Everything you need for CRA CVD compliance
Professional vulnerability disclosure portal with all the features economic operators need, from free tier to enterprise.
Core Features
Whitelabel Email
Get [email protected] - a professional email address specifically for vulnerability reports. All submissions are automatically forwarded to your registered email.
Submission Portal
A branded public portal where researchers can submit vulnerability reports. Includes your company branding and CVD policy display.
48-Hour Acknowledgment Tracking
Automated acknowledgment deadline tracking. CVD best practice per ISO/IEC 29147 supporting Article 13. Separate alerts ensure you also meet the mandatory 24h early warning and 72h full report deadlines under Article 14.
CVD Policy Template
Professional vulnerability disclosure policy template ready to customize. Clear guidelines for researchers on how to report issues.
Dashboard
Manage all your vulnerability submissions in one place. View details, update status, and track progress.
PGP Support
Allow researchers to encrypt submissions using your PGP key for maximum security and confidentiality.
Pro Features
Enhanced Dashboard
Advanced analytics and reporting. View trends, response times, and generate compliance reports.
API Access
Integrate with your internal systems. Automate workflows and sync with issue trackers.
Custom Branding
Full white-label control. Add your logo, colors, and custom domain mapping.
Priority Support
Faster response times for support requests. Direct access to our security team.
Multi-product Support
Handle vulnerability reports for multiple product lines. Separate portals and tracking.
Enterprise Features
Custom Domain
Use your own domain: security.yourcompany.com instead of yourcompany.cvdportal.com.
ENISA Integration
Automated Art. 14 reporting to the relevant CSIRT/Authority: 24-hour early warning and 72-hour full notification for actively exploited vulnerabilities and severe security incidents. Art. 14 is a mandatory legal obligation for all manufacturers; Free and Pro plans include guided manual reporting workflows to meet this requirement independently.
CVE Assistance
Expert help with CVE assignment and coordination with MITRE.
SSO Integration
Single sign-on with your existing identity provider (SAML, OAuth).
Dedicated Support
Priority SLA with dedicated account manager and on-call security support.
Audit Reports
Detailed compliance documentation for regulatory audits and certifications.