Is WhistBoard
a good solution
for your company?

1. What is WhistBoard?

WhistBoard is a cloud-based application developed for whistleblowers. It allows whistleblowers to report and manage irregularities and especially to conduct and document investigations. WhistBoard is the answer to the challenges resulting from the so-called Whistleblowing Directive.

1. What benefits does the implementation of WhistBoard bring to an organisation?

WhistBoard allows for quick and effective management of whistleblower submissions and guarantees their anonymity in accordance with all current legal requirements for whistleblowing. Entities using WhistBoard, thanks to the solutions applied (e.g. anonymous notifications, dedicated form, transparent interface), have the possibility to efficiently carry out the investigation of each report and inform the whistleblower about the form of its termination. WhistBoard is also a complete archive of whistleblower submissions and actions taken by the company.

1. Can I see how WhistBoard works?

Yes, the operation of the system is presented in a demo video of the tool. There is also a possibility to check the functionality of WhistBoard during an individual presentation – if you are interested in the first or second form of seeing WhistBoard, please contact us using the form at https://whistboard.com/kontakt/.

1. Can I receive a trial access to WhistBoard?

Yes, it is possible to get a 7-day trial access after sending such a request using the form at https://whistboard.com/kontakt/

1. Can WhistBoard be installed on a corporate system without using the cloud?

Yes, but this requires an individual adaptation of the application to the technical requirements of the customer’s IT infrastructure. The WhistBoard application was developed as a cloud-based solution (Saas), which has many advantages. If you are interested in learning more about them, please contact us.

1. How to install WhistBoard?

WhistBoard runs in the cloud and can be accessed via a browser. The application does not require installation.

1. Who can become a whistleblower using the WhistBoard tool?

Every person who has a unique link to the whistleblowing form in a given company.

1. Can a whistleblower make an anonymous report?

Yes, the whistleblower can make a report in a fully anonymous way. WhistBoard guarantees this anonymity by implementing a number of IT safeguards and a simple reporting mechanism.

1. How is the whistleblower’s anonymity guaranteed in WhistBoard?

First of all, WhistBoard does not require the whistleblower to log into any system. When accepting a report from a whistleblower in anonymous mode, the application does not require the whistleblower to provide any contact information. If the whistleblower decides to submit a report in the form of a file (e.g. pdf), the application will clear it of the so-called metadata allowing to identify the author of the file. Thus persons managing the report do not have any possibility of violating the whistleblower’s anonymity. On the technical side: the application does not monitor the whistleblower’s movements on the website and the encrypted server guarantees the security of data collected within notifications.

1. Does the whistleblower have the possibility of safely transferring his/her data in case of an open notification?

Yes, if a whistleblower decides to submit an open notification, their data will be available only to persons assigned to the company account handling notifications.

1. How does a whistleblower use WhistBoard?

By using a simple whistleblower form, which can be found under a unique link generated by WhistBoard. It is not required for the whistleblower to register with the service. When submitting a whistleblower report, the whistleblower can include attachments related to the report.

1. Is it possible to make a whistleblower report without selecting a category and subcategory, but just entering the content and mode?

Yes, it is possible if the channel (report form) has been configured this way.

1. Using WhistBoard, does the tool operator have the ability to initiate a feedback contact with an anonymous whistleblower?

Yes, but this is only possible if the whistleblower retains the unique link to the dialog generated after the report was made. This is the only form of contact between the WhistBoard application operator and the anonymous whistleblower. Importantly, the application does not monitor in any way who the person running the dialog is.

1. Does the operator have the ability to generate a report from the system?

Yes, WhistBoard operators have the ability to generate a report on a specific notification or all notifications logged by the application.

1. Is it possible for the operator to add to the program a report received outside the system?

Yes, through the option “Adding an internal report” available for each WhistBoard operator. When saving the notification received outside the system, the operator also has the option to add an attachment to the application.

1. Is it possible to document the course of the investigation in WhistBoard?

Yes, WhistBoard allows you to manage a whistleblower report and record all actions taken in connection with its investigation. Every action taken is visible in the report history.

1. Is it possible to outsource the handling of investigations?

Yes, upon request, it is possible to provide after-sales support in the form of, among other things, handling whistleblower notifications.

1. Can third parties gain access to the data sent to the WhistBoard server?

No, unless you yourself grant access to your account to such a third party. The data stored and transmitted to the WhistBoard server is encrypted and secured at both the browser and server level.

1. What information does the system collect about the whistleblower? Maybe it is IP, cookies, other data in logs?

The system does not collect any data about the whistleblower unless the whistleblower himself/herself provides such data.

1. Who has access to application logs?

Only the team responsible for server administration – only errors are recorded in the logs. Audit information (e.g. change of configuration) is stored only in the database, which is encrypted and separate for each account.

1. How is the whistleblower’s data hidden from administrators?

When reporting a breach in the anonymous mode, the whistleblower does not provide any personal data. The application itself does not collect any data from the whistleblower.

1. Do the creators of the application have access to all information and can check it without supervision?

No, the application developers do not have any access to the content of individual accounts. This is only possible if they are given such access by the client – for legal support, among other things.

1. Where is the server where the WhistBoard application is located?

The server is located in the European region of the Amazon Web Services environment.

1. ISO 27001

Deviniti – WhistBoard Technology Partner, which is responsible for the programming part and project management, is IS0 27001 certified, which means that it applies the highest security standards when it comes to software development and maintenance.

1. WCAG (Web Content Accesibility Guideline)

WhistBoard’s whistleblower form meets accessibility standards at level AA according to the Web Content Accessibility Guidelines specification. WCAG is a document that specifies the design of a public agency website that will be widely accessible to all users, including people with disabilities. Web site accessibility refers to the degree to which a web site can be seen, understood and viewed by all users, regardless of their characteristics or impairments, and regardless of the characteristics of the software and hardware they use.

1. Is WhistBoard compliant with the whistleblower protection directive?

Yes, WhistBoard fully meets the challenges posed by the Whistleblower Directive for businesses. In the future, it will also be adapted to the Polish law implementing the directive – if it introduces additional requirements.

1. Will WhistBoard be adjusted to the Polish law implementing the Whistleblower Directive?

Yes, if the Act expands the catalog of obligations imposed on entrepreneurs, WhistBoard will be adjusted to meet all requirements.

1. By when must the directive on protection of whistleblowers be implemented in Poland?

The Whistleblower Protection Directive should be implemented across the European Union by 17 December 2021.

1. Which entities are required to implement procedures to protect whistleblowers?

The obligation will cover the public sector (among others, listed companies) and employers with at least 50 employees.

1. By when must companies implement procedures protecting whistleblowers?

The new obligations from 17 December 2021 cover the public sector and employers with at least 250 employees. Employers with between 50 and 249 employees will have to comply from 17 December 2023.

1. Does a company need to implement a whistleblower protection procedure?

A whistleblower protection procedure should be part of any company’s comprehensive implementation of a whistleblower protection system. WhistBoard can be an element of such a system guaranteeing a record of notifications and actions taken by the company in one place.

1. What language versions of the application are currently available?

WhistBoard is currently available in Polish, English, German, Ukrainian and Russian.

1. Is it possible to order WhistBoard in a different language than currently available?

Yes, to customise the tool please contact us using the form available at https://whistboard.com/kontakt/.

1. Can I upload my company logo to WhistBoard?

Yes – the possibility to customize the graphic interface for your organization is available in the Enterprise package – for more details please refer to the price list available at https://whistboard.com/cennik/.

1. Can I adapt WhistBoard to my company needs?

Yes, there is a possibility to prepare a “tailor-made” version of WhistBoard for the needs of a given organization. To discuss this, please contact our consultant using the form available at: https://whistboard.com/kontakt/

1. Do the creators of the tool provide after-sales service and support?

Yes, after-sales support is available upon request in the form of, among other things, handling reports made by whistleblowers.

1. How much does the WhistBoard application cost?

The current price list of WhistBoard can be found in the tab available at https://whistboard.com/cennik/. If you have any questions, please contact us using the form at https://whistboard.com/kontakt/.

1. What does the price of WhistBoard depend on?

On the chosen package of access to the WhistBoard application. The packages differ among others in the number of operators or application channels. For more details, please visit https://whistboard.com/cennik/.

1. Is WhistBoard sold with a licence for an indefinite period?

Normally WhistBoard is offered as a 1-year license.

1. Is it possible to buy access to WhistBoard together with application processing by a third party?

Yes, there is such an option. In case of additional questions, please contact: https://whistboard.com/kontakt/.