Approve — Work is authorised. Approved By and timestamp are recorded.
Reject — Permit is rejected with comments. Requestor must revise and resubmit.
Activate — Once on-site and ready to start, the Requestor activates the permit. Toolbox talk confirmation and worker count are recorded.
Close — When work is complete, the permit is closed. Site restoration and final sign-off details are captured.
A permit can also be Cancelled by the Requestor (or Manager) at Draft or Submitted stage if the work is no longer required.
Draft→Submitted→Approved→Active→Closed
Work Types requiring a Permit:
🔥 Hot Work🚪 Confined Space⚡ Electrical⛏ Excavation🏗 Lifting & Rigging🪜 Work at Height⚠ Breaking Containment📋 General High-Risk
👥 Roles & Responsibilities
Role
Observations
Permits to Work
Observer
Reports observations
Creates & submits permits
Action Owner
Submits rectifications
Creates & submits permits
Safety Manager
Assigns, verifies & closes
Approves, rejects & closes permits
Manager
Full access
Full access, invites users, manages billing
📘
Vigilo Help & User Guide
Everything you need to know — from first login to advanced features.
No sections match your search. Try different keywords.
🦺What is Vigilo?
Vigilo is a cloud-based safety management platform for industrial and construction organisations. It replaces clipboards, WhatsApp groups, and spreadsheets with a single digital system.
📋
Safety Observations
Report hazards, assign corrective actions, full audit trail.
🔐
Permit to Work
Digital permits with approval gate, LOTO, and toolbox talk.
⚠️
HIRA
ISO 45001 risk register — 5×5 likelihood/severity matrix.
Click Report New in the sidebar or Report Observation on the dashboard.
Enter a short Title describing the hazard.
Select the Location from your facility list.
Set the Date Observed (defaults to now; change if reporting retrospectively).
Choose Severity — LowMediumHigh
Write a detailed Description of the hazard.
Optionally attach a Photo (Before).
Select the Assigned To person responsible for fixing it.
Set a Target Date for closure.
Click Submit.
The assigned person is notified. The observation is immediately Open.
4.3 Rectifying an Observation (Action Owner)
If you are assigned an observation:
Open the observation from All Observations.
Click Submit Rectification.
Describe what was done in the Rectification Details field.
Optionally upload a Photo After showing the completed fix.
Click Submit — status moves to Awaiting Verification.
4.4 Verifying an Observation (Manager / Safety Manager)
Open the observation showing Awaiting Verification.
Review the rectification details and after-photo.
Click Verify & Close — add a verification comment and confirm. Status → Closed.
Or click Reject Verification to send it back for re-work.
4.5 Analytics Dashboard
Go to Observations → Dashboard to see:
Open / Overdue / Closed KPI cards
Observations by severity and location
Trend over time (chart)
Top observers and action owners
4.6 Exporting Data
From the observations list use the Export buttons in the sidebar:
Export Excel (.xlsx) — full data with org logo header, styled columns
Export CSV — raw data for further analysis
Closed observations can be archived by Managers/Safety Managers to keep the active list clean. Archived records are still searchable and can be restored.
🔐Module 2 — Permit to Work (PTW)
A Permit to Work is a formal document authorising high-risk work. No work should begin until an approved permit is in hand.
Supported Work Types
🔥 Hot Work🚪 Confined Space⚡ Electrical⛏ Excavation🏗 Lifting & Rigging🪜 Work at Height⚠ Breaking Containment📋 General High-Risk
5.1 Permit Lifecycle
Draft→Submitted→Approved→Active→Closed
Submitted→Rejected(revise & resubmit)
Draft→Cancelled
5.2 Raising a Permit
Click New Permit from the dashboard or sidebar and complete all sections:
Work Details
Work Type, Title, Description
Location, Specific Work Area
Planned Start & End date/time
People
Requestor (auto-filled as you)
Contractor Name & Contact (if external)
Number of Workers
Risk & Controls
Hazards Identified
Risk Controls / Precautions
PPE Required
Isolation Required? (LOTO details)
Emergency Procedure
Pre-work Checklist
Toolbox talk conducted
Area barricaded / signed
Equipment / tools inspected
Gas / atmosphere test done (result)
Use Save as Draft to save progress, or Submit for Approval when ready.
Every permit is auto-assigned a unique number: PTW-YYYYMMDD-XXXX (e.g. PTW-20260311-0001).
HIRA enables your organisation to systematically identify workplace hazards, assess their risk using an ISO 45001 5×5 matrix, assign controls, and track residual risk over time.
Risk Score = Likelihood × Severity
Score Range
Level
Action Required
20–25
Critical
Stop work immediately — controls must be implemented before resuming
10–19
High
Senior management attention — reduce risk within 24 hours
4–9
Medium
Establish controls within a defined timeframe
1–3
Low
Manage by routine procedures
6.1 Creating a HIRA Register
Go to Risk & Compliance → New Register (Manager / Safety Manager only).
Enter the register name (e.g. "Welding Operations"), work area, and review date.
Save the register and click Add Hazard to start populating it.
For each hazard: describe the hazard, its category, existing controls, and set Likelihood (1–5) and Severity (1–5). The risk score is calculated automatically.
Assign a Responsible Person and set additional controls to reduce residual risk.
High and Critical hazards automatically generate Corrective Actions for tracking.
Any hazard rated Critical (20–25) triggers an immediate email alert to managers for urgent attention.
6.2 Risk Matrix View
Go to HIRA → Risk Matrix to see a visual 5×5 heatmap with all hazards plotted by likelihood and severity. Hovering over a cell shows the hazard details. This is useful for leadership reviews and audit evidence.
6.3 HIRA Review Alerts
Registers have a review due date. Vigilo automatically emails managers when a HIRA register is approaching or past its review date, prompting periodic risk reassessment.
🚨Module 4 — Incidents
Record all workplace incidents, near-misses, and dangerous occurrences. Vigilo tracks investigation status, captures root causes, and auto-calculates industry KPIs.
Incident Types
LTI — Lost Time InjuryRecordable InjuryNear MissFirst Aid CaseProperty DamageEnvironmental
7.1 Reporting an Incident
Go to Safety Operations → Report Incident.
Select the Incident Type and Severity (Critical / Major / Moderate / Minor).
Enter date/time, location, description, and persons involved.
For LTIs, enter the Lost Work Days — LTIFR is auto-calculated.
Submit. Managers are notified and an investigation is opened.
You can convert a Safety Observation directly into an Incident from the observation detail page using the Convert to Incident button.
7.2 Investigation & Root Cause Analysis (RCA)
Open the incident and click Add Investigation Details.
Document the immediate cause, contributing factors, and root cause.
Add corrective and preventive actions to prevent recurrence.
Click Close Incident once investigation is complete and actions are assigned.
7.3 Statistics Dashboard
Go to Incidents → Statistics (Manager / Safety Manager) to see:
LTIFR — Lost Time Injury Frequency Rate (per million hours worked)
TRIFR — Total Recordable Injury Frequency Rate
Monthly trend chart, incident type breakdown, and location heatmap
LTIFR / TRIFR calculations require the Total Hours Worked figure to be entered in Organisation Settings for the period.
Inspections are mobile-optimised — complete them on-site from your phone without needing a laptop.
8.3 Reports & Statistics
PDF Report — branded inspection report with score, findings, and photos (Manager / Safety Manager).
Statistics (Improvement → Statistics) — pass/fail trends, scores by inspector, and location breakdown.
⚖️Module 6 — Legal Compliance
Maintain a register of your organisation's statutory and regulatory obligations. Traffic-light urgency flags show what's due, overdue, or about to expire — with automatic email reminders.
Urgency Traffic Lights
Colour
Meaning
Green — Compliant
Obligation is current and met
Amber — Due Soon
Due date is within 30 days
Red — Overdue
Obligation is past its due date or evidence has expired
Adding an Obligation
Go to Risk & Compliance → Add Obligation.
Enter the Regulation name, relevant legislation, and responsible person.
Set the Due Date and upload supporting Evidence (certificate, permit, inspection report).
Save. The item appears in the register with its traffic-light status.
Compliance Score
The register header shows your Compliance Score % — the percentage of obligations that are currently green (compliant). Managers are automatically emailed when items go overdue or approach their due date.
✅Module 7 — Corrective Actions
The Corrective Actions register is a single hub for all actions raised across every module. Actions can be raised manually or automatically (from inspection critical failures, HIRA critical hazards, or overdue compliance items).
My Actions — see only actions assigned to you. This is the default view for Action Owners.
Action Register — all actions across all modules with filter by source, status, and assignee.
Closing an action — upload evidence (photo, document), add a closure note, and click Close. Managers and Safety Managers can close any action; Action Owners can only close their own.
Vigilo sends daily overdue alerts to the assigned person and their manager for any action that is past its due date and still open.
🎓Module 8 — Training & Skills
End-to-end training management: annual training plans, session scheduling, MCQ assessments, skill competency matrix, and individual training passports — all with automated compliance alerts.
Skill Proficiency Levels
Level
Label
Meaning
1
Awareness
Basic exposure to the topic
2
Basic
Understands core concepts
3
Competent
Can apply independently
4
Proficient
Advanced practical ability
5
Expert
Can train others
Proficiency only increases — a passed assessment upgrades your level; a failed one never downgrades it.
11.1 Setting Up Training Modules & Assessments (Manager / Safety Manager)
Create Skill Categories & Skills — go to Training → Manage Skills. Add categories (e.g. "Fire Safety") then individual skills within each.
Create a Training Module — go to Training → New Module. Enter title, description, link relevant skills, and save.
Create an Assessment — from the module detail page click Create Assessment. Set a pass mark (%).
Add Questions — click Edit Questions. Add MCQ questions, mark the correct answer for each, and publish.
11.2 Taking an Assessment (All Staff)
Go to Training → Modules.
Open a module and click Take Assessment.
Answer all multiple-choice questions and click Submit.
Your score and pass/fail result are shown immediately. A pass automatically upgrades your skill proficiency level.
11.3 Training Plans & Compliance Matrix (Manager / Safety Manager)
Training Plans define who must complete what, by when, and how often. They are the backbone of your annual training calendar.
Go to Training → Training Plans → New Plan. Give it a name and year (e.g. "2026 Annual Safety Training").
Open the plan and click Add Requirement. Select a training module, set the target audience (All Employees / By Role / By Trade / Individual), frequency (One-time / Monthly / Quarterly / Annual), and due date.
Repeat for each required module.
Click View Compliance Matrix to see a grid of every employee × every required module, colour-coded by status.
Cell Colour
Status
Meaning
Complete
Complete
Training done and certificate valid
Expiring Soon
Expiring
Certificate expires within 30 days
Expired
Expired
Certificate has lapsed — renewal required
Overdue
Overdue
Past the due date and not completed
Due Soon
Due Soon
Due within 7 days, not yet completed
Pending
Pending
Not yet due
The Compliance Dashboard (Training → Compliance Dashboard) shows overall compliance % with trend charts, a department breakdown bar chart, and a list of at-risk employees.
11.4 Training Sessions (Manager / Safety Manager)
Sessions are scheduled training events (classroom, online, on-the-job, or external) linked to a module.
Go to Training → Sessions → New Session.
Select the training module, session mode, date, time, venue or online link, and trainer.
Save and then click Enrol Employees (individual) or Bulk Enrol (all employees matching a requirement's target audience).
Enrolled employees receive an email reminder the day before the session.
On the session day, open the session detail page and mark attendance (Attended / Absent / Excused) for each enrolled employee.
Click Complete Session — Training Records are automatically created for all attended employees.
11.5 Training Passport (All Staff)
Every employee has a personal Training Passport accessible from Training → My Passport (or the sidebar link). It shows:
Overall compliance % and per-plan breakdown
Every training requirement status (complete, overdue, expiring, pending)
Completion dates, scores, and expiry dates
Upcoming enrolled sessions
Skill proficiency certifications
Employees can Download PDF of their passport for external verification. Managers and Safety Managers can view the passport of any employee.
Automated alerts: Vigilo sends daily emails for overdue trainings, items due in 7 days, certifications expiring within 30 days, and session reminders the day before.
11.6 Skills Matrix & Reports
Skills Matrix (Training → Skill Matrix) — grid of all employees × skills showing proficiency levels (1–5).
Skills CSV — full matrix as a downloadable spreadsheet.
Effectiveness PDF — branded report showing completion rates and average scores by module.
Skills Matrix and Reports are visible to Managers and Safety Managers only. The Training Passport is visible to all employees (own passport) or any employee (managers).
🏆Module 9 — Performance Appraisals
Run structured appraisal cycles with goal-setting, self-assessment, manager review, and calibration. Scores are auto-computed from weighted categories. Each cycle produces a branded PDF report with a self-vs-manager radar chart.
Name the cycle (e.g. "Mid-Year 2026"), set start and end dates, and select the employees to include.
Add Categories (e.g. Safety, Technical Skills, Teamwork) with weights that sum to 100%.
Within each category, add Items — the specific behaviours or KPIs to be rated.
Activate the cycle to move it to Goal Setting.
12.3 Employee Flow — Goals & Self-Assessment
Go to Performance → My Appraisals and open the active cycle.
In the Goal Setting phase: propose your goals for the period. Managers review and approve or adjust them.
In the Self-Assessment phase: rate yourself on each item and provide measurable evidence or a yes/no response.
Submit your self-assessment. It moves to Manager Review.
12.4 Manager Review & Calibration
Go to Performance → Appraisal Cycles and open the active cycle.
For each employee: review their self-assessment and provide manager ratings for each item.
The overall score is auto-calculated based on category weights.
In the Calibration phase: Safety Managers can review scores across all employees, add calibration notes, and adjust for consistency.
Link a Development Plan — connect specific training modules to address skill gaps identified during the review.
Mark the cycle Completed and download the PDF report (includes radar chart comparing self and manager ratings).
Vigilo sends automatic email reminders to employees and managers when a cycle milestone deadline is approaching.
👁️Module 10 — Behaviour Based Safety (BBS) New
The BBS module brings the DuPont STOP (Safety Training Observation Program) methodology into Vigilo. Supervisors record structured observations of worker behaviour — logging each act as Safe or At-Risk — and the system calculates a BBS Score that trends over time to show whether safety culture is improving.
What is the BBS Score? BBS Score = (Safe Acts ÷ Total Acts) × 100. A score of 80% means 8 out of every 10 observed acts were performed safely. Higher is better. Most organisations set a monthly target of 80–90%.
10.1 The DuPont STOP Method — 5 Categories
Vigilo pre-seeds all five standard DuPont STOP categories for every organisation. You can customise or add your own.
Code
Category
What to observe
R
Reactions of People
How workers react when approached — stopping, adjusting PPE, or continuing without adjustment
P
Position of People
Body position relative to energy sources, pinch points, falling objects, or struck-by hazards
PPE
Personal Protective Equipment
Correct use, fit, and condition of all required PPE — helmet, gloves, harness, goggles, etc.
T
Tools & Equipment
Correct tool for the job, guards in place, tools in good condition, stored safely when not in use
Go to People & Culture → BBS → New Observation or click New Observation on the BBS Dashboard.
Select the Observation Type — Supervisor, Peer, or Self-observation.
Set the Date, Location, Worker Name (optional), and Task Observed.
Enter the Duration (minutes) and any overall notes.
For each act observed, click Add Act:
Select the Category (R / P / PPE / T / PR)
Set Act Type — Safe or At-Risk
Write a Description of what was observed
For At-Risk acts: note the Immediate Action taken and optionally tick Flag for Review
Add as many acts as needed. The minimum is 1 act per observation.
Click Save Observation. The BBS Score is calculated immediately.
Each observation gets a unique number (BBS-XXXX) and a shareable public link — no login required for the person you observed to read the feedback.
10.3 BBS Score & Trend Dashboard
Go to People & Culture → BBS to view the BBS Dashboard. It shows:
Current month BBS Score — percentage of safe acts this month
12-month trend chart — line chart with colour-coded points (green = at or above target, amber = within 10% below, red = significantly below)
Monthly act breakdown — total observations, total acts, safe acts, at-risk acts
Recent observations list with quick links to detail pages
The BBS Score is calculated at two levels: per observation (shown on the detail page) and monthly aggregate (shown on the dashboard, combining all observations in that month).
When a supervisor flags an at-risk act for review, it appears in the BBS Review Queue at People & Culture → BBS → Review Queue.
Open the review queue and click any flagged item.
Review the act description and immediate action taken.
Set the Status — Pending, Reviewed, or Closed.
Add Manager Notes documenting follow-up actions.
Save. The item moves out of the pending queue.
At-risk acts that are flagged but not reviewed remain in the Pending state. Managers should review all flagged items within 48 hours as best practice.
10.5 Monthly Observation Targets
Go to People & Culture → BBS → Targets to set a monthly observation count target per observer.
Select the year and month, then enter a target count for each observer.
The Targets page shows Actual vs Target for the selected month — colour-coded (green = met, red = not met).
Targets are per-organisation and per-month — you can set different targets for different months and people.
A typical target is 4–8 BBS observations per supervisor per month. Setting a monthly target creates accountability and drives a consistent observation cadence.
10.6 Public Dashboard & Share Links
Vigilo provides two public (no-login) views for transparency:
Public Observation Link
Every observation has a unique UUID share URL (e.g. /bbs/share/abc123.../). Anyone with this link can view the observation details — useful for sharing with the worker who was observed as feedback.
Public BBS Dashboard
Each organisation has a public BBS dashboard URL (/bbs/public/token.../) showing the organisation's monthly BBS Score trend. Useful for displaying on safety notice boards or sharing with clients.
Both public URLs use UUID tokens — they are unguessable, but they are not password-protected. Do not share them with untrusted parties if your BBS data is confidential.
10.7 BBS Categories (Customising STOP)
Go to People & Culture → BBS → Categories to manage your observation categories.
The 5 DuPont STOP defaults are pre-seeded and marked as Default.
You can add custom categories specific to your industry (e.g. "Ergonomics", "Environmental Compliance").
Each category can be toggled Active / Inactive — inactive categories are hidden from the observation form but their historical data is preserved.
Click Seed Defaults if the default categories were accidentally deleted.
📊Module 11 — Training Need Analysis (TNA) Enterprise Add-on
TNA is a systematic process to identify skill gaps between what your employees currently know and what their job role requires — then convert those gaps into targeted training plans. It provides the documented evidence that ISO 45001 and most EHS management systems require for competence management.
This module is optional. It must be enabled for your organisation by your administrator. If you do not see Training Need Analysis in the sidebar, contact your Safety Manager or system admin.
13.1 How TNA Works in Vigilo
TNA connects four things that already exist in the system:
💼
Job Role
What skills this position requires
👷
Employee
Assigned to one or more job roles
⭐
Skill Proficiency
Current level (1–5) from Training module
📋
Gap
Required level minus current level
When you run a TNA Cycle, Vigilo compares each employee's current proficiency against their job role's requirements and produces a gap for every skill. Positive gaps automatically generate Training Needs that feed into the training queue.
13.2 Step 1 — Build Your Competency Framework (Job Roles)
Before running any analysis, you must define what skills each job role requires. This is your organisation's Competency Framework.
Go to Training Need Analysis → Job Roles and click New Job Role.
Enter the role title (e.g. "Crane Operator"), department, and an optional description. Save.
On the job role detail page, click Add Competency Requirement for each skill the role requires.
For each competency, set:
Skill — select from your existing skill library (Training → Manage Skills)
Required Level — minimum proficiency 1–5 this role needs
Mandatory — tick if this is a regulatory / non-negotiable requirement
Recertification (months) — e.g. 12 for annual recertification; leave blank for no expiry
Recommended Training Module — the course that closes this gap (optional but useful)
Repeat until all required competencies are listed. There is no limit.
Tip: Create your Skill Categories and Skills first in Training → Manage Skills before setting up job roles. TNA reuses the same skill library as Training — no duplication needed.
Mandatory vs Developmental: Marking a competency as Mandatory means a gap is flagged as Critical and cannot be waived. Use this for legally required competencies (e.g. lifting operator certification, first aid). Developmental competencies are Medium priority and can be waived if needed.
13.3 Step 2 — Assign Job Roles to Employees
Go to Training Need Analysis → Employee Assignments. Every employee in your organisation is listed.
For each employee, select a job role from the dropdown and tick Primary if it is their main role.
Click Assign. An employee can hold multiple job roles (e.g. "Forklift Operator" as primary, "Fire Warden" as secondary).
The gap analysis will use the employee's primary job role. If no primary is set, the first assigned role is used.
To remove an assignment, select the role in the Remove dropdown and click the red button.
Employees with no job role assigned are skipped when you run a TNA cycle. You will see a count of skipped employees in the success message after running the analysis.
13.4 Step 3 — Create and Run a TNA Cycle
A TNA Cycle is a snapshot of the whole organisation's skill gaps at a point in time. You can run multiple cycles (annual, post-incident, after a role change) and compare them over time.
Creating a cycle
Go to TNA → TNA Cycles → New Cycle.
Give the cycle a descriptive name (e.g. "Annual TNA 2026 — Operations Team").
Select the Trigger — why this analysis is being run:
Scheduled ReviewNew Hire OnboardingPost-IncidentRole ChangeRegulatory RequirementManual
Set the Scope — Full Organisation or a specific Department.
Set the Assessment Date and optionally a Valid Until date (when the TNA results expire and a refresh is due).
Click Create TNA Cycle.
Running the analysis
On the cycle detail page, click Run Analysis.
Vigilo automatically:
Finds all employees in scope with an assigned job role
Compares each required competency against the employee's current SkillProficiency
Calculates gap = required level − current level for each skill
Creates a TNARecord per employee with an overall gap score and mandatory gap count
Auto-raises a Training Need for every positive gap (Critical priority if mandatory, Medium otherwise)
A summary message shows: employees analysed, gaps assessed, and training needs raised.
You can re-run a cycle at any time (e.g. after employees complete training and their proficiency level is updated). Re-running refreshes all gap records and raises new needs for any gaps that have not yet been addressed.
13.5 Step 4 — Reading the Gap Heatmap
The cycle detail page displays an interactive Gap Heatmap — a grid with employees on the vertical axis and skills on the horizontal axis, coloured by gap severity.
Cell Colour
Gap Value
Meaning
Green ✓
0 or negative
Employee meets or exceeds the required level
Amber
+1
One level below requirement — developmental gap
Red
+2 or more
Significant gap — especially critical if the skill is mandatory
Grey —
N/A
This skill is not required for the employee's job role
Hover over any cell to see the exact required level, current level, and gap for that employee-skill combination.
Below the heatmap, the Employee Gap Summary table shows:
Avg Gap Score — average gap across all required skills (coloured by severity)
Detail — click to open the individual employee record with full gap breakdown
13.6 Training Needs Queue
Go to TNA → Needs Queue to see all training needs raised from all sources — not just TNA gaps, but also appraisal development plans, incident RCAs, compliance items, and manual entries.
Training need sources
TNA GapAppraisal Dev PlanIncident RCALegal ComplianceFailed AssessmentManual
Training need lifecycle
Identified→Training Assigned→Enrolled→Completed
Waived(only for non-mandatory needs — waiver reason required)
From the Needs Queue you can:
Filter by status, source, priority, or mandatory flag
Assign a training module to a need (select from your module library)
Set a due date for completion
Update status inline — the dropdown auto-submits on change
13.7 Individual Employee TNA Record
Click Detail on any employee row in the cycle to open their full TNA record. This page shows:
A skill-by-skill gap table with colour-coded rows (green = met, amber = small gap, red = large gap)
Required vs current level with a mini progress bar for each skill
Whether each skill is mandatory and whether recertification is due
The linked Training Need status for each gap
All training needs for this employee across all sources (right panel)
A form to add manual training needs for needs not captured by the gap analysis
For employees: If your organisation has TNA enabled, you can view your own TNA record from the Employee Detail page. You can see your gaps and the status of your training needs — but you cannot edit them.
📊Data Exports (CSV)
Most modules provide a Download CSV button that exports the current dataset to a comma-separated file you can open in Excel, Google Sheets, or any data tool.
Access: CSV export buttons are visible to Managers and Safety Managers only. Regular users and observers cannot export data.
Module
Where to find the button
Key columns exported
Observations
Observations list — Export CSV or Export Excel buttons (top-right)
Reference, Category, Type, Risk Level, Location, Reported By, Status, Date, Assigned To, Due Date, Closed At
Employee Name, Employee ID, Email, Designation, Job Role, Overall Gap Score, Mandatory Gaps, Status
TNA — Training Needs
TNA → Needs Queue — Download CSV button
Employee Name, Employee ID, Email, Skill, Source, Priority, Mandatory, Status, Assigned Module, Due Date, Completed At
Tip: CSV files use UTF-8 encoding. If you see garbled characters when opening in Excel, use Data → From Text/CSV and select UTF-8 encoding, or open via Google Sheets which handles UTF-8 automatically.
👤User Profiles & Performance
Click your name in the sidebar or go to Profile to see your three-tab profile.
Tab 1 — Profile Info
Name, email, role, organisation
Managers: upload/change org logo
Tab 2 — Performance
Observer Stars ★★★★★
Action Owner Stars ★★★★★
Training Stars ★★★★★
Tab 3 — Skills & Certs
All skills with proficiency levels
Download PDF certificate
Star ratings are percentile rankings within your organisation. If you are in the top 20% of observers, you earn 5 Observer Stars.
Viewing others' profiles: Managers and Safety Managers can click any user's name in the observation list to view their profile. Other roles can only view their own.
🏢Organisation Settings
Organisation Logo
Managers can upload the org logo at Profile → Upload Logo.
Accepted formats: PNG, JPG, WebP
Maximum size: 2 MB
Recommended: square or landscape, minimum 200×200 px
Once uploaded, the logo appears in:
Sidebar and top navbar
All PDF exports (observation reports, training effectiveness, certificates)
Excel exports (anchored in the header row)
Locations
Locations must be set up before you can create observations or permits. Contact your Manager or system administrator to add your facility's locations via the admin panel.
💳Subscription & Plans
🆓
Free Trial
14 days · all features · no credit card
🌱
Starter
Small teams · limited seats & observations
🏗
Enterprise
Unlimited users & observations · custom pricing
Plan limits: Each plan sets a maximum number of invited users and logged observations. You can see your current usage on the Invite Users screen. Contact us to upgrade.
Contractors are separate from your regular user seats and do not count against your plan's user limit.
Vigilo's ESG module turns your operational safety and HR data into investor-grade sustainability disclosures — automatically. It is the only tool you need to prepare India's SEBI-mandated BRSR report, a GRI Content Index, and a TCFD climate risk report, all from one place.
This module is optional. It must be enabled for your organisation by your administrator. If you do not see ESG & Sustainability in the sidebar, ask your Manager to enable it via Administration → Module Access.
What is ESG — and Why Does It Matter?
ESG stands for Environmental, Social, and Governance — the three lenses through which investors, regulators, and customers assess whether a company is being managed responsibly for the long term.
🌍
Environmental
Energy consumption & efficiency
Greenhouse gas (GHG) emissions
Water withdrawal & conservation
Waste generation & disposal
Climate risk exposure
👥
Social
Employee health & safety (LTIFR / TRIFR)
Workforce diversity & inclusion
Training hours per employee
Wages & minimum wage compliance
CSR spend & community development
🏛️
Governance
Board & management policies
Ethics & anti-corruption commitments
ESG targets & accountability
Climate risk management process
NGRBC principle coverage
Vigilo pulls data from your existing Safety, HR, Training, and Compliance modules and assembles it into three internationally recognised reporting frameworks:
Framework
What it is
Who requires it
BRSR Business Responsibility & Sustainability Report
India's statutory sustainability reporting format prescribed by SEBI. Covers nine NGRBC principles across three sections (A, B, C).
Top 1,000 listed companies by market cap — mandatory from FY 2022-23
GRI Standards Global Reporting Initiative
The world's most widely used sustainability reporting framework. Vigilo tracks GRI 2, 201, 302, 303, 305, 306, 403, 404, 405, and 413.
Voluntary globally; required by many institutional investors, supply chain audits, and ESG rating agencies
TCFD Task Force on Climate-related Financial Disclosures
A four-pillar framework for disclosing how climate change affects your business: Governance, Strategy, Risk Management, and Metrics & Targets.
Required by SEBI for top 1,000 listed companies (BRSR Section C P6); increasingly required by lenders, investors, and export buyers
The SEBI BRSR Mandate — What You Must Know
SEBI LODR Regulation 34(2)(f): Every company in India's top 1,000 listed entities by market capitalisation must file a BRSR (Business Responsibility and Sustainability Report) along with their Annual Report from Financial Year 2022-23 onwards. Non-compliance can attract regulatory penalties.
The BRSR is structured into three sections:
A General Disclosures
Corporate identity (CIN, address, exchanges)
Business activities (NIC codes, products)
Number of plants / offices
Employees and workers headcount
CSR obligations and spend
B Management & Process
Policy commitments for each NGRBC principle (P1–P9)
Think of ESG reporting as a 12-month cycle. Vigilo captures data all year so that report generation at year-end is a matter of minutes, not months.
Throughout the Year
✓ Log energy, water & waste monthly
✓ Record incidents & safety KPIs
✓ Track training completions
✓ Maintain compliance items
›
FY End (Mar–Apr)
1. Add Workforce Snapshot (HR data)
2. Review ESG Policies (board approvals)
3. Update ESG Targets with year's actuals
›
Report Prep (Apr–Jun)
4. Create BRSR Report for the FY
5. Review GRI Content Index gaps
6. Generate TCFD Report
›
Filing (Jun–Sep)
7. Print / Save PDF of BRSR
8. Mark report as Final / Filed
9. Include in Annual Report to SEBI
Vigilo advantage: Because your safety, training, and compliance data already lives in Vigilo, Steps 1–3 in Report Prep are mostly reviewing data — not re-entering it. A first-time BRSR typically takes 2–3 hours; subsequent years take under 30 minutes once the baseline is established.
The Environmental pillar covers your organisation's physical resource use and emissions. All data is entered monthly by location so you can see trends and hotspots across sites.
⚡ Energy Logs (GRI 302)
Go to ESG → Environmental → Energy Logs. Add one entry per location per month covering every fuel and electricity source your facility uses.
Field
Unit
What to enter
Grid Electricity
kWh
Total purchased electricity (read from bill or sub-meter)
Renewable Electricity
kWh
Solar / wind generated on-site — a sub-set of total electricity
Diesel
Litres
DG set, boilers, forklifts — all diesel consumed
Petrol
Litres
Company vehicles, petrol-driven equipment
LPG
kg
Kitchen, welding gas, process heating
PNG / Natural Gas
scm
Piped gas for heating or process use
HSD / Heavy Fuel
Litres
Heavy-duty diesel, furnace oil
Coal
Metric tonnes (MT)
Boiler coal, process coal
Vigilo automatically converts all inputs to Gigajoules (GJ) using GHG Protocol India net calorific values. You never need to do manual unit conversions — just enter the raw quantities from your bills.
💧 Water Logs (GRI 303)
Go to ESG → Environmental → Water Logs. Enter monthly water data broken down by source.
Source type
Example
Municipal / MIDC Supply
Water received from local authority mains
Groundwater (borewell)
On-site borewell extraction
Surface Water
River, lake, or rain-fed pond
Rainwater Harvesting
Harvested rooftop / catchment water
Third-party Tanker
Purchased water from private suppliers
Also enter Discharged (water released to drains / ETP) and Recycled (water reused internally). Vigilo calculates Net Consumption = Withdrawal − Discharge automatically.
🗑️ Waste Logs (GRI 306)
Go to ESG → Environmental → Waste Logs. Each waste log entry captures one type of waste for one month.
Category
Examples
Note
Hazardous Waste
Used oil, paint sludge, chemical waste, e-waste, batteries
Requires CPCB e-manifest number
Non-hazardous Waste
Cardboard, plastics, metals, general refuse
—
Plastic Waste
Packaging plastic, polythene
Reported separately per Extended Producer Responsibility (EPR)
E-Waste
Computers, screens, peripherals, cables
—
Bio-medical Waste
Clinic/first-aid waste
—
Construction & Demolition
Debris, concrete, tiles
—
If you select Hazardous Waste, Vigilo requires you to enter the CPCB e-manifest number. This is the reference from the Central Pollution Control Board's digital tracking system and is mandatory for BRSR P6 disclosure.
💨 GHG Emissions (GRI 305 / BRSR P6)
Greenhouse gas emissions are measured in tCO₂e (tonnes of CO₂ equivalent) and categorised by scope:
Scope 1 — Direct Emissions
Fuels you burn on-site: diesel, petrol, LPG, PNG, coal. Also includes process emissions and fugitive refrigerant leaks.
Example: 10,000 litres of diesel = approx. 26.7 tCO₂e
Scope 2 — Purchased Electricity
Grid electricity you buy from the state distribution company (DISCOM). Vigilo uses CEA state-wise grid emission factors for India automatically.
Example: 1,00,000 kWh in Maharashtra = approx. 76 tCO₂e
Scope 3 — Value Chain Emissions
Upstream and downstream: business travel, employee commute, raw material extraction, product use, logistics. Entered manually.
Voluntary for most; increasingly required by large buyers and investors
Go to ESG → Environmental → GHG Emissions. You can either:
Manual entry: Enter the tCO₂e figure directly for each category (Scope 1/2/3, emission source).
Auto-calculation: Vigilo automatically estimates Scope 1 and Scope 2 from your Energy Logs using GHG Protocol India emission factors. You can review and override these calculations.
👥 Social Pillar — Workforce, Safety & Well-being
The Social pillar in Vigilo is powered by two sources: live data from your Safety, Training, and Compliance modules, and an annual Workforce Snapshot that captures HR-specific data your safety system doesn't track.
Safety & Social KPIs Dashboard
Go to ESG → Social → Safety & Social KPIs. This dashboard is fully automatic — no data entry needed. It aggregates:
KPI
Source in Vigilo
GRI / BRSR Reference
LTIFR (Lost Time Injury Frequency Rate)
Incidents module
GRI 403-9 / BRSR P3
TRIFR (Total Recordable Injury Frequency Rate)
Incidents module
GRI 403-9 / BRSR P3
Fatalities
Incidents module
GRI 403-9 / BRSR P3
Near-miss events
Incidents module
GRI 403-9
Days lost to injury
Incidents module
GRI 403-9
Safety training completions
Training module
GRI 404-2 / BRSR P3
Overdue compliance items
Compliance module
BRSR P1
Overdue corrective actions
Actions module
BRSR P1
Workforce Snapshot (Annual HR Entry)
Go to ESG → Social → Workforce Snapshots → Add Snapshot once per financial year. This form captures the HR data required for GRI 405 and BRSR Section A/C disclosures.
Select the Financial Year (e.g. FY 2025 = April 2025 – March 2026).
Enter Headcount: total employees, permanent, contractual, and part-time.
Enter Gender breakdown: male, female, and other gender.
Enter Leadership diversity: board total and female directors; senior management total and female.
Enter Well-being benefits: health insurance %, accident insurance %, maternity benefit % coverage.
Enter Attrition: new hires and departures during the year.
Enter Compensation: median wages for permanent and contractual employees; minimum wage compliance (yes/no).
Enter CSR spend for the year (₹ and % of PAT).
Save. This snapshot is referenced automatically by the BRSR Report builder.
One Workforce Snapshot per financial year per organisation. If you need to update figures, use the Edit button on the existing snapshot.
The Governance pillar establishes that your organisation has the right frameworks and accountability structures in place — not just good intentions. Regulators and auditors look for documented, board-approved policies and measurable targets.
ESG Policies (GRI 2-23 / BRSR Section B)
Go to ESG → Governance → ESG Policies. Each policy entry documents a commitment and maps it to the SEBI BRSR principle it covers.
Click Add Policy.
Choose the ESG Pillar (Environmental, Social, or Governance) and the Policy Type (e.g. OHS Policy, Climate Change Policy, Ethics & Anti-bribery).
Enter the Title and a brief description.
Set the Status: Draft → Under Review → Approved.
Tick Board Approved if the board of directors has formally approved this policy (required for BRSR Section B).
Set the Effective Date and a Review Due Date (e.g. annual review).
Map to the relevant NGRBC Principle (P1–P9) — this feeds the policy coverage matrix in the Governance Dashboard and BRSR Section B.
Save.
Pro tip: You need at least one approved, board-approved policy mapped to each of the nine NGRBC Principles (P1–P9) for complete BRSR Section B disclosure. The Governance Dashboard shows a coloured matrix so you can see which principles are covered and which are missing.
ESG Targets (BRSR Core / TCFD Metrics & Targets)
Go to ESG → Governance → ESG Targets. Targets give stakeholders confidence that your ESG commitments are measurable and time-bound.
Click Add Target.
Select the Metric Type — e.g. GHG Scope 1 (absolute tCO₂e), Renewable Energy %, LTIFR, Female Leadership %.
Enter a Baseline year and value — the starting point for measurement.
Enter the Target year and value — what you aim to achieve and by when.
Each year, update the Current value field with actual performance.
Set the Status: On Track · At Risk · Off Track · Achieved.
Vigilo automatically calculates progress % = how far you've moved from the baseline towards the target. This is shown as a progress bar in the TCFD Report.
Climate Risk Register (TCFD / GRI 201-2)
Go to ESG → Governance → Climate Risk Register. This is your organisation's structured log of how climate change poses business risks — a key TCFD and BRSR P6 requirement.
There are two types of climate risk:
⚙️ Transition Risks
Arise from the shift to a low-carbon economy:
Policy: Carbon tax, emission caps, fuel bans
Technology: Stranded assets, technology shifts
Market: Customer preference for green products, input cost rise
Timeframe: Short (<1 year), Medium (1–5 years), or Long (>5 years).
Financial Impact Range (₹ low–high estimate) — optional but strengthens BRSR P6 disclosure.
Management Response — what controls or adaptations are in place.
Opportunity — every risk can also be an opportunity (e.g. carbon pricing risk → renewable energy opportunity).
Risk Score
Level
Action
≥ 15
Critical
Escalate to board; immediate mitigation plan required
10–14
High
Senior management action plan within 3 months
5–9
Medium
Monitored; management response documented
1–4
Low
Accepted risk; review annually
📄 BRSR Report — Generating the SEBI Filing Document
Once you have entered data across all three pillars, Vigilo assembles the complete SEBI-format BRSR document at the click of a button. Go to ESG → BRSR Report.
One report per financial year. Create a new BRSR report for each FY. All ESG data from that year (energy logs, workforce snapshot, safety incidents, policies, targets, climate risks) is pulled in automatically.
How to Create a BRSR Report
Go to ESG → BRSR Report → New Report.
Select the Financial Year (e.g. FY 2025).
Enter Section A corporate identity fields:
CIN — 21-character Corporate Identity Number from MCA
Registered & Corporate Address
Stock Exchanges (NSE, BSE, etc.)
Paid-up Capital (₹)
Turnover & Net Worth — required to auto-calculate GHG and energy intensity ratios
Enter the BRSR Reporting Officer contact details (SEBI requires a named contact).
Enter Number of Locations (plants and offices, national and international).
If externally assured, enter the Assurance Provider and type.
Click Save & View Report.
The report view shows the complete SEBI BRSR document with all three sections populated. Fields that still require manual narrative input are clearly marked. When satisfied, click Print / Save PDF — the browser's print function produces a clean, sidebar-free document ready for inclusion in your Annual Report.
Change the Status from Draft to Final / Filed once it has been submitted to SEBI.
What auto-populates vs. what you enter manually:
Auto-populated from Vigilo data: Workforce headcount and gender breakdown, safety KPIs (LTIFR/TRIFR/fatalities), training records, compliance stats, energy (GJ), water (KL), waste (MT), GHG (tCO₂e), NGRBC policy coverage matrix (P1–P9), ESG targets with progress, climate risk table.
Entered in the BRSR form: Corporate identity (CIN, address), financials (turnover, net worth), BRSR officer, assurance details.
Entered manually in the report view: Narrative-only disclosures like stakeholder engagement description, whistle-blower mechanism details, and awareness programme specifics that are unique to your organisation.
📚 GRI Content Index — Your Disclosure Scorecard
Go to ESG → GRI Content Index. The GRI Content Index is a table that maps every GRI Standards disclosure number to its data source in Vigilo and shows whether it is currently Reported, Partially Reported, or Not Reported.
This is useful for three things:
Gap identification — quickly see which disclosures are missing data so you can prioritise data collection.
Investor communication — many ESG rating agencies (MSCI, Sustainalytics, CDP) ask you to provide a GRI Content Index. You can Print/Save PDF directly from Vigilo.
Audit evidence — the index references exactly which module in Vigilo holds the underlying data, making third-party assurance straightforward.
Status
Meaning
What to do
Reported
Data exists in Vigilo for this disclosure for the selected year
Nothing — you're done ✓
Partial
Some data exists but the disclosure is not complete (e.g. quantitative data without required narrative)
Review the "Note" column — it explains what's missing
Not Reported
No data found for this disclosure for the selected year
Enter the missing data in the relevant module, or note the omission reason
N/A
The disclosure does not apply to this organisation type
Document the reason for omission if required by your stakeholders
Use the Year Selector at the top right to switch between financial years and compare your GRI coverage over time. Coverage should improve each year as you fill data gaps.
🛡️ TCFD Report — The Four-Pillar Climate Report
Go to ESG → TCFD Report. The TCFD Report assembles your climate-related disclosures into the four pillars prescribed by the Task Force on Climate-related Financial Disclosures (2017). This is the format expected by institutional investors, banks, and international ESG frameworks.
1. Governance
Board oversight of climate risks. Board-approved policies and management's responsibility for climate strategy.
Populated from: ESG Policies (board_approved=Yes)
2. Strategy
Actual and potential impacts of climate risks and opportunities on your business. Short, medium, and long-term horizons.
GHG emissions (Scope 1/2/3), energy and renewable %, GHG intensity. ESG climate targets with progress bars.
Populated from: GHG Emissions + Energy Logs + ESG Targets
Use the Year Selector to view the report for any financial year. Click Print / Save PDF to export the clean four-pillar document for inclusion in your Integrated Annual Report or for sharing with investors.
Best practice sequence: Enter climate risks first (so Pillar 2 and 3 are rich), set ESG targets with baselines (Pillar 4), and ensure board-approved environmental/climate policies exist (Pillar 1). The TCFD report then self-assembles with minimal manual narrative.
Who Does What in the ESG Module
Task
Who
Frequency
Log Energy / Water / Waste data
Safety ManagerManager
Monthly
Review GHG emission calculations
Safety Manager
Monthly
Add / review ESG Policies
Manager
As needed / Annual review
Update ESG Targets (current values)
ManagerSafety Manager
Quarterly or annually
Add / update Climate Risks
ManagerSafety Manager
Annually (or after major events)
Enter annual Workforce Snapshot
Manager
Once per FY (after March)
Create and review BRSR Report
Manager
Annually (Apr–Jun)
Review GRI Content Index gaps
ManagerSafety Manager
Quarterly / before filing
View ESG Dashboard
All roles
Anytime
First-Time ESG Setup Checklist
If you are setting up the ESG module for the first time, follow this sequence to get your first BRSR report ready:
Enable the ESG module — Administration → Module Access → turn on ESG
Enter Energy Logs for the past 12 months (one entry per location per month)
Enter Water & Waste Logs for the same 12-month period
Add Workforce Snapshot with HR data for the financial year
Create ESG Policies covering all 9 NGRBC Principles (P1–P9) — mark board-approved ones
Add at least 3–5 ESG Targets with baseline year values (GHG, energy, LTIFR, diversity)
Add Climate Risks — start with 3–5 most material risks (at least one transition, one physical)
Create BRSR Report — fill corporate identity section, then view the auto-generated disclosure document
Check GRI Content Index — address any "Not Reported" gaps, then Print/Save PDF
ESG — Frequently Asked Questions
BRSR is mandatory for India's top 1,000 listed companies by market capitalisation on BSE or NSE from Financial Year 2022-23 onwards (SEBI LODR Regulation 34(2)(f)). For companies outside the top 1,000, BRSR is currently voluntary but strongly encouraged. Many institutional investors, banks offering green/sustainability-linked loans, and large domestic & export buyers now require BRSR-equivalent disclosures even from unlisted suppliers. If your company plans to grow, starting BRSR now gives you a competitive advantage.
Scope 1 = emissions from sources you own or control — your DG sets, boilers, company vehicles, process heating. Every litre of diesel or LPG your facility burns is Scope 1.
Scope 2 = emissions from purchased electricity. You don't burn the fuel — the power plant does — but because you bought the electricity, the emissions are attributed to you. Vigilo uses state-wise CEA grid emission factors to calculate this automatically from your kWh data.
Scope 3 = all other emissions in your value chain — business travel, employee commutes, raw material extraction, product transport, product use & end-of-life. These are the hardest to measure. Most companies start with Scope 1 & 2; Scope 3 is voluntary in BRSR but increasingly required by investors.
Yes. When you save an Energy Log entry, Vigilo automatically creates a GHG emission record using India-specific GHG Protocol emission factors:
Scope 1: Calculated from diesel, petrol, LPG, PNG, HSD, and coal quantities using IPCC/GHG Protocol India net calorific values and emission factors.
Scope 2: Calculated from grid electricity kWh using your state's CEA grid emission factor (updated annually by Vigilo).
You can view these auto-calculated records in ESG → Environmental → GHG Emissions. They are labelled as "auto-calculated" and can be overridden if you have facility-specific emission factors from a third-party audit.
Vigilo uses India's financial year convention: April 1 to March 31. When you select FY 2025, it means April 1, 2025 to March 31, 2026 — shown as "FY 2025-26" in reports.
Energy, water, and waste logs use calendar month and year (e.g. month = 4, year = 2025 for April 2025). The BRSR Report builder aggregates all months of the relevant FY automatically.
The Workforce Snapshot uses the FY end year — so year = 2025 in the snapshot = the snapshot for FY 2025-26.
Each Energy Log, Water Log, and Waste Log entry has a Location Name field. Enter one record per location per month with that location's name (e.g. "Plant A — Pune", "Plant B — Nashik").
The BRSR Report builder aggregates all locations for the organisation automatically — the total figures shown in the report are the sum across all your locations. The GRI Content Index and TCFD Report also aggregate across all locations.
If you need location-level breakdowns for internal purposes, filter the Energy/Water/Waste logs list by Location Name.
The "Data Source in Vigilo" column tells you exactly where to enter the missing data. For example:
GRI 302-1 "Not Reported" → You have no Energy Logs for that year → go to ESG → Environmental → Energy Logs → Add
GRI 2-7 "Not Reported" → No Workforce Snapshot → go to ESG → Social → Workforce Snapshots → Add Snapshot
GRI 201-2 "Not Reported" → No Climate Risks entered → go to ESG → Governance → Climate Risk Register → Add Risk
Some disclosures (marked with "Enter manually") require narrative-only input that is not captured in Vigilo — for example, a statement on stakeholder engagement. Add these as notes in your BRSR Report form or as a supplement to your Annual Report.
In ESG → Governance → ESG Policies → Add Policy, there is an NGRBC Principle field. Select the principle (P1–P9) that this policy most directly supports. One policy can cover one principle; you can create multiple policies to cover all nine.
A typical mapping:
P1 (Integrity) → Code of Ethics / Anti-corruption Policy
The Governance Dashboard (ESG → Governance) shows a colour-coded NGRBC matrix — green = at least one approved policy, red = no policy. Aim for all nine principles to be green before filing your BRSR.
Go to ESG → BRSR Report → View Report (click the report for your year). On the report page, click Print / Save PDF in the top-right corner.
This opens your browser's native print dialog. Select Save as PDF (in Chrome/Edge: Destination → Save as PDF; in Firefox: Print → Microsoft Print to PDF). The sidebar and navigation bar are automatically hidden for a clean document.
The printed PDF follows the SEBI BRSR structure with Section A, B, and C. You can attach this PDF directly to your Annual Report or submit it via your company's SEBI filing platform.
Yes. SEBI allows a phased approach. For your first year of BRSR filing, it is acceptable to disclose data that is available and note that prior-year comparatives will be added in subsequent years. BRSR requires disclosures for the current year; prior-year comparatives are encouraged but not strictly mandatory in the first year.
Start by entering Energy Logs for the current financial year. Vigilo will auto-calculate GHG from that date forward. For historical periods, you can make backward-entry estimates using utility bills and fuel purchase records — enter them as manual GHG emission records in ESG → Environmental → GHG Emissions.
They serve different audiences and purposes, but all draw from the same underlying data in Vigilo:
BRSR Report: The statutory SEBI filing document. Required for India's top 1,000 listed companies. Follows Section A / B / C structure. Your legal obligation.
GRI Content Index: A table showing which GRI disclosure numbers you are reporting against and where the data is. Used by ESG rating agencies (MSCI, FTSE, Sustainalytics), institutional investors, and large buyers. Not legally required in India but expected by international investors.
TCFD Report: A four-pillar climate risk and strategy document. Used by banks for green loans, by climate-focused investors, and increasingly required by export markets (EU CBAM, UK TCFD mandate). SEBI also references TCFD in BRSR P6 climate disclosures.
Most listed companies include all three in or alongside their Annual Report.
🔒Module 13 — Lockout / Tagout (LOTO) New
The LOTO module manages hazardous energy control during equipment maintenance — the control that prevents workers from being struck, crushed, burned or electrocuted by unexpected re-energization. It follows the structure of OSHA 29 CFR 1910.147 (Control of Hazardous Energy) and ANSI/ASSP Z244.1: isolate every energy source, verify zero energy, apply personal locks, do the work, then remove every lock before re-energizing.
This module is enabled by default for every organisation. If you don't see Lockout / Tagout in your sidebar, ask your Manager or Safety Manager to check Administration → Module Access.
13.1 Why LOTO Is Its Own Module
Permit to Work already has an "isolation required" checkbox, but that's just a note — it doesn't track which specific energy sources exist on a machine, who physically applied a lock, or whether it's safe to re-energize. The LOTO module adds that missing layer: a reusable registry of energy sources per machine, and a permit workflow where re-energizing is blocked by the system, not just a checklist item, until every personal lock is accounted for.
13.2 Isolation Points — the Energy Source Registry
Before raising a LOTO permit, the energy sources on your equipment need to be registered once. Go to Lockout / Tagout → Isolation Points → Add Isolation Point.
Field
Purpose
Equipment Name
What the isolation point is on, e.g. "Conveyor CB-04"
Asset Tag
Optional equipment tag/asset number, if labelled on-site
Exactly how it's isolated, e.g. "Main breaker MCC-04, Panel 3"
Reference Photo
Optional photo of the isolation device for field identification
Register every energy source on a machine separately — most equipment has more than one (e.g. electrical and pneumatic on the same conveyor). A LOTO permit can cover several isolation points at once.
13.3 Creating a LOTO Permit
Go to Lockout / Tagout → New LOTO Permit.
Enter the Work Description — what maintenance/repair is being performed.
Select every Energy Source (isolation point) this job needs to isolate.
Choose the Primary Authorized Employee — the coordinator responsible for verification and final release. Only employees in the Authorized Employees registry (13.7) appear here.
Set the Planned Start and, optionally, an Expected End — used to flag jobs that run long on the LOTO dashboard.
Optionally link a related Permit to Work, and mark whether this job uses a group lock box / hasp.
Save. Vigilo auto-generates a permit number in the format LOTO-YYYYMMDD-####.
13.4 Isolate, Release & Verify
On the permit detail page, each energy source has its own three-step control sequence, matching OSHA's procedure:
Mark Isolated — the isolating device (breaker, valve, etc.) has been operated. Attach a photo of the device in the isolated position.
Log Energy Release — if the source has stored or residual energy (pressure, suspended load, capacitors), record how it was released or restrained.
Verify Zero Energy — the try-out test: attempt to start the equipment (or take a meter/gauge reading) and confirm no energy remains before recording the verification method.
Locks cannot be applied to a job until every selected energy source has been isolated and zero-energy verified. This is enforced by the system, not just a best-practice reminder.
13.5 Applying & Removing Personal Locks
Once every energy source is verified, the permit accepts personal locks. Click Apply a Lock:
Select the Authorized Employee applying the lock and enter the lock serial / ID number.
For worker accounts (Employee ID + PIN login), the employee must re-enter their own PIN at this moment to confirm they are the one physically applying the lock — a coordinator cannot apply a lock on someone else's behalf.
Attach a photo of the physical lock in place, then submit.
To remove a lock, click Remove Lock on that entry:
Self-removal — the employee who applied the lock removes it themselves (PIN re-confirmation for worker accounts). No further approval needed.
Removal by someone else — only a Manager or Safety Manager can do this, and only by completing the documented exception procedure (OSHA 1910.147(e)(3)): a reason is required (e.g. employee unavailable, contacted and informed), and the override is permanently recorded against the lock and shown on the permit and its printable form.
Re-energizing is a hard gate. The Close & Re-energize button is blocked — at the server level, not just in the page — while any personal lock is still applied. The permit will show exactly how many locks remain and who holds them.
13.6 Group Lockout
When more than one trade or worker needs to be locked onto the same job simultaneously, they each apply their own personal lock to the same permit — there is no single shared lock for the whole crew. A permit automatically shows as Group Lockout once a second employee applies a lock.
Every employee's lock is tracked and displayed independently on the permit, with its own applied/removed timestamps.
If a group job uses a physical lock box or hasp, tick uses a group lock box when creating the permit and record the box identifier — each employee's personal padlock then secures the box rather than the isolation point directly.
The equipment cannot be re-energized until every single employee's lock has been removed — not just the coordinator's.
13.7 Authorized Employees & Periodic Audits
LOTO authorization is a certification, separate from a user's role in Vigilo — a contractor or operator can be LOTO-trained even if they're not a Manager. Go to Lockout / Tagout → Authorized Employees (Manager / Safety Manager only) to manage who can be assigned locks and coordinate permits: authorization date, an optional training certificate upload, and an optional expiry date.
OSHA 1910.147(c)(6) requires each energy control procedure to be reviewed at least annually. Go to Lockout / Tagout → Audits to log a review against an isolation point, note any deviations found, and set the next due date. Overdue audits and authorizations expiring within 30 days both surface on the LOTO Dashboard.
Deactivate an employee's authorization rather than deleting it if their training lapses — their historical lock records stay intact for the audit trail.
13.8 Workflow at a Glance — Who Does What
If you're new to LOTO, start here. A job is never one person's responsibility — these are the people you'll see referenced at every stage, and the seven statuses every permit moves through in order.
Role
Responsibility
Involved at
Authorized Employee
Coordinates the job — isolates energy sources, verifies zero energy, and is the only person who can close the permit and re-energize.
Every stage
Employee (Lock Holder)
Applies one personal lock before working, and removes only that lock when their own part of the work is done.
Locked Out → Closed
Affected Employee
Operates or works near the equipment but performs no lockout steps themselves. Must be told before shutdown and again before re-energizing.
Planned, Pending Release
Manager / Safety Manager
Not part of the normal flow — only steps in to authorize the documented exception of removing someone else's lock.
Exception only
Auditor
Reviews each isolation point's energy-control procedure at least once a year, on a separate track from any single job.
Annual, ongoing
Planned→Isolating→Isolated & Verified→Locked Out→Work in Progress→Pending Release→Closed / Re-energized
Any stage before Closed→Cancelled(reason recorded; no re-energizing occurs)
PlannedAuthorized Employee — job and energy sources are described; see 13.3. Affected employees are told the equipment will be shut down.
IsolatingAuthorized Employee — each energy source is shut off at its isolation point; see 13.2.
Isolated & VerifiedAuthorized Employee — stored energy is released and zero energy is proven, not assumed; see 13.4.
Locked OutAuthorized EmployeeEmployee(s) — every employee working the job applies their own personal lock; see 13.5 and 13.6 for group lockout.
Work in ProgressEmployee(s) — maintenance or repair is carried out; the equipment cannot start while any lock is applied.
Pending ReleaseAuthorized EmployeeAffected Employees — work is finished and affected employees are told re-energizing is about to happen, before any lock comes off.
Closed / Re-energizedEmployee(s)Authorized Employee — each employee removes their own lock; only once every lock is gone can the permit close and the equipment be re-energized.
Do
Prove zero energy by test — attempted start-up, meter, or gauge — never by assumption.
Apply and remove only your own personal lock.
Notify affected employees before isolating and again before re-energizing.
Use a shared lock box whenever more than one person works the same job.
Attach photos of isolation, lock placement, and removal where the job calls for it.
Don't
Never remove another person's lock without documented manager authorization (see 13.5).
Never assume a source is isolated — verify every one of them.
Never try to re-energize while any lock remains — the permit will not allow it.
Never lend, share, or duplicate a personal lock or its key.
Never skip stored-energy release — springs, pressure, suspended loads — even once main power is off.
❓Frequently Asked Questions
Vigilo is modular — each organisation chooses which modules to activate. If a module (such as Inspections, HIRA, or Appraisals) does not appear in your sidebar or on your dashboard, it has not been enabled for your organisation. If you believe you should have access, contact your Manager or Safety Manager and ask them to enable the relevant module.
Yes. Vigilo is fully responsive and works on any smartphone browser — Chrome, Safari, or Edge. No app installation is needed.
They are automatically logged out on their next request and cannot log in again. Their past permit records are retained and still visible to your managers.
Yes. Every major module has a Download CSV button (Managers and Safety Managers only): Observations, Permits to Work, HIRA, Incidents, Inspections, Legal Compliance, Corrective Actions, Training (sessions, assessment attempts, and skills), Appraisals, and TNA (cycle gaps and needs queue). Observations also export to Excel (.xlsx). PDF reports are available for inspections, training effectiveness, and appraisals. See the Data Exports (CSV) section for a full column reference.
Only Managers can permanently delete observations. Archiving (available to Managers and Safety Managers) is the preferred action as it preserves the full audit trail.
Yes. After rejection the permit returns to Draft status. The requestor can edit it to address the rejection reason and resubmit for approval.
Yes. Each permit has an Isolation Required checkbox and a free-text field for your LOTO procedure. This is captured as part of the official permit record.
No — each user has exactly one role at a time. A Manager can change a user's role from the admin panel if needed.
Stars (1–5) are percentile rankings within your organisation. For example: if you are in the top 20% of observers by number of observations reported, you receive 5 Observer Stars. Rankings update as new activity is recorded.
1. Check your spam / junk folder first. 2. Ask your Manager to re-send the invite. 3. If the problem persists, contact us at support@safety-desk.com.
Click Get a Demo on the homepage or visit safety-desk.com/request-demo/. A member of our team will contact you via email or WhatsApp within one business day.
Yes. Vigilo is a multi-tenant SaaS application. Every record — observations, permits, users, training data — is fully scoped to your organisation. No other organisation can view or access your data.
Yes. CAs auto-raised from inspection critical failures or HIRA critical hazards include a link back to the originating record. From the Action Register you can see the source (Inspection / HIRA / Compliance / Observation / Manual) and click through to the source record.
Training requirements have a frequency (one-time, monthly, quarterly, annual). When completed, Vigilo calculates the expiry date from the completion date. As the expiry approaches (within 30 days), the employee and their manager are emailed and the Training Passport shows an amber Expiring Soon badge. Once expired, the badge turns red and the employee appears in the at-risk list on the Compliance Dashboard.
Yes. Go to Training → Plans → [your plan] → Log Manual Record. Enter the employee, module, completion date, score (optional), and expiry date. This is the recommended way to record external courses, face-to-face training, or certifications obtained before Vigilo was set up.
A HIRA register is a risk assessment document — it identifies hazards, scores their inherent risk, and records controls. It is reviewed periodically (e.g. annually). An Inspection is an active site visit with a checklist, conducted on a schedule, that verifies physical conditions in real time. Both can generate Corrective Actions, but they serve different purposes: HIRA is strategic risk management; Inspections are operational verification.
Each category is given a weight (e.g. Safety = 40%, Technical = 30%, Teamwork = 30%). Within each category, items are rated on a scale and averaged. The category average is then multiplied by its weight. The weighted scores are summed for the overall score. Vigilo calculates this automatically — managers only need to enter the item ratings.
Alert emails are sent once daily (overnight). Each module has its own alert: training alerts cover overdue, due-in-7-days, expiring certifications, and session reminders. Corrective action alerts flag overdue CAs. Legal compliance alerts flag overdue and due-soon obligations. HIRA alerts flag registers approaching their review date. All alerts are batched per employee — you will not receive dozens of individual emails.
Training Plans answer "who must complete which course, by when." They are schedule-driven and track attendance and completion. TNA answers "does each employee actually have the competency their job role requires?" It is competency-driven and compares skill levels, not completion dates. You use Training Plans to deliver training; you use TNA to identify what training is needed. The two feed each other: a TNA gap generates a Training Need, which links to a Training Module, which is then delivered via a Training Session or self-paced assessment.
Re-running a cycle rebuilds all gap records from scratch (using current proficiency levels). For training needs: if an open need already exists for the same employee and skill, a duplicate is not created — the existing need is left intact. New needs are only raised for gaps that do not already have an open need. Completed or waived needs are never overwritten.
Yes. An employee can be assigned multiple job roles — for example, a "Forklift Operator" who is also a "Fire Warden." Mark one role as Primary. The TNA gap analysis uses the Primary role for computing gaps. Secondary roles are shown on the assignment page for reference but are not currently included in the gap calculation.
When a manager adds a Development Plan link in an appraisal (connecting a Training Module to address a skill gap identified during the review), that connection appears as a Training Need with source Appraisal Dev Plan in the TNA Needs Queue. This means all skill development needs — whether identified by gap analysis or by a performance review — are visible and manageable in one place.
No. Needs flagged as Mandatory cannot be waived — they correspond to regulatory or non-negotiable competency requirements. Non-mandatory needs can be waived with a written justification, which is recorded in the system. If you believe a mandatory need was incorrectly flagged, the competency requirement itself (on the Job Role detail page) needs to be updated by a Manager or Safety Manager.
When a competency requirement has a Recertification (months) value set (e.g. 12 for annual), and the employee currently meets the required level, Vigilo sets a recertification due date of today + that number of months. This is shown on the employee's TNA record as a reminder that the certification will need renewal even though there is no gap right now. Employees who do not meet the required level show no recertification date — they first need to close the gap.
Ready to get started?
Free 14-day trial · No credit card · Setup in minutes