Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
Base27 is a management platform for information security and privacy protection, positioned as an ISMS (Information Security Management System) and PMS (Privacy Management System). It is not a traditional endpoint antivirus or perimeter firewall product. Instead, it centralizes policies, risks, controls, audit evidence, suppliers, assets, incidents, and management reporting, helping organizations continuously maintain compliance programs such as ISO 27001 and AVG/GDPR.
In terms of protection type, Base27 focuses on governance, risk, and compliance. It supports risk analysis based on processes, information systems, and suppliers, and can use threat models such as MAPGOOD and OWASP Top 10. It also supports internal/external audits, compliance reporting, periodic supplier assessments, processing activity records, DPIAs, data breach registers, data subject request handling, asset management, and disaster planning. For management and notifications, it provides dashboards, KPIs, task assignment, progress tracking, management reports, and Word/Excel exports, although the main text does not clearly state whether real-time alerting is available. For integrations, it supports SAML single sign-on and a REST API, and can synchronize incidents with systems such as ITSM platforms.
Base27 covers a broad range of compliance frameworks, including ISO 27001, ISO 27002, NEN 7510, BIO, ISO 27017/18, COBIT 5, ISO 27701, AVG/GDPR, ISO 9001, ISO 14001, and more. Deployment information indicates that it is an online application/SaaS, with encrypted data stored by a partner in the Netherlands. It also emphasizes being 100% EU based and AVG-compliant. Pricing is publicly listed, charged per user/month and excluding VAT: for the GDPR edition, both Power and Normal users are €22.50; for the Standard edition, Power users are €67.50 and Normal users are €35; for the Enterprise edition, Power users are €82.50 and Normal users are €45. Lite users are all under €1, and a 30-day free trial is available.
The strengths of Base27 are its comprehensive modules, transparent pricing, suitability for building an ISMS/PMS from scratch, and usefulness for ongoing certification maintenance. Its prebuilt frameworks and workflows also lower the barrier for non-specialists. The drawbacks are that the available text does not disclose the vendor’s own certifications such as ISO 27001 or SOC 2, nor does it explain SLA terms, payment methods, mobile support, or advanced security alerting. Its compliance context is clearly EU/Netherlands-oriented, and there is no stated support for local Chinese requirements such as MLPS, critical information infrastructure, or data export compliance.
Base27 is better suited to medium-sized to large organizations in Europe, or those strongly tied to GDPR and ISO 27001 requirements. Typical users include CISOs, DPOs, security/privacy officers, internal audit teams, IT managers, and compliance teams. The main text does not provide information about access from China, so this remains unknown; payment methods are also not disclosed. If an organization primarily needs to address Chinese regulatory requirements, it may also evaluate domestic security compliance platforms such as Dbappsecurity, Venustech, and NSFOCUS. For international GRC/compliance automation, alternatives to compare include Vanta, Drata, Hyperproof, OneTrust, and ServiceNow GRC.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on axxemble.nl official site.
axxemble.nl is an Netherlands Legal & Tax provider. TG4G tracks its product information, an overall rating of 7.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach axxemble.nl directly.