Pricing
Transparent pricing.
No surprises.
The full cost, what's included, and how alternatives compare. Built to be shared with your decision-makers.
- Read-only scan permissions
- No data leaves your tenant
- Built on Microsoft Power Platform
Choose your plan
Two tiers. One goal: certification.
Standard is complete for certification. Business adds features for organisational complexity.
Standard
Get certified.
or £399/month, cancel anytime
What's included
- Full ISMS documentation system (all 10 capability areas)
- Readiness Scan (initial + monthly recurring)
- AI compliance agent in Teams
- Pre-built policy and procedure templates
- Automated task generation and tracking
- M365 evidence collection (Graph API)
- Gap analysis and progress tracking
- Business process flows (Stage 1 and Stage 2 audit prep)
- On-demand compliance summary PDF
- Evidence pack export
- Onboarding wizard with guided setup
- Email support (48-hour response)
Business
Stay certified.
or £499/month, cancel anytime
Everything in Standard, plus
- Departmental risk and control scoping
- Custom-branded compliance outputs (your logo, not ours)
- Scheduled compliance snapshots (automated monthly)
- Bulk employee import from Entra ID
- Up to 5 ISMS Admin users (vs 2 for Standard)
- Priority email support (24-hour response)
- Quarterly business review with Orion (30-min video call)
Total cost
The complete cost. Nothing hidden.
CertAria runs on your existing Microsoft 365 infrastructure. Here's exactly what you pay.
25-person company
50-person company
What's behind these numbers
The full licensing breakdown for the technically curious.
What's behind these numbers
The full licensing breakdown for the technically curious.
Required for all staff. You almost certainly have this already if you use M365.
Only your ISMS administrators need this (typically 1 to 3 people, not all staff). ~£4 per admin per month.
CertAria's automation flows run within the Power Apps licence context. No separate licence needed.
The AI compliance agent is included in your CertAria subscription. Orion absorbs the capacity cost.
Your Power Apps licence includes Dataverse storage. CertAria uses a small fraction of the standard allocation.
Implementation risk
- Time to first value: scan in 5 minutes, onboarding in under 30 minutes.
- Licensing scope: only 1-3 ISMS admins typically need Power Apps licences.
- Data control: evidence and workflows stay in your Microsoft 365 tenant.
Calculator
Model your actual annual cost.
Set your company size and tier to see your total and estimated savings versus consultant-led routes.
people in your organisation
Your annual cost
Compared to a consultant
Power Apps pricing based on Microsoft's published per-user rate (~£4/month). Consultant estimates based on UK market rates for ISO 27001 certification projects.
Alternatives
How the alternatives compare.
Three paths to ISO 27001. Only one stays with you after the audit.
CertAria
Recommended- Year 1 cost
- £3,990
- Your time
- 20–40 hours
- Ongoing cost
- £3,990/year
- M365 integration
- Native (Graph API, Teams, SharePoint)
- Automation
- High (AI agent, scheduled flows)
- After certification
- CertAria stays as your ongoing ISMS
Consultant-led
- Year 1 cost
- £15,000–40,000
- Your time
- 40–80 hours
- Ongoing cost
- £5,000–10,000/year
- M365 integration
- None
- Automation
- None (manual)
- After certification
- Consultant leaves
DIY with templates
- Year 1 cost
- £2,400–3,600 + consultant review
- Your time
- 100–200 hours
- Ongoing cost
- £2,400–3,600/year
- M365 integration
- Partial (SharePoint only)
- Automation
- Low (manual workflows)
- After certification
- You're on your own
What's included
CertAria plus your existing Microsoft 365.
In your CertAria subscription
- AI compliance agent (Copilot Studio)
- All automation flows
- Managed solution deployment
- Onboarding wizard and setup support
- Business process flows for certification
- Policy and procedure templates
From your Microsoft licences
- Dataverse storage (within standard allocation)
- Power Automate flow execution
- Teams integration
- SharePoint document storage
- Graph API security signals
Your existing Microsoft 365 investment already provides the infrastructure. CertAria runs on top of it.
Questions about cost.
Is Microsoft 365 an extra cost?
You already have it. CertAria requires M365 Business Premium, which most UK SMEs already use. If you're running Microsoft 365, you're covered. CertAria works with what you've got.
What about Power Apps licensing?
Your ISMS administrators (typically 1–3 people, not all staff) need a Power Apps licence at ~£4/person/month. For most companies, that's £8/month. Our onboarding wizard helps you set this up in 5 minutes.
Is this on top of a consultant?
No. CertAria replaces the consultant. £3,990/year instead of £15,000–40,000. And unlike a consultant, CertAria doesn't leave after the audit.
Will Standard get me certified?
Yes. Standard is complete for ISO 27001 certification. Business adds features for organisational complexity — departmental scoping, custom-branded outputs, scheduled compliance snapshots, bulk Entra ID import — that matter when you have more departments and stakeholders. Nobody fails their audit because they chose Standard.
See your actual gap.
You have seen the pricing and what is included. The next step is to find out where your M365 tenant already stands. The free readiness scan takes five minutes, reads only configuration data, and gives you a gap report you can take to your next board meeting.