How it works
Complyon is an integrated GRC software system that helps companies optimise every area of their governance, risk management and compliance
Designed to provide a more effective way of managing compliance
Based on years of experience in compliance and consultancy, we have created a tool that connects all of your organisation’s data and data flows in a central hub to form the basis of compliance management.
We continue to develop the software based on customer needs and experiences, resulting in a modular solution representing and meeting all compliance needs – from audit-ready reports and ISMS to tracking the live status of compliance and many other elements.
One Core: Connecting modules and compliance-related information
From the Core module, you can map activities, systems and contracts to provide a clear overview and form the basis for automating your governance, risk and compliance.
On top of this, modules can be added according to your needs and the current goals or strategies of your organisation. For example, you can choose modules that help manage regulations such as ISO, NISO, SOC II, AML, ESG and many more.
A guided implementation process run by experts
Implementation happens through a series of guided workshops, where our experienced specialists help align expectations, collect new data (if necessary), review the data set-up in the system and evaluate the success. The process is structured around the clients’ needs and typically involves around 10-15 hours of meetings with stakeholders, depending on the chosen modules.
If you already have data-mapping or data located in other systems, we migrate the data to Complyon’s system in the onboarding phase. Where additional resources are required, we offer structured projects through our partners, who can provide extra support throughout the implementation process.
Continual maintenance and ongoing support
After implementation, ongoing support is offered to ensure best use of Complyon’s system and provide assistance with other projects, such as implementing new modules, answering questions relating to the system and helping with the set-up of complex scenarios.
We commonly find that as we implement the system, members of your organisation discover data insights and are able to streamline workflows as they gain a better understanding of compliance and how to work with it. New modules are developed and added on the basis of customer needs, in order to ensure a customer-centred solution.
Select the modules that meet your company's exact needs
Central module that creates the basis for other modules by defining processes, activities, systems and contracts, then mapping and connecting the data flows between them.
Built on the basis of GDPR, it ensures effective compliance and fulfilled documentation requirements across a variety of privacy legislations, such as CIA risk assessments, mapping of sub-data processors, etc.
Article 30 (RoPA)
Provides elements of the Core and Privacy modules that are required to create Article 30 and allows you to generate and download reports in seconds.
Communication module that ensures effective communication by decentralising compliance tasks and automating email reminders for when tasks and controls are due.
Improves structured communication with internal and external stakeholders by allowing you to create your own questionnaires for BIAs, TIAs, DPIAs, etc.
Allows more detailed work with contracts mapped in the Core; possibilities include tracking and filtering KPIs, contract measures, sub-data processors, etc.
Risk and Control
Functions in a system-agnostic manner to help you work with risk scenarios, threats and vulnerabilities, and document compliance.
Fully integrated with Microsoft PowerBi, Dashboards provide a clear overview of your data and a one-click investigation into factors impacting the result. There are multiple dashboards available in this module and tailor-made options are also possible.
Article 30 module: one-user experience
Our Article 30 data-mapping tool is the only stand-alone module, which does not require training and can be implemented unaided. The solution offers a one-user experience for data-mappingand connecting the systems, activities and contracts in your organisation. From this, you can download audit-ready reports in a variety of formats with just one click.
The system is easy to populate, comes with examples of common systems and activities, and there are user videos to guide you through the process set by step.
Complyon makes data-mapping effortless, due to the UX-focused approach of the platform. It also saves time and money, and removes the possibility of you forgetting to add a certain data point. The way the platform is designed makes my life easy when I need to assign tasks to stakeholders because of the short learning curve. After using it for months, I can safely say that Complyon delivers what it says it does. And more.
We've been a long term user of Complyon and are consistently impressed with the user-focused approach to the system. We have all our GDPR processes mapped in Complyon and, by using the Project Module, all business areas are comfortable and confident to keep Miinto compliant.