GDPR & EU AI Act compliance platform

Living records.
Structured updates.
Human-reviewed outputs.

One platform for assessments, risk registers, and Article 30 records — connected to the systems, suppliers, and evidence behind them.

Get startedSee how it works

The Platform · 06 Modules

One foundation.
Every module feeds the next.

Onboarding imports your systems, suppliers and policies once. Assessments, risk, records, third-party and DSAR all read from that same knowledge base — so evidence, entities and controls stay consistent downstream.

Shared knowledge baseHuman-reviewed outputsOne licence
00 · Foundation7–14 days → operational

Onboarding

Your Foundation

Import, connect, classify — operational in days. Systems, suppliers and policies land in a single, queryable knowledge base that every module below reads from.

01 / Assess

Assessments

GDPR & EU AI Act

AI-generated responses grounded in your knowledge base, with per-sentence verification.

Per-sentence citations
02 / Detect

Risk

Privacy Risk

Risks extracted from responses with evidence citations and human preview before publishing.

Reviewer gate
03 / Record

RoPA

Article 30 Governance

Article 30 fields mapped at template level, populated from responses, with automatic compliance gating.

Version-controlled
04 / Vendor

Third-Party

Processor & Transfer Risk

Vendor research and due diligence feeding directly into your knowledge base.

Auto-linked
05 / Map

Data Mapping

Organisational Registry

Systems, suppliers, locations, and data categories with AI extraction and entity linking.

Canonical entities
06 / Respond

DSAR

Subject Access Requests

Intake, identity verification, search, redaction, and disclosure in one auditable workflow.

SLA tracked

Evidence-grounded compliance, not template-filling.

One platformOne licenceEvery module feeds the next
The workflow

Seven stages from knowledge to compliance

Each stage builds on the last. Each completed assessment makes the next one better. This is the intelligent data lifecycle.

00

Choose your assessment

Every workflow begins by selecting or building an assessment template. The AI template builder auto-tags every RoPA-affiliated field. Article 30 mapping happens before a single answer is written.

The AI template builder automatically tags every RoPA-affiliated question field as it generates your template. Article 30 fields such as legal basis, data categories, recipients, and retention periods are mapped before a single answer is written, so your Records of Processing Activities populate without any manual configuration.

Assessment Library

DPIAs, LIAs, TIAs, vendor due diligence and other workflows, pre-built and ready to run.

AI Template Builder

Describe the processing activity and Acompli generates a tailored assessment with RoPA fields pre-tagged.

RoPA Auto-tagging

Article 30 fields are identified and mapped at template level with no manual setup.

Further reading

Research

GDPR RoPA Requirements in Ireland and the UK

A detailed comparison of Article 30 requirements under EU GDPR and UK GDPR, with best practices for maintaining living records.

Read the paper →News

Council Agrees “AI Omnibus” Mandate: High-Risk Deadlines Pushed to 2027/2028

The Council of the EU has agreed its negotiating position on streamlining AI rules, extending high-risk AI deadlines by up to 24 months.

Read the article →Resource

GDPR Fine Calculator

Estimate statutory maximum fine exposure under Article 83 for DPC and ICO jurisdictions, with scenario-based risk assessment.

Open calculator →

Start your first assessment

See the workflow in action

Run your first assessment with Acompli's full intelligence pipeline. Your organisational knowledge becomes the foundation of every compliance decision.

Get started →Explore the platform