Processor (AVV) register with a configurable Art. 28 draft generator and renewal tracking
Capture and prove marketing/cookie consent with timestamped, exportable DSGVO/TTDSG/DDG evidence
Cross-model DSAR discovery (Art. 15/20) with 1-month deadline timer and machine-readable export
Guided Datenschutz-Folgenabschätzung (DPIA, Art. 35 DSGVO) with threshold check, risk scoring and sign-off
Data-breach incident register with 72-hour Art. 33 timer and Art. 33/34 notification drafts (customer files)
Category-based retention engine (DIN 66398) with automated anonymise/delete and a deletion protocol
Mask/encrypt chosen personal-data fields, role-based reveal and a full DSGVO access log (Art. 32 TOM)
Records of processing register (Art. 30) with TOM, retention and a GDD-style PDF/CSV export