Safe, confidential, legally compliant
The Whistleblowing Tool for Companies
Protect your employees. Strengthen your corporate culture. Comply with whistleblower protection laws – easily, securely, and with no effort.
Compliant with the EU Whistleblowing directive- Intuitive & anonymous
- GDPR-compliant, highly secure platform
- Includes training & support
Over 2,000 companies already rely on heyData to protect whistleblowers and minimize risks.
Why Your Company Needs a Whistleblower System
Since mid-2023, the Whistleblower Protection Act (HinSchG) has required companies with 50+ employees to provide an internal, secure reporting channel. Violations of this obligation can result in fines and damage to your image.
With heyData, you not only comply with legal requirements, but also demonstrate that responsibility and transparency are part of your corporate culture.
Your Advantages with heyData
Early Warnings & Case Management
Identify risks early, handle cases in a structured manner, and document measures in an audit-proof manner - all in one tool.
Build Trust – Internally & Externally
A transparent, secure reporting process increases the trust of your employees and partners – and protects your brand.
Anonymous. Secure. Intuitive.
No login. No data requirements. After reporting an incident, employees receive a personal access key for anonymous follow-up contact via chat.
Inclusive Training
Whether you are a case manager or part of the workforce, we provide your team with legally compliant and practical training so that everyone knows what to do.
A straightforward system for anonymous reporting
Request a quote!How it Works – Plain and Simple
1
Select a Topic
Employees select from a list of typical incidents – e.g., “discrimination,” “abuse of power,” etc. This ensures that the report is assigned correctly by the case manager.
2
Describe the Issue
The incident is described in a free text field – when, where, and what happened. Only as many details as the person wishes to share.
3
Submit anonymously
The report is submitted anonymously – you don't have to log in, provide an email address, or leave any personal information. The system automatically protects the identity of your employees.
4
Follow Up
After submitting the report, whistleblowers receive a personal access key for a secure, anonymous chat with the case manager.
Directly in Your System – No Extra Tool Required
The whistleblowing tool is fully integrated into the heyData platform. Employees can easily find the reporting access via the menu.
It's even easier with a QR code link – administrators can download this directly from the system and share it with the team.
Our Price - Fair and Transparent
Company Size
Monthly Price
Annual Price
Up to 49 Employees
10 €
120 €
50-149 Employees
40 €
480 €
150-249 Employees
70 €
840 €
250-499 Employees
100 €
1,200 €
500+ employees
*All prices exclude VAT.
Upon request
Upon request
Your choice for transparency and security!
Hear it From Our Customers
"heyData impressed us with their digital software solution and expertise. Like us, heyData is a digital pioneer in a rather traditional and less digital industry. heyData is a strong partner for the BRZ Group."
Markus Schobert
Head of Customer Service at BRZ Gruppe
"heyData is a great help for us and makes the topic of data protection really easy. We are very satisfied with the digital audit, the online training and the customer support."
Leonard von Kleist
CTO & Co-Founder at Hive Technologies GmbH
"I value this feature for its ability to simplify supplier risk assessment. It is an indispensable tool for anyone dealing with data compliance in the European Union and Switzerland."
Jan Stephan
Head of Legal Affairs at Learnship
"As a customer, we have only had good experiences with heyData's support and communication. Questions were answered in detail, responses were always prompt and personal 1-1 support is also no problem."
Roman Georgi
Director Of Customer Support at AMBOSS
“What sets heyData apart is its responsiveness and rapid implementation.”
Sandra Scherzer
Legal department at Bioland
"We always receive competent and prompt advice from heyData and have so far been able to find a satisfactory solution to every question relating to the GDPR or data protection in general."
Nikolai
CTO at Instaffo GmbH
FAQ on Whistleblowing
On 12 May 2023, the Federal Council passed the Whistleblower Protection Act, which is the national implementation of the EU Whistleblower Directive. It is expected to come into force in mid-June 2023. This law was passed to better protect whistleblowers and provide them with a safe way to report wrongdoing at their employers.
First, companies with 250 or more employees must set up internal whistleblowing systems. These systems are designed to enable employees to report wrongdoing safely and confidentially. Companies with 50-249 employees have a transition period until 17 December 2023.
An anonymous whistleblower protection system offers whistleblowers the opportunity to report grievances safely and confidentially without fear that their identity will be revealed. This can help ensure that more employees are willing to report wrongdoing because they feel safe and do not have to fear negative consequences. Such a system can help companies respond to and remedy grievances more quickly, which can ultimately help build trust in the company among employees and the public.
Yes, our whistleblowing solution can also be booked as a stand-alone product. Just get in touch with us.
Companies in the public sector, as well as cities and municipalities with more than 10,000 inhabitants, are covered by the law and must offer whistleblowing systems from mid-June 2023. These systems are designed to enable citizens to report wrongdoing securely and confidentially.
The procedure for submitting the notification must be possible orally or in writing and, if desired, also in person.
The internal reporting office must acknowledge receipt of the report to whistleblowers within seven days.
Within three months, MROS must inform the whistleblower what action has been taken as a result. E.g. the initiation of internal investigations or the forwarding of the report to the competent authority.
In the whistleblower system, reports are usually received by case managers, persons of trust, or ombudspersons.
Potential case managers should consider people who do not have conflicts with other activities. This means that, for example, positions of responsibility in data protection matters (DPO), anti-money laundering, or other similar areas are perfect for this role.
Ideally, the case manager should have expertise in the area of the Whistleblower Protection Act or be willing to undergo further training in this area. Individuals with experience in handling sensitive information and ensuring confidentiality may be particularly suitable.
To fill the position of case manager, it is a good idea to consider someone from the human resources department or the legal department, provided they are not in a senior position. People in these departments often have an understanding of compliance issues and legal aspects relevant to dealing with whistleblower reports.
Yes, it is important to train the case manager regularly. We recommend training at least once a year to ensure that the case manager has the necessary expertise and is familiar with the latest developments in the area of the Whistleblower Protection Act. Regular training keeps case managers up to date and enables them to deal effectively and competently with incoming reports.
Training employees on whistleblowing is a recommended measure to make the use of whistleblower software known and attractive. However, there is no legal obligation for employees to use the software, as they are legally allowed to go directly to government whistleblowers. However, companies usually prefer that internal grievances are dealt with internally.
Upon request, we provide training for employees to inform them about the whistleblowing process, the benefits of reporting whistleblowing internally and how to use the whistleblower software safely. Such training typically covers the importance of whistleblowing to corporate integrity, the confidentiality of reports, protection against reprisals, and the possible consequences of misuse or false reporting.
The training is designed to encourage employees to report potential wrongdoing or illegal behavior internally rather than going to external agencies. The training provides employees with the necessary knowledge and awareness to identify potential risks and grievances at an early stage and to act appropriately.