Complioty

Complioty is a German software company that provides a product security management platform aimed at manufacturers of connected and embedded products. The platform is designed to help product security teams gain visibility into the components within their products, track vulnerabilities, and demonstrate compliance with regulatory requirements such as the EU Cyber Resilience Act (CRA). Core platform capabilities include: - Dashboard providing an overview of product security status - Risk management for identifying and prioritizing security risks - Vulnerability scanning and automated CVE monitoring across product components - Supplier/component scanning to assess third-party software security - Vulnerability handling workflows for documenting and resolving issues The platform addresses common challenges faced by manufacturers, including fragmented documentation (spreadsheets, PDFs), manual CVE tracking, and the inability to produce audit-ready evidence of security posture. It automates the mapping of vulnerabilities to affected products, reducing the time required to assess impact when new CVEs are disclosed. Complioty targets manufacturers in three primary verticals: - Machinery and plant manufacturers - Component manufacturers (suppliers) - Parts manufacturers (sensors, actuators, etc.) The company highlights regulatory urgency around the EU Cyber Resilience Act, which mandates vulnerability reporting from September 2026 and full compliance by December 2027. Complioty is based in Munich, Germany, and has received funding from the German Federal Ministry of Education and Research (BMBF). It is affiliated with the University of Regensburg and is a Microsoft for Startups participant.