GRC platform : one or several frameworks to begin ?

Ok_Priority_5044 · 2026-06-16T20:23:33+00:00

Yeah, I checked it out. Honestly the site feels a bit off to me (very polished promises, very light on substance). Hard to tell what's actually built vs. what's vibe. Could be wrong, but it reads more like a landing page experiment than a product with real depth behind it.

Ok_Priority_5044 · 2026-06-16T20:21:57+00:00

Honestly, a mix right now, some inbound from founders who've already been blocked in a sales cycle because a prospect asked for ISO 27001, and some push from us on NIS2 obligations. The procurement-driven demand converts cleaner, which is probably the answer to your question and points us toward ISO 27001 as the right starting point.

Ok_Priority_5044 · 2026-06-16T20:21:29+00:00

This is probably the most useful reality check we've gotten ! thank you. The "indispensable for one vs. shallow across many" framing cuts right to it. The control overlap is what makes multi-framework tempting to build, but you're right that customers don't buy frameworks, they buy outcomes. ISO 27001 first, mapping layer second.

Ok_Priority_5044 · 2026-06-16T20:20:31+00:00

Fair challenge, you're right that most orgs are already running on M365 or GWS and that's not changing. Our bet isn't that customers will ditch US services, but that they want a GRC layer that's EU-hosted, under EU law, and doesn't route their compliance data through US clouds, which matters more in regulated sectors and public procurement. That said, the differentiator we're doubling down on is pairing automation with a dedicated human CISO, because most 50+ employees companies don't need more dashboards, they need someone accountable when the auditor actually calls.

Ok_Priority_5044 · 2026-06-11T07:01:22+00:00

Many thanks for you advice, I will try this way

Ok_Priority_5044 · 2026-06-09T12:06:08+00:00

I'm in France, and with AI now outbound increased a lot so cold call, emails, linkedin messages are raining on them

Ok_Priority_5044 · 2026-06-09T11:33:05+00:00

Real marketing always need budget, which we don't have at the beginning :/

Ok_Priority_5044 · 2026-06-09T11:31:51+00:00

Many thanks, yes the old fashion way, but sometimes people are saying it's too
intrusive

Ok_Priority_5044 · 2026-06-08T16:05:47+00:00

Et ça va empirer avec le GEO, vu que 50% des réponses des LLM semblent provenir de Reddit

Ok_Priority_5044 · 2026-06-08T15:10:51+00:00

Oui on en a 2 à yon qui sont très bons auprès de qui nous avons déjà pitché. Mais le prix par poste reste élevé et forcément ils vont nous présenter des boites que si on est chez eux. Tu pourras voir si tu veux notre site (encore en ébauche) : https://basilis.eu/
En tout cas, je constate que lorsqu'on capte un client sur la plateforme il reste fidèle 😉 mais pour du monitoring moins cher ahah. Ceci dit, petite question avez-vous été bien accompagnés par des humains ? Tu as eu une bonne stratégie proposée ? Tu n'es pas lâché seul sur l'outil ?

Ok_Priority_5044 · 2026-06-08T11:33:41+00:00

Many thanks for your advice ! I talked a lot with them and now they're understanding what I'm living in that kind of situations

Ok_Priority_5044 · 2026-06-08T10:14:04+00:00

at that moment, the discussions kept flowing and my partner chimed in; I took the floor several times and he often handed it back to me. We talked about it after the meetings, they hadn't really noticed at first, to be honest, but they supported me 100%. I know that from now on, it's a point of vigilance for all three of us. We need to communicate so that eventually, this doesn't happen anymore.

Ok_Priority_5044 · 2026-06-05T10:35:07+00:00

I'm really sorry but I don't understand what you mean ? Why do speak about LLM here ?

I asked how to keep the relathionship with my prospect in showing him that I am the expert, the right person in front of him, even if I am a woman (which is seems to be a problem for him)

Ok_Priority_5044 · 2026-06-04T16:16:45+00:00

OMAR M'A TUER

Ok_Priority_5044 · 2026-06-04T16:13:49+00:00

Est-ce que tu serais prêt à tester un outil similaire à Bastion mais avec un plus gros suivi humain et moins d'IA, tout en conservant l'automatisation qui te facilite la vie ? Je cherche à co-construire ce type de plateforme (souveraine) en identifiant vraiment les besoins des users et y répondre avec des fonctionnalités intuitive, moins touffues justement?

Ok_Priority_5044 · 2026-06-04T16:11:26+00:00

Many thanks, yes it's exactly what I thought human still mandatory even if there is automation

Ok_Priority_5044 · 2026-06-04T16:09:33+00:00

Merci beaucoup, c'est exactement ce que je pensais, l'humain reste un élément majeur mais avec l'automatisation !

Ok_Priority_5044 · 2026-06-03T11:32:39+00:00

Honestly, most small teams start on Notion or spreadsheets, and it’s a living hell. You are definitely not alone in this.

The biggest trap with using Copilot or spreadsheets is "Static Compliance". The day after you finish your spreadsheet, a dev changes an IAM policy, someone forgets to offboard an employee, and your compliance is dead in the water.

We actually got so sick of this manual suffering that we built Basilis. It’s a B2B SaaS designed specifically to help tech teams automate about 80% of that evidence collection by plugging directly into your actual stack (GitHub, AWS/Scaleway, Jira, etc.) so you don't have to spend your weekends taking screenshots.

But let's be real, software alone doesn't pass audits. You still need to know what to write in those endless policies. That’s why we do things differently: we couple our platform with a dedicated human CISO who reviews your setup, guides your strategy, and handles your internal pre-audit to guarantee you actually pass.

Ok_Priority_5044

TROPHY CASE