GRC Platform

GRC compliance,
without the complexity.

Karko helps you collect, evaluate, and report on compliance evidence for NIS2, ISO 27001, DORA and more. Automated or manual, on your own infrastructure.

Get Professional See pricing

Everything you need

Evidence collection

Automated agents collect evidence for your controls on a schedule.

Framework support

NIS2, ISO 27001, DORA, and custom frameworks.

Offline-first

Air-gapped deployments supported. No call-home necessary.

PDF reports

Generate compliance reports for auditors and stakeholders.

RBAC

Four roles with granular permissions. SSO via OIDC on Enterprise.

Self-hosted

Run on your own infrastructure. Docker Compose in minutes.

Self-hosted LLM support

Connect a local LLM to normalize and analyze gathered evidence. No data ever leaves your infrastructure.

Ready to get started?

Starter tier is free forever. Professional and Enterprise add PDF reports, SSO, and more.

View pricing

GRC compliance,without the complexity.