Centralize compliance evidence with 15 evidence types and multi-entity linking
Store documents up to 30MB with database BLOB storage, link to models and controls, and maintain file access audit trails.
Benefits
Why use Evidence management?
Key advantages for your AI governance program
Store 15 evidence types: Model Cards, Risk Assessments, Bias Reports, Security Assessments, and more
Link evidence to models, policies, compliance controls, and assessments
Track file access with download/view logs for audit compliance
Set expiration dates to track evidence validity periods
Capabilities
What you can do
Core functionality of Evidence management
15 evidence types
Collect documents, screenshots, logs, test results, and 11 more evidence types with structured metadata.
Multi-entity linking
Link evidence to model inventory entries, policies, and compliance controls for complete traceability across your governance program.
Expiration tracking
Set expiry dates on evidence items, monitor validity periods, and get expired evidence automatically flagged for renewal or replacement.
Evidence metrics
Monitor evidence coverage, expiration timelines, and collection completeness across controls.
File access logging
Track every download and view of evidence files with user ID and timestamp for complete audit trail.
Technical details
How it works
Implementation details and technical capabilities
15 evidence types: Model Card, Risk Assessment, Bias Report, Security Assessment, DPIA, Robustness Test, Evaluation Metrics, Human Oversight Plan, Post-Market Plan, Version Log, Audit Report, Conformity Assessment, Technical File, Vendor Documentation, Approval Record
Database BLOB storage: Files stored directly in PostgreSQL with content, MIME type, and size tracking
Max file size: 30MB with rate limiting via fileOperationsLimiter
Supported formats: PDF, Word, Excel, CSV, Markdown, images (JPEG/PNG/GIF/WebP/SVG), videos (MP4/MOV/AVI)
Multi-entity linking: mapped_model_ids array, ce_marking_evidences junction table, evidence_links JSONB on controls
File access logging: Every download/view logged with accessed_by, access_date, action type, and org_id
Change tracking: Evidence operations recorded per linked model with old/new field values
Role-based access: Admins/Editors/Reviewers can upload/delete, all authenticated users can view/download
Supported frameworks
Integrations
FAQ
Common questions
Frequently asked questions about Evidence management
VerifyWise supports 15 evidence types: Model Card, Risk Assessment Report, Bias and Fairness Report, Security Assessment Report, DPIA, Robustness and Stress Test Report, Evaluation Metrics Summary, Human Oversight Plan, Post-Market Monitoring Plan, Version Change Log, Third-Party Audit Report, Conformity Assessment Report, Technical File/CE Documentation, Vendor Model Documentation, and Internal Approval Record.
Supported formats include documents (PDF, DOC/DOCX, XLS/XLSX, CSV, Markdown), images (JPEG, PNG, GIF, WebP, SVG, BMP, TIFF), and videos (MP4, MPEG, MOV, AVI, WMV, WebM, MKV). Maximum file size is 30MB.
Evidence can be linked to multiple entities: models via mapped_model_ids array, policies via CE marking junction table with linked_by/linked_at tracking, and compliance controls via evidence_links JSONB field on subclauses and annexes.
Yes. Every file download and view is logged with the user ID, access timestamp, action type (download/view), and organization ID. This provides a complete audit trail for compliance purposes.
More from Govern
Related capabilities
Other features in the Govern pillar
Ready to get started?
See how VerifyWise can help you govern AI with confidence.