How to complete them
Navigate to a project in scope, open Governance mode, and click the framework. Locate any evidence-based rule and click into it to upload a document or paste a link.Workspace-level vs. project-level rules
Most rules apply at the project level — each project must satisfy them individually. However, some rules apply at the workspace level and only need to be completed once. For example, a “Banned AI use cases” rule defines organization-wide policy. Rather than uploading this document for every project, you upload it once at the workspace level and it satisfies the rule across all projects. The scope of each rule (workspace or per-project) is indicated in the compliance checklist.Renewal cadence
Some evidence-based rules have a renewal cadence — for example, an annual security audit policy. When a policy expires, the rule reverts to incomplete and the responsible team member is notified to re-upload. You configure the renewal cadence when creating a custom evidence-based rule.Custom evidence-based rules
When building a custom framework, you can define your own evidence-based rules. Click New rule and specify:- A name and description
- Scope — workspace-wide or per-project
- Renewal cadence — leave blank if the rule doesn’t expire