Transparent pricing. No enterprise theater.

Per-device pricing you can see today. Same features for everyone. Join the waitlist to be among the first to access Threat Detective and meet FDA and MDR requirements with confidence.

Small Teams

For startups and small medical device manufacturers.

£110

GBP

per month

Join the waitlist

What's included:

  • Up to 10 devices monitored
  • Multi-version SBOM tracking
  • Continuous CVE surveillance
  • Exploitability assessments with rationale
  • EU NB and FDA-ready reports

Growing Teams

For established manufacturers with multiple product lines.

£110

GBP

per month

Join the waitlist

What's included:

  • Up to 50 devices monitored
  • Multi-version SBOM tracking
  • Continuous CVE surveillance
  • Exploitability assessments with rationale
  • EU NB and FDA-ready reports

No Enterprise Theater

Why we don't hide features behind pricing tiers.

We're tired of vendors who hide essential compliance features behind “enterprise” tiers and NDAs.

Everyone gets the same features—no gates, no NDAs, no "contact sales" walls

EU-hosted by default with SOC 2 Type II compliance

Custom deployments available (on-premise, specific regions, air-gapped)

Pricing scales with devices monitored, not feature access

Same-day evaluation—if you can't try it this week, it's not transparent

Transparent pricing. Same features for everyone. No sales theater.

Frequently asked questions

Your questions answered.
How does per-device pricing work?
Simple: £110 per device per month. A “device” is a unique product under surveillance—whether it's an infusion pump, patient monitor, or companion app. You can track unlimited firmware versions per device, so legacy builds in clinics and current releases all count as one device.
Do you really give everyone the same features?
Yes. No tiered feature gates, no NDAs, no “enterprise” upsells. Whether you're monitoring 10 devices or 1,000, you get the same SBOM tracking, CVE surveillance, exploitability assessments, and regulator-ready reports. Pricing scales with devices monitored, not feature access.
Where is our data hosted?
EU by default with SOC 2 Type II compliance. We understand many medical device manufacturers need data residency certainty. If you need on-premise deployment, specific regions, or air-gapped environments, we can accommodate that—no “contact sales” runaround required.
What regulatory standards do your reports support?
Reports are formatted for EU Notified Bodies (MDR Annex I, MDCG 2019-16) and FDA submissions (510(k), De Novo). We map to IEC 81001-5-1 for exploitability decisions and generate PSUR inputs for post-market surveillance. No midnight reformatting sessions required.
Can I evaluate Threat Detective before committing?
Absolutely. Same-day evaluation is part of our transparency commitment. Import your SBOM, see CVE enrichment, run exploitability assessments, and generate a report—all within the first week. If you can't try it this week, it's not transparent.