Porticus

Product / Compliance Platform

Every compliance programme. One platform. Every relationship visible.

You're running six compliance programmes across three spreadsheets, two tools, and one person's head. When an auditor asks how your food safety requirements connect to your quality management system, you shouldn't be guessing.

Porticus builds programmes from any standard in hours, connects every programme - cybersecurity, safety, food, environmental, quality, employment - and keeps you audit-ready across all of them simultaneously.

Multi-domain compliance dashboard showing cross-programme status and relationships

You're managing compliance in silos. It's costing you.

The average regulated business juggles 6–12 disconnected systems. Safety in a spreadsheet. Cybersecurity in a dedicated tool. Employment law in a filing cabinet. Custom programmes cost $300K–$800K and age immediately. And every audit feels like starting from scratch - even when you've already done 80% of the work for something else.

Before and after comparison of scattered tools vs unified dashboard

Step 1: Build

Give us any standard. We'll build your programme - and connect it to everything.

Porticus reads any standard, regulation, contract, or internal policy and generates a complete, connected programme in hours. Four ways to start.

From Your Business Profile

Share your industry, locations, certifications, and goals. AI generates applicable frameworks, requirements, verification activities, procedures, evidence checklists, and a cross-linked implementation timeline.

Example: NZ organic wine producer, BioGro certified. Output: organic production controls with NZ-specific requirements and export mapping, showing 35% overlap with existing BioGro certification.

From a Customer Contract or Regulatory Notice

Upload a customer contract, regulatory consent order, RFP, or SLA. Porticus extracts every compliance obligation, turns them into structured requirements and verification activities, and maps them against your existing programmes.

Example: EU organic wine importer contract. Output: Coverage map, net-new export labelling and traceability requirements, every new requirement cross-linked to NZ certification programmes.

From Any Standard or Regulation

Select from hundreds of pre-processed standards or upload a new one. If it isn't already in the system, we add it - typically within days.

Example: NZ Food Safety Standards, BioGro Organic, and wine export requirements. Output: Combined programme, cross-linked requirements, export-market specifics applied automatically.

From an Internal Policy or Standard

Internal frameworks, house standards, group policies, board requirements - Porticus processes them like any external standard: requirements, verification activities, and procedures, cross-linked to your regulatory programmes.

Example: Internal vineyard organic practice policy. Output: Mapped against external programmes, shared requirements highlighted. Internal and external obligations unified in one system.

Flow from business profile through AI processing to connected programme output

Not templates. Structured, connected programmes.

Every element cross-linked to related items across all your other programmes. Verified against the actual requirements of the source standard.

Requirements

Specific obligations mapped from source standards. Clear ownership assignments. Implementation guidance. Each requirement cross-linked to related requirements across all other programmes.

Verification Activities

Verification activities that confirm requirements are being met effectively. Frequency, method, and evidence requirements defined. Results flow to all related requirements.

Published Docs & Procedures

Fully written, industry-language published docs tailored to how your business actually operates. Each published doc mapped to the specific requirements it satisfies, across every programme.

Evidence Checklists

Exactly what documentation you need, in what format, with what frequency. No guessing about what the auditor wants.

Cross-Programme Relationships

Every element - requirement, verification activity, published doc - is connected to related items across all your programmes. When you satisfy it once, it's satisfied everywhere.

Implementation Roadmap

Prioritised timeline showing what to do first, what can wait, and what to do in parallel. Intelligent sequencing based on risk, effort, and cross-programme dependencies, so you close the most cross-linked gaps first.

Screenshot of AI-generated requirements with cross-linked relationships

Step 2: Connect

Unified by intelligence. Not just aggregation.

Every requirement is linked across programmes. Evidence is applied everywhere it qualifies. No manual re-mapping.

Universal Compliance Dashboard

One view across every programme. Filter by domain, location, or risk level. Cross-link indicators show where shared evidence already satisfies multiple requirements.

Cross-Programme Relationship Visibility

Every requirement, verification activity, and published document is linked across programmes. Upload once. Satisfy related requirements everywhere.

Smart Evidence Management

AI suggests where each document maps across all active programmes. Tracks versions, alerts on expirations, and maintains a full audit trail. One repository for all your compliance programmes.

Pre-Audit Gap Analysis

Scan against specific frameworks, flag missing or expired evidence, prioritise remediation, assign owners, and re-run to verify readiness before every audit.

Multi-Location Jurisdiction Intelligence

Set location-specific requirements per site. Porticus updates them as local rules change. Jurisdiction-specific differences are clearly marked against shared requirements.

Deadline & Audit Calendar Management

Track every renewal, permit expiry, audit date, and policy review in one calendar. Predictive alerts flag pressure points before they become incidents.

One policy. Six frameworks satisfied.

A single background check policy satisfies a pre-employment requirement across six frameworks simultaneously. Without Porticus, you'd manage each separately - or miss the overlap entirely.

  • • ISO 27001 A.7.1.1 - Screening
  • • SOC 2 CC6.1 - Access Controls
  • • Privacy Act 2020 (NZ) - Workforce clearance
  • • WorkSafe NZ / HSWA - Pre-employment health screening
  • • Employment law - Background check compliance
  • • Customer contract - "All employees shall undergo background checks"
One evidence document mapped across multiple frameworks with shared requirements

Step 3: Stay Ready

One evidence package. Every audit. Always ready.

ISO 27001 preparation satisfies 62% of SOC 2 requirements. WorkSafe NZ / HSWA compliance covers 35% of ISO 45001. Every audit you complete makes the next one cheaper. Porticus prepares you for all of them simultaneously.

Audit readiness dashboard - cross-programme readiness scores, evidence gap indicators, and export package for ISO 27001

Supported audit types

  • SOC 2, ISO 27001, GDPR, HIPAA, PCI DSS
  • WorkSafe NZ / HSWA inspections, ISO 45001, safety audits
  • EPA audits, emissions reporting, ISO 14001
  • HACCP verification, health department, FSSC 22000, BRC/SQF
  • ISO 9001, customer quality audits, industry certifications
  • Employment audits, Department of Labour, EEO reviews
  • Customer-specific and contract-driven audits

Measurable impact from day one.

40–60%

Less effort through cross-programme intelligence

One

Dashboard replaces 6–12 disconnected systems

100%

Visibility across every compliance domain, and the connections between them

Build your first programme. See every connection. Never dread an audit again.