Product

The execution platform for compliance operations.

Legis gives compliance teams one place to map controls, link evidence, detect gaps, automate workflows and keep an always-available audit trail — across every framework you manage.

Book a demo See how it works
app.legis.eu — Controls
Controls
340 total · 312 mapped
All controls — filtered: requires attention
CTR-0041Access provisioning reviewNon-Compliant
CTR-0096Vendor risk assessmentAt Risk
CTR-0112Encryption key rotationAt Risk
CTR-0027Incident response testingIn Review
CTR-0153Data retention enforcementAutomated
CTR-0008Backup restoration drillCompliant
CTR-0072Security awareness trainingCompliant

Platform overview

Everything connected. Nothing lost.

Legis sits between the systems where compliance work happens and the outcomes auditors need to see — turning scattered activity into structured, auditable execution.

Systems & sources
JRJira
MTMicrosoft Teams
SFSalesforce
SNServiceNow
DRDrives & repositories
XLSpreadsheets & email
Legis
Operational outputs
Mapped controls
Linked evidence
Assigned owners
Gap remediation
Audit trail
Continuous readiness

Core capabilities

Built to execute, not just track.

Control mapping

Map controls to frameworks, owners and evidence. One control can satisfy requirements across ISO 27001, SOC 2, GDPR and DORA at once.

Evidence collection

Collect and link evidence continuously from connected systems — not in a panic the month before the audit.

Gap detection

Identify weak controls, missing documentation and remediation needs — with severity scoring and clear ownership.

Workflow execution

Assign owners, trigger follow-ups and track remediation across departments without losing context.

Continuous monitoring

Monitor control health, framework status and readiness in real time, across every framework you manage.

Audit trail

A structured history of every action, evidence link, decision and ownership change — available the moment an auditor asks.

Conversational interface

Ask. Understand. Act.

Legis combines regulatory knowledge, company context and workflow execution into a single conversational interface. Every answer can become an action: a task, a report, a linked piece of evidence.

Import evidence from Excel Generate a compliance report Create a remediation task Organize documents Verify open gaps Export audit summary
Legis Assistant
Import the access review evidence from this quarter's spreadsheet.
access_review_q2.xlsx parsed · 48 rows imported
Imported and linked to CTR-0041 — Access provisioning review. 46 entries verified, 2 flagged for missing approver signatures. Want me to notify the control owner?
Yes, and add it to the SOC 2 evidence package.
Owner notified · evidence added to SOC 2 package
Ask Legis anything about your compliance posture…

Integrations

Meets your work where it already happens.

Legis connects to the systems your teams already use — syncing tasks, evidence and status bidirectionally so nothing has to be re-entered.

JRJira
MTMicrosoft Teams
WDWorkday
SPSAP
SFSalesforce
SNServiceNow

Plus drives, document repositories, spreadsheets and email — where most compliance evidence lives today.

Workflow automation

Follow-ups that follow up on themselves.

Every gap becomes an assigned, trackable workflow. Legis routes tasks to the right owners, sends reminders before deadlines, and escalates when nothing moves — so the compliance team stops being the chasing team.

  • Automatic owner assignment by control and department
  • Reminders and escalations on due dates
  • Remediation status visible on the control, not in an inbox
Active remediation workflows
TSK-204Collect Q3 access review approvalsIn progress
TSK-205Update vendor risk assessment — Acme CloudDue in 3 days
TSK-206Sync change-management logs from JiraAutomated
TSK-198Document incident response test resultsCompleted
TSK-191Rotate encryption keys — production clusterCompleted

Audit trail

Every action, on the record.

Legis keeps a structured, chronological history of actions, evidence, decisions and ownership. When an auditor asks "who approved this, and when?" — the answer is one search away, not one archaeology project away.

  • Chronological record of every change
  • Evidence, owners and decisions linked in context
  • Exportable summaries for auditors
Audit trail — CTR-0041
Evidence verified48 access review entries linked
14:32
Owner assignedM. Rossi — IT Operations
14:30
Gap flagged2 entries missing approver signature
14:28
Evidence importedaccess_review_q2.xlsx · 48 rows
14:27
Control review startedTriggered by SOC 2 readiness check
14:25

See the platform on your own workflows.

In 30 minutes, we'll map your current compliance workflow and show where Legis removes manual work.

Book a demo