🔄 Rename HAISVS to HAARF in regulatory framework mappings

- Update all 9 regulatory framework mapping JSON files
- Replace all 'haaisvs' references with 'haarf' for consistent branding
- Maintain framework alignment across FDA, EU AI Act, Health Canada, NIST, OWASP, ISO, UK MHRA, WHO, and IMDRF mappings
- No functional changes to mapping logic or coverage statistics
- Ensures unified HAARF v1.0 terminology throughout project

Author: jim-schwoebel

HAARF/1.0/mappings/eu-ai-act-mapping.json

@@ -1,6 +1,6 @@
 {
   "mapping_info": {
-    "haaisvs_version": "1.0",
+    "haarf_version": "1.0",
     "target_framework": "EU Artificial Intelligence Act",
     "target_version": "2024 Implementation",
     "mapping_date": "2025-01-10",
@@ -10,72 +10,72 @@
   },
   "mappings": [
     {
-      "haaisvs_requirement": "1.1.1",
-      "haaisvs_description": "Three-factor risk assessment (clinical function, autonomy, data sensitivity)",
+      "haarf_requirement": "1.1.1",
+      "haarf_description": "Three-factor risk assessment (clinical function, autonomy, data sensitivity)",
       "target_requirements": ["Article 6 - High-Risk AI Systems", "Annex III - Healthcare Applications"],
       "alignment_type": "direct",
       "notes": "EU AI Act requires risk classification - HAARF three-factor approach directly supports high-risk determination",
       "compliance_evidence": "Risk classification documentation demonstrating healthcare AI agent meets high-risk criteria under Annex III"
     },
     {
-      "haaisvs_requirement": "1.3.1",
-      "haaisvs_description": "Continuous clinical performance monitoring",
+      "haarf_requirement": "1.3.1",
+      "haarf_description": "Continuous clinical performance monitoring",
       "target_requirements": ["Article 61 - Post-market monitoring", "Article 72 - Reporting obligations"],
       "alignment_type": "direct",
       "notes": "Direct implementation of EU AI Act post-market monitoring requirements for healthcare AI",
       "compliance_evidence": "Post-market monitoring system, incident reporting procedures, and performance tracking documentation"
     },
     {
-      "haaisvs_requirement": "2.1.1",
-      "haaisvs_description": "Complete data lineage and provenance tracking",
+      "haarf_requirement": "2.1.1",
+      "haarf_description": "Complete data lineage and provenance tracking",
       "target_requirements": ["Article 10 - Data and data governance", "Article 15 - Accuracy requirements"],
       "alignment_type": "direct",
       "notes": "EU AI Act data governance requirements fully addressed by HAARF data lineage tracking",
       "compliance_evidence": "Data governance documentation, training data quality assurance, and bias monitoring systems"
     },
     {
-      "haaisvs_requirement": "2.3.1",
-      "haaisvs_description": "Explainable AI with clinically meaningful insights",
+      "haarf_requirement": "2.3.1",
+      "haarf_description": "Explainable AI with clinically meaningful insights",
       "target_requirements": ["Article 13 - Transparency obligations", "Article 86 - AI literacy"],
       "alignment_type": "direct",
       "notes": "EU transparency requirements for high-risk AI systems directly supported by HAARF XAI",
       "compliance_evidence": "AI system transparency documentation, user information provisions, and explainability validation"
     },
     {
-      "haaisvs_requirement": "3.1.1",
-      "haaisvs_description": "Healthcare-specific adversarial robustness testing",
+      "haarf_requirement": "3.1.1",
+      "haarf_description": "Healthcare-specific adversarial robustness testing",
       "target_requirements": ["Article 15 - Accuracy, robustness and cybersecurity", "Article 43 - Conformity assessment"],
       "alignment_type": "direct",
       "notes": "EU robustness requirements enhanced by HAARF healthcare-specific adversarial testing",
       "compliance_evidence": "Robustness testing protocols, adversarial attack resistance validation, cybersecurity assessment"
     },
     {
-      "haaisvs_requirement": "4.1.1",
-      "haaisvs_description": "Clinical accountability frameworks for healthcare professionals",
+      "haarf_requirement": "4.1.1",
+      "haarf_description": "Clinical accountability frameworks for healthcare professionals",
       "target_requirements": ["Article 14 - Human oversight", "Article 26 - User obligations"],
       "alignment_type": "direct",
       "notes": "EU human oversight requirements directly implemented through HAARF clinical accountability",
       "compliance_evidence": "Human oversight procedures, clinical professional competency requirements, override capabilities"
     },
     {
-      "haaisvs_requirement": "7.1.1",
-      "haaisvs_description": "Training data representativeness and demographic parity",
+      "haarf_requirement": "7.1.1",
+      "haarf_description": "Training data representativeness and demographic parity",
       "target_requirements": ["Article 10 - Data governance", "Article 7 - Amendments to Annex III"],
       "alignment_type": "direct",
       "notes": "EU data quality and bias prevention requirements enhanced by HAARF population equity measures",
       "compliance_evidence": "Training data diversity analysis, demographic representation validation, bias mitigation strategies"
     },
     {
-      "haaisvs_requirement": "8.1.1",
-      "haaisvs_description": "Role-based tool access controls for healthcare AI agents",
+      "haarf_requirement": "8.1.1",
+      "haarf_description": "Role-based tool access controls for healthcare AI agents",
       "target_requirements": ["Article 16 - Risk management system", "Article 43 - Conformity assessment"],
       "alignment_type": "partial",
       "notes": "EU risk management covers general system risks - HAARF C8 adds specific tool integration controls",
       "compliance_evidence": "Tool access control matrix, integration risk assessment, clinical appropriateness validation"
     },
     {
-      "haaisvs_requirement": "8.3.1",
-      "haaisvs_description": "Medical device integration maintaining classification integrity",
+      "haarf_requirement": "8.3.1",
+      "haarf_description": "Medical device integration maintaining classification integrity",
       "target_requirements": ["Medical Device Regulation (MDR) 2017/745", "Article 43 - Conformity assessment"],
       "alignment_type": "direct",
       "notes": "Tool integration with EU MDR devices requires careful classification management under both AI Act and MDR",
@@ -100,7 +100,7 @@
     }
   },
   "coverage_analysis": {
-    "total_haaisvs_requirements": 279,
+    "total_haarf_requirements": 279,
     "mapped_to_eu_ai_act": 198,
     "direct_alignment": 156,
     "partial_alignment": 42,

HAARF/1.0/mappings/fda-mapping.json

@@ -1,6 +1,6 @@
 {
   "mapping_info": {
-    "haaisvs_version": "1.0",
+    "haarf_version": "1.0",
     "target_framework": "FDA Digital Health Guidance & Medical Device Regulations",
     "target_version": "2024 Updates",
     "mapping_date": "2025-01-10",
@@ -10,80 +10,80 @@
   },
   "mappings": [
     {
-      "haaisvs_requirement": "1.1.1",
-      "haaisvs_description": "Three-factor risk assessment (clinical function, autonomy, data sensitivity)",
+      "haarf_requirement": "1.1.1",
+      "haarf_description": "Three-factor risk assessment (clinical function, autonomy, data sensitivity)",
       "target_requirements": ["21 CFR 814.20(b)(1)", "Digital Health Guidance v1.0 Section 3.2"],
       "alignment_type": "direct",
       "notes": "FDA requires risk assessment for medical device classification - HAARF three-factor approach directly supports FDA Class determination",
       "compliance_evidence": "Risk assessment documentation showing clinical function analysis, autonomy level classification, and data sensitivity evaluation"
     },
     {
-      "haaisvs_requirement": "1.2.1",
-      "haaisvs_description": "FDA-style PCCP implementation for high-risk AI agents",
+      "haarf_requirement": "1.2.1",
+      "haarf_description": "FDA-style PCCP implementation for high-risk AI agents",
       "target_requirements": ["FDA PCCP Guidance 2023", "21 CFR 814.39"],
       "alignment_type": "direct",
       "notes": "Direct implementation of FDA PCCP requirements for AI/ML medical devices",
       "compliance_evidence": "PCCP documentation including modification types, validation protocols, performance criteria, and change control procedures"
     },
     {
-      "haaisvs_requirement": "1.3.1",
-      "haaisvs_description": "Continuous clinical performance monitoring",
+      "haarf_requirement": "1.3.1",
+      "haarf_description": "Continuous clinical performance monitoring",
       "target_requirements": ["FDA Real-World Performance Study Guidance", "21 CFR 814.82"],
       "alignment_type": "direct", 
       "notes": "Supports FDA post-market surveillance and real-world performance monitoring requirements",
       "compliance_evidence": "Clinical performance monitoring plan, statistical analysis protocols, and performance degradation alert systems"
     },
     {
-      "haaisvs_requirement": "2.1.2",
-      "haaisvs_description": "Health Canada SGBA+ documentation and bias assessment",
+      "haarf_requirement": "2.1.2",
+      "haarf_description": "Health Canada SGBA+ documentation and bias assessment",
       "target_requirements": ["FDA Diversity Action Plans", "FDA Medical Device Cybersecurity Guidance"],
       "alignment_type": "partial",
       "notes": "FDA diversity requirements less comprehensive than Health Canada SGBA+ but HAARF addresses both",
       "compliance_evidence": "Demographic diversity analysis, bias assessment documentation, and mitigation strategies"
     },
     {
-      "haaisvs_requirement": "2.3.1", 
-      "haaisvs_description": "Explainable AI with clinically meaningful insights",
+      "haarf_requirement": "2.3.1", 
+      "haarf_description": "Explainable AI with clinically meaningful insights",
       "target_requirements": ["FDA Software Pre-Cert Guidance", "21 CFR 820.30"],
       "alignment_type": "direct",
       "notes": "FDA design controls require understanding of software function - XAI supports clinical validation requirements",
       "compliance_evidence": "XAI implementation documentation, clinical validation of explanations, healthcare professional usability testing"
     },
     {
-      "haaisvs_requirement": "3.1.1",
-      "haaisvs_description": "Healthcare-specific adversarial robustness testing", 
+      "haarf_requirement": "3.1.1",
+      "haarf_description": "Healthcare-specific adversarial robustness testing", 
       "target_requirements": ["FDA Medical Device Cybersecurity Guidance", "21 CFR 820.30(g)"],
       "alignment_type": "partial",
       "notes": "FDA cybersecurity guidance covers general threats - HAARF adds AI-specific adversarial testing",
       "compliance_evidence": "Adversarial testing protocols, robustness validation results, and threat model documentation"
     },
     {
-      "haaisvs_requirement": "4.1.1",
-      "haaisvs_description": "Clinical accountability frameworks for healthcare professionals",
+      "haarf_requirement": "4.1.1",
+      "haarf_description": "Clinical accountability frameworks for healthcare professionals",
       "target_requirements": ["FDA Human Factors Guidance", "21 CFR 820.30(h)"],
       "alignment_type": "direct", 
       "notes": "FDA human factors requirements directly supported by HAARF clinical accountability frameworks",
       "compliance_evidence": "Clinical oversight procedures, healthcare professional competency requirements, and accountability documentation"
     },
     {
-      "haaisvs_requirement": "8.1.1",
-      "haaisvs_description": "Role-based tool access controls for healthcare AI agents",
+      "haarf_requirement": "8.1.1",
+      "haarf_description": "Role-based tool access controls for healthcare AI agents",
       "target_requirements": ["FDA Medical Device Interoperability Guidance", "21 CFR 820.30"],
       "alignment_type": "direct",
       "notes": "Critical FDA priority - tool access controls essential for medical device integration safety",
       "compliance_evidence": "Tool authorization matrix, clinical appropriateness validation, and access control audit trails"
     },
     {
-      "haaisvs_requirement": "8.3.1",
-      "haaisvs_description": "FDA-regulated medical device integration maintaining classification integrity", 
+      "haarf_requirement": "8.3.1",
+      "haarf_description": "FDA-regulated medical device integration maintaining classification integrity", 
       "target_requirements": ["FDA Medical Device Interoperability Guidance", "21 CFR 807"],
       "alignment_type": "direct",
       "notes": "Directly addresses FDA's highest priority concern - tool integration without altering device classification",
       "compliance_evidence": "Device classification impact analysis, interoperability validation, safety function verification"
     },
     {
-      "haaisvs_requirement": "8.7.1",
-      "haaisvs_description": "Regulatory classification analysis for tool combinations",
+      "haarf_requirement": "8.7.1",
+      "haarf_description": "Regulatory classification analysis for tool combinations",
       "target_requirements": ["FDA Device Classification", "510(k) Guidance", "Combination Product Guidance"],
       "alignment_type": "direct",
       "notes": "Essential for determining correct FDA submission pathway for tool-enabled agents",
@@ -113,7 +113,7 @@
     }
   },
   "coverage_analysis": {
-    "total_haaisvs_requirements": 279,
+    "total_haarf_requirements": 279,
     "mapped_to_fda": 234,
     "direct_alignment": 185,
     "partial_alignment": 49,

HAARF/1.0/mappings/health-canada-mapping.json

@@ -1,6 +1,6 @@
 {
   "mapping_info": {
-    "haaisvs_version": "1.0",
+    "haarf_version": "1.0",
     "target_framework": "Health Canada Sex- and Gender-Based Analysis Plus (SGBA+) & Medical Device Regulations",
     "target_version": "2024 AI/ML Guidance",
     "mapping_date": "2025-01-10",
@@ -10,72 +10,72 @@
   },
   "mappings": [
     {
-      "haaisvs_requirement": "1.1.4",
-      "haaisvs_description": "SaMD risk mapping with four-tier classification system",
+      "haarf_requirement": "1.1.4",
+      "haarf_description": "SaMD risk mapping with four-tier classification system",
       "target_requirements": ["Health Canada SaMD Guidance", "Medical Device Regulations (MDR)"],
       "alignment_type": "direct",
       "notes": "Health Canada SaMD classification directly supported by HAARF four-tier risk mapping",
       "compliance_evidence": "SaMD classification documentation, risk categorization evidence, Health Canada pathway determination"
     },
     {
-      "haaisvs_requirement": "2.1.2",
-      "haaisvs_description": "Health Canada SGBA+ documentation and bias assessment",
+      "haarf_requirement": "2.1.2",
+      "haarf_description": "Health Canada SGBA+ documentation and bias assessment",
       "target_requirements": ["SGBA+ Framework", "Health Canada Guidance Document on AI/ML"],
       "alignment_type": "direct",
       "notes": "Direct implementation of Health Canada SGBA+ requirements with enhanced intersectional analysis",
       "compliance_evidence": "SGBA+ analysis documentation, demographic diversity assessment, intersectional bias evaluation"
     },
     {
-      "haaisvs_requirement": "1.3.4",
-      "haaisvs_description": "Clinical performance monitoring with Health Canada SGBA+ compliance",
+      "haarf_requirement": "1.3.4",
+      "haarf_description": "Clinical performance monitoring with Health Canada SGBA+ compliance",
       "target_requirements": ["Post-market surveillance requirements", "SGBA+ monitoring obligations"],
       "alignment_type": "direct",
       "notes": "Continuous SGBA+ compliance monitoring ensures maintained performance across diverse populations",
       "compliance_evidence": "Population-stratified performance monitoring, SGBA+ compliance tracking, demographic outcome analysis"
     },
     {
-      "haaisvs_requirement": "7.1.1",
-      "haaisvs_description": "Training data representativeness with comprehensive demographic coverage",
+      "haarf_requirement": "7.1.1",
+      "haarf_description": "Training data representativeness with comprehensive demographic coverage",
       "target_requirements": ["SGBA+ Data Requirements", "Health Canada Diversity Guidelines"],
       "alignment_type": "enhanced",
       "notes": "HAARF extends Health Canada SGBA+ with enhanced intersectional analysis and global health considerations",
       "compliance_evidence": "Enhanced demographic representation analysis, intersectional bias assessment, vulnerable population coverage"
     },
     {
-      "haaisvs_requirement": "7.2.1",
-      "haaisvs_description": "Algorithmic bias detection with multi-metric fairness assessment",
+      "haarf_requirement": "7.2.1",
+      "haarf_description": "Algorithmic bias detection with multi-metric fairness assessment",
       "target_requirements": ["SGBA+ Bias Detection", "Health Equity Framework"],
       "alignment_type": "enhanced",
       "notes": "HAARF multi-metric approach provides comprehensive bias detection beyond standard SGBA+ requirements",
       "compliance_evidence": "Multi-metric fairness evaluation, intersectional bias analysis, health equity impact assessment"
     },
     {
-      "haaisvs_requirement": "7.4.1",
-      "haaisvs_description": "Vulnerable population protection with enhanced clinical safeguards",
+      "haarf_requirement": "7.4.1",
+      "haarf_description": "Vulnerable population protection with enhanced clinical safeguards",
       "target_requirements": ["SGBA+ Vulnerable Population Guidelines", "Health Equity Standards"],
       "alignment_type": "direct",
       "notes": "Vulnerable population protection directly addresses Health Canada SGBA+ equity requirements",
       "compliance_evidence": "Vulnerable population risk assessment, enhanced safety protocols, equity outcome monitoring"
     },
     {
-      "haaisvs_requirement": "7.5.1", 
-      "haaisvs_description": "Global health equity considerations for resource-limited settings",
+      "haarf_requirement": "7.5.1", 
+      "haarf_description": "Global health equity considerations for resource-limited settings",
       "target_requirements": ["Health Canada Global Health Strategy", "International Development Guidelines"],
       "alignment_type": "enhanced",
       "notes": "HAARF extends beyond domestic SGBA+ to include global health equity considerations",
       "compliance_evidence": "Resource-limited setting analysis, global health equity assessment, international deployment considerations"
     },
     {
-      "haaisvs_requirement": "4.6.1",
-      "haaisvs_description": "Clinical workflow integration with change management",
+      "haarf_requirement": "4.6.1",
+      "haarf_description": "Clinical workflow integration with change management",
       "target_requirements": ["Health Canada Implementation Guidance", "Clinical Integration Standards"],
       "alignment_type": "direct",
       "notes": "Clinical workflow integration supports Health Canada requirements for healthcare system implementation",
       "compliance_evidence": "Clinical workflow analysis, change management procedures, healthcare professional training documentation"
     },
     {
-      "haaisvs_requirement": "8.2.2",
-      "haaisvs_description": "Tool selection safety validation for patient populations",
+      "haarf_requirement": "8.2.2",
+      "haarf_description": "Tool selection safety validation for patient populations",
       "target_requirements": ["Health Canada Safety Requirements", "Population-Specific Guidelines"],
       "alignment_type": "direct",
       "notes": "Tool selection validation ensures patient population safety aligned with Health Canada requirements",
@@ -120,7 +120,7 @@
     }
   },
   "coverage_analysis": {
-    "total_haaisvs_requirements": 279,
+    "total_haarf_requirements": 279,
     "mapped_to_health_canada": 187,
     "direct_alignment": 134,
     "enhanced_alignment": 53,