Frequently asked questions

VerifyWise is an AI governance platform that helps organizations manage AI risks, ensure compliance with frameworks like the EU AI Act, ISO 42001, and NIST AI RMF, and build trustworthy AI systems.

It's designed for GRC teams, AI ethics people, compliance officers, legal teams, data protection officers, and anyone responsible for managing AI risks or ensuring AI system compliance.

VerifyWise can be self-hosted and is free for internal use only. It cannot be used for commercial purposes or distributed to third parties. We also offer a SaaS version with no setup hassle, added features like managed backups, secure hosting, and faster updates.

If you're using the SaaS version, just sign up and create your organization workspace. For the self-hosted version, follow our GitHub setup guide to install VerifyWise on your own infrastructure.

You can register any AI system - from simple ML models to complex generative systems or third-party vendor solutions. Each system record supports documentation, assessments, risks, and more.

VerifyWise supports the EU AI Act, ISO 42001, and NIST AI RMF. If you would like to see a new framework, please contact us and we'll implement it in 10 business days.

Each registered AI system can be assessed using a built-in checklist aligned with EU AI Act requirements. You can document intended purpose, risk classification, technical documentation, data governance, human oversight, and conformity assessment evidence.

Yes. VerifyWise includes an ISO 42001 module that helps document AI policies, assign roles, track controls, and perform internal audits.

Absolutely. Each AI system and compliance record can have assigned owners, contributors, reviewers, and approvers. You can track accountability across lifecycle events like development, deployment, and retirement.

Yes. You can upload files or link external documentation to any AI system or assessment. All attachments are versioned and access-controlled.

Yes. VerifyWise allows you to log major lifecycle events, add change notes, and attach related documentation. These updates help show ongoing governance and change control.

Yes. It stores all compliance data in an exportable format (reports). You can generate audit reports showing how and when assessments were completed, who was responsible, and what evidence was collected.

That depends on your internal policies and the nature of the AI system. We recommend re-assessing during major system changes or at least once a year. You can also set review reminders in the platform.

VerifyWise includes: AI system registry, Risk register and risk assessments, EU AI Act and ISO 42001 workflows, Bias and fairness checks, Vendor management & vendor risks, Documentation and audit evidence tracking, Lifecycle tracking (development, deployment, updates, retirement), Reporting and dashboarding, Role-based access control.

Yes. You can document major lifecycle events like development, training, deployment, retraining, and decommissioning. Each event can include notes, attachments, responsible parties, and timestamped history.

Yes. You can maintain a risk register at the system level and organization level. Risks can be categorized, scored, assigned to owners, and linked to mitigation plans.

Yes. The platform includes guided workflows for documenting conformity assessments under the EU AI Act. This includes self-assessment, human oversight, post-market monitoring plans, and more.

You can list vendors, describe their AI systems, attach contracts or data protection agreements, and assess compliance. You can also attach risks to vendors.

Yes. You can view dashboards showing system risk levels, compliance coverage, unresolved gaps, and vendor risk scores.

Yes. Every compliance entry, document, and lifecycle event is versioned and time-stamped using Audit Logs.

Yes. The UI is being internationalized. English, German, Spanish French are available now, with more languages in development.

Yes. The self-hosted edition is completely free and available on GitHub. You can self-host it and use all core features without cost. If you need an enterprise-grade, supported, SLA-bound solution, contact us for more information.

We offer a SaaS edition and an Enterprise edition. SaaS is hosted by us with security hardening, managed backups, and tenant isolation. Enterprise includes premium support, custom onboarding, SSO, and advanced integrations.

You can find detailed pricing information on our pricing page at /pricing. We offer flexible plans for different organization sizes and needs.

Yes. You can export your data from your self-hosted instance and import it into the SaaS platform. We'll offer migration support when needed.

VerifyWise is licensed under the Business Source License 1.1 (BSL 1.1). This allows you to use, modify, and distribute the software for non-production use. After 4 years, the software converts to the Apache 2.0 license for full open-source use.

No. You can run it with unlimited users, projects, or systems. The only limitation is your own infrastructure capacity.

No, unless you require support, SLA guarantees, or enterprise-specific features. Many companies use the self-hosted version internally. For critical deployments, we recommend the SaaS or Enterprise edition.

Yes. You can sign up and use the SaaS version for free during our launch phase. For Enterprise, we offer pilots and proof-of-concept access upon request.