SystemN — Enterprise
Enterprise-ready. From EU hands.
GDPR-complete — not just the checkbox
Access, erasure and data portability are not roadmap promises but functions in the admin console. The processing register and subprocessor management are part of the deliverable.
- · Art. 15 / 17 / 20 as lived flows — self-service for data-subject rights
- · Art. 30 processing register maintained machine-readably
- · Subprocessor changes with mandatory 30-day notice
- · DPA, RoPA, TOM and DPIAs as a standard documentation set
Enterprise identity from day one
SystemN integrates with your existing identity stack — not the other way round. Multi-IdP, MFA and role separation are default, not an upgrade.
- · Single Sign-On via OIDC (Azure AD, Google Workspace, Okta, custom IdP)
- · MFA with TOTP and recovery codes for every admin account
- · Role separation Owner / Admin / Auditor — Auditor sees everything, changes nothing
- · Account lockout, replay protection and session revoke instead of shared passwords
An audit trail your auditors will trust
Every administrative action generates an audit event with actor, timestamp and before/after delta. Filters and CSV export answer audit requests in minutes, not days.
- · Complete logging of administrative changes
- · Pseudonymised entries — auditability without PII in cleartext
- · Filter by time range and actor, CSV export for annual review
- · Backup status and certificate monitoring in the same dashboard
Privacy-by-design as a differentiator
SystemN handles sensitive data. We built the stack so that this data does not leave the instance — not into an LLM, not to supervisors.
- · No live LLMs, no ad pixels, no trackers — pattern analysis runs locally
- · K-anonymity ≥ 5 for leadership views, hard-coded across three layers
- · Leaders see aggregates, never individuals, never cleartext
- · DPIA-reviewed protection concept for minors in the family module
Supply chain and security
If you run the stack, you want to know what is in it and how it gets fixed. Every release ships the complete bill of materials, every vulnerability a clear disclosure path.
- · Software Bill of Materials (CycloneDX) at every release, frontend and backend
- · Argon2 password hashing, JWT revocation, CSRF protection, Sentry PII filter
- · .well-known/security.txt with documented vulnerability disclosure
- · External security audit versioned and accessible
Operated in EU hands
SystemN runs in German data centres, operated from Vienna. Availability SLA, backup and observability are contractual, not best-effort.
- · Hosting within the EU, 99.5 percent availability SLA
- · First response S1 within four hours, 24/7 on-call
- · Live observability with latency percentiles and deploy markers
- · Cross-host deployment for on-premise or your own EU cloud provider
What SystemN deliberately is not
A medical device. A therapy replacement. A performance tool that compares employees. A behaviour tracker that informs managers about individuals. SystemN gives every person a counterpart for their own state — and organisations an honest aggregate, without exposing individuals.
For decision-makers
- Compliance-ready: GDPR Art. 15/17/20/30, SBOM at every release, RoPA and DPA included.
- Enterprise identity: OIDC SSO with multi-IdP, MFA TOTP, role separation with auditor view.
- Privacy-by-design: no live LLMs, k-anonymity ≥ 5 for leadership view, pattern analysis local.