GRC Pocket Auditor is a compliance audit and gap analysis app
built for startups, SMBs, and IT teams. Run a structured
cybersecurity audit against SOC 2, GDPR, Cyber Essentials,
or NIS2 — in minutes, not months.
Built and verified by a CISSP-certified expert. Real audit
experience behind every question.
───────────────────────────
COMPLIANCE FRAMEWORKS
───────────────────────────
SOC 2 AUDIT — 50 questions, 5 trust service criteria
The standard enterprise customers check before signing
contracts. Covers security, availability, confidentiality,
processing integrity, and privacy.
GDPR COMPLIANCE AUDIT — 50 questions, 6 domains
For any business handling EU personal data. Fines reach
20 million euros or 4% of global annual turnover.
CYBER ESSENTIALS AUDIT — 30 questions, 5 domains
UK government-backed certification. Mandatory for government
suppliers. Required by many UK cyber insurers.
NIS2 COMPLIANCE AUDIT — 40 questions, 10 domains
Enforced across the EU since October 2024. Senior management
faces personal liability for non-compliance.
───────────────────────────
HOW IT WORKS
───────────────────────────
Select your framework. Answer structured audit questions
with plain-English explanations for every control. Get your
compliance readiness score instantly. See exactly where your
gaps are and what to do about them.
The compliance audit is completely free.
No account required. All data stored locally on your device.
───────────────────────────
UNLOCK YOUR FULL REPORT
───────────────────────────
Complete the free audit then unlock:
Full gap analysis — every finding, severity rated
Why it matters — business and regulatory impact per gap
How to fix it — specific remediation steps
Remediation kit — policies, templates and procedures
PDF compliance report — shareable with customers and auditors
SOC 2 compliance report — $29.99
Cyber Essentials compliance report — $19.99
GDPR compliance report — $34.99
NIS2 compliance report — $29.99
All 4 frameworks bundle — $79.99
Worth over $2,000 in compliance consulting fees.
───────────────────────────
EXPERT COMPLIANCE SERVICES
───────────────────────────
Advisory Session — $249
60 minutes with a CISSP. Understand your gaps and get a
clear remediation roadmap for your business.
Remote Compliance Audit — from $799
A CISSP reviews your actual environment via web conference.
Receive a professional audit report for customers,
insurers, or regulators.
Monthly Retainer — $349/month
One advisory session per month, unlimited async questions,
and an annual remote audit included.
───────────────────────────
COMING SOON
───────────────────────────
CIS Controls IG1
ISO 27001
DORA — EU Financial sector
───────────────────────────
No account required. Fully offline. CISSP-verified content.
GRC Pocket Auditor is a compliance readiness tool. It does
not constitute legal or regulatory advice and does not
replace formal certification or qualified legal counsel.