Hi Troy Just picking this up. Neil Boddy mentioned that you think there’s something outstanding at our end. Just to clarify, we had initially thought that SwiftGrid was in scope for our DORA compliance programme. However, it was then decided by our Compliance Team that it’s not in scope as it only supports Azure which is not used by any Waystone regulated EU entities that are in scope for DORA. On that basis, the DORA Appendix that I sent you can be disregarded. You mentioned in your email below that you were attaching Waystone’s contract with SwiftGrid. What you attached was not a contract. It was a fee proposal. For good order, can you send me a copy of the signed and dated contract with Waystone? Thanks Fiona High-Level Architecture System Diagram(s) – Component, deployment, and interaction diagrams. Narrative Walkthrough – Description of flow through the system. Logical vs Physical Views – Where relevant. Technology Stack Frontend Frameworks – React, Angular, Vue, etc. Backend Technologies – .NET, Node.js, etc. Languages – JavaScript, TypeScript, C#, etc. Databases – PostgreSQL, CosmosDB, etc. 3rd Party Tools & Libraries – Workato, Auth0, Stripe, etc. Integrations External Systems – Salesforce, SharePoint, ERP systems, etc. Integration Style – API-driven, Event-based, ETL, etc. Protocols & Contracts – REST, GraphQL, Webhooks, etc. Security Architecture Authentication & Authorization – OAuth, OpenID Connect, roles, claims. Data Protection – Encryption in transit/at rest. Secrets Management – Key Vault, AWS Secrets Manager, etc. Threat Modeling – OWASP Top 10 coverage, threat surfaces. Infrastructure & Networking Hosting Model – Azure App Service, AWS ECS, On-Prem, Hybrid. Deployment Model – Docker Swarm, Kubernetes, Serverless, etc. Networking – VNETs, VPNs, firewalls, load balancers. DNS & CDN – Azure Front Door, Cloudflare, Akamai. Standards & Compliance Coding Standards – Linting, formatting, language-specific practices. Architectural Standards – Clean Architecture, 12-Factor App, DDD. Accessibility – WCAG 2.1 compliance. Data Governance & Regulations – GDPR, CCPA, HIPAA, etc. Performance & Scalability Expected Load & Traffic – Peak usage estimates. Scalability Strategy – Horizontal/vertical, caching layers. Performance Considerations – Lazy loading, CDN use, query optimizations. Storage & Data Data Models – High-level ERD or JSON schema if applicable. Data Lifecycle – Retention, archival, purging policies. Backups & Recovery – RPO, RTO, tooling used.