No. Most compliance programs have specific requirements that are either non-technical in nature (i.e. a process), or that cannot be audited for using the cloud provider APIs. CloudSploit works to ensure that any applicable controls that can be audited are included in the reports, but the changing compliance landscape may result in some checks being missed. We encourage users to always supplement CloudSploit’s compliance reports with a professional compliance review from an accredited auditor.