What is PRISMA?

🌟 Why Choose PRISMA?

 

Preferred Reporting Items for Systematic reviews and Meta-Analyses (PRISMA) allows you to file incidents from the floor or the field. Route them by incident type and severity so the right stakeholders are notified by email. Run acknowledgment → investigation → closure with root cause, corrective actions (CAPA) with due dates, and an immutable audit log—all in one workspace.

 

Prisma is built for safety-conscious operations: a dynamic programme you configure (departments, categories, incident types, severity guidance, locations, staff)—not a rigid template—so reporters get a guided, cascading intake and leaders get a control-room dashboard with open work, severity mix, and trends.

 

🚀 Problem to Solution

 

Stop running serious incidents through scattered chats, forwards, and spreadsheets—where who was told, what was decided, and what was done next is hard to reconstruct.

When something goes wrong, you need consistent classification, predictable escalation, and a defensible trail from first report to close-out. Informal channels make triage uneven and handovers easy to miss.

 

Prisma centralises intake, automatic email escalation, investigation workflow, CAPA assignments, and timestamped audit history—so the same incident type is handled the same way, and leadership can see what still needs attention.

 

🧩 What you can do?

 

1. Smart, dynamic intake: Cascading categories and incident types, severity with your own definitions, departments and hierarchical locations, photos and file attachments, and structured capture of affected people and witnesses (roles and contact details)—so one submission carries the context investigators need.

 

2. Automatic escalation: An escalation matrix maps incident type + severity to the staff and notification paths you maintain. On submit, Prisma sends professional notification emails to the people who need to know; the intended recipient list is preserved on the audit record. Where you use an active escalation policy, the system can also run multi-stage escalation (timed stages, optional stop if acknowledged) so follow-up does not depend on someone remembering to chase.

 

3. Investigation portal: Acknowledge, investigate, and close incidents with a clear status flow; document root cause and resolution; assign CAPA tasks to named staff with due dates (with notification hooks on assignment where email is configured).

 

4. Real-time dashboard and drill-down: See open vs closed, severity breakdown, incident-type views, and time-range filters (for example all time, rolling last twelve months, a calendar year, or a month). Jump from the dashboard into the full investigations list and each incident’s detail.

 

5. Admin without code: Configure categories, incident types, severity copy, staff and access levels (admin, investigator, reporter), escalation rules, and printable QR codes that open the public reporting form on mobile—no app install for reporters using the QR link.

 

🤝 How it works

 

How PRISMA fits your workflow

 

Step 1 — Configure your programme: In Settings / Admin, define departments, categories, incident types, locations, severity guidance, staff, and the escalation matrix (and, when you use them, escalation policies with stages). Post QR codes where you want fast mobile access to Report.

Step 2 — Report: Someone completes the guided Report flow: classification, severity, when and where it happened, narrative, evidence uploads, and people involved—matched to your taxonomy.

Step 3 — Escalate and own: Stakeholders receive email per your rules; investigators acknowledge, work the case, assign CAPA, and close with documented outcomes. Every material step is reflected in the chronological, non-editable audit log.

Step 4 — Monitor: Use the dashboard and investigations list to see open workload, severity mix, and trends for the time range you care about.

.

 

📈 Who is it for?

 

Built for teams that own incident response and continuous improvement:

 

• Health and safety, operations, quality, risk, and facilities leads who need one system for reporting and follow-through
• Investigators who need status, root cause, and CAPA in one place
• Administrators who want the taxonomy and routing rules under their control—not re-negotiated in every email thread
• Organisations that want stronger evidence than “we told someone in a group chat”

 

 

 

Where PRISMA helps

 

Many organisations use tools like Prisma alongside existing safety, quality, or operational programmes. It can support structured reporting, routing, investigation support, and activity history. No software replaces your management system or determines audit or certification outcomes on its own.

 

ISO 9001: May support themes such as control of nonconformities, corrective action, and evidence that incidents were logged, assessed, and addressed—depending on how you configure severity, responsibilities, retention, and reviews.

 

ISO 45001: Similar patterns may apply where your programme expects consultation, participation, and documented incident/near-miss handling and follow-up on OH&S performance.

 

ISO 14001: Where environmental aspects and operational controls include incidents and emergencies, structured logging and follow-up may complement your procedures.

 

ISO 27001: May help with operational discipline and accountability trails around security-related events as you define them; it does not by itself satisfy a full information security management system—you still need your own controls for risk, access, suppliers, incidents, backups, and hosting, among others.

 

Note: Any certification depends on your processes and evidence, not a single product. Usefulness depends on what you record in Prisma, how you define severities and ownership, retention, and how reviewers interpret your records. PRISMA is a supporting product for incident intake, escalation, investigation support, and trails within your own management systems—PRISMA does not guarantee compliance.

 

PRISMA helps organisations capture incidents, notify the right people, and run investigation and follow-up in one workflow. It does not provide legal advice and does not guarantee any audit or certification result.

Where PRISMA helps

 

Deployment (self-hosted positioning)

 

PRISMA is a web application (browser, API, and database). Your organisation deploys and operates it on infrastructure you control—for example your own servers or a cloud account you administer—then gives staff an HTTPS link. There is no desktop installer for day-to-day use: people open Prisma in a normal browser, like any internal tool. (If you use a managed platform to run the same build—for example Replit Deployments—that is still your deployment target and URL; the product is not tied to a single vendor-hosted SaaS model.)

 

Role in your programme

 

It sits alongside your existing safety, quality, or operational programmes as the operational system of record for incidents you choose to run through it—not a replacement for your full management system or for professional legal or certification advice.

 

ISO 9001: May support themes such as nonconformity and corrective action, documented information, and evidence of handling (logging, disposition, CAPA, audit trail)—depending on how you configure severities, responsibilities, retention, and management review.

ISO 45001: May support patterns where your programme expects incident and near-miss reporting, investigation, and corrective action with traceable activity—again subject to your processes and how you govern the tool.

ISO 14001: Where your programme treats incidents and emergencies related to environmental aspects, structured logging and follow-up in Prisma may complement your procedures.

ISO 27001: May help with accountability trails for security-related events as you define and use them in the product; it does not by itself implement a full information security management system (access design, risk treatment, suppliers, backups, hosting controls, etc. remain yours).

 

Note: Certification and audit outcomes depend on your processes, evidence, and interpretation—not on software alone. Prisma does not guarantee compliance with any standard or regulation.

 

PRISMA helps organisations capture incidents, notify the right people, investigate, and close the loop with CAPA and an audit trail. It does not provide legal advice and does not guarantee any audit or certification result.

 

Still thinking if PRISMA is for you, try the no obligation, no cost demo:

 

• Demo account gives you access to core features 
• No obligation.
• No payment required to start.
• Groups, staff, and configuration you create during the demo carry over on activation.
• No re-setup or re-onboarding required (if applicable).
• Limits removed on activation (if applicable).