Pricing

One scan.
One subscription.

A baseline posture scan on day one, then your compliance paperwork kept current month-to-month. We draft your nine §314.4 documents from real shop info, store them in your dashboard, and run the breach-notification workflow if you ever need it. No AV bundle, no annual commitment.

Per shop Up to 10 PCs scanned Month-to-month

Step 01One-time

On-Site Posture Scan

Baseline assessment of up to 10 PCs against the FTC Safeguards Rule. We bring it, run it, walk you through the result.

$299.99 / one-time / shop

+NC field rep on-site, by appointment

+Read-only USB scanner, up to 10 endpoints

+Score per §314.4 control + per-PC findings

+Walk-through of every red and yellow finding

+If you have no compliance docs yet, we draft the seven §314.4 docs with you the same visit and email or print them

+Printed result + recommendations you keep

Book a scan →

Step 02Recommended

Compliance Subscription

Dashboard, doc suite, breach tool, and document review. The ongoing piece that keeps your file audit-ready.

$129 / mo / shop

+Dashboard access for you and your QI

+All seven §314.4 docs created and stored: WISP, Risk Assessment, IRP, Disposal, Vendor Inventory, Training Roster, Annual QI Report

+Breach response tool — NC §75-65 letters, AG notification, timeline

+Already have docs? Upload them; review agent flags what's missing

+Annual re-attestation workflow with reminder

+Audit log — every edit, attestation, and event timestamped

+Periodic posture re-scan, on-site

+Month-to-month, cancel any time

Start subscription →

What the subscription covers

Feature	Included$129 / mo
Program & documentation
Written WISP §314.3Information security program tailored to your shop.	●
Risk assessment §314.4(b)Documented inventory of where customer data lives.	●
Service provider inventory §314.4(f)Vendor list with addendum status, periodic review.	●
Data disposal policy §314.4(c)(6)Written schedule for paper, drives, retired PCs.	●
Personnel training roster §314.4(e)15-min training, dated, employee-by-employee.	●
Incident response plan §314.4(h)Written runbook with phone tree and timelines.	●
Annual QI report §314.4(i)Board-ready summary of program status and changes.	●
Dashboard & ongoing tools
Document review agentUpload your existing docs (WISP, IRP, etc.); we flag what's missing.	●
Breach response toolNC §75-65 consumer letters, AG notification, 30-day timeline.	●
Annual re-attestation workflowReminder, guided checklist, signed sign-off.	●
Audit logEvery edit, attestation, and event timestamped. Exportable.	●
Periodic on-site posture re-scanSame scanner used in your $299.99 baseline visit.	●
What's not bundled
Endpoint AVBring your own. We audit your setup as part of the scan and call out gaps; we do not sell or install AV.	—
Legal adviceWe are not a law firm. Our docs are templates; bring your attorney into anything regulator-facing.	—

Common questions

Do I need to switch AV?

No. We don't sell or install AV. Bring whatever you're using — Defender, Bitdefender retail, ESET, whatever. The on-site scan checks that it's running and configured sanely; if something's missing or stale, we tell you. AV decisions stay yours.

What if I already have a WISP?

Upload it. Our review agent reads it against the §314.4 requirements and gives you a checklist of anything missing or outdated. From there you can either edit yours in the dashboard or have us redraft it. The result is a template you own, not a portal you rent — and not legal advice.

How fast can you start?

From booking to on-site scan is typically 1–2 weeks depending on scheduling. The dashboard subscription activates the day you sign up — you can start using the doc forms immediately and we sync everything up at the on-site visit.

What happens if there's a breach?

You call one number. We trigger your incident response plan, help contain the event, document the timeline, and coordinate notifications per §314.4(h). We are not your attorneys — but we do hand your attorney everything they need.

Is this required by law?

The FTC Safeguards Rule applies to dealers who arrange financing or leases — that's most independent dealers. The rule has been enforceable since June 2023. Whether it applies to your specific business is a question for your attorney; we can't give legal advice. We can show you what the rule asks for.

Do you serve dealers outside North Carolina?

Not yet. We're a single field rep covering NC end-to-end so install and response stay tight. If you're in NC and have multiple locations, we can absolutely cover the set on one invoice.

One scan.One subscription.

Ready to start?Book your $299.99 on-site scan.

One scan.
One subscription.

Ready to start?
Book your $299.99 on-site scan.