About CleanIssue.
Cybersecurity audit for HR software publishers.
CleanIssue is a cybersecurity audit firm specializing in French HR, payroll and recruitment software publishers. We offer a targeted and pragmatic approach: a quick reading of your real exposure, without the overhead of a pentest or the delays of a large firm.
Method and Expertise
- No intervention on your production environment.
- Responsible disclosure practice, consistent with ANSSI and ISO 29147 standards.
- Expertise in modern environments: Supabase, Firebase, Next.js, Laravel.
- Exposure mapping and risk prioritization, particularly with regard to GDPR.
- Sector specialization: HR, payroll and recruitment.
Do you access our personal data?
No. CleanIssue does not exfiltrate, download or store any personal data. When an exposure is identified, it is demonstrated in a minimal and controlled manner, solely to establish its technical reality. This rule is a non-negotiable principle of the engagement.
Useful for GDPR compliance?
Yes. The report documents each personal data exposure in relation to GDPR obligations, particularly Articles 32 (security of processing) and 33 (breach notification). It thus constitutes a concrete element to present in case of CNIL inspection, compliance audit or client request.
What types of applications are audited?
CleanIssue works on SaaS and business portals built with modern technologies: Supabase, Firebase, Next.js, Laravel, or custom APIs. Some customized WordPress environments may also be covered. Priority is given to HR, payroll and recruitment software, due to the sensitivity of the data you handle.