OPEN FRAMEWORKS
PRIVUS & ATAL
Two open frameworks from Elytra Security — one for privacy capability, one for AI accountability. Both published. Both free.
PRIVUS
A privacy capability model
that tells you the truth
about where you stand.
PRIVUS is Elytra’s privacy capability model — eight operational domains grounded in DPDPA, ISO 27701, ISO 27001, and GDPR.
Notable: PRIVUS was released within days of the DPDPA final rules being notified — because the work was already done. Elytra has been building products and frameworks aligned to DPDPA since the company’s founding in October 2024.
Eight Domains
Governance & Accountability · RoPA, Data Mapping & Lawful Basis · Consent & Preferences · Individual Rights & Request Handling · Security, Telemetry & Breach-Readiness · Vendor & Processor Oversight · Retention, Archival & Deletion · Privacy-by-Design
ATAL
AI accountability that holds up
when someone looks closely.
ATAL — AI Traceability & Accountability Ledger — is a vendor-neutral technical standard defining requirements for traceability, accountability, and evidentiary integrity of AI systems, assessed through externally observable behaviour. Steward: Elytra Security. Currently at v0.9 public peer review.
ATAL answers accountability questions with a technical standard — not principles, not guidelines, but specific verifiable requirements.