Modules for all your security work

Identify, assess and address risks on a visual 5x5 matrix. Score the risk before and after treatment, choose how to handle it, and break the work into tasks to tick off — with AI support along the way.

• Visual 5x5 risk matrix
• Risk before and after treatment
• Guided workflow for risk assessments
• Treatments turned into tasks to tick off
• AI support

Document every processing of personal data per Article 30, manage consents, respond to data subject requests (DSAR), report personal data breaches within 72 hours and keep track of your processors.

• Records of processing per Article 30
• Manage consents and withdrawals
• Data subject requests (DSAR)
• Report personal data breaches within 72 h
• Register of data processors

Assess vendor risk, manage contracts, and follow up continuously. Per-vendor risk profiles, due diligence support, and alerts for overdue assessments.

• Vendor assessments
• Contract management
• Risk profiles
• Continuous monitoring
• Due diligence support

Manage every policy, standard and procedure from draft to approved and acknowledged. Versions with full traceability, multi-step approvals and the option to link documents to the security controls they cover.

• A single register of all governing documents
• Version control with change history
• Multi-step approval
• Users confirm they have read the document
• Link documents to security controls

Measure your compliance against ISO 27001, NIS2, NIST CSF and SOC 2 — control by control. Score each control, compare frameworks and get AI recommendations for closing the gaps.

• Assessment against ISO 27001, NIS2, NIST CSF and SOC 2
• Score each control and see the overall picture
• Statement of Applicability (SoA) for ISO 27001
• Reuse assessments across frameworks
• AI recommendations and export

Always be ready for audit with automatic evidence collection, control monitoring, and traceability. Create audit plans, assign reviewers, and follow up deviations to closure.

• Automatic evidence collection
• Control monitoring
• Audit planning
• Deviation management
• Audit reports

Comply with the EU Whistleblower Directive and Swedish legislation with an anonymous reporting channel. Case management with traceability and ability to communicate securely with the reporter without revealing their identity.

• Anonymous reporting
• Secure communication
• Case management
• Legal traceability
• Legal compliance

Scan your web apps, APIs, and domains automatically and get findings sorted by severity. AI-suggested fixes, trends over time, and email security checks (SPF/DKIM/DMARC) in the same view.

• Automatic scanning of web apps and APIs
• Sort and follow up on findings
• Duplicates merged, recurring issues flagged
• Email security in DNS (SPF/DKIM/DMARC)
• AI-suggested fixes and trends over time

Assess every information asset across three dimensions: how sensitive it is (confidentiality), how important it is that it stays correct (integrity), and how available it needs to be. A guided assessment with twelve questions and AI support.

• Five levels per dimension
• Guided assessment with twelve questions
• AI suggests a classification level
• Handling advice for each level
• Review and approval