What is a DSAR portal?

A DSAR (Data Subject Access Request) portal is a GDPR-mandated tool that allows individuals to submit requests to access, delete, or port their personal data. Sekorti provides a branded DSAR portal that automatically acknowledges requests, tracks the 30-day response deadline, and maintains a full audit log.

What is an AI governance portal?

An AI governance portal documents your organization's AI systems, their risk classifications, training data, and compliance with regulations like the EU AI Act and ISO 42001. Sekorti's AI governance portal lets you register AI models, publish their use cases, and demonstrate responsible AI practices to buyers and regulators.

ISO 42001 is the international standard for AI management systems, published in 2023. It provides a framework for organizations to develop, deploy, and govern AI responsibly. Sekorti's AI governance portal is aligned with ISO 42001 and the EU AI Act, helping you demonstrate compliance to enterprise buyers and auditors.

Is Sekorti an OneTrust alternative?

Yes. Sekorti is a focused, affordable OneTrust alternative for SaaS companies and startups. OneTrust is a large enterprise privacy platform with complex, expensive pricing. Sekorti covers the compliance modules most relevant to growing tech companies — DSAR portal, cookie compliance, sub-processors registry, AI governance, status pages, and incident response — all automated and live, starting free.

Is Sekorti an alternative for status page software like Statuspage or Better Stack?

Yes. Sekorti includes a built-in public status page as part of its Compliance Hub — no separate tool needed. Instead of paying for Statuspage (Atlassian), Better Stack, or Instatus separately, Sekorti's status page is bundled with your trust center, DSAR portal, AI governance, and other compliance modules.

Does Sekorti replace a dedicated DSAR management tool?

For most SaaS companies and startups, yes. Sekorti's DSAR portal handles GDPR-mandated data subject requests (access, deletion, rectification, portability) with automatic acknowledgement, 30-day deadline tracking, and a full audit log — replacing standalone DSAR tools at a fraction of the cost, bundled with your full compliance hub.

Compliance Hub

Compliance that
speaks for itself.

Seven built-in modules that answer every question enterprise buyers ask before they sign. Security posture, privacy rights, AI governance, incident history — all live, all accurate, all in one place.

Talk to us

GDPR ready EU AI Act SOC 2 aligned No setup required

sekorti.com/compliance — Acme Corp

Compliance modules · 7 active

A+ Score

Security Scanner

DMARC · SSL · Headers · SPF

3 open

DSAR Portal

Access · Delete · Portability

Ready

Incident Response

Playbooks · Notifications

EU AI Act

AI Governance

4 models registered

Active

Cookie Consent

GDPR · ePrivacy

Operational

Status Page

99.9% uptime · 30d history

24 listed

Sub Processors

AWS · Stripe · Intercom · Datadog · SendGrid +19 more · Updated May 2026

Overall Compliance Score

Based on 7 active modules · Last checked 2 min ago

Security Scanner

Automatic domain security assessment

Sekorti continuously scans your domain and surfaces your security posture in real time. SSL, DMARC, SPF, DKIM, security headers, open ports — all checked automatically, all displayed with context.

SSL certificate status and expiry monitoring

DMARC, SPF, and DKIM email authentication

HTTP security headers (CSP, HSTS, X-Frame)

Graded score with detailed remediation guidance

DSAR Portal

Data Subject Access Requests, handled

A public-facing portal where individuals can submit GDPR-mandated rights requests. Sekorti tracks every request, enforces the 30-day response clock, and routes internally so nothing slips through.

Access, deletion, rectification, portability requests

Automated acknowledgement emails to requesters

30-day deadline tracking with internal alerts

Audit log for every request and action taken

Incident Response

Documented playbooks and public disclosure

Show buyers you are prepared before an incident happens. Publish your incident response process, define severity levels, set notification timelines, and disclose past incidents with full resolution history.

Incident response policy and playbook documentation

Severity classification (P1–P4) with SLA timelines

Public incident disclosure with resolution notes

72-hour GDPR breach notification tracking

AI Trust & Governance

EU AI Act compliance and model transparency

As AI regulations tighten, buyers and auditors increasingly ask what AI systems you use and how they are governed. Register your models, publish risk classifications, document training data, and demonstrate EU AI Act readiness.

AI model register with use case and risk classification

EU AI Act conformity documentation

Bias assessment records and mitigation strategies

Human oversight and accountability documentation

Cookie Compliance

Consent management that actually works

Publish a live cookie policy that documents every cookie your site sets, its purpose, duration, and whether consent is required. Show regulators and enterprise legal teams exactly how you handle ePrivacy and GDPR cookie obligations.

Auto-generated cookie inventory with categories

Consent records with timestamp and version

ePrivacy Directive and GDPR aligned

Always updated when new cookies are added

Status Pages

Public uptime history buyers can trust

A live, public status page showing real-time service health across all your components. Past incidents, resolution times, maintenance windows — displayed transparently so enterprise buyers can verify your reliability claims, not just read about them.

Real-time status per service component

90-day uptime history with incident log

Scheduled maintenance announcements

Embeddable status badge for your Trust Center

Sub Processors

Full third-party data processing transparency

GDPR requires you to disclose every sub processor you use to handle personal data. Sekorti maintains your live sub processor list, documents data location and category for each, and notifies when the list changes — exactly as the regulation requires.

Full sub processor list with country and purpose

Data transfer mechanisms (SCCs, Adequacy)

30-day change notification as required by GDPR

Always-current public URL for DPA references

AWS

Stripe

Intercom

Datadog

SendGrid

+19 more

Security Scanner

Your security posture, scanned and scored automatically.

Enterprise buyers run their own checks on your domain before they even read your questionnaire responses. Sekorti scans first so you know what they will find — and shows a graded, always-current security score on your Trust Center.

Continuous monitoring

Scans run automatically. Regressions are flagged before a buyer discovers them.

Remediation guidance

Each failed check comes with plain-English instructions your engineering team can act on immediately.

Embeds in your Trust Center

The live security score appears directly on your Trust Center so buyers see your actual posture, not claims.

Security Scanner · acmecorp.com

acmecorp.com A+ 92/100

✓

SSL Certificate Valid · 89d

✓

DMARC Policy Enforced

✓

SPF Record Pass

✓

HSTS Header Enabled

Content Security Policy Review

✓

DKIM Signing Active

DSAR Portal · Acme Corp

Active Requests

Jane Doe

Right to Access

In progress 12d left

Marc Klein

Right to Erasure

Completed Done

Sara Lee

Portability Request

New 28d left

Total

Resolved

Open

DSAR Portal

Privacy rights requests. Handled without the spreadsheet.

GDPR gives individuals the right to access, delete, correct, or move their data. Managing these requests manually is error-prone and legally risky. Sekorti automates the entire workflow from submission to resolution, with a full audit log.

Automatic acknowledgement

Requesters get an instant confirmation email with their reference number and expected resolution date.

30-day deadline enforcement

The system tracks every request against the GDPR clock and alerts your team before deadlines are missed.

Full audit trail

Every action — submission, assignment, response, closure — is timestamped and retained for regulatory review.

AI Trust & Governance

The EU AI Act is here. Show buyers you are ready.

Enterprise procurement teams are adding AI governance questions to every vendor questionnaire. Sekorti's AI Trust portal lets you register your models, classify their risk level, and publish a transparent, always-current AI governance statement.

AI model register

Document every AI system you use — purpose, training data, output type, and risk classification under the EU AI Act.

Risk and bias documentation

Record bias assessments, fairness metrics, and mitigation measures for each model, surfaced clearly for auditors.

Human oversight accountability

Show that human review is in place for high-risk decisions — a core requirement of EU AI Act Article 14.

AI Governance Portal · Acme Corp

Customer Support AI Limited Risk

Classification NLP EU AI Act Art.52

Questionnaire AI Engine Minimal Risk

Retrieval Generation Human review ✓

Security Anomaly Detector High Risk

Anomaly detection Conformity doc ✓

AI Governance Score

3 models registered · EU AI Act aligned · Human oversight: all

Security Teams

Prove your posture without answering the same questions twice.

Your security configuration is public-facing and always current. The scanner monitors your domain automatically. When a buyer's security team checks, they find exactly what you intend them to find.

Legal & Privacy

GDPR obligations handled. Audit trail maintained.

DSAR requests, sub processor disclosures, cookie consent records, and incident response documentation — all managed in one system with the paper trail regulators expect.

Engineering & Product

AI governance and status pages that keep deals moving.

Register your AI models before procurement asks. Keep a public status page that proves your uptime claims. Give your sales team evidence they can share without pulling engineering into every deal review.

Compliance that
speaks for itself.

Everything buyers check.
Already covered.

Your security posture, scanned and scored automatically.

Privacy rights requests. Handled without the spreadsheet.

The EU AI Act is here. Show buyers you are ready.

Every team that owns
trust and compliance.

Compliance that closes deals.
Not just checks a box.

Compliance thatspeaks for itself.

Everything buyers check.Already covered.

Your security posture, scanned and scored automatically.

Privacy rights requests. Handled without the spreadsheet.

The EU AI Act is here. Show buyers you are ready.

Every team that ownstrust and compliance.

Compliance that closes deals.Not just checks a box.

Compliance that
speaks for itself.

Everything buyers check.
Already covered.

Every team that owns
trust and compliance.

Compliance that closes deals.
Not just checks a box.