Grading Framework

The Gradaris Governance Score (GGS) is a composited A–F grade derived from three tiers of assessment covering 12 criteria. Every score is accompanied by a cryptographic integrity hash, a confidence rating per tier, and direct mapping to EU AI Act articles.

Three-Tier Methodology

The GGS methodology is tiered deliberately. Each tier has a different evidence type, confidence level, and failure behavior. The tiers are not averaged equally — they are hierarchical. A critical failure in Tier 1 caps the maximum achievable score regardless of Tier 2 and Tier 3 performance.

Tier 1 · Verified Controls
Evidence type: Binary pass/fail from system logs Confidence: High Failure cap: ≤59 (Grade D or lower)

Tier 1 criteria are non-negotiable. Any single failure in this tier forces a Grade D or lower regardless of Tier 2 and Tier 3 performance.

T1.1

Audit log integrity

All agent runs produce an immutable, tamper-evident log entry. SHA-256 hash verified on read. Log chain continuity confirmed.

T1.2

Human override capability

A verified mechanism exists to halt, override, or modify agent outputs. Override event is logged and attributed.

T1.3

Data lineage traceable

Training data sources and versions are documented. Input data schema is captured per run. Sufficient for Article 10 review.

T1.4

Version control active

Model version, prompt version, and configuration are pinned and logged per run. Rollback capability confirmed.

Tier 2 · Empirical Benchmarks
Evidence type: Statistical tests vs versioned test suites Confidence: Medium-high Reproducible: Yes — independently verifiable

Tier 2 results are stable and independently verifiable. Benchmark suites are versioned and published. Results are not subject to assessor interpretation.

T2.1

Bias & fairness benchmark

Performance parity tested across protected attribute groups using the published Gradaris Fairness Suite v2. Disparate impact ratio calculated.

T2.2

Robustness under distribution shift

Agent performance tested against out-of-distribution inputs from the Gradaris OOD benchmark set. Performance degradation beyond acceptable thresholds results in a failing result.

T2.3

Adversarial input resistance

Common adversarial prompt patterns and injection attempts from the Gradaris Red Teaming Suite. A minimum pass rate is required; the threshold is calibrated to the agent's risk classification.

T2.4

Output calibration

Confidence scores are assessed for calibration quality. Overconfident outputs in high-stakes decisions are flagged.

Tier 3 · Structured Assessment
Evidence type: Fixed rubric, weighted sub-criteria Confidence: Medium Process: Fully auditable

Tier 3 is the most interpretive tier but remains structured. The rubric is fixed and versioned. Assessor decisions are documented with rationale at each sub-criterion.

T3.1

Risk management documentation

Risk identification, residual risk analysis, and mitigation documentation quality. Weighted: Article 9 EU AI Act.

T3.2

Transparency and explainability

Quality of user-facing disclosures, decision explanations, and capability limitation notices. Weighted: Article 13.

T3.3

Human oversight arrangements

Documented oversight procedures, escalation paths, and human review trigger conditions. Weighted: Article 14.

T3.4

Incident response readiness

Incident detection, reporting, and remediation procedures. Regulator notification capability.

Grade Definitions

The composite GGS score is calculated as a weighted sum of all three tiers, subject to the Tier 1 cap rule. The lowest grades reflect either a Tier 1 failure or severe gaps across multiple tiers.

GradeScoreTier 1 statusRegulatory interpretation
A 90–100 All controls verified Exemplary governance. Audit-ready evidence package. Suitable for proactive regulatory submission.
B 75–89 All controls verified Good standing. Minor documentation or benchmark gaps. Remediation recommended within 90 days.
C 60–74 All controls verified Acceptable baseline. Identified improvements required before regulatory submission. 30-day remediation plan expected.
D 45–59 ≥1 control failure At risk. Tier 1 failure detected or significant multi-tier gaps. Urgent remediation required. Not suitable for regulated deployment.
F 0–44 Critical failure Non-compliant. Multiple critical failures. Deployment should be suspended pending full remediation and re-assessment.

A Grade D or F does not necessarily mean an agent is non-functional — it means governance evidence is insufficient for audit purposes. Many agents operate without scoring at all. A Grade D is still a significant improvement over zero visibility.

Cryptographic Integrity

Every GGS assessment report carries a SHA-256 integrity hash. This hash is computed over a canonical JSON object containing the assessment methodology version, all input signals, criterion scores, tier weights, and the final composite score.

If any element of the assessment changes — including methodology version — the hash changes. This makes every report tamper-evident by design.

What the hash covers

  • Methodology version identifier (e.g. current methodology version)
  • Agent identifier and assessment timestamp
  • All Tier 1 control results (binary)
  • All Tier 2 benchmark results (numerical)
  • All Tier 3 sub-criterion scores and assessor rationale hashes
  • Tier weights used in composite calculation
  • Final composite score and grade

Example integrity hash

ggs:vX.Y.Z:sha256:<64-character hex digest>

The hash is included in every PDF evidence package and can be independently verified by any party with access to the Gradaris Verification API — including regulators, auditors, and your legal team.

EU AI Act Article Mapping

Each GGS criterion is mapped to one or more EU AI Act articles. When you download an evidence package, the relevant article references are included alongside the criterion result, making it straightforward to present evidence to a regulator by article number.

CriterionEU AI Act articleObligation summary
T1.1 Audit log integrityArticle 12Automatic recording of events throughout the lifecycle of high-risk AI systems
T1.2 Human overrideArticle 14Human oversight measures — ability to intervene in or halt operation
T1.3 Data lineageArticle 10Data and data governance — training, validation, testing data requirements
T1.4 Version controlArticle 9, 17Risk management system; quality management system requirements
T2.1 Bias benchmarkArticle 10, 15Data governance; accuracy, robustness, and cybersecurity
T3.1 Risk documentationArticle 9Risk management system — identification, analysis, estimation of risk
T3.2 TransparencyArticle 13Transparency and provision of information to deployers
T3.3 Human oversightArticle 14Human oversight — design and operational measures
← Previous
Quick Start
Next →
Badges API