Skip to content
Regulatory intelligence

Compliance Matrix

Which frameworks meet which regulations. The map that compliance officers and CISOs need before approving a framework decision.

Framework PCI DSS 4.0 GDPR HIPAA SOC 2 NIS2 (EU) FedRAMP CCPA/CPRA WCAG 2.1 AA
Wordpress ! ! ! !
Nextjs
Astro
Django
Drupal ! ! ! ! !
Fastapi
Strong
Adequate
! Challenging
Difficult

Hover over any cell for details.

Regulation details
PCI DSS 4.0
Payment Security

Payment card data protection. Every component in the payment path is in scope.

GDPR
Data Privacy

EU data protection. Data subject rights, consent management, breach notification.

HIPAA
Healthcare

US health information protection. Reasonable safeguards for PHI.

SOC 2
Security Audit

Service organization controls. Security, availability, processing integrity.

NIS2 (EU)
Cybersecurity

EU network and information security directive. Essential entity requirements.

FedRAMP
Government

US federal cloud security authorization.

CCPA/CPRA
Data Privacy

California consumer privacy. Do Not Sell, data subject rights.

WCAG 2.1 AA
Accessibility

Web content accessibility guidelines. Required by ADA, Section 508.