Complete API reference for VerifyWise. Explore endpoints for authentication, projects, compliance frameworks, AI governance, and more.
https://your-domain.com/apiMost endpoints require JWT authentication. Include the token in your headers:
Authorization: Bearer <token>All responses follow a consistent JSON structure:
{ "message": "ok", "data": {...} }Current API version with full compatibility:
v1.7.0Register users, authenticate with login credentials, manage session tokens, and handle password resets across your application.
Generate, rotate, and revoke API tokens for programmatic access. Configure token scopes, expiration policies, and usage limits.
Manage API keys for LLM providers. Store, test, and rotate keys for OpenAI, Anthropic, and other AI service providers.
Create, update, and delete user accounts. Retrieve user profiles, manage team memberships, and configure notification preferences.
Manage organizations with multi-tenancy support. Create workspaces, configure org-level settings, and handle member invitations.
Create and manage compliance projects. Assign team members, track progress, set deadlines, and organize work across frameworks.
Define and assign user roles with granular permissions. Control access to resources, features, and actions across your organization.
Register and manage third-party vendors and suppliers. Track vendor compliance status, review contracts, and assess vendor risk.
Define and manage organizational policies. Version policy documents, track approval workflows, and link policies to compliance controls.
Create and manage tasks linked to compliance work. Assign owners, set due dates, track completion, and link to entities.
Manage training records including courses, attendance, completion status, and certification tracking for compliance awareness.
Store and manage compliance evidence in a centralized repository. Link documents to controls, track review status, and maintain audit trails.
Upload, download, and manage files attached to compliance records. Supports evidence documents, policy files, and report attachments.
Create and manage notes attached to any entity. Add context, commentary, and discussion threads to projects, risks, and controls.
Create and manage shareable links to compliance resources. Set expiration dates, access permissions, and track link usage.
Register and manage datasets used in AI model training and evaluation. Track lineage, quality metrics, and compliance attributes.
Identify, assess, and track project-level risks. Assign risk owners, set mitigation plans, and monitor risk status over time.
Assess and monitor risks associated with third-party vendors. Link risks to vendors, track remediation, and generate risk reports.
Identify and manage risks specific to AI models. Evaluate risk severity, assign mitigation strategies, and track resolution progress.
Perform FAIR-based quantitative risk analysis. Calculate annual loss expectancy, risk exposure, and ROI of mitigation controls.
Compare risk metrics against industry benchmarks and standards. Track risk posture relative to peer organizations.
Track changes to risk assessments over time. View historical risk levels, mitigation progress, and audit trail of risk modifications.
Catalog and manage your AI/ML model inventory. Track model versions, deployment status, ownership, and lifecycle stage.
Scan repositories and codebases for AI/ML model usage. Detect frameworks, libraries, and model files across your organization.
Configure and manage your public-facing AI Trust Centre portal. Publish compliance documentation and transparency reports.
Report, track, and resolve AI-related incidents. Document root causes, assign remediation tasks, and maintain incident history.
Get AI-powered compliance guidance and recommendations. Ask questions about frameworks, risks, and governance best practices.
Discover and catalog AI agents operating within your organization. Track agent capabilities, permissions, and model associations.
Detect and monitor unauthorized AI tool usage across your organization. Track tools, users, departments, and enforce governance rules.
Manage EU AI Act compliance with risk classification, conformity assessments, and documentation required for high-risk AI systems.
Track ISO 27001 information security compliance. Manage Annex A controls, statement of applicability, and audit readiness.
Manage ISO 42001 AI management system compliance. Track controls, document AI governance processes, and prepare for certification.
Implement the NIST AI Risk Management Framework. Map controls to govern, map, measure, and manage functions.
Calculate and track overall compliance scores across frameworks. View weighted scores by module and monitor compliance trends.
Manage compliance frameworks and their requirements. Import framework definitions, map controls, and track coverage.
Create and manage compliance assessments. Schedule reviews, collect responses from stakeholders, and track completion.
Manage CE marking compliance and certification workflows. Track conformity declarations and technical documentation.
Conduct Fundamental Rights Impact Assessments. Evaluate rights impacts, document risk items, link models, and manage evidence.
Visualize and manage relationships between compliance entities. Create annotations, views, and gap analysis rules.
Define and manage multi-step approval workflows. Configure approvers, conditions, and escalation rules for compliance actions.
Create automation rules and manage compliance workflows. Define triggers, conditions, and actions to streamline processes.
Manage real-time notifications via SSE streaming. List, read, and delete notifications with filtering and pagination.
Generate compliance reports and analytics. Export data in multiple formats and build custom report templates.
Retrieve dashboard metrics, compliance statistics, and summary data across projects, risks, models, and tasks.
Search across projects, controls, risks, vendors, and other resources with full-text matching, filters, and pagination.
Configure and run post-market monitoring cycles. Manage questions, collect responses, and generate monitoring reports.
Manage feature settings and platform configuration. Toggle features, update preferences, and customize platform behavior.
Read and update user preferences such as date format, notification settings, and display options.
Manage subscription plans and billing details. View current plan status and update payment methods.
Retrieve subscription tiers and feature availability. Compare capabilities and usage limits across plans.
Send transactional emails for invitations, password resets, and compliance workflow notifications.
Send and manage user invitations to join organizations. Track invitation status and resend pending invites.
Create and manage public intake forms for collecting compliance information from external stakeholders.
Connect and manage third-party integrations. Configure GitHub tokens, test connections, and manage sync settings.
Configure Slack webhook integrations to receive real-time compliance notifications. Map event types to channels.
Receive incoming webhook events from external services. Process GitHub push and pull request events with HMAC verification.
Browse, install, and configure plugins from the marketplace. Extend platform capabilities with compliance frameworks and integrations.
Administrative endpoints for platform management. Manage organizations, users, and system-wide configuration.
System health checks, version information, and platform diagnostics for monitoring and operations.
Access system and event logs. Query log entries by user, resource, and action type for compliance audit trails.
Access the immutable audit ledger. Verify data integrity with blockchain-anchored audit records and hash verification.
Track changes across all entities. View modification history for projects, risks, vendors, policies, and models.
Internal platform endpoints for service-to-service communication. Used by AI Gateway and background workers.
Seed and manage demonstration data for testing and showcasing platform capabilities.
Check out our user guide for step-by-step tutorials and examples.