What
Create docs/compliance/iso-27001.md documenting how logger_system features map to ISO/IEC 27001 controls, and link it from the README's compliance section.
- Current: README mentions ISO 27001 in the feature list ("Compliance Support: GDPR, PCI DSS, ISO 27001, SOC 2") but no dedicated mapping document exists
- Expected: A control-by-control mapping document (similar to
monitoring_system/docs/compliance/iso-mapping.md) plus a README link in a "Compliance" section
- Scope: docs only, no code changes
Why
- Closes a gap in common_system#645 (ecosystem-wide ISO compliance EPIC)
- Enterprise adopters request control-level evidence at procurement, not just feature claims
- Brings logger_system to parity with monitoring_system and database_system, which already publish compliance docs
Where
- New file:
docs/compliance/iso-27001.md
- Modify:
README.md (add a "Compliance" section linking to the new doc)
How
Technical Approach
- Reference the structure of
monitoring_system/docs/compliance/iso-mapping.md and database_system/docs/compliance/ISO_27001.md for consistency
- Cover ISO 27001 Annex A controls relevant to logging:
- Add README "Compliance" section with link
Acceptance Criteria
Part of #645 (kcenon/common_system).
What
Create
docs/compliance/iso-27001.mddocumenting how logger_system features map to ISO/IEC 27001 controls, and link it from the README's compliance section.monitoring_system/docs/compliance/iso-mapping.md) plus a README link in a "Compliance" sectionWhy
Where
docs/compliance/iso-27001.mdREADME.md(add a "Compliance" section linking to the new doc)How
Technical Approach
monitoring_system/docs/compliance/iso-mapping.mdanddatabase_system/docs/compliance/ISO_27001.mdfor consistencyAcceptance Criteria
docs/compliance/iso-27001.mdexists with control-by-control tablePart of #645 (kcenon/common_system).