79+ regulations across 15+ countries

Global
Compliance

LifePassport is built for compliance from the ground up. Our on-device, zero-knowledge architecture provides structural compliance with data protection, digital identity, and financial regulations worldwide.

Compliant — Controls fully implemented

Pending — Controls met, formal certification planned

Supported — Platform enables business compliance

Aligned — Architecture follows the standard

Region

Certification Roadmap

Our phased approach to formal third-party certifications, starting with the UK and expanding globally.

Phase 1Q2–Q4 2026

United Kingdom

Cyber Essentials Plus
UK DIATF
ISO/IEC 27001:2022
ISO/IEC 27701:2019
SOC 2 Type II
NHS DSPT
WCAG 2.2 AA

Phase 2Q1–Q2 2027

European Union

eIDAS 2.0 EUDI Wallet
EU GDPR Art. 27 representative
NIS2 compliance
EU AI Act documentation

Phase 3Q2–Q4 2027

North America

SOC 2 Type II (US scope)
CCPA/CPRA registration
PIPEDA certification
NIST SP 800-63 conformance

Phase 4Q1–Q3 2028

Asia-Pacific

Australia TDIF
NZ Trust Framework
Singapore PDPA
Japan APPI
APEC CBPR

Phase 5Q3 2028 – Q1 2029

Middle East & Africa

UAE PDPL
Saudi PDPL
South Africa POPIA
Nigeria NDPA
Kenya DPA

Phase 6Q1–Q2 2029

Latin America

Brazil LGPD (ANPD)
Mexico LFPDPPP
Argentina PDPA

How Compliance Is Enforced

LifePassport doesn't just claim compliance — it enforces it programmatically

Data Governance Service

60+ regulations with full source references
14 industry categories with computed claims
Country-scoped rules via ISO 3166 codes
Versioned regulation tracking with effective dates
Claims validation API — blocks excessive requests

Policy Engine

Per-request claim validation against regulations
Special category data blocking (GDPR Art. 9)
Purpose limitation enforcement
Alternative claim suggestions (e.g. ZKP instead of raw data)
Policy violation logging and alerting

Consumer Governance

Business registration vetting
Role-based access control (admin/manager/viewer)
Industry-specific claim whitelisting
API key rotation and revocation
Complete audit trail of all API activity

Why Our Architecture Makes Global Compliance Achievable

Traditional identity providers face a compliance nightmare expanding internationally — new data localisation infrastructure, new breach notification procedures, new consent mechanisms for every jurisdiction. LifePassport eliminates most of these requirements because no PII is stored on LifePassport's servers. Data stays on the user's device. When a business needs identity data, they receive encrypted tokens to store on their own systems — LifePassport never retains the personal data. Every verification produces a signed receipt for regulatory audit without containing any PII. Adding a new jurisdiction requires only encoding the regulation rules in the data governance service — the architecture doesn't change.

Built for Compliance, Ready for Growth

79+ regulations. 15+ countries. One architecture that handles them all.

For Businesses Contact Compliance Team

GlobalCompliance

UK GDPR

EU GDPR

Data Protection Act 2018

UK DIATF

GPG 45

eIDAS 2.0

W3C Verifiable Credentials

W3C DIDs

ISO/IEC 27001:2022

ISO/IEC 27701:2019

SOC 2 Type II

Cyber Essentials Plus

NIST CSF 2.0

FIPS 140-3

MLR 2017

PSD2

FCA Consumer Duty

Online Safety Act 2023

Licensing Act 2003

Gambling Act 2005

KCSiE 2024

SVGA 2006

HSCA 2008

NHS DSPT

Caldicott Principles

SRA Regulations 2019

IDD

WCAG 2.2 Level AA

Immigration Act 2014/2016

CCPA / CPRA (California)

Virginia CDPA

Colorado Privacy Act

Connecticut DPA

Texas Data Privacy & Security Act

NIST SP 800-63-4

US Executive Order 14028

HIPAA

SOX (Sarbanes-Oxley)

GLBA

COPPA

PIPEDA

Quebec Law 25

Canadian Digital Identity Framework

EU AI Act

EU Digital Services Act

EU Digital Markets Act

NIS2 Directive

EU DORA

AMLD6

Australia Privacy Act 1988 + APPs

Australia Digital Identity Act 2024

NZ Privacy Act 2020

NZ Trust Framework Act 2023

Singapore PDPA

Singpass National Digital Identity

Japan APPI

Japan My Number Act

South Korea PIPA

India DPDP Act 2023

India Aadhaar Act

UAE PDPL

UAE Pass Digital Identity

Saudi Arabia PDPL

Saudi Nafath Digital Identity

South Africa POPIA

Nigeria NDPA 2023

Kenya Data Protection Act 2019

Brazil LGPD

Mexico LFPDPPP

Argentina PDPA

ISO/IEC 18013-5

ISO/IEC 23220

ISO/IEC 29100:2024

ISO/IEC 27018:2019

OECD Privacy Guidelines

APEC CBPR

FATF Recommendations

ICAO 9303

UN SDG 16.9

Global
Compliance