Eight modules. One evidence spine.
Six POPIA modules at the core, two FICA modules layered on for regulated and high-value businesses. Every action writes to the same audit trail — so an inspection becomes an export.
RoPA
A living Record of Processing Activities that maps every data flow, purpose, and lawful basis across the business.
Section 17Consent Ledger
Capture, version, and withdraw consent with a tamper-evident record of who agreed to what, and when.
Section 11SAR Workflow
Run data-subject access and correction requests on a statutory clock, with a complete exportable trail.
Sections 23–25Retention & Deletion
Define retention rules per data category; deletions fire automatically and log themselves as evidence.
Section 14Breach Module
A structured incident workflow with the 72-hour notification timeline and regulator-ready reporting built in.
Section 22IO Dashboard
The Information Officer's single view — every obligation, deadline, and gap surfaced in one place.
Sections 55–56FICA Layer
Customer due diligence, beneficial ownership, and PEP/sanctions screening — for businesses the FIC is actively inspecting.
CDD · screening · roadmapRMCP Evidence
Every accountable institution needs a Risk Management & Compliance Programme. We turn it from a static document into a programme that proves itself.
Section 42 · roadmapOne audit trail underneath it all
Every module writes to the same evidence spine, so an inspection is an export — not a fire drill. Built in from day one.
See it against your business.
A 15-minute call to walk your obligations and find the evidence gaps.