Skip to content
HG/os
backendactive

Provenant — DPP Manager

Backend work on Provenant's DPP Manager — an EU Digital Product Passport platform. BackOffice analytics, Role-Based Access Control via Zitadel, and organizational hierarchy and permission governance.

backendanalyticsrbaccompliancemongodbdocker
Visit website →

Problem statement

Provenant (by Protokol BV) is a platform for EU Digital Product Passports (DPPs) — helping organizations create, validate, and maintain the digital product information that upcoming European regulation mandates across industries like textiles, steel, furniture, construction, and electronics.

My work is on the backend of the DPP Manager platform, focused on analytics and on the access-control layer that governs who can do what across an organization.

What I built

  • BackOffice analytics — the analytics powering the DPP Manager BackOffice, giving teams visibility into platform and product-passport activity.
  • Role-Based Access Control (RBAC) — implemented RBAC via Zitadel, mapping users and roles to the permissions they hold across the platform.
  • Organizational hierarchy & permission governance — modeled the organizational structure and the governance rules that determine how permissions cascade and are enforced within it.
  • Dynamic deletion modules — built modules to dynamically delete DPP product models, batches, and items without breaking the existing API workflows.
  • Quota automation — developed a cron job that dynamically calculates an organization's quota.

Architecture & stack

  • RESTful APIs — the service layer backing the DPP Manager BackOffice and access-control features.
  • MongoDB — document store for product-passport, organizational, and permission data.
  • Docker — containerized deployment used for local development.