Skip to main content

One compliance platform.
Three ways to deploy.

Unicis ships as a fully managed SaaS, an open-source self-hosted platform, and native Atlassian Marketplace apps. Choose the deployment that fits your team — or combine them.

Start Free — No credit card Compare deployment options

Pick your deployment — same platform, your terms

Cloud

Unicis Platform — SaaS

Fully managed cloud · Community, Premium & Ultimate plans

The fastest way to get your compliance programme running. Unicis SaaS is fully managed — no infrastructure to provision, no updates to apply. Sign up and start tracking controls within minutes.

Start Free View Cloud features
Up and running in minutes — no setup required
99.9% uptime SLA with automated backups
SSO, SAML, MFA and audit logs on all paid plans
Automatic updates — always on the latest version
Multi-team and multi-framework support
From €0 · Community plan free forever
Open-source

Unicis Platform — Self-hosted

Open-core · Apache 2.0 · Your infrastructure

Deploy Unicis on your own servers, private cloud, or air-gapped environment. The open-core means you can inspect every line of code, extend the platform with custom modules, and never worry about vendor lock-in.

View on GitHub Self-hosted docs
Apache 2.0 open-source core — full transparency
Deploy on AWS, Azure, GCP, or on-premises
Data never leaves your infrastructure
REST API and webhooks for custom integrations
Fork, extend, and contribute on GitHub
Ideal for regulated industries and public sector
Atlassian

Unicis Atlassian Apps

Jira & Confluence · Atlassian Marketplace · Forge-native

Bring compliance into your existing Atlassian workspace. Unicis apps for Jira and Confluence let your teams manage GDPR records, transfer impact assessments, cybersecurity controls, and security awareness — without leaving the tools they already use.

Browse Apps Atlassian Marketplace
RoPA for Jira — GDPR Article 30 records in Jira
TIA for Jira — international transfer assessments
CSC for Jira — 11 frameworks incl. ISO 27001 & NIS2
IAP for Confluence — security awareness training
Available on Atlassian Marketplace
Forge-native — no external data storage

SaaS vs Self-hosted vs Apps — at a glance

FeatureSaaSSelf-hostedApps
DeploymentManaged cloudYour infrastructureAtlassian Cloud
Setup timeMinutesHours (Docker / K8s)Minutes
Data residencyEU (Estonia)Your choiceAtlassian-managed
Source codeOpen-coreFull open-sourceOpen-core (Forge)
SSO / SAMLAll paid plansAll plansVia Atlassian
API accessPremium & UltimateAll plansMarketplace API
Best forSMEs, startups, scale-upsRegulated & public sectorAtlassian-first teams

Find the right solution for your situation

Whether you're an open-source advocate, need workflow automation, or running compliance at enterprise scale — Unicis has a tailored answer.

Open-source

Open-Source Compliance Platform

Unicis is open-core — the compliance platform you can inspect, self-host, and trust. No black boxes. Compare us to Vanta and Drata.

Explore open-source
Automation

GRC Automation

Automate repetitive compliance work with our open REST API, webhooks, and native integrations with n8n, Zapier, Make, and Jira.

See automation features
Enterprise

Enterprise Compliance

SSO/SCIM, multi-tenant architecture, on-premise deployment, dedicated support, and cross-framework mapping for complex organisations.

Enterprise overview

11 frameworks — one platform across all products

Every framework is available across SaaS, Self-hosted, and Atlassian Apps. Track controls once — get coverage across every standard you need.

MVSP

MVSP

Minimum Viable Secure Product

Baseline security checklist for B2B software. Defines the minimum security posture expected from enterprise-ready products.

Community Security B2B
GDPR

GDPR

General Data Protection Regulation

EU regulation for personal data protection and privacy. Covers data processing, consent management, and cross-border transfers.

Community Privacy EU
ISO/IEC 27001

ISO/IEC 27001

Information Security Management Systems (2022)

International standard for establishing and maintaining an information security management system (ISMS).

Premium Security International
EU NIS2

EU NIS2

Directive (EU) 2022/2555 NIS 2

EU directive on cybersecurity measures for essential and important entities across critical sectors.

Premium Cybersecurity EU
CIS Controls

CIS Controls

CIS Critical Security Controls v8.1

Prioritised set of actions to protect organisations and data from known cyber-attack vectors — 18 controls, 153 safeguards.

Premium Security Best Practice
BSI C5

BSI C5

Cloud Computing Compliance Controls Catalogue (C5:2020)

German BSI standard for cloud computing compliance. Mandatory for cloud services used by German government agencies.

Premium Cloud Germany
OWASP ASVS

OWASP ASVS

Application Security Verification Standard v5

Framework for testing web application technical security controls across 3 verification levels and 14 security chapters.

Premium AppSec Development
ISO/IEC 42001

ISO/IEC 42001

AI Management System Standard

The world's first international standard for AI Management Systems — covering AI risk, transparency, bias, and EU AI Act readiness.

Premium AI International
NIST CSF 2.0

NIST CSF 2.0

NIST Cybersecurity Framework 2.0

Voluntary US cybersecurity framework covering Govern, Identify, Protect, Detect, Respond, and Recover — 6 functions, 106 subcategories.

Ultimate Security US
SOC 2

SOC 2

SOC 2 Type I & II

Trust service criteria for security, availability, processing integrity, confidentiality, and privacy of customer data.

Ultimate Security Audit
PCI DSS

PCI DSS

Payment Card Industry Data Security Standard v4.0.1

Global security standard for organisations that store, process, or transmit payment card data — 12 requirements.

Ultimate Payments Security
View all frameworks & coming soon

Not sure which product is right for you?

Talk to us — we'll help you choose the right deployment, plan, and framework coverage for your team's needs.

Talk to Sales View Pricing