Articles, reports & whitepapers
Engineering-focused writing from the RuleMesh team. Regulatory explainers, technical whitepapers, and protocol proposals for teams implementing compliance.
We Proposed a New Web Standard So Systems Can Prove Compliance to Each Other
HCAP — the HTTP Compliance Authorization Protocol. A draft specification submitted to the IETF to move compliance verification out of email and into the HTTP layer.
GDPR Is Not 99 Articles. It Is 7 Engineering Problems.
A practical framework for prioritising GDPR compliance — based on what the regulation actually requires from your systems.
You Are Outside the EU. The GDPR Still Applies to You.
GDPR Article 27 — EU Representation for Non-EU Controllers and Processors.
Sending EU Data Outside Europe? Here Is What the GDPR Requires.
Under GDPR Chapter V, the transfer of personal data to a third country requires specific safeguards.
Agent-Agnostic Compliance: How Three AI Models Interpret Identical Regulatory Data via MCP
A technical study demonstrating that structured MCP data drives consistent compliance outcomes across Claude, Gemini, and GPT.
AI Agents Don't Earn Trust. Their Compliance Infrastructure Does.
What the CSA's Agentic Trust Framework says — and why the regulatory data layer, not the model, is where trust is actually earned.