Our Whistleblower software supports companies, authorities and public institutions in receiving reports securely, anonymously and in a structured manner, reviewing them in accordance with legal requirements and processing them in a verifiable manner. Workflows, roles and terms ensure transparent processes. The audit-proof documentation provides reliable evidence – for internal audits and to meet the requirements of the HinSchG (German Whistleblower Protection Act) and the EU Directive.
Receive anonymous or non-anonymous reports – with a secure feedback channel.
Manage terms, responsibilities and escalations – keep processing on schedule.
Audit security – complete history, logs and evidence.
otris is an established provider of compliance software. Our solutions combine ease of use with high standards of data protection and data security. Company-specific requirements can be mapped without much effort.
Our Whistleblower software is based on high security standards: operation in ISO 27001-certified data centres in Germany, state-of-the-art encryption and role-based access with logging. Regular security checks and penetration tests complement the protection concept.
The solution is ready for immediate use and can be configured flexibly. Reporting forms, workflows and case management can be adapted to your processes; interfaces and SSO enable integration into existing systems. This allows you to map your governance without media discontinuity.
An integrated dashboard provides real-time performance indicators for control and compliance reporting. Reports and graphical evaluations (e.g. by topic, status, terms or organisational units) create transparency and can be exported as required. The history remains auditable and traceable.
„The implementation went really quickly and smoothly. Working with otris is straightforward and easy.“
All editions meet the same high standards of IT security and data protection. Which version is suitable depends on factors such as company size, volume of reports and structure. We would be happy to advise you personally.
Vorfälle sicher dokumentieren und workflowgestützt bearbeiten. Mehrsprachige Formulare. Meldeformular flexibel konfigurierbar. Fristen- und Benutzermanagement. 2-Faktor-Authentifizierung. Datenschutzkonform.
Extended functionality for larger organisations. Flexible customisation of editing processes, authorisation models and case files.
In addition to STANDARD
Maximum functionality for integration into business processes. Customisable in terms of requirements and interfaces.
In addition to ENTERPRISE
Anonymous communication and efficient case handling
Without internal and external reports, it is often difficult to identify problems, and when they are identified, it is often too late. At the same time, potential whistleblowers are reluctant to report concerns for fear of reprisals. The otris Whistleblower software builds trust: it enables anonymous communication via a secure reporting channel, protects the identity of the whistleblower and ensures the confidentiality of the report.
Rule violations by individual employees or external partners can have significant legal and economic consequences. Early warnings – whether submitted internally or externally – support timely damage limitation, facilitate evidence gathering and promote prevention. The Organisation can learn from identified cases: processes, responsibilities and controls are developed in a targeted manner. Motivating internal reporting is therefore an important component of an effective compliance strategy.
Many whistleblowers fear damage to their reputation or professional disadvantages. Secure, anonymous reporting channels significantly reduce these hurdles. The otris Whistleblower software offers pseudonymous dialogue and gives whistleblowers the freedom to choose whether to reveal their identity or remain anonymous. Confidentiality, role-based visibility and documented process steps increase trust – while also supporting the requirements of the HinSchG and EU Directive, including protection against reprisals within the framework of the respective legal regulations.
„We are extremely satisfied with the support provided by otris software AG. Our contact persons are always available, and change requests are implemented competently and quickly.“
Use the system – beyond the scope of the HinSchG – for structured complaint channels in the supply chain, administration and interest groups.
Securely record, assess and process information on violations of compliance, sustainability or quality requirements along the supply chain – with transparent documentation.
Receive, assign and evaluate reports in accordance with legal requirements (internal/external) – multilingual, with a pseudonymised feedback channel and integrated into existing processes.
Receive concerns confidentially, e.g. from representatives for disabled persons, women’s/equality officers, and process them in a structured manner – with a role-appropriate view of sensitive content.
In order to operate Whistleblower software in compliance with the law, confidentiality must be maintained and the identity of the whistleblower must not be disclosed. On a technical level, the otris reporting platform supports protection through operationally separate cloud operation in Germany (otris systems) and encrypted communication.
The more trustworthy the reporting channel, the more likely whistleblowers are to share information. The otris software AG reporting platform transmits messages to the recipient using high-level encryption. Anonymity can be maintained regardless of whether the report is submitted internally or externally. An automatically generated ID enables a pseudonymised feedback channel.
The reporting platform is operated in the cloud in Germany by otris systems GmbH and provides technical support for identity protection. All content between whistleblowers and recipients is transmitted in encrypted form. In addition to confidentiality and security, the otris Whistleblower software (otris whistleblower) complies with legal requirements for data protection and data security.
The system also supports use cases beyond the HinSchG, such as complaint management in accordance with LkSG/CSDDD requirements.
In addition, the solution supports voice messages and the structured recording of reports from other channels (e.g. letter, telephone, email). All incoming reports are assigned to the case file, documented and tracked with audit security.
In addition to the reporting platform, the otris Whistleblower software includes flexibly configurable case management. Reports can be documented, rated and consistently followed up in the system. In accordance with EU Directive 2019/1937, the process provides for, among other things, confirmation of receipt within 7 days and feedback within 3 months. The system reminds you of deadlines and supports follow-ups. At the same time, you can record and evaluate relevant compliance KPIs (e.g. in accordance with ISO 37301) in a structured manner and verify them in reports.
Communication with whistleblowers takes place from case management; messages are transmitted to the reporting platform and made available there anonymously via a secure feedback channel. Case management can be operated on-premises or in the cloud. For reasons of identity protection, the reporting platform remains designed as a separate cloud service (DE, otris systems GmbH).
With case management, you can record and consolidate compliance KPIs in accordance with ISO 37301. This makes throughput times, feedback rates and processing quality measurable and comparable. Dashboards and reports support trend analyses and management reviews; thresholds can be used for KPI monitoring and reminders/escalations.
„Uncomplicated, secure and good value for money: we are completely satisfied with the otris whistleblower software.“
The Whistleblower Protection Act (HinSchG) transposes EU Directive 2019/1937 into German law. The aim is to uncover abuses more quickly and protect whistleblowers from reprisals.
Companies with 50 or more employees are required to set up internal reporting offices. There are corresponding requirements for the public sector; details in local authorities are governed by state law.
Reporting offices must be designed in such a way that the confidentiality of the identity is maintained.
The system allows anonymous or non-anonymous reports and a secure return channel. It maintains confidentiality through technology and Organisation:
Personal data (e.g. in non-anonymous reports or third parties) is protected by transport and end-to-end encryption.
The system is usually ready for use after a brief configuration process. Templates (data protection notices, FAQs, categories, system texts) are available and can be customised. Workflows, roles and forms can be expanded step by step.
SaaS means low internal IT costs; on-premises is possible (for case management).
No. The law defines requirements (e.g. confidentiality, Terms), but not the technology. Alternatives (ombudsperson, email, hotline) are possible in principle, but identity/confidentiality protection is often more difficult to implement in these cases.
Whistleblower software facilitates anonymous communication, timely processing, audit security in terms of documentation, and deletion-compliant processes, among other things.
In accordance with EU Directive 2019/1937:
Yes. The system supports internal and external reports – in multiple languages, including anonymously. The channel can be controlled for each target group (public, Suppliers, Service Providers).
Via interfaces and SSO (e.g. Azure AD). Case management on-premises or in the cloud (DE); separate reporting platform in the cloud (DE, otris software AG) – to protect identity.
Would you like to receive reports securely, manage terms/escalations and provide audit-proof evidence of compliance KPIs (e.g. according to ISO 37301)? With the otris Whistleblower software, you can process cases in a structured manner – from receipt to verification.
Request a guided demo – we will show you typical processes and answer your questions. Or book a consultation appointment to discuss your requirements and find the right edition for you.
