Documentation

Build, ship, and audit with OneComply

Technical documentation covering architecture, security, framework workflows, and APIs. Every page lists its owner and last-reviewed date so you can trust what you're reading.

Architecture

High-level system design, hosting topology, and tenant isolation.

Security Model

Authentication, RBAC, encryption, and threat model.

Data Model

Core entities — organizations, users, controls, evidence, vendors.

Framework Guides

Step-by-step walkthroughs for DORA, ISO 27001, NIS2, GDPR, CSSF, and CRA.

Framework Coverage

DORA-first positioning, framework scope labels, report posture, and legal-review boundaries.

Core Workflows

Evidence, control mapping, DORA RoI package generation, SBOM ingestion, incident reporting, auth flow.

Legal Acceptance

Terms, Privacy, and DPA click-through, re-acceptance on version bumps, and the audit trail.

Common Issues

Runbook for login, trial, billing, auditor, evidence, and notification troubleshooting.

API Reference

REST endpoints for integrating OneComply with your stack.