Service · Pyinv

Compliance & security architecture.

MDR, GDPR, BSI, ISMS and audit prep, from a team that has passed real audits, not just talked about them.

What we build

Compliance & security architecture

In medical technology, energy and the Mittelstand, regulation often decides market access and liability. We translate requirements from MDR, GDPR and BSI into concrete architecture, documentation and processes, and support you through to a passed review. Our founder has owned systems that passed a pharma pentest with zero findings and several ISO 27001 audits.

  • Security architecture & threat analysis
  • ISMS setup
  • MDR & GDPR concepts
  • Risk analysis
  • Penetration-test preparation
  • Audit support
What you get

Security architecture & threat analysis

Documented risks, data flows and safeguards as a solid basis for any review.

ISMS to ISO 27001 / BSI

Building or hardening a management system with policies, roles and evidence.

MDR & GDPR concepts

Risk analysis, technical documentation and data-protection concepts for the conformity assessment.

Pentest preparation

Targeted hardening and evidence so external penetration tests bring no surprises.

Audit support

Preparation, dry runs and support through to a passed certification.

Gap analysis & roadmap

A clear view of open items and a prioritised path to compliance.

Why Pyinv

Proven, not claimed.

0 findings in a pharma pentest

A platform our founder built passed a global pharma company’s penetration test with zero findings.

BSI security architecture

Experience with security architecture to BSI Common Criteria and TR-03109, in direct exchange with the BSI.

ISO 27001 passed multiple times

We know audits from the inside and prepare you specifically for them.

How we work

From idea to audit.

01

Assessment

Where you stand, what the regulation requires.

02

Gap analysis

A clear view of gaps and risks.

03

Implementation

Concepts, documentation, hardening.

04

Audit

Support through to a passed review.

Standards & technologies
ISMSEU MDRGDPRBSI TRRisk analysisPen-test readiness
FAQ

FAQ

Does Pyinv prepare for penetration tests?
Yes. We harden systems and documentation so they withstand external pentests.
Do you support MDR conformity?
Yes, from risk analysis to the technical documentation for the conformity assessment.
Which standards do you cover?
EU MDR, GDPR, ISO 27001 and BSI Technical Guidelines (TR), plus preparation for external penetration tests.
Do you support us through to certification?
Yes. We prepare, run dry runs and support the actual review.
Also for existing systems?
Yes. We analyse the current state, close gaps and document what is missing.
How quickly are first results visible?
An initial gap analysis usually delivers a clear roadmap within a few weeks.

Facing an audit or certification?

We’ll get you through it safely. The intro call is free.

Request a project →