Run your entire compliance
portfolio from one command center.

Versions drift, evidence goes missing, and nobody trusts the master copy.

Days lost hunting for the screenshot, the policy version, the sign-off.

Each new client means more manual work — so you stop saying yes.

One platform for your whole book of business

Run every engagement from one console — onboard a client, pick frameworks, and deliver a certifiable programme without rebuilding spreadsheets each time.

Add compliance to your managed services. Give each customer a branded portal and prove posture continuously, not once a year.

Carry risk, controls and board-ready reporting across your whole book of clients — and show value every month.

Manage subsidiaries, regions or business units as isolated workspaces under one corporate roof.

One control library that satisfies every framework you run.

• ✓Unlimited frameworks per client (13 built in)
• ✓Single control library across all frameworks
• ✓Automatic cross-framework control mapping
• ✓Statement of Applicability (SoA)
• ✓Evidence vault with ownership & status
• ✓Gap analysis & control recommendations
• ✓Certificate lifecycle & renewals

Quantify, treat and monitor risk — with a posture that rolls up.

• ✓Risk register (inherent & residual scoring)
• ✓Interactive risk heatmap
• ✓Key Risk Indicators (KRIs)
• ✓Maturity assessments
• ✓Treatment & remediation plans

Everything that turns a programme into evidence on the day.

• ✓Internal & external audits
• ✓Auditor portal & interview mode
• ✓Findings & corrective action plans (CAPs)
• ✓Remediation tracking
• ✓Incident & issue management
• ✓Tasks & workflows
• ✓User access reviews (UAR)
• ✓Regulatory obligations register
• ✓Business continuity (BCM)
• ✓Assets & sites inventory

Manage the risk you do not directly control.

• ✓Vendor / supplier risk register
• ✓Supplier security questionnaires
• ✓Portfolio third-party risk dashboard
• ✓Privacy register (GDPR records of processing)

An expert co-pilot grounded in each client’s own data.

• ✓Draft policies from a prompt
• ✓Summarise gaps & next actions
• ✓Recommend the right evidence
• ✓Answer framework & control questions
• ✓Speeds up onboarding and audit prep

Surfaces your clients actually see — under your brand.

• ✓White-label client portal
• ✓Trust Center — NDA-gated, shareable
• ✓Policy attestations & acknowledgements
• ✓Branded, audit-ready report exports

Run the whole book of business from one screen.

• ✓Cross-client board & work queue
• ✓Audit-readiness reports
• ✓Executive briefings & ROI dashboard
• ✓Live regulatory feed
• ✓Portfolio-wide posture at a glance

Built multi-tenant and secure from the ground up.

• ✓Strict per-client data isolation
• ✓White-label branding & custom domain
• ✓SSO (Google / Microsoft)
• ✓REST API & webhooks
• ✓CSV import / export
• ✓Full audit trail & role-based access
• ✓30-day data retention safety net

Create a branded, isolated workspace per client in seconds and switch on the frameworks they need.

Controls auto-map across frameworks. Collect evidence, run the risk register, and let Sky draft the heavy lifting.

Share a Trust Center, export audit-ready reports, and keep every client green with continuous monitoring.

For independent GRC consultants starting out

• ✓Unlimited frameworks (ISO 27001, SOC 2, NIS2, DORA, NCA ECC …)
• ✓Controls, risk register & policies
• ✓Evidence vault & continuous monitoring
• ✓Audits, CAPs, incidents & tasks
• ✓Certificate lifecycle & cross-framework mapping
• …and the full GRC core

For growing consultancies managing more clients

• Everything in Starter, plus:
• ✓Sky — AI assistant
• ✓Trust Center

Scale your practice with full platform access

• Everything in Advanced, plus:
• ✓White-label branding
• ✓REST API & webhooks
• ✓CSV import / export

Unlimited scale for large GRC firms

• Everything in Pro, plus:
• ✓SSO (Google / Microsoft)
• ✓Custom domain

No version chaos, no lost evidence, no audit trail gaps. Everything is mapped, owned, time-stamped and exportable.

Those are built for one company. Risqore is built for your whole portfolio — isolated clients, one console, your brand.

Headcount cost grows per client. Software does not. Take on more engagements without growing the team.

GRC and ISO consultancies, MSSPs/MSPs, vCISOs and advisory firms — anyone managing compliance for multiple client organisations from one place. In-house teams use it to manage multiple entities or regions.

ISO 27001, SOC 2, NIS2, DORA, GDPR, NCA ECC, PCI DSS, ISO 22301, ISO 9001, HIPAA, TISAX, Cyber Essentials and SAMA — with unlimited frameworks per client and automatic cross-mapping between them.

Yes. Every client lives in a strictly isolated workspace. Your team works across the whole portfolio; each client only ever sees their own data, under your brand.

On Pro and above you get white-label branding — your logo, colours and client portal. Enterprise adds a custom domain and SSO, so it’s fully your product.

Sky drafts policies, summarises gaps, recommends evidence and answers framework questions — grounded in each client’s own data. It accelerates onboarding and audit prep.

Strict tenant isolation, role-based access, a full audit trail and a 30-day data-retention safety net on deletion. Authentication supports SSO on Enterprise.

Pick a package below and start a free trial — no credit card. Subscriptions activate automatically after checkout. Upgrade, downgrade or cancel anytime.