#1. SharePoint 2013 out of the box Records Management does not meet ISO 15489 standard.
For example, when SharePoint Retention Policy is defined to destroy a record, all data will be destroyed. This means even the existing metadata is destroyed. This makes meeting compliance difficult because there is no prove the records ever did exist and
was destroyed for compliancy reasons.
With SharePoint 2013 Records Management Microsoft made a step in the right direction. New functionalities were introduced and existing functionalities are updated. For organizations where records management needs to be implemented and are
not strictly bounded to all of the ISO regulations SharePoint can fit.
For organizations who need to fit strict ISO regulations or legislation SharePoint 2013 can be one of the tools used in the document lifecycle.
#2. Out of the box SharePoint 2013 is not fully compliant with DoD 5015.02-STD, and it requires a lot of planning and potentially some slight customization to achieve what you want.