acf-mcp 1.0.0

package/content/rules/ai-act-annex-iii.json

@@ -0,0 +1,165 @@
+{
+  "version": "2026-06",
+  "last_update": "2026-06-07",
+  "applicable_dates": [
+    { "category": "annex-iii", "applicable_from": "2027-12-02", "deferred": true }
+  ],
+  "categories": [
+    {
+      "id": "annex-iii-1a-biometric-identity",
+      "title": "Remote biometric identification (Annex III item 1a)",
+      "triggers": {
+        "keyword_patterns": [
+          "facial recognition", "reconnaissance faciale", "biometric identification",
+          "identification biométrique", "real-time biometric", "biométrie temps réel"
+        ],
+        "enum_match": {
+          "ai_act_triggers": ["biometric_identity"],
+          "personal_data_level": ["sensitive_special"]
+        },
+        "negation_aware": true
+      },
+      "obligations": ["art-5", "art-9", "art-10", "art-11", "art-12", "art-13", "art-14", "art-15", "art-26", "art-27"],
+      "fiches": ["ACF-02", "ACF-09", "ACF-11"],
+      "confidence_base": "high",
+      "requires_human_review": true
+    },
+    {
+      "id": "annex-iii-2-critical-infrastructure",
+      "title": "Critical infrastructure (Annex III item 2)",
+      "triggers": {
+        "keyword_patterns": [
+          "energy grid", "réseau énergétique", "water supply", "approvisionnement en eau",
+          "gas distribution", "distribution gaz", "critical infrastructure", "infrastructure critique"
+        ],
+        "enum_match": { "ai_act_triggers": ["critical_infrastructure"] },
+        "negation_aware": true
+      },
+      "obligations": ["art-9", "art-10", "art-11", "art-12", "art-13", "art-14", "art-15"],
+      "fiches": ["ACF-02", "ACF-07", "ACF-09", "ACF-11"],
+      "confidence_base": "high",
+      "requires_human_review": true
+    },
+    {
+      "id": "annex-iii-3-educational",
+      "title": "Education and vocational training (Annex III item 3)",
+      "triggers": {
+        "keyword_patterns": [
+          "grading", "notation", "admission", "student assessment", "évaluation étudiant",
+          "school admission", "examen", "exam scoring"
+        ],
+        "enum_match": {
+          "ai_act_triggers": ["educational_assessment"],
+          "processing_purposes": ["education"]
+        },
+        "negation_aware": true
+      },
+      "obligations": ["art-9", "art-10", "art-11", "art-12", "art-13", "art-14", "art-15"],
+      "fiches": ["ACF-02", "ACF-09", "ACF-11"],
+      "confidence_base": "high",
+      "requires_human_review": true
+    },
+    {
+      "id": "annex-iii-4-employment",
+      "title": "Employment, workers management, access to self-employment (Annex III item 4)",
+      "triggers": {
+        "keyword_patterns": [
+          "recruitment", "recrutement", "hiring", "embauche", "cv screening",
+          "filtrage cv", "performance review", "évaluation salarié", "promotion"
+        ],
+        "enum_match": {
+          "ai_act_triggers": ["employment_recruitment"],
+          "processing_purposes": ["hr"]
+        },
+        "negation_aware": true
+      },
+      "obligations": ["art-9", "art-10", "art-11", "art-12", "art-13", "art-14", "art-15"],
+      "fiches": ["ACF-02", "ACF-09", "ACF-11"],
+      "confidence_base": "high",
+      "requires_human_review": true
+    },
+    {
+      "id": "annex-iii-5b-credit-scoring",
+      "title": "Credit scoring (Annex III item 5b)",
+      "triggers": {
+        "keyword_patterns": [
+          "credit", "scoring", "loan", "prêt", "lending", "octroi de crédit",
+          "credit decision", "décision crédit", "creditworthiness", "solvabilité"
+        ],
+        "structured_flags": ["financial_exposure:high_corporate"],
+        "enum_match": {
+          "ai_act_triggers": ["credit_scoring"],
+          "processing_purposes": ["core_financial"]
+        },
+        "negation_aware": true
+      },
+      "obligations": ["art-9", "art-10", "art-11", "art-12", "art-13", "art-14", "art-15", "art-86"],
+      "fiches": ["ACF-02", "ACF-09", "ACF-10", "ACF-11"],
+      "confidence_base": "high",
+      "requires_human_review": true
+    },
+    {
+      "id": "annex-iii-5c-insurance-pricing",
+      "title": "Insurance risk assessment & pricing — life/health (Annex III item 5c)",
+      "triggers": {
+        "keyword_patterns": [
+          "insurance pricing", "tarification assurance", "underwriting",
+          "health insurance", "assurance santé", "life insurance", "assurance vie"
+        ],
+        "negation_aware": true
+      },
+      "obligations": ["art-9", "art-10", "art-11", "art-12", "art-13", "art-14", "art-15"],
+      "fiches": ["ACF-02", "ACF-09", "ACF-11"],
+      "confidence_base": "medium",
+      "requires_human_review": true
+    },
+    {
+      "id": "annex-iii-6-law-enforcement",
+      "title": "Law enforcement (Annex III item 6)",
+      "triggers": {
+        "keyword_patterns": [
+          "law enforcement", "police", "predictive policing", "evidence assessment",
+          "évaluation des preuves", "investigation", "enquête"
+        ],
+        "enum_match": { "ai_act_triggers": ["law_enforcement"] },
+        "negation_aware": true
+      },
+      "obligations": ["art-9", "art-10", "art-11", "art-12", "art-13", "art-14", "art-15", "art-27"],
+      "fiches": ["ACF-02", "ACF-09", "ACF-11"],
+      "confidence_base": "high",
+      "requires_human_review": true
+    },
+    {
+      "id": "annex-iii-7-migration-asylum",
+      "title": "Migration, asylum and border control (Annex III item 7)",
+      "triggers": {
+        "keyword_patterns": [
+          "asylum", "asile", "migration", "border control", "contrôle frontalier",
+          "visa decision", "décision visa"
+        ],
+        "enum_match": { "ai_act_triggers": ["migration_asylum"] },
+        "negation_aware": true
+      },
+      "obligations": ["art-9", "art-10", "art-11", "art-12", "art-13", "art-14", "art-15"],
+      "fiches": ["ACF-02", "ACF-09", "ACF-11"],
+      "confidence_base": "high",
+      "requires_human_review": true
+    },
+    {
+      "id": "annex-iii-8-justice-democracy",
+      "title": "Administration of justice and democratic processes (Annex III item 8)",
+      "triggers": {
+        "keyword_patterns": [
+          "court decision", "décision de justice", "judicial", "judiciaire",
+          "election", "élection", "voting"
+        ],
+        "enum_match": { "ai_act_triggers": ["justice_democracy"] },
+        "negation_aware": true
+      },
+      "obligations": ["art-9", "art-10", "art-11", "art-12", "art-13", "art-14", "art-15"],
+      "fiches": ["ACF-02", "ACF-09", "ACF-11"],
+      "confidence_base": "high",
+      "requires_human_review": true
+    }
+  ]
+}

package/content/rules/ai-act-roles.json

@@ -0,0 +1,52 @@
+{
+  "version": "2026-06",
+  "last_update": "2026-06-07",
+  "rules": [
+    {
+      "id": "ai-act-role-provider-build-and-sell",
+      "triggers": {
+        "keyword_patterns": [
+          "we sell", "nous vendons", "we license", "nous licencions",
+          "saas", "we offer", "nous proposons", "product offering"
+        ],
+        "enum_match": { "usage_audience": ["third_party_b2b", "public_consumer"] },
+        "negation_aware": true
+      },
+      "role": "provider",
+      "confidence_base": "medium",
+      "rationale_template": "The system is built and placed on the market or put into service under the entity's name → provider."
+    },
+    {
+      "id": "ai-act-role-provider-build-internal-rebrand",
+      "triggers": {
+        "keyword_patterns": [
+          "white label", "marque blanche", "rebranded", "sous notre nom"
+        ],
+        "negation_aware": true
+      },
+      "role": "provider",
+      "confidence_base": "medium",
+      "rationale_template": "The system is rebranded under the entity's name and re-placed on the market → provider responsibilities apply."
+    },
+    {
+      "id": "ai-act-role-deployer-internal-use",
+      "triggers": {
+        "enum_match": { "usage_audience": ["internal"] },
+        "negation_aware": true
+      },
+      "role": "deployer",
+      "confidence_base": "high",
+      "rationale_template": "Internal use of a third-party AI system → deployer."
+    },
+    {
+      "id": "ai-act-role-not-applicable",
+      "triggers": {
+        "enum_match": { "ai_act_triggers": ["none"] },
+        "negation_aware": true
+      },
+      "role": "not_applicable",
+      "confidence_base": "medium",
+      "rationale_template": "No Annex III or Annex I trigger declared → AI Act high-risk obligations likely not applicable, but transparency obligations (Art. 50) may still apply for GPAI usage."
+    }
+  ]
+}

package/content/rules/autonomy-inference.json

@@ -0,0 +1,38 @@
+{
+  "version": "2026-06",
+  "last_update": "2026-06-07",
+  "thresholds": [
+    {
+      "level": "N0",
+      "conditions": {
+        "human_approval_required": ["always"],
+        "external_actions": ["none", "read_only"]
+      },
+      "rationale_template": "Human approval required for every action and external surface is read-only or absent → the agent suggests, the human decides."
+    },
+    {
+      "level": "N1",
+      "conditions": {
+        "human_approval_required": ["always"],
+        "external_actions": ["limited_write"]
+      },
+      "rationale_template": "Human approval required on every action with limited write access → supervised recommendation pattern."
+    },
+    {
+      "level": "N2",
+      "conditions": {
+        "human_approval_required": ["sometimes"],
+        "external_actions": ["limited_write", "full_write"]
+      },
+      "rationale_template": "Conditional human approval, write actions allowed within a bounded perimeter → conditional execution (mandate required)."
+    },
+    {
+      "level": "N3",
+      "conditions": {
+        "human_approval_required": ["never"],
+        "external_actions": ["full_write"]
+      },
+      "rationale_template": "No prior human approval and full write capabilities → autonomous execution (reinforced governance required)."
+    }
+  ]
+}

package/content/rules/criticality-matrix.json

@@ -0,0 +1,83 @@
+{
+  "version": "2026-06",
+  "last_update": "2026-06-07",
+  "cells": [
+    {
+      "personal_data_level": "none",
+      "financial_exposure": "none",
+      "sector_modifier": 0,
+      "score": "low",
+      "rationale_template": "No personal data and no financial exposure → low criticality baseline."
+    },
+    {
+      "personal_data_level": "none",
+      "financial_exposure": "low_operation",
+      "sector_modifier": 0,
+      "score": "low",
+      "rationale_template": "Low operational financial exposure with no personal data → low criticality."
+    },
+    {
+      "personal_data_level": "standard",
+      "financial_exposure": "low_operation",
+      "sector_modifier": 0,
+      "score": "medium",
+      "rationale_template": "Standard personal data + low operational exposure → medium criticality (GDPR + operational impact)."
+    },
+    {
+      "personal_data_level": "standard",
+      "financial_exposure": "medium_contract",
+      "sector_modifier": 0,
+      "score": "high",
+      "rationale_template": "Standard personal data + contract-level financial exposure → high criticality (impact on individuals + on contracts)."
+    },
+    {
+      "personal_data_level": "standard",
+      "financial_exposure": "high_corporate",
+      "sector_modifier": 0,
+      "score": "high",
+      "rationale_template": "Standard personal data + high corporate financial exposure → high criticality."
+    },
+    {
+      "personal_data_level": "sensitive_special",
+      "financial_exposure": "none",
+      "sector_modifier": 0,
+      "score": "high",
+      "rationale_template": "Sensitive/special-category personal data → high criticality even without financial exposure (GDPR Article 9)."
+    },
+    {
+      "personal_data_level": "sensitive_special",
+      "financial_exposure": "low_operation",
+      "sector_modifier": 0,
+      "score": "high",
+      "rationale_template": "Sensitive personal data + any financial exposure → high criticality."
+    },
+    {
+      "personal_data_level": "sensitive_special",
+      "financial_exposure": "medium_contract",
+      "sector_modifier": 0,
+      "score": "critical",
+      "rationale_template": "Sensitive personal data + contract-level financial exposure → critical criticality (Article 9 GDPR + operational stakes)."
+    },
+    {
+      "personal_data_level": "sensitive_special",
+      "financial_exposure": "high_corporate",
+      "sector_modifier": 0,
+      "score": "critical",
+      "rationale_template": "Sensitive personal data + high corporate financial exposure → critical criticality (worst case in the matrix)."
+    },
+    {
+      "personal_data_level": "none",
+      "financial_exposure": "high_corporate",
+      "sector_modifier": 0,
+      "score": "high",
+      "rationale_template": "High corporate financial exposure even without personal data → high criticality (financial stakes alone justify reinforced governance)."
+    },
+    {
+      "personal_data_level": "none",
+      "financial_exposure": "medium_contract",
+      "sector_modifier": 0,
+      "score": "medium",
+      "rationale_template": "Contract-level financial exposure without personal data → medium criticality."
+    }
+  ]
+}

package/content/rules/ddao-controls-mapping.json

@@ -0,0 +1,148 @@
+{
+  "version": "2026-06",
+  "last_update": "2026-06-07",
+  "mappings": [
+    {
+      "level": "N0",
+      "risk": "low",
+      "recommended_controls": [
+        {
+          "title": "Suggestion logging",
+          "description": "Log every suggestion produced by the agent and the human acceptance/rejection.",
+          "owner_role": "ddao",
+          "frequency": "on_event",
+          "evidence_artifact": "suggestion-log.csv"
+        }
+      ],
+      "ddao_controls": [
+        {
+          "control_id": "ACF-CTRL-001",
+          "control_type": "detective",
+          "fiche_reference": "ACF-05",
+          "implementation_note": "Append-only log with timestamp, user id (hashed), suggestion id, accept/reject."
+        }
+      ]
+    },
+    {
+      "level": "N2",
+      "risk": "high",
+      "recommended_controls": [
+        {
+          "title": "Formal agent mandate",
+          "description": "Mandate document signed by DDAO defining decision perimeter, escalation thresholds and kill switch.",
+          "owner_role": "ddao",
+          "frequency": "quarterly",
+          "evidence_artifact": "agent-mandate.pdf"
+        },
+        {
+          "title": "Kill switch quarterly drill",
+          "description": "Test the agent freeze/redirect/revoke path on a non-production replay every quarter.",
+          "owner_role": "ciso",
+          "frequency": "quarterly",
+          "evidence_artifact": "drill-report.pdf"
+        },
+        {
+          "title": "Decision register",
+          "description": "Immutable timestamped log of every decision with structured inputs, output, doctrine version.",
+          "owner_role": "ddao",
+          "frequency": "on_event",
+          "evidence_artifact": "decision-register.jsonl"
+        },
+        {
+          "title": "Quarterly risk review",
+          "description": "Review of risk profile, drift metrics and incidents over the quarter.",
+          "owner_role": "ddao",
+          "frequency": "quarterly",
+          "evidence_artifact": "risk-review-minutes.pdf"
+        }
+      ],
+      "ddao_controls": [
+        {
+          "control_id": "ACF-CTRL-101",
+          "control_type": "preventive",
+          "fiche_reference": "ACF-12",
+          "implementation_note": "Mandate templates calibrated by sector; review frequency tied to criticality."
+        },
+        {
+          "control_id": "ACF-CTRL-102",
+          "control_type": "corrective",
+          "fiche_reference": "ACF-07",
+          "implementation_note": "Kill switch with 3 levels: freeze (instant), redirect (≤5min), revoke (≤1h)."
+        },
+        {
+          "control_id": "ACF-CTRL-103",
+          "control_type": "detective",
+          "fiche_reference": "ACF-05",
+          "implementation_note": "Decision register format aligned with Article 49 register for high-risk systems."
+        }
+      ]
+    },
+    {
+      "level": "N3",
+      "risk": "critical",
+      "recommended_controls": [
+        {
+          "title": "Deep formal mandate with monthly review",
+          "description": "Mandate signed by DDAO + business sponsor + CISO + DPO; monthly review of perimeter, thresholds and drift.",
+          "owner_role": "ddao",
+          "frequency": "monthly",
+          "evidence_artifact": "agent-mandate-deep.pdf"
+        },
+        {
+          "title": "Multi-level kill switch — monthly drill",
+          "description": "3-level kill switch tested monthly (freeze / redirect / revoke). Drill results reviewed at next governance committee.",
+          "owner_role": "ciso",
+          "frequency": "monthly",
+          "evidence_artifact": "drill-report-monthly.pdf"
+        },
+        {
+          "title": "Real-time drift monitoring",
+          "description": "Live dashboards tracking decision distribution, escalation rate, error rate with alerts on threshold breach.",
+          "owner_role": "ciso",
+          "frequency": "on_event",
+          "evidence_artifact": "drift-dashboard-link"
+        },
+        {
+          "title": "Independent audit",
+          "description": "Annual independent audit of the agent (technical + governance + regulatory).",
+          "owner_role": "auditor",
+          "frequency": "annual",
+          "evidence_artifact": "audit-report.pdf"
+        },
+        {
+          "title": "Board-level reporting",
+          "description": "Quarterly report to the board including incidents, drift, perimeter changes and remediation status.",
+          "owner_role": "business_owner",
+          "frequency": "quarterly",
+          "evidence_artifact": "board-report.pdf"
+        }
+      ],
+      "ddao_controls": [
+        {
+          "control_id": "ACF-CTRL-201",
+          "control_type": "governance",
+          "fiche_reference": "ACF-12",
+          "implementation_note": "Quad sign-off (DDAO + sponsor + CISO + DPO) gates every mandate change."
+        },
+        {
+          "control_id": "ACF-CTRL-202",
+          "control_type": "preventive",
+          "fiche_reference": "ACF-07",
+          "implementation_note": "3-level kill switch with monthly drill and post-drill remediation log."
+        },
+        {
+          "control_id": "ACF-CTRL-203",
+          "control_type": "detective",
+          "fiche_reference": "ACF-08",
+          "implementation_note": "Live observability dashboards (decision distribution, escalation rate, error rate)."
+        },
+        {
+          "control_id": "ACF-CTRL-204",
+          "control_type": "corrective",
+          "fiche_reference": "ACF-14",
+          "implementation_note": "Documented incident playbook with named roles and SLA per criticality."
+        }
+      ]
+    }
+  ]
+}

package/content/rules/gdpr-qualification.json

@@ -0,0 +1,58 @@
+{
+  "version": "2026-06",
+  "last_update": "2026-06-07",
+  "cases": [
+    {
+      "id": "gdpr-controller-internal-use",
+      "triggers": {
+        "enum_match": {
+          "usage_audience": ["internal"],
+          "personal_data_level": ["standard", "sensitive_special"]
+        },
+        "negation_aware": true
+      },
+      "role": "controller",
+      "confidence_base": "high",
+      "rationale_template": "Internal usage with the entity defining purposes and means of processing → controller."
+    },
+    {
+      "id": "gdpr-processor-b2b",
+      "triggers": {
+        "enum_match": {
+          "usage_audience": ["third_party_b2b"],
+          "personal_data_level": ["standard", "sensitive_special"]
+        },
+        "keyword_patterns": [
+          "on behalf of", "pour le compte de", "data processor", "sous-traitant"
+        ],
+        "negation_aware": true
+      },
+      "role": "processor",
+      "confidence_base": "medium",
+      "rationale_template": "B2B usage where the entity acts on behalf of another controller → processor (subject to Article 28 contract)."
+    },
+    {
+      "id": "gdpr-controller-consumer",
+      "triggers": {
+        "enum_match": {
+          "usage_audience": ["public_consumer"],
+          "personal_data_level": ["standard", "sensitive_special"]
+        },
+        "negation_aware": true
+      },
+      "role": "controller",
+      "confidence_base": "high",
+      "rationale_template": "Public consumer-facing service handling personal data → controller (typically)."
+    },
+    {
+      "id": "gdpr-na-no-personal-data",
+      "triggers": {
+        "enum_match": { "personal_data_level": ["none"] },
+        "negation_aware": true
+      },
+      "role": "not_applicable",
+      "confidence_base": "high",
+      "rationale_template": "No personal data declared → GDPR qualification not applicable. Confirm with the team that no PII transits the agent."
+    }
+  ]
+}

package/content/rules/gpai-triggers.json

@@ -0,0 +1,41 @@
+{
+  "version": "2026-06",
+  "last_update": "2026-06-07",
+  "triggers": {
+    "keyword_patterns": [
+      "llm", "large language model", "foundation model", "modèle de fondation",
+      "generative ai", "ia générative", "gpt", "claude", "llama", "mistral",
+      "prompt", "embedding model"
+    ],
+    "enum_match": { "gpai_used": ["true"] },
+    "negation_aware": true
+  },
+  "obligations": [
+    {
+      "article": "art-50",
+      "requirement": "Transparency obligations on AI systems intended to interact with natural persons (clear notice that the user is interacting with an AI system, unless obvious from context).",
+      "applicable_date": "2026-08-02"
+    },
+    {
+      "article": "art-51",
+      "requirement": "Classification of GPAI models and identification of systemic-risk models.",
+      "applicable_date": "2026-08-02"
+    },
+    {
+      "article": "art-53",
+      "requirement": "Technical documentation, training data summary, copyright policy, instructions for downstream providers.",
+      "applicable_date": "2026-08-02"
+    },
+    {
+      "article": "art-54",
+      "requirement": "Authorised representative requirement for non-EU GPAI providers placing models on the EU market.",
+      "applicable_date": "2026-08-02"
+    },
+    {
+      "article": "art-55",
+      "requirement": "Additional obligations for systemic-risk GPAI: model evaluations, adversarial testing, incident reporting, cybersecurity protection.",
+      "applicable_date": "2026-08-02",
+      "systemic_risk_only": true
+    }
+  ]
+}

package/content/rules/rules-meta.json

@@ -0,0 +1,5 @@
+{
+  "rules_version": "2026-06",
+  "last_update": "2026-06-07",
+  "applicable_jurisdictions": ["eu", "ee", "fr", "de", "es", "it", "nl", "pt", "be"]
+}