SNAPOS.ORGONLINE
|
FRAMEWORKDIP-CORE-1.0
|
EU AI OFFICE510c3274
MANDATE INTEGRITYPROTOCOL ACTIVE
|
AUDIT@SNAPOS.ORG
ORCID0009-0000-6493-4599 · Marko Chalupa
ZENODODOI-registered publications
EU AI OFFICEExpert Forum · ID 510c3274
IT-SCHNITTSTELLEGovernance audit · DE
UNITED CODING20+ years production delivery
Gap analysis

Why existing standards are not enough

Current governance frameworks do two things well: they evaluate systems before deployment, and they analyze failures after they happen. The gap — the moment where execution actually occurs — is left unaddressed.

Standard / FrameworkWhat it addressesWhat it misses
EU AI Act (Art. 9, 17)Risk management, quality management, technical documentationWhether the authorized mandate still matches operational state after deployment
ISO/IEC 42001AI management system requirementsA mechanism for detecting mandate drift in live systems
Model risk management (EBA, ECB)Model validation, performance monitoringWhether the decision identity has changed without the model changing
SOC 2 / ISAE 3402Controls over service organization operationsDecision-level continuity and re-legitimation requirements
Monitoring dashboardsThreshold violations, latency, accuracy metricsWhether the decision being executed is still the decision that was authorized

This is not a criticism of existing frameworks. They address real and important concerns. The gap they leave is structural — it is the layer between approval and ongoing legitimacy that has not yet been formalized. That is the layer Decision Integrity defines. Read the full field definition →

Governance Gap Matrix
Control Area Standard Frameworks What They Achieve What SnapOS Adds Risk Management ✓ addressed Policies, controls, reviews Legitimacy under drift Monitoring ✓ addressed Alerts, observation Whether continuation is allowed Logging / Audit Trails ✓ addressed Records what happened Verifies if it should have happened Decision Continuity runtime legitimacy ✕ not formally defined No runtime mandate check Decision Integrity Closure, Re-legitimation, DIP, DASR SnapOS does not replace compliance. It closes the gap between approval and ongoing execution legitimacy.
Authority and research credentials
ORCID — Research Identity
0009-0000-6493-4599
Persistent identifier linking all SnapOS publications and framework specifications
Zenodo — DOI-Registered Publications
10 publications · Open access
DCF, DASR, GCCL, SSE, DIP and more — all citable, all timestamped
EU AI Office — Expert Forum
Contribution ID 510c3274
GCCL v0.1 submitted as candidate governance standard for AI capability and compliance assessment
United Coding GmbH & Co. KG
20+ years production delivery
Decision Integrity emerged from production systems that continued after their conditions changed
IT-Schnittstelle GmbH
Governance audit practice · DE
Decision architecture and structural accountability for regulated organizations
LinkedIn — Marko Chalupa
CTO & AI Architect · Mühltal
United Coding GmbH & Co. KG · SnapOS Foundation