GDPR · 100% of technical articles covered

GDPR — know that you are technically compliant.

We cover 100% of technically verifiable GDPR requirements. The rest (DPIA, Article 30 records) you attest via our Compliance module.

GDPR — technical controls

Article	Requirement	What we do
Art.5e	Storage limitation	Files older than policy detected (logs/exports/cache)
Art.7	Consent	Cookie banner check on public pages
Art.13/14	Information to data subjects	Privacy policy link + DPO contact verified
Art.15/17/20	Right of access/erasure/portability	Probes /account/data, /account/delete, /account/export
Art.25	Privacy by design	Security headers, default config checks
Art.28	Data processor	SaaS detection (M365/GWS/Slack etc.) → DPA check
Art.32	Security of processing	Everything: TLS, encryption, AD, backup, audit, MFA
Art.33	Incident notification within 72h	Log aggregation + central SIEM detection
Art.37	DPO	DPO contact verified visible in privacy policy

What we cannot automate

DPIA (Art.35) — requires assessment of new processing activities
RoPA (Art.30) — records of processing activities, documentation requirement
Data processing agreements — manual contracts (we flag that SaaS exists but not agreement status)

These are handled in our Compliance module via questionnaires + evidence upload. This gives you a complete GDPR picture combining technology + documents.

Become a beta tester

Fill in the form — we'll get back to you within 24 hours.

Name

Company

Email (work) *

Number of employees

What are you most interested in?

Message (optional)

By submitting you consent to us storing your details in order to contact you. See our privacy policy.