14-day free trial on all plans

DORA-first pricing for operational resilience

Start with the DORA operating model, then reuse the same controls and evidence across ISO 27001, NIS2, GDPR, CSSF 22/806, and CRA where mappings apply.

MonthlyAnnual2 months free

DORA Essentials

Launch the core DORA operating model without spreadsheet sprawl

€3,489/year

€291/month equivalent

2 months free: save €699/year

DORA workflow · Up to 2 framework libraries · 50 ICT vendors · 5 users

Apply to DP program

What's included

Core DORA ICT risk and incident workflow

Up to 2 framework libraries

50 ICT vendors with risk scoring

5 user seats

9-role RBAC

MFA enforcement

Controls, evidence, incidents, and deadlines

Compliance calendar

CSV & Excel import/export

1 GB evidence storage

Email support

Best for smaller regulated teams starting DORA readiness

DORA Operations

Run DORA day-to-day and reuse evidence across adjacent frameworks

€7,989/year

€666/month equivalent

2 months free: save €1,599/year

All 6 framework libraries · 200 ICT vendors · 15 users

Apply to DP program

What's included

DORA operating dashboard with cross-framework reuse

All 6 framework libraries

200 ICT vendors with advanced scoring

15 user seats

9-role RBAC

Unlimited controls & unlimited policy templates

Control Mapping Concierge

AI policy & questionnaire generation

Vendor dependency mapping

Regulatory alerts & drift detection

CSSF / DORA ROI package generation

Audit readiness score & board reports

Regulatory incident reporting

MFA enforcement

Auditor access portal

SSO / SAML integration

REST API access

50 GB evidence storage

Priority onboarding & support

Best for firms preparing for regulator review and recurring audits

DORA Assurance

Scale operational resilience with enterprise controls and support

€21,989/year

€1,832/month equivalent

2 months free: save €4,399/year

All 6 framework libraries · unlimited ICT vendors & users

Apply to DP program Contact Sales

What's included

Everything in DORA Operations, plus:

Unlimited vendors & users

Full RBAC including auditors & vendors

500 GB evidence storage

Auditor access portal

SSO / SAML integration

REST API access

Custom integrations

Dedicated customer success manager

Commercial SLA option

Best for larger regulated groups with complex ICT risk operations

Why teams choose OneComply

DORA-first workflows for ICT risk, incidents, vendors, and resilience testing

Cross-framework evidence reuse without pretending every framework is identical

Operational dashboards for deadlines, gaps, posture, and regulator-ready exports

Audit trails, tenant isolation, RBAC, MFA, and EU-hosted data by default

Enterprise Security

RBAC, MFA, audit trails built-in

EU Data Hosting

Primary app data and evidence in EU regions

Auditor Support

Built-in auditor access portal

Commercial SLA

Available on eligible enterprise agreements

Frequently Asked Questions

How long does onboarding take?

Most teams are fully set up within 1–2 weeks with guided onboarding.

Can we start with one framework and expand later?

Yes — you can start with one framework and expand as your compliance needs grow.

Is this suitable for audits?

Yes — the platform is designed to produce evidence-backed readiness outputs for review by your compliance, legal, and audit teams.

Where is our data stored?

Primary application data, evidence files, authentication, and database backups are hosted in EU regions. Limited billing, email, and observability metadata is governed by listed sub-processor agreements.

Do you support integrations?

Yes — including Jira, Microsoft 365, and custom enterprise integrations.

Want to shape what we ship?

Apply to the design-partner program — 10 partners, free during the program, 30% off year one.

Apply to DP program