auditchecklists.org publishes maintained audit checklists for the EU regulations and ISO standards that organisations are audited and certified against. Each checklist is authored against the current consolidated text of the regulation or standard, structured for use by compliance leads, data protection and security officers, and third-party auditors.
The catalogue spans data protection, cybersecurity, information security management, AI governance and operational resilience — and is on a path to cover the EU regulations and ISO standards organisations are held to. Each checklist covers the entity-side obligations of its regulation; provisions addressed solely to supervisory authorities are out of scope by design, because those duties sit with the regulator, not your organisation.
Each Part is a separate product: single invoice, twelve months of regulatory-amendment currency, delivered by email.
Each checklist is walked through every leaf of the regulation — every article, annex and clause — and an audit question is written for each. The Compliance Matrix ships with every bundle as the base document: every leaf in scope appears there, and every audit question traces back to one. Nothing ships until that trace is complete.
Audit content is authored and reviewed by compliance management professionals with decades of regulatory experience. We don't run audit engagements — we publish the reference tooling that qualified compliance professionals take into their work.
auditchecklists.org is a brand operated by Contenza K/S, CVR 43349023, Denmark. All licensing, invoicing, contracting and copyright run through Contenza K/S; the auditchecklists.org mark is the public-facing product brand.
Contenza K/S is a Danish private company (kommanditselskab), registered with the Danish Business Authority (CVR 43349023). EU consumer-protection law, the Danish Markedsføringsloven and the Danish E-handelsloven apply to all sales.