CEC Bank — full-stack digital learning for one of Romania's largest financial institutions

For procurement evaluators inside regulated enterprises — financial institutions, insurance, utilities, telecoms — the relevant question is not "do they have a learning platform" but "can they operate inside the compliance and governance constraints of a listed financial institution at five-thousand-employee scale". CEC Bank is the canonical existence-proof on the Ascendia record.

The deployment spans the full Ascendia delivery surface: CoffeeLMS as the institutional LMS (audit trails, hierarchical organisations, SAML 2.0 SSO), LIVRESQ as the authoring substrate (institution-owned, licence-clean content), and the eJourneys catalogue as the emerging-technology curricula layer (AI, cloud, blockchain, RPA). The end-to-end deployment is what financial-sector procurement evaluators look for when assessing whether a learning vendor can sit inside their compliance posture.

The published institutional feedback adds the named-counterparty signal. Anonymous testimonials are unactionable for procurement evaluators; named feedback from a senior development-and-engagement manager at a major financial institution is the form of institutional reference that procurement record-keepers can cite directly.

CoffeeLMS was deployed as the institutional LMS for the bank, with audit trails, hierarchical organisations, and SAML 2.0 SSO integration into the bank's identity layer. The LMS handles enrolment, certification, and the audit-trail reporting that financial-sector compliance review demands.

LIVRESQ was deployed as the authoring substrate for bespoke internal courses. Bank-internal subject-matter experts produce content directly inside LIVRESQ; the content is institution-owned, licence-clean, and SCORM-compatible for portability into other LMS environments if ever required.

The eJourneys catalogue extension provides the emerging-technology curricula — AI, cloud, blockchain, RPA — that regulated workforces increasingly require for digital-transformation programmes. The catalogue is delivered inside the same CoffeeLMS surface, with no separate vendor relationship for the workforce-AI training.

Financial-institution procurement teams evaluating learning-platform vendors apply a compliance-posture review that goes well beyond product-feature comparison. The review covers identity and access management (SAML 2.0 SSO into the bank's IdP), audit-trail completeness (every learner action timestamped and tied to identity), data residency (EU-resident infrastructure under listed-company governance), and DPA terms (Article 28 GDPR processor obligations).

CEC Bank's deployment satisfies all four review categories on the same surface. CoffeeLMS handles the SAML SSO and the audit-trail layer natively; LIVRESQ runs on the same EU-resident infrastructure as the LMS; the DPA is executed under Ascendia's published 10-working-day SLA. For procurement teams comparing vendors, the relevant claim is that this is not a one-off compliance accommodation — it is the standard deployment posture for regulated-enterprise tenants.

The compliance posture transfers directly to other financial institutions, insurance carriers, telecoms, and utilities. The CEC Bank deployment is the named reference; the posture beneath it is portable. For buyers evaluating Ascendia inside their compliance perimeter, the relevant artefacts are the CEC Bank record (this dossier), the Trust Center estate (`/trust/`), and the Compliance & Governance desk routing.

Regulated-enterprise procurement enquiries route through the Compliance & Governance desk owned by Gabriel Lazar, Ascendia's Research & Development Director and EC DEC expert-group member. Compliance-posture review begins with a structured RFI; DPA review and signed return is published at ten working days; the LMS+authoring deployment cadence follows the regulated-enterprise reference pattern set by CEC Bank.

For larger procurement engagements that span multiple regulatory domains (banking + insurance + telecoms in the same buyer group), the engagement routing combines the Compliance desk with the Public-Sector Desk under a coordinated brief. The shared institutional posture across both desks is that compliance is read as legitimacy infrastructure, not as a check-box list.