Capability · continuous monitoring

Continuous compliance monitoring

Score trends, expiry alerts, threshold-driven re-scoring: compliance as a process, not an event.

Compliance monitoring dashboard showing score trend lines, expiry warnings, and per-system alert thresholds

Every regulator treats compliance as a continuous obligation, but most tooling treats it as a yearly audit. Attestry monitors each registered system on a configurable cadence (daily, weekly, monthly, quarterly, semi-annual, or annual), re-computing a four-factor compliance score (assessment completeness, attestation status, evidence coverage, documentation freshness) and recording the result to a per-system score history. When a score drops below the configured alert threshold, a compliance-score-drop email fires immediately. Attestation expiry runs in parallel: any active certificate within 7 days of expiry triggers an urgent alert, anything within 30 days a reminder, and anything past expiry is auto-marked expired with webhooks dispatched.

What's included

Built to be auditor-ready out of the box

Six monitoring cadences

Daily, weekly, monthly, quarterly, semi-annual, or annual. Set per system based on risk tier, regulatory deadline pressure, or model update frequency. Defaults to quarterly.

Four-factor compliance score with trend history

Each run computes 0–100 across assessment completeness, attestation status, evidence coverage, and documentation freshness. The last 100 score points are retained per monitor so trend regressions are visible at a glance.

Threshold-based alerting

Configure a numeric alert threshold per monitor; if the recomputed score drops below it, an audit log entry is written and a compliance-score-drop email is dispatched to the org's primary contact.

Attestation expiry windows + webhook events

Active attestations within 7 days of expiry trigger urgent alerts; within 30 days, reminders; past expiry, automatic status flip to expired plus an attestation.expiring webhook event for downstream systems.

Cryptographic primitives behind this capability

Each capability rests on signed, verifiable signature components.

Component

Signed attestations

Component

Evidence chain

Component

Trust registry

Start attesting in 60 seconds.

Free plan includes fingerprinting, unverified attestations, and a public registry listing. Upgrade when you need signed proofs or SLA-backed verification.

Create a free account See pricing

Capability · continuous monitoring

Continuous compliance monitoring

Score trends, expiry alerts, threshold-driven re-scoring: compliance as a process, not an event.

Start free See all features

What's included

Built to be auditor-ready out of the box

Six monitoring cadences

Daily, weekly, monthly, quarterly, semi-annual, or annual. Set per system based on risk tier, regulatory deadline pressure, or model update frequency. Defaults to quarterly.

Four-factor compliance score with trend history

Threshold-based alerting

Configure a numeric alert threshold per monitor; if the recomputed score drops below it, an audit log entry is written and a compliance-score-drop email is dispatched to the org's primary contact.

Attestation expiry windows + webhook events

Cryptographic primitives behind this capability

Each capability rests on signed, verifiable signature components.

Component

Signed attestations

Component

Evidence chain

Component

Trust registry

Start attesting in 60 seconds.

Free plan includes fingerprinting, unverified attestations, and a public registry listing. Upgrade when you need signed proofs or SLA-backed verification.

Create a free account See pricing