Transparent & flat

Pay per company, not per vendor.

Every serious TPRM tool starts at $5,000–$16,500/yr and bills you more for each vendor you add. Covenant publishes its prices and never charges a per-vendor surcharge.

Free

$0 forever
  • Up to 10 vendors
  • Full HIPAA BAA tracking + reminders
  • §164.504(e) clause gap-check
  • SMB Lite + HIPAA questionnaires
  • Risk tiering + explainable scores
  • Vendor-ledger heatmap, CSV export
Start free

Pro

$99 /mo
  • Up to 50 vendors
  • Everything in Free
  • Full SIG / CAIQ library
  • Custom questionnaire builder
  • Continuous external scanning
  • Remediation tracker, dashboards, up to 5 users
Start free, upgrade later

Team

$249 /mo
  • Unlimited vendors
  • Everything in Pro
  • Daily scanning + auto-discovery
  • Custom roles / granular RBAC, SSO
  • Slack / Teams alerts
  • Sightline / Bastion evidence sync
Get started

MSP

$199 /client/mo
  • Team features × N client tenants
  • Cross-client portfolio console
  • White-label vendor portal
  • Consolidated billing
  • Volume discounts at 10+/25+ clients
Talk to us
vs. the incumbents

What a 30-vendor clinic pays

ToolEntry pricePer-vendor add-onBAA-native
Covenant Pro$990/yrnoneYes
UpGuard~$19,200/yr Starter$79/mo eachNo
SecurityScorecard~$16,500/yr$1,500–$2,000/yr eachNo
OneTrust TPRM$10,000/yr floorAdd-on
Vanta VRM$5k–$15k/yr add-onNo

Competitor figures from public pricing pages and third-party quotes (UpGuard, SecurityScorecard, OneTrust, Vanta), 2025–2026.