The platform

One platform forcontinuous compliance

Regwolf turns NIS2, the AI Act, ISO 27001 and GDPR into one living system — evidence collected for you, controls watched around the clock, audits answered in a click.

app.regwolf.com/dashboard

Compliance posture

Live · all frameworks
Control health Last 6 months
JanFebMarAprMayJun

Coverage

Every framework, one source of truth

Map your controls once and reuse them across NIS2, the AI Act, ISO 27001 and GDPR. When a control passes, every framework that relies on it updates at the same time.

  • Pre-mapped control libraries for each regime
  • One control satisfies many clauses at once
  • New regimes added as Europe moves
app.regwolf.com/frameworks

Frameworks

4 active
NIS292%
AI Act88%
ISO 2700196%
GDPR90%
DORA · coming CRA · coming
Evidence

Evidence collects itself

Connect your stack once and Regwolf pulls timestamped evidence from cloud, identity, code, HR and ticketing — continuously, so nobody screenshots anything the week before an audit.

  • Native integrations, connected in minutes
  • Continuous, timestamped collection
  • One evidence layer every framework reuses
app.regwolf.com/evidence

Evidence sources

Live · 14 sources
AWAWS
OKOkta
GHGitHub
AZAzure
SLSlack
PEPersonio
MFA enforced — 228/228 accounts2m ago
Backup verified — prod database18m ago
Access review — engineering1h ago
Monitoring

Drift caught the moment it happens

Regwolf watches every control around the clock and flags the second something slips — an access left open, logging gone quiet, MFA switched off — with the owner and the fix attached.

  • Real-time alerts routed to the right owner
  • Severity, impacted frameworks and remediation
  • A full, exportable audit trail
app.regwolf.com/monitoring

Active alerts

3 open
HighPublic S3 bucket — exposed evidence store4m
MedAdmin without MFA — billing console26m
LowLogging gap — staging cluster2h
Sentinel watching 228 controls
Audit & reporting

Audit-ready in a click

Generate evidence packs, records of processing and board reports from live data — or invite your auditor into a scoped, read-only view and let them see the program directly.

  • One-click evidence packs per framework
  • Scoped, read-only auditor access
  • Board-ready summaries on a schedule
app.regwolf.com/reports

Reports & packs

Ready to export
NIS2 evidence pack
228 controls · updated today
Export
ISO 27001 Statement of Applicability
Annex A · 93 controls
Export
Board report — Q2
Auto-generated · monthly
Export
Custom Workflows

Your processes, on autopilot

Document sign-offs, vendor reviews, access approvals — model any compliance process with steps, conditions and approvers. No email chains, no chasing.

  • Works on any compliance entity in the platform
  • Steps, conditions, approvers — no code
  • The right people notified at every step
app.regwolf.com/workflows

Document approval

Active
01Document submittedTrigger
02Legal reviewAnna K.
03DPO sign-offMarek W.
04Approve / Request revisionDecision
Vendor review
Access request
Rules Engine

Compliance that follows your logic

Define exactly when alerts fire, tasks are assigned and issues escalate — based on your own conditions, not just what the framework says. Write a rule once, apply it everywhere.

  • IF/THEN rules across any entity or event
  • Rules apply across all active frameworks
  • Enable, pause or edit rules without code
app.regwolf.com/rules

Rules engine

6 active
IF
Control status = Drifting
THEN
Alert control owner
IF
GDPR review overdue > 7 days
THEN
Escalate to DPO
IF
New AI system registered
THEN
Start risk classification
IF
Incident reported
THEN
Start NIS2 24h clock
Built for European teams

Enterprise-ready from day one

EU data residency

Hosted in the EU, in-region by design — your evidence never leaves Europe.

SSO & SCIM

SAML single sign-on and automated provisioning with your identity provider.

Full REST API

Automate evidence, controls and reporting — or build Regwolf into your own product.

Roles & permissions

Granular RBAC so each team, auditor and partner sees exactly what they should.

Audit trail

Every change, evidence item and approval is logged and time-stamped, immutably.

Secure by default

Encryption in transit and at rest, least-privilege access, and our own SOC 2 program.

See it live

Watch Regwolf run
your compliance

Book a 30-minute demo and we will connect a framework live on the call — or open the interactive dashboard and explore it yourself.