// For municipalities & public sector
Spot visible digital risks early
SKOPION helps municipalities, public bodies, municipal enterprises and economic-development units to assess visible digital risks calmly and methodically — passively, documentably and without intervening in third-party systems.
Services for public bodies
- OSINT-based situational pictures of the publicly visible attack surface
- Domain and brand abuse (fake domains, look-alikes)
- Data-leak and credential risks around the organisation
- Incident first assessment and structured documentation
- Awareness and emergency-plan readiness
Clarifications
- No active testing or intervention without written authorisation
- No legal advice
- No guarantee of success or recovery
- Only legal, publicly traceable sources
Frequently asked (public sector)
- Is this an active security test?
- No. We work passively and assess publicly traceable information. Active technical testing only happens after written authorisation and a separate engagement.
- Do we need authorisation?
- Not for the passive assessment. Any form of active testing requires written authorisation from the responsible body.
- How do you handle data protection and GDPR?
- Yes. Data-minimising, no tracking; where personal data is processed, on the basis of a data-processing agreement. We do not replace legal advice.
- What do we get as a result?
- A structured, documented situational picture with prioritised findings and next steps — understandable and without jargon.
- Is this suitable for municipal enterprises?
- Yes. Municipal operations, municipal companies and economic development are explicitly in scope.
- Can you resolve an incident immediately?
- We assess quickly and methodically and name concrete steps. We do not give a success or recovery guarantee.