Published Pricing. Self-Serve or Guided.
Start with What You Need. Add Modules as You Grow.
For teams replacing spreadsheets and shared folders with one proof system
Best for teams replacing spreadsheets with one proof system
- Governed controls, evidence, and assessments
- Reviewer access and sharing included
- SSO, SCIM, RBAC, and audit exports included
- Ask Aurora AI-assisted answers
- 5 operators, 1 workspace, 1 framework
- 25 review projects per year
For teams buried in reviews, renewals, and vendor diligence
Best for teams running 50+ reviews per year
- Everything in Core, plus:
- Automated evidence collection (10 connectors)
- Risk registers and remediation workflows
- Vendor risk management (50 vendors)
- Built for teams handling 50+ reviews per year
- 50 review projects per year
For broader programs that need the full platform with readiness, risk, and vendor coverage
Best for broad programs needing full readiness and vendor coverage
- Everything in Professional, plus:
- Readiness coverage (training, exercises, incidents)
- Vendor Risk expanded to 250 vendors
- 10 operators and 3 frameworks included
- Starting from $2,600/mo — final pricing scoped to your environment
- Command add-on available for regulated environments
Compare Every Plan Side by Side
| Features | Core From $600/Mo | Professional From $1600/Mo | Enterprise From $2600/Mo |
|---|---|---|---|
| Base platform | |||
| 5 | 5 | 10 | |
| 1 | 1 | 1 | |
| 1 | 1 | 3 | |
| 25 | 50 | 25 base | |
| Reviewer operations | |||
| Compliance automation | |||
| 10 | 10 | ||
| Risk & accountability | |||
| 50 vendors | 250 vendors | ||
| Readiness | |||
| Command | |||
| Quoted separately | |||
| Quoted separately | |||
| Voice Operations | |||
| Quoted add-on | Quoted add-on | ||
| 0 | 500 / month | 5,000 / month | |
| 0 | 3 | 10 | |
| Start Core — Self-Serve Checkout | Start Professional — Self-Serve Checkout | Talk Through Enterprise Fit | |
Named seats for team members who manage controls, approvals, evidence, or reviewer workflows. Reviewers are always free.
Learn moreScoped boundaries for business units, subsidiaries, or client programs. Each workspace gets its own controls, evidence, and reviewer access.
Learn moreCompliance frameworks like SOC 2, ISO 27001, or HIPAA. Aurora reuses one proof graph across frameworks instead of rebuilding each one.
Learn moreAudits, buyer reviews, renewals, and vendor assessments. Aurora meters by project, not by question count or approved domain.
Learn moreExternal reviewers, auditors, and buyers access proof without counting against your operator seats. No approved-domain caps or viewer-seat charges.
Learn morePublish proof tiers, manage reviewer access, and control what evidence is visible to each audience with full audit trails.
Learn moreEnterprise identity, access, and role controls ship in every plan. No security-tax upsell to get the basics.
Learn moreStructured exports, audit-period diffs, SIEM sinks, and webhooks for downstream compliance and security tooling.
Learn moreRetrieve prior answers, citations, and proof context using AI. Reuse existing evidence instead of rebuilding from scratch.
Learn moreRead-only integrations, scheduled evidence checks, drift detection, and evidence freshness signals that keep proof current between reviews.
Learn moreConnector-backed evidence collection from cloud providers, SaaS tools, and infrastructure. Automate what you used to upload manually.
Learn moreContinuous monitoring flags when evidence drifts from expected state, giving teams time to remediate before the next review.
Learn moreTrack risks, assign owners, set due dates, and produce closure evidence. Remediation workflows replace scattered follow-up threads.
Learn moreVendor inventory, due diligence questionnaires, assigned assessments, Vendor Watch, and shareable outputs for third-party reviews.
Learn moreRoute requests to the right owner with escalation paths and SLA tracking. Every request gets an accountable trail.
Learn moreTraining assignments, custom content, acknowledgments, phishing simulations, and readiness dashboards tied to your proof record.
Learn moreTabletop exercises, incident management, playbooks, emergency communications, and after-action records with readiness analytics.
Learn moreBuild-your-own training content, phishing simulation campaigns, and completion tracking with evidence that survives the next audit.
Learn moreOn-premises evidence plane with scoped collectors, field coverage, encrypted snapshots, and governed exports for regulated environments.
Learn moreGoverned actions with plan, apply, rollback, and approval history for high-assurance environments that need operational control.
Learn moreDedicated single-tenant voice agent for vendor questionnaire intake, compliance evidence interviews, and incident notification fan-outs. TCPA, DNC, consent, and PII scrubbing enforced at the platform layer.
Learn moreMonthly minute allocation included with the Voice Operations add-on. Additional minutes are available in published 1,000-minute packs at $2,400 per year.
Learn moreMaximum number of calls a customer's Voice Worker can run in parallel. Additional channels are available at $1,200 per year each.
Learn moreBuild Your Exact Configuration
Core includes 5
Core includes 1
Core includes 1
Core includes 25
Published annual list-price estimate from the same units on this page.
Reference plans help buyers orient. Aurora can package the motion cleanly.
- This configuration qualifies for self-serve checkout at published prices.
Every Module and Add-On, Priced Transparently
Pricing That Doesn't Require a Sales Call to Understand
No per-reviewer fees
External reviewers, auditors, and buyers don't count against your operator seats. No per-viewer fees or approved-domain caps on standard usage.
No surprise enterprise tax
SSO, SCIM, RBAC, audit exports, diffs, and webhooks are in the base plan. You should not have to pay extra for security basics.
Predictable review metering
Aurora meters review projects, not individual questions. Your costs scale with real workload, not arbitrary counts.
Framework expansion without rebuild costs
Adding SOC 2, ISO 27001, HIPAA, or any framework reuses your existing proof graph. No reimplementation cost.
Renewals you can read in five minutes
Annual renewals with clear terms. No uplift math, no surprise rate changes, no legalese.
Self-serve checkout for standard plans
Start Platform Core or any standard configuration without waiting for a sales call. Enterprise and Command get a proper scoping conversation.
Evidence That Stays Inside Your Perimeter
Command requires a scoping conversation because every deployment is sized to your environment. The prices below cover onboarding, deployment, and ongoing support.
Pricing Questions, Answered Plainly
Can I start without talking to sales?
When do I need a sales conversation?
How does enterprise pricing work?
How do you count reviews and questionnaires?
What's included in every plan?
Can I add modules mid-contract?
What happens when I hit a usage limit?
How do true-ups and renewals work?
What payment methods do you accept?
Why is Command priced separately?
Are services priced separately from software?
How is Voice Operations priced?
Aurora helps your team organize, update, and share compliance work. It does not provide legal advice, replace auditors or assessors, or guarantee compliance outcomes or certification. Your team, auditor, and counsel own the final judgment. See full product boundaries