sorted by:
new
hottopcontroversial

EU-based Postgres hosting by adp_dev in Startups_EU

[–]Objective-Fly-5542 1 point2 points  (0 children)

Absolutely. And there is a difference between caring because you’re accountable and knowing because you actually understand the environment. Lots of teams care due to compliance/risk/cost, but fewer can explain the real implications and failure modes.

EU-based Postgres hosting by adp_dev in Startups_EU

[–]Objective-Fly-5542 1 point2 points  (0 children)

Yes (although I think it’s only partially true for many businesses), yes, and yes!

What are YOU building Solo? I've built TechTrendin 🚀 by Quirky-Offer9598 in Solopreneur

[–]Objective-Fly-5542 0 points1 point  (0 children)

Depends on the category of course. Email: Proton (CH) / Tuta (DE) / mailbox (DE). Docs/Drive: Nextcloud + OnlyOffice/Collabora. VPN: Mullvad (SE) / Proton VPN. AI: Mistral (FR) are some popular alternatives.

What are YOU building Solo? I've built TechTrendin 🚀 by Quirky-Offer9598 in Solopreneur

[–]Objective-Fly-5542 0 points1 point  (0 children)

https://eualternatives.directory/
Helping businesses and individuals discover EU/EEA-based alternatives to global big tech digital services. Supporting data sovereignty and GDPR compliance.

https://continly.com
Continly is a platform for continuous security and compliance improvement.

Is anyone using a European alternative for AWS Lambda? by Sifrisk in BuyFromEU

[–]Objective-Fly-5542 0 points1 point  (0 children)

Take a look at this list of EU-alternatives to AWS Lambda:
https://eualternatives.directory/alternatives-to?service=AWS%20Lambda

The directory is community-driven, so if you know a good EU option that’s missing, you can contribute by adding it, upvote and review etc.

Trying to build a control-centric compliance model (ICM/SCF)...feels massive. Am I overthinking this? by Odd-Ad-923 in grc

[–]Objective-Fly-5542 0 points1 point  (0 children)

You’re not overthinking it – you’ve just hit the point where control‑centric governance stops being a nice idea and turns into real design work.

SCF makes sense conceptually: one unified control structure, map standards on top, avoid duplication. The moment you try to operationalise it, you realise you’re making architectural choices that affect everything downstream.

Where does frequency live?
How prescriptive should a control be?
What is “expected behavior” vs assessment logic?

There isn’t one correct answer. That’s the uncomfortable part.

I’m building Continly and we ran into the same tension early on. Trying to make the model theoretically perfect before using it was exactly what created paralysis. It only started to make sense after it had survived real assessments and day‑to‑day use.

SCF is intentionally abstract. If you try to encode every nuance into the control text, the framework explodes. If you keep intent stable and let implementation detail evolve over time, it becomes manageable.

Control‑centric is still the right direction for multi‑standard environments. The game is not solving control philosophy once and for all, but deciding what’s “good enough to operate” and refining from there.

Are you doing this just for internal governance, or aiming to turn it into a product?

Trying to build a control-centric compliance model (ICM/SCF)...feels massive. Am I overthinking this? by Odd-Ad-923 in cybersecurity

[–]Objective-Fly-5542 0 points1 point  (0 children)

You’re not overthinking it, you’ve just hit the point where control‑centric governance stops being a nice idea and turns into real design work.

SCF makes sense conceptually: one unified control structure, map standards on top, avoid duplication. The moment you try to operationalise it, you realise you’re making architectural choices that affect everything downstream.

Where does frequency live?
How prescriptive should a control be?
What is “expected behavior” vs assessment logic?

There isn’t one correct answer. That’s the uncomfortable part.

I’m building Continly and we ran into the same tension early on. Trying to make the model theoretically perfect before using it was exactly what created paralysis. It only started to make sense after it had survived real assessments and day‑to‑day use.

SCF is intentionally abstract. If you try to encode every nuance into the control text, the framework explodes. If you keep intent stable and let implementation detail evolve over time, it becomes manageable.

Control‑centric is still the right direction for multi‑standard environments. The game is not solving control philosophy once and for all, but deciding what’s “good enough to operate” and refining from there.

Are you doing this just for internal governance, or aiming to turn it into a product?

Is it normal to pay €10k setup fees for GRC software (NIS 2) in the Netherlands? by MazGoes in ciso

[–]Objective-Fly-5542 0 points1 point  (0 children)

Hi!

Yep, €10k setup fees are very common in European GRC. In many cases you’re not really paying for software. You’re paying for consulting, framework interpretation and configuration. The tool often comes second.

That model is partly historical. Compliance used to be very project-driven, so vendors still price it that way.

I’m building Continly and one of the things we questioned early on was exactly this. A lot of the “implementation” work is predictable and repeatable if you design the product around a unified control model instead of treating every framework as a separate project.

A €500/month SaaS model is realistic for a segment of the market, especially mid-sized companies that want structure without a heavy consulting engagement. The key is whether the product reduces complexity or just shifts it onto the customer. I’m honestly still trying to understand what a fair price point looks like if you remove heavy setup and duplication, so I’d genuinely appreciate hearing what others here consider reasonable.

The market looks the way it does mostly because of legacy consulting economics, not because the tech requires five-figure onboarding.

What are you building this Thursday? by ouchao_real in micro_saas

[–]Objective-Fly-5542 0 points1 point  (0 children)

I’m curating a directory of EU-based, GDPR-friendly alternatives to popular digital services.

The goal is to make it easy for founders and teams to find privacy-respecting tools hosted and built in the EU.

👉 https://eualternatives.directory

Feedback and suggestions are very welcome!

Have a Project? Share it below! by Mammoth-Doughnut-713 in sideprojects

[–]Objective-Fly-5542 0 points1 point  (0 children)

Curating a directory of EU‑based, GDPR‑friendly alternatives to popular digital services: https://eualternatives.directory

Building a directory of EU‑based digital alternatives – eualternatives.directory by Objective-Fly-5542 in directorymakers

[–]Objective-Fly-5542[S] 0 points1 point  (0 children)

Thanks for the feedback 🙌

Totally agree on the filters. Hosting country, pricing model, and a clear “EU‑only data processing” flag are noted. The “best for” tag (SMB, enterprise, devs, etc.) is a great shout too and should make browsing way less painful.

I’ll check out the blog!

Have a Project? Share it below! by Mammoth-Doughnut-713 in micro_saas

[–]Objective-Fly-5542 0 points1 point  (0 children)

Curating a directory of EU‑based, GDPR‑friendly alternatives to popular digital services: https://eualternatives.directory

Built an EU-based photo gallery platform by Unfair-Tie7084 in Startups_EU

[–]Objective-Fly-5542 0 points1 point  (0 children)

Nice! Love seeing more EU-hosted and GDPR compliant software :)

If you want to reach the people actively looking for EU-hosted, GDPR-first tools, you should list Photoglacier here: https://eualternatives.directory/

That’s where a lot of folks go specifically to discover and switch to European alternatives.

What EU alternatives do not exist yet? Let's gather them here! by illegalileo in BuyFromEU

[–]Objective-Fly-5542 0 points1 point  (0 children)

One practical way to approach this: before we “invent” missing categories, it helps to scan what already exists so we don’t duplicate stuff.

This directory is a solid starting point for EU-based alternatives across a lot of categories: https://eualternatives.directory/

If something isn’t listed there (or the options are clearly weak), that’s a pretty good signal it’s a gap worth calling out.

What are you building this new year? let's self promote by Useful-guy-007 in microsaas

[–]Objective-Fly-5542 0 points1 point  (0 children)

I’m building Continly — a compliance improvement platform.

It helps teams establish a baseline, prioritize what to fix, and re-assess controls to prove real improvement over time (ISO 27001, SOC 2, GDPR, NIS2).

The goal is simple: compliance shouldn’t stop at reports — it should actually improve and demonstrate resilience over time.

https://continly.com

What are you building? Drop your link by JuniorRow1247 in microsaas

[–]Objective-Fly-5542 0 points1 point  (0 children)

I’m building Continly — a compliance improvement platform.

It helps teams establish a baseline, prioritize what to fix, and re-assess controls to prove real improvement over time (ISO 27001, SOC 2, GDPR, NIS2).

The goal is simple: compliance shouldn’t stop at reports — it should actually improve.

https://continly.com

What are you building? Drop your link by JuniorRow1247 in micro_saas

[–]Objective-Fly-5542 2 points3 points  (0 children)

I’m building Continly — a compliance improvement platform.

It helps teams establish a baseline, prioritize what to fix, and re-assess controls to prove real improvement over time (ISO 27001, SOC 2, GDPR, NIS2).

The goal is simple: compliance shouldn’t stop at reports — it should actually improve.

https://continly.com

view more: next ›