One platform for the entire GRC universe
Ridisa unifies Legal, Governance, Risk & Compliance on a single Microsoft 365-native platform — one shared spine of workflows, in-tenant AI and audit-grade evidence. Live in production today, starting with DocBrilliant.
- Microsoft 365-native
- In-tenant AI — no data egress
- 7-year audit-grade trail
The Bigger Picture
Policy management is just the beginning
One product is live today. The same platform radiates out to power the entire Legal, Governance, Risk & Compliance universe — 25+ solutions across four pillars.
Proven foundation
One product is live in production today — not vapourware. DocBrilliant runs policy management and compliance attestation for real customers on Microsoft 365.
A fragmented market, unified
Governance, legal, risk and compliance are bought as a dozen disconnected tools. Ridisa unifies the whole mandate on a single platform.
One shared spine
The same engine — workflows, approvals, attestation, audit trail and in-tenant AI — radiates out to power every new solution. That spine is our moat.
Live product in production
GRC pillars on one platform
Solutions on the roadmap
Audit-grade evidence trail
The Portfolio
One company. A growing family of products.
Ridisa builds and operates every product on a single shared platform — so each new solution ships faster and works the way your team already knows.
DocBrilliant
LivePolicy & compliance management for Microsoft 365
Ridisa's flagship, live in production. Centralised policy management with versioning, multi-step approvals, attestation campaigns and a complete audit trail — built natively on SharePoint and Azure AD.
- Policy library with versioning, locking & automatic numbering
- Multi-step approval workflows with delegation & templates
- Read → quiz → sign acknowledgement campaigns
- Yara AI assistant — in-tenant, no data egress
LGRC Suite
RoadmapThe complete Legal, Governance, Risk & Compliance platform
Policy management is product one of a planned LGRC suite — 25+ solutions across four pillars, every one built on the same shared platform. The same engine that powers DocBrilliant radiates out to cover the entire GRC mandate.
- Governance — Board & Committee, Entity Governance, Disclosures
- Legal — Matter Management, Contracts (CLM), eDiscovery, IP
- Risk & Audit — Enterprise Risk, Internal Audit, Vendor Risk, BCM
- Compliance & Ethics — Regulatory Change, Whistleblower, Privacy
The GRC Universe
Four Pillars. One Platform.
A shared platform core with four orbiting pillars. Green nodes are live today — every other solution stacks onto the same spine, one module at a time.
Pillar 1
Governance
Govern with Confidence
How the organisation makes, records and proves its decisions — from the policy library to the boardroom.
- Live
Policy Management
Library, versioning, approvals, attestation, audit-ready.
- Next
Board & Committee
Agendas, packs, minutes, resolutions, e-voting.
- Planned
Entity Governance
Entity register, statutory records, filings, org charts.
- Planned
Disclosures & COI
Declarations, gifts register, related-party sign-off.
Pillar 2
Legal & Compliance
Run the Legal Function
Give legal teams a system of record for the work they do every day — matters, contracts and obligations.
- Next
Matter Management
Intake, triage, matter files, deadlines, legal-spend.
- Next
Contracts (CLM)
Clause library, e-sign, renewals, obligation reminders.
- Planned
Hold & eDiscovery
Holds, custodians, defensible chain of custody.
- Planned
Intellectual Property
Trademark & patent portfolio, renewal deadlines.
Pillar 3
Risk, Audit & ERM
See and Control Risk
Connect risks to the policies and controls that mitigate them — and to the audits that test them.
- Next
Enterprise Risk
Register, RCSA, heatmaps, appetite, KRIs with owners.
- Next
Internal Audit
Audit universe, planning, fieldwork, findings, follow-up.
- Planned
Vendor Risk
Due diligence, assessments, scoring, monitoring.
- Planned
Continuity & Incidents
BIA, continuity plans, incident & loss-event capture.
Pillar 4
Compliance & Ethics
Stay Ahead of Regulators
Turn obligations into action — and keep the timestamped evidence regulators actually accept.
- Live
Compliance Training
Read → quiz → e-sign, per-employee attestation trail.
- Next
Regulatory Change
Horizon scan; map new rules to policies & controls.
- Planned
Whistleblower & Case
Anonymous hotline, secure intake, investigations.
- Planned
Privacy & DSAR
RoPA, DSAR, DPIA, consent. Plus AML/KYC, SOX, ESG.
Why One Platform
One spine. Every solution.
Every module shares the same foundation — so each new solution ships faster, costs less to run, and your team learns it once.
all run on one shared platform
Workflows & Approvals
Multi-step, parallel, delegation and templates — reused by every module.
Yara AI
In-tenant AI assistant across every solution — no data egress.
Audit-Grade Evidence
One 7-year trail and one-click audit packs spanning all solutions.
Multi-Tenant & Roles
Tenant isolation, RBAC and plan-based feature flags built in.
Microsoft 365 Foundation
Azure AD sign-in, SharePoint storage, Office Online editing — native.
Delivery Roadmap
Three horizons
Sequencing follows adjacency to today's product and customer pull. The order can flex with demand — the platform stays the same.
Foundation
Policy Management
Library, workflows, versioning, audit trail.
Compliance Attestation
Read → quiz → sign campaigns.
Yara AI · M365
In-tenant AI, SharePoint & Azure AD native.
Expand the Suite
Board Management
Governance — portal, packs, minutes.
Matter & Contracts (CLM)
Legal — the everyday legal workload.
ERM & Internal Audit
Risk — register, audits, regulatory change.
Complete the Platform
Entity, Disclosures, IP
Deepen governance & legal coverage.
Vendor Risk & Continuity
Third-party, BCM, incidents & issues.
Privacy, Whistleblower, ESG
Full compliance & ethics breadth.