Compliance gap analysis that actually works. Upload your documentation, and Aileth reveals exactly where you fall short — and where you're already compliant.
ISO 27001:2022 NIS2 — coming soon
Most organisations discover their security gaps during the audit — the most expensive moment possible. Aileth shifts that discovery to the earliest stage, analysing your existing documentation against every Annex A control with atomic precision.
Upload policies, procedures, and evidence. Aileth classifies each document and routes it to the relevant controls automatically.
Each acceptance criterion is assessed individually. No bundled checks, no yes-bias — just a clear PRESENT, PARTIAL, or MISSING verdict with confidence scoring.
Aileth doesn't just find gaps — it distinguishes true compliance deficiencies from quality recommendations, so you know exactly what to fix first.
ISO 27001:2022 Annex A contains 93 controls across four themes: organisational, people, physical, and technological. Aileth assesses each one against explicit acceptance criteria — no aggregated scores, no hidden assumptions.
Full coverage of the ISO 27001:2022 control set. Every control assessed with per-criterion precision: PRESENT, PARTIAL, or MISSING.
Substantive LLM analysis of document content, deterministic structural checks against your IAM and role data, and cross-control contextual reasoning.
Policies, procedures, risk registers, role matrices, access reviews, audit reports — Aileth classifies and routes each document to the relevant controls automatically.
Aileth runs entirely on European infrastructure — no US cloud providers, no CLOUD Act exposure, no transatlantic transfers.
More importantly: we process your compliance documentation, but we never see it. Analysis is fully automated. No Aileth employee has access to your uploaded documents or your results. Your sensitive internal policies stay exactly that — internal.
The AI that powers the gap analysis is a small language model running on Scaleway's European infrastructure — not OpenAI, not Microsoft, not Google. Your documents never leave the EU, and are never used to train any model.
Aileth is a tool — but sometimes you need more than a tool. If you'd like us to help you structure your compliance documentation, review your existing policies together, or advise on your specific situation, that's available as a single consultancy day.
We work through your documentation set with you, identify the quickest wins, and make sure you're uploading the right material to get the most accurate gap analysis.
Enquire about a consultancy dayAileth is currently in private preview. Request early access and be among the first to run a comprehensive pre-audit on your ISO 27001 readiness.
Get in touch