Everything is logged
Every action with time, reason and source — automatically in the background.
Compliance & Audit Auditor arrives.
Auditor arrives.
HEINI has tidied up.
Compliance is one click.
Every action lands in the audit-proof log — with time, reason and your approval. As a PDF for the auditor, even years later.
GoBD preparationApproval-firstGDPR Art. 17
How it works
Approval before each step
No irreversible step without your confirmation. Anchored in code.
Export at the push of a button
PDF for the auditor, GDPR deletion in one click — done.
In der Tiefe
Compliance in depth.
Audit-proof log
Complete, not retroactively alterable — court-usable as PDF.
Approval-first in code
Not disableable by config. You are always the last click.
Four-eyes approval
Reviewer mode for critical processes, e.g. with the tax advisor.
GDPR Art. 17 deletion
Request, deadline, proof — as a clean process.
GoBD bookkeeping
Posting audit trail documented in code.
ISO 42001 in preparation
AI management system being built — certification in preparation.
PDF + independent second check
One click → PDF for the auditor, independently verified — so nothing was changed afterwards.
Vertrauen
Anchored in code. Not just on this page.
Single-tenant on Hetzner in Falkenstein, own encryption per account. The approval-first principle is documented in code and audit-grade.
Servers: FalkensteinGoBD preparationGDPR Art. 17
FAQ
What is the approval-first principle?
No AI colleague performs an irreversible action without your explicit approval — everything stays in draft until you confirm.
Does it meet the EU AI Act?
The approval-first principle implements the human-in-the-loop requirement; ISO 42001 is in preparation.
How does GDPR deletion work?
One click starts the process with deadline and proof.
Where is the data?
In Germany, on Hetzner servers in Falkenstein.
Show HEINI to your auditor.
30 minutes on your real log — no sales pitch, a demonstration.