New: Autonomous AI risk intelligence is live — your compliance program in 12 minutes. Get started →
SCARLET RISK

Pricing

Transparent pricing.
No sales calls.

Pick the plan that fits. Upgrade anytime. Every plan includes the autonomous AI engine — the difference is scope, frameworks, and seats.

Powered by Cardinal

AI GRC software pricing — from $9/mo.

Cardinal Go

Start understanding your risk.

$9/mo

50 AI credits included per month

Essential risk awareness for small teams getting started with compliance and security basics.

Get started
  • AI risk assistant — ask anything about compliance, regulations, and cyber risk
  • GRC policy generator (uses AI credits)
  • Cyber risk checklist + risk score
  • Risk Register Lite (up to 10 risks)
  • Crypto portfolio risk snapshot
  • State Intel Briefing — weekly digest
  • World Watch — preview only (locked)
  • 1 user
  • AI support assistant + email support (48hr response)
Most popular
Cardinal Pro

Risk intelligence for growing teams.

$49/mo

500 AI credits included per month

Full compliance toolkit plus weekly threat briefings scoped to your industry and region.

Get started
  • Everything in Cardinal Go
  • 500 AI credits/mo — 10x more AI power
  • Full Risk Register — unlimited risks, owner assignment, remediation tracking, exportable reports
  • SOC 2, HIPAA, CMMC, PCI DSS compliance frameworks
  • Incident Response Playbook generator — step-by-step breach response plan built for your business in minutes
  • Vendor risk reviews (up to 5 vendors)
  • Freelancer crypto compliance + wallet risk guidance
  • 1099-DA tax exposure report
  • State Intel Briefing — twice weekly
  • Industry threat digest — weekly briefing scoped to your sector
  • Regulatory alerts — new rules and deadlines translated into action
  • World Watch — live global threat map preview
  • Up to 5 users
  • AI support assistant + email support (24hr response)
Cardinal Elite

Palantir-grade intelligence. SMB price.

$149/mo

Unlimited AI credits · Palantir starts at $1M+/yr. Vanta starts at $10,000/yr. Cardinal Elite is $1,788/yr.

The full Cardinal platform — live global threat monitoring, company-specific risk scoring, and enterprise-grade compliance at a fraction of enterprise cost.

Get started
  • Everything in Cardinal Pro
  • Unlimited AI credits — no limits, ever
  • Cardinal AI company profile — Cardinal learns your tech stack, industry, and risk posture and applies it to every policy, briefing, and recommendation automatically
  • World Watch LIVE — full real-time global threat dashboard with incident markers, live alert feeds, and cyber threat intelligence
  • Your Risk Profile — live company risk score, attack surface map, AI-prioritized remediations, and industry benchmarking
  • Dark web domain monitoring — get alerted if your domain or employee credentials appear in a breach
  • Vendor risk watch — monitor up to 25 third-party vendors
  • Audit-ready evidence exports + control mapping — organized exports and documentation for SOC 2, HIPAA, and PCI audits
  • BAA generator — HIPAA Business Associate Agreements ready in minutes
  • Full crypto compliance suite — regulatory compliance for digital asset holdings
  • Crypto treasury risk analysis
  • Digital asset estate planning
  • 1099-DA + cross-chain tax reporting
  • Unlimited users
  • AI support assistant + email support (same day response) + live chat during business hours

À la carte add-ons

Risk Intelligence Reports

One-time deep-dive reports. Buy individually, or get them included with Pro and Elite.

Most popular

Compliance Risk Predictor

Paste your company description, select your frameworks, get a predicted risk score with your top 3 exposure areas and recommended next steps.

$19one-time
Go — à la cartePro — basic scoreElite — full report

Vendor Risk Report

Paste a vendor name and description. Get a third-party risk assessment covering compliance gaps and due-diligence flags.

$19one-time
Go — à la cartePro — à la carteElite — included

Policy Gap Audit

Upload your compliance policies and get a structured gap analysis mapped against SOC 2 or HIPAA requirements.

$29one-time
Go — à la cartePro — à la carteElite — included

Board-Ready Risk Report

A one-time executive summary of your risk posture, formatted for board presentation. Built for CFOs and CCOs.

$49one-time
Go — à la cartePro — à la carteElite — included

Incident Response Playbook

A custom IR playbook based on your company size, industry, and frameworks. Built once, used every time.

$49one-time
Go — à la cartePro — à la carteElite — included

More reports coming soon

New risk intelligence reports are added regularly. Check back for crypto risk audits, supply-chain assessments, and more.

Coming soon

Cardinal works with your existing tech stack. Already using Vanta, Drata, or another compliance tool? Cardinal complements your current setup.

For everyone, not just auditees

Not pursuing a certification?

Scarlet Risk works for you too. Our platform is designed for any company that wants to understand and manage risk — not just the ones with an upcoming SOC 2 audit.

For procurement

Procurement process? No problem.

Send us your RFP, security questionnaire, or vendor packet. Our AI completes it — typically within one business day — with answers your security and legal teams can verify line-by-line.

Submit RFP

Stop renting compliance.
Own it.

Spin up your full risk and compliance program in the next twelve minutes.

Get started