Appendix A. Standards mapping

This appendix is the crosswalk auditors and compliance reviewers reach for first. Each BAGF section maps to the closest equivalent control in ISO/IEC 42001:2023, function or category in the NIST AI Risk Management Framework 1.0, article of the EU AI Act (Regulation (EU) 2024/1689), entry of the OWASP Top 10 for LLM Applications, and article of Vietnam’s Decree 13/2023/NĐ-CP. Where a column has no direct correspondence we use a dash. That means no specific clause maps cleanly, not that the topic is unaddressed by the standard.

Standards Mapping: Compliance review pending

The mapping in this appendix is Bizzi’s considered interpretation. Article and control numbers will be verified by an independent compliance specialist before BAGF v1.0 is cited in any formal submission. Contracts. Sector registrations. Regulatory filings.

Pillar I: AI organization

BAGF §	Bizzi control	ISO/IEC 42001	NIST AI RMF	EU AI Act	OWASP LLM	Decree 13/2023
I.1	Business alignment	A.5.2	GOVERN-1.1	Art. 9	.	.
I.2	Governance model (hub-and-spoke)	A.6.1	GOVERN-1.2	.	.	.
I.3	Governance oversight	A.5.1, A.6.1	GOVERN-2	Art. 17	.	.
I.4	Guiding values	A.5.2	GOVERN-3	.	.	.
I.5	Strategy	A.5.2	GOVERN-1, GOVERN-4	.	.	.
I.6	Roles and responsibilities (RACI)	A.6	GOVERN-1, GOVERN-2	.	.	.
I.7	Policies, standards, procedures	A.5.2, A.6.2	GOVERN-1	.	.	.
I.8	AI risk management. six-step	A.8	MAP, MEASURE, MANAGE	Art. 9	.	.
I.9	Continuous monitoring	A.8.3	MEASURE-3	Art. 15	.	.
I.10	Internal audit and red-team	A.9, A.10	MANAGE-4	.	.	.
I.11	Incident management	A.8.4	MANAGE-4	.	.	Art. 23
I.12	KPIs and monitoring	A.8.3	MEASURE-2, MEASURE-3	.	.	.
I.13	Reporting	A.8.3, A.9	GOVERN-4, MEASURE-4	.	.	.

Pillar II: Legal and regulatory

BAGF §	Bizzi control	ISO/IEC 42001	NIST AI RMF	EU AI Act	OWASP LLM	Decree 13/2023
II.1	Regulatory landscape	A.5.4	GOVERN-1.6	Art. 6, 9	.	entire decree
II.2	Legal considerations assessment	A.5.4	GOVERN-1.6	Art. 9	.	Art. 22
II.3	Data protection (Decree 13 PII redaction)	A.7.2	MAP-2	Art. 10	LLM06	Art. 4–19
II.4	Data residency	A.7.4	MAP-2	.	.	Art. 24, 25
II.5	Liability and risk distribution	A.6.3	GOVERN-2	Art. 14	.	Art. 19
II.6	Vendor risk and zero data retention	A.7.4	GOVERN-6	.	LLM05, LLM10	.
II.7	Intellectual property and output ownership	A.7.5	.	.	.	.
II.8	DPIA / ROPA	A.6.2	GOVERN-1.6	.	.	Art. 21, 22
II.9	Legal safeguards	A.6.3	GOVERN-6	.	.	Art. 23
II.10	Ongoing audits	A.9	MANAGE-4	.	.	Art. 21, 22
II.11	Emerging trends	A.10.2	GOVERN-1.6	Art. 6	.	.

Pillar III: Ethics, transparency, and explainability

BAGF §	Bizzi control	ISO/IEC 42001	NIST AI RMF	EU AI Act	OWASP LLM	Decree 13/2023
III.1	Accountability	A.6.2	GOVERN-2.1	Art. 13	.	.
III.2	Fairness and bias audit	A.7.3	MAP-1, MEASURE-2.11	Art. 10	.	.
III.3	Human-centricity (HITL / HOTL)	A.6.2	MAP-3.4	Art. 14	LLM09	Art. 19
III.4	Inclusivity (WCAG)	A.7.3	MAP-1	Art. 14	.	.
III.5	Cultural norms (Vietnam context)	A.7.3	MAP-1.6	.	.	.
III.6	Transparency in development (model and data cards)	A.6.2, A.7.1	GOVERN-1.4	Art. 11	.	.
III.7	Transparency in operations (confidence)	A.7.1	MEASURE-3	Art. 13, 50	.	.
III.8	Transparency in serving (explanation API)	A.6.2	GOVERN-4	Art. 13	.	.
III.9	Trade-offs	A.7.3	MAP-1.2	Art. 13	.	.
III.10	Grounded reasoning	A.7.3, A.8.2	MEASURE-2	Art. 13	.	.
III.11	Traceability and audit trail	A.6.2, A.8.4	MEASURE-3, MANAGE-4	Art. 12	.	.
III.12	Right to explanation	A.6.2	GOVERN-4	Art. 86	.	Art. 14, 19

Pillar IV: Data, AIOps, and infrastructure

BAGF §	Bizzi control	ISO/IEC 42001	NIST AI RMF	EU AI Act	OWASP LLM	Decree 13/2023
IV.1	Data systems architecture	A.7.2, A.7.4	MAP-2	.	.	.
IV.2	Data classification	A.7.2	MAP-2.3	.	.	Art. 7
IV.3	Data handling (encryption, retention, DSAR)	A.7.2	MAP-2	.	.	Art. 7–14
IV.4	Data quality	A.7.2, A.7.3	MAP-2, MEASURE-2.6	Art. 10	LLM03	.
IV.5	ADLC overview	A.8	MEASURE-2, MANAGE-2	Art. 9, 17	.	.
IV.6	ADLC stage 1. design	A.8.1, A.6.2	MAP-2.3	Art. 11	.	.
IV.7	ADLC stage 2. evaluation (LLM-as-judge)	A.8.2, A.9	MEASURE-2.5	Art. 15	.	.
IV.8	ADLC stage 3. testing (A/B and shadow)	A.8.1, A.8.2	MEASURE-2, MEASURE-4	Art. 17	.	.
IV.9	ADLC stage 4. deployment (AI gateway)	A.8.1, A.8.4	MANAGE-2.4	Art. 15	LLM05	.
IV.10	ADLC stage 5. monitoring (drift)	A.8.3, A.10	MEASURE-3, MANAGE-2.4	Art. 15	.	.
IV.11	Multi-agent architecture	A.8	MAP-3, MEASURE-2	Art. 9, 15	LLM08	.
IV.12	Model Context Protocol (MCP)	A.7.4, A.8.1	MAP-3.4, MEASURE-2.7	.	LLM06, LLM07, LLM08	.
IV.13	Agentic state management	A.8.1, A.8.4	MEASURE-2.7, MANAGE-2	.	LLM04, LLM08	.
IV.14	Agentic observability	A.6.2, A.8.3	MEASURE-3, MEASURE-4	Art. 12	.	.

Pillar V: AI security

BAGF §	Bizzi control	ISO/IEC 42001	NIST AI RMF	EU AI Act	OWASP LLM	Decree 13/2023
V.1	Threat model	A.7.1	MAP-1, MEASURE-1	Art. 9	LLM01–10	.
V.2	OWASP LLM mapping	A.7.4	MAP, MEASURE	.	LLM01–10	.
V.3	Prompt injection	A.8.4	MEASURE-2.7, MANAGE-2.4	Art. 15	LLM01	.
V.4	Training data poisoning	A.7.2, A.8.1	MAP-2.2, MEASURE-2.10	Art. 10	LLM03	.
V.5	Data catalog and lineage	A.7.2	MAP-2.2, MEASURE-2	.	LLM03, LLM05	.
V.6	Model management security	A.8.1, A.7.4	.	.	LLM05, LLM10	.
V.7	Sensitive information disclosure	A.7.2	.	.	LLM06	Art. 4, 7
V.8	Output handling	A.8.2	.	.	LLM02	.
V.9	Agent RBAC	A.6.2, A.8.1	MAP-3.4, MANAGE-2	.	LLM07, LLM08	.
V.10	Rate limiting / denial of wallet	A.8.4	.	.	LLM04	.
V.11	Kill-switch	A.8.4	MANAGE-4	.	LLM04	.
V.12	Incident response	A.8.4	MANAGE-3, MANAGE-4	.	.	Art. 23
V.13	Platform security (ISMS)	A.7. A.8	GOVERN, MANAGE	.	.	.

Reading notes

• A dash marks the absence of a direct mapping. The topic might still be addressed by the standard at a higher level of abstraction. No specific article or control corresponds.
• ISO/IEC 42001 references follow the 2023 edition.
• EU AI Act references follow Regulation (EU) 2024/1689.
• NIST AI RMF references follow version 1.0 (January 2023).
• OWASP Top 10 for LLM Applications references follow the current edition (updated annually).
• Decree 13/2023 references follow Decree 13/2023/NĐ-CP, in force from 1 July 2023.