How I built a website vulnerability scanner for UAE PDPL compliance as a solo founder

Akilesh Nairy, founder of Monarc (usemonarc.com), built a website vulnerability scanner for UAE PDPL compliance as a solo founder. The platform uses Nuclei for scanning, runs on Next.js and Railway, and explains findings in plain English using GPT-4o and SecureBERT. Monarc targets SMEs facing penalties up to AED 20 million under UAE PDPL and also automates compliance for India's DPDP Act, with a pre-launch target of Q1 2027.

I'm Akilesh Nairy, founder of Monarc usemonarc.com — a cybersecurity platform I've been building solo since February 2026. UAE SMEs face AED 20M penalties under the Personal Data Protection Law PDPL but most have no idea if their websites are even secure. Every tool I found was either enterprise-priced or required a dedicated security team to operate. Monarc scans websites for vulnerabilities using Nuclei under the hood, runs on a Next.js + Railway architecture, and explains every finding in plain English using GPT-4o with SecureBERT for classification. UAE PDPL enforcement is live. India's DPDP Act deadline is 2027. Monarc automates compliance workflows for both — the only platform built specifically for SMEs operating in these two markets. Pre-launch, Q1 2027 target. Waitlist open at usemonarc.com https://www.usemonarc.com/ . Happy to answer any technical questions about the scanner architecture or the compliance automation layer.