Skip to content
Shipped2024 — PresentDesigner & EngineerBuilding Materials, Multinational

Enterprise Governance

From spreadsheet sprawl across 20 countries to a single source of truth for a €60M+ industrial portfolio.

Executive Dashboard
https://demo-governance.facundocosimo.eu
Executive Dashboard with Portfolio Metrics
Open
0M+
Portfolio under management
0+
Active users
0
Countries
0+
Projects tracked
Why this exists

Over 150 capital projects across 20 countries, all tracked in spreadsheets. Programme leadership needed a full week of manual work to answer the simplest portfolio questions — where projects stood, how budgets were tracking, what had been approved. Decisions depended on the few people who knew how all the workbooks fit together. No audit trail, no live consolidated view, nothing audit-ready.

What it is

A web platform built end-to-end. Stage-gate approvals require named approvers to sign off before a project can move forward, and every decision is captured permanently — no edits, no back-dating. Permissions combine global roles with project-level access, so country teams see their own work while leadership sees everything rolled up by region.

Real spend syncs automatically from the company's ERP, with a per-project manual override for sites where the ERP runs behind. Budget baselines lock twice a year, enabling clean year-end and year-to-date variance reporting. The platform passed an internal security review with layered protections across the board.

Adopted as the group standard within six months. Roughly 200 users — country managers, project managers, executive sponsors — work in it daily across 20 countries.

Stack

Built with

A pragmatic stack — selected to ship fast without trading away long-term operability.

26 technologies · 5 layers

Frontend

11 tools

  • Next.js 16
  • React 19
  • TypeScript
  • Tailwind CSS
  • Radix UI
  • React Hook Form
  • TanStack Query
  • TanStack Table
  • Tiptap
  • Recharts
  • Framer Motion

Backend

3 tools

  • Next.js API Routes
  • Prisma ORM
  • Edge Middleware

Database

1 tool

  • PostgreSQL

Auth & Security

6 tools

  • NextAuth.js (JWT)
  • Email-code 2FA
  • Role-based access control
  • Rate limiting
  • Account lockout
  • Audit logging

Infra & DX

5 tools

  • Vercel
  • Husky + lint-staged
  • Jest
  • ESLint
  • OWASP Top 10 review
Highlights

What makes it work

01

Dual-mode budget sync

Real spend pulls automatically from the company's ERP by default, with a per-project manual override for sites where the ERP runs behind. The dashboard always reconciles against the active baseline — no orphaned numbers.

02

Approvals that cannot be undone

Stage progression requires explicit sign-off from named approvers. Approvals are locked records — stages cannot be skipped, back-dated, or quietly changed without leaving a trace.

03

Versioned baselines & snapshots

Baselines lock planned dates and budgets twice a year, giving leadership a stable reference for variance analysis. Periodic snapshots capture portfolio state over time so it is clear whether projects are improving, slipping, or holding steady.

04

Security hardened end to end

Layered protection across the platform — rate limiting, input sanitisation, account lockout, full security event logs — passed an internal security review with only minor recommendations.