Support & Downloads

Izymes builds easy-to-use apps for Atlassian applications that boost your productivity, free you from performing repetitive tasks inside Confluence, Jira and Bitbucket and enable you to use your time for what you do best – YOUR job.

Book a Demo

Interested in a 1-on-1 demonstration of Izymes’s products?
Here we will walk you through;

• All features and benefits of the product you are interested in trying.
• How to set up the account and configure the settings.
• Other tips, tricks and best practices.

It will also give us time to answer any questions you may have, or perhaps you just want to have a chat, we love a good chat.
You can schedule a time on the Calendly link below. Talk soon!

Contact Info
HQ Southport
Queensland, Australia
[email protected]
Follow Us
Use Case - Workzone

Regulatory-Grade PR Approvals with Digital Signatures

Meet FDA, ISO, and SOC 2 standards by enforcing tamper-proof, identity-verified pull request approvals with full audit trails and mandatory reviewers.

Nike-60-D
HSBC-60-D
NASA-60-D
Netflix-60-D
Oracle-60-D
Google-60-D
apple-60-D
Dell-60-d
White-Sony-Logo-Grey-180-dark
att-technical-partner-logo grey
deutsche-bank-logo- grey
Use Case

Regulatory-Grade PR Approvals with Digital Signatures

In regulated industries—such as healthcare, finance, or government—source code changes must meet strict requirements around traceability, authorization, and auditability. Approvals need to be not just documented, but also non-repudiable actions, fully aligned with frameworks like FDA Title 21 CFR Part 11, ISO 9001/27001, SOC 2, SOX, and PCI DSS, or internal GxP standards.

Workzone for Data Center and Cloud enables enterprises to enforce digital signature workflows for pull request approvals, ensuring their change management process meets regulatory and security requirements. Just as critical, Workzone supports ‘mandatory’ reviewers and reviewer groups, which play a vital role in regulated environments — these reviewers are enforced and must approve before a pull request can proceed, which is crucial for compliance related enterprises. This ensures that the right stakeholders always have oversight.

How It Works:
  • Reviewers digitally sign their approval by entering username and password credentials at the time of approval. These approvals are stored securely in Bitbucket’s database and cannot be tampered with.
  • Merge is blocked unless a predefined minimum number of digital signatures has been collected — e.g., at least two release managers for a production branch.
  • Each signed pull request leaves a full audit trail visible in the PR overview and available for external audits or internal compliance checks.
  • Workzone’s signature rules follow the same logic as standard reviewers: you can configure them per branch, module, or group, and combine them with other merge controls (e.g., build success, task completion).
  • Mandatory reviewers cannot be removed from the pull request. Even if the PR is edited, Workzone ensures all required reviewers remain and will re-add them if necessary — avoiding loopholes that could bypass compliance policies.
Enterprise Benefits:

✅ Meets FDA Title 21 CFR Part 11 & ISO 900x compliance: Ensures changes are reviewed and signed off with secure, verifiable e-signatures before deployment.
✅ Supports SOC 2, SOX, and PCI compliance: Offers a trackable and enforceable approval process that integrates directly with your Git workflow.
✅ Reduces compliance overhead: Automates enforcement of complex change control policies so teams stay compliant without relying on manual checks.
✅ Enhances audit readiness: Each pull request includes clear records of who reviewed, who signed, and when — helping satisfy external auditors and internal QA.
✅ Prevents unauthorized changes: Digital signatures can only be applied by authenticated users, reducing the risk of impersonation or accidental approval.
✅ Enables compliance at scale: Whether you’re managing dozens of microservices or a massive mono-repo, Workzone’s reviewer signature groups and merge checks scale to support complex org structures.

Unlike Bitbucket’s native approvals—which provide no formal verification of reviewer identity—Workzone brings regulatory-grade assurance to your SDLC.
Bitbucket ‘default’ reviewers can be exchanged by simply editing the PR, making it possible to bypass compliance-mandated approvals.


Workzone eliminates this risk with enforced digital signatures and mandatory reviewers, transforming Bitbucket Server, Data Center, and Cloud Workspaces into a compliant, enterprise-ready platform for secure software delivery.

Use Cases

Explore More Use Cases...

Learn how enterprise teams streamline workflows, boost compliance, and drive productivity with Izymes apps

Workflow Hooks That Lock Down Pull Request Integrity
Learn more
Accelerate Releases with Auto-Merge and Digital Sign-Offs
Learn more
Automating and Securing Pull Request Merges with Fine-Grained Control
Learn more
Branch-Specific Review Rules with Priority-Based Matching
Learn more