Are there token meters?

No. Kanonik absorbs the Verifier LLM cost in every tier. There is no per-call billing, no token counter shown to the customer.

Bring-your-own-model. You connect your existing Anthropic, OpenAI, Bedrock, Gemini, or Azure OpenAI account to Kanonik. Single-invoice Kanonik-paid Primary AI is an optional add-on for procurement simplicity.

What's included in Enterprise?

Custom contract, custom integration, dedicated support, and FedRAMP-path via AWS Bedrock. Contact hello@kanonik.ai with the shape of your stack and we will scope a quote.

Pricing

Read the price. Decide.

Three tiers, published in full. Bring your own AI key by default. No "contact us" on anything below enterprise. No hidden add-ons. Card captured at signup but not charged until your first successful AI call.

Anchored on what your compliance actually costs you (auditor day rates, $1,500-$3,000), not on the platform you might already pay for.

Three tiers

Solo, Team, Business. Pick what fits.

Twelve-month price protection at the tier you select for early customers.

Solo

$199

/ month

For the solo security officer, the founding GRC owner, the fractional consultant, or the early-stage company doing one framework right.

1 Active user. Less than two hours of an auditor's time per month.

One framework (your choice)
Bring your own AI key
1,000 Verifier proposals / day
200 commits / day
Email approvals
Audit-log export
Self-serve onboarding

Free read access for your auditor.

Recommended

Team

$699

/ month

For compliance teams at 45-200 person fintech, healthtech, and AI-native companies adding a second framework or a multi-domain program.

15 Active users. Typical: 1 compliance lead + 1 CISO + 4-6 control owners + 2-3 contributors. Less than one day of auditor fieldwork.

Up to 3 frameworks
Bring your own AI key
5,000 Verifier proposals / day
1,000 commits / day
Email + Slack approvals
Audit-log export
Public REST API (rate-limited)
12-month price protection
99% uptime target

Free read access for your auditor.

Business

$1,999

/ month

For mid-market 200-1000 person organizations running multiple frameworks with multi-domain control ownership.

25 Active users. Multiple control owners, privacy and legal leads, executive observers included. A day and a half of auditor fieldwork.

Unlimited frameworks
Bring your own AI key
Premium Verifier (top-tier model) bundled
1 signed Auditor Export bundle / year
20,000 Verifier proposals / day
5,000 commits / day
Email, Slack, webhook approvals
Higher REST API limits
Named onboarding contact
99.5% uptime target

Free read access for your auditor.

Enterprise

For regulated organizations.

Unlimited users. Custom SLA above 99.5%. EU data residency. Tenant-private skills you author with your own signing key. SAML/OIDC federation. Self-hosted single-tenant deployment available. Dedicated solutions engineer. Free auditor read access on every seat.

Talk to us

Total cost

One new line on your invoice. That is the count.

Most prospects expect three new charges. The honest count is one: Kanonik. Your AI subscription stays where it was. Your existing GRC, if you keep it, stays where it was. Breakeven is roughly four auditor days per year against a typical $1,500-$3,000 rate. Everything beyond that is your team's saved time and your CFO's saved budget.

Kanonik (Team tier): $699 / month. The one new charge. Verifier, audit chain, canonical record, the Verifier's internal LLM cost: all in. Card not charged until your first successful AI call.
Your existing AI subscription: Unchanged. Use the Claude, ChatGPT, Gemini, Bedrock, or Azure OpenAI account you already have. Your AI provider stays your direct contractor; we never see your conversations.
Your existing GRC platform (if any): Unchanged for as long as you keep it. Eramba is free; other platform contracts are unaffected. We do not require you to retire them; for our target customers, you can.

Bring your own model

The AI you already pay for. No metering, no markup.

Kanonik is model-agnostic. Connect the AI subscription you already have - Claude, OpenAI, Bedrock, Gemini, or Azure OpenAI - and it works. We do not sell you an AI license, we do not meter your usage, and we never see your conversations.

Two pieces of AI cost sit on different invoices. Your primary AI session goes to your AI provider directly. The Verifier's internal tier-2 cross-check runs on Kanonik's own account, internal to the validation step. Sub-processor disclosed in the DPA.

Single-invoice procurement option. If your procurement requires routing all AI spend through one vendor, the Kanonik-paid Primary AI add-on lets your primary-session usage flow through our account too. One invoice. Most CISOs skip this because they already have a model-provider account.

Solo: BYO key by default. Single-invoice add-on: +$25 / month.
Team: BYO key by default. Single-invoice add-on: +$75 / month.
Business: BYO key by default. Single-invoice add-on: +$150 / month.

Verifier quality is identical either way. The add-on is a procurement option, not a premium tier.

vCISO and MSP

A tier per client. Their tenant, their isolation.

vCISOs and managed-service providers run each end-customer on their own Kanonik tier (Solo, Team, or Business), in their own isolated tenant, managed from inside the client's tenant. If you run a practice across multiple end-customers, write to [email protected] to discuss terms. See for consultants for the full consultant-side framing.

Frequently asked

The questions we get most.

Can I start on Solo and upgrade later?: Yes. Mid-cycle upgrade is self-serve from the dashboard with proration. Downgrades take effect at the next billing cycle.
Why anchor pricing on auditor day rates instead of the platform fee?: Because that is what the customer is actually trading off. Adding Kanonik makes the audit cycle measurably shorter and the findings list measurably shorter. Both are denominated in auditor days. We would rather you compare $699 per month against the day of fieldwork it replaces, not against an incumbent platform's entry price.
What happens to my data if I cancel?: The audit log is preserved according to your retention policy. Source-of-truth data is exportable on request. After your confirmation, we crypto-erase your encryption keys. Your encrypted data becomes unrecoverable. The audit-log chain still verifies; the content becomes unreadable.
Can I bring my own model account?: Yes. Bring-your-own-model is the default: Anthropic, OpenAI, Bedrock, Gemini, or Azure OpenAI. You operate your own model account; we never see your conversations. The Verifier's internal tier-2 cross-check runs on Kanonik's account, not yours.
Do you offer non-profit or educational discounts?: Talk to us. We are early enough that case-by-case discussion is reasonable.
When do prices become final?: Early customers are price-protected for twelve months at the tier they sign for, regardless of any pricing change we announce later. The tiers on this page are anchored. We may adjust them based on early-customer feedback, but customers who sign during this period keep their rate.
What if I want a tier that does not exist on this page?: Talk to us. The published tiers cover the common cases; we are open to discussing variations with serious buyers.

For pricing discussions, custom tiers, vCISO/MSP arrangements, or anything else this page does not answer: [email protected].