Kanonik is the MCP-native, model-agnostic verification layer between your AI and the GRC tool you already own. Every AI-proposed change runs through an independent Verifier, requires a signed human approval, and lands in a tamper-evident, hash-chained audit log.

Which AI models does Kanonik support?

Anthropic Claude, OpenAI, AWS Bedrock, Google Gemini, and Azure OpenAI. Bring-your-own-model (BYOM) is the default; Kanonik-paid Primary AI is an optional add-on for single-invoice procurement.

Which GRC tools does Kanonik integrate with?

Eramba is the Phase 0 connector. Vanta, Drata, Sprinto, and Hyperproof are next on the roadmap, prioritised by LOI demand. Self-hosted options are supported via MCP.

How is Kanonik audit-defensible?

Every step (propose, verify, approve, commit) is hashed and chained into a FIPS-signed event store with 7-year retention. Mapped to NIST AU-10 (non-repudiation), AU-11/AU-12, and EU AI Act Article 12 by architecture, not by policy.

The verification layer for AI-assisted compliance

Drop a Verifier
between your AI and your GRC tool.

Propose. Verify. Approve. Commit. Every step cryptographically hashed into the next.

Every proposal that reaches the Verifier, and every verdict, approval, and commit that follows, captured as a signed, hash-chained record. Conversation stays private; submission is recorded. Live in twenty minutes.

Apply for the cohort Read the architecture

Or write to us at [email protected].

NIST AU-10 (non-repudiation) by architecture EU AI Act Article 12 traceability by design Portable by design. Your chain is yours. Bring your own model key. The LLM provider stays your direct contractor.

agent / kanonik@mcp / session #a4f2

You Map our access-control policy to ISO 27001 Annex A.5 in Eramba.

AI ⚡ kanonik.list_controls framework=iso-27001-2022 -> 24 controls

⚡ kanonik.propose_mapping acp-001 -> A.5.1 conf 0.92

✓ Verifier passed 8 rules + LLM cross-check

-> Approval requested [email protected] / signed token

AI Mapped your Access Control Policy to ISO 27001 A.5.1 with 0.92 confidence. Approval link sent to your CISO. Once granted, the mapping lands in Eramba and the full reasoning chain is signed to your audit log.

A layer on top of the GRC tool you already own

Eramba live

Roadmap: Vanta, Drata, Hyperproof, ServiceNow GRC, RSA Archer, OneTrust, AuditBoard.

AI can do the mechanical parts of compliance.
Kanonik gives your auditor the chain of custody to defend it.

Eugene V. - Founder, Kanonik

Audit-defensibility, by architecture - every AI-assisted change passes all four

Your AI

proposes

Verifier

rules + LLM cross-check / NIST AU-12

Approval gate

signed / out-of-band / NIST AU-10

Your GRC tool

commit + hash chain / NIST AU-11

Deployment

A layer on top of your stack.
Not a replacement for it.

Kanonik runs as managed SaaS between the AI you already use and the GRC tool you already pay for. No platform migration, no agent to install in your infrastructure, no cluster to operate. Onboarding is a seven-step wizard. Most teams complete it in twenty minutes.

Your model

Bring your own model API key: Anthropic, OpenAI, Bedrock, Gemini, or Azure OpenAI. Your session runs in your environment in any MCP-capable client. Kanonik never sees your model account, conversations, or usage. Your AI provider stays your direct contractor; we never become a layer between you and them.

Your GRC tool

Eramba connector live today. Vanta, Drata, Hyperproof, and ServiceNow next. Authorize with a bot-user API token; we provide the setup script.

Our Verifier

Independent server-side validation between every AI proposal and the GRC commit: deterministic rules, LLM cross-check, signed approval gate, cryptographic chain. The audit-defensibility primitive no incumbent ships.

Your MCP-capable client connects via a small Go binary (kanonik-mcp-proxy) installed on your machine. One file, one config. Signed releases, reproducible builds. Self-hosted single-tenant deployment for sovereignty-sensitive customers ships in a later phase.

The problem AI created

AI can draft compliance evidence.
But auditors won't accept "the model said so."

Most GRC managers we talk to describe the same week: control mapping, evidence drafting, framework cross-walking - and most of that work, an AI can do in minutes. The capability is there. The defensibility isn't. Without provenance, AI-assisted compliance is a liability, not a productivity tool.

AI bolted onto a GRC platform

Same model that wrote the answer also grades it - no independent check
Approval is in-chat, ungated, unsigned: fails NIST AU-10 by design
Audit logs the platform writes are logs the platform can also rewrite
"Trust the vendor" instead of "verify the chain"
EU AI Act Article 12 satisfied "by policy mapping" - not by architecture

Kanonik verification layer

Independent Verifier on every proposal - rules + a separate LLM cross-check
Signed, OIDC-bound approval gate: NIST AU-10 by architecture, not by policy
Hash-chained, FIPS-signed audit log your auditor can verify offline
EU AI Act Article 12 traceability: by design, mapped paragraph by paragraph
Sits on top of the GRC tool you already pay for; no migration

The architectural moat

An independent Verifier on every AI-assisted change. No incumbent GRC platform does this.

Server-side, non-bypassable. Rule-based checks plus an independent LLM cross-check. Every change carries its verdict, reasoning, and approval into a hash-chained audit log: the same chain-of-custody an auditor demands of every other control in your system. "Trust us" was never on the table. Hard to retrofit onto log-based GRC architectures that satisfy non-repudiation by policy, not by design.

✓ control_id_exists

-> A.5.1

✓ scope_in_tenant

-> tenant_acme

✓ confidence ≥ 0.80

-> 0.92

✓ llm_cross_check

-> independent

Every other approach to AI in compliance looks like a promise instead of a proof.

Propose#a4f2c1

Verify#e91b7d

Approve#c30f9a

Commit#7d2e4f

Audit trail

A FIPS-signed chain your auditor verifies offline.

Every proposal, verification, approval, and commit is hashed and chained into a per-tenant audit log signed with ECDSA P-384. Your auditor downloads the export bundle and verifies the chain with an open-source binary. No need to contact us. NIST AU-10 (non-repudiation), AU-11 (retention), AU-12 (generation), and EU AI Act Article 12 traceability satisfied by architecture.

See the full mapping on the Security page

The proof is the product.

Channel architecture

The auditor is the next sale.
We do not charge them for it.

Every paid tier includes free read-only access for the auditor of record. They verify the chain offline with our open-source binary. They produce workpapers without contacting us. They sign off on a clean compliance program.

Then they evaluate the next client. Then the next. The recommendation path is built into the pricing.

How an auditor uses Kanonik ->

How a consultant uses Kanonik across their book ->

Frameworks

The standards your auditor will check.

ISO/IEC 27001:2022 control mapping ships today. SOC 2 Type II, NIST CSF 2.0, and the EU AI Act / ISO/IEC 42001 framework pair land next.

ISO

27001:2022

● Shipping

SOC

2 TSC

● Coming soon

NIST

CSF 2.0

● Coming soon

800

SP 800-53

● Roadmap

HIPAA

Security Rule

● Roadmap

PCI

DSS 4.0

● Roadmap

GDPR

● Roadmap

42001

ISO AI MS

● Roadmap

Beyond the audit trail

The same primitives, applied wider.
Not features bolted on later.

Once a Verifier sits between your AI and your GRC tool, the architecture decisions you would want for adjacent workflows are already made. The roadmap determines when each capability turns on; the foundation is what lets them ship without a rebuild.

Stand up a new GRC instance.

Populate a fresh GRC with controls, framework mappings, and baseline evidence by walking an AI through the structure. The Verifier validates each proposal; you approve in batches; the audit trail covers the bootstrap itself. Available with Eramba today; with each connector as it ships.

Your audit chain spans the transition.

When source and destination connectors both exist, the canonical model lets you read your compliance program out of one GRC tool and commit it into the next; the hash-chained evidence spans the transition uninterrupted. The chain you handed to last year's auditor stays valid after you have moved tools. Switching is no longer the price of leaving a platform that no longer fits.

AI compliance evidence your auditor will defend.

Founding Customer cohort enrolling now. Three charter spots open this quarter: founder-led onboarding, twelve-month price protection, DPA signed at onboarding. Tell us about your stack and we will be in touch.

Apply for the cohort Read the architecture

The proof is the product.

A layer on top of your stack.Not a replacement for it.

Your model

Your GRC tool

Our Verifier

AI can draft compliance evidence.But auditors won't accept "the model said so."

An independent Verifier on every AI-assisted change. No incumbent GRC platform does this.

A FIPS-signed chain your auditor verifies offline.

The auditor is the next sale.We do not charge them for it.

The standards your auditor will check.

The same primitives, applied wider.Not features bolted on later.

Stand up a new GRC instance.

Your audit chain spans the transition.

AI compliance evidence your auditor will defend.

A layer on top of your stack.
Not a replacement for it.

AI can draft compliance evidence.
But auditors won't accept "the model said so."

The auditor is the next sale.
We do not charge them for it.

The same primitives, applied wider.
Not features bolted on later.