AI-assisted · Law 25 · GDPR · PIPEDA

Take control of your information security

Catégo makes categorizing your information assets simple and actionable. Categorize using the DICT model, keep your records of processing, and produce your privacy impact assessments (PIA/EFVP) — all AI-assisted. Law 25 and GDPR compliance, without the headache.

First month free — no credit card required. The AI proposes, you approve: you stay in control of your decisions.

Preview of the Catégo app: list of information assets

Supported frameworks

Law 25
Québec · private & public sector
GDPR
European Union
PIPEDA
Canada

Catégo equips your compliance efforts under these frameworks. It is not a certification or legal advice.

One platform, three pillars

Inventory, document, assess — all in one place

Catégo brings your assets, processing activities, and impact assessments together in one coherent workflow, built for SMB teams.

Asset categorization (DICT)

Inventory your information assets and rate them across the four dimensions of the DICT model — Availability, Integrity, Confidentiality, Traceability — to prioritize your protection measures.

  • Guided categorization records
  • Justifications written with you
  • Owners and stewards clearly identified

Records of processing (RoPA)

Document your personal information processing activities: purposes, data categories, recipients, security measures, retention, and cross-border transfers.

  • Register compliant with Law 25 (and GDPR)
  • Extensions specific to each regime
  • Presentation-ready PDF export

AI-assisted privacy impact assessments (PIA/EFVP)

A trigger engine detects when a privacy impact assessment is required, then the AI drafts a structured first version from your data.

  • Automatic trigger detection
  • Draft clearly labelled "AI-generated"
  • Human review and approval

Demo

See Catégo in action

Watch how to document your privacy compliance — AI-assisted.

How it works

From inventory to register in three steps

1

Inventory

List your assets, systems, vendors, locations, and owners in a structured, centralized inventory.

2

Categorize (AI-assisted)

The AI proposes a DICT categorization and drafts the justifications from your answers. You adjust and approve in a few clicks.

3

Generate register & PIA

Produce your records of processing and your impact assessments, then export them as presentation-ready PDFs.

The differentiator

An AI assistant that does the first draft — you stay in control

Where traditional compliance tools leave you staring at a blank page, Catégo uses AI to speed up the tedious work, without ever deciding for you.

Natural-language intake

Describe an activity in plain language; Catégo turns it into a structured record.

DICT suggestions + justifications

The AI proposes a level for each DICT dimension and explains its reasoning.

Personal information detection

Data likely to be personal information is spotted and flagged.

PIA generation

A draft impact assessment is written from your existing data.

Every AI suggestion is reviewed and approved by an authorized person. Nothing is published automatically: you keep a complete audit trail.

AI-assisted categorization and suggestions in Catégo

Who is it for?

Built for organizations that handle personal information

SMBs (Québec & Canada)

Put a credible compliance program in place without a dedicated team or a costly firm. Simple, guided, actionable.

Health & social services

A sector rich in sensitive personal information, where asset categorization and privacy impact assessments are essential.

MSP / MSSP (partners)

Offer privacy compliance as a service to your clients, with a multi-organization view and white-labelling.

FAQ

Frequently asked questions

What is Catégo?

Catégo is an information security and privacy compliance application for SMBs. It helps you categorize your information assets (DICT model), keep your records of processing (RoPA), and produce your impact assessments (PIA/EFVP) — all AI-assisted — to comply with Law 25 and the GDPR.

What is DICT categorization?

DICT is a model for assessing information assets against four criteria: Availability, Integrity, Confidentiality, and Traceability. Catégo guides this assessment so you can prioritize your protection measures based on the value and sensitivity of each asset.

How is the AI used?

The AI speeds up the work: it turns a plain-language description into a structured record, proposes a DICT categorization with justifications, spots personal information, and drafts a PIA. Every suggestion is then reviewed and validated by an authorized person — nothing is approved automatically.

Which regulatory frameworks does Catégo cover?

Catégo is designed first for Law 25 (Québec) and the Commission d'accès à l'information (CAI), then for the GDPR (EU) and PIPEDA (Canada). The data model is multi-regime: other frameworks can be added without a rebuild.

When is a PIA required?

A privacy impact assessment is generally required when acquiring, developing, or redesigning an information system that involves personal information, or when disclosing information outside Québec. Catégo detects these triggers and helps you produce the assessment.

Does Catégo replace legal advice?

No. Catégo is a tool that structures and speeds up your compliance efforts. It does not issue a certification and does not replace the advice of a legal or privacy professional.

How do I get started?

Create an account and enjoy your first month free, no credit card required. You can inventory your first assets and generate an initial categorization in just a few minutes.

Take control of your information security

Get started today. First month free, no credit card required.