Regixo docs
EU compliance · optional · compliance team

Claim & review

An engineer has forwarded you a draft record built from their real systems — the structure, never the rows. This page is how you open it, sign in, and get your bearings — what the record shows, which calls are already made, and which are waiting for you. Reviewing needs no account; signing does.

Optional · EU compliance module You need this only if your company must keep a GDPR Article 30 RoPA or a DORA register — it is an optional module on top of the free data catalog. If that is not you, you can skip this section.

What the engineer forwards

The engineer runs regixo invite on their machine. That produces two things they send you, and nothing else leaves their machine but metadata:

Both point at the same record. The PDF is for forwarding and reading offline; the link is for filling and, later, signing. The engineer never had to create an account to send them.

Open the link and sign in

Opening the claim link lands you straight on the record — no login to look. When you are ready to change or confirm anything, you sign in with a one-time email link (a “magic link”):

what you'll see — sign in to fill or confirm (a one-time email link; reading needs no account)
Regixo compliance portal · EU-hosted
▤ In the portal

Reading the draft needs no account — the claim link is enough. To change or confirm anything, press Email me a sign-in link: Regixo sends a one-time link, good for 15 minutes. Corporate mail scanners often open links first, so it lands on a Confirm it’s you page — press Continue to sign in → and you are in, with no password to set. The first person to sign in on a claim becomes the record’s admin. A tour: the compliance portal tour.

— not here

Signing in is a portal act — no terminal command signs a person in. The engineer’s side is regixo invite to send the claim, and later regixo seal pull to bring the sealed copy home.

— not here

An agent can read the draft over the read-only API, but it never signs in and never signs — signing names a verified person.

  1. Enter your work email. Regixo sends you a single-use sign-in link.
  2. Open the email, click the link, and you are signed in — no password to set or remember.
  3. Signing in creates your account, so the record you later sign carries a verified identity — the signature can name who you are.
Viewing vs signing Reading the draft needs no account — the link is enough. Signing does: it is the act that turns a suggestion into a confirmed, defensible fact, so it must be tied to a verified person. The first person to sign in on a claim becomes its admin and can manage the rest of the team.

What the record shows

The record opens as a finished-looking document built from the engineer’s real tables — not a blank form. Three things orient you:

A short orientation block sits at the top of the claimed record, above the activities: what it is, where it came from, what is done and what is still blank — with a provenance line stating exactly what left the engineer’s machine, a coverage banner when a source could not be reached, and the counts:

what you'll see — the top of the claimed record, not signed in · the intro block, the provenance line, the coverage banner and the counts
Regixo compliance portal · EU-hosted
Your GDPR Article 30 Record of Processing — drafted from your own systems.
  • What this is — the list of how your company uses people’s personal data — the “Record of Processing” most EU organisations must keep.
  • Where it came from — your engineering team mapped your real database with Regixo, which drafted this from your actual tables.
  • What’s done — the data inventory is mapped for you.
  • What needs you — 10 legal calls are still blank — security measures, recipients, purpose, your lawful basis and more. Your team fills them below; then you sign.
  • Your privacy — metadata only (names, types, owners). No row values ever left your team’s machine.
  • What’s not coveredsnowflake-dwh, stripe (unreachable at the last scan).

Forwarded draft — received 2026-07-10 · what left their machine: metadata only — 4 dataset names and types + 9 personal-data flags. No row values, ever. No account needed to review. · what changed → · who is Regixo? →

2
sources connected · 2 unreachable
4
datasets mapped
4
hold personal data
10
legal calls still blank — yours to fill

The same summary, as plain text:

example — the summary line on a claimed record
Record of Processing Activities — DRAFT
GDPR Article 30 · not defensible until your team confirms the legal calls and signs

  Coverage           18 of 22 datasets · 5 of 6 sources reached
  Auto-filled        23 mechanical fields
  Needs you          14 legal fields across 6 activities
  Special category   2 activities carry Art. 9 data

What to look for on first review

You do not need to read every field to know where you stand. On a first pass, check three things:

Next step Once you know what is outstanding, fill it: Fill the RoPA walks each legal field and the real Art. 6, 9 and 10 options. Financial firms also have The DORA register.
What works today The forwardable DRAFT PDF plus the claim link is the hand-off that works now — no server for you to stand up, no software to install. The fully hosted, multi-tenant portal (with per-tenant isolation and SSO) is not live yet; the pages here describe the claim experience, they do not stand in for it.
REGIXO — documentation · viewing needs no account; signing names a verified person · Glossary