KomplyZA

POPIA Compliance Made Achievable

Start free. Upgrade when you need verified evidence and board reports. No credit card required.

SOLO

R0/month

Forever free

Solo founders getting started with POPIA

  • 14-step security assessment
  • Up to 17 risks identified
  • 3 AI policy generations/month
  • Risk register with heatmap
  • POPIA score tracking
  • 1 DMARC scan per day
  • Breach Clock
Start Free →
Most Popular

PRO

R999/month

Billed annually (R11,988/year)

Businesses preparing for audit, insurance, or enterprise clients

  • Everything in Solo, plus:
  • Unlimited policy generation
  • SHA-256 evidence vault
  • Legal & technical partner portals
  • Board-ready compliance pack
  • King IV board report
  • Jira/GitHub/Linear integration
  • KMS encrypted storage
  • ISO 27001 readiness hub + mandatory clauses
  • ROPA generator
Start 14-Day Trial →

ENTERPRISE

Custom pricing

Consultancies and large organisations

  • Everything in Pro, plus:
  • vCISO multi-tenant portal
  • Custom framework mapping
  • SSO (SAML/OIDC)
  • Dedicated legal partner
  • SLA + priority support
Contact Sales →

Already doing POPIA? Your existing work covers up to 40% of ISO 27001 requirements. Pro subscribers get full access to the ISO 27001 Hub with mandatory clause tracking and ISMS document generation.

Need expert help? Let us do it with you.

Done-With-You

POPIA Sprint

90-day compliance deployment. We engineer your complete POPIA compliance system — not a document pack that sits on a shelf.

R29,500 (50% upfront, 50% on completion)

Includes 12 months KomplyZA Pro (R11,988 value)

Book a Discovery Call →

What you get

  • All POPIA policies + ISMS documents generated from your actual infrastructure and vendors
  • Legal partner verification on every document
  • Evidence vault populated with verified proof
  • Automated monitoring: DMARC, evidence expiry, compliance score tracking
  • IO registration guidance and support
  • Breach notification procedure tested via tabletop exercise
  • ISO 27001 readiness baseline included — your POPIA work mapped to 93 controls so you can pass enterprise procurement audits faster
  • Board-ready compliance pack for auditors and insurers
  • Monthly compliance reports automated
  • 12 months KomplyZA Pro included

Target outcome: 70%+ verified POPIA score with signed compliance pack within 90 days.

That's the evidence-verified score — independently proven, not self-graded. The threshold for a POPIA Framework Alignment Attestation.

After 90 days, your compliance system runs itself. No consultants to re-engage. No binders on shelves. A living, monitored, evidence-backed compliance posture.

Timeline — 12 weeks, 6 phases

  1. Phase 1 · Weeks 1–2

    Discovery & baseline

    Kick-off, 14-step assessment, risk register, POPIA Hub setup

  2. Phase 2 · Weeks 3–4

    Governance & policies

    IO appointment, core policies drafted and reviewed with legal

  3. Phase 3 · Weeks 5–6

    Email & technical controls

    DMARC/SPF/DKIM, evidence vault, security baselines

  4. Phase 4 · Weeks 7–8

    Vendors & breach readiness

    Operator agreements, breach notification procedure, tabletop

  5. Phase 5 · Weeks 9–10

    Remediation sprint

    Close critical gaps, Jira-tracked tasks, weekly check-ins

  6. Phase 6 · Weeks 11–12

    Audit pack delivery

    Board compliance pack, King IV report, handover to your team

Compare plans

Full feature breakdown by tier

Assessment

  • 14-step security baseline

    Solo

    Pro

    Enterprise

  • Risk register with heatmap

    Solo

    Pro

    Enterprise

  • Risks identified

    Solo

    Up to 17

    Pro

    Unlimited

    Enterprise

    Unlimited

  • POPIA Hub (8 conditions)

    Solo

    Pro

    Enterprise

  • POPIA score tracking

    Solo

    Pro

    Enterprise

  • Breach Clock (dual 72hr)

    Solo

    Pro

    Enterprise

  • 90-day compliance plan

    Solo

    Pro

    Enterprise

  • Public DMARC scanner

    Solo

    1/day

    Pro

    Unlimited

    Enterprise

    Unlimited

  • Tabletop exercises

    Solo

    5/year

    Pro

    Unlimited

    Enterprise

    Unlimited

  • Full assessments per year

    Solo

    3

    Pro

    Unlimited

    Enterprise

    Unlimited

Policies

  • SA policy library (24 templates)

    Solo

    Pro

    Enterprise

  • AI policy generation

    Solo

    3/month

    Pro

    Unlimited

    Enterprise

    Unlimited

  • Policy adoption workflow

    Solo

    Pro

    Enterprise

  • ROPA generator

    Solo

    Pro

    Enterprise

  • PAIA Manual generation

    Solo

    Pro

    Enterprise

  • Unwatermarked PDF exports

    Solo

    Pro

    Enterprise

Evidence & Verification

  • Evidence checklist (in-app)

    Solo

    Pro

    Enterprise

  • SHA-256 evidence vault

    Solo

    Pro

    Enterprise

  • File uploads

    Solo

    Pro

    Enterprise

  • KMS encrypted storage (af-south-1)

    Solo

    Pro

    Enterprise

  • Legal partner verification portal

    Solo

    Pro

    Enterprise

  • Technical partner verification portal

    Solo

    Pro

    Enterprise

  • Dedicated legal partner

    Solo

    Pro

    Enterprise

Reporting

  • Watermarked PDF exports

    Solo

    1/module/yr

    Pro

    Enterprise

  • Board-ready compliance pack

    Solo

    Pro

    Enterprise

  • King IV board report

    Solo

    Pro

    Enterprise

  • External report sharing

    Solo

    Pro

    Enterprise

  • White-label reports

    Solo

    Pro

    Enterprise

Frameworks

  • POPIA (mandatory)

    Solo

    Pro

    Enterprise

  • Cybercrimes Act

    Solo

    Pro

    Enterprise

  • FSCA Joint Standard (financial)

    Solo

    Pro

    Enterprise

  • ISO 27001 readiness hub + gap analysis

    Solo

    Pro

    Enterprise

  • Custom framework mapping

    Solo

    Pro

    Enterprise

Integrations

  • Jira remediation sync

    Solo

    Pro

    Enterprise

  • GitHub issues sync

    Solo

    Pro

    Enterprise

  • Linear sync

    Solo

    Pro

    Enterprise

  • SSO (SAML/OIDC)

    Solo

    Pro

    Enterprise

Support & Scale

  • Users

    Solo

    1

    Pro

    Up to 10

    Enterprise

    Unlimited

  • vCISO multi-tenant portal

    Solo

    Pro

    Enterprise

  • Multi-organisation clients

    Solo

    Pro

    Enterprise

  • Priority support + SLA

    Solo

    Pro

    Enterprise

Frequently asked questions

Is the free tier really free?

Yes. Solo is R0/month forever for a single user. No credit card required at signup. Annual quotas reset on your signup anniversary.

Can I upgrade later?

Yes. Your organisation data, risks, policies, and POPIA scores carry over when you upgrade to Pro or Enterprise.

What payment methods do you accept?

Paystack for South African cards and recurring billing. Annual Pro plans can also be paid by EFT — contact us for an invoice.

Do you offer a startup discount?

Founding members get 50% off the first year of Pro. Contact [email protected] with your company details.

Is my data stored in South Africa?

Yes. Application data and evidence files are hosted in AWS af-south-1 (Cape Town) with KMS encryption. Authentication services use Supabase (EU) covered by a Section 72 Transfer Agreement. All evidence uploads are stored on South African soil.

  • 🔐 Data hosted in South Africa (af-south-1)
  • 🛡️ SHA-256 evidence integrity
  • ⚖️ Verified by legal partners
Pricing — POPIA Compliance From R0/month | KomplyZA