deenx-default

Contact

Talk to us #

Every organisation starts from a different position — different laws, different software stacks, different levels of maturity in open source management. That is why we begin with a conversation, not a standard proposal. In a first no-obligation call, we jointly clarify which regulatory requirements apply to you, what your current situation looks like, and where the greatest need for action lies. The result is a concrete next step that fits your situation — not a sales pitch, but an honest assessment.

How to reach us #

OTTRIA GmbH

Lindenallee 39

47608 Geldern

Phone: +49 1520 62 17 000

Email: anfrage@ottria.eu

Your entry point #

Not every organisation comes to us with the same question. Some face a concrete audit requirement, others want to have their SBOM systematically analysed for the first time. Choose the context that best fits your situation — so we can prepare the conversation specifically and provide you with directly relevant information:

I am subject to DORA and need an SBOM analysis #

You work in the financial sector and need to document and secure your open source supply chain? We analyse your SBOM, identify risks, and deliver audit-ready documentation for BaFin and auditors.

I am subject to NIS2 and looking for a service provider #

You operate critical infrastructure and need to meet the supply chain security requirements under Art. 21 NIS2? We take over the monitoring and maintenance of your open source dependencies.

I am a software manufacturer and need CRA support #

The Cyber Resilience Act requires five years of security support, 24-hour reporting deadlines, and an SBOM. We support you in securing your open source components and the required documentation.

I am a software service provider or agency #

You develop or operate software for clients — as an agency, systems integrator, MSP, cloud or platform partner? Legally, you are a manufacturer under CRA and Product Liability and a data processor under GDPR, even if the product runs under your client's name. We deliver the audit-ready evidence you can present to your clients and their auditors — and take over the ongoing maintenance of the open source supply chain.

I am an open source project looking for support #

You maintain a project and need help — whether hardware, CI/CD, code reviews, bug bounties, or a breather? We help concretely and without conditions.

I want to learn about OTTRIA in general #

You are curious but not yet sure whether and how OTTRIA is relevant to you? No problem. We explain what we do and figure out together whether it is a fit.

What happens after the initial consultation? #

Step 1: Initial consultation (30 minutes, free) We learn about your situation. What do you use? Which laws affect you? Where does it hurt? No sales pressure, no pitch deck.

Step 2: Initial SBOM analysis If you wish, we analyse your software bill of materials. You learn how many open source projects are in your supply chain, which of them are critical, and where the biggest risks lie.

Step 3: Individual proposal Based on the analysis, we create a proposal tailored to your situation. No standard package, but a solution that accounts for your actual SBOM and your regulatory requirements.

Step 4: Ongoing support After engagement, we monitor, maintain, and document your open source supply chain — continuously, not as a one-off.

Pricing indication #

Our pricing is based on the size and complexity of your software bill of materials. Every SBOM is different — 200 components require a different effort than 2,000.

Flat-rate offers without knowledge of your situation would be irresponsible. Therefore: pricing is individual, based on your SBOM. Contact us for an initial conversation, and we can give you a realistic estimate.

For open source projects #

If you represent an open source project and are looking for support, there is no cost to you. Our support for the community is funded through enterprise contracts. This includes, among other things, security reviews, hardware and CI/CD infrastructure, bug bounty programmes, and holiday cover for maintainers. Whether a small individual project or a foundation project with thousands of users — we jointly assess how we can best help. Simply write to us, and we will get back to you promptly.

Call us, write an email, or schedule an appointment directly. We look forward to the conversation.

Phone: +49 1520 62 17 000

Email: anfrage@ottria.eu