ComplianceGuard

Pricing that scales with your team,
not against it.

No per-seat tax. No "let's get on a call" pricing. No enterprise minimums. Just a flat rate that makes sense for a real company.

Free

$0forever

See exactly where you fail SOC 2 before you pay a cent.

  • SOC 2 readiness score
  • 5 control areas visible
  • Local OS scan
  • No credit card required
Download Free
Most Popular

Pro

$49/month

or $399/year — save 32%

Everything you need to hand an auditor a complete evidence pack.

  • SOC 2 (29) · ISO 27001 (47) · HIPAA (47)
  • Unlimited evidence collection runs
  • Full PDF, CSV, and JSON export
  • AWS CloudTrail + IAM + S3 evidence
  • OS-level evidence (Windows; Mac & Linux on roadmap)
  • Evidence history: 90 days
  • Audit-ready report formatting
  • Email support (48hr response)
  • Installer for Windows 10/11 (64-bit)
Start Pro Trial

Managed

$79/month

or $759/year

For consultants managing SOC 2 for multiple clients.

  • Everything in Pro
  • 5 client workspaces (additional available)
  • Centralized billing dashboard
  • White-label PDF reports (logo + firm name)
  • Priority email support (24hr response)
  • Consultant referral programme access
Contact Us

30-day money-back guarantee on Pro and Managed. No questions asked. Email us and we'll refund within 24 hours.

Self-hosting? Deploy to Railway, Render, or any Docker host in one command. Full instructions in the GitHub README.

New in v3.2.0

Enterprise — Air-Gapped Deployment

Tamper-evident SHA-256 audit log, RBAC (admin + auditor), custom PDF branding, NDJSON data export, and a fully offline Docker bundle with hardened Nginx. For regulated industries, government, NHS/healthcare, legal, and financial services that need full data sovereignty.

Contact Sales

Common questions

No. ComplianceGuard is a desktop application that runs entirely on your machine. Your evidence data, AWS credentials, and compliance reports are stored in a local database. Nothing is transmitted to our servers.

The free tier shows your SOC 2 readiness score and lets you see which controls you're passing or failing. To export a full evidence pack (PDF/CSV) and connect AWS for automated evidence collection, you need Pro.

Yes. ComplianceGuard now supports all three frameworks. SOC 2 Type II (29 controls), ISO 27001:2013 (47 Annex A controls), and the HIPAA Security Rule (47 safeguards across all five 45 CFR Part 164 sections). The same OS-level evidence collection feeds all three.

Your credentials are encrypted locally using HKDF-SHA256 derived Fernet keys before being stored. They are never transmitted to ComplianceGuard servers.

Yes. If ComplianceGuard doesn't meet your needs within 30 days, contact us for a full refund. No questions asked.

The Managed plan is designed for freelance GRC consultants or small firms managing SOC 2 readiness for multiple clients. You get 5 separate client workspaces, white-label PDF exports, and a consultant referral link.

Want updates as we ship?

No spam. Just release notes and the occasional rant about Vanta.

Back to Home