Features

One focused tool that does the job EU Directive 2019/1937 requires. Nothing else you have to learn.

INTAKE

Every channel the law requires, none of the friction

Reporter doesn't create an account: gets a case code + 6-digit secret instead. No IP, no email, no device fingerprint. Secret is bcrypt-hashed.
Country-specific intake templates auto-configured for HinSchG (DE), Loi Sapin II (FR), D.lgs 24/2023 (IT), Ley 2/2023 (ES), Wbk (NL) and the other EU transpositions
Audio and video attachments on every report (oral statements upload alongside documents), with the same EXIF and metadata stripping
WhatsApp and SMS intake for reporters in IT, ES, PT and other mobile-first markets
Six pre-translated form languages (EN, DE, FR, IT, ES, NL); AI handles 25+ for the long tail
Uploads stripped of EXIF and document metadata before storage; printable QR-code posters in 6 EU languages for breakroom signage

INVESTIGATION

List view with filters (status, severity, category, language) and two-way anonymous chat with the reporter
Custom investigation playbooks per category: checklists, sub-tasks, deadlines, required artefacts
Auto-escalation rules: high-severity unassigned beyond 24h pings the owner; stalled cases surface on the dashboard
Conflict-of-interest detector: when assigning an investigator, AI checks whether their name or department appears in the report and warns
Internal notes hidden from the reporter; role-based assignment (owner, admin, investigator, viewer)
External ombudsperson seats (Enterprise): invite an outside lawyer or auditor per case with time-boxed access and full audit visibility

AI ASSISTANT (Pro + Enterprise)

Summarise the report in 3 neutral bullets capturing what, who, when. No inference, no identity leakage.
Classify severity (low / medium / high / critical) and suggest a category
Translate any incoming language to your working language
Draft an acknowledgment reply that's legally neutral, empathetic, and matches the report's tone
AI case clustering: surfaces when multiple anonymous reports describe the same underlying pattern (same department, same actor descriptors, same timeframe). Catches systemic issues no manual triage will.
All AI suggestions are advisory. Every action is human-confirmed before it lands in the audit log.

COMPLIANCE

Append-only audit log: every submission, assignment, status change, AI action, message
Mandatory reporter status updates at 7 days (acknowledgement) and 3 months (status), in the reporter's language. Directive 2019/1937 Art. 9 satisfied by default.
Auto-generated annual compliance report (PDF, country-tailored format) ready to file with the national enforcement body
EU data residency by default, SCC-free for EU customers. Enterprise plans pick per-channel residency (DE entity stores in DE, FR in FR).
Right to erasure: one-click delete with audit trail of who, when, and why
DPA template ready for legal review; configurable retention policy per channel (Enterprise)

ORGANIZATIONS

Unlimited members per organization, no per-seat fees
Native HRIS sync with Personio and BambooHR: auto-revoke channel access on offboarding, flag when a named-in-report person leaves the company
Slack and Microsoft Teams notifications (anonymous-safe), reusable reply templates
One user can belong to multiple organizations (consultants, accounting firms, holdings)
SSO via SAML, Google Workspace, Microsoft 365 (Pro); SCIM provisioning, REST API and webhooks (Enterprise)
Multi-entity console for holdings: one operator view with fully isolated audit trails per subsidiary; white-label intake on your own domain with custom DPA (Enterprise)

14-day free trial. No credit card. Cancel anytime.