GRATEIC pricing is based on your Azure infrastructure tier, the platforms you deploy, and your user scale. Every deployment is scoped individually — contact sales for a personalized quote.
Every GRATEIC deployment is built on Azure and scoped to your organization's size. Pricing reflects your infrastructure tier, the platforms you need, and your scale.
GRATEIC runs on a dedicated Azure VM and MySQL Flexible Server in your region. The VM size determines performance and concurrent user capacity. Larger organizations need larger compute tiers.
Choose from GRC (Customer or Firm Portal), BCMS, SRMT, CMDB, and DROP. Each platform can be deployed independently or combined. Multi-platform deployments share infrastructure where possible.
For the GRC Firm Portal, pricing scales with the number of clients managed. For Customer Portal and standalone platforms, pricing reflects your user count and selected feature packages.
GRC customers can add compliance frameworks as annual add-ons from the Framework Store. Each framework includes full implementation guidance, AI assistance, and cross-framework mappings.
Every GRATEIC platform runs on a dedicated Azure VM + MySQL Flexible Server in your chosen Azure region. The infrastructure tier is the baseline component of your subscription cost.
All infrastructure is provisioned in your Azure subscription or ours, in your preferred region (Canada Central, Canada East, US East, etc.). Azure costs are included in your subscription or billed passthrough.
Each platform can be deployed independently or combined on shared infrastructure. All pricing is annual subscription — contact sales for a tailored quote based on your scope.
The Customer Portal gives your organization a dedicated GRC workspace with framework projects, task management, AI guidance, and evidence collection. Packages scale with the number of frameworks and users.
The Firm Portal gives consulting firms a multi-tenant workspace to manage GRC engagements across their entire client portfolio. Pricing scales with the number of active client workspaces.
Add frameworks to any active GRC subscription. Each framework includes complete process documentation, step-by-step tasks, how-to guidance, AI assistance, and cross-framework mappings.
ISO 27001, ISO 22301, SOC 2, NIST CSF 2.0 — full control-level implementation guidance, evidence requirements, audit checklists.
HIPAA, GDPR, PIPEDA, NIST RMF, ISO 27005, ISO 31000, ISO 42001, OSFI guidelines, FFIEC, PCI DSS and more.
All 14 domains, 110 Level 2 practices, 32 document templates. Cross-mapped to NIST 800-53, ISO 27001, SOC 2, CIS Controls, FedRAMP. DoD supply chain ready.
23+ frameworks available · Custom framework development on request · Volume discounts for 5+ frameworks
Your own VM and database — no shared tenancy with other GRATEIC customers
Transactional email for invitations, MFA codes, notifications, and approvals
Let's Encrypt SSL with your subdomain (e.g. yourorg.grateic.com or your own domain)
Nightly database backups with point-in-time restore. Geo-redundant on Standard+ tiers
All new features, security patches, and improvements deployed to your instance
Deployment, configuration, data migration assistance, and initial training
Schedule a personalized demo and discuss your deployment scope, infrastructure requirements, and platform selection. All pricing is tailored to your organization.