PRACTITIONER-BUILT // COMPLIANCE INTELLIGENCE
Upload your compliance documents. Get a practitioner-grade readiness score in 5 minutes. Free.
20+
YEARS PRACTITIONER EXPERIENCE
£250M
PROGRAMMES DELIVERED
8
FRAMEWORKS SUPPORTED
PROCESS // 3 STEPS
01
UPLOAD
Drop in up to 3 of your existing compliance documents. PDF, DOCX, or XLSX.
02
ANALYSE
Our AI agent — trained on 20 years of audit experience — assesses them against your chosen framework.
03
SCORE
Receive a one-page readiness snapshot with your score, top 3 strengths, and 5 critical gaps.
FRAMEWORKS // 8 SUPPORTED
GLOBAL
93 AnnexInformation security management system. International gold standard.
ASSESS NOWUS / GLOBAL
64 pointsTrust services criteria for service organisations. AICPA-aligned.
ASSESS NOWUS / GLOBAL
106 subcategoriesCybersecurity Framework. 6 functions, 22 categories, 106 subcategories.
ASSESS NOWUNITED KINGDOM
99 articlesData protection principles, data subject rights, ICO obligations.
ASSESS NOWUNITED KINGDOM
5 controlFive technical controls. NCSC-backed UK certification.
ASSESS NOWEUROPEAN UNION
5 pillarsDigital Operational Resilience Act. Five pillars for EU financial entities.
ASSESS NOWEUROPEAN UNION
10 minimumNetwork and Information Security Directive. 10 minimum measures.
ASSESS NOWGLOBAL
12 requirementsPayment Card Industry Data Security Standard. 12 core requirements.
ASSESS NOWWHY THIS EXISTS
Most SMEs over-estimate readiness because they confuse having a document with having a working control. A 40-page policy you wrote in 2022, copied from a template, and never reviewed scores zero with a real auditor.
This tool reads your documents the way a senior practitioner would — and tells you, plainly, where you actually are.
WHAT YOU THINK
WHAT AUDITORS SEE
We have a documented Information Security Policy.
When was it last reviewed? Who signed it off? Where's the change log?
Our risk register is in SharePoint.
Show me three risks treated, by whom, with evidence of effectiveness.
We run quarterly access reviews.
Show me the last review, exceptions found, and how they were closed.
BUILT BY // CARL PITTS
SR. PRACTITIONER
Carl has led £250M+ in cybersecurity transformation programmes across financial services, healthcare, and critical national infrastructure. He's been the auditor, the auditee, and the executive accountable when audits go sideways.
"The difference between passing an audit and scrambling through one is documentation. These templates give you the documentation."
— CARL PITTS
TIERS // FREE → MONITORED
FULL ASSESSMENT
COMING SOONQUESTIONS // 8 ANSWERS
Your most important compliance documents — typically your Information Security Policy, Risk Register, or Incident Response Plan. Anything you'd hand to an auditor on day one.