Platform overview

One foundation. Every module feeds the next.

Acompli is built for privacy work that needs to stay connected. Import your organisational knowledge once, then use it across assessments, RoPA, risk, third-party oversight, data mapping, DSAR, Code Scan and AI governance.

Explore solutionsBook a walkthrough
One knowledge baseHuman-reviewed outputsOne audit trail

Platform overview

One foundation.
Every module feeds the next.

Import your organisational knowledge once, then use it across assessments, RoPA, risk, third-party oversight, data mapping, DSAR, Code Scan and AI governance. Every approved answer improves the next piece of work.

One knowledge baseHuman-reviewed outputsOne audit trail
00 · FoundationOperational in days

Onboarding

Your Foundation

Import DPIAs, RoPA spreadsheets, supplier lists, system inventories, policies and documents into one governed compliance foundation.

01 / Assess

Assessments

GDPR & EU AI Act

Run DPIAs, LIAs, TIAs, processor reviews and AI Act assessments with templates, AI support and human approval.

Human-approved
02 / Detect

Risk

Privacy Risk

Extract candidate risks from approved evidence, assign treatment plans and report on current exposure.

Evidence-linked
03 / Record

RoPA

Article 30 Governance

Maintain Article 30 records linked to approved assessments, systems, suppliers and transfers.

Review-controlled
04 / Vendor

Third-Party

Processor & Transfer Risk

Record suppliers and processors once, then reference them across assessments, RoPA, risk and data mapping.

Reusable records
05 / Map

Data Mapping

Organisational Registry

Build a living view of systems, suppliers, locations, data categories and transfers.

Living map

Point tools create records. Acompli connects them.

One platformOne knowledge baseEvery module feeds the next
Specialist tools

Different jobs from the core platform — so they’re priced on their own, never bundled into everyone’s licence.

Standalone product

DSAR

Manage requests from intake to archive with deadlines, identity checks, redaction and audit history.

Explore DSAR
Add-on

Code Scan

Turn live codebases into reviewable privacy and AI-governance evidence. Add it to any platform plan.

Explore Code Scan

Core message

Privacy teams do not need another isolated tool.

They need a connected operating model where every approved answer, supplier, system, risk and record improves the next piece of work.

Knowledge base

Systems, suppliers, locations, documents, prior assessments and approved precedents live in one place.

Review workflow

AI-generated drafts, risk entries and record updates stay in review until the right person approves them.

Audit trail

Every decision, change, approval and AI action can be logged with the record it affected.

Reporting

Live dashboards and exports draw from reviewed data, not static spreadsheets.

How the platform works

From existing material to reusable compliance evidence

01 / Import and connect

Bring in DPIAs, RoPA registers, vendor lists, contracts, DPAs, policies, architecture diagrams and system inventories.

02 / Structure and enrich

Turn scattered material into reusable records: systems, suppliers, data categories, locations, transfer mechanisms and supporting documents.

03 / Assess and collaborate

Run structured assessments with relevant context already available, clearer contributor guidance and reviewer-ready answers.

04 / Draft and verify

Use AI to draft responses, RoPA fields, risks and summaries while flagging low-confidence or unsupported claims for review.

05 / Review and approve

Keep humans in control. Nothing becomes a published record, final risk or approved assessment without review and sign-off.

06 / Reuse and report

Approved work feeds risk, RoPA, data maps, supplier records, precedents, dashboards and evidence packs.

Platform capabilities

Connected modules, shared evidence

The modules remain distinct for the work they support, but they share the same reviewed facts, permissions and audit trail.

Assessments

Run DPIAs, LIAs, TIAs, processor reviews and AI Act assessments with templates, AI support and human approval.

Open module

RoPA management

Maintain Article 30 records that stay linked to approved assessments, systems, suppliers and transfers.

Open module

Risk management

Extract candidate risks from approved evidence, assign treatment plans and report on current exposure.

Open module

Third-party risk

Record suppliers and processors once, then reference them across assessments, RoPA, risk and data mapping.

Open module

Data mapping

Build a living view of systems, suppliers, locations, data categories and transfers.

Open module

DSAR management

Manage requests from intake to archive with deadlines, identity checks, redaction and audit history.

Open module

Code Scan

Use source-code evidence to support data mapping, DPIAs, RoPA and AI governance.

Open module

EU AI Act governance

Document AI systems, assessments, classification decisions and evidence alongside GDPR records.

Open module

Compliance assistants

Work from Teams, Slack, Copilot M365 and the web app with the same permissions and audit trail.

Open module

PECR review

Review outbound communications for ePrivacy and direct marketing compliance before launch.

Open module

See the connected workflow in action.

Run one assessment and watch the downstream record build around it.

Book a walkthroughSee a sample Evidence Pack