Built on Atlassian Forge

Your glossary is a compliance liability until it has an audit trail

Versioned terminology with approval workflows, compliance scanning, and one-click audit export. Built into Confluence where your team already works.

Install Free on Marketplace Read the Docs
Zero data leaves Atlassian Read-only Confluence access Free tier — no credit card
Compliance Glossary — Terms management view showing 8 terms with statuses, version history, and approval actions
Compliance Scanner — select a Confluence space to scan for terminology issues
Audit Export — compliance report with all terms, versions, and approval chain
CSV Import — preview detected terms before importing into glossary

Running inside Confluence Cloud on Atlassian Forge

FDA

Warning Letters cite terminology

FDA Warning Letters reference inconsistent definitions of "adverse event," "serious adverse event," and "device malfunction" across clinical documentation. Each finding delays approval.

Cost: $1M+/day in delayed market entry
SOC 2 / ISO

Auditors check term consistency

SOC 2 Type II auditors verify that "incident," "risk owner," and "control objective" mean the same thing across every runbook, policy, and SLA. Inconsistency = finding.

Cost: 40-80 hours manual prep before each audit
EU AI Act

47 new legal terms, zero tooling

"High-risk AI system," "general-purpose AI model," "deployer," "provider" — all legally defined. First obligations hit August 2025. Most teams have no systematic way to track them.

Cost: non-compliance fines up to 7% of global revenue

The Confluence tool that combines terminology management, approval workflows, and compliance scanning

Today your options are a full QMS at $500–5,000/mo, or Comala workflows plus a spreadsheet with no scanning. Compliance Glossary gives you controlled vocabulary with four-eyes approval, active page scanning, and audit-ready export — all inside Confluence, starting free.

21 CFRChange justification on every edit
ISO 9001Stale approval detection
SOC 2Full audit trail with attribution
MedDRASynonym drift scanner
See which standards we cover →
Features

Everything auditors ask for, built into Confluence

Not another glossary. A compliance tool that produces audit-ready evidence from your existing workflow.

Full Version History

Every change to every definition is tracked — who changed it, when, and what the previous version said. Diffs between versions for quick review.

Approval Workflows

Terms move through draft, review, approved, and deprecated stages. Four-eyes principle enforced. Full approval chain recorded with timestamps.

Compliance Scanner

Scans Confluence pages for deprecated terms, unapproved terminology, and synonym violations. Each finding shows the term, page, context, and reason.

Auto-Scan on Changes

When someone creates or updates a Confluence page, the scanner runs automatically. Issues surface immediately — no manual scans needed.

Compliance Dashboard

See your compliance score across spaces, track open issues by type, and know exactly where you stand before the next audit.

One-Click Audit Export

Generate a CSV report with your full glossary, version history, and approval chain. Hand it to the auditor. Done.

Comparison

Why not just use a spreadsheet?

When the auditor asks "who approved this definition and when?" — you need an answer.

Capability Spreadsheet Compliance Glossary
Version history Manual, if anyone bothers Automatic, every change
Approval workflow Email threads Built-in: draft → review → approved
Audit export Copy-paste into report One-click CSV with full history
Compliance scanning Hope everyone reads it Auto-scan on every page change
"Who approved this?" "Uh... let me check Slack" Timestamped approval chain
Audit prep time 40-80 hours Always current, export in seconds
Use Cases

Built for teams that can't afford terminology mistakes

💊

Pharma & Medical Devices

Maintain controlled vocabulary for clinical documentation. Version history and approval chains that satisfy FDA and EMA auditors.

FDA 21 CFR Part 11 EMA GxP
🏦

Financial Services

Catch terminology drift in customer-facing documents before it becomes a regulatory issue. Consistent definitions across departments.

EBA MiFID II SOX
🛡

SOC 2 / ISO 27001

Define "incident," "risk owner," "control objective" and every other term your auditor will ask about. Export as part of your evidence package.

SOC 2 ISO 27001 GDPR
🤖

EU AI Act

47 new legal terms that must be used correctly across documentation. Track them in one place with approval workflows and audit trail.

EU AI Act High-risk AI GPAI
Getting Started

Operational in under 30 minutes

Install from Marketplace

One click to install. No configuration, no external accounts, no server setup. Runs on Atlassian Forge infrastructure.

Add your terms

Create terms manually or bulk import via CSV. Add definitions, categories, synonyms, and notes. Assign reviewers.

Approve definitions

Reviewers approve terms through the built-in workflow. Every approval is timestamped and recorded for audit.

Scanner runs automatically

Pages are scanned on create and update. The dashboard shows your compliance score. Export the report when the auditor asks.

Documentation

Everything you need to get started

Installation guide, term management, compliance scanner, audit export, CSV import format, and approval workflows.

Read the Documentation
Security & Privacy

Your compliance data never leaves Atlassian

Built on Atlassian Forge — the most secure way to extend Confluence. No external servers, no data transfer, no third-party dependencies.

🔒

Forge-Hosted

Runs entirely on Atlassian's infrastructure. No external servers to secure or audit.

🛡

Data Isolation

Each installation's data is completely isolated. No cross-tenant access possible.

👁

Read-Only Access

The scanner reads pages to detect issues but never modifies your Confluence content.

📋

SOC 2 & ISO 27001

Covered by Atlassian's own SOC 2 Type II and ISO 27001 certifications.

🌐

No External Calls

Zero outbound API calls. Zero tracking. Zero third-party JavaScript. No data leaves the platform.

📤

Browser-Only Export

Audit CSV export runs in your browser. Report data never touches our infrastructure.

FAQ

Common questions

Where is my data stored?
All data stays on Atlassian infrastructure. Built on Forge — zero external servers, zero data transfer outside your Confluence instance. Covered by Atlassian's SOC 2 and ISO 27001 certifications.
Does the app modify my Confluence pages?
No. The scanner reads pages to detect terminology issues but never modifies content. Read-only access only.
What's the difference between this and a regular glossary?
Regular glossaries store definitions. Compliance Glossary adds what regulated industries need: version history on every change, approval workflows with audit trail, compliance scanning across your Confluence spaces, and one-click export for auditors.
How long does setup take?
Install from Atlassian Marketplace, add your terms (or bulk import via CSV), and the scanner starts working immediately. Most teams are operational in under 30 minutes.
Can I import existing terminology?
Yes. Bulk CSV import lets you bring in existing glossaries with terms, definitions, categories, and synonyms. Up to 50 terms per import batch. Imported terms start in Draft status and go through the approval workflow.
What regulations does this support?
The tool is regulation-agnostic — it manages terminology and audit trails. Teams use it for FDA 21 CFR Part 11, EBA/MiFID II, SOC 2, ISO 27001, GDPR, EU AI Act, and any framework requiring controlled vocabulary.
Is there a free tier?
Yes. Free tier includes up to 50 terms with full features — versioning, approval workflows, scanning, dashboard, and export. No credit card required. Paid tier removes the term limit for teams with larger glossaries.
Can I try it on a test Confluence instance?
Absolutely. Install on any Confluence Cloud instance — including free or developer instances from Atlassian. The free tier gives you everything you need to evaluate.

Stop prepping for audits manually

Install for free. Add your terms. The scanner starts working immediately. When the auditor asks — you'll have the answer.

Install Free on Marketplace