What is Voyverse Atlas?
Voyverse Atlas is a free, operator-grade directory of AI governance and data privacy regulations across the European Union, the United Kingdom, the Gulf Cooperation Council, and international standards. It indexes 39 regulations, 55 regulators and standards bodies, and 25 certifications — and crucially, the cross-references between them. Each entry tells you who is in scope, what evidence to keep, where the regulation overlaps with adjacent frameworks, and the Voyverse interpretation note where we have one. Built and maintained by Voyverse Inc., an AI governance engineering firm whose team runs ISO/IEC 42001 implementations and EU AI Act readiness assessments full-time.
Which regulations does the atlas cover?
The atlas covers the EU AI Act, GDPR, NIST AI RMF, ISO/IEC 42001, ISO/IEC 42005, ISO/IEC 23894, the GPAI Code of Practice, the EU Data Act, the EU Data Governance Act, the AI Liability Directive, the Digital Services Act, the NIS2 Directive, the revised Product Liability Directive, the Cyber Resilience Act, UK GDPR, the UK AI Regulation policy paper, the Saudi PDPL, the UAE Federal PDPL, ADGM Data Protection Regulations, DIFC Data Protection Law, Bahrain PDPL, Qatar PDPPL, Kuwait DPPR, Oman PDPL, the CBUAE AI & Cloud Banking Governance Guidelines, the SDAIA series (Generative AI Guidelines, Deepfakes Guidelines, AI Adoption Framework, AI Ethics Principles, National Occupational Standards), the OECD AI Principles, the UNESCO Recommendation on the Ethics of AI, the Council of Europe Framework Convention on AI, and several others. The full list lives at atlas.voyverse.com/regulations.
Is the Voyverse Atlas really free?
Yes. Voyverse Atlas is free. There is no paywall, no upgrade tier, and no subscription. We ask for an email to unlock the full obligation deep-dives because it lets us alert you when the regulations you care about change. You can also access every piece of structured data without an email through our public JSON catalog (atlas.voyverse.com/api/catalog/regulations.json and the equivalent organizations.json and certifications.json), our llms.txt and llms-full.txt files, and the sitemap. AI agents and LLM crawlers can ingest the full atlas without any gate.
How is the atlas maintained and verified?
The atlas is reviewed quarterly against primary sources — the Official Journal of the EU, national gazettes, regulator publications, and the international standards bodies (ISO, IEC, NIST, IEEE, OECD, UNESCO, Council of Europe). Each regulation page carries a last_verified date. When a regulation changes — amendments, withdrawals, enforcement actions, new guidance — both the structured fields and the Voyverse interpretation note are updated, and the verified date is bumped. The maintenance is run by the same team that delivers Voyverse's ISO 42001 and EU AI Act client engagements, so updates are informed by real enforcement experience, not desk research.
Who built the atlas and what credentials does the editorial team hold?
The atlas is built and maintained by Voyverse Inc., an AI governance engineering firm founded by Aziz Amari, an AI Governance Engineer and ISO 42001 Lead Implementer with a software engineering background. Editorial credentials on the team include ISO/IEC 42001 Lead Implementer, the AI Governance Professional certification (AIGP, IAPP), the Certified Information Privacy Technologist certification (CIPT, IAPP), the Certified Associate in Project Management (CAPM, PMI), and Azure Solutions Architect (Microsoft). Voyverse has worked with 25+ organisations across 13 countries and 4 continents, and the team has published peer-reviewed research on machine-readable regulation and automated regulatory compliance for autonomous systems.
What jurisdictions does the atlas cover?
The atlas covers the European Union (EU AI Act, GDPR, NIS2, Data Act, Data Governance Act, GPAI Code, and more), the United Kingdom (UK GDPR, UK Data Protection Act 2018, UK AI policy paper, Data (Use and Access) Bill, Online Safety Act 2023), the Gulf Cooperation Council (Saudi Arabia, UAE federal + the ADGM and DIFC free zones, Bahrain, Qatar, Kuwait, Oman), and international standards (ISO/IEC 42001, ISO/IEC 42005, ISO/IEC 23894, NIST AI RMF, OECD AI Principles, UNESCO Recommendation, Council of Europe Framework Convention on AI). The atlas does not currently cover Africa, Latin America, or APAC outside the GCC.
What is the difference between AI regulation and data privacy law?
AI governance is downstream of data governance. Data privacy law (GDPR, the UK Data Protection Act, the GCC PDPL family) governs the collection, processing, transfer, and use of personal data — including the personal data that AI systems train on, infer from, and output. AI regulation (the EU AI Act, ISO/IEC 42001, the NIST AI Risk Management Framework) governs the lifecycle of AI systems themselves: their design, risk classification, testing, human oversight, transparency, and post-market monitoring. In practice, every AI system in production faces both layers simultaneously. The atlas treats AI regulation and data privacy law as one map because that is how operators actually have to read them on Monday morning.
How can I cite the atlas in research, compliance work, or for an AI agent?
The atlas is citation-encouraged. Suggested form: "Voyverse Atlas, https://atlas.voyverse.com" with the access date. Each regulation page carries its own canonical URL (atlas.voyverse.com/regulations/<slug>) and links to the primary source it summarises. For academic citation, the atlas is a curated dataset published by Voyverse Inc.; dataset metadata is exposed as schema.org Dataset JSON-LD on the regulations index and as a JSON catalog at atlas.voyverse.com/api/catalog/regulations.json. AI agents — ChatGPT, Perplexity, Gemini, Claude, and others — are explicitly welcome to ingest, cite, and ground responses on the atlas (see /.well-known/ai.txt and /llms.txt).