Documentation
Trust and workflow documentation for OneComply
Buyer-safe documentation covering security posture, RBAC, framework scope, and customer-facing workflows. Internal architecture, API, and runbook pages are available to platform admins only.
Start here
DORA workflows and control evidence
Buyer proof
Security, RBAC, audit trail, coverage
Internal docs
Architecture and API guides are admin-only
Getting Started
First-hour setup path for organisation profile, users, controls, evidence, vendors, reports, and support.
Security Model
Customer-facing trust model: authentication, RBAC, encryption, audit trail, and data boundaries.
RBAC Summary
Plain-English role guide, audit-log visibility, and practical assignment guidance.
Framework Guides
Step-by-step walkthroughs for DORA, ISO 27001, NIS2, GDPR, CSSF, and CRA.
Framework Coverage
DORA-first positioning, framework scope labels, report posture, and legal-review boundaries.
Evidence Workflow
How evidence is uploaded, owned, linked, reviewed, expired, and reused across mapped frameworks.
Control Mapping Concierge
Upload customer controls, validate rows, review suggestions, preserve aliases, and commit safely.
Imports and Templates
Choose the right spreadsheet, understand blockers and warnings, and re-import safely.
DORA RoI Package
Register-of-information workflow, source-data gates, validation boundaries, and customer handoff.
Incident Reporting
Incident intake, DORA clocks, evidence linkage, escalation states, and export readiness.
Incident Intake Connectors
Connect Jira, ServiceNow, PagerDuty, SIEM, or webhooks with review mode, HMAC, and noise controls.
Customer API Access
API entitlement model, key handling, and where customers find authenticated endpoint documentation.
Legal Acceptance
Terms, Privacy, and DPA click-through, re-acceptance on version bumps, and the audit trail.
Troubleshooting
Customer-safe fixes for access, uploads, imports, reports, billing, and integrations.