Hamburg-based compliance software company selling a modular, EU-focused GRC platform rather than a general legal-practice tool. The live site, SoftwareOne marketplace, and OMR listing all converge on the same product story: DISS-CO’s ‘Smart Integrity Platform’ bundles whistleblowing, complaint management, third-party due diligence, vendor/supplier risk, sanctions screening, GDPR, AMLD, LkSG, and CSDDD workflows into one multilingual SaaS environment. The strongest evidence is around whistleblowing and supply-chain compliance. DISS-CO publishes dedicated pages for an EU-wide whistleblowing hotline, GDPR software, LkSG software, and third-party due diligence with configurable questionnaires, adverse-media monitoring in 200+ languages, and AI-supported risk assessments. OMR describes it as a blockchain legal-tech company from Hamburg with ISO 27001 certification, German hosting, and pricing starting at 50 EUR/month, while SoftwareOne describes it as modular SaaS used across 30+ sectors. Legal relevance is real but narrow: the main operators are in-house compliance, legal, HR, procurement, and risk teams dealing with EU regulatory programs, not law firms. Community signal is weak: OMR shows 0 reviews, there is no useful G2/Capterra/Reddit corpus, and most proof points remain vendor or marketplace sourced.
Company Info
- Founded: 2021
- Team size: 11-50 employees
- Funding: $548K
- HQ: United States
- Sector: Governance/Compliance/Risk Management
What We Haven’t Verified
This page was assembled from publicly available information. Feature claims and workflow mappings are based on what the vendor and third-party listings publish — not hands-on testing or practitioner feedback.
Workflows
Based on practitioner evidence, Diss Co is used in these workflows:
What practitioners struggle with
Real frustrations from legal professionals — the problems Diss Co addresses (or should address). Sourced from practitioner reviews, Reddit threads, and case studies.
Compliance officer at a regulated financial institution tracks 150+ regulatory obligations across 10 frameworks (SOX, GDPR, HIPAA, state-level requirements) in separate spreadsheets with manual deadline reminders — an auditor's request for evidence of control testing takes days to assemble because documentation is scattered across email, SharePoint, and local drives
Compliance officer at a mid-size company receives misconduct reports through a patchwork of email, HR inbox, and manager escalations — there's no central system, no anonymity protection, and no audit trail, so reports get lost or ignored and the company can't demonstrate to regulators that it has a functioning reporting channel
Organization operating in 5 EU countries discovers the EU Whistleblowing Directive requires each entity with 50+ employees to have an internal reporting channel by the national transposition deadline — but setting up compliant systems in each jurisdiction with different local requirements is a legal and operational nightmare that the compliance team wasn't budgeted for
Where it fits in your workflow
Before Diss Co
A misconduct report arrives, a new supplier must be screened, or a compliance owner needs to operationalize an EU framework such as the Whistleblowing Directive, GDPR Art. 30, LkSG, or CSDDD
After Diss Co
The platform drives investigation handling, corrective actions, supplier remediation, board or regulator reporting, and the evidence package the team needs later for audit, labor, or compliance review
Integrations & hand-offs
Compliance usually owns the workflow, with legal reviewing higher-risk cases, HR involved in employee reports, procurement or sustainability teams contributing supplier context, and IT supporting integrations or access management. DISS-CO tries to keep those handoffs in one shared system rather than separate ticketing, inbox, and spreadsheet processes.
Community Data
Loading practitioner-sourced data…