Anonymous & secure
whistleblowing channel
End-to-end encrypted whistleblowing platform. Give your employees a safe reporting channel and meet your legal obligations — in 2 minutes.
No credit card · 2-minute setup · GDPR compliant · E2E encryption
✓ Anonymous reporting from any browser
✓ Secure two-way communication
✓ Part of the 365Scan ecosystem
Mandatory for companies with over 50 employees
Everything you need for compliance
WhistleBox provides a complete whistleblowing solution — from anonymous reporting to investigation management and audit.
End-to-End Encryption
Reports are encrypted in the browser using the organization's public key. No one, not even us, can read their contents.
Fully Anonymous
Zero cookies, zero IP tracking, zero personal data on reporting pages. The reporter's identity is 100% protected.
Legally compliant
Full implementation of Law 361/2022 and EU Directive 2019/1937. Automatic deadlines of 7 days and 3 months.
Compliance dashboard
Manage reports, communicate two-way with reporters, and monitor legal deadlines in real time.
Multi-channel notifications
Email, Telegram, and in-app notifications. Automatic alerts for new reports, messages, and overdue legal deadlines.
Full audit trail
Every action is logged: views, status changes, messages, timestamps. Ready for legal audit.
Your compliance dashboard
Manage reports, communicate with reporters, monitor deadlines — all from one place.
Full setup in under 2 minutes · No installation required · Request a live demo
How it works
From sign-up to your first report, in 4 simple steps.
Create your account
Register your organization in 2 minutes. You'll receive a unique reporting link, ready to share.
Customize the channel
Add your logo, reporting categories, and custom text. The link takes on your organization's identity.
Share the link
Employees access the anonymous link and submit end-to-end encrypted reports. No account needed, no tracking.
Manage reports
Get instant notifications. Investigate, communicate anonymously with reporters, and meet legal deadlines.
It's not optional. It's the law.
Law 361/2022 transposes EU Directive 2019/1937 on the protection of whistleblowers. The implementation deadline has expired.
Private companies
All companies with a minimum of 50 employees must have a functioning internal reporting channel.
Public institutions
Public authorities with over 50 employees or municipalities with over 10,000 residents.
Sanctions
Administrative fines as defined by each EU member state's transposition of Directive 2019/1937. Penalties range from thousands to over €1,000,000 depending on the country.
Who is WhistleBox for
Any organization subject to Law 361/2022.
Companies with 50+ employees
Legally required by EU Directive 2019/1937 to have an internal whistleblowing channel. Significant fines for non-compliance.
Financial institutions
Additional anti-fraud and anti-corruption compliance requirements. Mandatory audit trail.
Public authorities
Institutions with over 50 employees or municipalities with over 10,000 residents. Deadline: already expired.
Compliance officers
Centralized dashboard with automatic deadlines, statistical reporting, and full audit trail.
Plans & Pricing
Start for free. Upgrade as you grow.
Starter
For small companies
- 2 users
- Unlimited reports
- E2E encryption
- Standard categories
- Email notifications
Pro
For mid-size companies
- 10 users
- Everything in Starter
- Logo + custom branding
- PDF report export
- Telegram notifications
- Priority support
Enterprise
For corporations
- Unlimited users
- Everything in Pro
- SSO / SAML
- Dedicated SLA
- Optional on-premise
- SIEM integration
Frequently Asked Questions
What is Law 361/2022?
EU Directive 2019/1937 requires companies with over 50 employees to implement an internal reporting channel for whistleblowers. Each EU member state has transposed this into national law with significant penalties for non-compliance.
Is it truly anonymous?
Yes. Reporting pages collect no cookies, no IP addresses, and no identifying data. Reports are encrypted in the browser using the organization's public key — not even we can read them.
How long does setup take?
Under 2 minutes. Create your account, add your logo and reporting categories, share the link with employees. No software installation, no IT required.
What legal deadlines must be met?
Acknowledgment of receipt within 7 calendar days. Feedback to the reporter within a maximum of 3 months. WhistleBox automatically tracks both deadlines and sends alerts.
Can I communicate with an anonymous reporter?
Yes. The reporter receives a unique code upon submission. Using this code, they can return to the link to view your messages and reply — without revealing their identity.
Does it work for public institutions?
Yes. Public authorities with over 50 employees or municipalities with over 10,000 residents have the same obligation. WhistleBox covers both scenarios.
How many reports should I expect?
It depends on the size of the organization. Studies show that a company with 500 employees receives an average of 3–5 reports per year. Most relate to ethical violations, harassment, or internal fraud.
What security certifications do you have?
WhistleBox is ISO 27001 certified, GDPR and Schrems II compliant. All data is stored in EU data centers (Germany). Reports are end-to-end encrypted — even our team cannot access their contents.
Can I get a platform demo?
Yes. Contact us at contact@whistle-box.eu or call +40 750 257 176 and we'll provide a personalized walkthrough of the platform, tailored to your organization's needs.
Comply with the law. Protect your employees.
The implementation deadline has expired. Set up your whistleblowing channel in 2 minutes and avoid fines.
No credit card · No installation · Free for small teams