When we introduced Readmodel® ten days ago, the core promise was simple: map your data landscape, see where the risks are. Since then, we've shipped a series of updates that turn that visibility into measurable progress — and make Readmodel® a practical data loss prevention tool for teams that don't have enterprise DLP budgets.
Here's what's new.
User compliance scoring
Every data user in your project now receives a compliance score from 0 to 100, computed across five categories: access scope, data sensitivity exposure, authentication controls, documentation completeness, and device security. The score updates in real time as you improve your data landscape.
This is a different approach to data leakage protection. Instead of monitoring network traffic or scanning endpoints, Readmodel® scores the structural risk around each person: do they access too many services? Are those services handling sensitive data without a documented legal basis? Are they using unmanaged devices?
The result is a prioritised list of users who need attention — a practical data loss prevention report that tells you where to act, not just what happened.
Baseline tracking
You can now save a baseline snapshot of your project's risk posture at any point. Readmodel® captures service count, risk distribution, documentation completeness, backup compliance, device security status, and user compliance scores — then shows how your metrics have changed since the last baseline.
For teams that need to demonstrate progress to management or auditors, this is essential. Your data leak protection efforts become measurable. You can show that the number of high-risk services decreased, that documentation gaps were closed, that access was tightened. The AI-powered analysis report includes baseline comparison data automatically.
Access review campaigns
Least-privilege access is a cornerstone of data loss prevention. But in practice, access accumulates over time — people change roles, projects end, temporary permissions become permanent.
Readmodel® now includes formal access review campaigns. Create a campaign, and the system snapshots every user-to-service access assignment in your project. Review each one: certify or revoke. When you close the campaign, revocations are executed automatically. The risk register flags services that haven't been reviewed in 90 days.
This is data leakage protection at the access layer — the layer where most SMB data leaks actually originate.
Service document storage
You can now attach DPAs, SLAs, contracts, and privacy policies directly to each service. Documents are virus-scanned on upload, stored with encrypted filenames, and tracked with expiry dates. The risk register highlights services with missing or expired agreements.
Having your data processing agreements alongside your data flow mapping means your data loss protection documentation lives in one place — not scattered across email threads and shared drives.
AI-powered project import
Starting a new data mapping project no longer means entering everything manually. Upload an existing document — a privacy policy, a data processing register, an internal wiki export — and Readmodel® uses AI to extract services, data items, users, and classifications automatically. Review the preview, adjust what needs adjusting, and import.
For organisations that already have partial documentation, this saves hours of setup time and gets you to your first DLP reporting output faster.
REST API
Enterprise and admin users now have full API access to their Readmodel® data. All 14 resources (projects, services, users, items, transfers, devices, classifications, legal bases, retention periods, access mappings, risk register, and more) are available via a RESTful API with Bearer token authentication, rate limiting, and pagination. Export your complete project as JSON for integration with other tools.
What makes Readmodel® different
Most data loss prevention tools focus on detection: scanning email attachments, monitoring file transfers, alerting on suspicious downloads. These tools have their place, but they require significant infrastructure and budget — and they only work after data is already moving.
Readmodel® works upstream. It helps you understand what data you have, who can access it, from which devices, and where it flows. When you document this landscape and score it for risk, you build the foundation that makes all other data leak protection measures more effective.
Think of it as the data loss prevention report that comes before the DLP tool — the one that tells you what to protect, what to restrict, and where your gaps are.
This approach works particularly well for SMBs and mid-market teams. You don't need agents on every endpoint or deep packet inspection. You need a clear picture of your data landscape and a structured way to improve it. That's what Readmodel® provides.
Try it
All of these features are available now. Create a free account — no credit card, no time limit — and see your first risk assessment within an hour. Paid plans start at EUR 99/month for teams that need more projects, AI-powered analysis, and document storage.
Questions or feedback? Get in touch.