Yes, as a modern cloud platform, Leno allows for No-Code configuration. The solution is highly scalable and can be flexibly adapted to your internal structures, processes, and permission sets without any programming effort.

Leno eliminates manual errors through high-level automation and integrated AI. Structured workflows and built-in regulatory expertise replace tedious email-based coordination and static lists with a modern, digital process.

Yes, Leno eliminates fragmented data silos by seamlessly linking vendors directly to their corresponding contracts, risks, and mitigation measures. This seamless integration prevents redundant data entry and ensures full transparency.

Leno is a modular GRC platform designed to digitalize and automate Governance, Risk & Compliance. It serves as a central hub for Third-Party Risk Management (TPRM), Contract Lifecycle Management (CLM), Information Security (ISM), and BCM.

Critical or important business functions are functions whose failure or significant impairment would substantially threaten the financial stability, business continuity, or regulatory compliance of a financial institution. Classification is a central element of digital operational resilience under DORA.

Thanks to pre-defined GRC templates and expert onboarding support, you can achieve a rapid "Go-Live". We guide you from initial data migration to full production to ensure a smooth transition.

Identification is carried out based on defined DORA criteria, such as the impact of a failure, importance to customers and the market, regulatory relevance, and dependencies on ICT systems and third parties. Leno supports a structured and traceable classification.

Yes, Leno supports English and German as standard. Additional languages for international GRC teams can be added upon request to support your global compliance operations.

Security is ensured through Single Sign-On (SSO) and role-based access control (RBAC). Leno provides hosting and support directly from Germany, adhering to the highest security standards and architectural requirements.

The Business Impact Analysis (BIA) assesses the temporal impacts and recovery objectives of business processes. The criticality analysis according to DORA serves the regulatory classification of business functions and their importance for digital operational resilience. Both analyses complement each other but pursue different objectives.

‍

Leno is modular and fully integrated. We offer specialized modules: Leno TPRM (Third-Party Risk & Outsourcing), Leno CLM (Contract Management), and Leno ISM (Information Security & BCM). All modules work together to form a holistic GRC ecosystem.

If a service supports a business function classified as critical or important, it is subject to increased regulatory requirements. These include, among others, stricter demands on risk assessments, contract content, approval processes, monitoring, and documentation in the DORA information register.

‍

Regulatory authorities expect a clear and traceable identification of critical functions and their dependencies. A thorough criticality analysis facilitates information requests, audits, and the assessment of systemic risks at the EU level.

‍