Benjamin Admin
911697bab4
CI / go-lint (push) Has been skipped
CI / python-lint (push) Has been skipped
CI / nodejs-lint (push) Has been skipped
CI / test-go-consent (push) Successful in 35s
CI / test-python-voice (push) Successful in 33s
CI / test-bqas (push) Successful in 35s
Marketing-Website - Neue SavingsSection auf Homepage: "Compliance entdeckt sechsstellige Einsparungen". Pitch-Position der Cookie-Audit-Cost-Optimization-Story fuer DAX-Konzern-Sales (BMW-Case-Style: 90 Vendors -> 25 nach Konsolidierung, EUR 500k-3M / Jahr). - /savings-scan: Kostenloser 5-Min-Saving-Scan-Form (URL + E-Mail). Form-Submit ist Placeholder, soll an Compliance-Backend gehaengt werden. - /savings-methodik: 4-Stufen-Erklaerung der Cookie-Tier-Inferenz + ehrliche Caveats (Listpreise != Vertragspreise, Media-Spend nicht enthalten) + Datenquellen. - Content-de + Content-en in content.ts beide um savings-Block ergaenzt und Section-Numerierung angepasst (03=Savings, 04=Deterministic). - LOC-Split: savings-Inhalte (DE+EN, ~100 LOC) in content.savings.ts ausgelagert damit content.ts unter 500-LOC-Hard-Cap bleibt. Control-Pipeline - LESSONS-LEARNED-mc-check-types.md fuer die parallele CRA-MC-Generation. Erklaert die TEXT/PROCESS/REVIEW-Klassifikation die im Compliance-Repo retrofitted wurde. Verhindert dass CRA-MCs denselben Defekt bekommen. Mapping-Heuristik fuer verification_method -> check_type, plus Backfill-Workflow fuer ~62 ambiguous Eintraege. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
461 lines
29 KiB
TypeScript
461 lines
29 KiB
TypeScript
import { savingsDE, savingsEN } from './content.savings'
|
|
|
|
type Lang = 'de' | 'en'
|
|
type TerminalType = 'input' | 'output' | 'signal'
|
|
type Status = 'neutral' | 'success' | 'warning'
|
|
type IconName = 'Shield' | 'FileCheck' | 'ClipboardCheck' | 'AlertTriangle' | 'ShieldCheck' | 'RefreshCw' | 'Cpu' | 'FileText' | 'Link' | 'BadgeCheck' | 'Code'
|
|
type IndustryIcon = 'Factory' | 'Truck' | 'Cpu' | 'Zap'
|
|
type RiskColor = 'red' | 'amber' | 'blue' | 'green'
|
|
|
|
const de = {
|
|
nav: { cta: 'Demo anfordern' },
|
|
hero: {
|
|
badge: 'DETERMINISTIC REGULATORY ENGINEERING',
|
|
title: 'Regulatorische Analyse.',
|
|
titleHighlight: 'Deterministisch. Nachvollziehbar.',
|
|
subtitle: 'Keine Halluzinationen. Keine Compliance-Lücken. Keine Abhängigkeit von US-Cloud-Anbietern.',
|
|
cta: 'Demo anfordern',
|
|
ctaSecondary: 'Architektur ansehen',
|
|
status: '4 Engines aktiv',
|
|
},
|
|
problem: {
|
|
tag: '01 / DAS PROBLEM',
|
|
title: 'Regulatorische Komplexität',
|
|
titleHighlight: 'wächst exponentiell',
|
|
subtitle: 'Manuelle Compliance-Prozesse skalieren nicht mit der Geschwindigkeit regulatorischer Änderungen.',
|
|
cards: [
|
|
{
|
|
metric: '37.000+',
|
|
label: 'regulatorische Änderungen pro Jahr',
|
|
description: 'EU-, Bundes- und Landesebene erzeugen eine nicht manuell beherrschbare Regulierungsdichte.',
|
|
source: 'VDMA / Bitkom 2025',
|
|
},
|
|
{
|
|
metric: '83%',
|
|
label: 'der KMU sehen Compliance als Innovationsbremse',
|
|
description: 'Datenschutzrisiken, CE-Anforderungen und NIS2-Pflichten binden Ressourcen, die für Produktentwicklung fehlen.',
|
|
source: 'DIHK Digitalisierungsbericht',
|
|
},
|
|
{
|
|
metric: '50.000+',
|
|
label: 'EUR jährliche Compliance-Kosten',
|
|
description: 'Externe Audits, Penetrationstests, CE-Bewertungen und Datenschutzberatung summieren sich.',
|
|
source: 'Branchendurchschnitt KMU',
|
|
},
|
|
],
|
|
},
|
|
impact: {
|
|
tag: '02 / REGULATORY IMPACT ANALYSIS',
|
|
title: 'Von der Rechtsquelle',
|
|
titleHighlight: 'zur Maßnahme',
|
|
subtitle: 'Deterministische Analyse: Jede Anforderung wird auf ihre konkrete Rechtsquelle zurückgeführt.',
|
|
terminalLines: [
|
|
{ type: 'input' as TerminalType, text: '> analyzing EU 2023/1230 Anhang I ...' },
|
|
{ type: 'output' as TerminalType, text: ' [OK] 127 Anforderungen extrahiert' },
|
|
{ type: 'input' as TerminalType, text: '> mapping to control library ...' },
|
|
{ type: 'output' as TerminalType, text: ' [OK] 42 betroffene Controls identifiziert' },
|
|
{ type: 'input' as TerminalType, text: '> evaluating current state ...' },
|
|
{ type: 'output' as TerminalType, text: ' [OK] 39 konform | 3 Handlungsbedarf' },
|
|
{ type: 'input' as TerminalType, text: '> generating action items ...' },
|
|
{ type: 'signal' as TerminalType, text: ' [DONE] 3 Maßnahmen mit Rechtsreferenz erstellt' },
|
|
],
|
|
outputs: [
|
|
{ label: 'Controls identifiziert', value: '42', status: 'neutral' as Status },
|
|
{ label: 'Konform', value: '39', status: 'success' as Status },
|
|
{ label: 'Handlungsbedarf', value: '3', status: 'warning' as Status },
|
|
{ label: 'Status', value: 'Aktionsplan erstellt', status: 'success' as Status },
|
|
],
|
|
},
|
|
savings: savingsDE,
|
|
deterministic: {
|
|
tag: '04 / VERTRAUENSWÜRDIG DURCH DESIGN',
|
|
title: 'Keine Halluzinationen.',
|
|
titleHighlight: 'Konstruktionsbedingt.',
|
|
subtitle: 'Jede Compliance-Entscheidung ist auf eine konkrete Rechtsquelle rückführbar.',
|
|
pillars: [
|
|
{
|
|
title: 'Deterministische Analyse',
|
|
description: '294.000+ atomare Controls, abgeleitet aus 380+ Rechtsquellen. Regelbasiert, nicht generativ.',
|
|
icon: 'Shield' as IconName,
|
|
},
|
|
{
|
|
title: 'Nachvollziehbare Ergebnisse',
|
|
description: 'Jedes Ergebnis verweist auf Artikel, Absatz und Erwägungsgrund. Kein Black-Box-Modell.',
|
|
icon: 'FileCheck' as IconName,
|
|
},
|
|
{
|
|
title: 'Auditierbare Entscheidungen',
|
|
description: 'Vollständiger Decision Trail: Rechtsquelle → Obligation → Control → Maßnahme → Nachweis.',
|
|
icon: 'ClipboardCheck' as IconName,
|
|
},
|
|
],
|
|
comparison: {
|
|
llm: {
|
|
title: 'LLM-basierte Tools',
|
|
items: [
|
|
'Generative Antworten ohne Quellengarantie',
|
|
'Halluzinationsrisiko bei juristischen Aussagen',
|
|
'Nicht auditierbar — „die KI hat gesagt"',
|
|
'Modellabhängig — Ergebnis ändert sich mit Version',
|
|
],
|
|
},
|
|
breakpilot: {
|
|
title: 'BreakPilot Engine',
|
|
items: [
|
|
'Deterministische Analyse mit Rechtsquellenreferenz',
|
|
'Keine Halluzinationen — regelbasierte Auswertung',
|
|
'Vollständig auditierbar mit Decision Trail',
|
|
'Versioniert — reproduzierbare Ergebnisse',
|
|
],
|
|
},
|
|
},
|
|
},
|
|
architecture: {
|
|
tag: '04 / ARCHITEKTUR',
|
|
title: 'Enterprise-Architektur.',
|
|
titleHighlight: 'EU-souverän.',
|
|
subtitle: 'Drei Schichten, keine US-Abhängigkeit, vollständig on-premise deploybar.',
|
|
layers: [
|
|
{ name: 'Application Layer', components: ['Admin Dashboard', 'Compliance Engine', 'Audit Manager', 'Report Generator'], tech: 'Next.js, FastAPI, Go' },
|
|
{ name: 'Gateway Layer', components: ['RAG Service', 'Embedding Service', 'Control Pipeline', 'Auth & RBAC'], tech: 'FastAPI, Qdrant, Vault' },
|
|
{ name: 'Infrastructure Layer', components: ['PostgreSQL', 'Qdrant Vector DB', 'MinIO Storage', 'Self-hosted LLM'], tech: 'PostGIS, Ollama, Docker' },
|
|
],
|
|
badges: ['Kein US-Anbieter', 'BSI-konformes RZ', 'EU-souveräne Inferenz', 'On-Premise möglich'],
|
|
},
|
|
safety: {
|
|
tag: '06 / PRODUCT COMPLIANCE',
|
|
title: 'CE. CRA. OTA.',
|
|
titleHighlight: 'Vom Sensor bis zum Update.',
|
|
subtitle: 'Maschinenverordnung, Cyber Resilience Act und sichere Software-Updates — in einer Plattform.',
|
|
features: [
|
|
{ title: 'CE & Risikobeurteilung', description: 'Systematische Gefahrenanalyse nach EN ISO 12100 und Konformitätsbewertung nach Maschinenverordnung (EU) 2023/1230.', icon: 'AlertTriangle' as IconName },
|
|
{ title: 'Cyber Resilience Act', description: 'Schwachstellenmanagement, SBOM-Pflicht und Meldepflichten für Produkte mit digitalen Elementen.', icon: 'ShieldCheck' as IconName },
|
|
{ title: 'OTA / SOTA Updates', description: 'Compliance-Prüfung für Over-the-Air und Software-over-the-Air Updates nach UN R156 und CRA Anhang I.', icon: 'RefreshCw' as IconName },
|
|
{ title: 'Firmware & Embedded Security', description: 'IEC 62443 für industrielle Steuerungen, ETSI EN 303 645 für IoT-Geräte, EN ISO 13849 für sicherheitsrelevante Software.', icon: 'Cpu' as IconName },
|
|
{ title: 'Technische Dokumentation', description: 'Automatisierte Betriebsanleitung, EU-Konformitätserklärung und Technische Unterlagen nach Anhang IV.', icon: 'FileText' as IconName },
|
|
{ title: 'Supply-Chain-Compliance', description: 'Zulieferer-Anforderungen nach CRA Art. 13, Maschinenverordnung Art. 10 und ISO/SAE 21434 für Automotive.', icon: 'Link' as IconName },
|
|
],
|
|
},
|
|
targets: {
|
|
tag: '07 / ZIELGRUPPEN',
|
|
title: 'Gebaut für den',
|
|
titleHighlight: 'deutschen Mittelstand.',
|
|
subtitle: 'VDMA, VDA und die Unternehmen, die Maschinen, Fahrzeugteile und vernetzte Produkte entwickeln und exportieren.',
|
|
industries: [
|
|
{ name: 'Maschinenbau & Anlagenbau', icon: 'Factory' as IndustryIcon, regulations: ['Maschinenverordnung 2023/1230', 'EN ISO 12100', 'EN ISO 13849', 'IEC 62443'], roi: 'EUR 30.000+ / Jahr Einsparung bei CE-Bewertungen' },
|
|
{ name: 'Automotive Zulieferer', icon: 'Truck' as IndustryIcon, regulations: ['UN R155/R156', 'ISO/SAE 21434', 'Cyber Resilience Act', 'TISAX'], roi: 'EUR 40.000+ / Jahr Einsparung bei CSMS-Audits' },
|
|
{ name: 'IoT, Embedded & Firmware', icon: 'Cpu' as IconName, regulations: ['Cyber Resilience Act', 'RED 2014/53/EU', 'ETSI EN 303 645', 'OTA/SOTA-Pflichten'], roi: 'EUR 25.000+ / Jahr Einsparung bei Produktzertifizierung' },
|
|
{ name: 'Elektrotechnik & Automatisierung', icon: 'Zap' as IndustryIcon, regulations: ['Niederspannungsrichtlinie', 'EMV-Richtlinie', 'ATEX', 'NIS2'], roi: 'EUR 35.000+ / Jahr Einsparung bei Konformität' },
|
|
],
|
|
},
|
|
continuous: {
|
|
tag: '08 / CONTINUOUS COMPLIANCE',
|
|
title: 'Echtzeit statt Stichtag.',
|
|
titleHighlight: 'Compliance ist kein Projekt.',
|
|
subtitle: 'Kontinuierliches Monitoring statt jährlicher Audits — jede Änderung wird sofort bewertet.',
|
|
comparison: {
|
|
annual: { title: 'Jährliche Audits', points: ['Compliance-Status an 1 Tag im Jahr bekannt', '364 Tage Blindflug', 'Veraltete Dokumentation', 'Reaktiv statt präventiv', 'EUR 30.000+ externe Auditkosten'] },
|
|
continuous: { title: 'Continuous Compliance', points: ['Compliance-Status in Echtzeit', '365 Tage vollständige Transparenz', 'Automatisch aktualisierte Dokumentation', 'Präventive Warnungen vor Ablauf', 'Integriert in bestehende Workflows'] },
|
|
},
|
|
},
|
|
security: {
|
|
tag: '09 / CODE SECURITY',
|
|
title: 'Security Engineering.',
|
|
titleHighlight: 'Nicht nur Compliance-Dokumente.',
|
|
subtitle: 'Kontinuierliche Code-Analyse mit automatischer Ticket-Erstellung in Jira, Linear oder GitLab.',
|
|
tools: [
|
|
{ name: 'SAST', description: 'Statische Code-Analyse' },
|
|
{ name: 'DAST', description: 'Dynamische Sicherheitstests' },
|
|
{ name: 'SBOM', description: 'Software Bill of Materials' },
|
|
{ name: 'Container Scanning', description: 'Image-Schwachstellen' },
|
|
{ name: 'Secret Detection', description: 'Credentials im Code' },
|
|
{ name: 'Dependency Audit', description: 'Abhängigkeiten prüfen' },
|
|
],
|
|
integration: {
|
|
title: 'Automatische Ticket-Erstellung',
|
|
description: 'Jedes Finding wird als Ticket mit Priorität, Kontext und Fix-Vorschlag erstellt.',
|
|
targets: ['Jira', 'Linear', 'GitLab Issues', 'GitHub Issues'],
|
|
},
|
|
},
|
|
aiGovernance: {
|
|
tag: '10 / AI GOVERNANCE',
|
|
title: 'EU AI Act.',
|
|
titleHighlight: 'Verordnung (EU) 2024/1689.',
|
|
subtitle: 'Risikokategorisierung, FRIA und Transparenzpflichten — deterministisch umgesetzt.',
|
|
riskLevels: [
|
|
{ level: 'Inakzeptabel', description: 'Social Scoring, biometrische Echtzeit-Überwachung', color: 'red' as RiskColor },
|
|
{ level: 'Hochrisiko', description: 'Kritische Infrastruktur, Medizinprodukte, Personalentscheidungen', color: 'amber' as RiskColor },
|
|
{ level: 'Begrenzt', description: 'Chatbots, Deepfakes — Transparenzpflichten', color: 'blue' as RiskColor },
|
|
{ level: 'Minimal', description: 'Spamfilter, KI in Videospielen — keine Auflagen', color: 'green' as RiskColor },
|
|
],
|
|
features: [
|
|
'Automatische Risikokategorisierung nach Art. 6',
|
|
'FRIA (Fundamental Rights Impact Assessment)',
|
|
'Technische Dokumentation nach Anhang IV',
|
|
'Konformitätsbewertung nach Anhang VI/VII',
|
|
'ISO 42001 Alignment',
|
|
],
|
|
},
|
|
legal: {
|
|
tag: '11 / LEGAL COMPLIANCE',
|
|
title: 'DSGVO. NIS2. TDDDG.',
|
|
titleHighlight: 'Automatisiert, nicht manuell.',
|
|
subtitle: 'Drei Regulierungen, eine Plattform — deterministische Prüfung und Dokumentation.',
|
|
regulations: [
|
|
{ name: 'DSGVO', fullName: 'Datenschutz-Grundverordnung', features: ['Verarbeitungsverzeichnis (Art. 30)', 'Datenschutz-Folgenabschätzung (Art. 35)', 'Betroffenenrechte (Art. 15-22)', 'Technische Maßnahmen (Art. 32)', 'Auftragsverarbeitung (Art. 28)'] },
|
|
{ name: 'NIS2', fullName: 'Netzwerk- und Informationssicherheit', features: ['Risikomanagement (Art. 21)', 'Meldepflichten (Art. 23)', 'Supply-Chain-Sicherheit', 'Incident Response', 'Business Continuity'] },
|
|
{ name: 'TDDDG', fullName: 'Telekommunikation-Digitale-Dienste-Datenschutz', features: ['Cookie-Einwilligung (§ 25)', 'Informationspflichten', 'Technische Schutzmaßnahmen', 'Endgerätezugriff', 'Consent Management'] },
|
|
],
|
|
},
|
|
sovereign: {
|
|
tag: '12 / SOVEREIGN AI',
|
|
title: 'Ihre Daten verlassen',
|
|
titleHighlight: 'nie Ihr Netzwerk.',
|
|
subtitle: 'On-Premise LLM-Inferenz auf eigener Hardware. Keine US-Cloud, kein Drittlandzugriff.',
|
|
features: [
|
|
{ title: 'Self-hosted LLM', description: 'Lokale KI-Modelle auf Apple Silicon oder GPU-Servern. Keine API-Aufrufe an OpenAI, Google oder Anthropic.' },
|
|
{ title: 'BSI-konforme Infrastruktur', description: 'Deployment in BSI-zertifizierten Rechenzentren oder vollständig on-premise in Ihrem Netzwerk.' },
|
|
{ title: 'Kein Patriot Act', description: 'Ausschließlich EU-Software-Stack. Kein FISA 702, kein CLOUD Act, kein Schrems-III-Risiko.' },
|
|
],
|
|
appliance: { title: 'BreakPilot Appliance', description: 'Vorkonfigurierte Hardware für sofortigen On-Premise-Betrieb.', specs: ['Apple M4 Pro / Max', '64-128 GB RAM', 'Vorkonfiguriert', 'Plug & Play'] },
|
|
},
|
|
pricing: {
|
|
tag: '13 / PREISE',
|
|
title: 'Transparente Preise.',
|
|
titleHighlight: 'ROI ab Tag 1.',
|
|
subtitle: 'Keine versteckten Kosten. Keine Feature-Gates. Jeder Plan enthält die volle Plattform.',
|
|
tiers: [
|
|
{ name: 'Starter', badge: 'Einstieg', price: '890', period: '/ Monat', description: 'Für kleine Teams und den Einstieg in deterministische Compliance.', features: ['Bis 10 Mitarbeiter', 'DSGVO + TDDDG Engine', 'Compliance-Dokumentation', 'Betroffenenrechte-Management', 'E-Mail Support'], highlighted: false },
|
|
{ name: 'Professional', badge: 'Beliebt', price: '4.900', period: '/ Monat', description: 'Für wachsende Unternehmen mit komplexen regulatorischen Anforderungen.', features: ['Bis 250 Mitarbeiter', 'Alle Regulatory Engines', 'Code Security (SAST/DAST)', 'CE-Konformitätsbewertung', 'Jira / Linear Integration', 'Continuous Monitoring', 'Dedizierter Ansprechpartner'], highlighted: true },
|
|
{ name: 'Enterprise', badge: 'Individuell', price: '150.000+', period: '/ Jahr', description: 'Für Konzerne und Unternehmen mit höchsten Sicherheitsanforderungen.', features: ['Unbegrenzte Mitarbeiter', 'On-Premise Deployment', 'Custom Regulatory Engines', 'SSO / LDAP Integration', 'SLA mit 99,9% Verfügbarkeit', 'Dedicated Customer Success', 'Individuelle Schulungen'], highlighted: false },
|
|
],
|
|
appliance: { name: 'Appliance', badge: 'On-Premise Hardware', priceRange: '7.900 - 14.900', priceLabel: 'EUR einmalig + Subscription', description: 'Vorkonfigurierte Hardware für vollständigen On-Premise-Betrieb ohne Cloud-Abhängigkeit.', features: ['Apple M4 Pro oder M4 Max', '64-128 GB Unified Memory', 'Alle LLM-Modelle vorinstalliert', 'Zero-Cloud-Architektur', 'Inkl. Starter oder Professional Plan'] },
|
|
cta: 'Demo anfordern',
|
|
},
|
|
footer: {
|
|
tagline: 'Deterministic Regulatory Engineering',
|
|
copyright: 'BreakPilot GmbH',
|
|
description: 'Deterministische regulatorische Analyse für europäische Unternehmen. Keine Halluzinationen. Volle Nachvollziehbarkeit.',
|
|
links: { product: ['Plattform', 'Architektur', 'Preise', 'Security'], legal: ['Impressum', 'Datenschutz', 'AGB'] },
|
|
madeIn: 'Made in Germany. EU-souverän.',
|
|
},
|
|
chat: {
|
|
title: 'Compliance Agent',
|
|
online: 'online',
|
|
responding: 'antwortet...',
|
|
ask: 'Fragen Sie den Compliance Agent:',
|
|
placeholder: 'Frage stellen...',
|
|
stop: 'Antwort stoppen',
|
|
error: 'Verbindung fehlgeschlagen. Bitte versuchen Sie es erneut.',
|
|
suggestions: [
|
|
'Was unterscheidet BreakPilot von anderen Compliance-Tools?',
|
|
'Wie funktioniert die deterministische Analyse?',
|
|
'Kann ich BreakPilot on-premise betreiben?',
|
|
],
|
|
},
|
|
}
|
|
|
|
const en = {
|
|
nav: { cta: 'Request Demo' },
|
|
hero: {
|
|
badge: 'DETERMINISTIC REGULATORY ENGINEERING',
|
|
title: 'Regulatory Analysis.',
|
|
titleHighlight: 'Deterministic. Traceable.',
|
|
subtitle: 'No hallucinations. No compliance gaps. No dependency on US cloud providers.',
|
|
cta: 'Request Demo',
|
|
ctaSecondary: 'View Architecture',
|
|
status: '4 Engines active',
|
|
},
|
|
problem: {
|
|
tag: '01 / THE PROBLEM',
|
|
title: 'Regulatory complexity',
|
|
titleHighlight: 'is growing exponentially',
|
|
subtitle: 'Manual compliance processes cannot scale with the pace of regulatory change.',
|
|
cards: [
|
|
{ metric: '37,000+', label: 'regulatory changes per year', description: 'EU, federal and state levels create a regulatory density that cannot be managed manually.', source: 'VDMA / Bitkom 2025' },
|
|
{ metric: '83%', label: 'of SMEs see compliance as innovation blocker', description: 'Data protection risks, CE requirements and NIS2 obligations tie up resources needed for product development.', source: 'DIHK Digitization Report' },
|
|
{ metric: '50,000+', label: 'EUR annual compliance costs', description: 'External audits, penetration tests, CE assessments and data protection consulting add up.', source: 'SME industry average' },
|
|
],
|
|
},
|
|
impact: {
|
|
tag: '02 / REGULATORY IMPACT ANALYSIS',
|
|
title: 'From legal source',
|
|
titleHighlight: 'to action item',
|
|
subtitle: 'Deterministic analysis: Every requirement is traced back to its concrete legal source.',
|
|
terminalLines: [
|
|
{ type: 'input' as TerminalType, text: '> analyzing EU 2023/1230 Annex I ...' },
|
|
{ type: 'output' as TerminalType, text: ' [OK] 127 requirements extracted' },
|
|
{ type: 'input' as TerminalType, text: '> mapping to control library ...' },
|
|
{ type: 'output' as TerminalType, text: ' [OK] 42 affected controls identified' },
|
|
{ type: 'input' as TerminalType, text: '> evaluating current state ...' },
|
|
{ type: 'output' as TerminalType, text: ' [OK] 39 compliant | 3 action required' },
|
|
{ type: 'input' as TerminalType, text: '> generating action items ...' },
|
|
{ type: 'signal' as TerminalType, text: ' [DONE] 3 actions with legal reference created' },
|
|
],
|
|
outputs: [
|
|
{ label: 'Controls identified', value: '42', status: 'neutral' as Status },
|
|
{ label: 'Compliant', value: '39', status: 'success' as Status },
|
|
{ label: 'Action required', value: '3', status: 'warning' as Status },
|
|
{ label: 'Status', value: 'Action plan created', status: 'success' as Status },
|
|
],
|
|
},
|
|
savings: savingsEN,
|
|
deterministic: {
|
|
tag: '04 / TRUSTWORTHY BY DESIGN',
|
|
title: 'No hallucinations.',
|
|
titleHighlight: 'By design.',
|
|
subtitle: 'Every compliance decision is traceable to a concrete legal source.',
|
|
pillars: [
|
|
{ title: 'Deterministic Analysis', description: '294,000+ atomic controls derived from 380+ legal sources. Rule-based, not generative.', icon: 'Shield' as IconName },
|
|
{ title: 'Traceable Results', description: 'Every result references article, paragraph and recital. No black-box model.', icon: 'FileCheck' as IconName },
|
|
{ title: 'Auditable Decisions', description: 'Complete decision trail: Legal source → Obligation → Control → Action → Evidence.', icon: 'ClipboardCheck' as IconName },
|
|
],
|
|
comparison: {
|
|
llm: { title: 'LLM-based Tools', items: ['Generative answers without source guarantee', 'Hallucination risk for legal statements', 'Not auditable — "the AI said so"', 'Model-dependent — results change with version'] },
|
|
breakpilot: { title: 'BreakPilot Engine', items: ['Deterministic analysis with legal source reference', 'No hallucinations — rule-based evaluation', 'Fully auditable with decision trail', 'Versioned — reproducible results'] },
|
|
},
|
|
},
|
|
architecture: {
|
|
tag: '04 / ARCHITECTURE',
|
|
title: 'Enterprise Architecture.',
|
|
titleHighlight: 'EU-sovereign.',
|
|
subtitle: 'Three layers, no US dependency, fully deployable on-premise.',
|
|
layers: [
|
|
{ name: 'Application Layer', components: ['Admin Dashboard', 'Compliance Engine', 'Audit Manager', 'Report Generator'], tech: 'Next.js, FastAPI, Go' },
|
|
{ name: 'Gateway Layer', components: ['RAG Service', 'Embedding Service', 'Control Pipeline', 'Auth & RBAC'], tech: 'FastAPI, Qdrant, Vault' },
|
|
{ name: 'Infrastructure Layer', components: ['PostgreSQL', 'Qdrant Vector DB', 'MinIO Storage', 'Self-hosted LLM'], tech: 'PostGIS, Ollama, Docker' },
|
|
],
|
|
badges: ['No US provider', 'BSI-compliant DC', 'EU-sovereign inference', 'On-premise possible'],
|
|
},
|
|
safety: {
|
|
tag: '06 / PRODUCT COMPLIANCE',
|
|
title: 'CE. CRA. OTA.',
|
|
titleHighlight: 'From sensor to update.',
|
|
subtitle: 'Machinery Regulation, Cyber Resilience Act and secure software updates — in one platform.',
|
|
features: [
|
|
{ title: 'CE & Risk Assessment', description: 'Systematic hazard analysis per EN ISO 12100 and conformity assessment per Machinery Regulation (EU) 2023/1230.', icon: 'AlertTriangle' as IconName },
|
|
{ title: 'Cyber Resilience Act', description: 'Vulnerability management, SBOM obligations and reporting duties for products with digital elements.', icon: 'ShieldCheck' as IconName },
|
|
{ title: 'OTA / SOTA Updates', description: 'Compliance checks for Over-the-Air and Software-over-the-Air updates per UN R156 and CRA Annex I.', icon: 'RefreshCw' as IconName },
|
|
{ title: 'Firmware & Embedded Security', description: 'IEC 62443 for industrial controls, ETSI EN 303 645 for IoT devices, EN ISO 13849 for safety-related software.', icon: 'Cpu' as IconName },
|
|
{ title: 'Technical Documentation', description: 'Automated operating instructions, EU declaration of conformity and technical files per Annex IV.', icon: 'FileText' as IconName },
|
|
{ title: 'Supply Chain Compliance', description: 'Supplier requirements per CRA Art. 13, Machinery Regulation Art. 10 and ISO/SAE 21434 for automotive.', icon: 'Link' as IconName },
|
|
],
|
|
},
|
|
targets: {
|
|
tag: '07 / TARGET INDUSTRIES',
|
|
title: 'Built for the',
|
|
titleHighlight: 'German Mittelstand.',
|
|
subtitle: 'VDMA, VDA and the companies that develop and export machinery, vehicle components and connected products.',
|
|
industries: [
|
|
{ name: 'Machinery & Plant Engineering', icon: 'Factory' as IndustryIcon, regulations: ['Machinery Regulation 2023/1230', 'EN ISO 12100', 'EN ISO 13849', 'IEC 62443'], roi: 'EUR 30,000+ / year savings on CE assessments' },
|
|
{ name: 'Automotive Suppliers', icon: 'Truck' as IndustryIcon, regulations: ['UN R155/R156', 'ISO/SAE 21434', 'Cyber Resilience Act', 'TISAX'], roi: 'EUR 40,000+ / year savings on CSMS audits' },
|
|
{ name: 'IoT, Embedded & Firmware', icon: 'Cpu' as IconName, regulations: ['Cyber Resilience Act', 'RED 2014/53/EU', 'ETSI EN 303 645', 'OTA/SOTA duties'], roi: 'EUR 25,000+ / year savings on product certification' },
|
|
{ name: 'Electrical & Automation', icon: 'Zap' as IndustryIcon, regulations: ['Low Voltage Directive', 'EMC Directive', 'ATEX', 'NIS2'], roi: 'EUR 35,000+ / year savings on conformity' },
|
|
],
|
|
},
|
|
continuous: {
|
|
tag: '08 / CONTINUOUS COMPLIANCE',
|
|
title: 'Real-time, not deadlines.',
|
|
titleHighlight: 'Compliance is not a project.',
|
|
subtitle: 'Continuous monitoring instead of annual audits — every change is evaluated immediately.',
|
|
comparison: {
|
|
annual: { title: 'Annual Audits', points: ['Compliance status known 1 day per year', '364 days flying blind', 'Outdated documentation', 'Reactive instead of preventive', 'EUR 30,000+ external audit costs'] },
|
|
continuous: { title: 'Continuous Compliance', points: ['Compliance status in real-time', '365 days full transparency', 'Automatically updated documentation', 'Preventive warnings before expiry', 'Integrated into existing workflows'] },
|
|
},
|
|
},
|
|
security: {
|
|
tag: '09 / CODE SECURITY',
|
|
title: 'Security Engineering.',
|
|
titleHighlight: 'Not just compliance documents.',
|
|
subtitle: 'Continuous code analysis with automatic ticket creation in Jira, Linear or GitLab.',
|
|
tools: [
|
|
{ name: 'SAST', description: 'Static code analysis' },
|
|
{ name: 'DAST', description: 'Dynamic security testing' },
|
|
{ name: 'SBOM', description: 'Software Bill of Materials' },
|
|
{ name: 'Container Scanning', description: 'Image vulnerabilities' },
|
|
{ name: 'Secret Detection', description: 'Credentials in code' },
|
|
{ name: 'Dependency Audit', description: 'Check dependencies' },
|
|
],
|
|
integration: { title: 'Automatic ticket creation', description: 'Every finding is created as a ticket with priority, context and fix suggestion.', targets: ['Jira', 'Linear', 'GitLab Issues', 'GitHub Issues'] },
|
|
},
|
|
aiGovernance: {
|
|
tag: '10 / AI GOVERNANCE',
|
|
title: 'EU AI Act.',
|
|
titleHighlight: 'Regulation (EU) 2024/1689.',
|
|
subtitle: 'Risk categorization, FRIA and transparency obligations — deterministically implemented.',
|
|
riskLevels: [
|
|
{ level: 'Unacceptable', description: 'Social scoring, real-time biometric surveillance', color: 'red' as RiskColor },
|
|
{ level: 'High Risk', description: 'Critical infrastructure, medical devices, HR decisions', color: 'amber' as RiskColor },
|
|
{ level: 'Limited', description: 'Chatbots, deepfakes — transparency obligations', color: 'blue' as RiskColor },
|
|
{ level: 'Minimal', description: 'Spam filters, AI in video games — no obligations', color: 'green' as RiskColor },
|
|
],
|
|
features: ['Automatic risk categorization per Art. 6', 'FRIA (Fundamental Rights Impact Assessment)', 'Technical documentation per Annex IV', 'Conformity assessment per Annex VI/VII', 'ISO 42001 Alignment'],
|
|
},
|
|
legal: {
|
|
tag: '11 / LEGAL COMPLIANCE',
|
|
title: 'GDPR. NIS2. TDDDG.',
|
|
titleHighlight: 'Automated, not manual.',
|
|
subtitle: 'Three regulations, one platform — deterministic verification and documentation.',
|
|
regulations: [
|
|
{ name: 'GDPR', fullName: 'General Data Protection Regulation', features: ['Records of processing (Art. 30)', 'Data Protection Impact Assessment (Art. 35)', 'Data subject rights (Art. 15-22)', 'Technical measures (Art. 32)', 'Data processing agreements (Art. 28)'] },
|
|
{ name: 'NIS2', fullName: 'Network and Information Security', features: ['Risk management (Art. 21)', 'Reporting obligations (Art. 23)', 'Supply chain security', 'Incident Response', 'Business Continuity'] },
|
|
{ name: 'TDDDG', fullName: 'Telecommunications Digital Services Data Protection', features: ['Cookie consent (§ 25)', 'Information obligations', 'Technical safeguards', 'Terminal access', 'Consent Management'] },
|
|
],
|
|
},
|
|
sovereign: {
|
|
tag: '12 / SOVEREIGN AI',
|
|
title: 'Your data never leaves',
|
|
titleHighlight: 'your network.',
|
|
subtitle: 'On-premise LLM inference on your own hardware. No US cloud, no third-country access.',
|
|
features: [
|
|
{ title: 'Self-hosted LLM', description: 'Local AI models on Apple Silicon or GPU servers. No API calls to OpenAI, Google or Anthropic.' },
|
|
{ title: 'BSI-compliant Infrastructure', description: 'Deployment in BSI-certified data centers or fully on-premise in your network.' },
|
|
{ title: 'No Patriot Act', description: 'Exclusively EU software stack. No FISA 702, no CLOUD Act, no Schrems III risk.' },
|
|
],
|
|
appliance: { title: 'BreakPilot Appliance', description: 'Pre-configured hardware for immediate on-premise operation.', specs: ['Apple M4 Pro / Max', '64-128 GB RAM', 'Pre-configured', 'Plug & Play'] },
|
|
},
|
|
pricing: {
|
|
tag: '13 / PRICING',
|
|
title: 'Transparent pricing.',
|
|
titleHighlight: 'ROI from day 1.',
|
|
subtitle: 'No hidden costs. No feature gates. Every plan includes the full platform.',
|
|
tiers: [
|
|
{ name: 'Starter', badge: 'Entry', price: '890', period: '/ month', description: 'For small teams getting started with deterministic compliance.', features: ['Up to 10 employees', 'GDPR + TDDDG Engine', 'Compliance documentation', 'Data subject rights management', 'Email support'], highlighted: false },
|
|
{ name: 'Professional', badge: 'Popular', price: '4,900', period: '/ month', description: 'For growing companies with complex regulatory requirements.', features: ['Up to 250 employees', 'All Regulatory Engines', 'Code Security (SAST/DAST)', 'CE conformity assessment', 'Jira / Linear integration', 'Continuous Monitoring', 'Dedicated contact person'], highlighted: true },
|
|
{ name: 'Enterprise', badge: 'Custom', price: '150,000+', period: '/ year', description: 'For corporations with the highest security requirements.', features: ['Unlimited employees', 'On-Premise Deployment', 'Custom Regulatory Engines', 'SSO / LDAP Integration', '99.9% uptime SLA', 'Dedicated Customer Success', 'Individual training'], highlighted: false },
|
|
],
|
|
appliance: { name: 'Appliance', badge: 'On-Premise Hardware', priceRange: '7,900 - 14,900', priceLabel: 'EUR one-time + subscription', description: 'Pre-configured hardware for full on-premise operation without cloud dependency.', features: ['Apple M4 Pro or M4 Max', '64-128 GB Unified Memory', 'All LLM models pre-installed', 'Zero-cloud architecture', 'Incl. Starter or Professional plan'] },
|
|
cta: 'Request Demo',
|
|
},
|
|
footer: {
|
|
tagline: 'Deterministic Regulatory Engineering',
|
|
copyright: 'BreakPilot GmbH',
|
|
description: 'Deterministic regulatory analysis for European enterprises. No hallucinations. Full traceability.',
|
|
links: { product: ['Platform', 'Architecture', 'Pricing', 'Security'], legal: ['Legal Notice', 'Privacy Policy', 'Terms'] },
|
|
madeIn: 'Made in Germany. EU-sovereign.',
|
|
},
|
|
chat: {
|
|
title: 'Compliance Agent',
|
|
online: 'online',
|
|
responding: 'responding...',
|
|
ask: 'Ask the Compliance Agent:',
|
|
placeholder: 'Ask a question...',
|
|
stop: 'Stop response',
|
|
error: 'Connection failed. Please try again.',
|
|
suggestions: [
|
|
'What makes BreakPilot different from other compliance tools?',
|
|
'How does the deterministic analysis work?',
|
|
'Can I run BreakPilot on-premise?',
|
|
],
|
|
},
|
|
}
|
|
|
|
const translations: Record<Lang, typeof de> = { de, en }
|
|
|
|
export function t(lang: Lang): typeof de {
|
|
return translations[lang]
|
|
}
|
|
|
|
// Default export for components that don't use the language context yet
|
|
export const content = de
|