirements to protect occupants from fire, smoke, and toxic fumes. It mandates specific cr... - **Discovery URL**: https://bidda.com/api/v1/nodes/nfpa-101-life-safety-code-2021.json #### NFPA 70 National Electrical Code (NEC), 2023 Edition - **ID**: nfpa-70-national-electrical-code-2023 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The NFPA 70 National Electrical Code (NEC) establishes the benchmark for safe electrical design, installation, and inspection to protect people and property from electrical hazards in public and priva... - **Discovery URL**: https://bidda.com/api/v1/nodes/nfpa-70-national-electrical-code-2023.json #### New Zealand Employment Relations Act 2000 (ERA) - **ID**: nz-era-2000-employment-relations - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: The Employment Relations Act 2000 (ERA) governs all employment relationships in New Zealand, establishing a comprehensive framework of good faith obligations, written employment agreement requirements... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-era-2000-employment-relations.json #### New Zealand Health and Safety at Work Act 2015 - **ID**: nz-health-and-safety-at-work-act-2015 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Health and Safety at Work Act 2015 (HSWA) is New Zealand's primary work health and safety legislation, placing a primary duty of care on persons conducting a business or undertaking (PCBUs) to ens... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-health-and-safety-at-work-act-2015.json #### NZ Health and Safety at Work Act 2015 - **ID**: nz-health-safety-at-work-act-2015 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The NZ Health and Safety at Work Act 2015 (HSWA) replaces the Health and Safety in Employment Act 1992 and establishes the primary duty of care for Persons Conducting a Business or Undertaking (PCBUs)... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-health-safety-at-work-act-2015.json #### New Zealand Health and Safety at Work Act 2015 (HSWA) - **ID**: nz-hswa-2015-health-safety-work - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: The Health and Safety at Work Act 2015 (HSWA) is New Zealand's principal workplace health and safety legislation, establishing a risk-based framework that replaced the Health and Safety in Employment ... - **Discovery URL**: https://bidda.com/api/v1/nodes/nz-hswa-2015-health-safety-work.json #### HAZARD COMMUNICATION Small Entity Compliance Guide for Employers That Use Hazardous Chemicals - **ID**: osha-hazard-communication-standard - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Occupational Safety and Health Administration’s (OSHA) Hazard Communication Standard (HCS), 29 CFR 1910.1200, addresses the informational needs of employers and workers with regard to chemicals. I... - **Discovery URL**: https://bidda.com/api/v1/nodes/osha-hazard-communication-standard.json #### OSHA (Work Safety) - **ID**: osha-work-safety-us - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: An evaluation of current occupational safety and health compliance reveals substantial adherence to certain regulatory mandates while also exposing critical deficiencies requiring immediate remediatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/osha-work-safety-us.json #### PMBOK 7 (Project Guide) - **ID**: pmbok-7-guide-pm - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: Compliance with the PMBOK 7 (Project Guide) node mandates a principles-based approach to project management, focusing on value delivery and adaptable governance. This framework requires the formal est... - **Discovery URL**: https://bidda.com/api/v1/nodes/pmbok-7-guide-pm.json #### PRINCE2 7 (Framework) - **ID**: prince2-7-framework-pm - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: Compliance with the PRINCE2 7 framework necessitates rigorous adherence to its integrated elements of principles, themes, processes, and the project environment. Governance requires that project board... - **Discovery URL**: https://bidda.com/api/v1/nodes/prince2-7-framework-pm.json #### Labour Law No. (14) of 2004 (as amended by Law No. 18 of 2020 and Law No. 17 of 2020) - **ID**: qatar-labour-law-14-2004-amended - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This law governs employment relations in Qatar's private sector, establishing a non-discriminatory minimum wage (Law No. 17 of 2020), abolishing the No-Objection Certificate (NOC) requirement for chan... - **Discovery URL**: https://bidda.com/api/v1/nodes/qatar-labour-law-14-2004-amended.json #### RICS Red Book Global Valuation Standards 2022: Valuation Bases, Inspections and Reporting Requirements for Real Property - **ID**: rics-red-book-global-valuation-2022 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The RICS Red Book mandates that RICS members and regulated firms conduct property valuations with professional competence, objectivity, and transparency, requiring strict adherence to mandatory Profes... - **Discovery URL**: https://bidda.com/api/v1/nodes/rics-red-book-global-valuation-2022.json #### SA8000 (Social Account) - **ID**: sa8000-social-account - **Category**: Workplace - **Version**: 1.1.1 - **BLUF**: SA8000 establishes a comprehensive, auditable framework for ensuring decent workplace conditions and upholding fundamental worker rights. Compliance mandates the implementation of an explicit child la... - **Discovery URL**: https://bidda.com/api/v1/nodes/sa8000-social-account.json #### Employment Act 1968 (Chapter 91) of Singapore - Core Provisions for All Employees: Rest Days, Leave and Termination (2019 Amendments) - **ID**: sg-employment-act-1968 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Singapore Employment Act 1968, as amended, mandates core employment provisions for all employees, including managers and executives. It establishes minimum requirements for rest days (Part IV, Sec... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-employment-act-1968.json #### Singapore Employment Act 1968 - Core Employment Terms and Protections for All Employees - **ID**: sg-employment-act-1968-ea-core-terms-all-employees - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Singapore Employment Act 1968 (Cap. 91A) as amended in 2019 extended core protections to all employees regardless of salary. All employees are entitled to: itemised payslips, written key employmen... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-employment-act-1968-ea-core-terms-all-employees.json #### Extradition Act 1968 - **ID**: sg-employment-act-part-iv-rest-days-hours-work - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This Act outlines the legal framework and procedures for the extradition of fugitives to and from Singapore, including restrictions on surrender, the issuance of warrants, and the rights of surrendere... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-employment-act-part-iv-rest-days-hours-work.json #### Singapore Workplace Safety and Health Act 2006 (Cap. 354A) - Occupational Safety Obligations - **ID**: sg-workplace-safety-health-act-2006 - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: The Workplace Safety and Health Act 2006 (WSHA, Cap. 354A) establishes the occupational safety and health framework for workplaces in Singapore, administered by the Ministry of Manpower (MOM) and the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/sg-workplace-safety-health-act-2006.json #### SHRM (HR Competency) - **ID**: shrm-hr-competency - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: Organizational conformity with established SHRM competency standards is evaluated through a multi-faceted set of controls governing professional conduct, strategic integration, and data governance. Su... - **Discovery URL**: https://bidda.com/api/v1/nodes/shrm-hr-competency.json #### SOC 1 Type II (Finance) - **ID**: soc-1-type-2-finance - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: A Service Organization Control (SOC) 1 Type II attestation provides assurance regarding the operational effectiveness of controls relevant to user entities' internal control over financial reporting (... - **Discovery URL**: https://bidda.com/api/v1/nodes/soc-1-type-2-finance.json #### Approved Document L: Conservation of fuel and power (2021 edition for use in England) - **ID**: uk-building-regulations-part-l-2021 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This regulation establishes the energy efficiency requirements for new and existing buildings in England, mandating that new dwellings achieve a 31% reduction in CO2 emissions compared to previous sta... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-building-regulations-part-l-2021.json #### Building Safety Act 2022 - **ID**: uk-building-safety-act-2022 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The UK Building Safety Act 2022 establishes a new, more stringent regulatory regime for higher-risk buildings, creating the role of the Building Safety Regulator and imposing specific duties on 'Accou... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-building-safety-act-2022.json #### The Construction (Design and Management) Regulations 2015 - **ID**: uk-cdm-regulations-2015 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The UK CDM Regulations 2015 require clients on all construction projects to appoint a Principal Designer and Principal Contractor to manage health, safety, and welfare. For projects lasting over 30 wo... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-cdm-regulations-2015.json #### UK Children Act 2004 Section 11 - Arrangements to Safeguard and Promote Welfare (Statutory Safeguarding Duty on Specified Authorities, Section 11 Audit, Working Together Compliance) - **ID**: uk-children-act-2004-section-11-safeguarding-promote-welfare - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 11 of the Children Act 2004 (c. 31) imposes the foundational statutory safeguarding duty on specified public authorities to make arrangements for ensuring that their functions are discharged h... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-children-act-2004-section-11-safeguarding-promote-welfare.json #### UK Corporate Manslaughter and Corporate Homicide Act 2007 Section 1 - Corporate Manslaughter (Death Caused by Activities, Gross Breach of Duty, Senior Management Substantial Element) - **ID**: uk-corporate-manslaughter-act-2007-section-1-corporate-manslaughter - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 1 of the Corporate Manslaughter and Corporate Homicide Act 2007 (c. 19) creates the corporate manslaughter offence (corporate homicide in Scotland) - the principal UK organisational criminal l... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-corporate-manslaughter-act-2007-section-1-corporate-manslaughter.json #### The Town and Country Planning (Environmental Impact Assessment) Regulations 2017 - **ID**: uk-eia-regulations-2017-town-country-planning - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: These regulations require developers of certain types of projects ('Schedule 1' or 'Schedule 2' developments) to carry out an Environmental Impact Assessment (EIA) before planning permission may be gr... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-eia-regulations-2017-town-country-planning.json #### UK Employment Rights Act 1996: Employment Particulars, Unfair Dismissal, Whistleblowing and Redundancy - **ID**: uk-employment-rights-act-1996 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Employment Rights Act 1996 is the principal UK statute consolidating individual employment rights, enforced largely through the employment tribunals. Section 1 requires the employer to give a work... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-employment-rights-act-1996.json #### Employment Rights Act 1996, Part X - **ID**: uk-employment-rights-act-1996-part-10-unfair-dismissal - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This act outlines employee rights concerning unfair dismissal; however, the specific regulatory text for Part X was not provided for extraction, preventing the identification of explicit compliance ob... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-employment-rights-act-1996-part-10-unfair-dismissal.json #### UK Employment Rights Act 1996 Section 100 - Health and Safety Cases Automatically Unfair Dismissal (Five Protected Categories, Serious Imminent Danger, Negligence Carve-out) - **ID**: uk-employment-rights-act-1996-section-100-health-safety-automatically-unfair-dismissal - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 100 of the Employment Rights Act 1996 (c. 18) provides automatic unfair dismissal protection where the reason or principal reason for dismissal relates to a protected health and safety activit... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-employment-rights-act-1996-section-100-health-safety-automatically-unfair-dismissal.json #### UK Employment Rights Act 1996 Section 103A - Protected Disclosure Dismissal Automatically Unfair (Day-One Protection, Interim Relief Available, No Compensatory Cap) - **ID**: uk-employment-rights-act-1996-section-103a-protected-disclosure-automatically-unfair - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 103A of the Employment Rights Act 1996 (c. 18), inserted by Public Interest Disclosure Act 1998 section 5, establishes automatic unfair dismissal protection for workers who make protected disc... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-employment-rights-act-1996-section-103a-protected-disclosure-automatically-unfair.json #### UK Employment Rights Act 1996 Section 13 — Right Not to Suffer Unauthorised Deductions from Wages - **ID**: uk-employment-rights-act-1996-section-13-unauthorised-deductions-wages - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: An employer must not make any deduction from a worker's wages unless the deduction is required or authorised by statute, by a relevant written provision of the worker's contract notified before the de... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-employment-rights-act-1996-section-13-unauthorised-deductions-wages.json #### UK Employment Rights Act 1996 Section 43A - Protected Disclosure Definition (Whistleblower Protection Foundational Provision, Qualifying Disclosure, Sections 43C-43H Procedural Pathways) - **ID**: uk-employment-rights-act-1996-section-43a-protected-disclosure - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 43A of the Employment Rights Act 1996 (c. 18), inserted by Public Interest Disclosure Act 1998 section 1, provides the foundational definition for UK whistleblower protection. Under section 43... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-employment-rights-act-1996-section-43a-protected-disclosure.json #### UK Employment Rights Act 1996 Section 86 - Rights of Employer and Employee to Minimum Notice (Statutory Notice Floor, Service-Based Escalation, Conduct Termination Reserved) - **ID**: uk-employment-rights-act-1996-section-86-minimum-notice-periods - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 86 of the Employment Rights Act 1996 (c. 18) establishes the foundational UK statutory minimum notice periods for termination of employment - the floor below which contractual provisions canno... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-employment-rights-act-1996-section-86-minimum-notice-periods.json #### UK Employment Rights Act 1996 Section 94 - Right Not to Be Unfairly Dismissed (Foundational Employee Right, Subject to Qualifying Conditions and TULRA Exceptions) - **ID**: uk-employment-rights-act-1996-section-94-right-not-to-be-unfairly-dismissed - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 94 of the Employment Rights Act 1996 (c. 18) establishes the foundational UK statutory right not to be unfairly dismissed - the gateway right that underpins the entire Part X unfair dismissal ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-employment-rights-act-1996-section-94-right-not-to-be-unfairly-dismissed.json #### UK Employment Rights Act 1996 Section 95 — Circumstances in Which an Employee Is Dismissed - **ID**: uk-employment-rights-act-1996-section-95-circumstances-dismissal-defined - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: For unfair dismissal purposes under Part X, an employee is 'dismissed' only where the employer terminates the contract (with or without notice), where a limited-term contract terminates without renewa... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-employment-rights-act-1996-section-95-circumstances-dismissal-defined.json #### UK Employment Rights Act 1996 Section 98 - General Fairness Test for Dismissal (Five Potentially Fair Reasons, Band of Reasonable Responses, Equity and Substantial Merits) - **ID**: uk-employment-rights-act-1996-section-98-general-fairness-test-dismissal - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 98 of the Employment Rights Act 1996 (c. 18) establishes the foundational UK statutory unfair dismissal test - the two-stage analysis applied by Employment Tribunals to every ordinary unfair d... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-employment-rights-act-1996-section-98-general-fairness-test-dismissal.json #### UK Employment Rights Act 1996 Section 99 - Leave for Family Reasons Automatically Unfair Dismissal (Pregnancy, Maternity, Paternity, Adoption, Shared Parental, Carer's, Parental Leave Categories) - **ID**: uk-employment-rights-act-1996-section-99-leave-family-reasons-automatically-unfair - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 99 of the Employment Rights Act 1996 (c. 18) provides automatic unfair dismissal protection where the reason or principal reason for dismissal is of a prescribed kind relating to family leave ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-employment-rights-act-1996-section-99-leave-family-reasons-automatically-unfair.json #### UK Equality Act 2010 - Protected Characteristics, Direct and Indirect Discrimination, and Reasonable Adjustments Duty - **ID**: uk-equality-act-2010 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The UK Equality Act 2010 legally protects people from discrimination in the workplace and in wider society. It requires employers to prevent direct and indirect discrimination based on nine protected ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010.json #### UK Equality Act 2010 - Protected Characteristics, Employment Discrimination, and Reasonable Adjustments - **ID**: uk-equality-act-2010-protected-characteristics - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Equality Act 2010 (c.15) consolidates and replaces nine previous anti-discrimination statutes in Great Britain. Section 4 lists the nine protected characteristics: age, disability, gender reassign... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-protected-characteristics.json #### UK Equality Act 2010 Section 13 — Direct Discrimination - **ID**: uk-equality-act-2010-section-13-direct-discrimination - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Direct discrimination occurs where, because of a protected characteristic, a person (A) treats another (B) less favourably than A treats or would treat others. Age discrimination uniquely permits just... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-section-13-direct-discrimination.json #### UK Equality Act 2010 Section 149 - Public Sector Equality Duty (Due Regard to Eliminate Discrimination, Advance Equality, Foster Good Relations) - **ID**: uk-equality-act-2010-section-149-public-sector-equality-duty - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 149 of the Equality Act 2010 (c. 15) establishes the Public Sector Equality Duty (PSED) requiring public authorities and bodies exercising public functions to have due regard, in the exercise ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-section-149-public-sector-equality-duty.json #### UK Equality Act 2010 Section 18 - Pregnancy and Maternity Discrimination Work Cases (Unfavourable Treatment Test, Protected Period, Compulsory Maternity Leave Exercise of Rights) - **ID**: uk-equality-act-2010-section-18-pregnancy-maternity-discrimination-work-cases - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 18 of the Equality Act 2010 (c. 15) creates the specific pregnancy and maternity discrimination protection in work cases - the operative provision distinguishing pregnancy/maternity from gener... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-section-18-pregnancy-maternity-discrimination-work-cases.json #### UK Equality Act 2010 Section 19 — Indirect Discrimination - **ID**: uk-equality-act-2010-section-19-indirect-discrimination - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Indirect discrimination occurs where a person (A) applies a provision, criterion or practice (PCP) that puts persons sharing B's protected characteristic at a particular disadvantage compared with oth... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-section-19-indirect-discrimination.json #### UK Equality Act 2010 Section 20 — Duty to Make Adjustments - **ID**: uk-equality-act-2010-section-20-duty-make-reasonable-adjustments - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Where a duty to make reasonable adjustments is imposed on a person (A) by the Act, three requirements apply: (1) take reasonable steps to avoid the substantial disadvantage caused by a provision, crit... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-section-20-duty-make-reasonable-adjustments.json #### Equality Act 2010 Section 20: Duty to make adjustments - **ID**: uk-equality-act-2010-section-20-duty-to-make-reasonable-adjustments - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Organizations must take reasonable steps to avoid disadvantages faced by disabled persons caused by provisions, criteria, practices, physical features, or the lack of an auxiliary aid. - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-section-20-duty-to-make-reasonable-adjustments.json #### UK Equality Act 2010 Section 26 — Harassment - **ID**: uk-equality-act-2010-section-26-harassment - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Harassment under the Equality Act 2010 has three distinct limbs: (1) unwanted conduct related to a relevant protected characteristic with the purpose or effect of violating dignity or creating an inti... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-section-26-harassment.json #### UK Equality Act 2010 Section 27 - Victimisation (Detriment Because of Protected Act, Belief in Protected Act, Bad Faith Carve-out) - **ID**: uk-equality-act-2010-section-27-victimisation - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 27 of the Equality Act 2010 (c. 15) prohibits victimisation - subjecting another person (B) to a detriment because B does, or A believes B has done or may do, a protected act. Under section 27... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-section-27-victimisation.json #### Equality Act 2010, Section 39: Employees and applicants - **ID**: uk-equality-act-2010-section-39-employment-equality-duty - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Employers must not discriminate against or victimise job applicants or employees in relation to arrangements for hiring, terms of employment, access to benefits and training, dismissal, or any other d... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-section-39-employment-equality-duty.json #### UK Equality Act 2010 Section 4 - The Protected Characteristics (Nine Statutory Categories: Age, Disability, Gender Reassignment, Marriage and Civil Partnership, Pregnancy and Maternity, Race, Religion or Belief, Sex, Sexual Orientation) - **ID**: uk-equality-act-2010-section-4-protected-characteristics - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 4 of the Equality Act 2010 (c. 15) provides the foundational list of nine protected characteristics that engage the entire Equality Act 2010 anti-discrimination framework. The section reads si... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-equality-act-2010-section-4-protected-characteristics.json #### Fire Safety Act 2021: Obligations for Responsible Persons in Multi-Occupied Residential Buildings - **ID**: uk-fire-safety-act-2021-responsible-person - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The UK Fire Safety Act 2021 clarifies that the duties of the 'Responsible Person' under the Regulatory Reform (Fire Safety) Order 2005 extend to the building's structure, external walls (including cla... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-fire-safety-act-2021-responsible-person.json #### UK Health and Safety at Work Act 1974 Section 2 - General Duties of Employers to Their Employees (Reasonably Practicable Standard, Plant Systems Substances, Information Instruction Training Supervision, Place of Work, Working Environment) - **ID**: uk-health-and-safety-at-work-act-1974-section-2-employer-general-duties - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 2 of the Health and Safety at Work etc. Act 1974 (c. 37) imposes the cornerstone UK health and safety duty - the duty of every employer to ensure, so far as is reasonably practicable, the heal... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-health-and-safety-at-work-act-1974-section-2-employer-general-duties.json #### UK Health and Safety at Work Act 1974 Section 3 - General Duties of Employers and Self-Employed to Persons Other Than Their Employees (Members of Public, Contractors, Visitors, Reasonably Practicable Standard) - **ID**: uk-health-and-safety-at-work-act-1974-section-3-duties-to-non-employees - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 3 of the Health and Safety at Work etc. Act 1974 (c. 37) extends the reasonably practicable health and safety duty to persons other than the employer's own employees - members of the public, c... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-health-and-safety-at-work-act-1974-section-3-duties-to-non-employees.json #### UK Health and Safety at Work Act 1974 Section 37 - Offences by Bodies Corporate (Director Manager Secretary Personal Liability for Consent Connivance or Neglect) - **ID**: uk-health-and-safety-at-work-act-1974-section-37-director-liability - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 37 of the Health and Safety at Work etc. Act 1974 (c. 37) extends corporate health and safety liability to directors, managers, secretaries, and other similar officers in their personal capaci... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-health-and-safety-at-work-act-1974-section-37-director-liability.json #### Health and Safety at Work etc. Act 1974 - **ID**: uk-health-safety-at-work-act-1974 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This Act imposes a general duty on all UK employers to ensure, so far as is reasonably practicable, the health, safety, and welfare at work of all their employees. Key requirements under Section 2 inc... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-health-safety-at-work-act-1974.json #### UK ICO Employment Practices - AI Decision-Making and Data Protection in the Workplace - **ID**: uk-ico-employment-practices-ai-decision-making-guidance - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The UK Information Commissioner's Office (ICO) Employment Practices Guidance and the Data Protection Act 2018 regulate AI and automated decision-making in UK employment contexts. Employers using AI fo... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ico-employment-practices-ai-decision-making-guidance.json #### Leasehold and Freehold Reform Act 2024 - **ID**: uk-leasehold-freehold-reform-act-2024 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This Act reforms residential property law in England and Wales, making it cheaper and easier for leaseholders to purchase their freehold, extend their lease, and take over management of their building... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-leasehold-freehold-reform-act-2024.json #### UK Misuse of Drugs Act 1971 Section 4 - Restriction of Production and Supply of Controlled Drugs (Production Offence, Supply or Offer to Supply Offence, Being Concerned In) - **ID**: uk-misuse-of-drugs-act-1971-section-4-production-supply-controlled-drugs - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 4 of the Misuse of Drugs Act 1971 (c. 38) is the primary UK criminal offence regime for the production and supply of controlled drugs and operates as the foundational provision for drug-traffi... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-misuse-of-drugs-act-1971-section-4-production-supply-controlled-drugs.json #### UK Misuse of Drugs Act 1971 Section 5 - Restriction of Possession of Controlled Drugs (Possession Offence, Intent to Supply Aggravated Offence, Limited Defences) - **ID**: uk-misuse-of-drugs-act-1971-section-5-possession-controlled-drugs - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 5 of the Misuse of Drugs Act 1971 (c. 38) creates the offence of possession of controlled drugs. Under section 5(1), subject to any regulations under section 7, it shall not be lawful for a pe... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-misuse-of-drugs-act-1971-section-5-possession-controlled-drugs.json #### UK Modern Slavery Act 2015 Section 1 - Slavery Servitude and Forced or Compulsory Labour (Holding in Slavery, Requiring Forced Labour, Article 4 ECHR Test, Consent Immaterial) - **ID**: uk-modern-slavery-act-2015-section-1-slavery-servitude-forced-labour - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 1 of the Modern Slavery Act 2015 (c. 30) creates the offence of slavery, servitude and forced or compulsory labour and operates as the foundational UK modern slavery offence alongside section ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-modern-slavery-act-2015-section-1-slavery-servitude-forced-labour.json #### UK Modern Slavery Act 2015 Section 4 - Committing Offence With Intent to Commit Section 2 Trafficking Offence (Any Offence Committed With Intent, Including Aiding Abetting Counselling Procuring) - **ID**: uk-modern-slavery-act-2015-section-4-committing-offence-with-intent - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 4 of the Modern Slavery Act 2015 (c. 30) creates the offence of committing an offence with the intent to commit a section 2 human trafficking offence. Under section 4, a person commits an offe... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-modern-slavery-act-2015-section-4-committing-offence-with-intent.json #### Party Wall etc. Act 1996 - **ID**: uk-party-wall-act-1996 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This UK Act requires a building owner to serve formal notice on adjoining owners before commencing work on a party wall, boundary, or excavations near an adjacent property. If the adjoining owner does... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-party-wall-act-1996.json #### UK Pensions Act 2008 Section 3 - Automatic Enrolment of Eligible Jobholder (Age 22 to Pensionable Age, Earnings Threshold, Active Membership in Qualifying Scheme) - **ID**: uk-pensions-act-2008-section-3-automatic-enrolment-jobholder-duty - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 3 of the Pensions Act 2008 (c. 30) establishes the foundational UK workplace pensions automatic enrolment duty - the operative employer obligation that has driven enrolment of over 10 million ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-pensions-act-2008-section-3-automatic-enrolment-jobholder-duty.json #### Planning Act 2008: Development Consent Orders (DCOs) for Nationally Significant Infrastructure Projects - **ID**: uk-planning-act-2008-development-consent-orders - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The UK Planning Act 2008 requires promoters of Nationally Significant Infrastructure Projects (NSIPs) to obtain a Development Consent Order (DCO) before construction can begin. This single consent rep... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-planning-act-2008-development-consent-orders.json #### UK Equality Act 2010 - **ID**: uk-ukpga-2010-15 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The UK Equality Act 2010 is an Act of the Parliament of the United Kingdom that aims to consolidate and harmonize equality law in the UK. It provides a framework for protecting individuals from discri... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukpga-2010-15.json #### UK Equality Act 2010 - Part 2: Equality: key concepts - **ID**: uk-ukpga-2010-15-part-2-equality-key-concepts - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Defines the core protected characteristics (age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex, sexual orientation) under the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukpga-2010-15-part-2-equality-key-concepts.json #### UK Equality Act 2010 Part 5: Workplace Discrimination and Equality Provisions - **ID**: uk-ukpga-2010-15-part-5 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Part 5 of the UK Equality Act 2010 codifies protections against discrimination in the workplace, covering employment, contract work, partnerships, and other work relationships. It prohibits direct and... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukpga-2010-15-part-5.json #### UK Research and Innovation (UKRI) Open Access Policy - **ID**: uk-ukri-open-access-policy-2022 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This policy requires that all UKRI-funded, in-scope, peer-reviewed research articles and long-form publications be made immediately and freely available to the public upon publication. As detailed in ... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-ukri-open-access-policy-2022.json #### UK Worker Protection (Amendment of Equality Act 2010) Act 2023 - Preventative Sexual Harassment Duty, Effective 26 October 2024 - **ID**: uk-worker-protection-act-2023-effective-2024 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Employers in England, Scotland and Wales must, from 26 October 2024, take reasonable steps to prevent sexual harassment of their employees in the course of their employment under the Worker Protection... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-worker-protection-act-2023-effective-2024.json #### UK Worker Protection (Amendment of Equality Act 2010) Act 2023 - Employer Duty to Prevent Sexual Harassment - **ID**: uk-worker-protection-act-2023-sexual-harassment-employer-duty - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Worker Protection (Amendment of Equality Act 2010) Act 2023 (UK) introduces a positive employer duty to take reasonable steps to prevent sexual harassment of employees in the course of their emplo... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-worker-protection-act-2023-sexual-harassment-employer-duty.json #### UK Working Time Regulations 1998 Regulation 4 - Maximum Weekly Working Time (48 Hours Average Over 17 Week Reference Period, Written Opt-Out Agreement, Employer Compliance Duty) - **ID**: uk-working-time-regulations-1998-regulation-4-maximum-weekly-working-time - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Regulation 4 of the Working Time Regulations 1998 (SI 1998/1833) establishes the foundational UK working time limit - the 48-hour average maximum weekly working time. Under regulation 4(1), unless his... - **Discovery URL**: https://bidda.com/api/v1/nodes/uk-working-time-regulations-1998-regulation-4-maximum-weekly-working-time.json #### UN CEDAW 1979 - Convention on the Elimination of All Forms of Discrimination Against Women - **ID**: un-cedaw-1979-discrimination-against-women - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: The Convention on the Elimination of All Forms of Discrimination Against Women (CEDAW), adopted by the UN General Assembly on 18 December 1979 (Resolution 34/180) and entering into force on 3 Septembe... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-cedaw-1979-discrimination-against-women.json #### Convention on the Rights of Persons with Disabilities - Preamble - **ID**: un-crpd-convention-rights-persons-disabilities-2006 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This convention establishes the foundational principles for ensuring persons with disabilities enjoy all human rights and fundamental freedoms on an equal basis with others, without discrimination. - **Discovery URL**: https://bidda.com/api/v1/nodes/un-crpd-convention-rights-persons-disabilities-2006.json #### Guiding Principles on Business and Human Rights: Implementing the United Nations 'Protect, Respect and Remedy' Framework - **ID**: un-guiding-principles-business-human-rights - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This framework establishes a global standard for preventing and addressing human rights risks from business activity, based on three pillars: the State Duty to Protect, the Corporate Responsibility to... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-guiding-principles-business-human-rights.json #### UN ICESCR 1966 - International Covenant on Economic, Social and Cultural Rights - **ID**: un-icescr-1966-economic-social-cultural-rights - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: The International Covenant on Economic, Social and Cultural Rights (ICESCR), adopted by the UN General Assembly on 16 December 1966 (Resolution 2200A (XXI)) and entering into force on 3 January 1976, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-icescr-1966-economic-social-cultural-rights.json #### International Covenant on Economic, Social and Cultural Rights - **ID**: un-icescr-economic-social-cultural-rights-1966 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: States Parties must guarantee the economic, social, and cultural rights outlined in the Covenant are exercised without discrimination and ensure the equal right of men and women to their enjoyment. - **Discovery URL**: https://bidda.com/api/v1/nodes/un-icescr-economic-social-cultural-rights-1966.json #### UN SDG 4 Quality Education - Target 4.1-4.7 Implementation Framework, Monitoring Indicators and National Reporting Standards - **ID**: un-sdg-4-quality-education-implementation - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This framework requires signatory nations and reporting entities to implement policies and monitor progress towards inclusive and equitable quality education, focusing on specific targets 4.1 through ... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-sdg-4-quality-education-implementation.json #### UN UNCRC 1989 - Convention on the Rights of the Child - **ID**: un-uncrc-1989-convention-rights-child - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: The Convention on the Rights of the Child (UNCRC), adopted by the UN General Assembly on 20 November 1989 (Resolution 44/25) and entering into force on 2 September 1990, is the most widely ratified hu... - **Discovery URL**: https://bidda.com/api/v1/nodes/un-uncrc-1989-convention-rights-child.json #### UNESCO (AI Ethics - Work) - **ID**: unesco-ai-ethics-work - **Category**: Workplace - **Version**: 1.1.0 - **BLUF**: Adherence to UNESCO's ethical recommendations for artificial intelligence in the workplace requires a proactive, human-rights-based governance framework. Organizations must systematically evaluate and... - **Discovery URL**: https://bidda.com/api/v1/nodes/unesco-ai-ethics-work.json #### US 28 CFR Part 35: Nondiscrimination on the Basis of Disability in State and Local Government Services (ADA Title II) - **ID**: us-28-cfr-part-35-ada-title-ii-state-local-government - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: US 28 CFR Part 35 implements Title II of the Americans with Disabilities Act (ADA) prohibiting discrimination on the basis of disability by public entities (state and local government and their instru... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-28-cfr-part-35-ada-title-ii-state-local-government.json #### US 28 CFR Part 36: Nondiscrimination on the Basis of Disability by Public Accommodations and in Commercial Facilities (ADA Title III) - **ID**: us-28-cfr-part-36-ada-title-iii-public-accommodations - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: US 28 CFR Part 36 implements Title III of the Americans with Disabilities Act (ADA) prohibiting discrimination on the basis of disability by public accommodations (12 categories listed in 36.104) and ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-28-cfr-part-36-ada-title-iii-public-accommodations.json #### US 29 CFR Part 1630: Regulations to Implement the Equal Employment Provisions of the Americans with Disabilities Act - **ID**: us-29-cfr-part-1630-ada-title-i-employment - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: US 29 CFR Part 1630 implements Title I of the Americans with Disabilities Act (ADA) as amended by the ADAAA of 2008. It prohibits employment discrimination against qualified individuals with disabilit... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-29-cfr-part-1630-ada-title-i-employment.json #### US 29 CFR Part 2520: Rules and Regulations for Reporting and Disclosure (ERISA) - **ID**: us-29-cfr-part-2520-erisa-reporting-disclosure - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: US 29 CFR Part 2520 implements the reporting and disclosure provisions of Title I of the Employee Retirement Income Security Act (ERISA) of 1974 covering most private-sector employee benefit plans (pe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-29-cfr-part-2520-erisa-reporting-disclosure.json #### US 29 CFR Part 825: The Family and Medical Leave Act of 1993 - **ID**: us-29-cfr-part-825-fmla-regulations - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: US 29 CFR Part 825 implements the Family and Medical Leave Act of 1993 (FMLA) entitling eligible employees of covered employers to take up to 12 weeks of unpaid job-protected leave in a 12-month perio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-29-cfr-part-825-fmla-regulations.json #### US National Labor Relations Act - 29 USC 158 Unfair Labor Practices - **ID**: us-29-usc-158-nlra-unfair-labor-practices - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: 29 USC 158 titled 'Unfair labor practices' is the core National Labor Relations Act provision identifying conduct by employers and labor organizations that violates federal labor law. Subsection (a) l... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-29-usc-158-nlra-unfair-labor-practices.json #### US Fair Labor Standards Act - 29 USC 202 Congressional Finding and Declaration of Policy - **ID**: us-29-usc-202-flsa-congressional-finding-declaration-of-policy - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: 29 USC 202 titled 'Congressional finding and declaration of policy' is the foundational Fair Labor Standards Act provision setting out Congress's findings and policy rationale for federal minimum wage... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-29-usc-202-flsa-congressional-finding-declaration-of-policy.json #### US Fair Labor Standards Act - 29 USC 207 Maximum Hours and Overtime Compensation - **ID**: us-29-usc-207-flsa-maximum-hours-overtime - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: 29 USC 207 titled 'Maximum hours' is the Fair Labor Standards Act provision establishing the 40-hour workweek and the time-and-a-half overtime obligation for non-exempt employees. Subsection (a)(1) pr... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-29-usc-207-flsa-maximum-hours-overtime.json #### US Occupational Safety and Health Act - 29 USC 654 Duties of Employers and Employees (General Duty Clause) - **ID**: us-29-usc-654-osha-general-duty-clause-employer-and-employee-duties - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: 29 USC 654 titled 'Duties of employers and employees' is the foundational Occupational Safety and Health Act provision that imposes both the General Duty Clause on employers and a standards-compliance... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-29-usc-654-osha-general-duty-clause-employer-and-employee-duties.json #### US 41 CFR Part 60-1: Obligations of Contractors and Subcontractors (OFCCP) - **ID**: us-41-cfr-part-60-1-ofccp-equal-employment-federal-contractors - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: US 41 CFR Part 60-1 implements Executive Order 11246 (as amended) prohibiting federal contractors and subcontractors with contracts of $10,000 or more from employment discrimination on the basis of ra... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-41-cfr-part-60-1-ofccp-equal-employment-federal-contractors.json #### US Americans with Disabilities Act - 42 USC 12112 Discrimination in Employment (ADA Title I) - **ID**: us-42-usc-12112-ada-employment-discrimination-prohibited - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: 42 USC 12112 titled 'Discrimination' is the core Title I of the Americans with Disabilities Act provision prohibiting employment discrimination against qualified individuals with disabilities. Subsect... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42-usc-12112-ada-employment-discrimination-prohibited.json #### US Civil Rights Act - 42 USC 2000e-2 Title VII Unlawful Employment Practices - **ID**: us-42-usc-2000e-2-title-vii-unlawful-employment-practices - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: 42 USC 2000e-2 titled 'Unlawful employment practices' is the core Title VII of the Civil Rights Act of 1964 provision prohibiting employment discrimination on the basis of race, color, religion, sex, ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-42-usc-2000e-2-title-vii-unlawful-employment-practices.json #### 42 U.S. Code § 12182 - Prohibition of discrimination by public accommodations - **ID**: us-ada-42-usc-12182-title-iii-public-accommodations-disability - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Organizations operating public accommodations must not discriminate on the basis of disability and must provide equal enjoyment of goods, services, and facilities, including making reasonable modifica... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ada-42-usc-12182-title-iii-public-accommodations-disability.json #### Section 504 of the Rehabilitation Act of 1973 - Disability Accommodations, Accessible Course Materials and Non-Discrimination in Educational Programmes - **ID**: us-ada-section-504-disability-education - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 504 of the Rehabilitation Act of 1973 prohibits discrimination against individuals with disabilities in any program or activity receiving Federal financial assistance. This requires educationa... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ada-section-504-disability-education.json #### Americans with Disabilities Act (ADA) Title III: Public Accommodations and Commercial Facilities - **ID**: us-ada-title-iii-public-accommodations-buildings - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Title III of the Americans with Disabilities Act (ADA) prohibits discrimination on the basis of disability in places of public accommodation and commercial facilities, requiring new construction and a... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ada-title-iii-public-accommodations-buildings.json #### United States Age Discrimination in Employment Act of 1967 (ADEA), as Amended by the Older Workers Benefit Protection Act of 1990 (Title 29 USC Chapter 14): Findings and Purpose, Prohibition of Age Discrimination, Recordkeeping Investigation and Enforcement, Notices Posted, Age Limits, Federal-State Relationship, and Federal Government Employment Nondiscrimination - **ID**: us-adea-1967-29-usc-ch14 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Age Discrimination in Employment Act of 1967 (ADEA), Public Law 90-202 of 15 December 1967, codified at Title 29 of the United States Code, Chapter 14, as amended by the Older Workers Benefit Prot... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-adea-1967-29-usc-ch14.json #### US Age Discrimination in Employment Act (29 USC ch 14): Protection of Workers Aged 40 and Over - **ID**: us-age-discrimination-in-employment-act - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Age Discrimination in Employment Act of 1967 (ADEA, 29 U.S.C. ch. 14) prohibits employment discrimination against individuals who are at least 40 years of age, enforced by the Equal Employment Opp... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-age-discrimination-in-employment-act.json #### US Americans with Disabilities Act (42 USC ch 126): Disability Discrimination and Accommodation - **ID**: us-americans-with-disabilities-act - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Americans with Disabilities Act (42 U.S.C. ch. 126) prohibits discrimination on the basis of disability in employment, public services and public accommodations, with the employment provisions enf... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-americans-with-disabilities-act.json #### Bayh-Dole Act: University and Small Business Patent Procedures (35 U.S.C. §§ 200-212) - **ID**: us-bayh-dole-act-university-ip-technology-transfer - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Bayh-Dole Act permits universities, small businesses, and non-profit institutions to elect to pursue ownership of an invention developed with federal funding (35 U.S.C. § 202). This requires timel... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-bayh-dole-act-university-ip-technology-transfer.json #### California Executive Order N-6-26 of 21 May 2026 - AI Workforce Disruption Preparation and WARN Act Review - **ID**: us-ca-eo-n-6-26-ai-workforce-disruption-2026 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Governor Gavin Newsom signed Executive Order N-6-26 on 21 May 2026, effective immediately, mandating California state agencies to evaluate worker ownership expansion opportunities, create an AI workfo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-ca-eo-n-6-26-ai-workforce-disruption-2026.json #### US Civil Rights Act Title VII (42 USC ch 21): Prohibition of Employment Discrimination - **ID**: us-civil-rights-act-title-vii - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Title VII of the Civil Rights Act of 1964 (42 U.S.C. ch. 21, subchapter VI) prohibits employment discrimination, enforced by the Equal Employment Opportunity Commission. Section 2000e provides the def... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-civil-rights-act-title-vii.json #### Civil Service Reform Act 1978 - 5 USC 1101 Merit System Architecture - **ID**: us-civil-service-reform-act-5-usc-1101 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 1101 of title 5 of the United States Code, enacted as part of the Civil Service Reform Act of 1978 (Public Law 95-454, signed 13 October 1978) and effected through Reorganization Plan No. 2 of... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-civil-service-reform-act-5-usc-1101.json #### US Clean Air Act New Source Review (NSR) - Construction Permit Requirements for Major Stationary Sources and Best Available Control Technology - **ID**: us-clean-air-act-construction-permits-nsr - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The New Source Review (NSR) program under the Clean Air Act requires major stationary sources of air pollution to obtain a pre-construction permit that mandates the installation of state-of-the-art po... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-clean-air-act-construction-permits-nsr.json #### Protection of Human Subjects (Common Rule), 45 CFR Part 46 - **ID**: us-common-rule-45-cfr-46-human-subjects-research - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The US Common Rule mandates that institutions conducting federally-funded human subjects research must protect the rights and welfare of participants through Institutional Review Board (IRB) oversight... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-common-rule-45-cfr-46-human-subjects-research.json #### Comprehensive Environmental Response, Compensation, and Liability Act (CERCLA) - **ID**: us-comprehensive-environmental-response-cercla - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: CERCLA, also known as Superfund, imposes strict, joint and several liability on potentially responsible parties (PRPs) for the cleanup costs of sites contaminated with hazardous substances. As outline... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-comprehensive-environmental-response-cercla.json #### US Construction Lien Laws - Mechanic's Lien Rights, Preliminary Notice Requirements and Foreclosure Procedures by State - **ID**: us-construction-lien-mechanic-lien-overview - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: U.S. state-level statutes grant contractors, subcontractors, and suppliers (claimants) who provide labor or materials to a private construction project the right to file a mechanic's lien against the ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-construction-lien-mechanic-lien-overview.json #### US Davis-Bacon Act (40 USC 3141) - Prevailing Wage Requirements for Federal and Federally-Assisted Construction Contracts - **ID**: us-davis-bacon-act-prevailing-wages-construction - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Davis-Bacon Act requires contractors and subcontractors on federally funded or assisted contracts over $2,000 for the construction, alteration, or repair of public buildings or public works to pay... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-davis-bacon-act-prevailing-wages-construction.json #### 29 CFR Part 541 - Defining and Delimiting the Exemptions for Executive, Administrative, Professional, Computer and Outside Sales Employees - **ID**: us-dol-29-cfr-541-exemptions-minimum-wage-overtime-white-collar - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Organizations must classify employees as exempt or non-exempt from federal minimum wage and overtime pay requirements based on specific salary and duties tests for executive, administrative, professio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dol-29-cfr-541-exemptions-minimum-wage-overtime-white-collar.json #### 49 CFR Part 40 - Procedures for Transportation Workplace Drug and Alcohol Testing Programs (DOT) - **ID**: us-dot-49-cfr-40-workplace-drug-alcohol-testing-procedures - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: DOT 49 CFR Part 40 prescribes the uniform procedures for drug and alcohol testing across all DOT-regulated transportation industries, covering employer responsibilities and the separation of DOT from ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-dot-49-cfr-40-workplace-drug-alcohol-testing-procedures.json #### 29 CFR Part 1602 - Recordkeeping and Reporting Requirements under Title VII, the ADA, GINA, and the PWFA (EEOC) - **ID**: us-eeoc-29-cfr-1602-recordkeeping-reporting-requirements - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: EEOC 29 CFR Part 1602 sets the recordkeeping and reporting requirements under Title VII, the ADA, GINA, and the Pregnant Workers Fairness Act, requiring covered employers to file the required employer... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eeoc-29-cfr-1602-recordkeeping-reporting-requirements.json #### 29 CFR Part 1620 - The Equal Pay Act (EEOC) - **ID**: us-eeoc-29-cfr-1620-equal-pay-act - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: EEOC 29 CFR Part 1620 interprets the Equal Pay Act, requiring an employer to determine coverage and the relevant establishment and employment relationship, treat all forms of wages including fringe be... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eeoc-29-cfr-1620-equal-pay-act.json #### 29 CFR Part 1630 - Regulations to Implement the Equal Employment Provisions of the Americans with Disabilities Act (EEOC) - **ID**: us-eeoc-29-cfr-1630-ada-employment-provisions - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: EEOC 29 CFR Part 1630 implements the employment provisions of the Americans with Disabilities Act, requiring covered employers to determine disability and qualified-individual status, refrain from dis... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eeoc-29-cfr-1630-ada-employment-provisions.json #### US EEOC Technical Assistance - The Americans with Disabilities Act and the Use of Software, Algorithms, and AI to Assess Job Applicants and Employees (May 12, 2022) - **ID**: us-eeoc-ada-ai-job-applicants-guidance-2022 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: On May 12, 2022 the US Equal Employment Opportunity Commission issued technical assistance under its AI and Algorithmic Fairness Initiative addressing how the Americans with Disabilities Act (ADA) app... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eeoc-ada-ai-job-applicants-guidance-2022.json #### US Employee Polygraph Protection Act (29 USC ch 22): Restrictions on Lie Detector Testing - **ID**: us-employee-polygraph-protection-act - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Employee Polygraph Protection Act (29 U.S.C. ch. 22) restricts the use of lie detector tests by private employers, administered by the Department of Labor. Section 2001 provides the definitions, i... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-employee-polygraph-protection-act.json #### US OPM 60-Day United States Tech Force Information Cybersecurity Specialist Hiring and Placement Pathways Expansion (Sec. 2(f), EO Promoting Advanced AI Innovation and Security, 2026) - **ID**: us-eo-2026-sec-2f-opm-united-states-tech-force-information-cybersecurity-specialist-hiring - **Category**: Workplace - **Version**: 1.0.1 - **BLUF**: Sec. 2(f) of the Executive Order Promoting Advanced Artificial Intelligence Innovation and Security signed June 2, 2026 directs the Director of the Office of Personnel Management within 60 days of the... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-eo-2026-sec-2f-opm-united-states-tech-force-information-cybersecurity-specialist-hiring.json #### Equal Pay Act of 1963 (29 U.S.C. § 206(d)) - Prohibition on Sex-Based Wage Discrimination, Equal Work Standard and Permitted Pay Differentials - **ID**: us-equal-pay-act-1963-29-usc-206 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Equal Pay Act of 1963 prohibits employers from paying employees of one sex less than those of the opposite sex for equal work requiring substantially equal skill, effort, and responsibility under ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-equal-pay-act-1963-29-usc-206.json #### US Fair Labor Standards Act (29 USC ch 8): Minimum Wage, Overtime, Child Labor and Penalties - **ID**: us-fair-labor-standards-act - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Fair Labor Standards Act of 1938 (FLSA, 29 U.S.C. ch. 8) sets the federal floor for wages and hours and restricts child labor, administered by the Wage and Hour Division of the Department of Labor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fair-labor-standards-act.json #### Fair Labor Standards Act (FLSA) - Minimum Wage, Overtime Pay, Recordkeeping and Child Labor Standards - **ID**: us-fair-labor-standards-act-flsa - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Fair Labor Standards Act (FLSA) establishes federal minimum wage, overtime pay at 1.5x regular rate for hours over 40 in a workweek, recordkeeping, and youth employment standards affecting employe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fair-labor-standards-act-flsa.json #### US Family and Medical Leave Act (29 USC ch 28): 12 Weeks of Job-Protected Leave and Restoration Rights - **ID**: us-family-and-medical-leave-act - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Family and Medical Leave Act of 1993 (FMLA, 29 U.S.C. ch. 28) entitles eligible employees of covered employers to unpaid, job-protected leave for specified family and medical reasons, administered... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-family-and-medical-leave-act.json #### The Family and Medical Leave Act of 1993 - **ID**: us-fmla-1993 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Family and Medical Leave Act (FMLA) requires covered employers to provide eligible employees with up to 12 weeks of unpaid, job-protected leave per year for specified family and medical reasons, w... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmla-1993.json #### United States Family and Medical Leave Act of 1993 (Title 29 USC Chapter 28): Findings and Purposes, Definitions Including Eligible Employee, 12 Workweeks of Leave Requirement, Employment and Benefits Protection, Prohibited Acts Including Interference and Retaliation, and Enforcement - **ID**: us-fmla-1993-29-usc-ch28 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Family and Medical Leave Act of 1993 (FMLA), Public Law 103-3 of 5 February 1993, codified at Title 29 of the United States Code, Chapter 28, is the principal federal statute providing eligible em... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmla-1993-29-usc-ch28.json #### 29 U.S. Code § 2612 - Leave requirement - **ID**: us-fmla-29-usc-2612-leave-entitlement-requirements - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This regulation requires employers to provide eligible employees with up to 12 workweeks of leave for specified family and medical reasons, and up to 26 workweeks for military caregiver leave, within ... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmla-29-usc-2612-leave-entitlement-requirements.json #### 29 U.S. Code § 2614 - Employment and benefits protection - **ID**: us-fmla-29-usc-2614-restoration-employment-after-fmla-leave - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Organizations must restore eligible employees returning from FMLA leave to their original or an equivalent position and maintain their health benefits during the leave, with specific exceptions for hi... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmla-29-usc-2614-restoration-employment-after-fmla-leave.json #### US Family and Medical Leave Act - 29 CFR Part 825 Employee Leave Rights & Employer Obligations - **ID**: us-fmla-family-medical-leave-act-29-cfr-825-employer-obligations - **Category**: Workplace - **Version**: 2.0 - **BLUF**: The Family and Medical Leave Act (29 CFR Part 825) entitles eligible employees to 12 weeks of unpaid, job-protected leave per year for specified family and medical reasons - employers with 50+ employe... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fmla-family-medical-leave-act-29-cfr-825-employer-obligations.json #### US FPCO FERPA Annual Notification Requirements - Annual Rights Notice, Directory Information Policy and Student Consent Procedures - **ID**: us-fpco-ferpa-annual-notification-requirements - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Under the Family Educational Rights and Privacy Act (FERPA), educational agencies and institutions must annually notify parents and eligible students of their rights to inspect, review, and seek amend... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-fpco-ferpa-annual-notification-requirements.json #### United States Genetic Information Nondiscrimination Act of 2008 (GINA) (Title 42 USC Chapter 21F): Definitions Including Genetic Information and Genetic Services, Employer Practices Prohibition, Employment Agency and Labor Organization Practices, Confidentiality of Genetic Information, and Remedies and Enforcement - **ID**: us-gina-2008-42-usc-ch21f - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Genetic Information Nondiscrimination Act of 2008 (GINA), Public Law 110-233 of 21 May 2008, codified at Title 42 of the United States Code, Chapter 21F (employment provisions in Title II) and oth... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-gina-2008-42-usc-ch21f.json #### US Government Employees Training Act (5 USC 4101) - Federal Employee Training Authority and Programs - **ID**: us-government-employees-training-act-5-usc-4101 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Government Employees Training Act authorises heads of federal agencies to establish, operate, maintain, and evaluate training programs for federal employees, authorises training by, in, and throug... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-government-employees-training-act-5-usc-4101.json #### Hatch Act 1939 (Reformed 1993) - 5 USC 7321 Federal Employee Political Activity - **ID**: us-hatch-act-political-activity-5-usc-7321 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Section 7321 of title 5 of the United States Code, as substantially revised by the Hatch Act Reform Amendments of 1993 (Public Law 103-94, enacted 6 October 1993, effective 4 January 1994), declares t... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-hatch-act-political-activity-5-usc-7321.json #### Individuals with Disabilities Education Act (IDEA) - Part B: Assistance for Education of All Children with Disabilities - **ID**: us-idea-individuals-disabilities-education-act - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Individuals with Disabilities Education Act (IDEA) mandates that public schools provide a Free Appropriate Public Education (FAPE) to eligible children with disabilities, ensuring special educatio... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-idea-individuals-disabilities-education-act.json #### US Labor Management Relations Act / Taft-Hartley (29 USC ch 7): Union Practices and Boycotts - **ID**: us-labor-management-relations-act - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Labor Management Relations Act of 1947, the Taft-Hartley Act (29 U.S.C. ch. 7), amended the National Labor Relations Act and added provisions regulating union conduct and labor-management disputes... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-labor-management-relations-act.json #### US Labor-Management Reporting and Disclosure Act / Landrum-Griffin (29 USC ch 11): Union Democracy and Reporting - **ID**: us-labor-management-reporting-and-disclosure-act - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Labor-Management Reporting and Disclosure Act of 1959, the Landrum-Griffin Act (29 U.S.C. ch. 11), protects the rights of union members and imposes reporting and fiduciary duties on labor organiza... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-labor-management-reporting-and-disclosure-act.json #### US EPA Lead-Based Paint Renovation, Repair and Painting Rule (40 CFR Part 745, Subpart E) - **ID**: us-lead-paint-hazard-reduction-renovation-rule - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: This rule requires firms performing renovation, repair, and painting projects that disturb lead-based paint in target housing (pre-1978 homes) and child-occupied facilities to be certified by the EPA,... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-lead-paint-hazard-reduction-renovation-rule.json #### United States Lilly Ledbetter Fair Pay Act of 2009 (Public Law 111-2): Title VII Amendments Clarifying Discriminatory Compensation Decisions, ADEA Amendments, ADA and Rehabilitation Act Amendments, Effective Date, and Retroactive Application to Pending Cases - **ID**: us-lilly-ledbetter-fair-pay-act-2009 - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The Lilly Ledbetter Fair Pay Act of 2009, Public Law 111-2 of 29 January 2009, is the federal statute restoring the prior law of pay discrimination after the Supreme Court decision in Ledbetter v. Goo... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-lilly-ledbetter-fair-pay-act-2009.json #### US National Labor Relations Act (29 USC ch 7): Collective Bargaining, Unfair Labor Practices and the NLRB - **ID**: us-national-labor-relations-act - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: The National Labor Relations Act (NLRA, 29 U.S.C. ch. 7, subchapter II) guarantees the rights of private-sector employees to organize and bargain collectively and is administered by the National Labor... - **Discovery URL**: https://bidda.com/api/v1/nodes/us-national-labor-relations-act.json #### NLRA Section 7 and AI Workplace Monitoring - NLRB Guidance on Algorithmic Management and Collective Bargaining Rights - **ID**: us-nlra-section-7-ai-monitoring - **Category**: Workplace - **Version**: 1.0.0 - **BLUF**: Under Section 7 of the National Labor Relations Act (NLRA), employers are prohibited from using AI-driven monitoring, surveillance, or algorithmic management systems in a way that interferes with, res... - **Discovery U