Vlastní compliance aplikace

Specifikace pro vývoj vlastní compliance management aplikace.

---

Executive Summary

Vlastní aplikace umožňuje:

• White-label řešení pro klienty
• Plnou kontrolu nad features
• Integraci s existujícími systémy
• Škálovatelnost dle potřeb

Odhadované náklady: €20-50k (development) Timeline: 3-6 měsíců

---

Use Cases

Primary Users

User	Potřeby
Consultant	Správa více klientů, task tracking, reporting
Client Admin	Přehled compliance, task assignment, progress
C-level	Executive dashboard, KPIs, risk overview
Compliance Officer	Detailed checklists, evidence management
Auditor	Read-only přístup, audit trail, exports

Key Scenarios

1. Consultant onboarding nového klienta

   • Vytvoření client profile
   • Gap assessment
   • Nastavení tasks a deadlines

2. Denní práce s compliance

   • Task management
   • Document upload
   • Progress tracking

3. Reporting

   • Executive summary
   • Detailed compliance report
   • Audit evidence package

---

Functional Requirements

Core Modules

---

Data Model

Core Entities

Entity Details

Client

{
  id: UUID,
  name: String,
  sector: Enum,
  size: { employees: Int, revenue: Decimal },
  regulations: [AI_ACT, NIS2, GDPR],
  nis2_category: Enum,
  contacts: [Contact],
  created_at: DateTime,
  updated_at: DateTime
}

Task

{
  id: UUID,
  client_id: UUID,
  regulation: Enum,
  code: String (e.g., "A1.1"),
  title: String,
  description: Text,
  status: Enum,
  priority: Enum,
  owner_id: UUID,
  deadline: Date,
  progress: Int (0-100),
  evidence: [Document],
  comments: [Comment],
  created_at: DateTime,
  updated_at: DateTime
}

Risk

{
  id: UUID,
  client_id: UUID,
  title: String,
  description: Text,
  category: Enum,
  likelihood: Int (1-5),
  impact: Int (1-5),
  score: Int,
  status: Enum,
  owner_id: UUID,
  mitigation: Text,
  created_at: DateTime,
  updated_at: DateTime
}

---

Technical Architecture

Tech Stack (doporučeno)

Vrstva	Technologie	Důvod
Frontend	Next.js 14+	React, SSR, App Router
UI Library	shadcn/ui	Tailwind, accessible
Backend	Next.js API Routes / tRPC	Type-safe, integrated
Database	PostgreSQL	Reliable, JSONB support
ORM	Prisma	Type-safe, migrations
Auth	NextAuth.js / Clerk	OAuth, MFA
Storage	S3 / Cloudflare R2	Document storage
Hosting	Vercel / AWS	Scalable

Architecture Diagram

---

Security Requirements

Authentication & Authorization

Požadavek	Implementace
MFA	TOTP nebo WebAuthn
SSO	SAML, OAuth (Google, Azure AD)
RBAC	Role-based access control
Session	Secure cookies, short TTL
Password	bcrypt, min 12 chars

Data Security

Požadavek	Implementace
Encryption at rest	AES-256 (database, storage)
Encryption in transit	TLS 1.3
Data isolation	Tenant isolation (multi-tenant)
Backup	Daily, encrypted, tested
Audit logging	All CRUD operations

Compliance

Regulace	Požadavek
GDPR	Data minimization, DSAR support, DPA
NIS2	Incident response, logging, access control

---

UI/UX Design

Design System

• Framework: shadcn/ui (built on Radix UI)
• Styling: Tailwind CSS
• Theme: Dark mode primary (compliance context)
• Icons: Lucide Icons

Key Screens

1. Dashboard

   • Portfolio overview (for consultants)
   • Client compliance score
   • Critical alerts
   • Upcoming deadlines

2. Client Detail

   • Compliance progress by regulation
   • Task board (Kanban/List/Gantt)
   • Risk register
   • Documents

3. Task Management

   • Filterable task list
   • Bulk actions
   • Comments & activity
   • Evidence attachment

4. Reporting

   • Report builder
   • Export options
   • Scheduled reports

---

Development Roadmap

Phase 1: MVP (Měsíc 1-2)

• User authentication
• Client management
• Task management (basic)
• Dashboard

Phase 2: Core Features (Měsíc 2-3)

• Risk management
• Document management
• AI inventory
• Basic reporting

Phase 3: Advanced (Měsíc 3-4)

• Incident management
• Advanced reporting
• Notifications & reminders
• Integrations (calendar, email)

Phase 4: Polish (Měsíc 4-5)

• Mobile responsiveness
• Performance optimization
• Security audit
• Documentation

Phase 5: Launch (Měsíc 5-6)

• Beta testing
• Bug fixes
• Production deployment
• User onboarding

---

Cost Estimate

Development

Položka	Hodiny	Sazba	Celkem
Backend development	200h	€50/h	€10,000
Frontend development	250h	€50/h	€12,500
UI/UX design	80h	€60/h	€4,800
Testing & QA	60h	€40/h	€2,400
DevOps & deployment	40h	€60/h	€2,400
Project management	40h	€60/h	€2,400
TOTAL	670h		€34,500

Ongoing Costs (monthly)

Položka	Cena
Hosting (Vercel Pro)	€20
Database (Supabase/PlanetScale)	€25
Storage (S3/R2)	€10
Auth (Clerk/Auth0)	€25
Monitoring (Sentry)	€26
TOTAL	~€106/month

---

Alternatives

Build vs. Buy Decision

Kritérium	Build	Buy (OneTrust, Drata)
Initial cost	€20-50k	€0
Ongoing cost	€100/month	€500-2000/month
Customization	Full	Limited
Time to market	3-6 months	Immediate
White-label	Yes	Depends
Control	Full	Vendor-dependent

Doporučení:

• Startup/SME: Buy (Asana, Monday.com)
• Agency/Consulting: Build (white-label pro klienty)
• Enterprise: Buy (OneTrust)

---

Next Steps

1. Validate requirements s potenciálními uživateli
2. Create detailed wireframes pro klíčové screens
3. Select tech stack a nastavit development environment
4. Develop MVP s core features
5. Beta test s vybranými klienty
6. Iterate na základě feedbacku