AI-powered GRC platform — free to start

Compliance, Risk & Security.
One intelligent platform.

Run assessments across 9 frameworks. Manage controls, policies, risks, vendors, assets, incidents and DPIAs from one place. Let AI draft your policies, judge your evidence, find your gaps, and keep you audit-ready.

Start free — no card requiredSee the platform
No credit card~15 min first assessmentCancel anytime
app.shieldiqcyber.com
Dashboard
Controls
Policies
Risks
Assets
Vendors
Incidents
74%
Overall Score
43/58
Controls Active
7
Open Risks
3
Frameworks
Compliance maturity by framework
NIST
NIS2
GDPR
ISO
DORA
SOC 2
AI drafted Access Control Policy2m ago
NIS2 assessment completed — 74% score1h ago
Vendor risk auto-generated for 2 vendors3h ago

9 Frameworks

Every standard your business needs

One platform. One subscription. Full coverage across EU, UK, and international compliance frameworks — with more added regularly.

NI
Cybersecurity

NIST CSF 2.0

6 functions, 22 categories. The gold standard for cybersecurity posture.

NI
EU Regulation

NIS2 Directive

8 domains, 25 requirements. EU cybersecurity for essential entities.

GD
Data Protection

GDPR

7 domains, 28 requirements. EU data protection & privacy.

IS
International

ISO 27001

4 control domains, 35 controls. International ISMS standard.

DO
Financial Services

DORA

5 domains, 14 requirements. Digital resilience for financial services.

SO
SaaS / Cloud

SOC 2

5 trust criteria, 18 controls. Security & privacy for SaaS.

Cy
UK Government

Cyber Essentials

5 technical controls. UK government security scheme.

EU
AI Regulation

EU AI Act

5 domains, 18 requirements. EU AI regulation compliance.

PC
Payments

PCI DSS 4.0

6 groups, 12 requirements. Payment card data security.

18 Modules

Everything you need. Nothing you don't.

Eighteen integrated modules covering compliance assessments, governance, risk, privacy, third-party management, incidents, security hardening and audit reporting.

📋

Assessments

9 frameworks, AI scoring per category, spider graphs, target maturity overlay.

🛡️

Controls

Cross-framework controls with status, evidence and assessment auto-linking.

📄

Policies

Versioned policies, control mappings, employee acknowledgments. AI drafter included.

⚠️

Risk Register

5×5 grid + FAIR-lite quantitative loss expectancy + treatment plans.

🖥️

Asset Inventory

Criticality, classification, ownership and control links in one place.

🏢

Vendor Management

Lite + Standard questionnaires. Auto-generates risks from poor scores.

🚨

Incident Management

Auto 72h GDPR / 24h NIS2 / 4h DORA deadlines. AI drafts regulator notification.

🔍

Network Scanner

NMAP scans with AI analysis of open ports and vulnerabilities.

📊

ROPA (Art. 30)

GDPR Art. 30 records of processing activities. Regulator-ready CSV export.

📝

DPIA (Art. 35)

6-step wizard with auto Art. 36 prior-consultation trigger.

📅

Compliance Calendar

Unified view of audits, reviews, evidence expiries and contract renewals.

🧪

Pen Tests

Structured engagement records with findings, retest schedule, risk linkage.

Actions Board

Kanban board with effort/impact priorities, assignment and due dates.

📜

Activity Feed

Tamper-evident trail with PII pseudonymisation, comments and @mentions.

👥

Team Management

Org accounts, roles, time-boxed read-only auditor access, comments.

🔒

Security Controls

Forced MFA, login anomaly detection, trusted devices, tenant policy.

📤

Bulk Import

Risks, assets, vendors. Preview + validate + confirm. No 200-row hand entry.

📈

Dashboard

Drag, collapse, reorder. Compliance snapshot, trends, benchmarks, calendar widget.

AI-Powered

Five AI features. One unified credit pool.

Built into the platform. Generous monthly allowances on every paid tier — no surprise overage bills, no margin death-spiral.

🧠

AI Assessment Analysis

Each category individually analysed with full business context — 2–3 paragraphs per category, bundled into every assessment.

✍️

AI Policy Drafter

Pick a policy type, scope, and framework. AI drafts a tailored policy you can review, edit and save as a versioned draft.

⚖️

AI Evidence Judge

Upload a file and get a verdict — satisfies / partial / does not satisfy — with reasoning and improvement suggestions.

🔔

AI Incident Notifications

Automatically drafts regulator-ready notifications with correct deadlines for GDPR, NIS2, and DORA incidents.

🕵️

AI Gap Analysis

Finds gaps across your controls and frameworks, prioritises remediation, and keeps you continuously audit-ready.

Pricing

Start for free. Scale when ready.

No credit card required to get started. Your first assessment takes around 15 minutes.

Starter

Free

Everything you need to run your first assessment and understand your posture.

  • 1 framework assessment
  • Controls & risk register
  • Basic policy library
  • 1 user
  • AI assessment analysis included
Start free
Most popular

Professional

See plans

All 9 frameworks, unlimited users, full AI credit pool, and priority support.

  • All 9 frameworks
  • All 18 modules
  • 5 AI features — shared credit pool
  • Unlimited users
  • Auditor access (time-boxed)
  • Priority support
View all plans & pricing

Consulting Services

Prefer hands-on support?

ShieldIQ's Dublin-based consultants step in when you need another person on the team — Virtual CISO, GRC programmes, strategic planning and incident response.

Explore consulting services

See your compliance posture
in 15 minutes.

Free to start. No credit card. No setup calls. Just sign up and run your first assessment across any of the 9 supported frameworks.

Start free today

Questions? Email info@shieldiqcyber.com