ACRE beta: automated crawl results, depth scopes, and reports require independent validation.
Back to ACRE

Trust Center

Compliance Standards & Sources

ACRE does not invent compliance requirements. Every determination is grounded in published U.S. laws, regulations, technical standards, and agency guidance. This page is generated directly from ACRE's source registry — when a new source is added, it appears here automatically. Explore the 122 sources across 16 categories that power ACRE's checks.

Registry: ACRE Legal Source Registry (ACRE-SR-US-WEB-2026.06-v2) · generated 2026-06-11T00:00:00.000Z · United States web, mobile-web, document, privacy, security, consumer-protection, and sector-specific website compliance signals

How ACRE verifies findings

1. ACRE collects real evidence

ACRE crawls the live site with a real browser engine and captures verifiable evidence — DOM snapshots, screenshots, response headers, detected text, and timestamps — for every page it can reach.

2. Evidence is matched to a rule

Each observation is evaluated against ACRE's rule library. Deterministic checks (machine-confirmed) carry direct evidence; heuristic checks are flagged for human verification rather than asserted as fact.

3. Rules cite an authoritative source

Every rule references an entry in the source registry below — a specific law, regulation, technical standard, or agency guidance — so a finding can be traced to the requirement it implements.

4. Confidence is reported honestly

ACRE separates 'verified by ACRE', 'human verification required', and 'insufficient evidence'. A low-confidence finding with real evidence is never presented as a confirmed legal conclusion.

How findings are mapped to sources

Each automated check declares the framework it implements and the registry source it cites. Open any source card below to see the exact checks mapped to it. Findings carry a reference status of mapped, partially mapped, or needs source mapping so reviewers always know how strongly a finding is tied to a published requirement.

Which categories sources belong to

Sources are organized by compliance category — accessibility, privacy, security, consumer protection, and more. Use the category filters below to see how many sources underpin each area of ACRE's analysis.

Why you can trust ACRE's determinations

Findings are evidence-backed, traceable to an authoritative source, and conservative by design — ACRE will not certify compliance without sufficient coverage and evidence. This catalog is the single source of truth; nothing on this page is hardcoded.

During every audit ACRE evaluates the full source library and determines which standards apply to the website before generating findings.

Source library

122

Authoritative sources

25

Frameworks

63

Automated checks

16

Categories

8

PDF references

Showing 1–3 of 122 matching sources.

Accessibility
25 checks
Active

WCAG 2.2 Recommendation

W3C

Technical Standard published by W3C.

WCAG 2.2
Privacy
8 checks
Active

FTC Privacy and Security Business Guidance

Federal Trade Commission

Agency Guidance published by Federal Trade Commission.

ACRE Privacy HeuristicFTC Privacy GuidanceFTC Privacy Guidance / Employment Review+2
Consumer Protection
4 checks
Active

FTC Dot Com Disclosures

Federal Trade Commission

Agency Guidance published by Federal Trade Commission.

FTC Consumer Protection / Dot Com DisclosuresFTC Consumer Protection GuidanceFTC Dot Com Disclosures
1 / 41