Frameworks

The frameworks we support

ThemisIQ is built on one principle: collect your data once, comply everywhere. The same verified inputs map across the frameworks below — from California’s SB 253 to the EU’s CSRD, from IFRS S2 to the AI and cyber regimes — so you report under each without re-entering anything.

Climate & Emissions

Built on the GHG Protocol and structured for the major climate-disclosure regimes.

GHG Protocol
The global accounting standard for corporate greenhouse-gas inventories.
Your Scope 1, 2 and 3 inventory is built on the GHG Protocol Corporate Standard, audit-trail first.
California SB 253
Climate Corporate Data Accountability Act — mandatory Scope 1–3 disclosure for large companies doing business in California.
One-click, pre-filled SB 253 emissions export from your verified inventory.
California SB 261
Climate-Related Financial Risk Act — biennial climate risk reporting aligned to TCFD.
TCFD-aligned climate financial-risk report ready for SB 261 filers.
IFRS S2
The ISSB global baseline for climate-related financial disclosures.
Climate disclosures structured to the IFRS S2 / ISSB requirements.
ESRS E1
The climate-change standard within the EU’s CSRD reporting framework.
ESRS E1 climate datapoints mapped directly from your GHG inventory.
CDP
The global environmental disclosure system used by investors and buyers.
Export-ready answers for CDP Climate, including the C6 emissions module.
TCFD
The Task Force recommendations now consolidated under the ISSB.
Governance, strategy, risk and metrics organized along the four TCFD pillars.
SBTi
Science Based Targets initiative — corporate emissions-reduction target setting.
Track reductions against your science-based targets over time.

Corporate Sustainability Reporting

Double materiality and the disclosure standards behind EU and global ESG reporting.

CSRD / ESRS
The EU Corporate Sustainability Reporting Directive and its European Sustainability Reporting Standards.
Double-materiality assessment plus ESRS datapoints across the topical standards.
GRI Standards
The most widely used global standards for sustainability reporting.
GRI Universal and topic-standard disclosures generated from your data.
EcoVadis
Business sustainability ratings used across supply chains.
Evidence and scoring organized for EcoVadis assessments.

Supply Chain & Due Diligence

Value-chain emissions, supplier data and human-rights risk.

CSDDD
The EU Corporate Sustainability Due Diligence Directive on value-chain human-rights and environmental impacts.
Value-chain due diligence with supplier and human-rights risk mapping.
ESRS S2
Workers in the value chain — the CSRD standard for upstream/downstream labour impacts.
Workers-in-the-value-chain disclosures from your supplier data.

People & Workforce

Own-workforce metrics, pay equity and human-capital disclosure.

ESRS S1
Own workforce — the CSRD standard covering your direct employees.
Headcount, DEI, health & safety and pay metrics mapped to ESRS S1.
GRI 400 series
GRI social topic standards (401–410) on employment, labour and diversity.
Employment, labour-relations and diversity disclosures.
Pay Transparency
Emerging gender pay-gap and pay-data reporting requirements (EU Pay Transparency Directive, CA pay data).
Gender pay-gap analysis and California pay-data reporting support.

AI Governance

Risk classification, model inventory and AI management systems.

EU AI Act
The EU’s risk-based regulation of artificial-intelligence systems.
Risk classification and conformity-readiness across your AI systems.
NIST AI RMF
The NIST AI Risk Management Framework (Govern, Map, Measure, Manage).
Govern / Map / Measure / Manage applied across your model inventory.
ISO/IEC 42001
The international standard for AI management systems.
AI management-system controls and documentation.

Cyber Governance

Security posture, ICT resilience and incident management.

NIST CSF
The NIST Cybersecurity Framework (Identify, Protect, Detect, Respond, Recover).
Posture tracking across all six CSF functions.
ISO/IEC 27001
The international standard for information-security management systems.
ISMS controls and a maintained Statement of Applicability.
NIS2
The EU directive raising cybersecurity requirements across essential sectors.
Risk-management measures and incident-reporting workflows.
DORA
The EU Digital Operational Resilience Act for financial entities.
ICT risk and operational-resilience controls for financial entities.

Don’t see your framework?

We map to 30+ reporting frameworks and add more as regulations evolve. Tell us what you report under and we’ll confirm coverage.

Talk to us