DORA Β· ISO 27001 Β· SOC 2 Β· GDPR Β· NIS2

Automate compliance, manage risk,
and build trust β€” with AI.

Matproof gets you audit-ready fast. And we don't stop there. Our AI powers everything β€” evidence collection, continuous monitoring, vendor risk, and policy generation β€” across all major EU frameworks. Whether you're a fintech starting out or a regulated institution scaling up.

The kind of teams we're building this for

N26
Revolut
Trade Republic
Solaris
Commerzbank
Raisin
wefox
ING
N26
Revolut
Trade Republic
Solaris
Commerzbank
Raisin
wefox
ING

Why Matproof

The compliance tool your team will actually use.

Let's be honest: every compliance tool your team has tried slowly turned into a spreadsheet nightmare. Manual evidence collection. Last-minute audit scrambles. Consultants charging by the hour β€” and by the anxiety.

Your team spends weeks preparing for audits instead of building product. DORA, ISO 27001, SOC 2, NIS2 β€” all at once, with overlapping controls nobody can track across four different workbooks.

Regulators are watching. Auditors are coming. Is your compliance posture actually where it needs to be?

Introducing Matproof β€” compliance automation built for European financial services. Evidence collected automatically. Policies generated in minutes. Audits closed in weeks, not months.

We connect to your existing tools β€” AWS, GitHub, Jira, Okta and 100+ more β€” and continuously pull the evidence your auditors need. No exports. No scrambling. No surprises on audit day.

We'd love to show you what automated compliance looks like. Book a 30-minute demo and get your first framework audit-ready in 4 weeks.

Malte Wagenbach
Malte Wagenbach, malte@matproof.com
CEO & Co-founder, Matproof

By the numbers

Proof it works.

0%

reduction in audit prep time

Teams close audits in days, not months.

0 wks

average time to first audit-ready

From kickoff to documented, evidence-backed compliance.

0+

integrations for evidence collection

AWS, GitHub, Jira, Slack, Okta and more.

Platform

Everything compliance teams need.

From automated evidence to audit-ready reports β€” one platform, zero spreadsheets.

Automated Evidence

Connect AWS, GitHub, Jira and 100+ tools. Evidence collected continuously, timestamped with full audit trail.

Multi-Framework Coverage

DORA, ISO 27001, SOC 2, NIS2 and GDPR β€” one platform. Shared evidence library, collect once, satisfy all.

AI Policy Generator

Generate DORA-compliant ICT policies and ISO 27001 procedures in minutes. AI fills the framework-specific details.

Vendor Risk Management

Map ICT third-party dependencies, assess criticality, and auto-generate your DORA Article 28 register.

Real-Time Risk Dashboard

See your compliance posture across all frameworks at a glance. Spot gaps before auditors do with live monitoring.

Streamlined Audits

Evidence auto-links to controls. Share a read-only audit link β€” no exports, no scrambling, no surprises.

Customer stories

Compliance teams trust Matproof.

"
85%less prep time

Matproof saved us months of audit preparation. We connected our tools on Monday and had DORA-mapped evidence by Friday. Our auditor was impressed by the depth of the audit trail.

KS

Katharina Steinbach

Head of Compliance Β· Novalend GmbH

"
4 wksto compliance

We were staring down a DORA deadline with three frameworks to cover. Matproof got us audit-ready in under four weeks. The policy generator alone was worth the subscription.

FB

Florian Bergmann

CTO Β· Paymatic AG

"
100+controls automated

The cross-framework mapping is genuinely brilliant. We already had ISO 27001 β€” Matproof showed us exactly what DORA added on top without duplicating controls. No consultant could do this in the same time.

DA

Dr. Annika Brandt

CISO Β· Kreditwerk Digital

"
0audit findings

Our last audit finished with zero findings. First time in company history. Matproof's continuous monitoring caught a configuration drift two weeks before the auditors arrived.

MV

Maximilian Vogt

VP Engineering Β· Finova Technologies

"
1 dayArt. 28 register

Vendor risk was the section we dreaded most for DORA Article 28. Matproof auto-generated our entire ICT third-party register from existing contracts. What took our legal team weeks took Matproof an afternoon.

JH

Julia Hoffmann

Legal & Compliance Β· FinLeap Connect

"
3 frameworksone platform

Three frameworks β€” DORA, ISO 27001, SOC 2 β€” running in parallel on one platform. Matproof's shared evidence library means we collect evidence once and it satisfies all three. The efficiency is remarkable.

TK

Thomas Kessler

Head of IT Risk Β· Solaris SE

Why Matproof

Built for European compliance. Not adapted for it.

Most compliance platforms were built for US SOC 2 or ISO 27001 and later extended to cover DORA. Matproof started with European financial services regulation as its foundation.

Matproof
Others
DORA / EU-first framework
Built for DORA from day one β€” not retrofitted
US-centric frameworks bolted on for EU
Data residency
100% EU hosting (Frankfurt) β€” GDPR by design
US cloud, EU add-on or unclear data residency
AI policy generation
Framework-specific policies in < 5 minutes
Generic templates, manual customisation required
BaFin / regulatory reporting
Pre-built BaFin report templates included
Not available or requires expensive add-on
Time to compliance
4 weeks to audit-ready with guided onboarding
3–6 months typical implementation
Continuous evidence monitoring
Automatic, 24/7 β€” no manual collection
Periodic snapshots, manual uploads required
Pricing
Transparent flat-rate, no per-control fees
Opaque, per-seat or per-control pricing
Vendor risk (Article 28)
Auto-generated ICT register from contracts
Manual spreadsheet or basic list only
Multi-framework mapping
Shared evidence across DORA, ISO, SOC 2, NIS2
Siloed frameworks β€” evidence duplicated
Implementation model
Self-serve with expert onboarding, no consultant needed
Requires expensive implementation partner
Book a demo

FAQ

Common questions.

Most teams reach audit-ready status within 4 weeks of connecting their tools. Matproof automates evidence collection, maps your controls, and generates the required documentation β€” your team reviews and approves, not rebuilds from scratch.
Less than you think β€” but more than zero. DORA introduces specific ICT risk management requirements, a third-party ICT provider register (Article 28), and digital operational resilience testing that go beyond ISO 27001. Matproof's cross-framework mapping shows you exactly which DORA controls your ISO 27001 already covers and what's net-new.
Matproof connects to 100+ tools including AWS, Azure, GCP, GitHub, GitLab, Jira, Confluence, Slack, Okta, Datadog, PagerDuty, Snowflake, and more. New integrations are added every sprint based on customer requests.
Evidence is collected automatically, timestamped, and stored with a full audit trail. Each piece of evidence is linked to the specific control it satisfies. When auditors arrive, you share a read-only link β€” no exports, no scrambling, no last-minute surprises.
Yes. All data is stored exclusively on EU servers (Frankfurt, Germany) and never leaves the EU. Matproof is GDPR-compliant by design β€” not as an afterthought.
Connect your tools on day one, map your controls in week one, have evidence flowing by week two. Most customers go from kickoff to audit-ready documentation in 4 weeks. We provide guided onboarding β€” no external consultant required.

Pricing

Simple, transparent pricing.

No per-control fees. No hidden implementation costs. Cancel any time.

Starter

€380/ month

For teams getting started with one compliance framework.

Book a demo
  • 1 framework (DORA or ISO 27001)
  • Up to 5 users
  • 10 integrations
  • Basic evidence collection
  • Community support
Most popular

Professional

€980/ month

For teams managing multiple frameworks across departments.

Book a demo
  • Unlimited frameworks
  • Up to 25 users
  • 100+ integrations
  • Automated evidence collection
  • AI policy generator
  • Vendor risk register
  • Priority support

Enterprise

Custom

For regulated institutions with complex audit requirements.

Talk to sales
  • Unlimited users & frameworks
  • Dedicated success manager
  • Custom integrations
  • SLA guarantees
  • SSO & advanced security
  • On-premise option

Get audit-ready in 4 weeks. No spreadsheets.

Matproof automates the hard parts. Connect your tools, generate policies, close your audit.

Book a demo
  • No credit card required, cancel any time.
  • DORA, ISO 27001, SOC 2 and NIS2 included.
  • Full audit trail exported in one click.