☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬
[WIP] A database of University of California employee wages.
Document ingestion with CUI detection, ITAR/EAR screening, PII/PHI protection, and audit trails with hash-chain integrity. HIPAA Safe Harbor coverage.
The Rego policy library for AI compliance: 94 policies covering the EU AI Act, NIST AI RMF, FAA/EASA/ICAO aviation, FERPA, fair lending, and 10+ more frameworks.
AI + EdTech · Sovereign School OS — AI-native K-12 platform · winner, Tsinghua 清华大学 AIID (NetDragon 网龙)
Production-grade Claude Code skills, pedagogical frameworks, and AI workflows for K-12 educators. Built by a practicing literacy specialist. FERPA-safe. Ready for Monday.
Compliance enforcement middleware for voice AI pipelines: warm transfer state management, PII scrubbing, confidence-gated escalation, and HIPAA/FERPA/EU AI Act enforcement for Pipecat, LiveKit, and Twilio deployments.
Policy enforcement for AI agents in regulated environments (FERPA, HIPAA, GLBA, GDPR): framework adapters for CrewAI, AutoGen, LangChain, Semantic Kernel, Haystack
FERPA/HIPAA/GDPR-compliant RAG patterns: identity-scoped retrieval, audit logging, and framework adapters for regulated enterprise AI
Hash-chained event schema + reference verifier for AI tool reads of student records. Bridges CEDS + Ed-Fi semantics to the Kinetic Gain audit-stream. Enforces tokenization, FERPA §99.32 logging consistency, COPPA school-as-agent invariants, Decision Card refs. EdTech-readiness scaffolding, not certification.
MCP server for AI Tutor Card disclosures. Six tools for procurement review, curriculum matching, and FERPA / COPPA compliance auditing of AI tutors. EdTech-flavored extension of the Kinetic Gain Protocol Suite.
Blind your papers locally. Grade them however you want. FERPA-compliant student work anonymization with local AI handwriting recognition via Qwen2.5-VL.
FERPA-compliant document filter for Haystack RAG pipelines — identity-scoped pre-filtering before LLM context
Profile of evidence-bundle-spec scoped to FERPA's 8 obligation families: annual notification (§99.7), school-official exception (§99.31), directory info (§99.37), consent (§99.30), records of disclosure (§99.32), amendment (§99.21), breach response, vendor procurement controls. EdTech-readiness scaffolding, not certification.
Hash-chained per-state lifecycle record + reference verifier for EdTech AI products navigating 50 state student-data-privacy + state-AI-policy regimes (IL SOPPA, CA AB 1584+AB 2876, TX HB 18, NY ED Law 2-d, VA ChAIPA, CO SB 196, etc.). EdTech-readiness scaffolding, not certification.
Children's privacy MCP — COPPA, FERPA, UK AADC, EU AI Act minors. MIT
AI Tutor Cards v0.1 draft. Disclosure spec for AI agents in an educational role: audience (age, grade, subjects), pedagogy (Socratic / homework_policy / assessment_policy), safety & privacy (FERPA / COPPA / mandated-reporter). Sixth spec in the Kinetic Gain Protocol Suite.
FERPA-compliant document filter for Haystack RAG pipelines — identity-scoped pre-filtering before LLM context
Sample GRC documentation portfolio for audit evidence, access reviews, risk/control concepts, and compliance operations practice.
Add a description, image, and links to the ferpa topic page so that developers can more easily learn about it.
To associate your repository with the ferpa topic, visit your repo's landing page and select "manage topics."