“A modern SaaS platform needs to deliver usability and seamless integration—and that’s exactly what DataGuard provides. The revision history is a given: I can see exactly what changed, when, by whom, and why. Everything is audit-ready and fully transparent—exactly how a SaaS product should work today.”
Marcel Schonewille
IT Security Advisor
Rose Bikes is a bicycle manufacturer and omnichannel retailer with in-house production and a strong e-commerce focus. The company connects its online shop, logistics, and retail operations, processing large volumes of customer data every day. To ensure data protection and information security don’t get lost in daily operations, Rose Bikes relies on clear processes and centralized governance.
Location
Germany
Company size
Small & medium business
Industry
Manufacturing
Product
Compliance
At Rose Bikes, compliance isn’t treated as a side project. With complex processes, multiple touchpoints, and significant customer data across manufacturing, e-commerce, logistics, and retail, it needs to function as part of the core business.
With DataGuard, what used to be a mix of isolated solutions has become a structured, efficient process—centrally managed, clearly documented, and designed so IT Security Advisor and Information Security Officer Marcel Schonewille can keep everything under control despite limited time resources.
Instead of ad-hoc requests, scattered emails, and Teams messages, there is now a reliable workflow supported by a centralized platform and backed by strategic expertise.
When processes are fragmented, every request becomes a time drain.
Before working with DataGuard, Rose Bikes was missing one key element: structure. Data protection and information security topics came in from all directions, landing in inboxes, chat messages, or shared folders depending on the department. The work got done, but documentation was inconsistent and difficult to track.
While this setup functioned in day-to-day operations, growing regulatory requirements and increasing complexity made it harder to manage. Especially across IT, Legal, and operational teams, it became clear that without centralized control, every new requirement added disproportionate overhead.
As Marcel puts it:
Rose Bikes chose DataGuard because it’s where platform and expertise work together. The goal wasn’t just advisory support but operational relief through automated workflows and centralized governance.
A key step was moving daily work away from manual documents. Today, Rose Bikes handles core tasks directly in the platform. Documentation lives inside the system. Changes are transparent and traceable.
For Marcel, the built-in revision history is particularly important:
This structured approach becomes particularly valuable in critical situations, when incidents need to be assessed and decisions made under time pressure.
The biggest impact came at the very beginning of the process. Once incidents and tasks enter the system in a structured way, everything downstream becomes more predictable and progressively more efficient.
One recent case illustrates how important this structure is in practice. Rose Bikes received an email claiming that customer data from their web shop had been leaked, including a sample dataset that appeared to contain valid records.
At first glance, the situation seemed critical. Instead of immediately assuming a breach, the team followed a structured validation process. Concrete measures were initiated right away: The Rose Bikes team analyzed the dataset, cross-checked external sources using OSINT scans and dark web monitoring, secured potentially affected accounts, and carried out additional checks on the web shop.
The results of their thorough investigation showed that the incident was not a breach of Rose Bikes’ systems, but rather a classic social engineering attempt based on previously leaked data from other platforms (e.g. due to password reuse).
The case highlights a key point: it’s not just whether an incident occurs, but how quickly and systematically organizations are able to respond.
As Marcel explains:
Today, available time is used more strategically. The platform creates structure, clarifies priorities, and defines clear next steps. Instead of chasing information or coordinating scattered inputs, the team can focus on strengthening data protection and information security in a meaningful way.
For Marcel, this means less operational friction and greater control over a growing area of responsibility. The combination of a centralized platform and expert guidance ensures that information security and data protection are developed systematically and sustainably and not pushed aside by daily operations.
Marcel is building the ISMS for Rose Bikes and its subsidiaries alongside his role as IT Manager. That makes scalability critical. The solution needs to grow with the organization without creating additional overhead. His goal is an ISMS that is well-structured, properly documented, and capable of meeting future external requirements with confidence.
At the same time, responsibility for compliance should not rest on a single individual long-term. Building broader internal ownership is the next step.
Marcel recommends: “Make sure there is strong acceptance for data protection and information security within the organization. Without that commitment, you end up going in circles and risk burning out.”
With DataGuard, Rose Bikes has built a stable foundation: centralized governance, automated workflows, and strategic expertise that make compliance structured, scalable, and manageable, and all of that without additional resources.
TISAX® is a registered trademark of the ENX Association. DataGuard is not affiliated with the ENX Association. We provide Software-as-a-Service and support for the assessment on TISAX® only. The ENX Association does not take any responsibility for any content shown on DataGuard's website.
All data provided is for information only, based on internal estimates. This information is not indicative of KPIs, and is not given with any warranties or guarantees, expressly stated or implied in relation to accuracy and reliability.
{
"@context": "https://schema.org",
"@graph": [
{
"@type": "Organization",
"@id": "www.dataguard.com#organization",
"name": "DataGuard",
"legalName": "DataCo GmbH",
"description": "DataGuard, the European leader in security and compliance software, is trusted by more than 4,000 organizations across 50+ countries. We help you identify and manage your security and compliance risks and fast-track your certifications and compliance by combining expert consultancy with AI-powered automation. Our purpose-built, all-in-one platform is developed with the experience of over 1.5 million total hours by a team of certified security and compliance experts.",
"foundingDate": "2018",
"taxID": "DE315880213",
"logo": "https://7759810.fs1.hubspotusercontent-na1.net/hubfs/7759810/DataGuardLogo.svg",
"url": "www.dataguard.com",
"email": "info@dataguard.de",
"telephone": "+49 89 452459 900",
"address": {
"@type": "PostalAddress",
"streetAddress": "Sandstrasse 33",
"addressLocality": "Munich",
"addressRegion": "Bavaria",
"postalCode": "80335",
"addressCountry": "Germany"
},
"sameAs": [
"https://www.linkedin.com/company/dataguard1/",
"https://www.youtube.com/channel/UCEQzPZ6sCBCj9cAoBvaLL6w",
"https://x.com/i/flow/login?redirect_after_login=%2FDataGuard_dg"
]
}
]
}✅ Organization schema markup for "DataGuard" has been injected into the document head.