Skip to content
User Features
- Entirely manageable from a web administration interface
- Support for more than 90 languages with support for Right-to-Left (RTL)
- Support for assigning and creating case management statuses
- Customizable look and feel (logo, colour, styles, font, text)
- Manage multiple whistleblowing sites from a single dashboard
- Let whistleblowers decide if and when to confidentially declare their identity
- Exchange multimedia files with whistleblower
- Chat with whistleblower to discuss the report
- Advanced questionnaire builder
- Whistleblowing system statistics
- Simple recipient interface for receiving and analyzing reports
- Support for the categorization of the reports with labels
- Support for the user search of reports
Technical Features
- Automated Software Quality Measurement and Continuous Integration Testing
- Long-Term Support plan (LTS)
- Built with lightweight framework technologies (AngularJS and Python Twisted)
- Fully self-contained application (no web or application servers needed)
- Embedded database – SQLite (optional support for other databases)
- Automatic setup of Tor Onion Services Version 3
- Integrated backup support
- Easy integration of the platform with existing websites and intranets
- Support for self-service signup for whistleblowing SAAS service setup
- Support for Linux operating system (Debian/Ubuntu)
- Deb Packaging with repository for update/upgrades
- HTTP/2 support
- REST API
- Provisioning API
Legal Features
- Ready-made questionnaires for compliance law
- Whistleblower identity conditional reporting workflow
- Manage conflict of interest in the reporting workflow
- Custodian functionality to authorize access to whistleblower identity
- Compliant with ISO 37002 and EU Directive 2019/1937
- GDPR configurable data retention policies
- GDPR compliant subscriber module for new users of SaaS services
- No logs of IP addresses
- Integratable with existing enterprise case management platform
- Free Software OSI Approved AGPL 3.0 License
Security Features
- Automatic free digital certificate enrollment (Let’s Encrypt)
- Multiple penetration tests with full public reports
- Conform to industry standards and best practices for application security by following OWASP Security Guidelines
- Two-Factor authentication (2FA) support compliant with standard TOTP RFC 6238
- Integrated network sandboxing with iptables
- Integrated application sandboxing with AppArmor
- Does not leave traces in browser cache
- Complete protection against automated submissions (spam prevention)
- Subject to continuous peer-review and periodic security audits
- PGP support for encrypted email notifications
Scroll to Top