BCMLogic

BCMLogic (BCMLogic Solutions sp. z o.o.) is a Polish AI-native GRC software company founded in 2010 and headquartered in Warsaw, Poland at Aleje Jerozolimskie 125/127. The platform is built with .NET and integrates via REST API, webhooks, DataHub ETL, and SSO (OAuth 2.0, SAML 2.0, OIDC, LDAP). BCMLogic serves industries including banking and finance, insurance, telecommunications, public sector, retail and e-commerce, energy and utilities, healthcare, and manufacturing.

The company is privately held and employs 11 to 50 professionals with estimated annual revenue of approximately $500,000. Key differentiators include a Headless GRC architecture with decoupled backend and frontend, a proprietary GRC AI trained on regulations from KNF, EBA, ENISA, and ESMA rather than public internet data, API-first embeddability, and flexible deployment options including SaaS on Microsoft Azure Poland or on-premise. The company's VendorHub Third-Party Risk Management module directly supports complex multi-vendor supply chains common in shared service center and GBS environments by enabling automated vendor risk assessment, concentration risk monitoring, and compliance reporting.

BCMLogic is a member of the CyberMadeInPoland cluster and partners with Operator Chmury Krajowej. BCMLogic delivers an enterprise-grade integrated GRC platform unifying Business Continuity Management (ISO 22301), Enterprise Risk Management (ISO 31000), Third-Party Risk Management (DORA Article 28, NIS2), Incident Management, and Audit Management into a single intelligence layer. Notable clients include Pekao, PKO BP, BNP Paribas Poland, Allegro, Ceneo, T-Mobile Poland, PKP Informatyka, Medicover, Credit Agricole Poland, BIK, the Polish Ministry of Finance, and EFL.