With governance, risk, and compliance management all in one system, Compliance Aspekte is a modular tool designed to manage regulatory or company-specific standards, policies, and best practices.
Why Compliance Aspekte?
More than a GRC tool: Compliance software and consulting
Compliance Aspekte is a proven practical solution for governance, risk, and compliance, including the software tool and corresponding consulting.
In addition, our Compliance Chat-Bot Helga answers your questions at every process stage.
ISMS & DSMS
Every organization needs to implement: an information security management system and a data protection management system. Compliance Aspekte provides both within a single platform.
This saves a significant amount of time as all the underlying data is reused and should not be managed twice.
Flexible functionality and prices
Compliance Aspekte is fully adaptable to clients' needs and provides regular updates based on individual requests.
We are also open to discussing pricing to address particular cases and needs.
Custom-tailored kits for various domains
Take advantage of the number of available solutions tailored to your specific needs: kits for universities, data protection, IT-Grundschutz, etc.
Compliance Aspekte compliance kits provide a ready-to-use structure, necessary tools, documentation, and guidelines to speed up your implementation of ISMS and DPMS. The compliance kits start from €499.
A multi-standard tool with the ability to add proprietary policies
Compliance Aspekte is a GRC solution with one of the broadest coverage of compliance standards. Furthermore, we can add other standards upon our clients’ requests.
Compliance Aspekte’s clients save time and maintain data accuracy and consistency by reusing data access for multiple standards.
Modern UI/UX and ease of use
Compliance Aspekte has it all — modern UI and good UX.
In the Compliance Aspekte, your asset, compliance, and risk data can be presented in a tree view or in an excel-like grid layout with a vastly extended functionality.
You are not alone with our GRC toolBook a demo
Advising and preparing your organization for the forthcoming audits and certifications
Setting up, managing, and optimizing your ISMS and DSMS systems
Conducting a gap analysis to show the current state of compliance and personal data protection as well as IT security requirements
Creating your IT security concepts based on proven templates
Support with implementation and introduction of modern IT security standards
Data protection as a service
External data protection officer service
Modeling concepts, providing guidelines and documents specifically tailored to your organization
Conducting compliance training for your teams
Compliance Aspekte tool features
Compliance solution for any standard
Compliance Aspekte allows mapping the overall organizational structure with all the branches and units in a tree structure.
Asset Structure Analysis
To ensure an effective compliance process, it is required to investigate the existing assets, their structure, connections, and relevant business process. Compliance Aspekte helps handle this task. Our compliance tool allows adding custom attributes, conducting external integrations, classifying assets by types and subtypes, and mapping particular objects as object classes.
With the help of the Compliance Aspekte, you can evaluate compliance requirements and manage them within a single concept. The asset structure of our GRC system allows to build a custom assets tree structure, evaluate the assets on different levels and aggregate them at the top. Protection requirements inheritance is done according to the defined inheritance rules. The system allows the creation of custom protection requirements and custom levels for these requirements.
Compliance Aspekte risk management tool lets you determine threats relevant to certain assets and countermeasures to those threats. The tool enables creating flexible risk matrixes and risk assessment scales, as well as customization of risks and threats catalogs.
Reporting & Data Analytics
Compliance Aspekte allows to automate the reports generation and sending them as emails through the Compliance Aspekte Mail Bot. Data from the GRC tool can be exposed for analysis in external data analytics systems integrated with the Compliance Aspekte.
Task Management & Collaboration
To optimize the compliance processes and increase their efficiency, we provide our clients with collaboration functionality. Thus, in Compliance Aspekte, the external user of the tool can obtain access to certain assets and data via a link, and contribute to the compliance process.
Integrations & Automation
The system provides a number of vital integrations with asset management and CMDB solutions, including i-doit, GLPI, FNT Command, Microsoft System Center, Microsoft SharePoint, and other tools. Compliance Aspekte exposes REST API for automation purposes. Alternatively, application data are accessible directly from the database via several defined datamarts. The system permits automatic linking of the related compliance rules to the asset groups, compliance status calculations, migration to the newly issued standard version, risk acceptance for pre-defined risk groups, and other features simplify the overall operational compliance routine.
Compliance Aspekte provides as extensive logging of changes, import of Requirements, Controls, & Threat catalogs, multi-platform compatibility, numerous database support, secure backup and restoration of all data, and many more.
How to Rapidly Migrate to Compliance Aspekte
Difficulties with managing tons of Excel files and risks of data inconsistency make compliance managers consider moving from office tools to centralized GRC software. But here comes the concern of migrating to a brand new system. Keeping it in mind, we’d enabled Compliance Aspekte with a seamless data migration functionality. And though you are unlikely to change your mind, you can always easily get back to Excel just by exporting files from Compliance Aspekte to your office documents.
- Easy exporting and importing Excel files to/from Compliance Aspekte
- Familiar grid layout with a bunch of additional features
- Ability to crosslink your Compliance Aspekte files with office ones
In case you would like to leverage the expanded functionality of a GRC tool, we would help you smoothly migrate from your current system to Compliance Aspekte.
- Data import/export functionality
- Integrations via API
- Integrations via external services (REST API, database, software API)
- Ongoing support of our specialists during the whole process of migration
Integration of asset management and compliance tools offer numerous advantages. It helps to avoid data duplications, makes information centrally usable and manageable, and simplifies the overall compliance process. Compliance Aspekte supports integrations with asset management and CMDB systems, including:
- FNT Command
- MS System Center
At Compliance Aspekte, we are offering both a GRC software to centrally store and manage your compliance data, as well as compliance services — you’ll never be on your own with our software. We are offering a turn-key compliance service that would navigate your organization by setting up or maintaining an ISMS, DSMS, audit, and certification.
- GRC tool & compliance services together
- Free onboarding with a compliance expert
- Compliance assistant bot Helga
- Ready-to-use compliance kits for a number of industries
We were new to compliance and ISO 27001 implementation and had to go through the sophisticated certification process.
Puzzled by the regulatory complexity, we wanted to find the best way for us to get started. Our project manager (aka security officer) had never worked with such compliance aspects and rules before. So we decided to get third-party assistance and signed up with Compliance Aspekte.
Their guided approach has played a vital role for us. They had all the detailed explanations for compliance checks and risk analyses, including suggestions on how to handle it practically.
The three-day workshop from expertree consulting GmbH helped us establish more detailed steps for implementing our information security and data protection management system in our company.
During the workshop, we were able to directly model our individual company processes, the unique requirements, and the current status in the holistic GRC solution, the Compliance Aspekte.
The additional possibility of completing the seminar with a certification as a "BSI practitioner" from the Federal Office for Information Security gives us the secure feeling that we are well prepared for the future and found a suitable solution with the Compliance Aspekte.
Constantly evolving regulations such as BSI IT-Grundschutz and GDPR are a must for us as a healthcare organization.
As critical infrastructure providers, we need reliable and customizable compliance software. It was easy to adapt Compliance Aspekte to our processes. We can assess our clinic’s areas and processes in terms of security and data privacy. Besides, it enabled us to maintain a complete compliance record for the BSI IT-Grundschutz and GDPR (DSGVO) audit.
Compliance Aspekte Launches Version 9.2 with Innovative Features for Enhanced IT Security and Compliance
Introducing Release 9.1, Compliance Aspekte announces the release of new features.
Risk is an unavoidable aspect of modern business, with both internal and external factors posing significant challenges to companies of any size or nature. A company’s ability to manage and reduce these risks is crucial to achieving success.
While countless gigabytes of private data end up scattered across on-site, cloud, hybrid, and third-party systems, data privacy laws continue to grant broad rights to personal data owners. Now users can request to get a copy or update it, ask to have their data deleted or restricted. What will the future of privacy be like?
Organizations are taking a risk-based approach to information security and compliance that enables them to bypass the need for an in-depth evaluation and analysis of every new threat. It introduces a systematic risk analysis management that aims to foresee new threats and take preventative action.
With GDPR coming into action in 2018, companies faced a number of requirements. One of them was the obligatory keeping of a record of processing activities (RoPA). Learn who needs to do it, what should be documented, and its best possible ways.
Infopulse Standards Compliance Manager becomes Compliance Aspekte. As part of the latest 9.0 release, the compliance tool received a brand makeover.
Many German healthcare institutions and organizations are about to implement numerous tough regulations and standards to protect the critical infrastructure from the malicious security threats. Learn about the BSI Act, PDSG, SGB V, and many others to know what the healthcare sector should expect in 2022.
Data lies at the core of every business. It drives decision-making, identifies opportunities, and pinpoints underperforming areas. At the same time, companies accumulate enormous information that can easily become a target point for cyber-criminals.
Try Compliance Aspekte For Free
Book a 1-2-1 Live Demo and Obtain a 3-months Non-binding Trial
Yes, of course. Please contact us and we will schedule a call
Compliance Aspekte offers seamless integration with asset management and CMDB systems. It helps to avoid the duplication of data and makes your data assets usable and manageable centrally.
Yes, you can add any custom ones in the Compliance Aspekte system.
We provide our users with a 3-month trial. Free of charge and no strings attached.
At Compliance Aspekte we offer both a software tool and compliance consulting services. Our consultants can guide you through the whole compliance process.
We provide any needed support to our clients at every stage of their journey of using Compliance Aspekte.
Our pricing starts from €49/user per month. Please contact us for further details, so that we can come up with the optimal package for your organization.
Effective and easy-to-use IT security management system based on the latest standards and regulations — from planning and establishing the security concept to certification.