SecuReveal – the Austrian Whistleblowing System

As a subsidiary of WOLF THEISS Rechtsanwälte GmbH & Co KG, we have access to a large, international network of legal experts who can assist with all legal issues relating to compliance.

With the modern, cost-effective software solution SecuReveal, we offer a lean and innovative whistleblowing system that enables the reporting of violations of corporate compliance codes.

RBS Responsible Business Solutions GmbH (RBS) was founded in 2015 with the aim of providing companies with comprehensive support in designing an active compliance management system.

Thus, we see ourselves as your competent partner in all phases and aspects around compliance.

Active Compliance Management and Good Governance.

For many companies, defining a compliance code is the first step toward a compliance management system. However, only a monitoring system which ensures adherence turns the compliance code an active control element.

The online-based whistleblower system SecuReveal enables whistleblowers worldwide and around the clock to report internal grievances and breaches of rules to a confidential office within the company, thus contributing to corporate compliance in practice.

This enables companies concerned with possible grievances to investigate allegations at an early stage in a structured manner and to take appropriate action.

SecuReveal gives employees and suppliers the opportunity to submit reports anonymously and to enter into an anonymous dialog with the responsible department within the company via a secure online tool.

SecuReveal - not a complaint box, but an active compliance tool! Our software only allows messages that are covered by your compliance policy.

Gernot Rauter (Management)

SECURE

Our online whistleblower software SecuReveal promises your company the highest data security available in Europe. SecuReveal is configured according to individual compliance guidelines where reports are restricted to defined areas and allows for use in multiple languages.

RELIABLE

SecuReveal is provided as software-as-a-service. This means instant online access with minimal implementation effort. With the combination of our legal and technical expertise, you are always up to date with various applicable compliance guidelines.

FLEXIBLE

Our tailor-made solution is adapted to the specific requirements of your company and designed at a fair price. SecuReveal can also map complex corporate structures and is particularly suitable for use in international groups.

Features

Availability

Group-capable

Bidirectional

Attachments possible

Complete reporting

Integrity of the report

Confidentiality of the report

Multilingual

Data security

Anonymity

E-Mail

24/7

No

Yes

Yes

Yes

Not verifiable

Not ensured

No

No

Not ensured

Ombudsperson

By arrangement

No

Yes

By arrangement

By arrangement

Not verifiable

Difficult

No

Not ensured

Not ensured

Telefonhotline

By arrangement

No

No

No

Possible

Not verifiable

Difficult

No

Not ensured

Not ensured

SecuReveal

24/7

Yes

Yes

Yes

Yes

Yes

Yes

Yes

Yes

Yes

Web-based whistleblowing systems have decisive advantages over telephone whistleblowing hotlines, mere e-mail inboxes or an external ombudsperson.

Roland Marko (Legal Advisor)

The anonymity of whistleblowers is guaranteed by a protected, multi-level login procedure with a user name and password of their own choice. No technical authentication measures are required for the subsequent use of SecuReveal by whistleblowers.

SecuReveal not only enables one-time whistleblowing, but also offers compliance officers the option of contacting the respective whistleblower via an anonymous mailbox, if this is desired by the whistleblower.

SecuReveal ensures individual encryption of all message content, mailbox data and processing data, protecting it from unlawful access by third parties. Only legitimate recipients can decrypt and read the data.

SecuReveal uses an integrated private-public key encryption method. This generates a key pair consisting of a private and a public key.

The public key is usually accessible to several people (e.g. whistleblowers, compliance officers), who can use it to encrypt their messages.

The private key is only available to the respective user and enables him to decrypt encrypted messages again. The private key is additionally protected by a password.

The private key and the personal password are therefore required for decryption. Even system administrators and developers do not have access to the private keys or passwords at any time.

The compliance officer is the only one who has access to the records and stored information. SecuReveal performs all encryption operations fully automatically, so security does not come at the expense of usability.

SecuReveal is operated on dedicated servers in certified data centres in Austria (ISO 27001:2013 certification). The system itself, in particular the mechanisms for protecting reported information and the communication process between end users and the company, complies with Austrian data security standards and the requirements of the General Data Protection Regulation (GDPR).